chrome öffnet unerwünschte tabs

sgb · 16.08.2015, 12:14

Hallo.

Wenn ich in Chrome klicke, öffnen sich ständig irgendwelche unerwünschten Seiten in neuen Tabs. Mein Antivirenprogramm erkennt nichts und die Neuinstallation von Chrome hat auch nichts gebracht. Wer kann mir helfen?

M-K-D-B · 16.08.2015, 12:16

Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.

Bitte beachte folgende Hinweise:

Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo. Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
Bitte beachten: Download bei filepony.de: So ladet Ihr unsere Tools richtig!
Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort zu starten!

Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!

Zur ersten Analyse bitte FRST und TDSS-Killer ausführen:

Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Schritt 2
Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Bitte poste mit deiner nächsten Antwort

die Logdatei von TDSS-Killer,
die beiden neuen Logdateien von FRST.

sgb · 16.08.2015, 12:44

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:14-08-2015 01
durchgeführt von schweigelicht (Administrator) auf SCHWEIGELICHTPC (16-08-2015 13:40:02)
Gestartet von C:\Users\schweigelicht\Desktop
Geladene Profile: schweigelicht (Verfügbare Profile: schweigelicht)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 10 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Symantec) C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(ArcSoft) C:\Program Files (x86)\ArcSoft\SimHD IM Plug-In\ArcSoft SimHD IM Plug-In.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Joyent, Inc) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [Cm106Sound] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-06-29] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ArcSimHDHook] => C:\Program Files (x86)\ArcSoft\SimHD IM Plug-In\ArcSoft SimHD IM Plug-In.exe [110592 2009-05-27] (ArcSoft)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-21] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [33648 2007-08-24] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-05] (Avast Software s.r.o.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1855672 2015-07-03] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Norton Ghost 15.0] => C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe [2596712 2009-10-01] (Symantec Corporation)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [385024 2010-04-06] (AMD)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [876728 2015-07-03] (Adobe Systems Incorporated)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Run: [GoogleChromeAutoLaunch_25B31D0574BB19A5575ACF5414E30288] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863560 2015-08-08] (Google Inc.)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\RunOnce: [Uninstall C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64"
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\RunOnce: [Uninstall C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-06-05] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-04-02] (Dropbox, Inc.)
GroupPolicyScripts: Gruppenrichtline erkannt <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.msn.com/?pc=AV01
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0Ezz0C0C0EyBtC0FyBtD0C0DyEtN0D0Tzu0CyCyDyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=924446841&ir=
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0Ezz0C0C0EyBtC0FyBtD0C0DyEtN0D0Tzu0CyCyDyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=924446841&ir=
SearchScopes: HKLM-x32 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0Ezz0C0C0EyBtC0FyBtD0C0DyEtN0D0Tzu0CyCyDyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=924446841&ir=
SearchScopes: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-05] (Avast Software s.r.o.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
BHO-x32: Kein Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} ->  Keine Datei
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-05] (Avast Software s.r.o.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-07-25] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  Keine Datei
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
Hosts: Hosts Datei wurde nicht im Standardordner gefunden
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{077DADE3-A57A-465F-84FC-95F6F9C10695}: [DhcpNameServer] 192.168.127.127
Tcpip\..\Interfaces\{6C7705FA-538B-4168-8E97-B3520CFA7143}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\schweigelicht\AppData\Roaming\Mozilla\Firefox\Profiles\1qefuc4s.default
FF SelectedSearchEngine: Google
FF Homepage: about:home
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-23] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-23] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF SearchPlugin: C:\Users\schweigelicht\AppData\Roaming\Mozilla\Firefox\Profiles\1qefuc4s.default\searchplugins\trovi-search.xml [2014-07-02]
FF Extension: Adblock Plus - C:\Users\schweigelicht\AppData\Roaming\Mozilla\Firefox\Profiles\1qefuc4s.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-31]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-06-05]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat DC - Create PDF - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2015-08-09]

Chrome: 
=======
CHR Profile: C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-07]
CHR Extension: (Web Developer) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2015-07-08]
CHR Extension: (YouTube) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-07]
CHR Extension: (Adblock Plus) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-07-07]
CHR Extension: (Adblock for Youtube™) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-07-08]
CHR Extension: (Google Search) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-07]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-08-09]
CHR Extension: (Facebook™ Chat Privacy) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfpgaanechfneiboempkfjghninbibjn [2015-07-08]
CHR Extension: (Video Downloader Super) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghciphhakbampjemlfbahnhhaemoeolf [2015-07-08]
CHR Extension: (AdBlock) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-08]
CHR Extension: (Avast Online Security) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-07-07]
CHR Extension: (Facebook Unseen) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop [2015-07-08]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-08]
CHR Extension: (Facebook AdBlock) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpacabphcagfehdgnigmfnbjdampbaa [2015-07-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-07]
CHR Extension: (SiteBlock) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2015-07-08]
CHR Extension: (Evernote Web Clipper) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2015-07-08]
CHR Extension: (Gmail) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-07]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-05]

Opera: 
=======
OPR Extension: (elennorphen) - C:\Users\schweigelicht\AppData\Roaming\Opera Software\Opera Stable\Extensions\abpeogmjbjonedcakbihofgpoelmfbgj [2015-05-05]
OPR Extension: (Chrome YouTube Downloader) - C:\Users\schweigelicht\AppData\Roaming\Opera Software\Opera Stable\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja [2015-05-31]
OPR Extension: (Adblock Plus) - C:\Users\schweigelicht\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-07-05]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [680112 2015-07-22] (Adobe Systems Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-05] (Avast Software s.r.o.)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [107448 2015-06-05] (Avast Software s.r.o.)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128 2011-05-24] (MAGIX AG) [Datei ist nicht signiert]
S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert]
S3 GenericMount Helper Service; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [1571336 2009-09-21] (Symantec)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Norton Ghost; C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe [4584288 2009-10-01] (Symantec Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R3 SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2963960 2009-09-21] (Symantec)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S4 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [635160 2014-04-04] (Wacom Technology, Corp.)
S4 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [X]
S3 Symantec SymSnap VSS Provider; C:\Windows\system32\dllhost.exe /Processid:{81F18BB3-F438-4480-AE4C-9F432E31B2E0}
S2 WajamUpdaterV2; "C:\Program Files (x86)\Wajam\Updater\WajamUpdaterV2.exe" [X] <==== ACHTUNG

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S1 acedrv07; C:\Windows\system32\drivers\acedrv07.sys [125440 2013-08-21] () [Datei ist nicht signiert]
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-06-05] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-06-05] (Avast Software s.r.o.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-06-05] (Avast Software s.r.o.)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [449896 2015-06-05] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-06-05] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-06-05] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-06-05] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-27] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-06-05] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-06-05] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-03-08] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2012-04-25] (AVM Berlin)
S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH) [Datei ist nicht signiert]
R3 fwlanusb5; C:\Windows\System32\DRIVERS\fwlanusb5.sys [982784 2012-08-21] (AVM GmbH)
R3 GenericMount; C:\Windows\System32\DRIVERS\GenericMount.sys [54320 2009-09-21] (Symantec Corporation)
S3 L6TPortA; C:\Windows\System32\Drivers\L6TPortA64.sys [894336 2010-03-10] (Line 6)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-03-08] ()
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R0 symsnap; C:\Windows\System32\DRIVERS\symsnap.sys [170032 2009-09-21] (StorageCraft)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1306624 2009-05-14] (C-Media Electronics Inc)
S3 VProEventMonitor; C:\Windows\System32\DRIVERS\vproeventmonitor.sys [20528 2009-09-21] (Symantec Corporation)
S3 athr; system32\DRIVERS\athrx.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
U2 V2iMount; kein ImagePath
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-16 13:40 - 2015-08-16 13:40 - 00029527 _____ C:\Users\schweigelicht\Desktop\FRST.txt
2015-08-16 13:24 - 2015-08-16 13:24 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\schweigelicht\Desktop\tdsskiller.exe
2015-08-16 13:24 - 2015-08-16 13:24 - 02173952 _____ (Farbar) C:\Users\schweigelicht\Desktop\FRST64.exe
2015-08-16 13:02 - 2015-08-16 13:40 - 00000000 ____D C:\FRST
2015-08-15 23:20 - 2015-08-15 23:22 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Command & Conquer 3 Tiberium Wars
2015-08-15 11:00 - 2015-08-16 13:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-12 20:25 - 2015-08-15 20:56 - 00027598 _____ C:\Users\schweigelicht\Desktop\Berlin Recherche.odt
2015-08-12 20:25 - 2015-08-12 21:45 - 00000000 ____D C:\Users\schweigelicht\Desktop\Berlin RECHERCHE
2015-08-11 14:21 - 2015-08-14 19:35 - 00000000 ____D C:\Users\schweigelicht\Desktop\zur PROJEKTDATEI
2015-08-11 14:21 - 2015-08-11 14:21 - 00000000 ____D C:\Users\schweigelicht\Desktop\Album HISTRION
2015-08-09 22:35 - 2009-10-01 22:03 - 00154168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WimFltr.sys
2015-08-09 22:34 - 2015-08-09 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Ghost
2015-08-09 22:34 - 2015-08-09 22:34 - 00000000 ____D C:\Program Files (x86)\Norton Ghost
2015-08-09 22:34 - 2009-09-21 20:40 - 00020528 _____ (Symantec Corporation) C:\Windows\system32\Drivers\vproeventmonitor.sys
2015-08-09 22:34 - 2009-09-21 20:20 - 00170032 _____ (StorageCraft) C:\Windows\system32\Drivers\symsnap.sys
2015-08-09 22:32 - 2015-08-09 22:32 - 00003532 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-schweigelichtPC-schweigelicht
2015-08-09 21:50 - 2015-08-09 21:09 - 00001182 _____ C:\Users\schweigelicht\Desktop\Adobe After Effects CC 2015.lnk
2015-08-09 21:39 - 2015-08-09 20:12 - 00001066 _____ C:\Users\schweigelicht\Desktop\Adobe Premiere Pro CC 2015.lnk
2015-08-09 21:34 - 2015-08-09 21:32 - 00002453 _____ C:\Users\schweigelicht\Desktop\Adobe Acrobat DC.lnk
2015-08-09 21:32 - 2015-08-09 21:32 - 00002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2015-08-09 21:32 - 2015-08-09 21:32 - 00002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2015-08-09 21:22 - 2015-08-09 21:14 - 00000944 _____ C:\Users\schweigelicht\Desktop\Adobe Muse CC 2015.lnk
2015-08-09 21:14 - 2015-08-09 21:14 - 00000944 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Muse CC 2015.lnk
2015-08-09 21:09 - 2015-08-09 21:09 - 00001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2015.lnk
2015-08-09 21:07 - 2015-08-09 21:07 - 00001288 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Character Animator (Preview).lnk
2015-08-09 20:46 - 2015-08-09 20:29 - 00001078 _____ C:\Users\schweigelicht\Desktop\Adobe Media Encoder CC 2015.lnk
2015-08-09 20:29 - 2015-08-09 20:29 - 00001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2015.lnk
2015-08-09 20:12 - 2015-08-09 20:12 - 00001066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2015.lnk
2015-08-09 19:54 - 2015-08-09 19:50 - 00000988 _____ C:\Users\schweigelicht\Desktop\Adobe InDesign CC 2015.lnk
2015-08-09 19:50 - 2015-08-09 19:50 - 00000988 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe InDesign CC 2015.lnk
2015-08-09 19:48 - 2015-08-09 19:30 - 00001443 _____ C:\Users\schweigelicht\Desktop\Adobe Illustrator CC 2015.lnk
2015-08-09 19:30 - 2015-08-09 19:30 - 00001443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2015.lnk
2015-08-09 19:30 - 2015-08-09 19:30 - 00000000 ____D C:\ProgramData\ALM
2015-08-09 19:17 - 2015-08-09 18:43 - 00001000 _____ C:\Users\schweigelicht\Desktop\Adobe Photoshop CC 2015.lnk
2015-08-09 19:01 - 2015-08-09 19:01 - 00000840 _____ C:\Users\schweigelicht\Desktop\HÖRWERKE.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000857 _____ C:\Users\schweigelicht\Desktop\WORK Trainerpersönlichkeiten.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000776 _____ C:\Users\schweigelicht\Desktop\INSPIRATION SPRACHE.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000758 _____ C:\Users\schweigelicht\Desktop\K&Z-YOUTUBE-DATEN.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000758 _____ C:\Users\schweigelicht\Desktop\INSPIRATION TICRO.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000749 _____ C:\Users\schweigelicht\Desktop\BIOGRAFIE-ORDNER.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000731 _____ C:\Users\schweigelicht\Desktop\WORK MASTERING.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000704 _____ C:\Users\schweigelicht\Desktop\WORK GESANG.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000704 _____ C:\Users\schweigelicht\Desktop\VIDEO [K&Z].lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000704 _____ C:\Users\schweigelicht\Desktop\INSPIRATION.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000686 _____ C:\Users\schweigelicht\Desktop\WORKSHOPS.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000686 _____ C:\Users\schweigelicht\Desktop\RECHERCHE.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000666 _____ C:\Users\schweigelicht\Desktop\SAMPLES.lnk
2015-08-09 18:51 - 2015-08-09 18:51 - 00000754 _____ C:\Users\schweigelicht\Desktop\VIDEO-ROHMATERIAL.lnk
2015-08-09 18:51 - 2015-08-09 18:51 - 00000709 _____ C:\Users\schweigelicht\Desktop\PROJEKTDATEI.lnk
2015-08-09 18:51 - 2015-08-09 18:51 - 00000633 _____ C:\Users\schweigelicht\Desktop\ZfkN.lnk
2015-08-09 18:50 - 2015-08-09 18:50 - 00000835 _____ C:\Users\schweigelicht\Desktop\DAS SCHWARZE GÄNSEBLÜMCHEN.lnk
2015-08-09 18:50 - 2015-08-09 18:50 - 00000700 _____ C:\Users\schweigelicht\Desktop\RADIO-DATEN.lnk
2015-08-09 18:50 - 2015-08-09 18:50 - 00000653 _____ C:\Users\schweigelicht\Desktop\BILDER.lnk
2015-08-09 18:50 - 2015-08-09 18:50 - 00000642 _____ C:\Users\schweigelicht\Desktop\MUSIK.lnk
2015-08-09 18:50 - 2015-08-09 18:50 - 00000633 _____ C:\Users\schweigelicht\Desktop\TEXT.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00001226 _____ C:\Users\schweigelicht\Desktop\ALBUM Radio Schweigelicht (SPOT, Der wahre Jakob).lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00001172 _____ C:\Users\schweigelicht\Desktop\BUCH Welt und Selbst, Der verkörperte Geist.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00001100 _____ C:\Users\schweigelicht\Desktop\BUCH Kleidung und materielle Kultur.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00001010 _____ C:\Users\schweigelicht\Desktop\ESSAY Theater, Schauspiel.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00001001 _____ C:\Users\schweigelicht\Desktop\ESSAY Medici und Florenz.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000992 _____ C:\Users\schweigelicht\Desktop\ESSAY Stimme und Gesang.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000929 _____ C:\Users\schweigelicht\Desktop\ESSAY Selbstmord.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000911 _____ C:\Users\schweigelicht\Desktop\BUCH Ernährung.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000911 _____ C:\Users\schweigelicht\Desktop\ALBUM Histrion.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000893 _____ C:\Users\schweigelicht\Desktop\OFFENE TEXTE.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000875 _____ C:\Users\schweigelicht\Desktop\BUCH Story.lnk
2015-08-09 18:43 - 2015-08-09 18:43 - 00001000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.lnk
2015-08-09 18:34 - 2015-08-09 18:34 - 00000494 _____ C:\Users\schweigelicht\Desktop\Lokaler Datenträger (E).lnk
2015-08-09 18:34 - 2015-08-09 18:34 - 00000466 _____ C:\Users\schweigelicht\Desktop\DATA (G).lnk
2015-08-09 18:33 - 2015-08-09 18:33 - 00000494 _____ C:\Users\schweigelicht\Desktop\Lokaler Datenträger (F).lnk
2015-08-09 18:21 - 2015-08-16 13:37 - 00000000 ___RD C:\Users\schweigelicht\Creative Cloud Files
2015-08-09 18:21 - 2015-08-09 18:21 - 00001225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-08-09 18:21 - 2015-08-09 18:21 - 00001213 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-08-09 18:14 - 2015-08-09 18:21 - 00000000 ___RD C:\Users\schweigelicht\Creative Cloud Files (2)
2015-07-26 01:00 - 2015-08-16 13:36 - 00001146 _____ C:\Windows\setupact.log
2015-07-26 01:00 - 2015-07-26 01:00 - 00000000 _____ C:\Windows\setuperr.log
2015-07-19 20:43 - 2015-07-19 20:43 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\CEF

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-16 13:39 - 2013-08-20 17:45 - 02028951 _____ C:\Windows\WindowsUpdate.log
2015-08-16 13:38 - 2009-07-14 06:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-16 13:38 - 2009-07-14 06:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-16 13:37 - 2015-03-05 22:19 - 02245355 _____ C:\Windows\avmfwlanci.log
2015-08-16 13:37 - 2013-08-27 19:07 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Azureus
2015-08-16 13:37 - 2013-08-20 19:52 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Adobe
2015-08-16 13:36 - 2015-07-07 23:34 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-16 13:36 - 2015-05-02 03:31 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-08-16 13:36 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-16 13:35 - 2013-08-21 07:51 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\vlc
2015-08-16 13:33 - 2013-09-09 18:28 - 00825306 _____ C:\Windows\PFRO.log
2015-08-16 13:25 - 2013-08-20 22:13 - 00000000 ____D C:\Users\schweigelicht\Desktop\Internet ORDNER
2015-08-16 13:22 - 2014-10-03 03:05 - 00006640 _____ C:\Users\schweigelicht\Desktop\DesktopOK.ini
2015-08-16 00:47 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-15 23:19 - 2013-09-25 21:22 - 00744293 _____ C:\Windows\DirectX.log
2015-08-15 16:01 - 2015-05-17 06:23 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Battle.net
2015-08-15 14:56 - 2014-09-16 23:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-14 20:00 - 2015-03-20 23:52 - 00000000 ____D C:\Users\schweigelicht\Documents\Apowersoft Free Audio Recorder
2015-08-12 05:47 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-08-12 05:46 - 2015-06-05 18:46 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-08-11 18:39 - 2011-04-12 09:43 - 00700986 _____ C:\Windows\system32\perfh007.dat
2015-08-11 18:39 - 2011-04-12 09:43 - 00149886 _____ C:\Windows\system32\perfc007.dat
2015-08-11 18:39 - 2009-07-14 07:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-10 20:01 - 2015-01-14 23:53 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-08-09 23:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Registration
2015-08-09 22:34 - 2013-08-20 18:52 - 00000000 ____D C:\ProgramData\Symantec
2015-08-09 22:30 - 2013-09-09 18:28 - 11008792 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-09 22:30 - 2013-08-20 17:48 - 00000000 ____D C:\Users\schweigelicht
2015-08-09 22:25 - 2013-09-10 18:08 - 00206608 _____ C:\Users\schweigelicht\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-09 21:33 - 2015-06-24 23:18 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-08-09 21:31 - 2013-08-20 19:56 - 00000000 ____D C:\ProgramData\Adobe
2015-08-09 21:31 - 2013-08-20 19:56 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-08-09 21:14 - 2013-08-21 08:56 - 00000000 ____D C:\Program Files\Adobe
2015-08-09 21:07 - 2013-08-21 08:53 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-08-09 18:43 - 2013-08-22 14:41 - 00000000 ____D C:\Users\schweigelicht\Documents\Adobe
2015-08-09 18:14 - 2015-04-09 06:12 - 00000000 ___RD C:\Users\schweigelicht\Creative Cloud Files (1)
2015-08-09 13:14 - 2015-04-24 23:58 - 00000000 ____D C:\Users\schweigelicht\Desktop\PODCAST
2015-08-08 23:11 - 2014-08-10 06:53 - 00000034 _____ C:\Users\schweigelicht\AppData\Roaming\AdobeWLCMCache.dat
2015-08-08 19:23 - 2014-04-30 19:09 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\CrashDumps
2015-08-07 18:16 - 2013-08-21 20:57 - 00001163 _____ C:\Users\Public\Desktop\MAGIX Audio Cleaning Lab 2013.lnk
2015-08-07 18:16 - 2013-08-20 20:18 - 00000000 ____D C:\ProgramData\MAGIX
2015-08-07 18:16 - 2013-08-20 20:18 - 00000000 ____D C:\Program Files (x86)\MAGIX
2015-08-06 21:56 - 2015-03-06 14:19 - 00003866 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1384774558
2015-08-06 21:56 - 2013-11-18 13:35 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-04 06:40 - 2014-06-15 15:37 - 00000000 ____D C:\ProgramData\Origin
2015-08-04 04:32 - 2014-03-23 21:21 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2015-07-26 21:15 - 2015-04-14 01:56 - 00000000 ____D C:\Users\schweigelicht\Desktop\ISSUE 3
2015-07-26 16:45 - 2014-05-09 15:33 - 00001456 _____ C:\Users\schweigelicht\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2015-07-25 23:59 - 2014-10-03 02:35 - 00000000 ____D C:\Windows\Minidump
2015-07-25 20:53 - 2015-05-12 03:53 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\iZotope
2015-07-22 16:55 - 2015-04-03 11:50 - 00000112 _____ C:\Users\schweigelicht\Desktop\BoD.txt
2015-07-18 11:10 - 2014-12-06 06:33 - 00039946 ____H C:\Users\schweigelicht\Desktop\~WRL1357.tmp

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-12-26 15:33 - 2014-06-10 22:27 - 0000132 _____ () C:\Users\schweigelicht\AppData\Roaming\Adobe PNG-Format CC - Voreinstellungen
2014-08-10 06:53 - 2015-08-08 23:11 - 0000034 _____ () C:\Users\schweigelicht\AppData\Roaming\AdobeWLCMCache.dat
2015-01-07 22:37 - 2015-01-07 23:05 - 0000465 _____ () C:\Users\schweigelicht\AppData\Roaming\apachesrvin.vbs
2015-01-07 22:37 - 2015-01-07 23:05 - 0000122 _____ () C:\Users\schweigelicht\AppData\Roaming\die.bat
2015-04-26 05:44 - 2015-06-26 20:41 - 0000028 _____ () C:\Users\schweigelicht\AppData\Roaming\kulerdata.json
2014-05-09 15:33 - 2015-07-26 16:45 - 0001456 _____ () C:\Users\schweigelicht\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2014-07-29 18:31 - 2014-07-29 18:31 - 0001497 _____ () C:\Users\schweigelicht\AppData\Local\RecConfig.xml
2015-05-07 15:51 - 2015-05-07 15:51 - 0000017 _____ () C:\Users\schweigelicht\AppData\Local\resmon.resmoncfg
2015-03-05 22:06 - 2015-03-05 22:06 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-08-20 20:34 - 2015-05-31 22:35 - 0020089 _____ () C:\ProgramData\hpzinstall.log

Einige Dateien in TEMP:
====================
C:\Users\schweigelicht\AppData\Local\Temp\i4jdel0.exe
C:\Users\schweigelicht\AppData\Local\Temp\patchw32.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-15 16:29

==================== Ende von Ergebnis ============================

sgb · 16.08.2015, 12:45

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:14-08-2015 01
durchgeführt von schweigelicht (2015-08-16 13:40:20)
Gestartet von C:\Users\schweigelicht\Desktop
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1641480961-1619121124-1950988501-500 - Administrator - Disabled)
Gast (S-1-5-21-1641480961-1619121124-1950988501-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1641480961-1619121124-1950988501-1043 - Limited - Enabled)
schweigelicht (S-1-5-21-1641480961-1619121124-1950988501-1000 - Administrator - Enabled) => C:\Users\schweigelicht

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version:  - Microsoft)
2007 Microsoft Office Suite Service Pack 1 (SP1) (x32 Version:  - Microsoft) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Ableton Live 9 Suite (HKLM\...\{629C521E-5C03-4A17-9851-F8313A41BB20}) (Version: 9.0.0.0 - Ableton)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe After Effects CC 2015 (HKLM-x32\...\{147EC100-14BE-45EF-AB42-35BAEE7D02F0}) (Version: 13.5.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.2.0.129 - Adobe Systems Incorporated)
Adobe Illustrator CC 2015 (HKLM-x32\...\{5680D629-B263-49CC-821E-3CEBD4507B51}) (Version: 19.1.0 - Adobe Systems Incorporated)
Adobe InDesign CC 2015 (HKLM-x32\...\{DBFD0312-6E55-1014-8952-E78D43BC0147}) (Version: 11.1.0.122 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.0.1 - Adobe Systems Incorporated)
Adobe Muse CC 2015 (HKLM-x32\...\{25CC1EC0-19D9-11E5-952D-BD72CD08879E}) (Version: 2015.0.2.4 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0.1 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.1 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Antares Autotune Evo VST RTAS v6.0.9 (HKLM-x32\...\Antares Autotune Evo VST RTAS_is1) (Version:  - )
Antares Autotune VST RTAS TDM v5.08 (HKLM-x32\...\Antares Autotune VST RTAS TDM_is1) (Version:  - Team AiR 2007)
Antares Filter VST DX v1.01 (HKLM-x32\...\Antares Filter VST DX v1.01) (Version:  - )
Apowersoft Gratis - Audiorekorder V2.3.4 (HKLM-x32\...\{E35F91E4-C68C-43E8-BE90-35CDEE4E5730}_is1) (Version: 2.3.4 - APOWERSOFT LIMITED)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft SimHD IM Plug-In (HKLM-x32\...\{95E86EDF-A28E-469A-9E2E-87CAE5A5B069}) (Version: 1.2.1.4 - ArcSoft)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
ATI AVIVO64 Codecs (Version: 11.1.0.50406 - ATI Technologies Inc.) Hidden
Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: 1.2.0.0 - AVM Berlin)
B209a-m (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.72.1.2014 - Georgy Berdyshev)
Citavi 4 (HKLM-x32\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.0.0.12 - Swiss Academic Software)
CorelDRAW Graphics Suite X5 - Windows Shell Extension 64 Bit (Version: 15.1.588 - Corel Corporation) Hidden
Dropbox (HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Evernote v. 5.5.3 (HKLM-x32\...\{B1A0F908-1448-11E4-8684-00163E98E7D0}) (Version: 5.5.3.4236 - Evernote Corp.)
FileZilla Client 3.9.0.6 (HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\FileZilla Client) (Version: 3.9.0.6 - Tim Kosse)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{6C5F8503-55D2-4398-858C-362B7A7AF51C}) (Version: 2.1.31.0 - MAGIX AG)
Gigabyte Raid Configurer (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - Gigabyte Technology Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HydraVision (x32 Version: 4.2.148.0 - ATI Technologies Inc.) Hidden
IHMC CmapTools v5.03 (HKLM-x32\...\IHMC CmapTools v5.03) (Version: 5.0.0.3 - Institute for Human & Machine Cognition)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
iTunes (HKLM\...\{4046F74A-28F8-48C6-A5D3-2AFC472574C1}) (Version: 12.2.0.145 - Apple Inc.)
iZotope RX 2 (HKLM-x32\...\iZotope RX 2_is1) (Version: 2.02 - iZotope, Inc.)
LibreOffice 4.3.0.4 (HKLM-x32\...\{5C005E2A-AEAE-4DF7-B7CA-1E6DCDD2AEA4}) (Version: 4.3.0.4 - The Document Foundation)
Line 6 Uninstaller (HKLM-x32\...\Line 6 Uninstaller) (Version:  - Line 6)
MAGIX Audio Cleaning Lab 2013 (HKLM-x32\...\MAGIX_{97E2116F-CC11-4EDA-B179-78CB6A89D836}) (Version: 19.0.0.10 - MAGIX AG)
MAGIX Audio Cleaning Lab 2013 (Version: 19.0.0.10 - MAGIX AG) Hidden
Magix Audio Cleaning Lab 2013 Update (Version: 19.0.1.12 - MAGIX AG) Hidden
MAGIX Burn routines (64-Bit) (HKLM\...\{49146694-5F5F-4B1F-AD15-6587F47A0FD7}) (Version: 9.0.0.212 - MAGIX AG)
MAGIX Content und Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Low Latency Driver (64-Bit) (HKLM\...\{42976FDB-5756-4077-A491-095F228E99E2}) (Version: 2.10.2011.0 - MAGIX AG)
MAGIX Music Maker 2013 Premium (HKLM-x32\...\MAGIX_{8040CA6C-16F1-47B5-BB2E-E63F32B7E67F}) (Version: 19.0.1.36 - MAGIX AG)
MAGIX Music Maker 2013 Premium (Version: 19.0.1.36 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Premium Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Screenshare (HKLM-x32\...\MAGIX_{92852E20-128F-44C3-92EB-3A7506F9DB2C}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare (Version: 4.3.6.1987 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MAGIX_{7F4DE580-F810-431C-8730-34F6CD89C4F6}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
Magix Video Pro X3 - DVD Templates (HKLM-x32\...\Magix Video Pro X3 - DVD Templates) (Version: 1.0 - L e x y | artist)
MAGIX Video Pro X3 Download-Version (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_pro) (Version: 10.0.5.22 - MAGIX AG)
MAGIX Video Pro X3 Download-Version (x32 Version: 10.0.5.22 - MAGIX AG) Hidden
MeldaProduction Audio Plugins 9 (HKLM-x32\...\MeldaProduction Audio Plugins 9) (Version:  - MeldaProduction)
Melodyne Runtime 4.1 (x64) (HKLM\...\{53EE2829-E9DB-4913-B3EA-96F10F84E98B}) (Version: 1.0.1 - Celemony Software GmbH)
Microsoft – Speichern als PDF oder XPS – Add-In für 2007 Microsoft Office-Programme (HKLM-x32\...\{90120000-00B2-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 DEU Language Pack (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6215.1000 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{13C9CD03-A5FE-4F50-AC8A-17B77C38CC52}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 40.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0 (x86 de)) (Version: 40.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.0.5697 - Mozilla)
MP3 To Wave Converter PLUS (HKLM-x32\...\MP3 To Wave Converter PLUS) (Version: 2.33 - Acoustica, Inc.)
Mp3tag v2.65 (HKLM-x32\...\Mp3tag) (Version: v2.65 - Florian Heidenreich)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden
Norton Ghost (HKLM-x32\...\{B0255743-165B-4BD5-8DA8-37DFB9930015}) (Version: 15.0.0.35659 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.3 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Opera Stable 31.0.1889.99 (HKLM-x32\...\Opera 31.0.1889.99) (Version: 31.0.1889.99 - Opera Software)
Pamela Pro 4.9 (HKLM-x32\...\Pamela) (Version: 4.9 - PamConsult GmbH)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PITCHMAP AAX-x64 1.6.1 (HKLM\...\{8ADD7B21-5CB9-4c79-A1A7-2B050F736A23}) (Version: 1.6.1 - Zynaptiq)
PITCHMAP VST 1.6.1 (HKLM-x32\...\{9B24435E-CD77-4fc1-AC03-AD4555783205}) (Version: 1.6.1 - Zynaptiq)
PITCHMAP VST-x64 1.6.1 (HKLM\...\{F9754DD6-985B-4e93-A96B-837EE5415F61}) (Version: 1.6.1 - Zynaptiq)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.6 - Power Software Ltd)
PreSonus Studio One 2 x64 (HKLM\...\PreSonus Studio One 2) (Version: 2.6.0.24200 - PreSonus Audio Electronics)
PriMus Free 1.1 (Build 10843) (HKLM-x32\...\PriMus Free_is1) (Version: 1.1.0.10843 - Columbus Soft)
PS_AIO_06_B209a-m_SW_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
RAD Video Tools (HKLM-x32\...\RADVideo) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
Samplitude Music Studio 16 (HKLM-x32\...\ms16dlx) (Version: 16.0.0.3 - MAGIX AG)
Samplitude Music Studio 16 (x32 Version: 16.0.0.3 - MAGIX AG) Hidden
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.7 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.103 - Skype Technologies S.A.)
Snagit 11 (HKLM-x32\...\{D0CC22F6-A67A-4083-A043-E0640CB7A4DF}) (Version: 11.2.1 - TechSmith Corporation)
Softube Tonelux Tilt VST RTAS v1.0 (HKLM-x32\...\Softube Tonelux Tilt_is1) (Version:  - )
SolutionCenter (x32 Version: 140.0.213.000 - Hewlett-Packard) Hidden
Steinberg Cubase 5 (HKLM-x32\...\{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}) (Version: 5.1.0 - Steinberg Media Technologies GmbH)
Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 1.0.0.1 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg HALionOne (HKLM-x32\...\{E70E7159-93B1-470D-9FBD-D8E9EF34B538}) (Version: 1.1.0.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Additional Content Set 01 (HKLM-x32\...\{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}) (Version: 1.0.0.001 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Expression Set (HKLM-x32\...\{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}) (Version: 1.0.1.0 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Drum Set (HKLM-x32\...\{AC997F93-0757-4ED4-A701-F40C2D654D09}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Set (HKLM-x32\...\{F057965A-D974-4C64-ADB1-4381CD4B8956}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Pro Set (HKLM-x32\...\{D82CDA0D-C182-42C8-8FF2-5649C98D6003}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Drum Set (HKLM-x32\...\{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Set (HKLM-x32\...\{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 1.0.0.005 - Steinberg Media Technologies GmbH)
Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 1.0.0.006 - Steinberg Media Technologies GmbH)
Text-To-Speech-Runtime (HKLM-x32\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
Trust USB Audio (HKLM\...\C-Media CM106 Like Sound Driver) (Version:  - )
UNFILTER VST 1.2.1 (HKLM-x32\...\{C3111879-D904-42A9-B3A9-A16511FCF949}) (Version: 1.2.1 - Zynaptiq)
VirtualDJ 8 (HKLM-x32\...\{8C066069-C573-4F2E-A01C-D3156CF28DDC}) (Version: 8.0.2206.0 - Atomix Productions)
Vita 2 (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita 2 Zusatzcontent (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Bass Machine (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Rock Drums (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita String Ensemble (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita World Percussion (Version: 1.0.0.0 - MAGIX AG) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.1.0.0 - Azureus Software, Inc.)
Wacom Tablett (HKLM\...\Wacom Tablet Driver) (Version: 6.3.8-3 - Wacom Technology Corp.)
WAHRIG.digital 2.1 (HKLM-x32\...\WAHRIGdigital2006_is1) (Version: 2.1 - Wissen Media Verlag GmbH, Gütersloh / München)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
WinHTTrack Website Copier 3.47-21 (HKLM-x32\...\WinHTTrack Website Copier_is1) (Version: 3.47.21 - HTTrack)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinSnap (HKLM-x32\...\WinSnap) (Version: 3.5.3 - NTWind Software)
XAMPP (HKLM-x32\...\xampp) (Version: 1.8.3-5 - Bitnami)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Wiederherstellungspunkte =========================


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {06B671DA-1E96-4FEF-A943-70A36ABCAE96} - System32\Tasks\{21FFD0E8-7D98-46FA-BD9C-99237285C387} => H:\SETUP\GERMAN\SETUP.EXE
Task: {0C983280-7152-4846-A4D8-55C966D24A45} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-14] (Microsoft Corporation)
Task: {0F191120-A3F9-4B16-ABAB-61958C65CC1F} - System32\Tasks\{CBE7CF75-B054-49D7-ADAE-8AEB91CC3430} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe
Task: {148F4D66-F268-436E-A2EC-84581BA8D499} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-22] (Avast Software s.r.o.)
Task: {14AAC377-09CD-4F14-8809-4D3DC8ABAB62} - System32\Tasks\{AE9E01BE-E84E-448E-9BAA-74A615613DF0} => F:\DATEN (NUR EXTERN)\GAMES\1997 – Theme Hospital\SETUP.EXE
Task: {26046EB5-53B7-41C3-8730-9DBC29708D80} - System32\Tasks\{6EA54632-81EC-4BC5-8F06-2D6F82A62C67} => H:\SETUP\GERMAN\SETUP.EXE
Task: {2B7D6A86-D918-41D6-88DE-AC3D5C492258} - System32\Tasks\{3C3B3609-2226-4EE6-B3FF-3992984842B6} => G:\RAY2.exe
Task: {30C1157D-DB31-433E-8370-3DD345315B02} - System32\Tasks\{1DCDD6A9-E4BA-4EAA-9B49-37E166058254} => G:\RAY2.exe
Task: {331C7C4B-BB37-4F27-A1D4-8D7903B2F22E} - System32\Tasks\{2F572957-DC53-44F3-8871-9600C19539C7} => C:\Users\schweigelicht\Desktop\Internet ORDNER\StarCraft-II-Setup-deDE.exe
Task: {374A89A9-F313-43C0-B646-34EE50AED3E7} - System32\Tasks\{D4B27500-911C-443D-A46E-83C15E6851F5} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\SETUP\GERMAN\SETUP.EXE
Task: {3B797EFB-AB9D-49F7-B9FE-3D444679A4FE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {4081F390-2884-48DF-BF57-046C46058E5D} - System32\Tasks\{EACBDA8F-E493-403E-96E1-89DCA0E202D8} => F:\DATEN (NUR EXTERN)\GAMES\1995 – Rayman\SETUP.EXE
Task: {4B4EF42C-4D75-4336-8078-44D23C9C88C8} - System32\Tasks\{05D92468-A6EA-4C94-9FB6-84CFA03641F1} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe
Task: {5496E36F-9037-4179-BABE-5348878C731F} - System32\Tasks\{107851F0-6D61-431D-A447-B9F354F77FFB} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe
Task: {58F78323-6B96-4474-B497-5B37C7260E94} - System32\Tasks\AdobeAAMUpdater-1.0-schweigelichtPC-schweigelicht => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-07-22] (Adobe Systems Incorporated)
Task: {696250E7-60CE-44FE-B038-D24F55BA9FDD} - System32\Tasks\{B3CA8F19-E841-4583-A895-08349923D305} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN.EXE
Task: {7094CDE3-D38C-4149-98BF-719E91DCA61A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-07] (Google Inc.)
Task: {78B2172C-EC3E-47BD-BB78-D3D90A4DF3DE} - System32\Tasks\{EBF0B383-9564-4B03-A4CD-C56A863D30B1} => C:\Program Files (x86)\Tomb Raider Collection - Volume 1\Tomb Raider 3\tomb3.exe
Task: {79476D79-0885-4E98-B062-3A6216A7942F} - System32\Tasks\{B4FF8479-CF1F-449F-B71B-B052B926B927} => C:\Program Files (x86)\QfG\Sleeping Dogs\HKShip.exe
Task: {7DB8E8BC-1974-4B2E-A08E-8B1C764C7F97} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {7F4C0C07-6AA3-454D-BD70-9D103541F575} - System32\Tasks\{F1CB8254-8F3E-40A9-890D-0ED632428FF5} => C:\MAGIX\MusicStudio2007deluxe\MusicStudio.exe
Task: {86EE9715-BA4B-4819-9AE6-8CA6748F2AA9} - System32\Tasks\{AF2BF1A6-86A3-4D66-BA9E-9E429ACEE189} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\FCOPLAPD\FCOPLAPD.EXE
Task: {929EF4BC-48E6-42EC-8D36-85791EF986D9} - System32\Tasks\{FC666524-C691-4593-8B77-FCEA5EF95EFC} => pcalua.exe -a C:\AudioSuite\AudioRecorder\UninstalAR.exe
Task: {939AC728-5575-42BE-9755-3E8ABC2B674D} - System32\Tasks\{9BEA152B-7D77-4BB0-B1B3-FA8702DFC810} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe
Task: {93C6FADA-E3A2-4DEA-87CC-04D1C0131AE7} - System32\Tasks\{13B24290-0D75-489F-A348-4B29180B732E} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN.EXE
Task: {98506311-66CE-4E72-8AB3-A0F86E273FB0} - System32\Tasks\{AA7E714C-07A0-4E30-B4CF-A2E5CBE23038} => Chrome.exe hxxp://ui.skype.com/ui/0/6.10.0.104/de/abandoninstall?page=tsProgressBar
Task: {9F8CD049-A0FD-4F53-AE0B-1BE8699639DB} - System32\Tasks\{656C4DA3-7889-49CF-8108-F5EFD8022C1C} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN.EXE
Task: {9FFE2703-F026-4283-ACD5-3C5B73447C51} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-07] (Google Inc.)
Task: {A0DA0F74-E206-4120-BFB2-34A5675128D3} - System32\Tasks\{E359A738-C430-4346-B193-A6BC04ECEA47} => G:\RUNSETUP.EXE
Task: {A1BA65FC-2434-4184-8083-FD0703953198} - System32\Tasks\{7ABE90FA-B89C-4A29-A4A2-F795DFAC42C9} => F:\SETUP\GERMAN\SETUP.EXE
Task: {A3C9EF44-8E18-4D08-83EC-27EEE3FB9D87} - System32\Tasks\{69BE9EE6-A495-4DA7-A4F9-329733B7C26D} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\WINMAIN.EXE
Task: {A89E1040-1F77-4B34-97E3-9F5C46095E63} - System32\Tasks\{CD3F0F1E-6475-458E-9112-1BE9B8DE723D} => C:\Program Files (x86)\Tomb Raider Collection - Volume 1\Tomb Raider 3\tomb3.exe
Task: {AFEB05A0-8949-4557-9C70-AEC00FA82ED8} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {B1B8FE39-F217-40A1-B7A8-29891336A091} - System32\Tasks\{56BD0CDC-681F-464D-80A1-691B244605FA} => C:\Program Files (x86)\Activision\Star Trek Armada II\Armada2.exe
Task: {B217BA0D-150C-4A81-B3E1-9BE4759006CA} - System32\Tasks\{18D07478-1F47-4912-8FD2-8F2D9F64943B} => G:\RUNSETUP.EXE
Task: {B2C23F03-CDFF-4E2A-A558-8C15B7214B2F} - System32\Tasks\{C106FEF3-5CE3-4511-B0F1-8B942C099749} => C:\Program Files (x86)\GOG.com\Dark Reign\Dark Reign - Original Game.exe
Task: {C8F71027-3F10-454B-A9A1-E71774E1421A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {C93270B9-B8EB-455C-A73B-52EC22EF3AB1} - System32\Tasks\{B4D5465B-288D-41DA-98CA-C50FD5FEF459} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN\IP.EXE
Task: {DCFC5C6B-0731-4716-A207-5598AF1B7946} - System32\Tasks\{07231851-9595-451D-8828-82F50C86676D} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\DOS4GW.EXE
Task: {E2CBDA61-BC94-49A0-ADB8-95A2553B93D9} - System32\Tasks\{8A993AD3-0A81-4907-A095-D36D785824CF} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\FCOPLAPD\FCOPLAPD.EXE
Task: {EF8DD41D-FEDE-4E1E-BAAB-7E36FFC7965B} - System32\Tasks\{74B076E3-4857-4DC6-A27E-1AF2C33D1CB7} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\DOS4GW.EXE
Task: {EFDB7D0D-0C30-4045-9277-BCA9AF6BB578} - System32\Tasks\Opera scheduled Autoupdate 1384774558 => C:\Program Files (x86)\Opera\launcher.exe [2015-07-30] (Opera Software)
Task: {F10ED477-098F-4CB8-AB36-DFF03850821E} - System32\Tasks\{41530A16-8497-40E4-B87B-BB4F6EF27F6C} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{D4DE3DB4-7734-47E5-8D92-B80146311406}\setup.exe" -c -runfromtemp -l0x0007 -removeonly
Task: {FFEC1312-7FDD-43EF-A378-CB2FCA92286C} - System32\Tasks\{5E660AA8-9BBC-4E86-A6AA-CF5F342C0B2C} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\DOS4GW.EXE

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-03-20 18:12 - 2015-03-20 18:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-07-22 01:02 - 2015-07-22 01:02 - 00803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2014-05-01 21:29 - 2014-05-01 21:29 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2015-08-13 18:55 - 2015-08-08 03:30 - 01763144 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libglesv2.dll
2015-08-13 18:55 - 2015-08-08 03:30 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libegl.dll
2015-07-22 01:02 - 2015-07-22 01:02 - 31535264 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2015-04-16 16:15 - 2015-04-16 16:15 - 00143891 _____ () C:\Program Files\VideoLAN\VLC\libvlc.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 02750483 _____ () C:\Program Files\VideoLAN\VLC\libvlccore.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00618515 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00079379 _____ () C:\Program Files\VideoLAN\VLC\libgcc_s_seh-1.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00038419 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00035347 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00083987 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00075795 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 02479123 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00111123 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00259603 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00083475 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libvdr_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00051731 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00066579 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00672275 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00825363 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00132627 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00047635 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\librar_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00142867 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 01597459 _____ () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00341523 _____ () C:\Program Files\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 01478163 _____ () C:\Program Files\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00021011 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libwin_msg_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00060435 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00229907 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00044051 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libwin_hotkeys_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00101395 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00101395 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 02223635 _____ () C:\Program Files\VideoLAN\VLC\plugins\gui\libskins2_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00086547 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00032275 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libes_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00026643 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00019987 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libtta_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00086547 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00026131 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libwav_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00025619 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libcaf_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 01060883 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libsid_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00136723 _____ () C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 01420819 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libdiracsys_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00389651 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libogg_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00803347 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\liblive555_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00027155 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00527891 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libgme_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00029715 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libimage_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libxa_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00024595 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libpva_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00022035 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libvoc_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libau_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00042003 _____ () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 12272659 _____ () C:\Program Files\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00323091 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libjpeg_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00023571 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00345619 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00331795 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00021011 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00192019 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00837139 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00020499 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00027667 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00088083 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00027667 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00036883 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00026643 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00078355 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00041491 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00022547 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00024595 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00030739 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00030739 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00023571 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libcvdsub_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00021523 _____ () C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_hevc_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 14624275 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libavcodec_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00023571 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 01513491 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00025107 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00042003 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00048659 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libsubstx3g_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00430099 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00031251 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 01805331 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00418835 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00024083 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liba52_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00026643 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00141331 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00188947 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00083987 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 01507859 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00029203 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00017939 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00024595 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00018451 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00022035 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2015-04-16 16:16 - 2015-04-16 16:16 - 00043539 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00043027 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_sse2_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00030227 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_mmx_plugin.dll
2015-04-16 16:15 - 2015-04-16 16:15 - 00751635 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libswscale_plugin.dll
2015-06-05 18:54 - 2015-06-05 18:54 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-06-05 18:54 - 2015-06-05 18:54 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-08-10 21:00 - 2015-08-10 21:00 - 02960384 _____ () C:\Program Files\AVAST Software\Avast\defs\15081003\algo.dll
2015-08-16 13:38 - 2015-08-16 13:38 - 02962432 _____ () C:\Program Files\AVAST Software\Avast\defs\15081502\algo.dll
2015-06-05 18:54 - 2015-06-05 18:54 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-07-22 15:32 - 2015-07-22 15:32 - 36732592 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\de_de\acrotray.deu
2014-10-16 11:15 - 2014-10-16 11:15 - 00035328 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2014-05-24 18:41 - 2014-05-24 18:41 - 00091648 _____ () C:\Program Files (x86)\FileZilla FTP Client\libgcc_s_sjlj-1.dll
2014-05-24 18:41 - 2014-05-24 18:41 - 00892416 _____ () C:\Program Files (x86)\FileZilla FTP Client\libstdc++-6.dll
2014-10-29 17:37 - 2014-09-28 18:59 - 00019872 _____ () C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll
2015-07-16 18:39 - 2015-07-16 18:39 - 00124416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2015-07-16 18:39 - 2015-07-16 18:39 - 00121856 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-imslib\node_modules\ref\build\Release\binding.node
2015-07-16 18:39 - 2015-07-16 18:39 - 00122880 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-imslib\node_modules\ffi\build\Release\ffi_bindings.node
2015-07-16 18:39 - 2015-07-16 18:39 - 00188416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2015-07-16 18:39 - 2015-07-16 18:39 - 00085504 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ws\build\Release\bufferutil.node
2015-07-16 18:39 - 2015-07-16 18:39 - 00086016 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ws\build\Release\validation.node
2015-07-16 18:39 - 2015-07-16 18:39 - 00081408 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\schweigelicht\AppData\Local\Temporary Internet Files:5bT4tsfXGJpFn4anilZuYxFtTM

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\line6.net -> line6.net


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: FirebirdServerMAGIXInstance => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: hpqcxs08 => 3
MSCONFIG\Services: hpqddsvc => 2
MSCONFIG\Services: HPSLPSVC => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: LiveUpdate => 3
MSCONFIG\Services: Norton Ghost => 2
MSCONFIG\Services: PSI_SVC_2 => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: SymSnapService => 3
MSCONFIG\Services: WTabletServicePro => 2
MSCONFIG\startupfolder: C:^Users^schweigelicht^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Adobe Acrobat Synchronizer => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AVMWlanClient => C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Norton Ghost 15.0 => "C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe"
MSCONFIG\startupreg: Spotify => "C:\Users\schweigelicht\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\schweigelicht\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "F:\Steam\steam.exe" -silent
MSCONFIG\startupreg: wahrig.digital => C:\Program Files (x86)\wahrig.digital\WAHRIG.exe
MSCONFIG\startupreg: WAHRIG.digital Launcher => C:\Program Files (x86)\Bertelsmann\WAHRIG.digital\wahrig.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [TCP Query User{1BB4D55A-BFB2-454A-B233-95D89D309908}C:\program files (x86)\hp\common\hpdevicedetection3.exe] => (Allow) C:\program files (x86)\hp\common\hpdevicedetection3.exe
FirewallRules: [UDP Query User{4F865A52-E42B-4528-A98B-D2A8309835B5}C:\program files (x86)\hp\common\hpdevicedetection3.exe] => (Allow) C:\program files (x86)\hp\common\hpdevicedetection3.exe
FirewallRules: [{BEC57857-92EA-48DC-B40A-F7696CF9F877}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{FDDD2B1D-1128-4ADE-9386-66A8EB9EF751}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{740141FA-7235-4C17-BE41-0251CCB9A980}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{635EEDA6-79BC-4BAA-90B5-4DD3674DCDF3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{C062DD18-1551-48B7-A262-B417030728B3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{17948A12-55C6-4497-A34E-BB69FE45AC48}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{29AFB502-0348-4B45-B747-BA81125330D8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{D9D75E66-7905-4C69-AA37-BD59245CD358}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{FB6E87DF-9F4A-4D39-B8CA-788F5A35CF68}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{277AC4D9-C22D-4436-A6C2-0E84A4792EEA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{FDFE403C-653B-4DB6-9A24-A5F223B0DB5C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{CB272906-704C-4EA1-8B9D-3B66A9B37A56}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{E2A64F31-A906-454B-8C8E-4ED830EFAAA9}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [TCP Query User{30F0C03E-99B7-42F5-AF8A-0DB6F7A9ADFD}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [UDP Query User{C58FFFA8-1C4E-4826-B2CC-49E4073FF8B6}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [TCP Query User{A43A2F36-CAB9-41D4-AEF3-29AC9259BEFE}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [UDP Query User{5F8758B3-9870-41BC-9D19-20BD2B814BE1}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [TCP Query User{7191624A-BF5A-43E1-A2E6-C73FF6424D21}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [UDP Query User{48A7FC01-1798-4FCF-B0B2-CE87A33AC172}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [{DFD561FF-8AEA-4A4A-9732-F3705A63253F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [{328CFD13-3C57-491F-A765-2C42507B43CA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [{9C756F7F-0A4C-4EBB-ABBD-38AE16E79109}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{ED50B2EF-558F-43A3-B1AC-8653E804E33F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [TCP Query User{E4BD120F-5E5E-483E-983B-91977A2BE7C7}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [UDP Query User{1426C66D-5DD0-452B-A4E3-614B19DBB5E0}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [{14D051A4-AB8F-4C8A-A5ED-43CBBB751131}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{9918AFCB-13DA-43EC-9272-B15CF4B95859}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{15746E10-6246-40A4-994C-4712EE2AA064}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [TCP Query User{EBF04171-FF2C-49C3-BFB7-2A4103B47616}C:\program files (x86)\jack\jackd.exe] => (Allow) C:\program files (x86)\jack\jackd.exe
FirewallRules: [UDP Query User{D638A3D4-C7EC-4DB7-884F-37526C55F532}C:\program files (x86)\jack\jackd.exe] => (Allow) C:\program files (x86)\jack\jackd.exe
FirewallRules: [TCP Query User{09BD45CC-D026-431E-B290-975DF3138F40}C:\program files\vuze\azureus.exe] => (Block) C:\program files\vuze\azureus.exe
FirewallRules: [UDP Query User{C5A03731-BD5B-498D-A1F7-389DAD59D0CD}C:\program files\vuze\azureus.exe] => (Block) C:\program files\vuze\azureus.exe
FirewallRules: [TCP Query User{4FCE6697-EA13-4E28-BD47-D7CDA6294F30}C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{F80D6154-4438-4C35-BF08-E2B5F6E0BBF3}C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{768B62FA-2E4C-4884-9868-C8EB2B8EE6AB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{AB9E3DD7-22A1-4412-A7CD-ECD1C32BDF88}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{91E71C0C-2C16-46A5-85CB-252A3CEBA28A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{92F238E4-1B71-4881-A58E-024D53B680DF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [TCP Query User{375B0469-B93D-4441-8F84-2F8D964C71CA}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [UDP Query User{B4CCD6DF-CC75-4820-9050-6016969469BC}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [TCP Query User{4A80C927-DB05-4C4F-8DE5-6CC500B5042D}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [UDP Query User{587BCA1F-ECC1-40DB-91C7-6A250C5576DA}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [TCP Query User{B97B9BB4-E387-4C4D-AC0D-D5842B5FBD2D}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [UDP Query User{3D5A60D0-88AD-447E-972E-C3EEB2A6DCEC}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [{32B34A85-C612-4495-9D75-61B230DF2836}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{DA07BD13-0029-4276-83F5-B09369086DF5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{5BAB4D96-2162-43FF-A9D0-8A7E19210224}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{826EFE4F-36F1-4716-A962-07AA7B3E8D11}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{C75000DE-3881-4BB5-9ACA-E4DDBF3B89F8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D3866B73-2853-41C6-89BB-99CF822020DB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{46818340-EBEF-47D2-8D97-335EFA93E53A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{AB54303E-0D2C-42D5-81B1-15E7341C5E19}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{1E63492D-A01A-4099-A735-9E12F763F2E8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{BA7D87FE-1CEA-40DB-BC2B-FA4FD4A68DC8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [{D8CAF2F4-F0C9-45B8-9418-15D9EAF7C889}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{FF2A1A4B-4B6E-4F0B-8336-8FA62FEFC40B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{57307718-82A5-4E77-AAAE-317B427831BE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{DC7CA990-AE35-4923-B6C0-042E5344160F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{43B06BD2-E66A-4655-B052-E767C55D4F28}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{CF7D3787-7517-4C51-9030-2FBC0DF763D1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{262237E0-F404-4AC5-891F-3386197AD7D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [TCP Query User{C40E3046-9FAB-4972-9244-5F94BE8F125D}C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{4932B5C6-BFCA-4B04-A131-3BF1548F3929}C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [TCP Query User{550BB99C-80DE-4A71-9CF0-AF225E691771}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe] => (Block) C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe
FirewallRules: [UDP Query User{3E7F42FE-E6F5-4EB6-A226-551131F4632D}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe] => (Block) C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe
FirewallRules: [{25E5FB68-C7C5-4569-BD08-B77A02DC9F4A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{F776F7A3-754D-4A4D-A4D5-FF1505E6358C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{F1BAD74F-7488-45A5-ADA6-F9AAE3BE05B8}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II.exe
FirewallRules: [{47CA0949-B59D-4C44-86AC-27A174052400}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II.exe
FirewallRules: [{D0543F91-E79A-4BD1-A6B1-98F136C45E1A}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{B8FE49B7-C46F-40EB-9369-B1FA222E8ACA}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{D66A1C39-1072-4D4B-814D-EB9277CC5B4A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{BC7E624E-8EFF-4F1B-9138-8103305862DD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{F1FA7BD4-20A5-4D6F-AAC0-904EEDE35AC2}] => (Allow) D:\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{76B7707B-40F3-4A87-BE49-C0AC7CE52503}] => (Allow) D:\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [TCP Query User{C105AB74-54E4-47FB-ADF4-5BEA7A3BA917}D:\starcraft ii\versions\base28667\sc2.exe] => (Block) D:\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{E4D24DDB-852F-4220-8C22-CBC493EE987B}D:\starcraft ii\versions\base28667\sc2.exe] => (Block) D:\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{656C4AC5-B305-406C-B026-A1B1C25CA881}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{A2B57426-7B53-4204-976F-FDA1113AFAC7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [TCP Query User{0F304C81-2A19-4FA5-BBC9-5D4ACD0B5E20}C:\gog games\descent 3\main.exe] => (Block) C:\gog games\descent 3\main.exe
FirewallRules: [UDP Query User{851E3FBE-8F22-46E4-9C55-A9EAD028EDC7}C:\gog games\descent 3\main.exe] => (Block) C:\gog games\descent 3\main.exe
FirewallRules: [TCP Query User{256511FE-6F98-4FBD-BAA3-0AEA2B16AD96}C:\program files (x86)\wolfenstein - enemy territory\et.exe] => (Block) C:\program files (x86)\wolfenstein - enemy territory\et.exe
FirewallRules: [UDP Query User{BE319A2B-3063-4AB2-9F90-ABB74E3C0305}C:\program files (x86)\wolfenstein - enemy territory\et.exe] => (Block) C:\program files (x86)\wolfenstein - enemy territory\et.exe
FirewallRules: [{A5C62ACC-2861-4229-9E80-071DBADCAE1A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{A45FB9BB-DD5B-4FD1-9030-5A28FEA17907}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{BE3569CC-0503-417D-B157-81D5A6F31352}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{061C3759-68B0-4F62-9D39-2919FD9DB5DD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{BD1C44C8-691B-43ED-BC1C-B87F1A40DD46}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{A1976B92-FC52-476D-BEE8-3769F7CF6327}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{BFCF1CE7-CA84-4FEE-9AEC-1DFED43E0DAE}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{B1B2B986-3AD6-4937-AE66-3C7A3686CB91}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [TCP Query User{E030B2FA-C95E-4412-A496-066DC02A8ADE}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{7BCBE076-9B33-4386-BDA3-F715B26A958B}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{08FA2EA8-3579-4656-A6A9-A3A20C797D32}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{38AF9E43-39F1-4586-8243-689DC5D95C03}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{226FCEE8-2364-4642-B49F-080C10A31758}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\{B2DAB009-8236-48A0-AD7F-E940F5AB1578}\setup\hpznui40.exe
FirewallRules: [TCP Query User{0DFA2D61-1653-4E15-B06C-9F113227EA96}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Block) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [UDP Query User{856B87BA-D5EB-4AC1-A2B8-33E528CAAED0}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Block) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [TCP Query User{DE54C664-D581-4DD8-9BFA-9EDDFF68D979}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [UDP Query User{B1A311C7-D518-4F05-A278-FA30BB51A78F}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [TCP Query User{DC523A09-08D9-4B6F-A535-E9F42D1881C0}C:\program files (x86)\dark oberon\dark-oberon.exe] => (Block) C:\program files (x86)\dark oberon\dark-oberon.exe
FirewallRules: [UDP Query User{77AC8987-75EF-4883-8386-261657BB4DFC}C:\program files (x86)\dark oberon\dark-oberon.exe] => (Block) C:\program files (x86)\dark oberon\dark-oberon.exe
FirewallRules: [TCP Query User{31CB6C47-CE5D-4E86-B25C-772C9B6D01C2}C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe] => (Allow) C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe
FirewallRules: [UDP Query User{02652F79-8549-4F88-B254-F2D5970142EB}C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe] => (Allow) C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe
FirewallRules: [{367CC153-2EA0-4B0A-9E95-05E757E8C33F}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{E656D592-2C6F-4AEB-AD2A-F3EAA8B86261}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{FB92278F-97EB-4719-9294-E68C6247150B}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{65824B33-96A7-4F89-960F-584BEF9FE903}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{8969B109-8F4C-44F4-8C6C-FC2B650F2806}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{29FAB9A7-B68B-4373-A4FC-C0E7535E57C5}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{52A35D67-3811-4E04-A83F-4F037823CE62}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{952F44CA-DF41-421C-B063-9C1A1BF9A401}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [TCP Query User{272CF44B-59D4-45EA-8A50-265954123C30}C:\program files (x86)\adobe\adobe edge code cc\node.exe] => (Block) C:\program files (x86)\adobe\adobe edge code cc\node.exe
FirewallRules: [UDP Query User{190205C7-9D29-42BB-9BE4-12CFB35F2E67}C:\program files (x86)\adobe\adobe edge code cc\node.exe] => (Block) C:\program files (x86)\adobe\adobe edge code cc\node.exe
FirewallRules: [TCP Query User{298A7237-DDCE-471B-B389-4DF93528C9D5}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [UDP Query User{EC7B998E-B59D-4B90-8832-4AA7D10E9FED}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [TCP Query User{756052E1-4B30-411A-8B87-EC176AB949BE}C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe] => (Allow) C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe
FirewallRules: [UDP Query User{8FF2A407-94AE-4C1F-AB2C-68406F9018AB}C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe] => (Allow) C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe
FirewallRules: [TCP Query User{26184E04-40C0-4075-B0EF-2D74C1421009}D:\xampp\apache\bin\httpd.exe] => (Allow) D:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{C5DB2EEB-8EBB-4C7F-AACB-8D7531D09990}D:\xampp\apache\bin\httpd.exe] => (Allow) D:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{19605462-7DF9-407D-9998-F90D47AEC1C1}D:\xampp\mysql\bin\mysqld.exe] => (Allow) D:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{EAE485BA-9719-429A-B743-4A2C22AE9988}D:\xampp\mysql\bin\mysqld.exe] => (Allow) D:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{622E4FEB-2EEF-4028-B364-CEEA8D07FA16}D:\xampp\filezillaftp\filezillaserver.exe] => (Block) D:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{6F00077D-0337-4F5E-81F3-9AE74B506982}D:\xampp\filezillaftp\filezillaserver.exe] => (Block) D:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{62CBAA70-61E4-47A2-BBE9-5D607E810E4E}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe
FirewallRules: [UDP Query User{0ADDB720-0F07-4226-ACF9-A677EACB8A5A}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe
FirewallRules: [TCP Query User{3A606F21-B762-4A50-AC91-4EC8058095DD}C:\program files (x86)\synology data replicator  3\backup.exe] => (Allow) C:\program files (x86)\synology data replicator  3\backup.exe
FirewallRules: [UDP Query User{8A4AD45D-D966-4421-BD1F-0B54D5268949}C:\program files (x86)\synology data replicator  3\backup.exe] => (Allow) C:\program files (x86)\synology data replicator  3\backup.exe
FirewallRules: [TCP Query User{944934E2-CC12-4BF5-A6B3-9ED05773893B}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Allow) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [UDP Query User{CA9AF812-352E-4866-B503-B4245C65122B}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Allow) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [TCP Query User{26FAA2E2-95B6-4100-9960-A69459257F30}D:\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{A30777D5-540B-423C-A41E-5F164F24D1F7}D:\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{3B9DD2CF-724F-48F9-BE71-87C3CC19BE80}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{45E9E28C-2607-46E4-9FB1-C83F0B3C3B65}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{E19A5B84-59D7-4447-8D92-DCD97D99DC6B}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{FE8839BB-0C8F-4C0E-9297-5063D8690292}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{FB431FAA-4F4D-428A-B22A-EC4502489532}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EF00AFB9-16B2-40FA-B2B0-55B3DEB6FCB6}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{5D7D21B0-B499-47FD-8D31-839EFFBBA768}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [UDP Query User{BC107B44-8E0F-4354-8B8F-39B7C3CD9F87}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [{32B02F4A-8B67-4BB4-95C2-9D9839318710}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{43217828-C063-41CD-8575-D3D58EAAEC39}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{37DF0398-5F9D-4493-82DB-892D558A0334}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{BF580CB7-B4DF-445E-B9A6-2C28BE7291FF}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{482B8ED6-02FB-4B18-9540-595873CAC173}] => (Allow) D:\StarCraft II\StarCraft II.exe
FirewallRules: [{BE87B2EF-DAD4-4AC3-9822-0D52A264BDC3}] => (Allow) D:\StarCraft II\StarCraft II.exe
FirewallRules: [{E22CC9B9-F927-45EF-BFF8-1A18066ED58A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{6400ECDA-10F6-449D-8787-F453DAD984F4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [TCP Query User{7AF9244B-737B-490E-9471-83DAD73EB7D2}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [UDP Query User{E3EA9CA0-CEF1-46BD-AD50-A2FBE1B3FF0E}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [TCP Query User{B8B716B2-2D44-401F-B7D9-9272FBDD7170}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [UDP Query User{5D0B028B-0349-4258-AB48-BBBC2B3DF78C}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [TCP Query User{F1CD984D-5012-4E02-8A47-500800AB6DEF}C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe] => (Block) C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe
FirewallRules: [UDP Query User{DB9933AD-D5C2-48C3-BE69-2DAB56AE75DB}C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe] => (Block) C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe
FirewallRules: [TCP Query User{68780A7D-EABF-49ED-9D0E-DDCF6298398C}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{D5A8AA17-77E6-415A-AE2E-18B068EA3F36}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [TCP Query User{52C4BCA2-2B06-413C-AFBA-A1ACDC2D547E}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{7C992DB2-DA12-4887-B579-C801B6958661}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [TCP Query User{846DBD85-E86F-4758-A665-EF48FB9EA64B}D:\ut3\unreal tournament 3\binaries\ut3.exe] => (Block) D:\ut3\unreal tournament 3\binaries\ut3.exe
FirewallRules: [UDP Query User{5E76E689-5CAB-4B59-AC6F-7D48AFAE11C2}D:\ut3\unreal tournament 3\binaries\ut3.exe] => (Block) D:\ut3\unreal tournament 3\binaries\ut3.exe
FirewallRules: [TCP Query User{9DAC37C9-E95B-4445-AC50-F291B6BBD434}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [UDP Query User{C40231DE-0631-4609-941F-B25CC26C2F18}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [TCP Query User{F8AEC02B-1002-41B3-BA18-CCE693498A45}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [UDP Query User{8DF3A797-D408-450A-8D2A-4E89B8FFF2C6}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [TCP Query User{102064CF-B501-46AB-BEBA-8389FDE06647}G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [UDP Query User{919F587D-C059-49D4-B863-666516D87C17}G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [TCP Query User{B63DB95B-3CE7-453A-BB0D-AA9C9C042567}D:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) D:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [UDP Query User{8F515771-9826-4526-A513-117AE3F925C8}D:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) D:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [TCP Query User{812A4D90-BB02-4D1B-9550-494A3A2F017C}D:\steam\steamapps\common\greygoo\goog.exe] => (Block) D:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [UDP Query User{BB3FCB1A-99E9-482E-8972-CA0EF7618824}D:\steam\steamapps\common\greygoo\goog.exe] => (Block) D:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [TCP Query User{6E5AB903-6C0F-4B5F-9AE1-9FB805A84DA6}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [UDP Query User{F3701F6A-4F8B-4FFC-9575-328FB3A501FB}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [TCP Query User{FF6E720D-5E2B-4192-81CB-D3EEE7E2516D}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [UDP Query User{D2BC247C-D874-428E-B783-FA01F15E2E08}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [{39D14A8F-3D2C-48B8-8999-D5D4680B111C}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{BD439C61-8AA9-4E21-9A4B-B6980978476B}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{DF352A1E-6172-4F17-BE3B-88DD4A4F26C4}] => (Allow) D:\Dead Space\Dead Space\Dead Space.exe
FirewallRules: [{7513F1B3-78DC-404E-B24B-E9D089B32523}] => (Allow) D:\Dead Space\Dead Space\Dead Space.exe
FirewallRules: [TCP Query User{A8249795-10A5-45A2-9197-C386A4FFF37A}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [UDP Query User{AAF2634A-10B2-4255-ABA5-36D77BE05F56}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [TCP Query User{E6B52932-535A-4560-B947-4F4C13169811}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [UDP Query User{7B12B00F-2FFA-4612-ADAC-0BF3CAAD52D6}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [{24E54CE5-A405-4388-9355-EE7A000BE5B4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{25C8370A-359C-4613-A857-680534229818}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B96CDA09-1C8E-453A-A09F-DEC8179EDDD7}] => (Allow) C:3\Steam\Steam.exe
FirewallRules: [{9E63E708-325F-4492-AD55-EA67DF3FB748}] => (Allow) C:3\Steam\Steam.exe
FirewallRules: [{2654A3CC-1CF8-43A1-8D7F-6BCEF62110FA}] => (Allow) C:3\Battle.net\Battle.net.exe
FirewallRules: [{C8E0D3A4-A9AE-4574-9833-01BB5BC12A1E}] => (Allow) C:3\Battle.net\Battle.net.exe
FirewallRules: [{0DA228A8-0B24-49A5-9927-A9120E560E20}] => (Allow) C:3\StarCraft II\StarCraft II.exe
FirewallRules: [{F70E8DA0-C254-4FD9-BD6C-D689CD0BFCED}] => (Allow) C:3\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{A5359AFD-2195-4E8F-B5B0-0985245C17A0}C:3\starcraft ii\versions\base32283\sc2.exe] => (Block) C:3\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{F0C2BB1D-8C24-426B-916A-5CEA8A63668C}C:3\starcraft ii\versions\base32283\sc2.exe] => (Block) C:3\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{926978A2-8100-4E68-862A-E35AEDB98884}] => (Allow) C:3\Mass Effect 2\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{4A458FC6-1C54-4D81-97EC-AD154D52686B}] => (Allow) C:3\Mass Effect 2\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [TCP Query User{37C76A95-908B-47DA-BA22-DD72E43E7089}C:3\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) C:3\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [UDP Query User{A7A5A2D5-8A6E-4969-93E4-89530B62C093}C:3\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) C:3\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [TCP Query User{AF5FDB9B-8C60-48B2-96AA-BEA4223C7305}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{DB75B3BE-D250-489C-B466-81DDF4ED3BC2}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{451E2E64-297C-4637-B9A0-AF71967FB81E}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{F5743744-4431-4651-B101-DB3AA6ABCDE1}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [TCP Query User{F45237A0-DB8E-4A2C-9D77-ADC20D8A9C06}F:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [UDP Query User{4D2289E6-1919-44B2-9926-2555B0F08EDC}F:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [TCP Query User{C435CD70-92A0-4B93-9C15-7CC9682CB6C5}F:\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [UDP Query User{6A7A941E-341C-49A9-8EA4-6365A1912677}F:\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [{2C39DCDD-BA42-42B8-BD67-5554809A9571}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe
FirewallRules: [{BA9F51A2-94C4-4344-B316-9909C501DB0B}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe
FirewallRules: [TCP Query User{E9704C8D-EA19-48D3-9898-383F79EA595C}F:\games\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) F:\games\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [UDP Query User{FBFD840D-C170-46B8-827A-49A75CC1B589}F:\games\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) F:\games\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [{0138196B-CC4A-4363-B7A3-51B4857B0C36}] => (Allow) C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{B9ED9CF8-16FC-406C-9125-700A683F9075}] => (Allow) C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{8C70CA4E-4F12-47B3-94F1-310285237D6E}C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{42B1152E-1779-4628-8A80-796837DFEE9C}C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe
FirewallRules: [{6E931ECA-0C41-4C16-9633-98DC055221BC}] => (Allow) F:\GAMES\Steam\Steam.exe
FirewallRules: [{462E90E4-9334-45C2-970B-581506C599DC}] => (Allow) F:\GAMES\Steam\Steam.exe
FirewallRules: [TCP Query User{AFE0603B-0F15-4E26-B834-E27840458C5B}F:\games\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\games\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [UDP Query User{F0C0D182-E15A-43B4-8DFD-15BBC07EFFDA}F:\games\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\games\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [TCP Query User{274B6D60-8225-4F1D-BB4B-7F9935CDF8A6}F:\games\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\games\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [UDP Query User{E0A7F892-D212-4273-A06E-5A61A954763C}F:\games\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\games\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [TCP Query User{B9E4CD0E-3E3F-480D-BADF-720CD740123C}F:\games\diablo iii\diablo iii.exe] => (Block) F:\games\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{4F8D74F6-4C27-4289-A9ED-299C5494AD82}F:\games\diablo iii\diablo iii.exe] => (Block) F:\games\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{F352AD6E-1933-46FE-BD80-EFED64013C3E}F:\games\starcraft ii\versions\base32283\sc2.exe] => (Block) F:\games\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{15ADF763-AAB2-43EC-87D2-CE1E5AE24D54}F:\games\starcraft ii\versions\base32283\sc2.exe] => (Block) F:\games\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{48542226-8281-446E-A758-AC92CAF5D3F5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9A91C4D8-C3F6-4C63-9255-08D1B7B20091}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FAC27E42-AC50-4A24-BDAD-C0989FB29A6C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A242B665-655C-4C96-82F4-0110ABABAFC3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{64E4137C-39BC-4868-96BB-1665398A8678}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{E05F5F64-14D3-4EF4-8ED8-3CA89BDF205A}F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe] => (Block) F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe
FirewallRules: [UDP Query User{7BD88A1F-C840-4F98-A805-74631FD8546E}F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe] => (Block) F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe
FirewallRules: [TCP Query User{6A67339D-3419-4B08-9E18-DB67C5373ADC}F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Block) F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D81FE59A-EA30-47FC-9185-A0BFF1AE36E9}F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Block) F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{3667AA46-FE01-4364-A7FA-B09BFE85E8B7}] => (Allow) F:\GAMES\Battle.net\Battle.net.exe
FirewallRules: [{9BFB3B92-D639-4D88-9939-34E842D852AB}] => (Allow) F:\GAMES\Battle.net\Battle.net.exe
FirewallRules: [{D2390A04-F62A-44F6-AC4E-6008A886B79C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{682D1EDA-B4F5-449D-97F2-5BAACD82A7CB}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{7A01975D-45FB-4609-A98A-721A4ECB84D9}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{645F6115-A5E4-4529-8044-3EFD534F8DDB}] => (Allow) F:\GAMES\StarCraft II\StarCraft II.exe
FirewallRules: [{4DE7319B-A433-4133-8263-EFEB3DC76C94}] => (Allow) F:\GAMES\StarCraft II\StarCraft II.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: USB (Universal Serial Bus)-Controller
Description: USB (Universal Serial Bus)-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: PCI-Kommunikationscontroller (einfach)
Description: PCI-Kommunikationscontroller (einfach)
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Ethernet-Controller
Description: Ethernet-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/16/2015 01:36:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/16/2015 01:34:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/16/2015 01:33:06 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Beschreibung = Geplanter Prüfpunkt; Fehler = 0x80070422).

Error: (08/16/2015 12:47:12 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Removed Command & Conquer 3.; Fehler = 0x80070422).

Error: (08/16/2015 12:47:11 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Removed Command & Conquer 3.; Fehler = 0x80070422).

Error: (08/15/2015 11:19:45 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\syswow64\MsiExec.exe -Embedding 121149867DFBF31CC95276F4A7D754F8; Beschreibung = DirectX wurde installiert; Fehler = 0x80070422).

Error: (08/15/2015 11:16:22 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Installed Command & Conquer 3.; Fehler = 0x80070422).

Error: (08/15/2015 11:16:22 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Installed Command & Conquer 3.; Fehler = 0x80070422).

Error: (08/15/2015 04:36:20 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Beschreibung = Geplanter Prüfpunkt; Fehler = 0x80070422).

Error: (08/14/2015 07:22:19 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm MusicStudio.exe, Version 16.0.0.3 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1ed4

Startzeit: 01d0d6b5891554ed

Endzeit: 19

Anwendungspfad: C:\Program Files (x86)\MAGIX\Samplitude_Music_Studio_16\MusicStudio.exe

Berichts-ID: f41513bc-42a8-11e5-9c31-d587f7acd494


Systemfehler:
=============
Error: (08/16/2015 01:37:13 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (08/16/2015 01:37:12 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (08/16/2015 01:37:11 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (08/16/2015 01:37:07 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (08/16/2015 01:36:29 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
acedrv07
cdrom

Error: (08/16/2015 01:36:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "WajamUpdaterV2" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (08/16/2015 01:36:28 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (08/16/2015 01:35:28 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004

Error: (08/16/2015 01:35:28 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004

Error: (08/16/2015 01:35:28 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004


Microsoft Office:
=========================
Error: (04/27/2014 04:09:04 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6211.1000, Microsoft Office Version: 12.0.6215.1000. This session lasted 336336 seconds with 1620 seconds of active time.  This session ended with a crash.

Error: (10/28/2013 06:15:42 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6211.1000, Microsoft Office Version: 12.0.6215.1000. This session lasted 369 seconds with 360 seconds of active time.  This session ended with a crash.


CodeIntegrity:
===================================
  Date: 2015-08-16 13:36:22.478
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-16 13:36:22.446
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-16 13:33:56.975
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-16 13:33:56.944
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-09 22:38:01.928
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-09 22:38:01.913
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-09 22:29:57.256
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-09 22:29:57.240
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-07-28 08:51:52.306
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-07-28 08:51:52.275
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Speicherinformationen =========================== 

Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 18%
Installierter physikalischer RAM: 20423.12 MB
Verfügbarer physikalischer RAM: 16594.93 MB
Summe virtueller Speicher: 20621.3 MB
Verfügbarer virtueller Speicher: 16266.09 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:111.79 GB) (Free:24.22 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System mit Startkomponenten (eingeholt von lesen Laufwerk)]
Drive e: () (Fixed) (Total:100.61 GB) (Free:2.26 GB) NTFS
Drive f: () (Fixed) (Total:111.69 GB) (Free:65.48 GB) NTFS
Drive g: (DATA) (Fixed) (Total:931.51 GB) (Free:13.73 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 111.8 GB) (Disk ID: E5EC1B9F)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 2C787A6B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: BB8F2C62)
Partition 1: (Active) - (Size=100.6 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 931.5 GB) (Disk ID: 09DADEB7)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Ergebnis ============================

sgb · 16.08.2015, 12:46

Code:

ATTFilter

13:41:15.0987 0x1efc  TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
13:41:23.0089 0x1efc  ============================================================
13:41:23.0089 0x1efc  Current date / time: 2015/08/16 13:41:23.0089
13:41:23.0089 0x1efc  SystemInfo:
13:41:23.0089 0x1efc  
13:41:23.0089 0x1efc  OS Version: 6.1.7601 ServicePack: 1.0
13:41:23.0089 0x1efc  Product type: Workstation
13:41:23.0089 0x1efc  ComputerName: SCHWEIGELICHTPC
13:41:23.0089 0x1efc  UserName: schweigelicht
13:41:23.0089 0x1efc  Windows directory: C:\Windows
13:41:23.0089 0x1efc  System windows directory: C:\Windows
13:41:23.0089 0x1efc  Running under WOW64
13:41:23.0089 0x1efc  Processor architecture: Intel x64
13:41:23.0089 0x1efc  Number of processors: 4
13:41:23.0089 0x1efc  Page size: 0x1000
13:41:23.0089 0x1efc  Boot type: Normal boot
13:41:23.0089 0x1efc  ============================================================
13:41:23.0387 0x1efc  KLMD registered as C:\Windows\system32\drivers\08681574.sys
13:41:23.0436 0x1efc  System UUID: {31F83C71-4174-F6EE-792C-CAEFBA130131}
13:41:23.0667 0x1efc  Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:41:23.0669 0x1efc  Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:41:23.0671 0x1efc  Drive \Device\Harddisk2\DR2 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:41:23.0675 0x1efc  Drive \Device\Harddisk3\DR3 - Size: 0xE8E0DA0000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:41:23.0677 0x1efc  ============================================================
13:41:23.0677 0x1efc  \Device\Harddisk0\DR0:
13:41:23.0677 0x1efc  MBR partitions:
13:41:23.0677 0x1efc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xDF92FC1
13:41:23.0677 0x1efc  \Device\Harddisk1\DR1:
13:41:23.0677 0x1efc  MBR partitions:
13:41:23.0677 0x1efc  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
13:41:23.0677 0x1efc  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61800
13:41:23.0677 0x1efc  \Device\Harddisk2\DR2:
13:41:23.0678 0x1efc  MBR partitions:
13:41:23.0678 0x1efc  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xC938000
13:41:23.0678 0x1efc  \Device\Harddisk3\DR3:
13:41:23.0679 0x1efc  MBR partitions:
13:41:23.0679 0x1efc  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x40, BlocksNum 0x74705981
13:41:23.0679 0x1efc  ============================================================
13:41:23.0679 0x1efc  C: <-> \Device\Harddisk0\DR0\Partition1
13:41:23.0679 0x1efc  D: <-> \Device\Harddisk1\DR1\Partition1
13:41:23.0680 0x1efc  E: <-> \Device\Harddisk2\DR2\Partition1
13:41:23.0714 0x1efc  G: <-> \Device\Harddisk3\DR3\Partition1
13:41:23.0715 0x1efc  F: <-> \Device\Harddisk1\DR1\Partition2
13:41:23.0715 0x1efc  ============================================================
13:41:23.0715 0x1efc  Initialize success
13:41:23.0715 0x1efc  ============================================================
13:41:46.0114 0x1c34  ============================================================
13:41:46.0114 0x1c34  Scan started
13:41:46.0114 0x1c34  Mode: Manual; 
13:41:46.0114 0x1c34  ============================================================
13:41:46.0114 0x1c34  KSN ping started
13:41:59.0850 0x1c34  KSN ping finished: true
13:42:00.0069 0x1c34  ================ Scan system memory ========================
13:42:00.0069 0x1c34  System memory - ok
13:42:00.0070 0x1c34  ================ Scan services =============================
13:42:00.0088 0x1c34  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
13:42:00.0092 0x1c34  1394ohci - ok
13:42:00.0103 0x1c34  [ 6E9C8B324980AFE454C6F7762E2B4478, B65CC18B2A63EC28FF125F547F71FD265299CE30128174AE05FFEE05108B69AC ] acedrv07        C:\Windows\system32\drivers\acedrv07.sys
13:42:00.0105 0x1c34  acedrv07 - ok
13:42:00.0112 0x1c34  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
13:42:00.0116 0x1c34  ACPI - ok
13:42:00.0119 0x1c34  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
13:42:00.0119 0x1c34  AcpiPmi - ok
13:42:00.0124 0x1c34  [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:42:00.0125 0x1c34  AdobeARMservice - ok
13:42:00.0137 0x1c34  [ 0F6A17DC2DA7CFF449C9293CB772DAD5, 74A88837F8BBD0B6A17E863FAC7B9DAA36968DAF0032EA349D0B39BC11531E91 ] AdobeUpdateService C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
13:42:00.0146 0x1c34  AdobeUpdateService - ok
13:42:00.0156 0x1c34  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
13:42:00.0163 0x1c34  adp94xx - ok
13:42:00.0170 0x1c34  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
13:42:00.0175 0x1c34  adpahci - ok
13:42:00.0180 0x1c34  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
13:42:00.0183 0x1c34  adpu320 - ok
13:42:00.0187 0x1c34  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
13:42:00.0188 0x1c34  AeLookupSvc - ok
13:42:00.0198 0x1c34  [ 1C7857B62DE5994A75B054A9FD4C3825, 83F963D7E636532B1AD30B1E727EC429317CA540F6EB3BB268FCC0B163B67767 ] AFD             C:\Windows\system32\drivers\afd.sys
13:42:00.0205 0x1c34  AFD - ok
13:42:00.0208 0x1c34  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
13:42:00.0209 0x1c34  agp440 - ok
13:42:00.0212 0x1c34  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
13:42:00.0214 0x1c34  ALG - ok
13:42:00.0216 0x1c34  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
13:42:00.0216 0x1c34  aliide - ok
13:42:00.0222 0x1c34  [ 66B54471B5856E314947881E28263A6D, 2D60706B52A2CE98FF806337D62CD010C1DEB2AEDDF899C7B67173928B2D7C4C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
13:42:00.0225 0x1c34  AMD External Events Utility - ok
13:42:00.0227 0x1c34  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
13:42:00.0228 0x1c34  amdide - ok
13:42:00.0231 0x1c34  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
13:42:00.0232 0x1c34  AmdK8 - ok
13:42:00.0424 0x1c34  [ FBB35875FEFE53D4280259842069ED72, B1A1B5799A6C50C244182CD201A1E9FCB7BE3B5ED4BB2E2E6BCF8E1BF53B75DB ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
13:42:00.0584 0x1c34  amdkmdag - ok
13:42:00.0608 0x1c34  [ A32BCAD9377E3B75D034CAFBA463A0AE, F504895D9C9CD1B4607806BCAF15A1CBFBAC2E5824903277A1350C9F35045602 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
13:42:00.0616 0x1c34  amdkmdap - ok
13:42:00.0619 0x1c34  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
13:42:00.0620 0x1c34  AmdPPM - ok
13:42:00.0624 0x1c34  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
13:42:00.0626 0x1c34  amdsata - ok
13:42:00.0631 0x1c34  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
13:42:00.0633 0x1c34  amdsbs - ok
13:42:00.0635 0x1c34  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
13:42:00.0636 0x1c34  amdxata - ok
13:42:00.0639 0x1c34  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
13:42:00.0640 0x1c34  AppID - ok
13:42:00.0642 0x1c34  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
13:42:00.0643 0x1c34  AppIDSvc - ok
13:42:00.0646 0x1c34  [ 3977D4A871CA0D4F2ED1E7DB46829731, 2AF1C3225994769C3FD25CD7E9603964B035576F25B0B6D91545566E0722FFAA ] Appinfo         C:\Windows\System32\appinfo.dll
13:42:00.0647 0x1c34  Appinfo - ok
13:42:00.0652 0x1c34  [ 6EB87FDB59AABF6D19C927492DEA0D36, 36168F8CC75D16917A30FA1FACF57659BC2ADF870D20DEE93F851D5348E605BB ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:42:00.0653 0x1c34  Apple Mobile Device Service - ok
13:42:00.0658 0x1c34  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
13:42:00.0660 0x1c34  AppMgmt - ok
13:42:00.0665 0x1c34  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
13:42:00.0666 0x1c34  arc - ok
13:42:00.0670 0x1c34  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
13:42:00.0672 0x1c34  arcsas - ok
13:42:00.0678 0x1c34  [ 108FB6DDB69E537A2EA53F425363FAE5, B12A9F5338D39805E08A44A335FF7AA77F2266F535A2F5C8412CC746C75E5B1D ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:42:00.0680 0x1c34  aspnet_state - ok
13:42:00.0683 0x1c34  [ B5B4C90E9F52DA8586F1E5461AD90A5D, D1EAA34E6AEB014E942D22F8CB5FB19BF1E2EADE5B5357274C001F44FDC25F05 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
13:42:00.0684 0x1c34  aswHwid - ok
13:42:00.0686 0x1c34  [ 2EF62E6F46345480A2946AA7D7EB28F5, E1952C776CA41A2D9242154BD6613559BFE4D38E47C7C4AE894108B479B2F9D0 ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
13:42:00.0687 0x1c34  aswKbd - ok
13:42:00.0690 0x1c34  [ 300CB8E510855189CAD0B72FFB5590CB, EB50DC553FA8FD9DE3F60AAFED20702EAFBB1498EBD3220A39CC52A12F694246 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
13:42:00.0691 0x1c34  aswMonFlt - ok
13:42:00.0700 0x1c34  [ 81A2A421E6D7B43AA9E87A5FCB5730C3, CF232DBB07FAD95248FED789E67592D73027F145E08BD5269A3773E48693641B ] aswNdisFlt      C:\Windows\system32\DRIVERS\aswNdisFlt.sys
13:42:00.0706 0x1c34  aswNdisFlt - ok
13:42:00.0710 0x1c34  [ 6D37D8DB30D086739507C5F6E542656A, 746D9E32E729138EA19062F4E6B6C98B6833504020A296E3E2A9CD92E0FED0B9 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
13:42:00.0711 0x1c34  aswRdr - ok
13:42:00.0714 0x1c34  [ 07E32DFCA422A2920482D762D01957EC, A6502D26266D708E55EB2883897673AD3087C41D9EA0B41CD6BF6BD923EBDCB8 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
13:42:00.0715 0x1c34  aswRvrt - ok
13:42:00.0732 0x1c34  [ 3B4AC2DBFC86F7247C1FF1FAF2860530, A54A693D01C02AAE2B78BFE9B3900B5A6DD0C2C37C8FA58B14B5F57107032FF5 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
13:42:00.0745 0x1c34  aswSnx - ok
13:42:00.0755 0x1c34  [ A04F190FCD762E7BCC9BFC70563C52DB, 2BF6823F2EADBDA28DF1CCECCAC84D9FF37D3CFB66A7B402575C6B9FCFB45EB3 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
13:42:00.0760 0x1c34  aswSP - ok
13:42:00.0765 0x1c34  [ 6E53278ECCFFBC2ACC2A5006745ED4BB, 392170073A8933DB43CD1D64AD087F972F1971BF83BCAFE5B8FA1273C02026CE ] aswStm          C:\Windows\system32\drivers\aswStm.sys
13:42:00.0767 0x1c34  aswStm - ok
13:42:00.0774 0x1c34  [ 91782404718C6352C26B3242BAC3F0F1, 84B1CDD1EBC83FAEBDCC8F67B13CA405C6CF0C518FC016603889EBE48FC91AB9 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
13:42:00.0778 0x1c34  aswVmm - ok
13:42:00.0780 0x1c34  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
13:42:00.0781 0x1c34  AsyncMac - ok
13:42:00.0783 0x1c34  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
13:42:00.0784 0x1c34  atapi - ok
13:42:00.0785 0x1c34  athr - ok
13:42:00.0790 0x1c34  [ 770A3B0D78232B0C1054495392A1FBA3, 733BB08BAFE42E848F3A3CDFD80A2C37DB829CAD2E18B3D6299FDEE6EF30C9CD ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
13:42:00.0791 0x1c34  AtiHDAudioService - ok
13:42:00.0795 0x1c34  [ 7E2F5A758F63F80F8B03F889B4E6B19F, 5A911F1E9DB2894A7459D072F8D02F884AEF695B51EC17DEEAF874DB5A6F783C ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
13:42:00.0797 0x1c34  AtiHdmiService - ok
13:42:00.0804 0x1c34  [ FC0E8778C000291CAF60EB88C011E931, 09BCCA3DE01021AEF76DFB46F01D21BA6FF409E816FA7547E5C3DFBF3A615ED2 ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
13:42:00.0808 0x1c34  atksgt - ok
13:42:00.0821 0x1c34  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:42:00.0829 0x1c34  AudioEndpointBuilder - ok
13:42:00.0842 0x1c34  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
13:42:00.0850 0x1c34  AudioSrv - ok
13:42:00.0860 0x1c34  [ 54236E79A44F909612391C8A2D70D512, B0DF5BCC4F90AF087D0306F8D81F90B2CAE0176813E3AA6A7D5460F7878677CD ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:42:00.0864 0x1c34  avast! Antivirus - ok
13:42:00.0869 0x1c34  [ C569E7F268C43D6C9C4D74EE2F06CCD8, 8E66A2C610E00D0F01CECAC8E32824D3B54E823781E953C8A506BAB4CFDE7F23 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
13:42:00.0870 0x1c34  avast! Firewall - ok
13:42:00.0872 0x1c34  AvastVBoxSvc - ok
13:42:00.0875 0x1c34  [ 1DC2F715792CF33428AD7993ACBD224D, 129FBD517E016914CD61C35894C0B9B2074E680F1EB21201597E5C13CAF4529F ] avmeject        C:\Windows\system32\drivers\avmeject.sys
13:42:00.0876 0x1c34  avmeject - ok
13:42:00.0879 0x1c34  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
13:42:00.0881 0x1c34  AxInstSV - ok
13:42:00.0891 0x1c34  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
13:42:00.0896 0x1c34  b06bdrv - ok
13:42:00.0903 0x1c34  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
13:42:00.0907 0x1c34  b57nd60a - ok
13:42:00.0911 0x1c34  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
13:42:00.0913 0x1c34  BDESVC - ok
13:42:00.0915 0x1c34  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
13:42:00.0915 0x1c34  Beep - ok
13:42:00.0930 0x1c34  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
13:42:00.0939 0x1c34  BFE - ok
13:42:00.0956 0x1c34  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
13:42:00.0968 0x1c34  BITS - ok
13:42:00.0971 0x1c34  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
13:42:00.0972 0x1c34  blbdrive - ok
13:42:00.0975 0x1c34  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
13:42:00.0976 0x1c34  bowser - ok
13:42:00.0979 0x1c34  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
13:42:00.0979 0x1c34  BrFiltLo - ok
13:42:00.0981 0x1c34  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
13:42:00.0982 0x1c34  BrFiltUp - ok
13:42:00.0986 0x1c34  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
13:42:00.0988 0x1c34  Browser - ok
13:42:00.0995 0x1c34  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
13:42:00.0998 0x1c34  Brserid - ok
13:42:01.0001 0x1c34  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
13:42:01.0002 0x1c34  BrSerWdm - ok
13:42:01.0004 0x1c34  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
13:42:01.0004 0x1c34  BrUsbMdm - ok
13:42:01.0007 0x1c34  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
13:42:01.0008 0x1c34  BrUsbSer - ok
13:42:01.0011 0x1c34  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
13:42:01.0012 0x1c34  BTHMODEM - ok
13:42:01.0016 0x1c34  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
13:42:01.0017 0x1c34  bthserv - ok
13:42:01.0021 0x1c34  [ 32B94975BF6F101C27C43E90FF8ABBEB, B5475D9A705894CBFA583D6E9DAF969527A75800E98D0288182BAB2F10136642 ] busenum         C:\Windows\system32\DRIVERS\busenum.sys
13:42:01.0022 0x1c34  busenum - ok
13:42:01.0026 0x1c34  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
13:42:01.0027 0x1c34  cdfs - ok
13:42:01.0032 0x1c34  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
13:42:01.0034 0x1c34  cdrom - ok
13:42:01.0037 0x1c34  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
13:42:01.0039 0x1c34  CertPropSvc - ok
13:42:01.0041 0x1c34  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
13:42:01.0042 0x1c34  circlass - ok
13:42:01.0050 0x1c34  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
13:42:01.0055 0x1c34  CLFS - ok
13:42:01.0059 0x1c34  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:42:01.0060 0x1c34  clr_optimization_v2.0.50727_32 - ok
13:42:01.0064 0x1c34  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:42:01.0066 0x1c34  clr_optimization_v2.0.50727_64 - ok
13:42:01.0071 0x1c34  [ 6D7C8A951AF6AD6835C029B3CB88D333, 66F3D79887B2449B4C6912D1A258D1A96056888F51A8AA24FEDF37942AD5BDBB ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:42:01.0077 0x1c34  clr_optimization_v4.0.30319_32 - ok
13:42:01.0081 0x1c34  [ 86329C35FF23CFEF0FB6C0023BA06BCE, D915CE7AD564F97A1C3B047D5248B7EF67ADDC59687FBC90F1776C21DAA0D3FD ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:42:01.0084 0x1c34  clr_optimization_v4.0.30319_64 - ok
13:42:01.0086 0x1c34  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
13:42:01.0086 0x1c34  CmBatt - ok
13:42:01.0089 0x1c34  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
13:42:01.0089 0x1c34  cmdide - ok
13:42:01.0098 0x1c34  [ AAFCB52FE0037207FB6FBEA070D25EFE, 7D035BFB6DD86944CCDE6D71811891406D7FD08344EF8CF57C4D932E096F1377 ] CNG             C:\Windows\system32\Drivers\cng.sys
13:42:01.0103 0x1c34  CNG - ok
13:42:01.0106 0x1c34  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
13:42:01.0107 0x1c34  Compbatt - ok
13:42:01.0110 0x1c34  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
13:42:01.0111 0x1c34  CompositeBus - ok
13:42:01.0113 0x1c34  COMSysApp - ok
13:42:01.0117 0x1c34  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
13:42:01.0117 0x1c34  crcdisk - ok
13:42:01.0123 0x1c34  [ 9C01375BE382E834CC26D1B7EAF2C4FE, B1D1E36B91A3C3CD09428EE3403896F71390A2798323BB406B484D9DB064A219 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
13:42:01.0126 0x1c34  CryptSvc - ok
13:42:01.0136 0x1c34  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
13:42:01.0142 0x1c34  CSC - ok
13:42:01.0155 0x1c34  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
13:42:01.0164 0x1c34  CscService - ok
13:42:01.0175 0x1c34  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
13:42:01.0183 0x1c34  DcomLaunch - ok
13:42:01.0191 0x1c34  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
13:42:01.0195 0x1c34  defragsvc - ok
13:42:01.0199 0x1c34  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
13:42:01.0200 0x1c34  DfsC - ok
13:42:01.0207 0x1c34  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
13:42:01.0212 0x1c34  Dhcp - ok
13:42:01.0215 0x1c34  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
13:42:01.0215 0x1c34  discache - ok
13:42:01.0218 0x1c34  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
13:42:01.0219 0x1c34  Disk - ok
13:42:01.0222 0x1c34  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
13:42:01.0224 0x1c34  dmvsc - ok
13:42:01.0229 0x1c34  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
13:42:01.0232 0x1c34  Dnscache - ok
13:42:01.0238 0x1c34  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
13:42:01.0241 0x1c34  dot3svc - ok
13:42:01.0246 0x1c34  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
13:42:01.0248 0x1c34  Dot4 - ok
13:42:01.0250 0x1c34  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
13:42:01.0251 0x1c34  Dot4Print - ok
13:42:01.0253 0x1c34  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
13:42:01.0254 0x1c34  dot4usb - ok
13:42:01.0258 0x1c34  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
13:42:01.0261 0x1c34  DPS - ok
13:42:01.0263 0x1c34  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
13:42:01.0264 0x1c34  drmkaud - ok
13:42:01.0281 0x1c34  [ F5BEE30450E18E6B83A5012C100616FD, 44D0577D159FC2BDF4EAD1DC2C7FD14925D075225EF97608CAC52DEE405B08FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
13:42:01.0293 0x1c34  DXGKrnl - ok
13:42:01.0298 0x1c34  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
13:42:01.0300 0x1c34  EapHost - ok
13:42:01.0350 0x1c34  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
13:42:01.0390 0x1c34  ebdrv - ok
13:42:01.0395 0x1c34  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] EFS             C:\Windows\System32\lsass.exe
13:42:01.0397 0x1c34  EFS - ok
13:42:01.0407 0x1c34  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
13:42:01.0415 0x1c34  elxstor - ok
13:42:01.0417 0x1c34  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
13:42:01.0418 0x1c34  ErrDev - ok
13:42:01.0428 0x1c34  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
13:42:01.0433 0x1c34  EventSystem - ok
13:42:01.0439 0x1c34  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
13:42:01.0441 0x1c34  exfat - ok
13:42:01.0445 0x1c34  Fabs - ok
13:42:01.0451 0x1c34  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
13:42:01.0453 0x1c34  fastfat - ok
13:42:01.0467 0x1c34  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
13:42:01.0476 0x1c34  Fax - ok
13:42:01.0479 0x1c34  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
13:42:01.0480 0x1c34  fdc - ok
13:42:01.0482 0x1c34  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
13:42:01.0484 0x1c34  fdPHost - ok
13:42:01.0487 0x1c34  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
13:42:01.0488 0x1c34  FDResPub - ok
13:42:01.0491 0x1c34  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
13:42:01.0492 0x1c34  FileInfo - ok
13:42:01.0495 0x1c34  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
13:42:01.0496 0x1c34  Filetrace - ok
13:42:01.0539 0x1c34  [ 5BD96D8C5411ACE71A7EAACAF0EF2903, 2AF58E6060C7DEC44B4CA30E14E164473CD4089AE475DAFFC61DFE56990C1147 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
13:42:01.0571 0x1c34  FirebirdServerMAGIXInstance - ok
13:42:01.0577 0x1c34  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
13:42:01.0577 0x1c34  flpydisk - ok
13:42:01.0583 0x1c34  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
13:42:01.0587 0x1c34  FltMgr - ok
13:42:01.0606 0x1c34  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
13:42:01.0622 0x1c34  FontCache - ok
13:42:01.0625 0x1c34  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:42:01.0626 0x1c34  FontCache3.0.0.0 - ok
13:42:01.0629 0x1c34  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
13:42:01.0630 0x1c34  FsDepends - ok
13:42:01.0632 0x1c34  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
13:42:01.0633 0x1c34  Fs_Rec - ok
13:42:01.0638 0x1c34  [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
13:42:01.0641 0x1c34  fvevol - ok
13:42:01.0651 0x1c34  [ 444534CBA693DD23C1CC589681E01656, DF8ED7FFA66E0A88EBB58A491A177D8CEB35B08B0911D7A1F4B8865755DC27CE ] FWLANUSB        C:\Windows\system32\DRIVERS\fwlanusb.sys
13:42:01.0657 0x1c34  FWLANUSB - ok
13:42:01.0674 0x1c34  [ 8A3DB33B2FA1D0CAF7A70256E00EB996, 13F51EEB0088A8891620388843A8C3BA1D1526CF8AF1C5960E167FC4C877563A ] fwlanusb5       C:\Windows\system32\DRIVERS\fwlanusb5.sys
13:42:01.0686 0x1c34  fwlanusb5 - ok
13:42:01.0690 0x1c34  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
13:42:01.0691 0x1c34  gagp30kx - ok
13:42:01.0692 0x1c34  gdrv - ok
13:42:01.0696 0x1c34  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:42:01.0696 0x1c34  GEARAspiWDM - ok
13:42:01.0699 0x1c34  [ 022807B149127B8FAA3DBEB13A7D9B41, 0D871B7AC3FB37BB5664C0DFE3D4084FB1457BF4FD9E1C338F3CB2F0801EEBD2 ] GenericMount    C:\Windows\system32\DRIVERS\GenericMount.sys
13:42:01.0700 0x1c34  GenericMount - ok
13:42:01.0727 0x1c34  [ 33F0619AFBA455581916B1E3DC84B109, 7973BE26FDBFA396823A5B3B54B0B353E876715891C83619A906BBB03F52C589 ] GenericMount Helper Service C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe
13:42:01.0746 0x1c34  GenericMount Helper Service - ok
13:42:01.0762 0x1c34  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
13:42:01.0773 0x1c34  gpsvc - ok
13:42:01.0778 0x1c34  [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:42:01.0780 0x1c34  gupdate - ok
13:42:01.0784 0x1c34  [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:42:01.0786 0x1c34  gupdatem - ok
13:42:01.0788 0x1c34  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
13:42:01.0789 0x1c34  hcw85cir - ok
13:42:01.0796 0x1c34  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:42:01.0801 0x1c34  HdAudAddService - ok
13:42:01.0805 0x1c34  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
13:42:01.0807 0x1c34  HDAudBus - ok
13:42:01.0810 0x1c34  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
13:42:01.0810 0x1c34  HidBatt - ok
13:42:01.0815 0x1c34  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
13:42:01.0816 0x1c34  HidBth - ok
13:42:01.0819 0x1c34  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
13:42:01.0820 0x1c34  HidIr - ok
13:42:01.0824 0x1c34  [ BB1F112964789EED537584C75CE8D355, 7668398A44662C368ADF9B6982C4B87BBD8D64071049FFCF87AB55BC834E97E8 ] hidkmdf         C:\Windows\system32\DRIVERS\hidkmdf.sys
13:42:01.0824 0x1c34  hidkmdf - ok
13:42:01.0827 0x1c34  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
13:42:01.0829 0x1c34  hidserv - ok
13:42:01.0831 0x1c34  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
13:42:01.0832 0x1c34  HidUsb - ok
13:42:01.0835 0x1c34  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
13:42:01.0838 0x1c34  hkmsvc - ok
13:42:01.0843 0x1c34  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:42:01.0848 0x1c34  HomeGroupListener - ok
13:42:01.0853 0x1c34  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:42:01.0857 0x1c34  HomeGroupProvider - ok
13:42:01.0866 0x1c34  [ 4B3E718F72B0C48603C2EB8A0E34CD43, 50C06F872D81868EB0C086116D5055F6D0AD62784D3214EE76B33E5BE9B0B69F ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
13:42:01.0869 0x1c34  hpqcxs08 - ok
13:42:01.0873 0x1c34  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
13:42:01.0874 0x1c34  HpSAMD - ok
13:42:01.0893 0x1c34  [ D4F91CF4DE215D6F14A06087D46725E4, 656E78AB0CD5B3DA396F937CF05863F80C9E430EDED6F68A88F39604A052921B ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
13:42:01.0906 0x1c34  HPSLPSVC - ok
13:42:01.0911 0x1c34  [ 1878A79551F2EDAE7EBD110AAE6D33AD, 1F409360B44AEB3A6023E953EAB350FFB3EB8322F589E2422AB312288B33A2DA ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
13:42:01.0912 0x1c34  HPSupportSolutionsFrameworkService - ok
13:42:01.0925 0x1c34  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
13:42:01.0935 0x1c34  HTTP - ok
13:42:01.0938 0x1c34  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
13:42:01.0938 0x1c34  hwpolicy - ok
13:42:01.0942 0x1c34  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
13:42:01.0944 0x1c34  i8042prt - ok
13:42:01.0952 0x1c34  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
13:42:01.0957 0x1c34  iaStorV - ok
13:42:01.0961 0x1c34  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
13:42:01.0962 0x1c34  IDriverT - ok
13:42:01.0977 0x1c34  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:42:01.0988 0x1c34  idsvc - ok
13:42:02.0082 0x1c34  [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
13:42:02.0155 0x1c34  igfx - ok
13:42:02.0163 0x1c34  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
13:42:02.0164 0x1c34  iirsp - ok
13:42:02.0179 0x1c34  [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT          C:\Windows\System32\ikeext.dll
13:42:02.0191 0x1c34  IKEEXT - ok
13:42:02.0249 0x1c34  [ 8CAA2A543155675D09B0D5239E31EC99, 033CF96E110136A59E01C4D26FE3681862C0993938959059A37A34DC1C0E1D49 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:42:02.0293 0x1c34  IntcAzAudAddService - ok
13:42:02.0299 0x1c34  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
13:42:02.0299 0x1c34  intelide - ok
13:42:02.0302 0x1c34  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
13:42:02.0304 0x1c34  intelppm - ok
13:42:02.0309 0x1c34  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
13:42:02.0311 0x1c34  IPBusEnum - ok
13:42:02.0314 0x1c34  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:42:02.0316 0x1c34  IpFilterDriver - ok
13:42:02.0326 0x1c34  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
13:42:02.0334 0x1c34  iphlpsvc - ok
13:42:02.0339 0x1c34  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
13:42:02.0340 0x1c34  IPMIDRV - ok
13:42:02.0345 0x1c34  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
13:42:02.0347 0x1c34  IPNAT - ok
13:42:02.0359 0x1c34  [ 4331CE358AD3E7587B2170100EBA43BD, A291707CA48C42E9B29F9E7D54AF88A58FE734DE4E87AF1ABF013877E6012558 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
13:42:02.0367 0x1c34  iPod Service - ok
13:42:02.0370 0x1c34  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
13:42:02.0370 0x1c34  IRENUM - ok
13:42:02.0373 0x1c34  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
13:42:02.0373 0x1c34  isapnp - ok
13:42:02.0380 0x1c34  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
13:42:02.0383 0x1c34  iScsiPrt - ok
13:42:02.0387 0x1c34  [ DB85FE8D6CBAA2047CB4DA1B2C193D76, 9F9A6B4446ED0EC2EDFD2F1554E83EB381A7CC16CD0D0159B043402B630CAF01 ] JRAID           C:\Windows\system32\DRIVERS\jraid.sys
13:42:02.0388 0x1c34  JRAID - ok
13:42:02.0391 0x1c34  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
13:42:02.0392 0x1c34  kbdclass - ok
13:42:02.0395 0x1c34  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
13:42:02.0396 0x1c34  kbdhid - ok
13:42:02.0398 0x1c34  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] KeyIso          C:\Windows\system32\lsass.exe
13:42:02.0400 0x1c34  KeyIso - ok
13:42:02.0403 0x1c34  [ 97A7070AEA4C058B6418519E869A63B4, 15345C2D6CA159BD498002974A0BD21CAB611124D85E3320248B47652AEF23C8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
13:42:02.0405 0x1c34  KSecDD - ok
13:42:02.0409 0x1c34  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E, 94F1382291BD748BAE7EDBCB56F43B8564A1EE22E2DBEB37066559EE3D065FBA ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
13:42:02.0411 0x1c34  KSecPkg - ok
13:42:02.0414 0x1c34  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
13:42:02.0415 0x1c34  ksthunk - ok
13:42:02.0422 0x1c34  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
13:42:02.0428 0x1c34  KtmRm - ok
13:42:02.0446 0x1c34  [ 42E25441C303519E753014893A13A04E, DEA565E7B33648CE84133C4A4757F5FE3FE38733DC05E6B969BBDDA85AAA864A ] L6TPortA        C:\Windows\system32\Drivers\L6TPortA64.sys
13:42:02.0457 0x1c34  L6TPortA - ok
13:42:02.0463 0x1c34  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
13:42:02.0468 0x1c34  LanmanServer - ok
13:42:02.0472 0x1c34  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:42:02.0476 0x1c34  LanmanWorkstation - ok
13:42:02.0481 0x1c34  [ 156AB2E56DC3CA0B582E3362E07CDED7, 7B03929273861690DC42E4C686E655BE5A1C60136AE5E739D7E62306AFD4AB9A ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
13:42:02.0482 0x1c34  lirsgt - ok
13:42:02.0485 0x1c34  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
13:42:02.0487 0x1c34  lltdio - ok
13:42:02.0494 0x1c34  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
13:42:02.0499 0x1c34  lltdsvc - ok
13:42:02.0502 0x1c34  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
13:42:02.0503 0x1c34  lmhosts - ok
13:42:02.0509 0x1c34  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
13:42:02.0511 0x1c34  LSI_FC - ok
13:42:02.0515 0x1c34  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
13:42:02.0516 0x1c34  LSI_SAS - ok
13:42:02.0520 0x1c34  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
13:42:02.0521 0x1c34  LSI_SAS2 - ok
13:42:02.0525 0x1c34  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
13:42:02.0527 0x1c34  LSI_SCSI - ok
13:42:02.0531 0x1c34  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
13:42:02.0532 0x1c34  luafv - ok
13:42:02.0535 0x1c34  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
13:42:02.0536 0x1c34  megasas - ok
13:42:02.0542 0x1c34  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
13:42:02.0546 0x1c34  MegaSR - ok
13:42:02.0551 0x1c34  [ 033B947AF4A997820E86FCB070B1F450, 2F54F9D1E8374187B2F206E7CF22A907C735C71F38445A94BDC84E83081D3A88 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
13:42:02.0553 0x1c34  Microsoft Office Groove Audit Service - ok
13:42:02.0556 0x1c34  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
13:42:02.0558 0x1c34  MMCSS - ok
13:42:02.0561 0x1c34  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
13:42:02.0562 0x1c34  Modem - ok
13:42:02.0565 0x1c34  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
13:42:02.0566 0x1c34  monitor - ok
13:42:02.0569 0x1c34  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
13:42:02.0570 0x1c34  mouclass - ok
13:42:02.0573 0x1c34  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
13:42:02.0574 0x1c34  mouhid - ok
13:42:02.0577 0x1c34  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
13:42:02.0579 0x1c34  mountmgr - ok
13:42:02.0584 0x1c34  [ 906DD5FE29BC912A87F66C9ACD87C720, 599CEE2D3AF0E52607C6984CE7F745C52BBBE6AE407E817AC25AD4D742098035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:42:02.0586 0x1c34  MozillaMaintenance - ok
13:42:02.0591 0x1c34  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
13:42:02.0593 0x1c34  mpio - ok
13:42:02.0596 0x1c34  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
13:42:02.0598 0x1c34  mpsdrv - ok
13:42:02.0613 0x1c34  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
13:42:02.0624 0x1c34  MpsSvc - ok
13:42:02.0629 0x1c34  [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
13:42:02.0632 0x1c34  MRxDAV - ok
13:42:02.0636 0x1c34  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
13:42:02.0638 0x1c34  mrxsmb - ok
13:42:02.0646 0x1c34  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:42:02.0650 0x1c34  mrxsmb10 - ok
13:42:02.0655 0x1c34  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:42:02.0657 0x1c34  mrxsmb20 - ok
13:42:02.0660 0x1c34  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
13:42:02.0661 0x1c34  msahci - ok
13:42:02.0665 0x1c34  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
13:42:02.0667 0x1c34  msdsm - ok
13:42:02.0672 0x1c34  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
13:42:02.0675 0x1c34  MSDTC - ok
13:42:02.0680 0x1c34  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
13:42:02.0681 0x1c34  Msfs - ok
13:42:02.0683 0x1c34  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
13:42:02.0684 0x1c34  mshidkmdf - ok
13:42:02.0686 0x1c34  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
13:42:02.0687 0x1c34  msisadrv - ok
13:42:02.0692 0x1c34  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
13:42:02.0695 0x1c34  MSiSCSI - ok
13:42:02.0698 0x1c34  msiserver - ok
13:42:02.0700 0x1c34  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
13:42:02.0701 0x1c34  MSKSSRV - ok
13:42:02.0703 0x1c34  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
13:42:02.0704 0x1c34  MSPCLOCK - ok
13:42:02.0707 0x1c34  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
13:42:02.0707 0x1c34  MSPQM - ok
13:42:02.0716 0x1c34  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
13:42:02.0722 0x1c34  MsRPC - ok
13:42:02.0727 0x1c34  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
13:42:02.0728 0x1c34  mssmbios - ok
13:42:02.0731 0x1c34  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
13:42:02.0732 0x1c34  MSTEE - ok
13:42:02.0735 0x1c34  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
13:42:02.0735 0x1c34  MTConfig - ok
13:42:02.0739 0x1c34  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
13:42:02.0740 0x1c34  Mup - ok
13:42:02.0749 0x1c34  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
13:42:02.0756 0x1c34  napagent - ok
13:42:02.0764 0x1c34  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
13:42:02.0768 0x1c34  NativeWifiP - ok
13:42:02.0785 0x1c34  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
13:42:02.0797 0x1c34  NDIS - ok
13:42:02.0800 0x1c34  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
13:42:02.0801 0x1c34  NdisCap - ok
13:42:02.0805 0x1c34  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
13:42:02.0805 0x1c34  NdisTapi - ok
13:42:02.0808 0x1c34  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
13:42:02.0809 0x1c34  Ndisuio - ok
13:42:02.0814 0x1c34  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
13:42:02.0817 0x1c34  NdisWan - ok
13:42:02.0820 0x1c34  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
13:42:02.0822 0x1c34  NDProxy - ok
13:42:02.0825 0x1c34  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
13:42:02.0827 0x1c34  Net Driver HPZ12 - ok
13:42:02.0830 0x1c34  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
13:42:02.0831 0x1c34  NetBIOS - ok
13:42:02.0838 0x1c34  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
13:42:02.0841 0x1c34  NetBT - ok
13:42:02.0845 0x1c34  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] Netlogon        C:\Windows\system32\lsass.exe
13:42:02.0846 0x1c34  Netlogon - ok
13:42:02.0855 0x1c34  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
13:42:02.0861 0x1c34  Netman - ok
13:42:02.0866 0x1c34  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:42:02.0868 0x1c34  NetMsmqActivator - ok
13:42:02.0873 0x1c34  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:42:02.0875 0x1c34  NetPipeActivator - ok
13:42:02.0886 0x1c34  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
13:42:02.0893 0x1c34  netprofm - ok
13:42:02.0898 0x1c34  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:42:02.0900 0x1c34  NetTcpActivator - ok
13:42:02.0905 0x1c34  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:42:02.0907 0x1c34  NetTcpPortSharing - ok
13:42:02.0910 0x1c34  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
13:42:02.0911 0x1c34  nfrd960 - ok
13:42:02.0919 0x1c34  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
13:42:02.0924 0x1c34  NlaSvc - ok
13:42:02.0992 0x1c34  [ 4AD196A3CFA4D546068E24477A720948, BE22C23E77CAB44108D9B5E83E83A44E17EEFFA0A9C99966B3ABD0BFA8F72727 ] Norton Ghost    C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe
13:42:03.0047 0x1c34  Norton Ghost - ok
13:42:03.0054 0x1c34  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
13:42:03.0055 0x1c34  Npfs - ok
13:42:03.0058 0x1c34  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
13:42:03.0060 0x1c34  nsi - ok
13:42:03.0063 0x1c34  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
13:42:03.0064 0x1c34  nsiproxy - ok
13:42:03.0092 0x1c34  [ E453ACF4E7D44E5530B5D5F2B9CA8563, 85EEBCBB3187A21282619A0264C10E9E52EFE4387F3425D3D279EF460DA3AD06 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
13:42:03.0116 0x1c34  Ntfs - ok
13:42:03.0120 0x1c34  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
13:42:03.0120 0x1c34  Null - ok
13:42:03.0125 0x1c34  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
13:42:03.0128 0x1c34  nvraid - ok
13:42:03.0133 0x1c34  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
13:42:03.0135 0x1c34  nvstor - ok
13:42:03.0141 0x1c34  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
13:42:03.0143 0x1c34  nv_agp - ok
13:42:03.0153 0x1c34  [ E54AA592A65F317390EEE386A8821692, 7997F8C07802F6C49F06620B35C4C382ADD5419EA8BE02CD7AF0F2EF42A93E53 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:42:03.0158 0x1c34  odserv - ok
13:42:03.0162 0x1c34  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
13:42:03.0164 0x1c34  ohci1394 - ok
13:42:03.0168 0x1c34  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:42:03.0170 0x1c34  ose - ok
13:42:03.0180 0x1c34  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
13:42:03.0185 0x1c34  p2pimsvc - ok
13:42:03.0195 0x1c34  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
13:42:03.0202 0x1c34  p2psvc - ok
13:42:03.0206 0x1c34  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
13:42:03.0207 0x1c34  Parport - ok
13:42:03.0211 0x1c34  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
13:42:03.0212 0x1c34  partmgr - ok
13:42:03.0218 0x1c34  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
13:42:03.0223 0x1c34  PcaSvc - ok
13:42:03.0229 0x1c34  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
13:42:03.0231 0x1c34  pci - ok
13:42:03.0234 0x1c34  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
13:42:03.0235 0x1c34  pciide - ok
13:42:03.0240 0x1c34  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
13:42:03.0244 0x1c34  pcmcia - ok
13:42:03.0247 0x1c34  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
13:42:03.0248 0x1c34  pcw - ok
13:42:03.0260 0x1c34  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
13:42:03.0269 0x1c34  PEAUTH - ok
13:42:03.0294 0x1c34  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
13:42:03.0312 0x1c34  PeerDistSvc - ok
13:42:03.0324 0x1c34  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
13:42:03.0325 0x1c34  PerfHost - ok
13:42:03.0355 0x1c34  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
13:42:03.0373 0x1c34  pla - ok
13:42:03.0384 0x1c34  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
13:42:03.0391 0x1c34  PlugPlay - ok
13:42:03.0396 0x1c34  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
13:42:03.0398 0x1c34  Pml Driver HPZ12 - ok
13:42:03.0401 0x1c34  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
13:42:03.0403 0x1c34  PNRPAutoReg - ok
13:42:03.0411 0x1c34  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
13:42:03.0416 0x1c34  PNRPsvc - ok
13:42:03.0427 0x1c34  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
13:42:03.0434 0x1c34  PolicyAgent - ok
13:42:03.0442 0x1c34  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
13:42:03.0446 0x1c34  Power - ok
13:42:03.0450 0x1c34  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
13:42:03.0452 0x1c34  PptpMiniport - ok
13:42:03.0456 0x1c34  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
13:42:03.0457 0x1c34  Processor - ok
13:42:03.0462 0x1c34  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
13:42:03.0467 0x1c34  ProfSvc - ok
13:42:03.0470 0x1c34  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] ProtectedStorage C:\Windows\system32\lsass.exe
13:42:03.0472 0x1c34  ProtectedStorage - ok
13:42:03.0477 0x1c34  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
13:42:03.0480 0x1c34  Psched - ok
13:42:03.0484 0x1c34  [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
13:42:03.0485 0x1c34  PxHlpa64 - ok
13:42:03.0512 0x1c34  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
13:42:03.0531 0x1c34  ql2300 - ok
13:42:03.0537 0x1c34  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
13:42:03.0539 0x1c34  ql40xx - ok
13:42:03.0545 0x1c34  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
13:42:03.0550 0x1c34  QWAVE - ok
13:42:03.0554 0x1c34  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
13:42:03.0555 0x1c34  QWAVEdrv - ok
13:42:03.0557 0x1c34  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
13:42:03.0558 0x1c34  RasAcd - ok
13:42:03.0561 0x1c34  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
13:42:03.0562 0x1c34  RasAgileVpn - ok
13:42:03.0568 0x1c34  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
13:42:03.0571 0x1c34  RasAuto - ok
13:42:03.0575 0x1c34  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
13:42:03.0577 0x1c34  Rasl2tp - ok
13:42:03.0586 0x1c34  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
13:42:03.0592 0x1c34  RasMan - ok
13:42:03.0596 0x1c34  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
13:42:03.0598 0x1c34  RasPppoe - ok
13:42:03.0601 0x1c34  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
13:42:03.0603 0x1c34  RasSstp - ok
13:42:03.0611 0x1c34  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
13:42:03.0615 0x1c34  rdbss - ok
13:42:03.0618 0x1c34  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
13:42:03.0619 0x1c34  rdpbus - ok
13:42:03.0622 0x1c34  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
13:42:03.0622 0x1c34  RDPCDD - ok
13:42:03.0630 0x1c34  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
13:42:03.0632 0x1c34  RDPDR - ok
13:42:03.0635 0x1c34  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
13:42:03.0636 0x1c34  RDPENCDD - ok
13:42:03.0640 0x1c34  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
13:42:03.0640 0x1c34  RDPREFMP - ok
13:42:03.0645 0x1c34  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
13:42:03.0646 0x1c34  RdpVideoMiniport - ok
13:42:03.0652 0x1c34  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
13:42:03.0655 0x1c34  RDPWD - ok
13:42:03.0662 0x1c34  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
13:42:03.0666 0x1c34  rdyboost - ok
13:42:03.0671 0x1c34  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
13:42:03.0673 0x1c34  RemoteAccess - ok
13:42:03.0679 0x1c34  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
13:42:03.0683 0x1c34  RemoteRegistry - ok
13:42:03.0687 0x1c34  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
13:42:03.0689 0x1c34  RpcEptMapper - ok
13:42:03.0692 0x1c34  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
13:42:03.0694 0x1c34  RpcLocator - ok
13:42:03.0704 0x1c34  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
13:42:03.0713 0x1c34  RpcSs - ok
13:42:03.0717 0x1c34  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
13:42:03.0718 0x1c34  rspndr - ok
13:42:03.0722 0x1c34  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
13:42:03.0722 0x1c34  s3cap - ok
13:42:03.0725 0x1c34  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] SamSs           C:\Windows\system32\lsass.exe
13:42:03.0727 0x1c34  SamSs - ok
13:42:03.0731 0x1c34  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
13:42:03.0733 0x1c34  sbp2port - ok
13:42:03.0739 0x1c34  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
13:42:03.0743 0x1c34  SCardSvr - ok
13:42:03.0748 0x1c34  [ DD8C29C96307FDBD2DFA6F1730FBCE9A, C0B5DA32EF9913634C0ABFDADA371AC4A909CD83ED174B311EF00AFFA13B3A38 ] SCDEmu          C:\Windows\system32\drivers\SCDEmu.sys
13:42:03.0750 0x1c34  SCDEmu - ok
13:42:03.0753 0x1c34  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
13:42:03.0754 0x1c34  scfilter - ok
13:42:03.0775 0x1c34  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
13:42:03.0790 0x1c34  Schedule - ok
13:42:03.0795 0x1c34  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
13:42:03.0797 0x1c34  SCPolicySvc - ok
13:42:03.0803 0x1c34  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
13:42:03.0807 0x1c34  SDRSVC - ok
13:42:03.0810 0x1c34  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
13:42:03.0811 0x1c34  secdrv - ok
13:42:03.0814 0x1c34  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
13:42:03.0817 0x1c34  seclogon - ok
13:42:03.0821 0x1c34  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
13:42:03.0823 0x1c34  SENS - ok
13:42:03.0827 0x1c34  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
13:42:03.0829 0x1c34  SensrSvc - ok
13:42:03.0833 0x1c34  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
13:42:03.0834 0x1c34  Serenum - ok
13:42:03.0838 0x1c34  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
13:42:03.0840 0x1c34  Serial - ok
13:42:03.0843 0x1c34  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
13:42:03.0844 0x1c34  sermouse - ok
13:42:03.0854 0x1c34  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
13:42:03.0857 0x1c34  SessionEnv - ok
13:42:03.0860 0x1c34  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
13:42:03.0861 0x1c34  sffdisk - ok
13:42:03.0864 0x1c34  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
13:42:03.0865 0x1c34  sffp_mmc - ok
13:42:03.0868 0x1c34  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
13:42:03.0869 0x1c34  sffp_sd - ok
13:42:03.0871 0x1c34  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
13:42:03.0872 0x1c34  sfloppy - ok
13:42:03.0881 0x1c34  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
13:42:03.0886 0x1c34  SharedAccess - ok
13:42:03.0896 0x1c34  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:42:03.0902 0x1c34  ShellHWDetection - ok
13:42:03.0906 0x1c34  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
13:42:03.0907 0x1c34  SiSRaid2 - ok
13:42:03.0911 0x1c34  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
13:42:03.0912 0x1c34  SiSRaid4 - ok
13:42:03.0920 0x1c34  [ 0B70786BD1062CD4C6B58E412B9C3E55, 60ED027642FFF97BFFA55AE3EFFCCBB6D6AD8196D35E9ED06F9AF431E3C0402A ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
13:42:03.0924 0x1c34  SkypeUpdate - ok
13:42:03.0929 0x1c34  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
13:42:03.0930 0x1c34  Smb - ok
13:42:03.0937 0x1c34  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
13:42:03.0939 0x1c34  SNMPTRAP - ok
13:42:03.0942 0x1c34  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
13:42:03.0943 0x1c34  spldr - ok
13:42:03.0954 0x1c34  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
13:42:03.0963 0x1c34  Spooler - ok
13:42:04.0018 0x1c34  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
13:42:04.0062 0x1c34  sppsvc - ok
13:42:04.0069 0x1c34  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
13:42:04.0072 0x1c34  sppuinotify - ok
13:42:04.0082 0x1c34  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
13:42:04.0088 0x1c34  srv - ok
13:42:04.0098 0x1c34  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
13:42:04.0103 0x1c34  srv2 - ok
13:42:04.0109 0x1c34  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
13:42:04.0111 0x1c34  srvnet - ok
13:42:04.0117 0x1c34  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
13:42:04.0121 0x1c34  SSDPSRV - ok
13:42:04.0126 0x1c34  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
13:42:04.0129 0x1c34  SstpSvc - ok
13:42:04.0132 0x1c34  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
13:42:04.0133 0x1c34  stexstor - ok
13:42:04.0146 0x1c34  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
13:42:04.0155 0x1c34  stisvc - ok
13:42:04.0159 0x1c34  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
13:42:04.0160 0x1c34  storflt - ok
13:42:04.0164 0x1c34  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
13:42:04.0165 0x1c34  storvsc - ok
13:42:04.0168 0x1c34  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
13:42:04.0168 0x1c34  swenum - ok
13:42:04.0179 0x1c34  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
13:42:04.0187 0x1c34  swprv - ok
13:42:04.0192 0x1c34  Symantec SymSnap VSS Provider - ok
13:42:04.0199 0x1c34  [ 2D9B2746F7DEA46D1572B84A06311566, 06A5DDF73FB2E8B5BB21B944F155235E9A6341925100F48E30339807080C586C ] symsnap         C:\Windows\system32\DRIVERS\symsnap.sys
13:42:04.0201 0x1c34  symsnap - ok
13:42:04.0247 0x1c34  [ EA1A479651CA2E0409C29D586C91901D, 37A9285F027E6129AB5BFF585C3E788B048B7D5ED463387B3047868DA29E8B6A ] SymSnapService  C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
13:42:04.0282 0x1c34  SymSnapService - ok
13:42:04.0289 0x1c34  [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc      C:\Windows\system32\drivers\Synth3dVsc.sys
13:42:04.0290 0x1c34  Synth3dVsc - ok
13:42:04.0319 0x1c34  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
13:42:04.0342 0x1c34  SysMain - ok
13:42:04.0348 0x1c34  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:42:04.0351 0x1c34  TabletInputService - ok
13:42:04.0355 0x1c34  [ 3A7CABF7DE8F1325BE8F46685469AEC3, 03B2FDEA5E10B9584EFC4ED22D6C2529322FBEF0DFEC60FE12FCE5C4A2E42F9C ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
13:42:04.0356 0x1c34  taphss6 - ok
13:42:04.0364 0x1c34  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
13:42:04.0370 0x1c34  TapiSrv - ok
13:42:04.0375 0x1c34  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
13:42:04.0378 0x1c34  TBS - ok
13:42:04.0409 0x1c34  [ B62A953F2BF3922C8764A29C34A22899, 4A117FF9D1BD58C6A1787DDA7402BAE30E4BA7A70FE3A144F41DD647AA7A3901 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
13:42:04.0432 0x1c34  Tcpip - ok
13:42:04.0464 0x1c34  [ B62A953F2BF3922C8764A29C34A22899, 4A117FF9D1BD58C6A1787DDA7402BAE30E4BA7A70FE3A144F41DD647AA7A3901 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
13:42:04.0488 0x1c34  TCPIP6 - ok
13:42:04.0495 0x1c34  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
13:42:04.0496 0x1c34  tcpipreg - ok
13:42:04.0502 0x1c34  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
13:42:04.0502 0x1c34  TDPIPE - ok
13:42:04.0506 0x1c34  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
13:42:04.0506 0x1c34  TDTCP - ok
13:42:04.0512 0x1c34  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
13:42:04.0514 0x1c34  tdx - ok
13:42:04.0518 0x1c34  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
13:42:04.0519 0x1c34  TermDD - ok
13:42:04.0522 0x1c34  [ EF4469AB69EB15E5D3754E6AEAFBCD3D, 3609214C3D5181364B544EBF17E9A109952BE1C4C35BE0A8727BFA8F49ECB130 ] terminpt        C:\Windows\system32\drivers\terminpt.sys
13:42:04.0523 0x1c34  terminpt - ok
13:42:04.0537 0x1c34  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
13:42:04.0548 0x1c34  TermService - ok
13:42:04.0552 0x1c34  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
13:42:04.0555 0x1c34  Themes - ok
13:42:04.0559 0x1c34  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
13:42:04.0561 0x1c34  THREADORDER - ok
13:42:04.0567 0x1c34  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
13:42:04.0570 0x1c34  TrkWks - ok
13:42:04.0576 0x1c34  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:42:04.0579 0x1c34  TrustedInstaller - ok
13:42:04.0585 0x1c34  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
13:42:04.0585 0x1c34  tssecsrv - ok
13:42:04.0589 0x1c34  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
13:42:04.0591 0x1c34  TsUsbFlt - ok
13:42:04.0594 0x1c34  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
13:42:04.0595 0x1c34  TsUsbGD - ok
13:42:04.0600 0x1c34  [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
13:42:04.0602 0x1c34  tsusbhub - ok
13:42:04.0607 0x1c34  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
13:42:04.0609 0x1c34  tunnel - ok
13:42:04.0613 0x1c34  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
13:42:04.0614 0x1c34  uagp35 - ok
13:42:04.0622 0x1c34  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
13:42:04.0627 0x1c34  udfs - ok
13:42:04.0635 0x1c34  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
13:42:04.0637 0x1c34  UI0Detect - ok
13:42:04.0642 0x1c34  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
13:42:04.0643 0x1c34  uliagpkx - ok
13:42:04.0647 0x1c34  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
13:42:04.0648 0x1c34  umbus - ok
13:42:04.0651 0x1c34  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
13:42:04.0652 0x1c34  UmPass - ok
13:42:04.0658 0x1c34  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
13:42:04.0663 0x1c34  UmRdpService - ok
13:42:04.0673 0x1c34  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
13:42:04.0679 0x1c34  upnphost - ok
13:42:04.0685 0x1c34  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A, DE1CDDEEF2285CC8387E88ACB13C000576DC8819DF6DC648C988068B5C83BB15 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
13:42:04.0686 0x1c34  usbaudio - ok
13:42:04.0691 0x1c34  [ 6F1A3157A1C89435352CEB543CDB359C, 325B46220779C5FE3B6F19FF794474837FAB9675D9C98ACB68CCE47B1CFE5F12 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
13:42:04.0692 0x1c34  usbccgp - ok
13:42:04.0697 0x1c34  [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
13:42:04.0699 0x1c34  usbcir - ok
13:42:04.0703 0x1c34  [ C025055FE7B87701EB042095DF1A2D7B, D7B34B6C2C5BD3C8141895AC21BB637EA5E3C4F7A85EEF4C4C36E6BB2045A3D9 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
13:42:04.0704 0x1c34  usbehci - ok
13:42:04.0713 0x1c34  [ 287C6C9410B111B68B52CA298F7B8C24, 98900C08FE662A00DF8B37837B2BEBF9ACB7989C387AF36B2109B05A4F462D4E ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
13:42:04.0717 0x1c34  usbhub - ok
13:42:04.0740 0x1c34  [ 49C26DAC5A04080061670E2951BA4880, 158C042AA8AFE9382BC457421C89210940EB31CF7F6ADD39CD7F2C30066C3A3C ] USBMULCD        C:\Windows\system32\drivers\CM10664.sys
13:42:04.0756 0x1c34  USBMULCD - ok
13:42:04.0761 0x1c34  [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
13:42:04.0761 0x1c34  usbohci - ok
13:42:04.0766 0x1c34  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
13:42:04.0766 0x1c34  usbprint - ok
13:42:04.0770 0x1c34  [ AAA2513C8AED8B54B189FD0C6B1634C0, 02FEE0B756AA559C29477A19861AC16D5A3152DC3C897C7D466423438B6A5E42 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
13:42:04.0771 0x1c34  usbscan - ok
13:42:04.0776 0x1c34  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:42:04.0777 0x1c34  USBSTOR - ok
13:42:04.0781 0x1c34  [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
13:42:04.0782 0x1c34  usbuhci - ok
13:42:04.0788 0x1c34  [ 454800C2BC7F3927CE030141EE4F4C50, 10901E62DAA70657C499AD590DECCCA6E46FDDF4A193B2F19279E1B8ED7B1E44 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
13:42:04.0791 0x1c34  usbvideo - ok
13:42:04.0795 0x1c34  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
13:42:04.0797 0x1c34  UxSms - ok
13:42:04.0803 0x1c34  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] VaultSvc        C:\Windows\system32\lsass.exe
13:42:04.0805 0x1c34  VaultSvc - ok
13:42:04.0810 0x1c34  [ 8980F9528BAB3AA881892669DFC79228, CAB42BC506A84593D06DD5AB6401821B67F2556F9B8EB7B6878E2E4C3B3CE6B9 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
13:42:04.0812 0x1c34  VBoxNetAdp - ok
13:42:04.0815 0x1c34  VBoxNetFlt - ok
13:42:04.0819 0x1c34  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
13:42:04.0820 0x1c34  vdrvroot - ok
13:42:04.0832 0x1c34  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
13:42:04.0840 0x1c34  vds - ok
13:42:04.0844 0x1c34  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
13:42:04.0845 0x1c34  vga - ok
13:42:04.0849 0x1c34  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
13:42:04.0850 0x1c34  VgaSave - ok
13:42:04.0853 0x1c34  VGPU - ok
13:42:04.0860 0x1c34  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
13:42:04.0863 0x1c34  vhdmp - ok
13:42:04.0867 0x1c34  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
13:42:04.0868 0x1c34  viaide - ok
13:42:04.0874 0x1c34  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
13:42:04.0877 0x1c34  vmbus - ok
13:42:04.0880 0x1c34  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
13:42:04.0881 0x1c34  VMBusHID - ok
13:42:04.0885 0x1c34  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
13:42:04.0887 0x1c34  volmgr - ok
13:42:04.0897 0x1c34  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
13:42:04.0902 0x1c34  volmgrx - ok
13:42:04.0910 0x1c34  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
13:42:04.0915 0x1c34  volsnap - ok
13:42:04.0921 0x1c34  [ ABD9B4A7E2D0AE51A3B8DF1AF3152D61, 1EAA4D8D35008E4D5C4AEA91C3ABD3D5BB5F8DF2D95D35792B3F3BB31EABB7CF ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
13:42:04.0924 0x1c34  vpcbus - ok
13:42:04.0929 0x1c34  [ 31924E31BC315773E6D149B157DB46D5, 8E2A8785D2D7327F9DE046E6245F233280395AA42D5BAD1048021109628840C2 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
13:42:04.0930 0x1c34  vpcusb - ok
13:42:04.0939 0x1c34  [ C5B651E52540E6F46DA66574C74B4898, 4292E1D574FB0AF1D61F17F88D82A1A77738A3F7ECECB49FF20997FEC99078B2 ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
13:42:04.0944 0x1c34  vpcvmm - ok
13:42:04.0948 0x1c34  [ 8B7454930230DB4BC4BA35A467BE09AA, EDD5E20DB25915B148B53EF4D3A09A734E232F1C6BE7631F45E3692BC9777360 ] VProEventMonitor C:\Windows\system32\DRIVERS\vproeventmonitor.sys
13:42:04.0949 0x1c34  VProEventMonitor - ok
13:42:04.0955 0x1c34  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
13:42:04.0958 0x1c34  vsmraid - ok
13:42:04.0985 0x1c34  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
13:42:05.0006 0x1c34  VSS - ok
13:42:05.0011 0x1c34  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
13:42:05.0012 0x1c34  vwifibus - ok
13:42:05.0016 0x1c34  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
13:42:05.0017 0x1c34  vwififlt - ok
13:42:05.0021 0x1c34  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
13:42:05.0022 0x1c34  vwifimp - ok
13:42:05.0032 0x1c34  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
13:42:05.0038 0x1c34  W32Time - ok
13:42:05.0046 0x1c34  [ 3FC4AD0528B06A48747494F80D1D8B6A, D2C77A2006B61B10CA613809B2AD43E008B9423A4F92FA2DB79A89B3286EC9C4 ] WacHidRouter    C:\Windows\system32\DRIVERS\wachidrouter.sys
13:42:05.0048 0x1c34  WacHidRouter - ok
13:42:05.0052 0x1c34  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
13:42:05.0052 0x1c34  WacomPen - ok
13:42:05.0056 0x1c34  [ 7C1C4BCDD2729F942F7AF8E1A9F9B536, 6448D1E680B7D14C99F1D52AA755EF87287BA05AFC6F360A8D6812BDF887BC90 ] wacomrouterfilter C:\Windows\system32\DRIVERS\wacomrouterfilter.sys
13:42:05.0057 0x1c34  wacomrouterfilter - ok
13:42:05.0060 0x1c34  WajamUpdaterV2 - ok
13:42:05.0066 0x1c34  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
13:42:05.0067 0x1c34  WANARP - ok
13:42:05.0071 0x1c34  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
13:42:05.0073 0x1c34  Wanarpv6 - ok
13:42:05.0099 0x1c34  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
13:42:05.0121 0x1c34  wbengine - ok
13:42:05.0129 0x1c34  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
13:42:05.0134 0x1c34  WbioSrvc - ok
13:42:05.0143 0x1c34  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
13:42:05.0150 0x1c34  wcncsvc - ok
13:42:05.0154 0x1c34  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:42:05.0157 0x1c34  WcsPlugInService - ok
13:42:05.0161 0x1c34  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
13:42:05.0162 0x1c34  Wd - ok
13:42:05.0177 0x1c34  [ 442783E2CB0DA19873B7A63833FF4CB4, 09254970265476214F3187CC22A4F9C7C2769D419600E83FBE302C3A103E527F ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
13:42:05.0188 0x1c34  Wdf01000 - ok
13:42:05.0193 0x1c34  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
13:42:05.0197 0x1c34  WdiServiceHost - ok
13:42:05.0201 0x1c34  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
13:42:05.0204 0x1c34  WdiSystemHost - ok
13:42:05.0212 0x1c34  [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient       C:\Windows\System32\webclnt.dll
13:42:05.0217 0x1c34  WebClient - ok
13:42:05.0225 0x1c34  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
13:42:05.0230 0x1c34  Wecsvc - ok
13:42:05.0235 0x1c34  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
13:42:05.0238 0x1c34  wercplsupport - ok
13:42:05.0244 0x1c34  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
13:42:05.0247 0x1c34  WerSvc - ok
13:42:05.0250 0x1c34  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
13:42:05.0251 0x1c34  WfpLwf - ok
13:42:05.0257 0x1c34  [ 52DED146E4797E6CCF94799E8E22BB2A, 57A29260D81AA3AD3F8C29E9CFA7CE3970D7A8BF673ADD9B256EE76C7DEC080E ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
13:42:05.0259 0x1c34  WimFltr - ok
13:42:05.0263 0x1c34  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
13:42:05.0264 0x1c34  WIMMount - ok
13:42:05.0267 0x1c34  WinDefend - ok
13:42:05.0275 0x1c34  WinHttpAutoProxySvc - ok
13:42:05.0285 0x1c34  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
13:42:05.0289 0x1c34  Winmgmt - ok
13:42:05.0323 0x1c34  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
13:42:05.0350 0x1c34  WinRM - ok
13:42:05.0361 0x1c34  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
13:42:05.0362 0x1c34  WinUsb - ok
13:42:05.0379 0x1c34  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
13:42:05.0391 0x1c34  Wlansvc - ok
13:42:05.0396 0x1c34  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
13:42:05.0397 0x1c34  WmiAcpi - ok
13:42:05.0406 0x1c34  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
13:42:05.0409 0x1c34  wmiApSrv - ok
13:42:05.0413 0x1c34  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
13:42:05.0415 0x1c34  WPCSvc - ok
13:42:05.0420 0x1c34  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
13:42:05.0424 0x1c34  WPDBusEnum - ok
13:42:05.0428 0x1c34  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
13:42:05.0429 0x1c34  ws2ifsl - ok
13:42:05.0434 0x1c34  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
13:42:05.0437 0x1c34  wscsvc - ok
13:42:05.0442 0x1c34  WSearch - ok
13:42:05.0459 0x1c34  [ 92AFC009B60EB63877E6E11EFFD19846, 6210A73E1B38C9EB63F73A1A296FC2212524896DD5F3200F14A7DC415FF2DF33 ] WTabletServicePro C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
13:42:05.0467 0x1c34  WTabletServicePro - ok
13:42:05.0509 0x1c34  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
13:42:05.0540 0x1c34  wuauserv - ok
13:42:05.0547 0x1c34  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
13:42:05.0549 0x1c34  WudfPf - ok
13:42:05.0555 0x1c34  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
13:42:05.0558 0x1c34  WUDFRd - ok
13:42:05.0565 0x1c34  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
13:42:05.0569 0x1c34  wudfsvc - ok
13:42:05.0576 0x1c34  [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc         C:\Windows\System32\wwansvc.dll
13:42:05.0581 0x1c34  WwanSvc - ok
13:42:05.0593 0x1c34  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
13:42:05.0598 0x1c34  yukonw7 - ok
13:42:05.0608 0x1c34  ================ Scan global ===============================
13:42:05.0611 0x1c34  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
13:42:05.0617 0x1c34  [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll
13:42:05.0628 0x1c34  [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll
13:42:05.0634 0x1c34  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
13:42:05.0642 0x1c34  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
13:42:05.0648 0x1c34  [ Global ] - ok
13:42:05.0648 0x1c34  ================ Scan MBR ==================================
13:42:05.0649 0x1c34  [ B1F7D7F6E4FBE98E578562A22A94D02C ] \Device\Harddisk0\DR0
13:42:05.0798 0x1c34  \Device\Harddisk0\DR0 - ok
13:42:05.0801 0x1c34  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
13:42:05.0902 0x1c34  \Device\Harddisk1\DR1 - ok
13:42:05.0907 0x1c34  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
13:42:05.0921 0x1c34  \Device\Harddisk2\DR2 - ok
13:42:05.0924 0x1c34  [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk3\DR3
13:42:06.0010 0x1c34  \Device\Harddisk3\DR3 - ok
13:42:06.0010 0x1c34  ================ Scan VBR ==================================
13:42:06.0011 0x1c34  [ 7BD816D7811F85C3D712B5FBA75636FF ] \Device\Harddisk0\DR0\Partition1
13:42:06.0012 0x1c34  \Device\Harddisk0\DR0\Partition1 - ok
13:42:06.0015 0x1c34  [ 8E73FAFCA579111F1B7222297277F5EF ] \Device\Harddisk1\DR1\Partition1
13:42:06.0016 0x1c34  \Device\Harddisk1\DR1\Partition1 - ok
13:42:06.0017 0x1c34  [ EB4378ECCA1B4BCE915DD999845662D9 ] \Device\Harddisk1\DR1\Partition2
13:42:06.0018 0x1c34  \Device\Harddisk1\DR1\Partition2 - ok
13:42:06.0019 0x1c34  [ A648EAFFB3CCAF54A2892CCE25C9FBBD ] \Device\Harddisk2\DR2\Partition1
13:42:06.0020 0x1c34  \Device\Harddisk2\DR2\Partition1 - ok
13:42:06.0022 0x1c34  [ AE2C03179C42F9684D46BBBDE3317FB5 ] \Device\Harddisk3\DR3\Partition1
13:42:06.0072 0x1c34  \Device\Harddisk3\DR3\Partition1 - ok
13:42:06.0072 0x1c34  ================ Scan generic autorun ======================
13:42:06.0080 0x1c34  [ 51138BEEA3E2C21EC44D0932C71762A8, 5AD3C37E6F2B9DB3EE8B5AEEDC474645DE90C66E3D95F8620C48102F1EBA4124 ] C:\Windows\syswow64\RunDll32.exe
13:42:06.0082 0x1c34  Cm106Sound - ok
13:42:06.0284 0x1c34  [ A527E6181F1E58BDF9134DE04AAC2B02, 3E4F7ABDFD468E71A4510A2C193C6EDCE2694175B17C055951BC43AB8E283A20 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
13:42:06.0441 0x1c34  RTHDVCPL - ok
13:42:06.0453 0x1c34  [ FECCBD3F5093B217822580C85778CDC4, A28757D461AD72A0DE07EC0B5FA06373F1A4DD63A8855D49AEF733ADA64FAADD ] C:\Program Files\iTunes\iTunesHelper.exe
13:42:06.0455 0x1c34  iTunesHelper - ok
13:42:06.0466 0x1c34  [ 7486DEF5CC9334F58871D6D18B73C562, 68079CAEE80FB4A375EF04B6D3335FDE3A223C295D66821D13FFEF0FFD6B80C3 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
13:42:06.0472 0x1c34  AdobeAAMUpdater-1.0 - ok
13:42:06.0475 0x1c34  [ B7A09BFAB88B2F958DB95826FEF97E47, 030516764AA5755661A81B6676251694CF572589CC90B9DBE860616BDF2912A5 ] C:\Program Files (x86)\ArcSoft\SimHD IM Plug-In\ArcSoft SimHD IM Plug-In.exe
13:42:06.0477 0x1c34  ArcSimHDHook - ok
13:42:06.0479 0x1c34  [ DB4E2D9C09A5762CB2551222B5E443B2, 318AD09D1821E38B7D7ACC0A06965057B494A752C9E34FD1CA41247DC703F985 ] C:\Windows\RaidTool\xInsIDE.exe
13:42:06.0479 0x1c34  JMB36X IDE Setup - ok
13:42:06.0482 0x1c34  [ 35DCD380D4D579D8B8EA91D5D8AE444C, AC5B338FCD9358C2D519A7199B13794F33BFBE5BCE3AB5A6993A0D5A65A7EB1C ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
13:42:06.0484 0x1c34  GrooveMonitor - ok
13:42:06.0498 0x1c34  [ 16598A9758F386F82D2C447C70C95D10, 0A698135EFC195C359702AA76897B9C67712FDE0A54B51587134B65510B154ED ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
13:42:06.0508 0x1c34  StartCCC - ok
13:42:06.0511 0x1c34  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
13:42:06.0512 0x1c34  HP Software Update - ok
13:42:06.0595 0x1c34  [ 65C6AA484AD2287D20541C7735989437, 1842787640391F4A4CD9ED0A531298A61F4B2FB09BEC98FEE256313AFB458EDB ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
13:42:06.0672 0x1c34  AvastUI.exe - ok
13:42:06.0711 0x1c34  [ 051B5C9492CBAF8AF8BF800A27BE0529, 27674C88CBDE020FD385C4BE81E51D67A5A1824AC6E2F85E0BB13BD6D31815AC ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
13:42:06.0743 0x1c34  Adobe Creative Cloud - ok
13:42:06.0773 0x1c34  [ 5A54EE2599D3C9A5127338F897D7C18E, CEE87BF516A7F1F2E47B6322F2A681483A1B9730745F35AA6729A9309B439DD7 ] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe
13:42:06.0798 0x1c34  Acrobat Assistant 8.0 - ok
13:42:06.0819 0x1c34  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
13:42:06.0837 0x1c34  Sidebar - ok
13:42:06.0840 0x1c34  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
13:42:06.0843 0x1c34  mctadmin - ok
13:42:06.0862 0x1c34  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
13:42:06.0876 0x1c34  Sidebar - ok
13:42:06.0880 0x1c34  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
13:42:06.0882 0x1c34  mctadmin - ok
13:42:06.0889 0x1c34  [ E915FCEDE4A66183745346E294E6AD03, 7029B02395AD320B06901F1C4AD6698234E02308461A48AF0A8805D0CA69ADE3 ] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
13:42:06.0894 0x1c34  HydraVisionDesktopManager - ok
13:42:06.0908 0x1c34  [ EA3F2D667BCF519C29B47E0440D3A823, 7A2098D9E89FCD424160CC8286AFFB596F176B9EE551E9FF7018ED90BC471E58 ] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
13:42:06.0920 0x1c34  Adobe Acrobat Synchronizer - ok
13:42:06.0936 0x1c34  [ 72AE53A712F5B018D888DE460FAF0596, 59CC546BF583B4B1EB9BE6872241B820705D9EF225A99CD741A509AE9FB0EDD6 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
13:42:06.0946 0x1c34  GoogleChromeAutoLaunch_25B31D0574BB19A5575ACF5414E30288 - ok
13:42:06.0956 0x1c34  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
13:42:06.0960 0x1c34  Uninstall C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64 - ok
13:42:06.0969 0x1c34  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
13:42:06.0974 0x1c34  Uninstall C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918 - ok
13:42:06.0974 0x1c34  Waiting for KSN requests completion. In queue: 221
13:42:07.0974 0x1c34  Waiting for KSN requests completion. In queue: 221
13:42:08.0974 0x1c34  Waiting for KSN requests completion. In queue: 221
13:42:09.0983 0x1c34  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.2.2218.942 ), 0x41000 ( enabled : updated )
13:42:09.0984 0x1c34  FW detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.2.2218.942 ), 0x41010 ( enabled )
13:42:12.0693 0x1c34  ============================================================
13:42:12.0693 0x1c34  Scan finished
13:42:12.0693 0x1c34  ============================================================
13:42:12.0697 0x0908  Detected object count: 0
13:42:12.0697 0x0908  Actual detected object count: 0
13:42:37.0417 0x1ff8  Deinitialize success

M-K-D-B · 17.08.2015, 09:25

Schritt 1
Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2
Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 3

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

Schritt 4

Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Scan.
FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
Poste mir beide Logdateien mit deiner nächsten Antwort.

Bitte poste mit deiner nächsten Antwort

die Logdatei von AdwCleaner,
die Logdatei von MBAM,
die Logdatei von JRT,
die beiden neuen Logdateien von FRST.

sgb · 17.08.2015, 11:51

Code:

ATTFilter

# AdwCleaner v5.000 - Logfile created 17/08/2015 at 12:27:42
# Updated 14/08/2015 by Xplode
# Database : 2015-08-16.2 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : schweigelicht - SCHWEIGELICHTPC
# Running from : C:\Users\schweigelicht\Desktop\AdwCleaner_5.000.exe
# Option : Cleaning

***** [ Services ] *****

[-] Service Deleted : WajamUpdaterV2

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\GreenTree Applications
[-] Folder Deleted : C:\Program Files (x86)\RegClean Pro
[-] Folder Deleted : C:\Users\schweigelicht\AppData\Local\FileViewPro
[-] Folder Deleted : C:\Users\schweigelicht\AppData\LocalLow\HPAppData
[-] Folder Deleted : C:\Users\schweigelicht\AppData\Roaming\Systweak

***** [ Files ] *****

[-] File Deleted : C:\END
[-] File Deleted : C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_primeshare.tv_0.localstorage
[-] File Deleted : C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_primeshare.tv_0.localstorage-journal
[-] File Deleted : C:\Users\schweigelicht\AppData\Roaming\Mozilla\Firefox\Profiles\1qefuc4s.default\searchplugins\trovi-search.xml
[-] File Deleted : C:\Windows\Reimage.ini
[-] File Deleted : C:\Windows\Sysnative\roboot64.exe

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E69D4A59-73DE-4E38-9FB3-740EC4D9060D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\OCS
[-] Key Deleted : HKCU\Software\Softonic
[-] Key Deleted : HKCU\Software\systweak
[-] Key Deleted : HKCU\Software\Reimage
[-] Key Deleted : HKLM\SOFTWARE\systweak
[!] Key Not Deleted : [x64] HKCU\Software\Conduit
[!] Key Not Deleted : [x64] HKCU\Software\OCS
[!] Key Not Deleted : [x64] HKCU\Software\Softonic
[!] Key Not Deleted : [x64] HKCU\Software\systweak
[!] Key Not Deleted : [x64] HKCU\Software\Reimage
[-] Key Deleted : [x64] HKLM\SOFTWARE\Reimage
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]

***** [ Web browsers ] *****


*************************

!! Unable to delete Internet Explorer policies
!! Unable to delete Chrome policies

*************************

C:\AdwCleaner[C2].txt - [4498 octets] - [17/08/2015 12:27:42]
C:\AdwCleaner[S2].txt - [4284 octets] - [17/08/2015 12:19:33]
C:\AdwCleaner[S3].txt - [4347 octets] - [17/08/2015 12:22:56]

########## EOF - C:\AdwCleaner[C2].txt - [4687 octets] ##########

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 17.08.2015
Suchlaufzeit: 12:32
Protokolldatei: mbam.txt
Administrator: Ja

Version: 2.1.8.1057
Malware-Datenbank: v2015.08.17.04
Rootkit-Datenbank: v2015.08.16.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: schweigelicht

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 407431
Abgelaufene Zeit: 5 Min., 14 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 1
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, In Quarantäne, [bd2be8211675f93d0d2add44f90a8779], 

Registrierungswerte: 3
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURLFallback, hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0Ezz0C0C0EyBtC0FyBtD0C0DyEtN0D0Tzu0CyCyDyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=924446841&ir=, In Quarantäne, [bd2be8211675f93d0d2add44f90a8779]
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|FaviconURL, hxxp://start.mysearchdial.com/favicon.ico, In Quarantäne, [1bcd39d0662533033dfa5ec34eb5837d]
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|FaviconURLFallback, hxxp://start.mysearchdial.com/favicon.ico, In Quarantäne, [727688815833092dd463c55caa591fe1]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 2
Malware.Trace.E, C:\Users\schweigelicht\AppData\Roaming\apachesrvin.vbs, In Quarantäne, [e602c14858339c9a435abdc13acadf21], 
Malware.Trace.E, C:\Users\schweigelicht\AppData\Roaming\die.bat, In Quarantäne, [7078ae5bd2b905316e6fa1f7c53fe31d], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.6 (08.10.2015:1)
OS: Windows 7 Ultimate x64
Ran by schweigelicht on 17.08.2015 at 12:45:45,05
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_25B31D0574BB19A5575ACF5414E30288



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] C:\ProgramData\esellerate
Successfully deleted: [Folder] C:\Users\schweigelicht\AppData\Roaming\software informer



~~~ FireFox

Emptied folder: C:\Users\schweigelicht\AppData\Roaming\mozilla\firefox\profiles\1qefuc4s.default\minidumps [1 files]



~~~ Chrome


[C:\Users\schweigelicht\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\schweigelicht\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\schweigelicht\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\schweigelicht\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17.08.2015 at 12:48:10,69
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:16-08-2015
durchgeführt von schweigelicht (2015-08-17 12:50:34)
Gestartet von C:\Users\schweigelicht\Desktop
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1641480961-1619121124-1950988501-500 - Administrator - Disabled)
Gast (S-1-5-21-1641480961-1619121124-1950988501-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1641480961-1619121124-1950988501-1043 - Limited - Enabled)
schweigelicht (S-1-5-21-1641480961-1619121124-1950988501-1000 - Administrator - Enabled) => C:\Users\schweigelicht

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version:  - Microsoft)
2007 Microsoft Office Suite Service Pack 1 (SP1) (x32 Version:  - Microsoft) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Ableton Live 9 Suite (HKLM\...\{629C521E-5C03-4A17-9851-F8313A41BB20}) (Version: 9.0.0.0 - Ableton)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe After Effects CC 2015 (HKLM-x32\...\{147EC100-14BE-45EF-AB42-35BAEE7D02F0}) (Version: 13.5.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.2.0.129 - Adobe Systems Incorporated)
Adobe Illustrator CC 2015 (HKLM-x32\...\{5680D629-B263-49CC-821E-3CEBD4507B51}) (Version: 19.1.0 - Adobe Systems Incorporated)
Adobe InDesign CC 2015 (HKLM-x32\...\{DBFD0312-6E55-1014-8952-E78D43BC0147}) (Version: 11.1.0.122 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.0.1 - Adobe Systems Incorporated)
Adobe Muse CC 2015 (HKLM-x32\...\{25CC1EC0-19D9-11E5-952D-BD72CD08879E}) (Version: 2015.0.2.4 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0.1 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.1 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Antares Autotune Evo VST RTAS v6.0.9 (HKLM-x32\...\Antares Autotune Evo VST RTAS_is1) (Version:  - )
Antares Autotune VST RTAS TDM v5.08 (HKLM-x32\...\Antares Autotune VST RTAS TDM_is1) (Version:  - Team AiR 2007)
Antares Filter VST DX v1.01 (HKLM-x32\...\Antares Filter VST DX v1.01) (Version:  - )
Apowersoft Gratis - Audiorekorder V2.3.4 (HKLM-x32\...\{E35F91E4-C68C-43E8-BE90-35CDEE4E5730}_is1) (Version: 2.3.4 - APOWERSOFT LIMITED)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft SimHD IM Plug-In (HKLM-x32\...\{95E86EDF-A28E-469A-9E2E-87CAE5A5B069}) (Version: 1.2.1.4 - ArcSoft)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
ATI AVIVO64 Codecs (Version: 11.1.0.50406 - ATI Technologies Inc.) Hidden
Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: 1.2.0.0 - AVM Berlin)
B209a-m (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.72.1.2014 - Georgy Berdyshev)
Citavi 4 (HKLM-x32\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.0.0.12 - Swiss Academic Software)
CorelDRAW Graphics Suite X5 - Windows Shell Extension 64 Bit (Version: 15.1.588 - Corel Corporation) Hidden
Dropbox (HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Evernote v. 5.5.3 (HKLM-x32\...\{B1A0F908-1448-11E4-8684-00163E98E7D0}) (Version: 5.5.3.4236 - Evernote Corp.)
FileZilla Client 3.9.0.6 (HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\FileZilla Client) (Version: 3.9.0.6 - Tim Kosse)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{6C5F8503-55D2-4398-858C-362B7A7AF51C}) (Version: 2.1.31.0 - MAGIX AG)
Gigabyte Raid Configurer (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - Gigabyte Technology Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HydraVision (x32 Version: 4.2.148.0 - ATI Technologies Inc.) Hidden
IHMC CmapTools v5.03 (HKLM-x32\...\IHMC CmapTools v5.03) (Version: 5.0.0.3 - Institute for Human & Machine Cognition)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
iTunes (HKLM\...\{4046F74A-28F8-48C6-A5D3-2AFC472574C1}) (Version: 12.2.0.145 - Apple Inc.)
iZotope RX 2 (HKLM-x32\...\iZotope RX 2_is1) (Version: 2.02 - iZotope, Inc.)
LibreOffice 4.3.0.4 (HKLM-x32\...\{5C005E2A-AEAE-4DF7-B7CA-1E6DCDD2AEA4}) (Version: 4.3.0.4 - The Document Foundation)
Line 6 Uninstaller (HKLM-x32\...\Line 6 Uninstaller) (Version:  - Line 6)
MAGIX Audio Cleaning Lab 2013 (HKLM-x32\...\MAGIX_{97E2116F-CC11-4EDA-B179-78CB6A89D836}) (Version: 19.0.0.10 - MAGIX AG)
MAGIX Audio Cleaning Lab 2013 (Version: 19.0.0.10 - MAGIX AG) Hidden
Magix Audio Cleaning Lab 2013 Update (Version: 19.0.1.12 - MAGIX AG) Hidden
MAGIX Burn routines (64-Bit) (HKLM\...\{49146694-5F5F-4B1F-AD15-6587F47A0FD7}) (Version: 9.0.0.212 - MAGIX AG)
MAGIX Content und Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Low Latency Driver (64-Bit) (HKLM\...\{42976FDB-5756-4077-A491-095F228E99E2}) (Version: 2.10.2011.0 - MAGIX AG)
MAGIX Music Maker 2013 Premium (HKLM-x32\...\MAGIX_{8040CA6C-16F1-47B5-BB2E-E63F32B7E67F}) (Version: 19.0.1.36 - MAGIX AG)
MAGIX Music Maker 2013 Premium (Version: 19.0.1.36 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Premium Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Screenshare (HKLM-x32\...\MAGIX_{92852E20-128F-44C3-92EB-3A7506F9DB2C}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare (Version: 4.3.6.1987 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MAGIX_{7F4DE580-F810-431C-8730-34F6CD89C4F6}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
Magix Video Pro X3 - DVD Templates (HKLM-x32\...\Magix Video Pro X3 - DVD Templates) (Version: 1.0 - L e x y | artist)
MAGIX Video Pro X3 Download-Version (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_pro) (Version: 10.0.5.22 - MAGIX AG)
MAGIX Video Pro X3 Download-Version (x32 Version: 10.0.5.22 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MeldaProduction Audio Plugins 9 (HKLM-x32\...\MeldaProduction Audio Plugins 9) (Version:  - MeldaProduction)
Melodyne Runtime 4.1 (x64) (HKLM\...\{53EE2829-E9DB-4913-B3EA-96F10F84E98B}) (Version: 1.0.1 - Celemony Software GmbH)
Microsoft – Speichern als PDF oder XPS – Add-In für 2007 Microsoft Office-Programme (HKLM-x32\...\{90120000-00B2-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 DEU Language Pack (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6215.1000 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{13C9CD03-A5FE-4F50-AC8A-17B77C38CC52}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 40.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0 (x86 de)) (Version: 40.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.0.5697 - Mozilla)
MP3 To Wave Converter PLUS (HKLM-x32\...\MP3 To Wave Converter PLUS) (Version: 2.33 - Acoustica, Inc.)
Mp3tag v2.65 (HKLM-x32\...\Mp3tag) (Version: v2.65 - Florian Heidenreich)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden
Norton Ghost (HKLM-x32\...\{B0255743-165B-4BD5-8DA8-37DFB9930015}) (Version: 15.0.0.35659 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.3 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Opera Stable 31.0.1889.99 (HKLM-x32\...\Opera 31.0.1889.99) (Version: 31.0.1889.99 - Opera Software)
Pamela Pro 4.9 (HKLM-x32\...\Pamela) (Version: 4.9 - PamConsult GmbH)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PITCHMAP AAX-x64 1.6.1 (HKLM\...\{8ADD7B21-5CB9-4c79-A1A7-2B050F736A23}) (Version: 1.6.1 - Zynaptiq)
PITCHMAP VST 1.6.1 (HKLM-x32\...\{9B24435E-CD77-4fc1-AC03-AD4555783205}) (Version: 1.6.1 - Zynaptiq)
PITCHMAP VST-x64 1.6.1 (HKLM\...\{F9754DD6-985B-4e93-A96B-837EE5415F61}) (Version: 1.6.1 - Zynaptiq)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.6 - Power Software Ltd)
PreSonus Studio One 2 x64 (HKLM\...\PreSonus Studio One 2) (Version: 2.6.0.24200 - PreSonus Audio Electronics)
PriMus Free 1.1 (Build 10843) (HKLM-x32\...\PriMus Free_is1) (Version: 1.1.0.10843 - Columbus Soft)
PS_AIO_06_B209a-m_SW_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
RAD Video Tools (HKLM-x32\...\RADVideo) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
Samplitude Music Studio 16 (HKLM-x32\...\ms16dlx) (Version: 16.0.0.3 - MAGIX AG)
Samplitude Music Studio 16 (x32 Version: 16.0.0.3 - MAGIX AG) Hidden
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.7 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.103 - Skype Technologies S.A.)
Snagit 11 (HKLM-x32\...\{D0CC22F6-A67A-4083-A043-E0640CB7A4DF}) (Version: 11.2.1 - TechSmith Corporation)
Softube Tonelux Tilt VST RTAS v1.0 (HKLM-x32\...\Softube Tonelux Tilt_is1) (Version:  - )
SolutionCenter (x32 Version: 140.0.213.000 - Hewlett-Packard) Hidden
Steinberg Cubase 5 (HKLM-x32\...\{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}) (Version: 5.1.0 - Steinberg Media Technologies GmbH)
Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 1.0.0.1 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg HALionOne (HKLM-x32\...\{E70E7159-93B1-470D-9FBD-D8E9EF34B538}) (Version: 1.1.0.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Additional Content Set 01 (HKLM-x32\...\{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}) (Version: 1.0.0.001 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Expression Set (HKLM-x32\...\{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}) (Version: 1.0.1.0 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Drum Set (HKLM-x32\...\{AC997F93-0757-4ED4-A701-F40C2D654D09}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Set (HKLM-x32\...\{F057965A-D974-4C64-ADB1-4381CD4B8956}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Pro Set (HKLM-x32\...\{D82CDA0D-C182-42C8-8FF2-5649C98D6003}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Drum Set (HKLM-x32\...\{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Set (HKLM-x32\...\{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 1.0.0.005 - Steinberg Media Technologies GmbH)
Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 1.0.0.006 - Steinberg Media Technologies GmbH)
Text-To-Speech-Runtime (HKLM-x32\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
Trust USB Audio (HKLM\...\C-Media CM106 Like Sound Driver) (Version:  - )
UNFILTER VST 1.2.1 (HKLM-x32\...\{C3111879-D904-42A9-B3A9-A16511FCF949}) (Version: 1.2.1 - Zynaptiq)
VirtualDJ 8 (HKLM-x32\...\{8C066069-C573-4F2E-A01C-D3156CF28DDC}) (Version: 8.0.2206.0 - Atomix Productions)
Vita 2 (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita 2 Zusatzcontent (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Bass Machine (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Rock Drums (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita String Ensemble (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita World Percussion (Version: 1.0.0.0 - MAGIX AG) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.1.0.0 - Azureus Software, Inc.)
Wacom Tablett (HKLM\...\Wacom Tablet Driver) (Version: 6.3.8-3 - Wacom Technology Corp.)
WAHRIG.digital 2.1 (HKLM-x32\...\WAHRIGdigital2006_is1) (Version: 2.1 - Wissen Media Verlag GmbH, Gütersloh / München)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
WinHTTrack Website Copier 3.47-21 (HKLM-x32\...\WinHTTrack Website Copier_is1) (Version: 3.47.21 - HTTrack)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinSnap (HKLM-x32\...\WinSnap) (Version: 3.5.3 - NTWind Software)
XAMPP (HKLM-x32\...\xampp) (Version: 1.8.3-5 - Bitnami)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Wiederherstellungspunkte =========================


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {06B671DA-1E96-4FEF-A943-70A36ABCAE96} - System32\Tasks\{21FFD0E8-7D98-46FA-BD9C-99237285C387} => H:\SETUP\GERMAN\SETUP.EXE
Task: {0C983280-7152-4846-A4D8-55C966D24A45} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-14] (Microsoft Corporation)
Task: {0F191120-A3F9-4B16-ABAB-61958C65CC1F} - System32\Tasks\{CBE7CF75-B054-49D7-ADAE-8AEB91CC3430} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe
Task: {148F4D66-F268-436E-A2EC-84581BA8D499} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-22] (Avast Software s.r.o.)
Task: {14AAC377-09CD-4F14-8809-4D3DC8ABAB62} - System32\Tasks\{AE9E01BE-E84E-448E-9BAA-74A615613DF0} => F:\DATEN (NUR EXTERN)\GAMES\1997 – Theme Hospital\SETUP.EXE
Task: {26046EB5-53B7-41C3-8730-9DBC29708D80} - System32\Tasks\{6EA54632-81EC-4BC5-8F06-2D6F82A62C67} => H:\SETUP\GERMAN\SETUP.EXE
Task: {2B7D6A86-D918-41D6-88DE-AC3D5C492258} - System32\Tasks\{3C3B3609-2226-4EE6-B3FF-3992984842B6} => G:\RAY2.exe
Task: {30C1157D-DB31-433E-8370-3DD345315B02} - System32\Tasks\{1DCDD6A9-E4BA-4EAA-9B49-37E166058254} => G:\RAY2.exe
Task: {331C7C4B-BB37-4F27-A1D4-8D7903B2F22E} - System32\Tasks\{2F572957-DC53-44F3-8871-9600C19539C7} => C:\Users\schweigelicht\Desktop\Internet ORDNER\StarCraft-II-Setup-deDE.exe
Task: {374A89A9-F313-43C0-B646-34EE50AED3E7} - System32\Tasks\{D4B27500-911C-443D-A46E-83C15E6851F5} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\SETUP\GERMAN\SETUP.EXE
Task: {3B797EFB-AB9D-49F7-B9FE-3D444679A4FE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {4081F390-2884-48DF-BF57-046C46058E5D} - System32\Tasks\{EACBDA8F-E493-403E-96E1-89DCA0E202D8} => F:\DATEN (NUR EXTERN)\GAMES\1995 – Rayman\SETUP.EXE
Task: {4B4EF42C-4D75-4336-8078-44D23C9C88C8} - System32\Tasks\{05D92468-A6EA-4C94-9FB6-84CFA03641F1} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe
Task: {5496E36F-9037-4179-BABE-5348878C731F} - System32\Tasks\{107851F0-6D61-431D-A447-B9F354F77FFB} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe
Task: {58F78323-6B96-4474-B497-5B37C7260E94} - System32\Tasks\AdobeAAMUpdater-1.0-schweigelichtPC-schweigelicht => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-07-22] (Adobe Systems Incorporated)
Task: {696250E7-60CE-44FE-B038-D24F55BA9FDD} - System32\Tasks\{B3CA8F19-E841-4583-A895-08349923D305} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN.EXE
Task: {7094CDE3-D38C-4149-98BF-719E91DCA61A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-07] (Google Inc.)
Task: {78B2172C-EC3E-47BD-BB78-D3D90A4DF3DE} - System32\Tasks\{EBF0B383-9564-4B03-A4CD-C56A863D30B1} => C:\Program Files (x86)\Tomb Raider Collection - Volume 1\Tomb Raider 3\tomb3.exe
Task: {79476D79-0885-4E98-B062-3A6216A7942F} - System32\Tasks\{B4FF8479-CF1F-449F-B71B-B052B926B927} => C:\Program Files (x86)\QfG\Sleeping Dogs\HKShip.exe
Task: {7DB8E8BC-1974-4B2E-A08E-8B1C764C7F97} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {7F4C0C07-6AA3-454D-BD70-9D103541F575} - System32\Tasks\{F1CB8254-8F3E-40A9-890D-0ED632428FF5} => C:\MAGIX\MusicStudio2007deluxe\MusicStudio.exe
Task: {86EE9715-BA4B-4819-9AE6-8CA6748F2AA9} - System32\Tasks\{AF2BF1A6-86A3-4D66-BA9E-9E429ACEE189} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\FCOPLAPD\FCOPLAPD.EXE
Task: {929EF4BC-48E6-42EC-8D36-85791EF986D9} - System32\Tasks\{FC666524-C691-4593-8B77-FCEA5EF95EFC} => pcalua.exe -a C:\AudioSuite\AudioRecorder\UninstalAR.exe
Task: {939AC728-5575-42BE-9755-3E8ABC2B674D} - System32\Tasks\{9BEA152B-7D77-4BB0-B1B3-FA8702DFC810} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe
Task: {93C6FADA-E3A2-4DEA-87CC-04D1C0131AE7} - System32\Tasks\{13B24290-0D75-489F-A348-4B29180B732E} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN.EXE
Task: {98506311-66CE-4E72-8AB3-A0F86E273FB0} - System32\Tasks\{AA7E714C-07A0-4E30-B4CF-A2E5CBE23038} => Chrome.exe hxxp://ui.skype.com/ui/0/6.10.0.104/de/abandoninstall?page=tsProgressBar
Task: {9F8CD049-A0FD-4F53-AE0B-1BE8699639DB} - System32\Tasks\{656C4DA3-7889-49CF-8108-F5EFD8022C1C} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN.EXE
Task: {9FFE2703-F026-4283-ACD5-3C5B73447C51} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-07] (Google Inc.)
Task: {A0DA0F74-E206-4120-BFB2-34A5675128D3} - System32\Tasks\{E359A738-C430-4346-B193-A6BC04ECEA47} => G:\RUNSETUP.EXE
Task: {A1BA65FC-2434-4184-8083-FD0703953198} - System32\Tasks\{7ABE90FA-B89C-4A29-A4A2-F795DFAC42C9} => F:\SETUP\GERMAN\SETUP.EXE
Task: {A3C9EF44-8E18-4D08-83EC-27EEE3FB9D87} - System32\Tasks\{69BE9EE6-A495-4DA7-A4F9-329733B7C26D} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\WINMAIN.EXE
Task: {A89E1040-1F77-4B34-97E3-9F5C46095E63} - System32\Tasks\{CD3F0F1E-6475-458E-9112-1BE9B8DE723D} => C:\Program Files (x86)\Tomb Raider Collection - Volume 1\Tomb Raider 3\tomb3.exe
Task: {AFEB05A0-8949-4557-9C70-AEC00FA82ED8} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {B1B8FE39-F217-40A1-B7A8-29891336A091} - System32\Tasks\{56BD0CDC-681F-464D-80A1-691B244605FA} => C:\Program Files (x86)\Activision\Star Trek Armada II\Armada2.exe
Task: {B217BA0D-150C-4A81-B3E1-9BE4759006CA} - System32\Tasks\{18D07478-1F47-4912-8FD2-8F2D9F64943B} => G:\RUNSETUP.EXE
Task: {B2C23F03-CDFF-4E2A-A558-8C15B7214B2F} - System32\Tasks\{C106FEF3-5CE3-4511-B0F1-8B942C099749} => C:\Program Files (x86)\GOG.com\Dark Reign\Dark Reign - Original Game.exe
Task: {C8F71027-3F10-454B-A9A1-E71774E1421A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {C93270B9-B8EB-455C-A73B-52EC22EF3AB1} - System32\Tasks\{B4D5465B-288D-41DA-98CA-C50FD5FEF459} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN\IP.EXE
Task: {DCFC5C6B-0731-4716-A207-5598AF1B7946} - System32\Tasks\{07231851-9595-451D-8828-82F50C86676D} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\DOS4GW.EXE
Task: {E2CBDA61-BC94-49A0-ADB8-95A2553B93D9} - System32\Tasks\{8A993AD3-0A81-4907-A095-D36D785824CF} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\FCOPLAPD\FCOPLAPD.EXE
Task: {EF8DD41D-FEDE-4E1E-BAAB-7E36FFC7965B} - System32\Tasks\{74B076E3-4857-4DC6-A27E-1AF2C33D1CB7} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\DOS4GW.EXE
Task: {EFDB7D0D-0C30-4045-9277-BCA9AF6BB578} - System32\Tasks\Opera scheduled Autoupdate 1384774558 => C:\Program Files (x86)\Opera\launcher.exe [2015-07-30] (Opera Software)
Task: {F10ED477-098F-4CB8-AB36-DFF03850821E} - System32\Tasks\{41530A16-8497-40E4-B87B-BB4F6EF27F6C} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{D4DE3DB4-7734-47E5-8D92-B80146311406}\setup.exe" -c -runfromtemp -l0x0007 -removeonly
Task: {FFEC1312-7FDD-43EF-A378-CB2FCA92286C} - System32\Tasks\{5E660AA8-9BBC-4E86-A6AA-CF5F342C0B2C} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\DOS4GW.EXE

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-07-22 01:02 - 2015-07-22 01:02 - 00803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-01 21:29 - 2014-05-01 21:29 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2015-08-13 18:55 - 2015-08-08 03:30 - 01763144 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libglesv2.dll
2015-08-13 18:55 - 2015-08-08 03:30 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libegl.dll
2015-06-05 18:54 - 2015-06-05 18:54 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-06-05 18:54 - 2015-06-05 18:54 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-08-17 12:00 - 2015-08-17 12:00 - 02962432 _____ () C:\Program Files\AVAST Software\Avast\defs\15081701\algo.dll
2015-06-05 18:54 - 2015-06-05 18:54 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\schweigelicht\AppData\Local\Temporary Internet Files:5bT4tsfXGJpFn4anilZuYxFtTM

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\line6.net -> line6.net


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: FirebirdServerMAGIXInstance => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: hpqcxs08 => 3
MSCONFIG\Services: hpqddsvc => 2
MSCONFIG\Services: HPSLPSVC => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: LiveUpdate => 3
MSCONFIG\Services: Norton Ghost => 2
MSCONFIG\Services: PSI_SVC_2 => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: SymSnapService => 3
MSCONFIG\Services: WTabletServicePro => 2
MSCONFIG\startupfolder: C:^Users^schweigelicht^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Adobe Acrobat Synchronizer => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AVMWlanClient => C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Norton Ghost 15.0 => "C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe"
MSCONFIG\startupreg: Spotify => "C:\Users\schweigelicht\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\schweigelicht\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "F:\Steam\steam.exe" -silent
MSCONFIG\startupreg: wahrig.digital => C:\Program Files (x86)\wahrig.digital\WAHRIG.exe
MSCONFIG\startupreg: WAHRIG.digital Launcher => C:\Program Files (x86)\Bertelsmann\WAHRIG.digital\wahrig.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [TCP Query User{1BB4D55A-BFB2-454A-B233-95D89D309908}C:\program files (x86)\hp\common\hpdevicedetection3.exe] => (Allow) C:\program files (x86)\hp\common\hpdevicedetection3.exe
FirewallRules: [UDP Query User{4F865A52-E42B-4528-A98B-D2A8309835B5}C:\program files (x86)\hp\common\hpdevicedetection3.exe] => (Allow) C:\program files (x86)\hp\common\hpdevicedetection3.exe
FirewallRules: [{BEC57857-92EA-48DC-B40A-F7696CF9F877}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{FDDD2B1D-1128-4ADE-9386-66A8EB9EF751}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{740141FA-7235-4C17-BE41-0251CCB9A980}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{635EEDA6-79BC-4BAA-90B5-4DD3674DCDF3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{C062DD18-1551-48B7-A262-B417030728B3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{17948A12-55C6-4497-A34E-BB69FE45AC48}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{29AFB502-0348-4B45-B747-BA81125330D8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{D9D75E66-7905-4C69-AA37-BD59245CD358}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{FB6E87DF-9F4A-4D39-B8CA-788F5A35CF68}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{277AC4D9-C22D-4436-A6C2-0E84A4792EEA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{FDFE403C-653B-4DB6-9A24-A5F223B0DB5C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{CB272906-704C-4EA1-8B9D-3B66A9B37A56}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{E2A64F31-A906-454B-8C8E-4ED830EFAAA9}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [TCP Query User{30F0C03E-99B7-42F5-AF8A-0DB6F7A9ADFD}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [UDP Query User{C58FFFA8-1C4E-4826-B2CC-49E4073FF8B6}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [TCP Query User{A43A2F36-CAB9-41D4-AEF3-29AC9259BEFE}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [UDP Query User{5F8758B3-9870-41BC-9D19-20BD2B814BE1}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [TCP Query User{7191624A-BF5A-43E1-A2E6-C73FF6424D21}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [UDP Query User{48A7FC01-1798-4FCF-B0B2-CE87A33AC172}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [{DFD561FF-8AEA-4A4A-9732-F3705A63253F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [{328CFD13-3C57-491F-A765-2C42507B43CA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [{9C756F7F-0A4C-4EBB-ABBD-38AE16E79109}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{ED50B2EF-558F-43A3-B1AC-8653E804E33F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [TCP Query User{E4BD120F-5E5E-483E-983B-91977A2BE7C7}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [UDP Query User{1426C66D-5DD0-452B-A4E3-614B19DBB5E0}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [{14D051A4-AB8F-4C8A-A5ED-43CBBB751131}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{9918AFCB-13DA-43EC-9272-B15CF4B95859}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{15746E10-6246-40A4-994C-4712EE2AA064}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [TCP Query User{EBF04171-FF2C-49C3-BFB7-2A4103B47616}C:\program files (x86)\jack\jackd.exe] => (Allow) C:\program files (x86)\jack\jackd.exe
FirewallRules: [UDP Query User{D638A3D4-C7EC-4DB7-884F-37526C55F532}C:\program files (x86)\jack\jackd.exe] => (Allow) C:\program files (x86)\jack\jackd.exe
FirewallRules: [TCP Query User{09BD45CC-D026-431E-B290-975DF3138F40}C:\program files\vuze\azureus.exe] => (Block) C:\program files\vuze\azureus.exe
FirewallRules: [UDP Query User{C5A03731-BD5B-498D-A1F7-389DAD59D0CD}C:\program files\vuze\azureus.exe] => (Block) C:\program files\vuze\azureus.exe
FirewallRules: [TCP Query User{4FCE6697-EA13-4E28-BD47-D7CDA6294F30}C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{F80D6154-4438-4C35-BF08-E2B5F6E0BBF3}C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{768B62FA-2E4C-4884-9868-C8EB2B8EE6AB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{AB9E3DD7-22A1-4412-A7CD-ECD1C32BDF88}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{91E71C0C-2C16-46A5-85CB-252A3CEBA28A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{92F238E4-1B71-4881-A58E-024D53B680DF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [TCP Query User{375B0469-B93D-4441-8F84-2F8D964C71CA}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [UDP Query User{B4CCD6DF-CC75-4820-9050-6016969469BC}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [TCP Query User{4A80C927-DB05-4C4F-8DE5-6CC500B5042D}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [UDP Query User{587BCA1F-ECC1-40DB-91C7-6A250C5576DA}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [TCP Query User{B97B9BB4-E387-4C4D-AC0D-D5842B5FBD2D}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [UDP Query User{3D5A60D0-88AD-447E-972E-C3EEB2A6DCEC}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [{32B34A85-C612-4495-9D75-61B230DF2836}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{DA07BD13-0029-4276-83F5-B09369086DF5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{5BAB4D96-2162-43FF-A9D0-8A7E19210224}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{826EFE4F-36F1-4716-A962-07AA7B3E8D11}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{C75000DE-3881-4BB5-9ACA-E4DDBF3B89F8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D3866B73-2853-41C6-89BB-99CF822020DB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{46818340-EBEF-47D2-8D97-335EFA93E53A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{AB54303E-0D2C-42D5-81B1-15E7341C5E19}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{1E63492D-A01A-4099-A735-9E12F763F2E8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{BA7D87FE-1CEA-40DB-BC2B-FA4FD4A68DC8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [{D8CAF2F4-F0C9-45B8-9418-15D9EAF7C889}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{FF2A1A4B-4B6E-4F0B-8336-8FA62FEFC40B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{57307718-82A5-4E77-AAAE-317B427831BE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{DC7CA990-AE35-4923-B6C0-042E5344160F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{43B06BD2-E66A-4655-B052-E767C55D4F28}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{CF7D3787-7517-4C51-9030-2FBC0DF763D1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{262237E0-F404-4AC5-891F-3386197AD7D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [TCP Query User{C40E3046-9FAB-4972-9244-5F94BE8F125D}C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{4932B5C6-BFCA-4B04-A131-3BF1548F3929}C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [TCP Query User{550BB99C-80DE-4A71-9CF0-AF225E691771}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe] => (Block) C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe
FirewallRules: [UDP Query User{3E7F42FE-E6F5-4EB6-A226-551131F4632D}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe] => (Block) C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe
FirewallRules: [{25E5FB68-C7C5-4569-BD08-B77A02DC9F4A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{F776F7A3-754D-4A4D-A4D5-FF1505E6358C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{F1BAD74F-7488-45A5-ADA6-F9AAE3BE05B8}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II.exe
FirewallRules: [{47CA0949-B59D-4C44-86AC-27A174052400}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II.exe
FirewallRules: [{D0543F91-E79A-4BD1-A6B1-98F136C45E1A}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{B8FE49B7-C46F-40EB-9369-B1FA222E8ACA}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{D66A1C39-1072-4D4B-814D-EB9277CC5B4A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{BC7E624E-8EFF-4F1B-9138-8103305862DD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{F1FA7BD4-20A5-4D6F-AAC0-904EEDE35AC2}] => (Allow) D:\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{76B7707B-40F3-4A87-BE49-C0AC7CE52503}] => (Allow) D:\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [TCP Query User{C105AB74-54E4-47FB-ADF4-5BEA7A3BA917}D:\starcraft ii\versions\base28667\sc2.exe] => (Block) D:\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{E4D24DDB-852F-4220-8C22-CBC493EE987B}D:\starcraft ii\versions\base28667\sc2.exe] => (Block) D:\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{656C4AC5-B305-406C-B026-A1B1C25CA881}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{A2B57426-7B53-4204-976F-FDA1113AFAC7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [TCP Query User{0F304C81-2A19-4FA5-BBC9-5D4ACD0B5E20}C:\gog games\descent 3\main.exe] => (Block) C:\gog games\descent 3\main.exe
FirewallRules: [UDP Query User{851E3FBE-8F22-46E4-9C55-A9EAD028EDC7}C:\gog games\descent 3\main.exe] => (Block) C:\gog games\descent 3\main.exe
FirewallRules: [TCP Query User{256511FE-6F98-4FBD-BAA3-0AEA2B16AD96}C:\program files (x86)\wolfenstein - enemy territory\et.exe] => (Block) C:\program files (x86)\wolfenstein - enemy territory\et.exe
FirewallRules: [UDP Query User{BE319A2B-3063-4AB2-9F90-ABB74E3C0305}C:\program files (x86)\wolfenstein - enemy territory\et.exe] => (Block) C:\program files (x86)\wolfenstein - enemy territory\et.exe
FirewallRules: [{A5C62ACC-2861-4229-9E80-071DBADCAE1A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{A45FB9BB-DD5B-4FD1-9030-5A28FEA17907}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{BE3569CC-0503-417D-B157-81D5A6F31352}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{061C3759-68B0-4F62-9D39-2919FD9DB5DD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{BD1C44C8-691B-43ED-BC1C-B87F1A40DD46}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{A1976B92-FC52-476D-BEE8-3769F7CF6327}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{BFCF1CE7-CA84-4FEE-9AEC-1DFED43E0DAE}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{B1B2B986-3AD6-4937-AE66-3C7A3686CB91}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [TCP Query User{E030B2FA-C95E-4412-A496-066DC02A8ADE}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{7BCBE076-9B33-4386-BDA3-F715B26A958B}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{08FA2EA8-3579-4656-A6A9-A3A20C797D32}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{38AF9E43-39F1-4586-8243-689DC5D95C03}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{226FCEE8-2364-4642-B49F-080C10A31758}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\{B2DAB009-8236-48A0-AD7F-E940F5AB1578}\setup\hpznui40.exe
FirewallRules: [TCP Query User{0DFA2D61-1653-4E15-B06C-9F113227EA96}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Block) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [UDP Query User{856B87BA-D5EB-4AC1-A2B8-33E528CAAED0}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Block) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [TCP Query User{DE54C664-D581-4DD8-9BFA-9EDDFF68D979}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [UDP Query User{B1A311C7-D518-4F05-A278-FA30BB51A78F}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [TCP Query User{DC523A09-08D9-4B6F-A535-E9F42D1881C0}C:\program files (x86)\dark oberon\dark-oberon.exe] => (Block) C:\program files (x86)\dark oberon\dark-oberon.exe
FirewallRules: [UDP Query User{77AC8987-75EF-4883-8386-261657BB4DFC}C:\program files (x86)\dark oberon\dark-oberon.exe] => (Block) C:\program files (x86)\dark oberon\dark-oberon.exe
FirewallRules: [TCP Query User{31CB6C47-CE5D-4E86-B25C-772C9B6D01C2}C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe] => (Allow) C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe
FirewallRules: [UDP Query User{02652F79-8549-4F88-B254-F2D5970142EB}C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe] => (Allow) C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe
FirewallRules: [{367CC153-2EA0-4B0A-9E95-05E757E8C33F}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{E656D592-2C6F-4AEB-AD2A-F3EAA8B86261}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{FB92278F-97EB-4719-9294-E68C6247150B}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{65824B33-96A7-4F89-960F-584BEF9FE903}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{8969B109-8F4C-44F4-8C6C-FC2B650F2806}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{29FAB9A7-B68B-4373-A4FC-C0E7535E57C5}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{52A35D67-3811-4E04-A83F-4F037823CE62}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{952F44CA-DF41-421C-B063-9C1A1BF9A401}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [TCP Query User{272CF44B-59D4-45EA-8A50-265954123C30}C:\program files (x86)\adobe\adobe edge code cc\node.exe] => (Block) C:\program files (x86)\adobe\adobe edge code cc\node.exe
FirewallRules: [UDP Query User{190205C7-9D29-42BB-9BE4-12CFB35F2E67}C:\program files (x86)\adobe\adobe edge code cc\node.exe] => (Block) C:\program files (x86)\adobe\adobe edge code cc\node.exe
FirewallRules: [TCP Query User{298A7237-DDCE-471B-B389-4DF93528C9D5}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [UDP Query User{EC7B998E-B59D-4B90-8832-4AA7D10E9FED}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [TCP Query User{756052E1-4B30-411A-8B87-EC176AB949BE}C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe] => (Allow) C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe
FirewallRules: [UDP Query User{8FF2A407-94AE-4C1F-AB2C-68406F9018AB}C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe] => (Allow) C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe
FirewallRules: [TCP Query User{26184E04-40C0-4075-B0EF-2D74C1421009}D:\xampp\apache\bin\httpd.exe] => (Allow) D:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{C5DB2EEB-8EBB-4C7F-AACB-8D7531D09990}D:\xampp\apache\bin\httpd.exe] => (Allow) D:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{19605462-7DF9-407D-9998-F90D47AEC1C1}D:\xampp\mysql\bin\mysqld.exe] => (Allow) D:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{EAE485BA-9719-429A-B743-4A2C22AE9988}D:\xampp\mysql\bin\mysqld.exe] => (Allow) D:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{622E4FEB-2EEF-4028-B364-CEEA8D07FA16}D:\xampp\filezillaftp\filezillaserver.exe] => (Block) D:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{6F00077D-0337-4F5E-81F3-9AE74B506982}D:\xampp\filezillaftp\filezillaserver.exe] => (Block) D:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{62CBAA70-61E4-47A2-BBE9-5D607E810E4E}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe
FirewallRules: [UDP Query User{0ADDB720-0F07-4226-ACF9-A677EACB8A5A}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe
FirewallRules: [TCP Query User{3A606F21-B762-4A50-AC91-4EC8058095DD}C:\program files (x86)\synology data replicator  3\backup.exe] => (Allow) C:\program files (x86)\synology data replicator  3\backup.exe
FirewallRules: [UDP Query User{8A4AD45D-D966-4421-BD1F-0B54D5268949}C:\program files (x86)\synology data replicator  3\backup.exe] => (Allow) C:\program files (x86)\synology data replicator  3\backup.exe
FirewallRules: [TCP Query User{944934E2-CC12-4BF5-A6B3-9ED05773893B}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Allow) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [UDP Query User{CA9AF812-352E-4866-B503-B4245C65122B}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Allow) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [TCP Query User{26FAA2E2-95B6-4100-9960-A69459257F30}D:\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{A30777D5-540B-423C-A41E-5F164F24D1F7}D:\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{3B9DD2CF-724F-48F9-BE71-87C3CC19BE80}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{45E9E28C-2607-46E4-9FB1-C83F0B3C3B65}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{E19A5B84-59D7-4447-8D92-DCD97D99DC6B}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{FE8839BB-0C8F-4C0E-9297-5063D8690292}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{FB431FAA-4F4D-428A-B22A-EC4502489532}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EF00AFB9-16B2-40FA-B2B0-55B3DEB6FCB6}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{5D7D21B0-B499-47FD-8D31-839EFFBBA768}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [UDP Query User{BC107B44-8E0F-4354-8B8F-39B7C3CD9F87}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [{32B02F4A-8B67-4BB4-95C2-9D9839318710}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{43217828-C063-41CD-8575-D3D58EAAEC39}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{37DF0398-5F9D-4493-82DB-892D558A0334}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{BF580CB7-B4DF-445E-B9A6-2C28BE7291FF}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{482B8ED6-02FB-4B18-9540-595873CAC173}] => (Allow) D:\StarCraft II\StarCraft II.exe
FirewallRules: [{BE87B2EF-DAD4-4AC3-9822-0D52A264BDC3}] => (Allow) D:\StarCraft II\StarCraft II.exe
FirewallRules: [{E22CC9B9-F927-45EF-BFF8-1A18066ED58A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{6400ECDA-10F6-449D-8787-F453DAD984F4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [TCP Query User{7AF9244B-737B-490E-9471-83DAD73EB7D2}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [UDP Query User{E3EA9CA0-CEF1-46BD-AD50-A2FBE1B3FF0E}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [TCP Query User{B8B716B2-2D44-401F-B7D9-9272FBDD7170}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [UDP Query User{5D0B028B-0349-4258-AB48-BBBC2B3DF78C}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [TCP Query User{F1CD984D-5012-4E02-8A47-500800AB6DEF}C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe] => (Block) C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe
FirewallRules: [UDP Query User{DB9933AD-D5C2-48C3-BE69-2DAB56AE75DB}C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe] => (Block) C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe
FirewallRules: [TCP Query User{68780A7D-EABF-49ED-9D0E-DDCF6298398C}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{D5A8AA17-77E6-415A-AE2E-18B068EA3F36}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [TCP Query User{52C4BCA2-2B06-413C-AFBA-A1ACDC2D547E}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{7C992DB2-DA12-4887-B579-C801B6958661}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [TCP Query User{846DBD85-E86F-4758-A665-EF48FB9EA64B}D:\ut3\unreal tournament 3\binaries\ut3.exe] => (Block) D:\ut3\unreal tournament 3\binaries\ut3.exe
FirewallRules: [UDP Query User{5E76E689-5CAB-4B59-AC6F-7D48AFAE11C2}D:\ut3\unreal tournament 3\binaries\ut3.exe] => (Block) D:\ut3\unreal tournament 3\binaries\ut3.exe
FirewallRules: [TCP Query User{9DAC37C9-E95B-4445-AC50-F291B6BBD434}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [UDP Query User{C40231DE-0631-4609-941F-B25CC26C2F18}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [TCP Query User{F8AEC02B-1002-41B3-BA18-CCE693498A45}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [UDP Query User{8DF3A797-D408-450A-8D2A-4E89B8FFF2C6}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [TCP Query User{102064CF-B501-46AB-BEBA-8389FDE06647}G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [UDP Query User{919F587D-C059-49D4-B863-666516D87C17}G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [TCP Query User{B63DB95B-3CE7-453A-BB0D-AA9C9C042567}D:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) D:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [UDP Query User{8F515771-9826-4526-A513-117AE3F925C8}D:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) D:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [TCP Query User{812A4D90-BB02-4D1B-9550-494A3A2F017C}D:\steam\steamapps\common\greygoo\goog.exe] => (Block) D:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [UDP Query User{BB3FCB1A-99E9-482E-8972-CA0EF7618824}D:\steam\steamapps\common\greygoo\goog.exe] => (Block) D:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [TCP Query User{6E5AB903-6C0F-4B5F-9AE1-9FB805A84DA6}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [UDP Query User{F3701F6A-4F8B-4FFC-9575-328FB3A501FB}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [TCP Query User{FF6E720D-5E2B-4192-81CB-D3EEE7E2516D}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [UDP Query User{D2BC247C-D874-428E-B783-FA01F15E2E08}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [{39D14A8F-3D2C-48B8-8999-D5D4680B111C}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{BD439C61-8AA9-4E21-9A4B-B6980978476B}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{DF352A1E-6172-4F17-BE3B-88DD4A4F26C4}] => (Allow) D:\Dead Space\Dead Space\Dead Space.exe
FirewallRules: [{7513F1B3-78DC-404E-B24B-E9D089B32523}] => (Allow) D:\Dead Space\Dead Space\Dead Space.exe
FirewallRules: [TCP Query User{A8249795-10A5-45A2-9197-C386A4FFF37A}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [UDP Query User{AAF2634A-10B2-4255-ABA5-36D77BE05F56}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [TCP Query User{E6B52932-535A-4560-B947-4F4C13169811}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [UDP Query User{7B12B00F-2FFA-4612-ADAC-0BF3CAAD52D6}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [{24E54CE5-A405-4388-9355-EE7A000BE5B4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{25C8370A-359C-4613-A857-680534229818}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B96CDA09-1C8E-453A-A09F-DEC8179EDDD7}] => (Allow) C:3\Steam\Steam.exe
FirewallRules: [{9E63E708-325F-4492-AD55-EA67DF3FB748}] => (Allow) C:3\Steam\Steam.exe
FirewallRules: [{2654A3CC-1CF8-43A1-8D7F-6BCEF62110FA}] => (Allow) C:3\Battle.net\Battle.net.exe
FirewallRules: [{C8E0D3A4-A9AE-4574-9833-01BB5BC12A1E}] => (Allow) C:3\Battle.net\Battle.net.exe
FirewallRules: [{0DA228A8-0B24-49A5-9927-A9120E560E20}] => (Allow) C:3\StarCraft II\StarCraft II.exe
FirewallRules: [{F70E8DA0-C254-4FD9-BD6C-D689CD0BFCED}] => (Allow) C:3\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{A5359AFD-2195-4E8F-B5B0-0985245C17A0}C:3\starcraft ii\versions\base32283\sc2.exe] => (Block) C:3\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{F0C2BB1D-8C24-426B-916A-5CEA8A63668C}C:3\starcraft ii\versions\base32283\sc2.exe] => (Block) C:3\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{926978A2-8100-4E68-862A-E35AEDB98884}] => (Allow) C:3\Mass Effect 2\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{4A458FC6-1C54-4D81-97EC-AD154D52686B}] => (Allow) C:3\Mass Effect 2\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [TCP Query User{37C76A95-908B-47DA-BA22-DD72E43E7089}C:3\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) C:3\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [UDP Query User{A7A5A2D5-8A6E-4969-93E4-89530B62C093}C:3\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) C:3\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [TCP Query User{AF5FDB9B-8C60-48B2-96AA-BEA4223C7305}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{DB75B3BE-D250-489C-B466-81DDF4ED3BC2}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{451E2E64-297C-4637-B9A0-AF71967FB81E}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{F5743744-4431-4651-B101-DB3AA6ABCDE1}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [TCP Query User{F45237A0-DB8E-4A2C-9D77-ADC20D8A9C06}F:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [UDP Query User{4D2289E6-1919-44B2-9926-2555B0F08EDC}F:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [TCP Query User{C435CD70-92A0-4B93-9C15-7CC9682CB6C5}F:\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [UDP Query User{6A7A941E-341C-49A9-8EA4-6365A1912677}F:\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [{2C39DCDD-BA42-42B8-BD67-5554809A9571}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe
FirewallRules: [{BA9F51A2-94C4-4344-B316-9909C501DB0B}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe
FirewallRules: [TCP Query User{E9704C8D-EA19-48D3-9898-383F79EA595C}F:\games\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) F:\games\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [UDP Query User{FBFD840D-C170-46B8-827A-49A75CC1B589}F:\games\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) F:\games\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [{0138196B-CC4A-4363-B7A3-51B4857B0C36}] => (Allow) C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{B9ED9CF8-16FC-406C-9125-700A683F9075}] => (Allow) C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{8C70CA4E-4F12-47B3-94F1-310285237D6E}C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{42B1152E-1779-4628-8A80-796837DFEE9C}C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe
FirewallRules: [{6E931ECA-0C41-4C16-9633-98DC055221BC}] => (Allow) F:\GAMES\Steam\Steam.exe
FirewallRules: [{462E90E4-9334-45C2-970B-581506C599DC}] => (Allow) F:\GAMES\Steam\Steam.exe
FirewallRules: [TCP Query User{AFE0603B-0F15-4E26-B834-E27840458C5B}F:\games\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\games\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [UDP Query User{F0C0D182-E15A-43B4-8DFD-15BBC07EFFDA}F:\games\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\games\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [TCP Query User{274B6D60-8225-4F1D-BB4B-7F9935CDF8A6}F:\games\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\games\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [UDP Query User{E0A7F892-D212-4273-A06E-5A61A954763C}F:\games\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\games\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [TCP Query User{B9E4CD0E-3E3F-480D-BADF-720CD740123C}F:\games\diablo iii\diablo iii.exe] => (Block) F:\games\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{4F8D74F6-4C27-4289-A9ED-299C5494AD82}F:\games\diablo iii\diablo iii.exe] => (Block) F:\games\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{F352AD6E-1933-46FE-BD80-EFED64013C3E}F:\games\starcraft ii\versions\base32283\sc2.exe] => (Block) F:\games\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{15ADF763-AAB2-43EC-87D2-CE1E5AE24D54}F:\games\starcraft ii\versions\base32283\sc2.exe] => (Block) F:\games\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{48542226-8281-446E-A758-AC92CAF5D3F5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9A91C4D8-C3F6-4C63-9255-08D1B7B20091}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FAC27E42-AC50-4A24-BDAD-C0989FB29A6C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A242B665-655C-4C96-82F4-0110ABABAFC3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{64E4137C-39BC-4868-96BB-1665398A8678}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{E05F5F64-14D3-4EF4-8ED8-3CA89BDF205A}F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe] => (Block) F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe
FirewallRules: [UDP Query User{7BD88A1F-C840-4F98-A805-74631FD8546E}F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe] => (Block) F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe
FirewallRules: [TCP Query User{6A67339D-3419-4B08-9E18-DB67C5373ADC}F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Block) F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D81FE59A-EA30-47FC-9185-A0BFF1AE36E9}F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Block) F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{3667AA46-FE01-4364-A7FA-B09BFE85E8B7}] => (Allow) F:\GAMES\Battle.net\Battle.net.exe
FirewallRules: [{9BFB3B92-D639-4D88-9939-34E842D852AB}] => (Allow) F:\GAMES\Battle.net\Battle.net.exe
FirewallRules: [{D2390A04-F62A-44F6-AC4E-6008A886B79C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{682D1EDA-B4F5-449D-97F2-5BAACD82A7CB}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{7A01975D-45FB-4609-A98A-721A4ECB84D9}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{645F6115-A5E4-4529-8044-3EFD534F8DDB}] => (Allow) F:\GAMES\StarCraft II\StarCraft II.exe
FirewallRules: [{4DE7319B-A433-4133-8263-EFEB3DC76C94}] => (Allow) F:\GAMES\StarCraft II\StarCraft II.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: USB (Universal Serial Bus)-Controller
Description: USB (Universal Serial Bus)-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: PCI-Kommunikationscontroller (einfach)
Description: PCI-Kommunikationscontroller (einfach)
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Ethernet-Controller
Description: Ethernet-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/17/2015 12:45:45 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Users\SCHWEI~1\AppData\Local\Temp\jrt\CreateRestorePoint.exe  "JRT Pre-Junkware Removal"; Beschreibung = JRT Pre-Junkware Removal; Fehler = 0x80070422).

Error: (08/17/2015 12:28:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/17/2015 01:53:28 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Acrobat.exe, Version 15.8.20082.15957 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1728

Startzeit: 01d0d87eb5ef53fa

Endzeit: 20

Anwendungspfad: C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe

Berichts-ID: fc8ff51f-4471-11e5-9b3c-c21641ac06ac

Error: (08/17/2015 01:51:05 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Acrobat.exe, Version 15.8.20082.15957 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 5c8

Startzeit: 01d0d87e62337e65

Endzeit: 25

Anwendungspfad: C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe

Berichts-ID: a70fb475-4471-11e5-9b3c-c21641ac06ac

Error: (08/17/2015 01:50:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Acrobat.exe, Version 15.8.20082.15957 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 102c

Startzeit: 01d0d87e53f9f906

Endzeit: 15

Anwendungspfad: C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe

Berichts-ID: 9e640013-4471-11e5-9b3c-c21641ac06ac

Error: (08/17/2015 01:46:59 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Removed Command & Conquer 3.; Fehler = 0x80070422).

Error: (08/17/2015 01:46:57 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Removed Command & Conquer 3.; Fehler = 0x80070422).

Error: (08/17/2015 01:00:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: cnc3game.dat, Version: 1.4.2620.25554, Zeitstempel: 0x461564e5
Name des fehlerhaften Moduls: cnc3game.dat, Version: 1.4.2620.25554, Zeitstempel: 0x461564e5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0041ad34
ID des fehlerhaften Prozesses: 0x143c
Startzeit der fehlerhaften Anwendung: 0xcnc3game.dat0
Pfad der fehlerhaften Anwendung: cnc3game.dat1
Pfad des fehlerhaften Moduls: cnc3game.dat2
Berichtskennung: cnc3game.dat3

Error: (08/17/2015 01:00:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: cnc3game.dat, Version: 1.4.2620.25554, Zeitstempel: 0x461564e5
Name des fehlerhaften Moduls: cnc3game.dat, Version: 1.4.2620.25554, Zeitstempel: 0x461564e5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001f00e9
ID des fehlerhaften Prozesses: 0x143c
Startzeit der fehlerhaften Anwendung: 0xcnc3game.dat0
Pfad der fehlerhaften Anwendung: cnc3game.dat1
Pfad des fehlerhaften Moduls: cnc3game.dat2
Berichtskennung: cnc3game.dat3

Error: (08/16/2015 07:25:44 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\syswow64\MsiExec.exe -Embedding AD4EC481DCADDBA46DA53249C9032471; Beschreibung = DirectX wurde installiert; Fehler = 0x80070422).


Systemfehler:
=============
Error: (08/17/2015 12:49:05 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (08/17/2015 12:49:05 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (08/17/2015 12:49:02 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (08/17/2015 12:49:02 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (08/17/2015 12:48:57 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (08/17/2015 12:47:08 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "SymSnapService" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056

Error: (08/17/2015 12:46:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "FABS - Helping agent for MAGIX media database" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/17/2015 12:46:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "SymSnapService" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (08/17/2015 12:46:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "iPod-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/17/2015 12:46:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Norton Ghost" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.


Microsoft Office:
=========================
Error: (04/27/2014 04:09:04 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6211.1000, Microsoft Office Version: 12.0.6215.1000. This session lasted 336336 seconds with 1620 seconds of active time.  This session ended with a crash.

Error: (10/28/2013 06:15:42 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6211.1000, Microsoft Office Version: 12.0.6215.1000. This session lasted 369 seconds with 360 seconds of active time.  This session ended with a crash.


CodeIntegrity:
===================================
  Date: 2015-08-17 12:28:20.556
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-17 12:28:20.524
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-16 13:36:22.478
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-16 13:36:22.446
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-16 13:33:56.975
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-16 13:33:56.944
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-09 22:38:01.928
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-09 22:38:01.913
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-09 22:29:57.256
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-08-09 22:29:57.240
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Speicherinformationen =========================== 

Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 19%
Installierter physikalischer RAM: 20423.12 MB
Verfügbarer physikalischer RAM: 16476.3 MB
Summe virtueller Speicher: 20621.3 MB
Verfügbarer virtueller Speicher: 16205.18 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:111.79 GB) (Free:24.11 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System mit Startkomponenten (eingeholt von lesen Laufwerk)]
Drive e: () (Fixed) (Total:100.61 GB) (Free:2.36 GB) NTFS
Drive f: () (Fixed) (Total:111.69 GB) (Free:65.48 GB) NTFS
Drive g: (DATA) (Fixed) (Total:931.51 GB) (Free:56.28 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 111.8 GB) (Disk ID: E5EC1B9F)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 2C787A6B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: BB8F2C62)
Partition 1: (Active) - (Size=100.6 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 931.5 GB) (Disk ID: 09DADEB7)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Ergebnis ============================

sgb · 17.08.2015, 11:52

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:16-08-2015
durchgeführt von schweigelicht (Administrator) auf SCHWEIGELICHTPC (17-08-2015 12:50:18)
Gestartet von C:\Users\schweigelicht\Desktop
Geladene Profile: schweigelicht (Verfügbare Profile: schweigelicht)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 10 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe
(Symantec) C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [Cm106Sound] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-06-29] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ArcSimHDHook] => C:\Program Files (x86)\ArcSoft\SimHD IM Plug-In\ArcSoft SimHD IM Plug-In.exe [110592 2009-05-27] (ArcSoft)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-21] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [33648 2007-08-24] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-05] (Avast Software s.r.o.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1855672 2015-07-03] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Norton Ghost 15.0] => C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe [2596712 2009-10-01] (Symantec Corporation)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [385024 2010-04-06] (AMD)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [876728 2015-07-03] (Adobe Systems Incorporated)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Run: [GoogleChromeAutoLaunch_25B31D0574BB19A5575ACF5414E30288] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863560 2015-08-08] (Google Inc.)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\RunOnce: [Uninstall C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64"
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\RunOnce: [Uninstall C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-06-05] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-04-02] (Dropbox, Inc.)
GroupPolicyScripts: Gruppenrichtline erkannt <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.msn.com/?pc=AV01
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-05] (Avast Software s.r.o.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-05] (Avast Software s.r.o.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-07-25] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  Keine Datei
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-07-03] (Adobe Systems Incorporated)
Hosts: Hosts Datei wurde nicht im Standardordner gefunden
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{077DADE3-A57A-465F-84FC-95F6F9C10695}: [DhcpNameServer] 192.168.127.127
Tcpip\..\Interfaces\{6C7705FA-538B-4168-8E97-B3520CFA7143}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\schweigelicht\AppData\Roaming\Mozilla\Firefox\Profiles\1qefuc4s.default
FF SelectedSearchEngine: Google
FF Homepage: about:home
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-23] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-23] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Extension: Adblock Plus - C:\Users\schweigelicht\AppData\Roaming\Mozilla\Firefox\Profiles\1qefuc4s.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-31]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-06-05]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat DC - Create PDF - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2015-08-09]

Chrome: 
=======
CHR Profile: C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-07]
CHR Extension: (Web Developer) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2015-07-08]
CHR Extension: (YouTube) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-07]
CHR Extension: (Adblock Plus) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-07-07]
CHR Extension: (Adblock for Youtube™) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-07-08]
CHR Extension: (Google Search) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-07]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-08-09]
CHR Extension: (Facebook™ Chat Privacy) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfpgaanechfneiboempkfjghninbibjn [2015-07-08]
CHR Extension: (Video Downloader Super) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghciphhakbampjemlfbahnhhaemoeolf [2015-07-08]
CHR Extension: (AdBlock) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-08]
CHR Extension: (Avast Online Security) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-07-07]
CHR Extension: (Facebook Unseen) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop [2015-07-08]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-08]
CHR Extension: (Facebook AdBlock) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpacabphcagfehdgnigmfnbjdampbaa [2015-07-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-07]
CHR Extension: (SiteBlock) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2015-07-08]
CHR Extension: (Evernote Web Clipper) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2015-07-08]
CHR Extension: (Gmail) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-07]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-05]

Opera: 
=======
OPR Extension: (elennorphen) - C:\Users\schweigelicht\AppData\Roaming\Opera Software\Opera Stable\Extensions\abpeogmjbjonedcakbihofgpoelmfbgj [2015-05-05]
OPR Extension: (Chrome YouTube Downloader) - C:\Users\schweigelicht\AppData\Roaming\Opera Software\Opera Stable\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja [2015-05-31]
OPR Extension: (Adblock Plus) - C:\Users\schweigelicht\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-07-05]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [680112 2015-07-22] (Adobe Systems Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-05] (Avast Software s.r.o.)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [107448 2015-06-05] (Avast Software s.r.o.)
S2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128 2011-05-24] (MAGIX AG) [Datei ist nicht signiert]
S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert]
S3 GenericMount Helper Service; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [1571336 2009-09-21] (Symantec)
S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Norton Ghost; C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe [4584288 2009-10-01] (Symantec Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R3 SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2963960 2009-09-21] (Symantec)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S4 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [635160 2014-04-04] (Wacom Technology, Corp.)
S4 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [X]
S3 Symantec SymSnap VSS Provider; C:\Windows\system32\dllhost.exe /Processid:{81F18BB3-F438-4480-AE4C-9F432E31B2E0}

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S1 acedrv07; C:\Windows\system32\drivers\acedrv07.sys [125440 2013-08-21] () [Datei ist nicht signiert]
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-06-05] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-06-05] (Avast Software s.r.o.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-06-05] (Avast Software s.r.o.)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [449896 2015-06-05] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-06-05] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-06-05] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-06-05] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-27] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-06-05] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-06-05] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-03-08] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2012-04-25] (AVM Berlin)
S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH) [Datei ist nicht signiert]
R3 fwlanusb5; C:\Windows\System32\DRIVERS\fwlanusb5.sys [982784 2012-08-21] (AVM GmbH)
R3 GenericMount; C:\Windows\System32\DRIVERS\GenericMount.sys [54320 2009-09-21] (Symantec Corporation)
S3 L6TPortA; C:\Windows\System32\Drivers\L6TPortA64.sys [894336 2010-03-10] (Line 6)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-03-08] ()
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R0 symsnap; C:\Windows\System32\DRIVERS\symsnap.sys [170032 2009-09-21] (StorageCraft)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1306624 2009-05-14] (C-Media Electronics Inc)
S3 VProEventMonitor; C:\Windows\System32\DRIVERS\vproeventmonitor.sys [20528 2009-09-21] (Symantec Corporation)
S3 athr; system32\DRIVERS\athrx.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
U2 V2iMount; kein ImagePath
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-17 12:50 - 2015-08-17 12:50 - 00000000 ____D C:\Users\schweigelicht\Desktop\FRST-OlderVersion
2015-08-17 12:48 - 2015-08-17 12:48 - 00001550 _____ C:\Users\schweigelicht\Desktop\JRT.txt
2015-08-17 12:44 - 2015-08-17 12:44 - 01791580 _____ (Malwarebytes Corporation) C:\Users\schweigelicht\Desktop\JRT.exe
2015-08-17 12:42 - 2015-08-17 12:42 - 00002443 _____ C:\Users\schweigelicht\Desktop\mbam.txt
2015-08-17 12:31 - 2015-08-17 12:32 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-17 12:31 - 2015-08-17 12:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-08-17 12:31 - 2015-08-17 12:31 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-17 12:31 - 2015-08-17 12:31 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-08-17 12:31 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-08-17 12:31 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-08-17 12:31 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-08-17 12:27 - 2015-08-17 12:27 - 00004808 _____ C:\Users\schweigelicht\Desktop\AdwCleaner[C2].txt
2015-08-17 12:22 - 2015-08-17 12:23 - 00004347 _____ C:\AdwCleaner[S3].txt
2015-08-17 12:19 - 2015-08-17 12:19 - 00004284 _____ C:\AdwCleaner[S2].txt
2015-08-17 11:57 - 2015-08-17 11:57 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\schweigelicht\Desktop\mbam-setup-2.1.8.1057.exe
2015-08-17 11:57 - 2015-08-17 11:57 - 01563648 _____ C:\Users\schweigelicht\Desktop\AdwCleaner_5.000.exe
2015-08-16 19:22 - 2015-08-16 19:22 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2015-08-16 13:40 - 2015-08-17 12:50 - 00026729 _____ C:\Users\schweigelicht\Desktop\FRST.txt
2015-08-16 13:40 - 2015-08-16 13:40 - 00103539 _____ C:\Users\schweigelicht\Desktop\Addition.txt
2015-08-16 13:24 - 2015-08-17 12:50 - 02173440 _____ (Farbar) C:\Users\schweigelicht\Desktop\FRST64.exe
2015-08-16 13:24 - 2015-08-16 13:24 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\schweigelicht\Desktop\tdsskiller.exe
2015-08-16 13:02 - 2015-08-17 12:50 - 00000000 ____D C:\FRST
2015-08-15 23:20 - 2015-08-15 23:22 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Command & Conquer 3 Tiberium Wars
2015-08-15 11:00 - 2015-08-16 13:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-12 20:25 - 2015-08-17 00:07 - 00028690 _____ C:\Users\schweigelicht\Desktop\Berlin Recherche.odt
2015-08-12 20:25 - 2015-08-12 21:45 - 00000000 ____D C:\Users\schweigelicht\Desktop\Berlin RECHERCHE
2015-08-11 14:21 - 2015-08-14 19:35 - 00000000 ____D C:\Users\schweigelicht\Desktop\zur PROJEKTDATEI
2015-08-11 14:21 - 2015-08-11 14:21 - 00000000 ____D C:\Users\schweigelicht\Desktop\Album HISTRION
2015-08-09 22:35 - 2009-10-01 22:03 - 00154168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WimFltr.sys
2015-08-09 22:34 - 2015-08-09 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Ghost
2015-08-09 22:34 - 2015-08-09 22:34 - 00000000 ____D C:\Program Files (x86)\Norton Ghost
2015-08-09 22:34 - 2009-09-21 20:40 - 00020528 _____ (Symantec Corporation) C:\Windows\system32\Drivers\vproeventmonitor.sys
2015-08-09 22:34 - 2009-09-21 20:20 - 00170032 _____ (StorageCraft) C:\Windows\system32\Drivers\symsnap.sys
2015-08-09 22:32 - 2015-08-09 22:32 - 00003532 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-schweigelichtPC-schweigelicht
2015-08-09 21:50 - 2015-08-09 21:09 - 00001182 _____ C:\Users\schweigelicht\Desktop\Adobe After Effects CC 2015.lnk
2015-08-09 21:39 - 2015-08-09 20:12 - 00001066 _____ C:\Users\schweigelicht\Desktop\Adobe Premiere Pro CC 2015.lnk
2015-08-09 21:34 - 2015-08-09 21:32 - 00002453 _____ C:\Users\schweigelicht\Desktop\Adobe Acrobat DC.lnk
2015-08-09 21:32 - 2015-08-09 21:32 - 00002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2015-08-09 21:32 - 2015-08-09 21:32 - 00002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2015-08-09 21:22 - 2015-08-09 21:14 - 00000944 _____ C:\Users\schweigelicht\Desktop\Adobe Muse CC 2015.lnk
2015-08-09 21:14 - 2015-08-09 21:14 - 00000944 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Muse CC 2015.lnk
2015-08-09 21:09 - 2015-08-09 21:09 - 00001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2015.lnk
2015-08-09 21:07 - 2015-08-09 21:07 - 00001288 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Character Animator (Preview).lnk
2015-08-09 20:46 - 2015-08-09 20:29 - 00001078 _____ C:\Users\schweigelicht\Desktop\Adobe Media Encoder CC 2015.lnk
2015-08-09 20:29 - 2015-08-09 20:29 - 00001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2015.lnk
2015-08-09 20:12 - 2015-08-09 20:12 - 00001066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2015.lnk
2015-08-09 19:54 - 2015-08-09 19:50 - 00000988 _____ C:\Users\schweigelicht\Desktop\Adobe InDesign CC 2015.lnk
2015-08-09 19:50 - 2015-08-09 19:50 - 00000988 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe InDesign CC 2015.lnk
2015-08-09 19:48 - 2015-08-09 19:30 - 00001443 _____ C:\Users\schweigelicht\Desktop\Adobe Illustrator CC 2015.lnk
2015-08-09 19:30 - 2015-08-09 19:30 - 00001443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2015.lnk
2015-08-09 19:30 - 2015-08-09 19:30 - 00000000 ____D C:\ProgramData\ALM
2015-08-09 19:17 - 2015-08-09 18:43 - 00001000 _____ C:\Users\schweigelicht\Desktop\Adobe Photoshop CC 2015.lnk
2015-08-09 19:01 - 2015-08-09 19:01 - 00000840 _____ C:\Users\schweigelicht\Desktop\HÖRWERKE.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000857 _____ C:\Users\schweigelicht\Desktop\WORK Trainerpersönlichkeiten.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000776 _____ C:\Users\schweigelicht\Desktop\INSPIRATION SPRACHE.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000758 _____ C:\Users\schweigelicht\Desktop\K&Z-YOUTUBE-DATEN.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000758 _____ C:\Users\schweigelicht\Desktop\INSPIRATION TICRO.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000749 _____ C:\Users\schweigelicht\Desktop\BIOGRAFIE-ORDNER.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000731 _____ C:\Users\schweigelicht\Desktop\WORK MASTERING.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000704 _____ C:\Users\schweigelicht\Desktop\WORK GESANG.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000704 _____ C:\Users\schweigelicht\Desktop\VIDEO [K&Z].lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000704 _____ C:\Users\schweigelicht\Desktop\INSPIRATION.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000686 _____ C:\Users\schweigelicht\Desktop\WORKSHOPS.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000686 _____ C:\Users\schweigelicht\Desktop\RECHERCHE.lnk
2015-08-09 18:58 - 2015-08-09 18:58 - 00000666 _____ C:\Users\schweigelicht\Desktop\SAMPLES.lnk
2015-08-09 18:51 - 2015-08-09 18:51 - 00000754 _____ C:\Users\schweigelicht\Desktop\VIDEO-ROHMATERIAL.lnk
2015-08-09 18:51 - 2015-08-09 18:51 - 00000709 _____ C:\Users\schweigelicht\Desktop\PROJEKTDATEI.lnk
2015-08-09 18:51 - 2015-08-09 18:51 - 00000633 _____ C:\Users\schweigelicht\Desktop\ZfkN.lnk
2015-08-09 18:50 - 2015-08-09 18:50 - 00000835 _____ C:\Users\schweigelicht\Desktop\DAS SCHWARZE GÄNSEBLÜMCHEN.lnk
2015-08-09 18:50 - 2015-08-09 18:50 - 00000700 _____ C:\Users\schweigelicht\Desktop\RADIO-DATEN.lnk
2015-08-09 18:50 - 2015-08-09 18:50 - 00000653 _____ C:\Users\schweigelicht\Desktop\BILDER.lnk
2015-08-09 18:50 - 2015-08-09 18:50 - 00000642 _____ C:\Users\schweigelicht\Desktop\MUSIK.lnk
2015-08-09 18:50 - 2015-08-09 18:50 - 00000633 _____ C:\Users\schweigelicht\Desktop\TEXT.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00001226 _____ C:\Users\schweigelicht\Desktop\ALBUM Radio Schweigelicht (SPOT, Der wahre Jakob).lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00001172 _____ C:\Users\schweigelicht\Desktop\BUCH Welt und Selbst, Der verkörperte Geist.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00001100 _____ C:\Users\schweigelicht\Desktop\BUCH Kleidung und materielle Kultur.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00001010 _____ C:\Users\schweigelicht\Desktop\ESSAY Theater, Schauspiel.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00001001 _____ C:\Users\schweigelicht\Desktop\ESSAY Medici und Florenz.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000992 _____ C:\Users\schweigelicht\Desktop\ESSAY Stimme und Gesang.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000929 _____ C:\Users\schweigelicht\Desktop\ESSAY Selbstmord.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000911 _____ C:\Users\schweigelicht\Desktop\BUCH Ernährung.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000911 _____ C:\Users\schweigelicht\Desktop\ALBUM Histrion.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000893 _____ C:\Users\schweigelicht\Desktop\OFFENE TEXTE.lnk
2015-08-09 18:48 - 2015-08-09 18:48 - 00000875 _____ C:\Users\schweigelicht\Desktop\BUCH Story.lnk
2015-08-09 18:43 - 2015-08-09 18:43 - 00001000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.lnk
2015-08-09 18:34 - 2015-08-16 13:58 - 00000536 _____ C:\Users\schweigelicht\Desktop\DATA (G).lnk
2015-08-09 18:34 - 2015-08-09 18:34 - 00000494 _____ C:\Users\schweigelicht\Desktop\Lokaler Datenträger (E).lnk
2015-08-09 18:33 - 2015-08-09 18:33 - 00000494 _____ C:\Users\schweigelicht\Desktop\Lokaler Datenträger (F).lnk
2015-08-09 18:21 - 2015-08-17 12:29 - 00000000 ___RD C:\Users\schweigelicht\Creative Cloud Files
2015-08-09 18:21 - 2015-08-09 18:21 - 00001225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-08-09 18:21 - 2015-08-09 18:21 - 00001213 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-08-09 18:14 - 2015-08-09 18:21 - 00000000 ___RD C:\Users\schweigelicht\Creative Cloud Files (2)
2015-07-26 01:00 - 2015-08-17 12:28 - 00001202 _____ C:\Windows\setupact.log
2015-07-26 01:00 - 2015-07-26 01:00 - 00000000 _____ C:\Windows\setuperr.log
2015-07-19 20:43 - 2015-07-19 20:43 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\CEF

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-17 12:49 - 2015-03-05 22:19 - 02323739 _____ C:\Windows\avmfwlanci.log
2015-08-17 12:49 - 2013-08-20 17:45 - 02034646 _____ C:\Windows\WindowsUpdate.log
2015-08-17 12:46 - 2015-07-07 23:34 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-17 12:45 - 2013-08-20 22:13 - 00000000 ____D C:\Users\schweigelicht\Desktop\Internet ORDNER
2015-08-17 12:35 - 2009-07-14 06:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-17 12:35 - 2009-07-14 06:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-17 12:33 - 2011-04-12 09:43 - 00700986 _____ C:\Windows\system32\perfh007.dat
2015-08-17 12:33 - 2011-04-12 09:43 - 00149886 _____ C:\Windows\system32\perfc007.dat
2015-08-17 12:33 - 2009-07-14 07:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-17 12:29 - 2013-08-20 19:52 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Adobe
2015-08-17 12:28 - 2015-05-02 03:31 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-08-17 12:28 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-17 12:27 - 2013-10-18 08:23 - 00000000 ____D C:\AdwCleaner
2015-08-17 12:27 - 2013-08-20 18:52 - 00000000 ____D C:\ProgramData\Symantec
2015-08-17 02:16 - 2013-08-21 07:51 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\vlc
2015-08-17 01:47 - 2015-01-14 23:53 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-08-17 01:46 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-17 01:44 - 2013-08-27 19:07 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Azureus
2015-08-17 01:01 - 2014-10-03 03:05 - 00011988 _____ C:\Users\schweigelicht\Desktop\DesktopOK.ini
2015-08-17 01:00 - 2014-04-30 19:09 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\CrashDumps
2015-08-16 19:25 - 2013-09-25 21:22 - 00064330 _____ C:\Windows\DirectX.log
2015-08-16 14:04 - 2015-04-14 01:56 - 00000000 ____D C:\Users\schweigelicht\Desktop\ISSUE 3
2015-08-16 13:33 - 2013-09-09 18:28 - 00825306 _____ C:\Windows\PFRO.log
2015-08-15 16:01 - 2015-05-17 06:23 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Battle.net
2015-08-15 14:56 - 2014-09-16 23:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-14 20:00 - 2015-03-20 23:52 - 00000000 ____D C:\Users\schweigelicht\Documents\Apowersoft Free Audio Recorder
2015-08-12 05:47 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-08-12 05:46 - 2015-06-05 18:46 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-08-09 23:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Registration
2015-08-09 22:30 - 2013-09-09 18:28 - 11008792 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-09 22:30 - 2013-08-20 17:48 - 00000000 ____D C:\Users\schweigelicht
2015-08-09 22:25 - 2013-09-10 18:08 - 00206608 _____ C:\Users\schweigelicht\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-09 21:33 - 2015-06-24 23:18 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-08-09 21:31 - 2013-08-20 19:56 - 00000000 ____D C:\ProgramData\Adobe
2015-08-09 21:31 - 2013-08-20 19:56 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-08-09 21:14 - 2013-08-21 08:56 - 00000000 ____D C:\Program Files\Adobe
2015-08-09 21:07 - 2013-08-21 08:53 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-08-09 18:43 - 2013-08-22 14:41 - 00000000 ____D C:\Users\schweigelicht\Documents\Adobe
2015-08-09 18:14 - 2015-04-09 06:12 - 00000000 ___RD C:\Users\schweigelicht\Creative Cloud Files (1)
2015-08-09 13:14 - 2015-04-24 23:58 - 00000000 ____D C:\Users\schweigelicht\Desktop\PODCAST
2015-08-08 23:11 - 2014-08-10 06:53 - 00000034 _____ C:\Users\schweigelicht\AppData\Roaming\AdobeWLCMCache.dat
2015-08-07 18:16 - 2013-08-21 20:57 - 00001163 _____ C:\Users\Public\Desktop\MAGIX Audio Cleaning Lab 2013.lnk
2015-08-07 18:16 - 2013-08-20 20:18 - 00000000 ____D C:\ProgramData\MAGIX
2015-08-07 18:16 - 2013-08-20 20:18 - 00000000 ____D C:\Program Files (x86)\MAGIX
2015-08-06 21:56 - 2015-03-06 14:19 - 00003866 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1384774558
2015-08-06 21:56 - 2013-11-18 13:35 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-04 06:40 - 2014-06-15 15:37 - 00000000 ____D C:\ProgramData\Origin
2015-08-04 04:32 - 2014-03-23 21:21 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2015-07-26 16:45 - 2014-05-09 15:33 - 00001456 _____ C:\Users\schweigelicht\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2015-07-25 23:59 - 2014-10-03 02:35 - 00000000 ____D C:\Windows\Minidump
2015-07-25 20:53 - 2015-05-12 03:53 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\iZotope
2015-07-22 16:55 - 2015-04-03 11:50 - 00000112 _____ C:\Users\schweigelicht\Desktop\BoD.txt
2015-07-18 11:10 - 2014-12-06 06:33 - 00039946 ____H C:\Users\schweigelicht\Desktop\~WRL1357.tmp

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-12-26 15:33 - 2014-06-10 22:27 - 0000132 _____ () C:\Users\schweigelicht\AppData\Roaming\Adobe PNG-Format CC - Voreinstellungen
2014-08-10 06:53 - 2015-08-08 23:11 - 0000034 _____ () C:\Users\schweigelicht\AppData\Roaming\AdobeWLCMCache.dat
2015-04-26 05:44 - 2015-06-26 20:41 - 0000028 _____ () C:\Users\schweigelicht\AppData\Roaming\kulerdata.json
2014-05-09 15:33 - 2015-07-26 16:45 - 0001456 _____ () C:\Users\schweigelicht\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2014-07-29 18:31 - 2014-07-29 18:31 - 0001497 _____ () C:\Users\schweigelicht\AppData\Local\RecConfig.xml
2015-05-07 15:51 - 2015-05-07 15:51 - 0000017 _____ () C:\Users\schweigelicht\AppData\Local\resmon.resmoncfg
2015-03-05 22:06 - 2015-03-05 22:06 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-08-20 20:34 - 2015-05-31 22:35 - 0020089 _____ () C:\ProgramData\hpzinstall.log

Einige Dateien in TEMP:
====================
C:\Users\schweigelicht\AppData\Local\Temp\patchw32.dll
C:\Users\schweigelicht\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-15 16:29

==================== Ende von Ergebnis ============================

M-K-D-B · 17.08.2015, 12:06

Servus,

Wir entfernen die letzten Reste und kontrollieren nochmal alles. ESET kann länger (> 2 h) dauern.
Im Anschluss entfernen wir alle verwendeten Tools und ich gebe dir noch ein paar Tipps mit auf den Weg.

Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

start
CloseProcesses:
GroupPolicyScripts: Gruppenrichtline erkannt <======= ACHTUNG
RemoveProxy:
EmptyTemp:
end

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Schritt 2

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Schritt 3
Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

Schritt 4
Gibt es noch Probleme mit sich selbst öffnende Tabs in Google Chrome?

Bitte poste mit deiner nächsten Antwort

die Logdatei des FRST-Fix,
die Logdatei von ESET,
die Logdatei von SecurityCheck,
die Beantwortung der gestellten Frage.

M-K-D-B · 23.08.2015, 10:02

Fehlende Rückmeldung
Dieses Thema wurde aus den Abos gelöscht. Somit bekomme ich keine Benachrichtigung über neue Antworten.
PM an mich falls Du denoch weiter machen willst.

Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen!

23.08.2015, 10:02	#10
M-K-D-B /// TB-Ausbilder	chrome öffnet unerwünschte tabs Fehlende Rückmeldung Dieses Thema wurde aus den Abos gelöscht. Somit bekomme ich keine Benachrichtigung über neue Antworten. PM an mich falls Du denoch weiter machen willst. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist. Jeder andere bitte hier klicken und einen eigenen Thread erstellen!

chrome öffnet unerwünschte tabs

Log-Analyse und Auswertung: chrome öffnet unerwünschte tabs