| |
| |||||||
Log-Analyse und Auswertung: Malware Befall?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
20.09.2015, 14:41
| #1 |
 |  Malware Befall? Hallo liebes Trojaner-Board Team, mein Pc ist seit einiger Zeit langsamer geworden, vor allem Firefox macht Probleme. Videos werden teilweise unglaublich langsam geladen und wenn ich von einem Tab zum anderen wechseln will kommt es teilweise zu Lags, dass ist früher nie passiert. Ich hab mir mal meine TCP Verbindungen angeschaut und bin der Meinung, dass nicht alle gewollt sind. Ich kenne mich leider nicht gut aus und wollte mal eure Meinung einholen. Ich hoffe die angehängten Logs sind ausreichend. MfG dieFackel Malwarebytes Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 20.09.2015 Suchlaufzeit: 13:57 Protokolldatei: Maöwarebytes.txt Administrator: Ja Version: 2.1.8.1057 Malware-Datenbank: v2015.09.20.01 Rootkit-Datenbank: v2015.09.18.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: dieFackel Suchlauftyp: Benutzerdefinierter Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 822824 Abgelaufene Zeit: 1 Std., 26 Min., 34 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 1 PUP.Optional.RegCleanerPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ASP, , [938ee84a484323137ebf8ba559aac43c], Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter OTL Extras logfile created on: 20.09.2015 14:12:03 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\dieFackel\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10240.16384)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
8,00 Gb Total Physical Memory | 4,10 Gb Available Physical Memory | 51,24% Memory free
16,00 Gb Paging File | 11,46 Gb Available in Paging File | 71,62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119,14 Gb Total Space | 24,30 Gb Free Space | 20,40% Space Free | Partition Type: NTFS
Drive D: | 931,41 Gb Total Space | 117,87 Gb Free Space | 12,65% Space Free | Partition Type: NTFS
Drive E: | 2,88 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Computer Name: SOL-PC | User Name: dieFackel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = B8 53 BB 86 69 D0 D0 01 [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A7AC2B9-D334-4A5F-BAD8-BBBA43FAEF85}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{3FEAF7FE-3E22-4EC7-A31F-206284E9E1CA}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{44B570B6-8F9C-49AC-8F60-141064742DDE}" = lport=47995 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{45D8D20D-013A-4430-8691-DF5DB7BB3C5B}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{592D499E-5BC0-476C-A7C2-512F75587FD3}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{6BDCEACE-97D2-4073-9739-91AA434DA97A}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{A093B23A-34C2-4679-B293-D93929427E28}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{A7CDDBE0-F603-4ED4-BD35-F587C8055EBB}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{B63F0017-2F7E-41CE-B2BB-357A5923027F}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{BB5826E7-2A22-4527-A02E-B9188881C9CC}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |
"{C346D2EC-0F46-4B35-BF88-45A910E8F65D}" = lport=5357 | protocol=6 | dir=in | name=ws-eventing tcp port 5357 |
"{F2545E51-0152-4CD8-9DDD-4070AF02854B}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{F7500448-256C-4CF4-921E-F82C761ED2EB}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{005CA57C-0C3A-47D0-8BF8-250011EEADDB}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{01A59A15-B150-4261-A832-C13E2333934A}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{02077CB4-DEE6-45F8-9434-2E73F92525A4}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{02753EB8-721E-4F3C-A12C-34C33645F4AA}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\devicesetup.exe |
"{042A055D-138C-4D24-943A-D29B3400242B}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\launcher\launcher.exe |
"{0512736B-D209-4A68-9032-8F1E5EBC5663}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{05890CEC-27A6-4394-90E0-BB59AF447910}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{05B42524-C3C8-41AE-898B-8F2B08533BBD}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\launcher\launcher.exe |
"{05C433B1-045D-4649-9FE8-AA33A16A6681}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{05E2912F-1FB3-4D2D-B26F-731F9C4972A1}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\mark_of_the_ninja\bin\game.exe |
"{0849E683-30DF-4FBA-ACF9-191670245FC2}" = dir=out | name=@{microsoft.people_1.10241.0.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{0898D30C-4DDF-4852-9CEF-CD79E0FB0347}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\projectzomboid\projectzomboid64.exe |
"{08FE3F0B-E290-4A32-8D1A-5E0431B92CD9}" = protocol=6 | dir=in | app=d:\spiele\dragon age\bin_ship\daupdatersvc.service.exe |
"{0A2AEE49-FE23-49FB-9805-852F5AD4D90B}" = dir=in | name=xbox one smartglass |
"{0B4EBB85-0C1D-4E89-8CE1-83B826995FED}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{0BAE9171-52B3-4EC5-9A19-A016C1E03D02}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe |
"{0BB03995-1E3A-4C68-839F-2683138514C7}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\darkestdungeon\_windows\darkest.exe |
"{0C0652B7-FCB4-46F4-B493-383EA1E10206}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\evolvebeta\bin64_steamretail\staticlauncher64.exe |
"{0C591109-FBC6-4F73-BBBB-61092B9BB943}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\runme.exe |
"{0D67BF69-771F-4CC6-B60E-FE209BC5D2AA}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{0E12E7A7-B93C-4E19-B9B7-6095AF6767F1}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{0E181344-9146-427F-B8C5-F7CEC8AE589F}" = protocol=17 | dir=in | app=d:\ubisoft\future soldier dx9.exe |
"{0EF27D38-E34C-49C9-8FFF-A8DEE122C744}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\darksouls.exe |
"{1007BD7E-888D-41BC-9DF6-6016D0A2C516}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\convoy\convoy.exe |
"{10F2AA7E-B647-4859-A997-8DCA038F947F}" = protocol=17 | dir=in | app=d:\spiele\rockstar games\grand theft auto v\gta5.exe |
"{1162E8DD-48DD-4181-812E-659536393FF0}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization beyond earth\civilizationbe_dx11.exe |
"{11C01E43-C6A3-487F-98FC-F8720A67124B}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{121C2BBA-ADCF-4A00-A003-8E4DC7C19F42}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{12F913B6-00F8-4DEB-B3E4-8D97D2850BED}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3507\agent.exe |
"{131CBD8F-19F4-4077-AA23-2E3A9B932972}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\runme.exe |
"{15789D71-645E-40BA-A62F-658AE5200343}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2737\agent.exe |
"{161B3A9B-F20F-432A-A4F8-529C74EDA64C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3334\agent.exe |
"{17802179-CA10-493D-89B9-93EDC204577E}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{18B2ED39-6F83-4A48-8D68-DC86F3330C75}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{18E3DFF2-8E7F-4F8D-B17D-9CEFEF9410D2}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\hotline_miami\hotlinemiami.exe |
"{1AC1DBEE-839F-431D-8D8E-029BC8B31A0B}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\resident evil 4\bin32\bio4.exe |
"{1BFB075B-45D6-4E2A-85A9-291CD184C82D}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{1DC62405-5788-4878-AEEF-73C0E95C6951}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3427\agent.exe |
"{1FDDD19F-D61F-4E96-9476-9EE53E29A059}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3332\agent.exe |
"{200F8714-305F-4403-A7E8-177A79F7581D}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\tbs\win32\the banner saga.exe |
"{20947C9C-C050-4E24-ACE3-A9192112A63A}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\hitman absolution\hma.exe |
"{218D2D66-4D94-49D5-AF31-43C404A7EDB5}" = dir=in | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{227B3C14-5356-4F52-9290-1A29338AAD29}" = dir=out | name=xbox |
"{228C2D57-EE48-40B9-9993-179DAFE23EB3}" = dir=in | name=xbox |
"{229F2905-9307-4961-B2F4-EEB6BE81AAE4}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\banished\application-steam-x64.exe |
"{22EF0059-D71E-46A6-A646-B5E9903D7EB7}" = protocol=17 | dir=in | app=d:\spiele\dragon age\bin_ship\daupdatersvc.service.exe |
"{23E7F851-E1FF-4B6E-AD30-947EA07554B2}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{24AD6035-4531-4D19-88F4-22279AFC5DAA}" = protocol=17 | dir=in | app=d:\spiele\steam\bin\steamwebhelper.exe |
"{260998F8-92AC-4377-B056-ABB93BE243F7}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\darksouls.exe |
"{271C88E9-96B2-4725-ADE1-49DBFA58099D}" = protocol=17 | dir=in | app=c:\steam\total war rome ii\launcher\launcher.exe |
"{27B6BBB1-7DD7-44E0-9F5F-821FCBFA2D98}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"{27CF53A7-4C2D-447E-B96F-CA6BFAACB147}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\launcher\launcher.exe |
"{27D80C77-5768-47B2-BC71-ECEF146C8A2D}" = protocol=6 | dir=in | app=d:\spiele\dragon age\bin_ship\daorigins.exe |
"{28B9B0CA-69CF-49C4-886D-1F7E6D0E63E0}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{2B1DAD53-06C0-466F-9E22-55FA34F4F7C1}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{2E04DF7B-58DC-40FD-9861-C65DEEF3472B}" = protocol=6 | dir=in | app=d:\spiele\steam\bin\steamwebhelper.exe |
"{2E372AA7-F0B1-41BF-9BCF-3AFE1A50E663}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization v\launcher.exe |
"{2E42D9FC-277E-4017-8613-13BCC3649FF1}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.6208.42001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{30BD7EC9-61EF-43AD-BFCA-932704125836}" = protocol=6 | dir=in | app=d:\spiele\dragon age\daoriginslauncher.exe |
"{3130F182-68CD-449D-A804-A997F2261D73}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{3241B533-BF6C-464C-8635-3BBC2ABA07D4}" = dir=out | name=@{microsoft.windowsdvdplayer_3.6.11761.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsdvdplayer/resources/ids_dvdplayer_app_name} |
"{3303FDE8-CEFC-452C-B250-A1DB46463A31}" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{33EC2108-E97A-4AA1-BD77-5008A89FC222}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{347A10AF-F98B-4779-B70B-3F025D418E11}" = protocol=17 | dir=in | app=d:\dateien\utorrent\utorrent.exe |
"{35241231-34FA-42D4-921F-BAC90A61C91A}" = protocol=17 | dir=in | app=d:\spiele\dragon age\bin_ship\daorigins.exe |
"{3555AFC8-175C-4A2E-B148-CC93257FCED2}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\hitman absolution\hma.exe |
"{3675F0AF-25B1-45AE-BDED-BEECEADB7462}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\launcher\launcher.exe |
"{37DBD5E1-76BC-46E5-8F23-179DADB6C408}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\runme2.exe |
"{3827FB5E-BF15-4667-9A6F-FF5A3112D939}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\faxapplications.exe |
"{396624B1-C30D-48C7-A088-13E424FC2A24}" = dir=in | app=c:\program files\hp\hp officejet 4630 series\bin\faxapplications.exe |
"{3A2FD336-EDBD-40E1-B06A-24C24C50670E}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\hotline_miami\hotlinemiami.exe |
"{3A7BC421-EDBF-409F-AE22-B79A7C6D1E11}" = dir=in | app=c:\program files\hp\hp officejet 4630 series\bin\hpnetworkcommunicatorcom.exe |
"{3AE9DECA-3481-43DA-B89E-BF20F112D819}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{3BC6CFE2-7EA2-4011-84BA-7FEED091D83A}" = dir=in | app=d:\dateien\echobit\evolve\evolveclient.exe |
"{3C37B9E7-A1B0-41FF-BB5C-41BB7071420B}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{3D77A983-461C-4A06-BDE7-A19AD55B4DD8}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\magic 2014\dotp_d14.exe |
"{3D9D9D7A-E99F-481F-96B6-69EA8ECDB91F}" = dir=out | name=@{microsoft.windows.photos_15.915.17170.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{3E09C03A-4152-4866-8740-9436C209C174}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\banished\application-steam-x64.exe |
"{3F95326E-BB54-49B1-85DD-73659FAF8C62}" = dir=in | name=@{microsoft.bingnews_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{4110D224-9A94-479B-BDD6-927B5E0CD22F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3634\agent.exe |
"{42E8ED7D-6813-475E-9526-E86E74431098}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe |
"{4373D304-EC2F-4DC7-A098-1034ED7EC19D}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\batman arkham city goty\binaries\win32\batmanac.exe |
"{44789199-E0E1-4D74-9AA9-927C61BEBF41}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{454808A4-0F57-4997-A163-A11BEB797424}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2816\agent.exe |
"{454B6152-3A20-4BB5-852C-649F4293A1FA}" = protocol=17 | dir=in | app=c:\users\diefackel\appdata\local\temp\insa09a\setup.exe |
"{466FED5B-6575-4E15-87A2-545F7300F3DA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3454\agent.exe |
"{4701180F-828D-4A7D-BEE2-0525E357EEDF}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\launcher\launcher.exe |
"{47331124-787A-4A26-A875-7E33D2E60C2E}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\darkestdungeon\_windows\darkest.exe |
"{473F3C8B-E48E-49EC-B8ED-971DDEED3907}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3323\agent.exe |
"{47531F08-A748-403F-94CD-31A8E33F9E2F}" = dir=out | name=twitter |
"{47AA9760-2E5B-46F0-8A4D-EEA417002F31}" = dir=in | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{47C063DB-E35A-4680-ACF9-074E46A11E7F}" = dir=out | app=d:\spiele\steam\steamapps\common\the talos principle\bin\taloslauncher.exe |
"{487C9432-BD35-49B9-99F5-3BAFE1A664EE}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{4897919E-4C88-40A9-8114-D18BF2C3107E}" = dir=out | name=@{microsoft.3dbuilder_10.9.6.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} |
"{4963AD04-0B6C-4175-BDC5-D89A44D8BBE8}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{49FBEF79-5265-4DBB-80C5-04929B850A06}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\starmade\starmade-starter.exe |
"{4A5DB823-6EE7-455F-A4B4-66B5A92E1DAC}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2717\agent.exe |
"{4AE9B7C5-F214-42B4-BD04-4D111B6C6902}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3346\agent.exe |
"{4C509833-4E81-4B7D-9786-A86864E79778}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{4CEB2609-F630-445B-ADE0-E7A4F484BD37}" = protocol=6 | dir=in | app=d:\spiele\bioware\star wars-the old republic\launcher.exe |
"{4D31A50F-DD2C-44A1-8106-12450F1BD174}" = protocol=6 | dir=in | app=c:\steam\total war rome ii\launcher\launcher.exe |
"{4D7695AC-2CFD-4339-BA01-09D6A50F6916}" = dir=out | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{4DCD9165-0CDD-43E8-89E4-C09A2AFEC4F6}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{4E00D23C-FC6C-460D-B09D-C74E9829E1E6}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\evolvegame\bin64_steamretail\evolve.exe |
"{4E466B35-E368-40A2-AC9C-0A464848E71E}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{4E55DE75-0541-4FFF-A27A-B8E7A0708C41}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\the banner saga factions\win32\the banner saga factions.exe |
"{4FEC670E-A4A5-4FCA-AD3C-C8CEBC9F80E4}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\metal gear rising revengeance\metal gear rising revengeance.exe |
"{50A0F398-48A6-498F-9B67-4D5C9A071F1B}" = protocol=17 | dir=in | app=c:\steam\dayz\dayz_be.exe |
"{50A4018A-E9AB-4375-85D1-DB1EA03F464C}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3507\agent.exe |
"{50CA82F3-6FD3-4198-BC73-5E7FB0BEC229}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\projectzomboid\projectzomboid32.exe |
"{5185CE5F-6F3A-4005-9FFA-99A07BFC30AF}" = dir=out | app=d:\spiele\the escapists\theescapists.exe |
"{522D8F47-7A69-4C86-8D0A-3B96A5BA7490}" = protocol=17 | dir=in | app=d:\spiele\steam\steam.exe |
"{52E231DB-F5D6-4028-BEC4-8E8ED67F12AD}" = protocol=17 | dir=in | app=d:\spiele\starcraft ii\starcraft ii.exe |
"{546EE88C-D4CD-4AD5-A785-76611448A8B8}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{5712810A-D8E8-47F1-867C-8A567865F1FA}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{5933A99D-DE56-4D42-A127-7361BCDDBA2B}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{59C36A26-852E-4745-BEF7-698FF9D6C85E}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\projectzomboid\projectzomboid64.exe |
"{5A5B2FD4-4695-44C9-8C9B-9D28D6012468}" = dir=in | name=@{microsoft.bingfinance_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{5A635D4F-1529-4FD1-87C0-0B9C1FAAA69A}" = protocol=6 | dir=in | app=d:\spiele\steam\steam.exe |
"{5B828859-7EB5-48C0-B521-DAF312FC3B92}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{5BEEE90D-0BBE-4967-8B44-654F73F5E717}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\the banner saga factions\win32\the banner saga factions.exe |
"{5C97D2AD-62A5-4F8E-A76D-8CBD095C76AB}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{5CE8D20C-85C6-4DE3-A472-B7817AC6AAEA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3323\agent.exe |
"{5E7713F5-7BBD-4363-9B96-0C255F7D2E3D}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\hotline_miami\hotlinemiami.exe |
"{5E9EC2DE-8C92-4258-AC76-9FA200A6CFCA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3023\agent.exe |
"{5FD0AFAB-647B-413F-8806-D83B6639A7D5}" = protocol=6 | dir=in | app=d:\spiele\starcraft ii\starcraft ii.exe |
"{6083F112-8C04-4F34-8B81-E280FF1B4F08}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3023\agent.exe |
"{612F91F9-9A30-412D-B951-56F8B50574E5}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization beyond earth\civilizationbe_mantle.exe |
"{61375D69-A18E-4803-8779-D8BF39D6268A}" = dir=in | app=d:\dateien\echobit\evolve\evosvc.exe |
"{62EE0961-BA3D-4D95-9334-21F2BADA5749}" = protocol=6 | dir=in | app=d:\spiele\riot games\league of legends\lol.launcher.exe |
"{63E93650-FC6E-470D-B081-ED7D3885B788}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3478\agent.exe |
"{65BCD715-1B96-40FB-93BC-46BB53473CA1}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe |
"{65CA368D-AA79-49E2-99A8-3734AD9636F2}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{65ED1D28-06B3-4520-B7A1-C1B0B3C19453}" = dir=out | app=d:\spiele\dying light - season pass edition\dying light - season pass edition\dyinglightgame.exe |
"{660FBB0B-FF00-4456-9BEA-7DFBF4895F7E}" = dir=out | name=@{microsoft.lockapp_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{6680ACBA-36E3-4AAD-B9B0-01E7654230F0}" = protocol=6 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe |
"{66A06236-BF4D-4C8A-91D8-1036C1CED3C5}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\rogue legacy\roguelegacy.exe |
"{66BD3D56-1118-4FC3-9E54-80150813DA09}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3715\agent.exe |
"{67A514D2-A5D3-4279-AB1E-636784D1EE38}" = dir=in | name=@{microsoft.bingsports_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{6824D999-E278-4D96-A8EB-3C4D6761872C}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\this war of mine\this war of mine.exe |
"{6865C0BD-E5FB-4EE7-A14C-6BC7ADC5AF5E}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{688477AC-2BC2-432D-BB5F-610B8EE78714}" = protocol=17 | dir=in | app=c:\program files (x86)\tunngle\tunngle.exe |
"{69741C2E-A68A-4CFB-9806-5ACAF93A5507}" = dir=out | name=@{microsoft.windowsstore_2015.9.9.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{6A1E11C6-2FD4-4442-B793-54CAD8E63F82}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\metal gear rising revengeance\metal gear rising revengeance.exe |
"{6ACFD153-8905-467B-970D-055343BD393E}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{6BF50E30-7EB9-4353-BC55-1167AFD223F4}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3688\agent.exe |
"{6C2CB2BE-9CBB-42C8-B541-075309D8621E}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\evolvegame\bin64_steamretail\evolve.exe |
"{6DB10C88-5451-485A-B1DB-C7936DD88213}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\projectzomboid\projectzomboid32.exe |
"{6F6FECE9-E7BE-46A8-B2EB-88BBB95D2A24}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{6FCEA93C-55AE-4EB2-98EB-B68ED3541B24}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls ii\game\darksoulsii.exe |
"{6FD1367F-BE5F-445D-9450-6288750D57E0}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\hpnetworkcommunicator.exe |
"{71EDB1FE-7946-4123-80C9-0B72647F813D}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\dragon age inquisition\dragonageinquisition.exe |
"{725EA809-0C27-44BB-A6D1-42DFFB83A5B6}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization beyond earth\civilizationbe_dx11.exe |
"{72C456E5-DAA4-431D-9980-04CFD84D8BE1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{732BA3E2-1182-4397-8D28-A9A2C88849AA}" = dir=out | app=d:\spiele\gog games\hotline miami 2 - wrong number\hotlinemiami2.exe |
"{74B20526-C704-4197-B388-4CC6E61A0C1C}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{75FC0C17-CEE6-4683-A000-68DC461CDDCF}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\left 4 dead 2\left4dead2.exe |
"{761C66B0-8B01-4D1B-AFB3-2054C4A21ECB}" = dir=in | name=@{microsoft.bingweather_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{77F7FC88-7D10-47A1-A934-A458A2FD7952}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\evolvebeta\bin64_steamretail\staticlauncher64.exe |
"{78C4D7BF-73DB-4DAF-8326-B43326C6E00B}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{78C7F32C-24C4-45B6-8186-FD812927A836}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{791AE8AB-8F4F-4403-997C-7D6431C71758}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{793C15B0-6D90-460B-AC34-F7920EA0457B}" = dir=out | name=windows_ie_ac_001 |
"{7946B31A-3D86-4532-8C59-B2608D2F5089}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{7ABD6415-AAE2-4A3F-AD8C-0056BCBE5447}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\dragon age inquisition\dragonageinquisition.exe |
"{7BB0851D-6A74-42EB-A886-3DD13A42722B}" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{7BE77165-226E-4090-ACA4-A8C96846A894}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization v\launcher.exe |
"{7C6AAB1A-6FDA-42F6-9029-383B567FD67C}" = dir=out | name=@{microsoft.microsoftofficehub_17.6209.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{7DB26FD5-0ED8-4977-B3AE-74BC78F74905}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\far cry 3\bin\fc3updatersteam.exe |
"{7E08556E-1E48-491D-9432-D0CD72FB0C37}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls ii\game\darksoulsii.exe |
"{7E35D448-A58D-4FC2-BA21-430360FADCD6}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe |
"{7E712ACE-081E-4A1D-A7DB-1DA6AA724707}" = protocol=6 | dir=in | app=c:\program files (x86)\tunngle\tunngle.exe |
"{7F4738E0-D875-4AAA-8603-B22CCD24074A}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\tbs\win32\the banner saga.exe |
"{804D6F11-A546-48E8-8806-D776353B49F5}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\batman arkham city goty\binaries\win32\batmanac.exe |
"{80C91602-0A9B-403A-8488-F952FA86D28F}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\dragon age inquisition\dragonageinquisition.exe |
"{8382654B-F75C-46C3-89A5-96365F686589}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{8478B8DE-38F7-4608-B84F-15A89CCCF4D7}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\sendafax.exe |
"{84E05554-EBD4-4F2C-935A-8476C0213A1B}" = protocol=17 | dir=in | app=d:\dateien\winamp\winamp.exe |
"{850377DC-94A3-4B2A-AA1F-2D4A61142648}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization beyond earth\civilizationbe_mantle.exe |
"{85C5C8CE-4D27-4531-A568-5EFDE17198F5}" = protocol=17 | dir=in | app=c:\users\diefackel\appdata\local\temp\insa09a\setup.exe |
"{86B7401E-8AB8-447F-BEA3-F5DD0CDF19CA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{874CB0D8-1A02-4AC9-A166-9F8293E19B86}" = protocol=17 | dir=in | app=c:\steam\total war attila\launcher\launcher.exe |
"{8759A254-2AFE-4E31-912C-C534E6F5F517}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{88F4AE15-7AAB-4B72-BEC4-9C72D67F7A88}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\deus ex - human revolution\dxhr.exe |
"{8A07CC39-D9D6-4986-A7E7-FC3984AC7127}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3334\agent.exe |
"{8B769242-BA38-42BD-B61E-C869E9D4AFD6}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls ii\game\darksoulsii.exe |
"{8B88620A-E50A-426E-949A-8CC410A9D244}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\convoy\convoy.exe |
"{8B8C6FF2-E4E2-492B-BD96-275EEA4254D9}" = dir=out | name=@{microsoft.zunevideo_3.6.12711.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{8BE9C610-6900-4DC0-ABAD-CB4AC37F2188}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\launcher\launcher.exe |
"{8BEDEFB4-D4DD-49DB-AF32-02BC67C7F08E}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{8D209263-84F7-4FE6-B69E-868302C09FD2}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\digitalwizards.exe |
"{8E689C35-4729-49A6-BAD2-957DC852D36D}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3332\agent.exe |
"{8F403FA8-32ED-4220-B599-037F2278A985}" = protocol=17 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{908F4F56-D8E9-4767-9F40-75C1634CF255}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.6208.42001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{90C2CADE-0B84-499A-B2F0-315635D1D7C9}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3668\agent.exe |
"{91F29332-8300-4A77-8646-391A0E36647B}" = protocol=6 | dir=in | app=d:\spiele\bioware\star wars-the old republic\launcher.exe |
"{9285C295-959E-446A-A96B-12113128E64F}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{930A184D-3AC6-40FF-A3BD-97983CF14E97}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe |
"{95590C03-1640-4DFA-88D5-77BEC88C5CAB}" = protocol=17 | dir=in | app=d:\spiele\riot games\league of legends\lol.launcher.exe |
"{967DF2D9-1094-404F-95FB-747EDD01CEFB}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\ftl faster than light\ftlgame.exe |
"{96EBA60C-D22C-4AE4-B9FF-48344DCD1A8B}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\starmade\starmade-starter.exe |
"{98F95051-3DCF-440C-9AE9-E94D278E79EB}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\ftl faster than light\ftlgame.exe |
"{9A344900-C141-44D8-A5DD-68DA9610A391}" = protocol=17 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe |
"{9A669733-4F0E-4354-A9F2-783A3E91ABC0}" = dir=out | app=d:\spiele\steam\steamapps\common\the talos principle\bin\talos_unrestricted.exe |
"{9A7C1B98-4563-4D9C-BAB1-247FB5423C24}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{9AFD8555-084C-4CAB-9EFB-79460318035D}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\baldur's gate ii enhanced edition\baldur.exe |
"{9B47F7B1-0285-4904-8D57-52FDC09473D8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{9CD7F87D-11D1-4720-82A5-EDBDB709064F}" = dir=in | name=@{microsoft.microsoftofficehub_17.6209.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{9D0EB4A1-0242-4620-8E01-2CCDF0A2AD7C}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{9E96DFA9-52C0-465E-ABC3-2E5E6D034881}" = dir=out | app=d:\spiele\steam\steamapps\common\the talos principle\original\talos_unrestricted.exe |
"{9F1CCF75-75D5-46FC-B93F-A8C688C0CD17}" = protocol=17 | dir=in | app=c:\steam\total war rome ii\launcher\launcher.exe |
"{9F8489F4-D6C3-45C7-A2F1-E8D675DAD137}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{A0EFB1FA-5906-4CDD-B7CD-CF975BD867FD}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war attila\launcher\launcher.exe |
"{A0FFBA22-BA61-4766-8CA9-F76115D3ABC2}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{A20C7EC1-D7F0-4699-A999-C11A6AF98445}" = dir=in | app=c:\program files\hp\hp officejet 4630 series\bin\devicesetup.exe |
"{A254CE1C-6E77-4ECB-B6C7-EEDA27CB951E}" = dir=out | name=@{microsoft.bingnews_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{A27DCD31-FB3D-4FFE-A0A1-8EB8491B9F49}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3372\agent.exe |
"{A2BBD7E9-1467-4104-9099-CD811030CD9C}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{A2F231C9-4CD8-4395-81DF-C34C6DE0F706}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{A2F61F36-90A6-400C-8F5B-32D7A043FC06}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls ii\game\darksoulsii.exe |
"{A4AE1FED-1B2E-4400-B66B-44EF7AB1085C}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\tbs\win32\the banner saga.exe |
"{A4BFD460-B46F-437E-A601-F7B60A598667}" = dir=in | name=onenote |
"{A58FCE97-E1C6-441E-BCA5-4F1A94A75D35}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\this war of mine\this war of mine.exe |
"{A6441CE9-9B08-426E-BD68-524B7CA68ACA}" = dir=out | app=d:\spiele\steam\steamapps\common\the talos principle\original\talos.exe |
"{A69E166B-B8ED-48C9-8F37-7BC3560B9061}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war attila\launcher\launcher.exe |
"{A7964258-CEEC-492B-89D8-9130CD0587CC}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2737\agent.exe |
"{A7ED935A-F3EC-42F6-BFD7-2BECCA4668BD}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\spelunky\spelunky.exe |
"{A87A837B-957D-406A-897C-7BE312454618}" = dir=out | name=onenote |
"{A9CBEE33-4680-41F4-B98A-79F7E51310D2}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\spelunky\spelunky.exe |
"{AAE2CD6D-47F5-408E-A3CA-675F1053E35C}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\rogue legacy\roguelegacy.exe |
"{AC01552A-81A1-49B2-B053-6E2EE963F693}" = dir=out | name=@{microsoft.bingweather_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{AD04575E-BD2A-49DC-8256-0902D8205E44}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{AEF39903-164B-4F43-97CB-0EC845062CCC}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} |
"{AF973B7E-92F7-4563-88EC-4D14DF7F570A}" = protocol=6 | dir=in | app=d:\dateien\winamp\winamp.exe |
"{B030A168-6281-48CA-9621-76A8AEA3AF09}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3688\agent.exe |
"{B243255C-A7CC-4062-88F3-5A68A9818BF0}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\dragon age inquisition\dragonageinquisition.exe |
"{B2F30D36-41BD-46C2-BFAC-77710BEA7E86}" = protocol=17 | dir=in | app=d:\spiele\bioware\star wars-the old republic\launcher.exe |
"{B378F8B3-FCA1-4072-BDAD-05EBBF7495F3}" = dir=out | name=microsoft solitaire collection |
"{B3B18623-32C2-4E9A-953A-C7A9D41C08DD}" = protocol=6 | dir=in | app=d:\ubisoft\future soldier dx11.exe |
"{B407A014-5DA2-44E3-B87F-65197BCC60D6}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3346\agent.exe |
"{B40EDC8D-1BA5-48DD-A6DE-1871DD1C1852}" = dir=out | name=@{microsoft.bingfinance_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{B4495F83-B379-4899-85D3-E45164AF6B0E}" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\temp\insa09a\setup.exe |
"{B5CC3189-6AFD-4B0A-BF7B-606DB90611A2}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3634\agent.exe |
"{B5EFA66B-C35B-4B36-9EA3-A93F1555753E}" = dir=out | name=@{microsoft.getstarted_2.3.4.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{B715B48F-AF68-463A-94F5-8E0D35B547A9}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3478\agent.exe |
"{B7600AF9-C7D4-4B5D-81ED-C091D5432314}" = protocol=6 | dir=in | app=c:\steam\total war rome ii\launcher\launcher.exe |
"{B7A18863-2979-473F-980B-236D675FB059}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{B7E7F9E2-F9E0-48FB-B8E3-DA6E1D073282}" = dir=in | name=@{microsoft.windowsstore_2015.9.9.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{B8262556-3A71-44D0-844E-C47F3BF5FE9C}" = dir=out | app=d:\spiele\dying light - season pass edition\dyinglightgame.exe |
"{B83D49E3-C9EE-49E5-93EC-0C2A0ECB1797}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3669\agent.exe |
"{B8E9E7A8-22E9-46D2-B15A-2616ACBE94FF}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2787\agent.exe |
"{B9477112-FE2B-483F-B808-8B716C4CFF80}" = dir=out | name=@{microsoft.windowsmaps_4.1509.50911.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{B9C5D61E-29CD-43E9-9445-093116FC9FC8}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\far cry 3\bin\fc3updatersteam.exe |
"{B9E397A5-6684-438B-A818-1DF8C61E9B38}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{B9EA31C3-7A77-4730-9AA5-8E0C39EEF0C4}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{BA916752-F322-46BA-8A89-0CBFD0F6EFDE}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{BAEB663C-7F5E-4F29-A51D-1235BF4C7897}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3669\agent.exe |
"{BB349080-4EF5-4A0F-AFCF-58D1A5BE541D}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe |
"{BD02DD28-83A4-40BE-BCB0-A01DEB78070A}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{BD7E8AC0-D371-47DC-A1E0-8F627C3E1039}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2816\agent.exe |
"{BE6201F6-47F2-4F6D-A260-1DE904ACCA50}" = protocol=6 | dir=in | app=d:\ubisoft\future soldier dx9.exe |
"{BF657D00-BF2C-4E0D-B45C-68D76EB62355}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{BFA46502-EAF1-45ED-903C-835E538F931F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{C0B82E17-81E4-4A83-987F-A1F80330B9A0}" = dir=out | name=xbox one smartglass |
"{C1F02300-6FE1-413E-97D5-9D2E1BCC7BE5}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\left 4 dead 2\left4dead2.exe |
"{C27628C6-628C-4445-946F-CECA67BB71E8}" = dir=out | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{C3F3315C-1356-4F3B-9F77-FE5B9DE9966A}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\evolvegame\bin64_steamretail\evolve.exe |
"{C536F582-753F-4E9C-976A-1D730B05E962}" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\temp\insa09a\setup.exe |
"{C7F5C892-26AC-492E-AF4B-B91D56F57A5C}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{C8111857-2C72-45AC-91FB-4FEDD31A8BBC}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{C82C6185-880F-4E6E-8746-2B6BB818BD6B}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\resident evil 4\bin32\bio4.exe |
"{C86BE727-FC4B-4D2D-B906-89F2208D63EB}" = dir=in | name=microsoft solitaire collection |
"{C8F2300C-DFA2-4270-8E8F-A07F00192E4C}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\darkestdungeon\_windows\darkest.exe |
"{C8F9D5F7-0F0E-4656-B32A-EC826FEB347F}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\evolvegame\bin64_steamretail\evolve.exe |
"{C921C817-C4BD-46C0-B066-1FE300EA2322}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{C94F57A0-0A4A-470F-B710-2DAAB728AFB3}" = protocol=6 | dir=in | app=c:\steam\total war attila\launcher\launcher.exe |
"{C970D1FA-1BB1-45FB-8E2F-1EDEC790AEBC}" = protocol=17 | dir=in | app=d:\ubisoft\future soldier dx11.exe |
"{C976ADF5-7175-4272-B4BE-CCD10EAC1E1C}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe |
"{CB741E7C-88F0-498F-B836-DAFF3E9C50A4}" = dir=out | name=@{microsoft.zunemusic_3.6.12711.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{CBC7F8AB-00EB-4892-9F01-78F6C467AA2D}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\tbs\win32\the banner saga.exe |
"{CDE2447B-D5E2-4DBE-8C94-F911A02C6F62}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{CE2D4911-05FA-4045-9164-11AAD79CC908}" = dir=out | name=@{microsoft.accountscontrol_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{CF1307F5-73F8-47A0-8567-8409FD73B1D9}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{CF3A864B-8FB3-4AA1-A68D-7373BD05BB5D}" = protocol=6 | dir=in | app=d:\dateien\utorrent\utorrent.exe |
"{D0AB18AF-7B1B-40D8-A1DD-648716E7511F}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\hpnetworkcommunicatorcom.exe |
"{D0D54C33-B40E-4A4D-BBA6-C10B67E8D7D7}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\deus ex - human revolution\dxhr.exe |
"{D2FFE9DA-6BEA-4700-A64E-D9652A604C6C}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{D37AC809-3DCF-48D3-A935-663B1B235D36}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"{D623BF2F-54FC-4366-84B2-1CAC8D46AACA}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\hotline_miami\hotlinemiami.exe |
"{D6C0EDC8-5443-432D-B927-A42C0252C284}" = protocol=6 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{D8C55077-E30F-4B93-B5F6-02699B7E744F}" = protocol=17 | dir=in | app=c:\steam\dayz\dayz_be.exe |
"{D8D7A9A1-B3A6-4931-9103-5F103D19E2C7}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{D9020509-1915-46C3-8F77-73656050A0ED}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\darksouls.exe |
"{D9575063-E67C-4168-A0F9-EC0C4BA3A36D}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\darkestdungeon\_windows\darkest.exe |
"{DA0A9DB6-75C2-4D33-AF3E-957E96B0EF8D}" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\temp\insa09a\setup.exe |
"{DB1D0129-9430-4B7A-A461-18021DEE16BD}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{DBE9FC53-0D77-45A8-A769-EA82DA04343E}" = dir=in | name=@{microsoft.windows.photos_15.915.17170.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{DC2D9DB8-5B41-4D64-9AB6-C65C58B1EC1F}" = protocol=6 | dir=in | app=c:\program files (x86)\tunngle\tnglctrl.exe |
"{DD12F043-F476-4AA6-A873-452764EB3AB4}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{E1FA138B-3E50-44DE-AFE2-901A23E91FD9}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\magic 2014\dotp_d14.exe |
"{E20C141F-B4E3-40B8-9EE2-4E3D0395E972}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\darksouls.exe |
"{E30A1B3E-FE21-4810-B6DC-2DF67F566FAC}" = protocol=6 | dir=in | app=d:\spiele\rockstar games\grand theft auto v\gta5.exe |
"{E3458C9D-9AD5-42D0-8D36-940F11B65F9D}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2787\agent.exe |
"{E46B9AE6-F4BC-4DDC-A396-475B489DD224}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{E48798BA-3563-4A5A-8E28-5C4E48D9DA76}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{E51C2980-FA5D-4DD3-9111-65127B787228}" = dir=out | app=d:\spiele\steam\steamapps\common\the talos principle\bin\talos_unrestricted.exe |
"{E52FDDF5-AC5F-464C-A17A-6D47A3EB837E}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{E5325EEB-3F01-445B-B94D-A233B1AEBA19}" = protocol=17 | dir=in | app=d:\spiele\dragon age\daoriginslauncher.exe |
"{E5A67602-3EB0-42DE-B3AD-4031D2D252F9}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe |
"{E5AD670E-B9DC-4C91-A919-746F255CF8A1}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{E6612FF6-20D1-486B-BE99-B2EE40A8EE64}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{E737A0A8-401F-4D1D-BDDD-A74D8366577F}" = dir=in | app=c:\program files (x86)\samsung\samsung universal print driver 2\printerselector\supdapp.exe |
"{E8A7450A-558B-4DE7-8139-51D6846C2E80}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{E8E042D8-E451-44F8-82FA-536CB3D94352}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2717\agent.exe |
"{E9182879-663A-4583-AC43-287F507628A2}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\mark_of_the_ninja\bin\game.exe |
"{E93BF174-DA47-4A48-9243-942B83AF5711}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{EA07A9B6-AE7B-426E-90FB-069CCDCFB202}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3427\agent.exe |
"{EE93AA36-B737-4CE9-A350-E7329041BB81}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3715\agent.exe |
"{EF868012-A3C8-4B3F-979D-4580606B6089}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{F19E59A1-2DF8-4F3D-9B53-F93106C90DF2}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{F1DBD15E-DA8E-47A6-9329-BFD53767D7C6}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\runme2.exe |
"{F1F436EB-F01E-4B64-89F0-D9D9CC3237A5}" = protocol=6 | dir=in | app=d:\spiele\diablo iii\diablo iii.exe |
"{F23413BE-72FF-48FF-935F-B4423B56EB70}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{F32D8B5C-0A39-4213-B311-4264F61EDD29}" = protocol=17 | dir=in | app=d:\spiele\bioware\star wars-the old republic\launcher.exe |
"{F3B481F2-78BB-4809-B174-E6BF94AD446C}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3372\agent.exe |
"{F4001CEF-B676-4F8F-9CBE-5F88C6865C09}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3454\agent.exe |
"{F4512911-456B-4408-9148-46ED2516F2E2}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{F4E28960-8EA3-4167-B305-A5D09CF4CB1B}" = dir=in | app=c:\program files\hp\hp officejet 4630 series\bin\digitalwizards.exe |
"{F4ED5D7F-A38F-4D71-BF80-C1EEA149F559}" = protocol=17 | dir=in | app=c:\program files (x86)\tunngle\tnglctrl.exe |
"{F6A0F5F8-3587-467B-9152-066807ADBFC3}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\baldur's gate ii enhanced edition\baldur.exe |
"{F7B00440-33F6-4F71-976D-3587989F807C}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{F7EC3CDC-284C-442A-BB04-2AC14E401D19}" = protocol=6 | dir=in | app=c:\steam\dayz\dayz_be.exe |
"{F86FD95D-A215-450E-A149-264AC71A11BA}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10240.16393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{F8966F84-0191-401B-B9D7-BDE8ECAE8DB2}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{F8E5572C-8AC6-41CD-A742-FE679E110F20}" = dir=out | name=@{microsoft.windowsphone_10.1508.17010.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} |
"{F9AC4827-BB5D-4839-AA25-366ECF0B46D9}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{FA10D693-1CA9-4710-A397-22E92281F546}" = dir=in | app=c:\program files\hp\hp officejet 4630 series\bin\sendafax.exe |
"{FB27EE1E-1789-4ECE-B224-B3F27B5E82FE}" = protocol=6 | dir=in | app=c:\steam\dayz\dayz_be.exe |
"{FE1FC3C7-EBB7-4A4B-945E-BEF9C927A416}" = dir=out | name=@{microsoft.bingsports_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{FE67CB5F-9D76-4332-8418-D9684CBAAF40}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{FF29EDB2-18BB-4CCD-896A-52444C37CE8C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3668\agent.exe |
"{FF515000-9D08-408E-9921-26D9E623A3EB}" = protocol=17 | dir=in | app=d:\spiele\diablo iii\diablo iii.exe |
"TCP Query User{0E4CC603-C65B-4D8A-9395-77790EFC0784}C:\steam\dayz\dayz.exe" = protocol=6 | dir=in | app=c:\steam\dayz\dayz.exe |
"TCP Query User{0FFDD242-BB2F-49BF-905C-5B05E6D833B6}D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe |
"TCP Query User{153FC93A-87EC-47B0-9686-645FBEB20530}C:\steam\total war rome ii\rome2.exe" = protocol=6 | dir=in | app=c:\steam\total war rome ii\rome2.exe |
"TCP Query User{1E242760-BA70-462B-8804-2B2DD000B617}D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe" = protocol=6 | dir=in | app=d:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe |
"TCP Query User{1E2E57F1-9282-4817-BF17-86AF3119982D}C:\steam\dayz\dayz.exe" = protocol=6 | dir=in | app=c:\steam\dayz\dayz.exe |
"TCP Query User{2087E360-86C8-4F44-9479-A342A8F24C4C}D:\spiele\far cry 4\bin\farcry4.exe" = protocol=6 | dir=in | app=d:\spiele\far cry 4\bin\farcry4.exe |
"TCP Query User{26D928E9-F98F-40D1-A2AE-23E28514F798}C:\programdata\battle.net\agent\agent.beta.2753\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2753\agent.exe |
"TCP Query User{2E3D86B6-3222-4719-A1C3-6465A9825C7E}C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe |
"TCP Query User{44A642B9-0B12-4F97-84BE-93251718E92E}D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe" = protocol=6 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe |
"TCP Query User{53CA6491-A5DE-489E-9250-55D4291DBB2E}D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\rome2.exe |
"TCP Query User{5A3687F6-AA2F-41D8-BC1F-6D0028F43762}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe" = protocol=6 | dir=in | app=d:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe |
"TCP Query User{5C786FE9-C1E2-4B8A-B90E-6B8D503599A0}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe |
"TCP Query User{66FE9211-BCCF-4D46-BFE7-8A2DF6DCC740}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"TCP Query User{679176C4-B17C-48AC-9438-D72A64AADF45}D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe" = protocol=6 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe |
"TCP Query User{6CFE4AB8-AACC-4D53-BDE9-4B7B1DC85A49}D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe" = protocol=6 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe |
"TCP Query User{75A8E893-2DB3-4F96-A700-1BDD93AEC419}D:\spiele\turbine\lotro\lotroclient.exe" = protocol=6 | dir=in | app=d:\spiele\turbine\lotro\lotroclient.exe |
"TCP Query User{7B5AAE01-E32C-41F9-85E7-F96EAD837CB8}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe |
"TCP Query User{7E0D2860-2926-4758-9E61-C3D62A6EE882}D:\spiele\der herr der ringe online\lotroclient.exe" = protocol=6 | dir=in | app=d:\spiele\der herr der ringe online\lotroclient.exe |
"TCP Query User{811D149A-8102-4474-B680-7B0E1F1DB80D}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe" = protocol=6 | dir=in | app=d:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe |
"TCP Query User{89EFC158-2255-4AD5-AD13-C0E7D8C6DDF0}C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe" = protocol=6 | dir=in | app=c:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe |
"TCP Query User{8C2A0CB4-B109-46D4-AABB-C160E0B4BC2A}C:\users\diefackel\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\akamai\netsession_win.exe |
"TCP Query User{8F8759CE-CB68-4E5B-8674-F698BF887F6D}C:\steam\total war rome ii\rome2.exe" = protocol=6 | dir=in | app=c:\steam\total war rome ii\rome2.exe |
"TCP Query User{99791AC9-E644-49DE-86C4-F301DA9B706F}C:\program files\java\jre1.8.0_51\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.8.0_51\bin\javaw.exe |
"TCP Query User{A35D10AF-D92A-4ABA-ACBF-C15CE5BC4854}C:\programdata\battle.net\agent\agent.3286\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"TCP Query User{AA80F67F-5B29-4F21-AF43-610BD2557134}C:\program files\java\jre1.8.0_51\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.8.0_51\bin\java.exe |
"TCP Query User{AB7ED2C4-B673-4C55-83A0-5E725CB106E4}D:\spiele\steam\steamapps\common\total war attila\attila.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war attila\attila.exe |
"TCP Query User{C7489638-ABE6-4C6E-9EF0-20E06C24DBF4}C:\steam\dayz\dayz_experimental.exe" = protocol=6 | dir=in | app=c:\steam\dayz\dayz_experimental.exe |
"TCP Query User{D499F6AB-D5DA-4AE8-B1FE-0C5672BDAAEC}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe |
"TCP Query User{DF81AFF9-6AB8-429F-9D37-56BCA58078BB}C:\users\diefackel\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\akamai\netsession_win.exe |
"TCP Query User{E16FC49E-8D94-4B67-A2C9-9950910F8D4F}C:\steam\total war attila\attila.exe" = protocol=6 | dir=in | app=c:\steam\total war attila\attila.exe |
"TCP Query User{E264AEE9-98D1-4F0C-A8D8-EF320B419BA4}D:\spiele\rockstar games\grand theft auto v\gta5.exe" = protocol=6 | dir=in | app=d:\spiele\rockstar games\grand theft auto v\gta5.exe |
"TCP Query User{E4D7CB05-04C0-4D43-AF88-AD7F4CADA6A7}C:\program files (x86)\hearthstone\hearthstone.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"TCP Query User{E6809934-F0AB-44EA-92A3-4F06E02800A4}D:\spiele\starcraft ii\versions\base32283\sc2.exe" = protocol=6 | dir=in | app=d:\spiele\starcraft ii\versions\base32283\sc2.exe |
"TCP Query User{E9B168F0-3A0F-4CB0-8F7B-1762918B2F50}D:\spiele\alien isolation\ai.exe" = protocol=6 | dir=in | app=d:\spiele\alien isolation\ai.exe |
"TCP Query User{F0114F43-EF09-4068-9E8B-99DE01B36196}D:\spiele\steam\steam.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steam.exe |
"TCP Query User{FDAB8299-263A-4540-98EB-B9BF2FFF7833}C:\users\diefackel\desktop\candisoft load!\load.exe" = protocol=6 | dir=in | app=c:\users\diefackel\desktop\candisoft load!\load.exe |
"UDP Query User{01F3AAB2-F100-486D-9ECE-B0CE0B6D9092}D:\spiele\der herr der ringe online\lotroclient.exe" = protocol=17 | dir=in | app=d:\spiele\der herr der ringe online\lotroclient.exe |
"UDP Query User{09D3B12E-1D64-4720-9738-808B2BB03418}D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe" = protocol=17 | dir=in | app=d:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe |
"UDP Query User{0D90916A-B2DB-4CD4-9340-B147B03340B9}D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe" = protocol=17 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe |
"UDP Query User{10132D8F-7597-4747-9782-0BFFDD89409C}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe |
"UDP Query User{10CE2B65-E5F4-42BC-8163-71E573619FB5}C:\programdata\battle.net\agent\agent.3286\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"UDP Query User{14B7CD50-9E78-45C7-B322-B12F8E02D065}C:\steam\total war rome ii\rome2.exe" = protocol=17 | dir=in | app=c:\steam\total war rome ii\rome2.exe |
"UDP Query User{2B0BD43A-F410-4B4D-B059-B6240AFC9884}C:\users\diefackel\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\diefackel\appdata\local\akamai\netsession_win.exe |
"UDP Query User{34AB8C0E-5E53-439E-945C-0A955A44B729}D:\spiele\steam\steam.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steam.exe |
"UDP Query User{34BCA22E-99A9-4037-899C-174952D355DE}D:\spiele\turbine\lotro\lotroclient.exe" = protocol=17 | dir=in | app=d:\spiele\turbine\lotro\lotroclient.exe |
"UDP Query User{3BD0FB36-6A35-474D-B8D4-54428A7073F7}C:\steam\dayz\dayz.exe" = protocol=17 | dir=in | app=c:\steam\dayz\dayz.exe |
"UDP Query User{3F166EB9-307C-4A2B-9432-B9F44FD2DAB3}D:\spiele\steam\steamapps\common\total war attila\attila.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war attila\attila.exe |
"UDP Query User{3FF88DA6-90AD-4569-A544-9BD32D95B4DE}C:\users\diefackel\desktop\candisoft load!\load.exe" = protocol=17 | dir=in | app=c:\users\diefackel\desktop\candisoft load!\load.exe |
"UDP Query User{46682FD8-186D-49C6-A2F6-8726E2F384C5}D:\spiele\far cry 4\bin\farcry4.exe" = protocol=17 | dir=in | app=d:\spiele\far cry 4\bin\farcry4.exe |
"UDP Query User{52E2A39D-CDF8-4BD2-A960-F3FB7AC8F64D}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe |
"UDP Query User{6BD38B9B-C5B3-444B-9445-275EE4EF4F01}D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe |
"UDP Query User{70BA62A2-5F2E-4255-A782-5AC9112EBBCF}D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe" = protocol=17 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe |
"UDP Query User{71783481-456F-4E47-B816-DE0237716065}D:\spiele\rockstar games\grand theft auto v\gta5.exe" = protocol=17 | dir=in | app=d:\spiele\rockstar games\grand theft auto v\gta5.exe |
"UDP Query User{721024D8-CA0B-4E5A-8BD3-1DD886EF554B}C:\steam\dayz\dayz_experimental.exe" = protocol=17 | dir=in | app=c:\steam\dayz\dayz_experimental.exe |
"UDP Query User{768ADEDF-7348-4888-A306-9D2D9BCFAB3C}C:\program files (x86)\hearthstone\hearthstone.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"UDP Query User{8B6CB9A1-CCD9-4ED2-8550-672343D27E06}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe" = protocol=17 | dir=in | app=d:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe |
"UDP Query User{91E2485E-E838-477D-A73E-4A2676154231}C:\users\diefackel\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\diefackel\appdata\local\akamai\netsession_win.exe |
"UDP Query User{94A160E1-66C3-4B87-9603-39556EFD9D49}C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe" = protocol=17 | dir=in | app=c:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe |
"UDP Query User{994ABB63-697E-4845-8262-7188C1B3840C}C:\steam\total war attila\attila.exe" = protocol=17 | dir=in | app=c:\steam\total war attila\attila.exe |
"UDP Query User{9ECD126D-32EB-4A1F-9489-25F4A7842E71}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"UDP Query User{9F485F74-1D47-45B3-8AFD-61787933B854}D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\rome2.exe |
"UDP Query User{A1C93A3A-B967-4C58-A16D-F1E7DE6A8FA3}D:\spiele\alien isolation\ai.exe" = protocol=17 | dir=in | app=d:\spiele\alien isolation\ai.exe |
"UDP Query User{A9C1AB2D-4EB1-4FFF-BF4F-6A34049E98AA}C:\steam\total war rome ii\rome2.exe" = protocol=17 | dir=in | app=c:\steam\total war rome ii\rome2.exe |
"UDP Query User{AC4641F8-12FC-420F-823F-EFFC3F28FDBE}C:\program files\java\jre1.8.0_51\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.8.0_51\bin\java.exe |
"UDP Query User{B0847E20-BD2F-4CE3-81BD-B269F8AE2DCE}C:\program files\java\jre1.8.0_51\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.8.0_51\bin\javaw.exe |
"UDP Query User{B520E170-4F76-4BC5-A52D-FB024EEF4451}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe |
"UDP Query User{C27FDE17-733B-4E36-8FB2-179CA232B7F5}D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe" = protocol=17 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe |
"UDP Query User{C7336522-0718-4032-B21C-44DAB4327448}C:\steam\dayz\dayz.exe" = protocol=17 | dir=in | app=c:\steam\dayz\dayz.exe |
"UDP Query User{D156C6E4-CF56-47E4-8877-C9FA020097D1}C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe" = protocol=17 | dir=in | app=c:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe |
"UDP Query User{EF209801-AE72-41D9-9F77-608AD8263367}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe" = protocol=17 | dir=in | app=d:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe |
"UDP Query User{EF620606-1FAD-4D0F-A60A-B3D46FA847CD}D:\spiele\starcraft ii\versions\base32283\sc2.exe" = protocol=17 | dir=in | app=d:\spiele\starcraft ii\versions\base32283\sc2.exe |
"UDP Query User{F5D0F458-A64A-4AAC-88D7-6DB7D0B66659}C:\programdata\battle.net\agent\agent.beta.2753\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2753\agent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1" = Core Temp 1.0 RC6
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86418060F0}" = Java 8 Update 60 (64-bit)
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{670B1B49-9FD3-4827-9B41-471EFF580AA8}" = Evolve
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{9086D601-50B7-491D-A143-28193DADE36B}" = HP Officejet 6700 - Grundlegende Software für das Gerät
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{986E003C-E56D-5A47-110E-D3C81F0E8535}" = Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.11761.0_neutral_~_8wekyb3d8bbwe (x64)
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 352.86
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 353.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 352.86
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.4.3.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 352.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.15.0428
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 2.4.3.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.3.34.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 2.4.3.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.27
"{C513739C-5F16-37B5-9ACF-99925FF1C1F3}" = Microsoft .NET Framework 4.5.1 (DEU)
"{CCF92FFE-5341-4263-9048-472D9E3C5703}" = HP Officejet 4630 series - Grundlegende Software für das Gerät
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}" = Microsoft Xbox One Controller for Windows
"6af12c54-643b-4752-87d0-8335503010de_is1" = Nexus Mod Manager
"AutoHotkey" = AutoHotkey 1.1.15.03
"CCleaner" = CCleaner
"GIMP-2_is1" = GIMP 2.8.14
"HardlinkShellExt" = Link Shell Extension
"jdownloader2" = JDownloader 2
"Recuva" = Recuva
"TAP-Windows" = TAP-Windows 9.9.2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"VLC media player" = VLC media player
"WinRAR archiver" = WinRAR 4.20 (64-Bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{07300F01-89CA-4CF8-92BD-2A605EB83C95}" = EasySaver B9.1214.1
"{0F659036-14C7-4622-9505-35A0DC93526A}" = System Requirements Lab
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83218060F0}" = Java 8 Update 60
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = Gigabyte Raid Configurer
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Star Wars: The Old Republic
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0427.1
"{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}" = Microsoft ASP.NET MVC 4 Runtime
"{456A5815-604D-4D72-94DF-346D2B978A59}_is1" = GOG.com Downloader version 3.6.0
"{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.0516.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}" = Google Earth Plug-in
"{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}" = ROCCAT Isku Keyboard Driver
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{517E7DBD-7A5B-4B7F-B137-82AB4DAD68FC}" = LogMeIn Hamachi
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{6A0549A9-1B96-498C-ACBC-3943001FEB19}" = Skype™ 7.8
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7133137D-DF48-4522-AD88-13C82B7D0A63}" = ROCCAT Kone XTD Mouse Driver
"{7258BA11-600C-430E-A759-27E2C691A335}_is1" = GOG Galaxy
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD}" = Adobe AIR
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}" = Sitecom Europe BV Wireless LAN
"{912D30CF-F39E-4B31-AD9A-123C6B794EE2}" = HP Update
"{987B04C4-B5AC-4AD6-A7E9-8D681085B850}" = AMD USB Filter Driver
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}" = Browser Configuration Utility
"{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}" = inSSIDer 3
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-0804-1033-1959-001824147215}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1031-7B44-AC0F074E4100}" = Adobe Acrobat Reader DC - Deutsch
"{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}" = OpenOffice 4.1.1
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}" = @BIOS
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{C75FAD21-EC08-42F3-92D6-C9C0AB355345}" = AutoGreen B10.0517.1
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{CA6BCA2F-EDEB-408F-850B-31404BE16A61}" = I.R.I.S. OCR
"{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}" = Microsoft XNA Framework Redistributable 4.0 Refresh
"{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"{DC4C36DC-4E5B-4262-B0C7-157DF534B969}" = Dragon Age™: Inquisition
"{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}" = Grand Theft Auto V
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.275
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"1207664643_is1" = The Witcher 3 - Wild Hunt
"1424773427_is1" = Hotline Miami 2 - Wrong Number
"Adobe AIR" = Adobe AIR
"Adobe Flash Player NPAPI" = Adobe Flash Player 18 NPAPI
"Alternative Look for Triss_is1" = The Witcher 3: Wild Hunt - Alternative Look for Triss
"Alternative Look for Yennefer_is1" = The Witcher 3: Wild Hunt - Alternative Look for Yennefer
"avast" = Avast Free Antivirus
"Ballad Heroes - Neutral Gwent Card Set_is1" = The Witcher 3: Wild Hunt - Ballad Heroes - Neutral Gwent Card Set
"Battle.net" = Battle.net
"Beard and Hairstyle Set_is1" = The Witcher 3: Wild Hunt - Beard and Hairstyle Set
"BitRaider Streaming Client" = BitRaider Streaming Client
"Capsule" = Capsule
"Cheat Engine 6.4_is1" = Cheat Engine 6.4
"CrystalDiskInfo_is1" = CrystalDiskInfo 6.5.2
"Elite Crossbow Set_is1" = The Witcher 3: Wild Hunt - Elite Crossbow Set
"FormatFactory" = FormatFactory 3.1.1
"Fraps" = Fraps
"Free Audio Converter_is1" = Free Audio Converter version 5.0.57.301
"GOGPACKPAPERSPLEASE_is1" = Papers, Please
"Google Chrome" = Google Chrome
"Hearthstone" = Hearthstone
"InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.0516.1
"InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}" = AutoGreen B10.0517.1
"InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"LogMeIn Hamachi" = LogMeIn Hamachi
"LOOT" = LOOT
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware Version 2.1.8.1057
"Mozilla Firefox 40.0.3 (x86 de)" = Mozilla Firefox 40.0.3 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"New Quest - Contract Missing Miners_is1" = The Witcher 3: Wild Hunt - New Quest - Contract Missing Miners
"New Quest - Contract: Skellige's Most Wanted_is1" = The Witcher 3: Wild Hunt - New Quest - Contract - Skellige's Most Wanted
"New Quest - Fool's Gold_is1" = The Witcher 3: Wild Hunt - New Quest - Fool's Gold
"New Quest - Scavenger Hunt: Wolf School Gear_is1" = The Witcher 3: Wild Hunt - New Quest - Scavenger Hunt - Wolf School Gear
"New Quest - Where the Cat and Wolf Play..._is1" = The Witcher 3: Wild Hunt - New Quest - Where the Cat and Wolf Play...
"Nilfgaardian Armor Set_is1" = The Witcher 3: Wild Hunt - Nilfgaardian Armor Set
"Notepad++" = Notepad++
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenAL" = OpenAL
"Origin" = Origin
"ParkControl" = ParkControl
"Reassembly_is1" = Reassembly version 10.12.14
"Rockstar Games Social Club" = Rockstar Games Social Club
"Samsung Universal Print Driver 2" = Samsung Universal Print Driver 2
"Secunia PSI" = Secunia PSI (3.0.0.7011)
"Skellige Armor Set_is1" = The Witcher 3: Wild Hunt - Skellige Armor Set
"StarCraft II" = StarCraft II
"StarCraft II - Legacy of the Void Beta" = StarCraft II - Legacy of the Void Beta
"Steam App 108600" = Project Zomboid
"Steam App 200260" = Batman: Arkham City GOTY
"Steam App 212680" = FTL: Faster Than Light
"Steam App 221100" = DayZ
"Steam App 230230" = Divinity: Original Sin
"Steam App 235460" = METAL GEAR RISING: REVENGEANCE
"Steam App 236430" = DARK SOULS™ II
"Steam App 237990" = The Banner Saga
"Steam App 239350" = Spelunky
"Steam App 242920" = Banished
"Steam App 257350" = Baldur's Gate II: Enhanced Edition
"Steam App 262060" = Darkest Dungeon
"Steam App 273350" = Evolve
"Steam App 282070" = This War of Mine
"Steam App 318230" = Convoy
"Steam App 32470" = Star Wars: Empire at War Gold
"Steam App 325610" = Total War: ATTILA
"Steam App 335180" = StarMade Demo
"Steam App 34330" = Total War: SHOGUN 2
"Steam App 550" = Left 4 Dead 2
"Steam App 65980" = Sid Meier's Civilization: Beyond Earth
"Steam App 72850" = The Elder Scrolls V: Skyrim
"Steam App 8930" = Sid Meier's Civilization V
"Temerian Armor Set_is1" = The Witcher 3: Wild Hunt - Temerian Armor Set
"Tunngle beta_is1" = Tunngle beta
"uTorrent" = µTorrent
"VirtualCloneDrive" = VirtualCloneDrive
"Wasteland 2 Ranger Edition MULTi7 Update 1 1.0" = Wasteland 2 Ranger Edition MULTi7 Update 1 1.0
"Winamp" = Winamp
"Yahoo! SearchSet" = Yahoo Search Set
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 20.09.2015 07:14:58 | Computer Name = Sol-PC | Source = ESENT | ID = 488
Description = SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log"
zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen.
Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error - 20.09.2015 07:14:58 | Computer Name = Sol-PC | Source = ESENT | ID = 413
Description = SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt
werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das
Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder
hat zu wenig freien Speicherplatz. Fehler -1032.
Error - 20.09.2015 07:15:08 | Computer Name = Sol-PC | Source = ESENT | ID = 488
Description = SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log"
zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen.
Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error - 20.09.2015 07:15:08 | Computer Name = Sol-PC | Source = ESENT | ID = 413
Description = SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt
werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das
Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder
hat zu wenig freien Speicherplatz. Fehler -1032.
Error - 20.09.2015 07:15:18 | Computer Name = Sol-PC | Source = ESENT | ID = 488
Description = SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log"
zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen.
Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error - 20.09.2015 07:15:18 | Computer Name = Sol-PC | Source = ESENT | ID = 413
Description = SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt
werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das
Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder
hat zu wenig freien Speicherplatz. Fehler -1032.
Error - 20.09.2015 07:15:29 | Computer Name = Sol-PC | Source = ESENT | ID = 488
Description = SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log"
zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen.
Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error - 20.09.2015 07:15:29 | Computer Name = Sol-PC | Source = ESENT | ID = 413
Description = SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt
werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das
Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder
hat zu wenig freien Speicherplatz. Fehler -1032.
Error - 20.09.2015 07:15:39 | Computer Name = Sol-PC | Source = ESENT | ID = 488
Description = SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log"
zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen.
Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error - 20.09.2015 07:15:39 | Computer Name = Sol-PC | Source = ESENT | ID = 413
Description = SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt
werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das
Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder
hat zu wenig freien Speicherplatz. Fehler -1032.
[ System Events ]
Error - 18.09.2015 22:20:20 | Computer Name = Sol-PC | Source = DCOM | ID = 10010
Description =
Error - 18.09.2015 22:20:49 | Computer Name = Sol-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 19.09.2015 07:15:37 | Computer Name = Sol-PC | Source = DCOM | ID = 10016
Description =
Error - 19.09.2015 14:26:00 | Computer Name = Sol-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x80070490 fehlgeschlagen: HP - Enterprise WSD Multi-Function Printer, Other
hardware - Null Fax - HP Officejet 4630 series
Error - 19.09.2015 18:33:54 | Computer Name = Sol-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 19.09.2015 18:33:54 | Computer Name = Sol-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Kontaktdaten_Session2" wurde unerwartet beendet. Dies
ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden
durchgeführt: Neustart des Diensts.
Error - 19.09.2015 18:33:54 | Computer Name = Sol-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Benutzerdatenspeicher _Session2" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 19.09.2015 18:33:54 | Computer Name = Sol-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Benutzerdatenzugriff_Session2" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 19.09.2015 18:33:57 | Computer Name = Sol-PC | Source = DCOM | ID = 10010
Description =
Error - 19.09.2015 18:34:21 | Computer Name = Sol-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
< End of report >
hxxp://imgur.com/CwTmnJY |
|
20.09.2015, 14:42
| #2 |
| | Malware Befall? OTL
__________________Code:
ATTFilter OTL Extras logfile created on: 20.09.2015 14:12:03 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\dieFackel\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10240.16384)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
8,00 Gb Total Physical Memory | 4,10 Gb Available Physical Memory | 51,24% Memory free
16,00 Gb Paging File | 11,46 Gb Available in Paging File | 71,62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119,14 Gb Total Space | 24,30 Gb Free Space | 20,40% Space Free | Partition Type: NTFS
Drive D: | 931,41 Gb Total Space | 117,87 Gb Free Space | 12,65% Space Free | Partition Type: NTFS
Drive E: | 2,88 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Computer Name: SOL-PC | User Name: dieFackel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = B8 53 BB 86 69 D0 D0 01 [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A7AC2B9-D334-4A5F-BAD8-BBBA43FAEF85}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{3FEAF7FE-3E22-4EC7-A31F-206284E9E1CA}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{44B570B6-8F9C-49AC-8F60-141064742DDE}" = lport=47995 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{45D8D20D-013A-4430-8691-DF5DB7BB3C5B}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{592D499E-5BC0-476C-A7C2-512F75587FD3}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{6BDCEACE-97D2-4073-9739-91AA434DA97A}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{A093B23A-34C2-4679-B293-D93929427E28}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{A7CDDBE0-F603-4ED4-BD35-F587C8055EBB}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{B63F0017-2F7E-41CE-B2BB-357A5923027F}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{BB5826E7-2A22-4527-A02E-B9188881C9CC}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |
"{C346D2EC-0F46-4B35-BF88-45A910E8F65D}" = lport=5357 | protocol=6 | dir=in | name=ws-eventing tcp port 5357 |
"{F2545E51-0152-4CD8-9DDD-4070AF02854B}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{F7500448-256C-4CF4-921E-F82C761ED2EB}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{005CA57C-0C3A-47D0-8BF8-250011EEADDB}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{01A59A15-B150-4261-A832-C13E2333934A}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{02077CB4-DEE6-45F8-9434-2E73F92525A4}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{02753EB8-721E-4F3C-A12C-34C33645F4AA}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\devicesetup.exe |
"{042A055D-138C-4D24-943A-D29B3400242B}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\launcher\launcher.exe |
"{0512736B-D209-4A68-9032-8F1E5EBC5663}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{05890CEC-27A6-4394-90E0-BB59AF447910}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{05B42524-C3C8-41AE-898B-8F2B08533BBD}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\launcher\launcher.exe |
"{05C433B1-045D-4649-9FE8-AA33A16A6681}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{05E2912F-1FB3-4D2D-B26F-731F9C4972A1}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\mark_of_the_ninja\bin\game.exe |
"{0849E683-30DF-4FBA-ACF9-191670245FC2}" = dir=out | name=@{microsoft.people_1.10241.0.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{0898D30C-4DDF-4852-9CEF-CD79E0FB0347}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\projectzomboid\projectzomboid64.exe |
"{08FE3F0B-E290-4A32-8D1A-5E0431B92CD9}" = protocol=6 | dir=in | app=d:\spiele\dragon age\bin_ship\daupdatersvc.service.exe |
"{0A2AEE49-FE23-49FB-9805-852F5AD4D90B}" = dir=in | name=xbox one smartglass |
"{0B4EBB85-0C1D-4E89-8CE1-83B826995FED}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{0BAE9171-52B3-4EC5-9A19-A016C1E03D02}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe |
"{0BB03995-1E3A-4C68-839F-2683138514C7}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\darkestdungeon\_windows\darkest.exe |
"{0C0652B7-FCB4-46F4-B493-383EA1E10206}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\evolvebeta\bin64_steamretail\staticlauncher64.exe |
"{0C591109-FBC6-4F73-BBBB-61092B9BB943}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\runme.exe |
"{0D67BF69-771F-4CC6-B60E-FE209BC5D2AA}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{0E12E7A7-B93C-4E19-B9B7-6095AF6767F1}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{0E181344-9146-427F-B8C5-F7CEC8AE589F}" = protocol=17 | dir=in | app=d:\ubisoft\future soldier dx9.exe |
"{0EF27D38-E34C-49C9-8FFF-A8DEE122C744}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\darksouls.exe |
"{1007BD7E-888D-41BC-9DF6-6016D0A2C516}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\convoy\convoy.exe |
"{10F2AA7E-B647-4859-A997-8DCA038F947F}" = protocol=17 | dir=in | app=d:\spiele\rockstar games\grand theft auto v\gta5.exe |
"{1162E8DD-48DD-4181-812E-659536393FF0}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization beyond earth\civilizationbe_dx11.exe |
"{11C01E43-C6A3-487F-98FC-F8720A67124B}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{121C2BBA-ADCF-4A00-A003-8E4DC7C19F42}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{12F913B6-00F8-4DEB-B3E4-8D97D2850BED}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3507\agent.exe |
"{131CBD8F-19F4-4077-AA23-2E3A9B932972}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\runme.exe |
"{15789D71-645E-40BA-A62F-658AE5200343}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2737\agent.exe |
"{161B3A9B-F20F-432A-A4F8-529C74EDA64C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3334\agent.exe |
"{17802179-CA10-493D-89B9-93EDC204577E}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{18B2ED39-6F83-4A48-8D68-DC86F3330C75}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{18E3DFF2-8E7F-4F8D-B17D-9CEFEF9410D2}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\hotline_miami\hotlinemiami.exe |
"{1AC1DBEE-839F-431D-8D8E-029BC8B31A0B}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\resident evil 4\bin32\bio4.exe |
"{1BFB075B-45D6-4E2A-85A9-291CD184C82D}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{1DC62405-5788-4878-AEEF-73C0E95C6951}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3427\agent.exe |
"{1FDDD19F-D61F-4E96-9476-9EE53E29A059}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3332\agent.exe |
"{200F8714-305F-4403-A7E8-177A79F7581D}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\tbs\win32\the banner saga.exe |
"{20947C9C-C050-4E24-ACE3-A9192112A63A}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\hitman absolution\hma.exe |
"{218D2D66-4D94-49D5-AF31-43C404A7EDB5}" = dir=in | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{227B3C14-5356-4F52-9290-1A29338AAD29}" = dir=out | name=xbox |
"{228C2D57-EE48-40B9-9993-179DAFE23EB3}" = dir=in | name=xbox |
"{229F2905-9307-4961-B2F4-EEB6BE81AAE4}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\banished\application-steam-x64.exe |
"{22EF0059-D71E-46A6-A646-B5E9903D7EB7}" = protocol=17 | dir=in | app=d:\spiele\dragon age\bin_ship\daupdatersvc.service.exe |
"{23E7F851-E1FF-4B6E-AD30-947EA07554B2}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{24AD6035-4531-4D19-88F4-22279AFC5DAA}" = protocol=17 | dir=in | app=d:\spiele\steam\bin\steamwebhelper.exe |
"{260998F8-92AC-4377-B056-ABB93BE243F7}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\darksouls.exe |
"{271C88E9-96B2-4725-ADE1-49DBFA58099D}" = protocol=17 | dir=in | app=c:\steam\total war rome ii\launcher\launcher.exe |
"{27B6BBB1-7DD7-44E0-9F5F-821FCBFA2D98}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"{27CF53A7-4C2D-447E-B96F-CA6BFAACB147}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\launcher\launcher.exe |
"{27D80C77-5768-47B2-BC71-ECEF146C8A2D}" = protocol=6 | dir=in | app=d:\spiele\dragon age\bin_ship\daorigins.exe |
"{28B9B0CA-69CF-49C4-886D-1F7E6D0E63E0}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{2B1DAD53-06C0-466F-9E22-55FA34F4F7C1}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{2E04DF7B-58DC-40FD-9861-C65DEEF3472B}" = protocol=6 | dir=in | app=d:\spiele\steam\bin\steamwebhelper.exe |
"{2E372AA7-F0B1-41BF-9BCF-3AFE1A50E663}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization v\launcher.exe |
"{2E42D9FC-277E-4017-8613-13BCC3649FF1}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.6208.42001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{30BD7EC9-61EF-43AD-BFCA-932704125836}" = protocol=6 | dir=in | app=d:\spiele\dragon age\daoriginslauncher.exe |
"{3130F182-68CD-449D-A804-A997F2261D73}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{3241B533-BF6C-464C-8635-3BBC2ABA07D4}" = dir=out | name=@{microsoft.windowsdvdplayer_3.6.11761.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsdvdplayer/resources/ids_dvdplayer_app_name} |
"{3303FDE8-CEFC-452C-B250-A1DB46463A31}" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{33EC2108-E97A-4AA1-BD77-5008A89FC222}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{347A10AF-F98B-4779-B70B-3F025D418E11}" = protocol=17 | dir=in | app=d:\dateien\utorrent\utorrent.exe |
"{35241231-34FA-42D4-921F-BAC90A61C91A}" = protocol=17 | dir=in | app=d:\spiele\dragon age\bin_ship\daorigins.exe |
"{3555AFC8-175C-4A2E-B148-CC93257FCED2}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\hitman absolution\hma.exe |
"{3675F0AF-25B1-45AE-BDED-BEECEADB7462}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\launcher\launcher.exe |
"{37DBD5E1-76BC-46E5-8F23-179DADB6C408}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\runme2.exe |
"{3827FB5E-BF15-4667-9A6F-FF5A3112D939}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\faxapplications.exe |
"{396624B1-C30D-48C7-A088-13E424FC2A24}" = dir=in | app=c:\program files\hp\hp officejet 4630 series\bin\faxapplications.exe |
"{3A2FD336-EDBD-40E1-B06A-24C24C50670E}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\hotline_miami\hotlinemiami.exe |
"{3A7BC421-EDBF-409F-AE22-B79A7C6D1E11}" = dir=in | app=c:\program files\hp\hp officejet 4630 series\bin\hpnetworkcommunicatorcom.exe |
"{3AE9DECA-3481-43DA-B89E-BF20F112D819}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{3BC6CFE2-7EA2-4011-84BA-7FEED091D83A}" = dir=in | app=d:\dateien\echobit\evolve\evolveclient.exe |
"{3C37B9E7-A1B0-41FF-BB5C-41BB7071420B}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{3D77A983-461C-4A06-BDE7-A19AD55B4DD8}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\magic 2014\dotp_d14.exe |
"{3D9D9D7A-E99F-481F-96B6-69EA8ECDB91F}" = dir=out | name=@{microsoft.windows.photos_15.915.17170.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{3E09C03A-4152-4866-8740-9436C209C174}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\banished\application-steam-x64.exe |
"{3F95326E-BB54-49B1-85DD-73659FAF8C62}" = dir=in | name=@{microsoft.bingnews_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{4110D224-9A94-479B-BDD6-927B5E0CD22F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3634\agent.exe |
"{42E8ED7D-6813-475E-9526-E86E74431098}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe |
"{4373D304-EC2F-4DC7-A098-1034ED7EC19D}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\batman arkham city goty\binaries\win32\batmanac.exe |
"{44789199-E0E1-4D74-9AA9-927C61BEBF41}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{454808A4-0F57-4997-A163-A11BEB797424}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2816\agent.exe |
"{454B6152-3A20-4BB5-852C-649F4293A1FA}" = protocol=17 | dir=in | app=c:\users\diefackel\appdata\local\temp\insa09a\setup.exe |
"{466FED5B-6575-4E15-87A2-545F7300F3DA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3454\agent.exe |
"{4701180F-828D-4A7D-BEE2-0525E357EEDF}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\launcher\launcher.exe |
"{47331124-787A-4A26-A875-7E33D2E60C2E}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\darkestdungeon\_windows\darkest.exe |
"{473F3C8B-E48E-49EC-B8ED-971DDEED3907}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3323\agent.exe |
"{47531F08-A748-403F-94CD-31A8E33F9E2F}" = dir=out | name=twitter |
"{47AA9760-2E5B-46F0-8A4D-EEA417002F31}" = dir=in | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{47C063DB-E35A-4680-ACF9-074E46A11E7F}" = dir=out | app=d:\spiele\steam\steamapps\common\the talos principle\bin\taloslauncher.exe |
"{487C9432-BD35-49B9-99F5-3BAFE1A664EE}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{4897919E-4C88-40A9-8114-D18BF2C3107E}" = dir=out | name=@{microsoft.3dbuilder_10.9.6.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} |
"{4963AD04-0B6C-4175-BDC5-D89A44D8BBE8}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{49FBEF79-5265-4DBB-80C5-04929B850A06}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\starmade\starmade-starter.exe |
"{4A5DB823-6EE7-455F-A4B4-66B5A92E1DAC}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2717\agent.exe |
"{4AE9B7C5-F214-42B4-BD04-4D111B6C6902}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3346\agent.exe |
"{4C509833-4E81-4B7D-9786-A86864E79778}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{4CEB2609-F630-445B-ADE0-E7A4F484BD37}" = protocol=6 | dir=in | app=d:\spiele\bioware\star wars-the old republic\launcher.exe |
"{4D31A50F-DD2C-44A1-8106-12450F1BD174}" = protocol=6 | dir=in | app=c:\steam\total war rome ii\launcher\launcher.exe |
"{4D7695AC-2CFD-4339-BA01-09D6A50F6916}" = dir=out | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{4DCD9165-0CDD-43E8-89E4-C09A2AFEC4F6}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{4E00D23C-FC6C-460D-B09D-C74E9829E1E6}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\evolvegame\bin64_steamretail\evolve.exe |
"{4E466B35-E368-40A2-AC9C-0A464848E71E}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{4E55DE75-0541-4FFF-A27A-B8E7A0708C41}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\the banner saga factions\win32\the banner saga factions.exe |
"{4FEC670E-A4A5-4FCA-AD3C-C8CEBC9F80E4}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\metal gear rising revengeance\metal gear rising revengeance.exe |
"{50A0F398-48A6-498F-9B67-4D5C9A071F1B}" = protocol=17 | dir=in | app=c:\steam\dayz\dayz_be.exe |
"{50A4018A-E9AB-4375-85D1-DB1EA03F464C}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3507\agent.exe |
"{50CA82F3-6FD3-4198-BC73-5E7FB0BEC229}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\projectzomboid\projectzomboid32.exe |
"{5185CE5F-6F3A-4005-9FFA-99A07BFC30AF}" = dir=out | app=d:\spiele\the escapists\theescapists.exe |
"{522D8F47-7A69-4C86-8D0A-3B96A5BA7490}" = protocol=17 | dir=in | app=d:\spiele\steam\steam.exe |
"{52E231DB-F5D6-4028-BEC4-8E8ED67F12AD}" = protocol=17 | dir=in | app=d:\spiele\starcraft ii\starcraft ii.exe |
"{546EE88C-D4CD-4AD5-A785-76611448A8B8}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{5712810A-D8E8-47F1-867C-8A567865F1FA}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{5933A99D-DE56-4D42-A127-7361BCDDBA2B}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{59C36A26-852E-4745-BEF7-698FF9D6C85E}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\projectzomboid\projectzomboid64.exe |
"{5A5B2FD4-4695-44C9-8C9B-9D28D6012468}" = dir=in | name=@{microsoft.bingfinance_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{5A635D4F-1529-4FD1-87C0-0B9C1FAAA69A}" = protocol=6 | dir=in | app=d:\spiele\steam\steam.exe |
"{5B828859-7EB5-48C0-B521-DAF312FC3B92}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{5BEEE90D-0BBE-4967-8B44-654F73F5E717}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\the banner saga factions\win32\the banner saga factions.exe |
"{5C97D2AD-62A5-4F8E-A76D-8CBD095C76AB}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{5CE8D20C-85C6-4DE3-A472-B7817AC6AAEA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3323\agent.exe |
"{5E7713F5-7BBD-4363-9B96-0C255F7D2E3D}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\hotline_miami\hotlinemiami.exe |
"{5E9EC2DE-8C92-4258-AC76-9FA200A6CFCA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3023\agent.exe |
"{5FD0AFAB-647B-413F-8806-D83B6639A7D5}" = protocol=6 | dir=in | app=d:\spiele\starcraft ii\starcraft ii.exe |
"{6083F112-8C04-4F34-8B81-E280FF1B4F08}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3023\agent.exe |
"{612F91F9-9A30-412D-B951-56F8B50574E5}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization beyond earth\civilizationbe_mantle.exe |
"{61375D69-A18E-4803-8779-D8BF39D6268A}" = dir=in | app=d:\dateien\echobit\evolve\evosvc.exe |
"{62EE0961-BA3D-4D95-9334-21F2BADA5749}" = protocol=6 | dir=in | app=d:\spiele\riot games\league of legends\lol.launcher.exe |
"{63E93650-FC6E-470D-B081-ED7D3885B788}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3478\agent.exe |
"{65BCD715-1B96-40FB-93BC-46BB53473CA1}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe |
"{65CA368D-AA79-49E2-99A8-3734AD9636F2}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{65ED1D28-06B3-4520-B7A1-C1B0B3C19453}" = dir=out | app=d:\spiele\dying light - season pass edition\dying light - season pass edition\dyinglightgame.exe |
"{660FBB0B-FF00-4456-9BEA-7DFBF4895F7E}" = dir=out | name=@{microsoft.lockapp_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{6680ACBA-36E3-4AAD-B9B0-01E7654230F0}" = protocol=6 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe |
"{66A06236-BF4D-4C8A-91D8-1036C1CED3C5}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\rogue legacy\roguelegacy.exe |
"{66BD3D56-1118-4FC3-9E54-80150813DA09}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3715\agent.exe |
"{67A514D2-A5D3-4279-AB1E-636784D1EE38}" = dir=in | name=@{microsoft.bingsports_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{6824D999-E278-4D96-A8EB-3C4D6761872C}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\this war of mine\this war of mine.exe |
"{6865C0BD-E5FB-4EE7-A14C-6BC7ADC5AF5E}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{688477AC-2BC2-432D-BB5F-610B8EE78714}" = protocol=17 | dir=in | app=c:\program files (x86)\tunngle\tunngle.exe |
"{69741C2E-A68A-4CFB-9806-5ACAF93A5507}" = dir=out | name=@{microsoft.windowsstore_2015.9.9.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{6A1E11C6-2FD4-4442-B793-54CAD8E63F82}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\metal gear rising revengeance\metal gear rising revengeance.exe |
"{6ACFD153-8905-467B-970D-055343BD393E}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{6BF50E30-7EB9-4353-BC55-1167AFD223F4}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3688\agent.exe |
"{6C2CB2BE-9CBB-42C8-B541-075309D8621E}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\evolvegame\bin64_steamretail\evolve.exe |
"{6DB10C88-5451-485A-B1DB-C7936DD88213}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\projectzomboid\projectzomboid32.exe |
"{6F6FECE9-E7BE-46A8-B2EB-88BBB95D2A24}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{6FCEA93C-55AE-4EB2-98EB-B68ED3541B24}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls ii\game\darksoulsii.exe |
"{6FD1367F-BE5F-445D-9450-6288750D57E0}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\hpnetworkcommunicator.exe |
"{71EDB1FE-7946-4123-80C9-0B72647F813D}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\dragon age inquisition\dragonageinquisition.exe |
"{725EA809-0C27-44BB-A6D1-42DFFB83A5B6}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization beyond earth\civilizationbe_dx11.exe |
"{72C456E5-DAA4-431D-9980-04CFD84D8BE1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{732BA3E2-1182-4397-8D28-A9A2C88849AA}" = dir=out | app=d:\spiele\gog games\hotline miami 2 - wrong number\hotlinemiami2.exe |
"{74B20526-C704-4197-B388-4CC6E61A0C1C}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{75FC0C17-CEE6-4683-A000-68DC461CDDCF}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\left 4 dead 2\left4dead2.exe |
"{761C66B0-8B01-4D1B-AFB3-2054C4A21ECB}" = dir=in | name=@{microsoft.bingweather_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{77F7FC88-7D10-47A1-A934-A458A2FD7952}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\evolvebeta\bin64_steamretail\staticlauncher64.exe |
"{78C4D7BF-73DB-4DAF-8326-B43326C6E00B}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{78C7F32C-24C4-45B6-8186-FD812927A836}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{791AE8AB-8F4F-4403-997C-7D6431C71758}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{793C15B0-6D90-460B-AC34-F7920EA0457B}" = dir=out | name=windows_ie_ac_001 |
"{7946B31A-3D86-4532-8C59-B2608D2F5089}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{7ABD6415-AAE2-4A3F-AD8C-0056BCBE5447}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\dragon age inquisition\dragonageinquisition.exe |
"{7BB0851D-6A74-42EB-A886-3DD13A42722B}" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{7BE77165-226E-4090-ACA4-A8C96846A894}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization v\launcher.exe |
"{7C6AAB1A-6FDA-42F6-9029-383B567FD67C}" = dir=out | name=@{microsoft.microsoftofficehub_17.6209.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{7DB26FD5-0ED8-4977-B3AE-74BC78F74905}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\far cry 3\bin\fc3updatersteam.exe |
"{7E08556E-1E48-491D-9432-D0CD72FB0C37}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls ii\game\darksoulsii.exe |
"{7E35D448-A58D-4FC2-BA21-430360FADCD6}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe |
"{7E712ACE-081E-4A1D-A7DB-1DA6AA724707}" = protocol=6 | dir=in | app=c:\program files (x86)\tunngle\tunngle.exe |
"{7F4738E0-D875-4AAA-8603-B22CCD24074A}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\tbs\win32\the banner saga.exe |
"{804D6F11-A546-48E8-8806-D776353B49F5}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\batman arkham city goty\binaries\win32\batmanac.exe |
"{80C91602-0A9B-403A-8488-F952FA86D28F}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\dragon age inquisition\dragonageinquisition.exe |
"{8382654B-F75C-46C3-89A5-96365F686589}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{8478B8DE-38F7-4608-B84F-15A89CCCF4D7}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\sendafax.exe |
"{84E05554-EBD4-4F2C-935A-8476C0213A1B}" = protocol=17 | dir=in | app=d:\dateien\winamp\winamp.exe |
"{850377DC-94A3-4B2A-AA1F-2D4A61142648}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\sid meier's civilization beyond earth\civilizationbe_mantle.exe |
"{85C5C8CE-4D27-4531-A568-5EFDE17198F5}" = protocol=17 | dir=in | app=c:\users\diefackel\appdata\local\temp\insa09a\setup.exe |
"{86B7401E-8AB8-447F-BEA3-F5DD0CDF19CA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{874CB0D8-1A02-4AC9-A166-9F8293E19B86}" = protocol=17 | dir=in | app=c:\steam\total war attila\launcher\launcher.exe |
"{8759A254-2AFE-4E31-912C-C534E6F5F517}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{88F4AE15-7AAB-4B72-BEC4-9C72D67F7A88}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\deus ex - human revolution\dxhr.exe |
"{8A07CC39-D9D6-4986-A7E7-FC3984AC7127}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3334\agent.exe |
"{8B769242-BA38-42BD-B61E-C869E9D4AFD6}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls ii\game\darksoulsii.exe |
"{8B88620A-E50A-426E-949A-8CC410A9D244}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\convoy\convoy.exe |
"{8B8C6FF2-E4E2-492B-BD96-275EEA4254D9}" = dir=out | name=@{microsoft.zunevideo_3.6.12711.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{8BE9C610-6900-4DC0-ABAD-CB4AC37F2188}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\launcher\launcher.exe |
"{8BEDEFB4-D4DD-49DB-AF32-02BC67C7F08E}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{8D209263-84F7-4FE6-B69E-868302C09FD2}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\digitalwizards.exe |
"{8E689C35-4729-49A6-BAD2-957DC852D36D}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3332\agent.exe |
"{8F403FA8-32ED-4220-B599-037F2278A985}" = protocol=17 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{908F4F56-D8E9-4767-9F40-75C1634CF255}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.6208.42001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{90C2CADE-0B84-499A-B2F0-315635D1D7C9}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3668\agent.exe |
"{91F29332-8300-4A77-8646-391A0E36647B}" = protocol=6 | dir=in | app=d:\spiele\bioware\star wars-the old republic\launcher.exe |
"{9285C295-959E-446A-A96B-12113128E64F}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{930A184D-3AC6-40FF-A3BD-97983CF14E97}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe |
"{95590C03-1640-4DFA-88D5-77BEC88C5CAB}" = protocol=17 | dir=in | app=d:\spiele\riot games\league of legends\lol.launcher.exe |
"{967DF2D9-1094-404F-95FB-747EDD01CEFB}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\ftl faster than light\ftlgame.exe |
"{96EBA60C-D22C-4AE4-B9FF-48344DCD1A8B}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\starmade\starmade-starter.exe |
"{98F95051-3DCF-440C-9AE9-E94D278E79EB}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\ftl faster than light\ftlgame.exe |
"{9A344900-C141-44D8-A5DD-68DA9610A391}" = protocol=17 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe |
"{9A669733-4F0E-4354-A9F2-783A3E91ABC0}" = dir=out | app=d:\spiele\steam\steamapps\common\the talos principle\bin\talos_unrestricted.exe |
"{9A7C1B98-4563-4D9C-BAB1-247FB5423C24}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{9AFD8555-084C-4CAB-9EFB-79460318035D}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\baldur's gate ii enhanced edition\baldur.exe |
"{9B47F7B1-0285-4904-8D57-52FDC09473D8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{9CD7F87D-11D1-4720-82A5-EDBDB709064F}" = dir=in | name=@{microsoft.microsoftofficehub_17.6209.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{9D0EB4A1-0242-4620-8E01-2CCDF0A2AD7C}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{9E96DFA9-52C0-465E-ABC3-2E5E6D034881}" = dir=out | app=d:\spiele\steam\steamapps\common\the talos principle\original\talos_unrestricted.exe |
"{9F1CCF75-75D5-46FC-B93F-A8C688C0CD17}" = protocol=17 | dir=in | app=c:\steam\total war rome ii\launcher\launcher.exe |
"{9F8489F4-D6C3-45C7-A2F1-E8D675DAD137}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{A0EFB1FA-5906-4CDD-B7CD-CF975BD867FD}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war attila\launcher\launcher.exe |
"{A0FFBA22-BA61-4766-8CA9-F76115D3ABC2}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{A20C7EC1-D7F0-4699-A999-C11A6AF98445}" = dir=in | app=c:\program files\hp\hp officejet 4630 series\bin\devicesetup.exe |
"{A254CE1C-6E77-4ECB-B6C7-EEDA27CB951E}" = dir=out | name=@{microsoft.bingnews_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{A27DCD31-FB3D-4FFE-A0A1-8EB8491B9F49}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3372\agent.exe |
"{A2BBD7E9-1467-4104-9099-CD811030CD9C}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{A2F231C9-4CD8-4395-81DF-C34C6DE0F706}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{A2F61F36-90A6-400C-8F5B-32D7A043FC06}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls ii\game\darksoulsii.exe |
"{A4AE1FED-1B2E-4400-B66B-44EF7AB1085C}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\tbs\win32\the banner saga.exe |
"{A4BFD460-B46F-437E-A601-F7B60A598667}" = dir=in | name=onenote |
"{A58FCE97-E1C6-441E-BCA5-4F1A94A75D35}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\this war of mine\this war of mine.exe |
"{A6441CE9-9B08-426E-BD68-524B7CA68ACA}" = dir=out | app=d:\spiele\steam\steamapps\common\the talos principle\original\talos.exe |
"{A69E166B-B8ED-48C9-8F37-7BC3560B9061}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war attila\launcher\launcher.exe |
"{A7964258-CEEC-492B-89D8-9130CD0587CC}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2737\agent.exe |
"{A7ED935A-F3EC-42F6-BFD7-2BECCA4668BD}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\spelunky\spelunky.exe |
"{A87A837B-957D-406A-897C-7BE312454618}" = dir=out | name=onenote |
"{A9CBEE33-4680-41F4-B98A-79F7E51310D2}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\spelunky\spelunky.exe |
"{AAE2CD6D-47F5-408E-A3CA-675F1053E35C}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\rogue legacy\roguelegacy.exe |
"{AC01552A-81A1-49B2-B053-6E2EE963F693}" = dir=out | name=@{microsoft.bingweather_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{AD04575E-BD2A-49DC-8256-0902D8205E44}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{AEF39903-164B-4F43-97CB-0EC845062CCC}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} |
"{AF973B7E-92F7-4563-88EC-4D14DF7F570A}" = protocol=6 | dir=in | app=d:\dateien\winamp\winamp.exe |
"{B030A168-6281-48CA-9621-76A8AEA3AF09}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3688\agent.exe |
"{B243255C-A7CC-4062-88F3-5A68A9818BF0}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\dragon age inquisition\dragonageinquisition.exe |
"{B2F30D36-41BD-46C2-BFAC-77710BEA7E86}" = protocol=17 | dir=in | app=d:\spiele\bioware\star wars-the old republic\launcher.exe |
"{B378F8B3-FCA1-4072-BDAD-05EBBF7495F3}" = dir=out | name=microsoft solitaire collection |
"{B3B18623-32C2-4E9A-953A-C7A9D41C08DD}" = protocol=6 | dir=in | app=d:\ubisoft\future soldier dx11.exe |
"{B407A014-5DA2-44E3-B87F-65197BCC60D6}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3346\agent.exe |
"{B40EDC8D-1BA5-48DD-A6DE-1871DD1C1852}" = dir=out | name=@{microsoft.bingfinance_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{B4495F83-B379-4899-85D3-E45164AF6B0E}" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\temp\insa09a\setup.exe |
"{B5CC3189-6AFD-4B0A-BF7B-606DB90611A2}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3634\agent.exe |
"{B5EFA66B-C35B-4B36-9EA3-A93F1555753E}" = dir=out | name=@{microsoft.getstarted_2.3.4.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{B715B48F-AF68-463A-94F5-8E0D35B547A9}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3478\agent.exe |
"{B7600AF9-C7D4-4B5D-81ED-C091D5432314}" = protocol=6 | dir=in | app=c:\steam\total war rome ii\launcher\launcher.exe |
"{B7A18863-2979-473F-980B-236D675FB059}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{B7E7F9E2-F9E0-48FB-B8E3-DA6E1D073282}" = dir=in | name=@{microsoft.windowsstore_2015.9.9.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{B8262556-3A71-44D0-844E-C47F3BF5FE9C}" = dir=out | app=d:\spiele\dying light - season pass edition\dyinglightgame.exe |
"{B83D49E3-C9EE-49E5-93EC-0C2A0ECB1797}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3669\agent.exe |
"{B8E9E7A8-22E9-46D2-B15A-2616ACBE94FF}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2787\agent.exe |
"{B9477112-FE2B-483F-B808-8B716C4CFF80}" = dir=out | name=@{microsoft.windowsmaps_4.1509.50911.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{B9C5D61E-29CD-43E9-9445-093116FC9FC8}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\far cry 3\bin\fc3updatersteam.exe |
"{B9E397A5-6684-438B-A818-1DF8C61E9B38}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{B9EA31C3-7A77-4730-9AA5-8E0C39EEF0C4}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{BA916752-F322-46BA-8A89-0CBFD0F6EFDE}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{BAEB663C-7F5E-4F29-A51D-1235BF4C7897}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3669\agent.exe |
"{BB349080-4EF5-4A0F-AFCF-58D1A5BE541D}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe |
"{BD02DD28-83A4-40BE-BCB0-A01DEB78070A}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{BD7E8AC0-D371-47DC-A1E0-8F627C3E1039}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2816\agent.exe |
"{BE6201F6-47F2-4F6D-A260-1DE904ACCA50}" = protocol=6 | dir=in | app=d:\ubisoft\future soldier dx9.exe |
"{BF657D00-BF2C-4E0D-B45C-68D76EB62355}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{BFA46502-EAF1-45ED-903C-835E538F931F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{C0B82E17-81E4-4A83-987F-A1F80330B9A0}" = dir=out | name=xbox one smartglass |
"{C1F02300-6FE1-413E-97D5-9D2E1BCC7BE5}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\left 4 dead 2\left4dead2.exe |
"{C27628C6-628C-4445-946F-CECA67BB71E8}" = dir=out | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{C3F3315C-1356-4F3B-9F77-FE5B9DE9966A}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\evolvegame\bin64_steamretail\evolve.exe |
"{C536F582-753F-4E9C-976A-1D730B05E962}" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\temp\insa09a\setup.exe |
"{C7F5C892-26AC-492E-AF4B-B91D56F57A5C}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{C8111857-2C72-45AC-91FB-4FEDD31A8BBC}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{C82C6185-880F-4E6E-8746-2B6BB818BD6B}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\resident evil 4\bin32\bio4.exe |
"{C86BE727-FC4B-4D2D-B906-89F2208D63EB}" = dir=in | name=microsoft solitaire collection |
"{C8F2300C-DFA2-4270-8E8F-A07F00192E4C}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\darkestdungeon\_windows\darkest.exe |
"{C8F9D5F7-0F0E-4656-B32A-EC826FEB347F}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\evolvegame\bin64_steamretail\evolve.exe |
"{C921C817-C4BD-46C0-B066-1FE300EA2322}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{C94F57A0-0A4A-470F-B710-2DAAB728AFB3}" = protocol=6 | dir=in | app=c:\steam\total war attila\launcher\launcher.exe |
"{C970D1FA-1BB1-45FB-8E2F-1EDEC790AEBC}" = protocol=17 | dir=in | app=d:\ubisoft\future soldier dx11.exe |
"{C976ADF5-7175-4272-B4BE-CCD10EAC1E1C}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe |
"{CB741E7C-88F0-498F-B836-DAFF3E9C50A4}" = dir=out | name=@{microsoft.zunemusic_3.6.12711.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{CBC7F8AB-00EB-4892-9F01-78F6C467AA2D}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\tbs\win32\the banner saga.exe |
"{CDE2447B-D5E2-4DBE-8C94-F911A02C6F62}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{CE2D4911-05FA-4045-9164-11AAD79CC908}" = dir=out | name=@{microsoft.accountscontrol_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{CF1307F5-73F8-47A0-8567-8409FD73B1D9}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{CF3A864B-8FB3-4AA1-A68D-7373BD05BB5D}" = protocol=6 | dir=in | app=d:\dateien\utorrent\utorrent.exe |
"{D0AB18AF-7B1B-40D8-A1DD-648716E7511F}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\hpnetworkcommunicatorcom.exe |
"{D0D54C33-B40E-4A4D-BBA6-C10B67E8D7D7}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\deus ex - human revolution\dxhr.exe |
"{D2FFE9DA-6BEA-4700-A64E-D9652A604C6C}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dayz\dayz.exe |
"{D37AC809-3DCF-48D3-A935-663B1B235D36}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"{D623BF2F-54FC-4366-84B2-1CAC8D46AACA}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\hotline_miami\hotlinemiami.exe |
"{D6C0EDC8-5443-432D-B927-A42C0252C284}" = protocol=6 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{D8C55077-E30F-4B93-B5F6-02699B7E744F}" = protocol=17 | dir=in | app=c:\steam\dayz\dayz_be.exe |
"{D8D7A9A1-B3A6-4931-9103-5F103D19E2C7}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{D9020509-1915-46C3-8F77-73656050A0ED}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\darksouls.exe |
"{D9575063-E67C-4168-A0F9-EC0C4BA3A36D}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\darkestdungeon\_windows\darkest.exe |
"{DA0A9DB6-75C2-4D33-AF3E-957E96B0EF8D}" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\temp\insa09a\setup.exe |
"{DB1D0129-9430-4B7A-A461-18021DEE16BD}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{DBE9FC53-0D77-45A8-A769-EA82DA04343E}" = dir=in | name=@{microsoft.windows.photos_15.915.17170.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{DC2D9DB8-5B41-4D64-9AB6-C65C58B1EC1F}" = protocol=6 | dir=in | app=c:\program files (x86)\tunngle\tnglctrl.exe |
"{DD12F043-F476-4AA6-A873-452764EB3AB4}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{E1FA138B-3E50-44DE-AFE2-901A23E91FD9}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\magic 2014\dotp_d14.exe |
"{E20C141F-B4E3-40B8-9EE2-4E3D0395E972}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\darksouls.exe |
"{E30A1B3E-FE21-4810-B6DC-2DF67F566FAC}" = protocol=6 | dir=in | app=d:\spiele\rockstar games\grand theft auto v\gta5.exe |
"{E3458C9D-9AD5-42D0-8D36-940F11B65F9D}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2787\agent.exe |
"{E46B9AE6-F4BC-4DDC-A396-475B489DD224}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{E48798BA-3563-4A5A-8E28-5C4E48D9DA76}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{E51C2980-FA5D-4DD3-9111-65127B787228}" = dir=out | app=d:\spiele\steam\steamapps\common\the talos principle\bin\talos_unrestricted.exe |
"{E52FDDF5-AC5F-464C-A17A-6D47A3EB837E}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{E5325EEB-3F01-445B-B94D-A233B1AEBA19}" = protocol=17 | dir=in | app=d:\spiele\dragon age\daoriginslauncher.exe |
"{E5A67602-3EB0-42DE-B3AD-4031D2D252F9}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe |
"{E5AD670E-B9DC-4C91-A919-746F255CF8A1}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{E6612FF6-20D1-486B-BE99-B2EE40A8EE64}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{E737A0A8-401F-4D1D-BDDD-A74D8366577F}" = dir=in | app=c:\program files (x86)\samsung\samsung universal print driver 2\printerselector\supdapp.exe |
"{E8A7450A-558B-4DE7-8139-51D6846C2E80}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{E8E042D8-E451-44F8-82FA-536CB3D94352}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2717\agent.exe |
"{E9182879-663A-4583-AC43-287F507628A2}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\mark_of_the_ninja\bin\game.exe |
"{E93BF174-DA47-4A48-9243-942B83AF5711}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{EA07A9B6-AE7B-426E-90FB-069CCDCFB202}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3427\agent.exe |
"{EE93AA36-B737-4CE9-A350-E7329041BB81}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3715\agent.exe |
"{EF868012-A3C8-4B3F-979D-4580606B6089}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{F19E59A1-2DF8-4F3D-9B53-F93106C90DF2}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{F1DBD15E-DA8E-47A6-9329-BFD53767D7C6}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\runme2.exe |
"{F1F436EB-F01E-4B64-89F0-D9D9CC3237A5}" = protocol=6 | dir=in | app=d:\spiele\diablo iii\diablo iii.exe |
"{F23413BE-72FF-48FF-935F-B4423B56EB70}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{F32D8B5C-0A39-4213-B311-4264F61EDD29}" = protocol=17 | dir=in | app=d:\spiele\bioware\star wars-the old republic\launcher.exe |
"{F3B481F2-78BB-4809-B174-E6BF94AD446C}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3372\agent.exe |
"{F4001CEF-B676-4F8F-9CBE-5F88C6865C09}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3454\agent.exe |
"{F4512911-456B-4408-9148-46ED2516F2E2}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{F4E28960-8EA3-4167-B305-A5D09CF4CB1B}" = dir=in | app=c:\program files\hp\hp officejet 4630 series\bin\digitalwizards.exe |
"{F4ED5D7F-A38F-4D71-BF80-C1EEA149F559}" = protocol=17 | dir=in | app=c:\program files (x86)\tunngle\tnglctrl.exe |
"{F6A0F5F8-3587-467B-9152-066807ADBFC3}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\baldur's gate ii enhanced edition\baldur.exe |
"{F7B00440-33F6-4F71-976D-3587989F807C}" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{F7EC3CDC-284C-442A-BB04-2AC14E401D19}" = protocol=6 | dir=in | app=c:\steam\dayz\dayz_be.exe |
"{F86FD95D-A215-450E-A149-264AC71A11BA}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10240.16393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{F8966F84-0191-401B-B9D7-BDE8ECAE8DB2}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{F8E5572C-8AC6-41CD-A742-FE679E110F20}" = dir=out | name=@{microsoft.windowsphone_10.1508.17010.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} |
"{F9AC4827-BB5D-4839-AA25-366ECF0B46D9}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{FA10D693-1CA9-4710-A397-22E92281F546}" = dir=in | app=c:\program files\hp\hp officejet 4630 series\bin\sendafax.exe |
"{FB27EE1E-1789-4ECE-B224-B3F27B5E82FE}" = protocol=6 | dir=in | app=c:\steam\dayz\dayz_be.exe |
"{FE1FC3C7-EBB7-4A4B-945E-BEF9C927A416}" = dir=out | name=@{microsoft.bingsports_4.5.168.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{FE67CB5F-9D76-4332-8418-D9684CBAAF40}" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{FF29EDB2-18BB-4CCD-896A-52444C37CE8C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3668\agent.exe |
"{FF515000-9D08-408E-9921-26D9E623A3EB}" = protocol=17 | dir=in | app=d:\spiele\diablo iii\diablo iii.exe |
"TCP Query User{0E4CC603-C65B-4D8A-9395-77790EFC0784}C:\steam\dayz\dayz.exe" = protocol=6 | dir=in | app=c:\steam\dayz\dayz.exe |
"TCP Query User{0FFDD242-BB2F-49BF-905C-5B05E6D833B6}D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe |
"TCP Query User{153FC93A-87EC-47B0-9686-645FBEB20530}C:\steam\total war rome ii\rome2.exe" = protocol=6 | dir=in | app=c:\steam\total war rome ii\rome2.exe |
"TCP Query User{1E242760-BA70-462B-8804-2B2DD000B617}D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe" = protocol=6 | dir=in | app=d:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe |
"TCP Query User{1E2E57F1-9282-4817-BF17-86AF3119982D}C:\steam\dayz\dayz.exe" = protocol=6 | dir=in | app=c:\steam\dayz\dayz.exe |
"TCP Query User{2087E360-86C8-4F44-9479-A342A8F24C4C}D:\spiele\far cry 4\bin\farcry4.exe" = protocol=6 | dir=in | app=d:\spiele\far cry 4\bin\farcry4.exe |
"TCP Query User{26D928E9-F98F-40D1-A2AE-23E28514F798}C:\programdata\battle.net\agent\agent.beta.2753\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2753\agent.exe |
"TCP Query User{2E3D86B6-3222-4719-A1C3-6465A9825C7E}C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe |
"TCP Query User{44A642B9-0B12-4F97-84BE-93251718E92E}D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe" = protocol=6 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe |
"TCP Query User{53CA6491-A5DE-489E-9250-55D4291DBB2E}D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\rome2.exe |
"TCP Query User{5A3687F6-AA2F-41D8-BC1F-6D0028F43762}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe" = protocol=6 | dir=in | app=d:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe |
"TCP Query User{5C786FE9-C1E2-4B8A-B90E-6B8D503599A0}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe |
"TCP Query User{66FE9211-BCCF-4D46-BFE7-8A2DF6DCC740}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"TCP Query User{679176C4-B17C-48AC-9438-D72A64AADF45}D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe" = protocol=6 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe |
"TCP Query User{6CFE4AB8-AACC-4D53-BDE9-4B7B1DC85A49}D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe" = protocol=6 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe |
"TCP Query User{75A8E893-2DB3-4F96-A700-1BDD93AEC419}D:\spiele\turbine\lotro\lotroclient.exe" = protocol=6 | dir=in | app=d:\spiele\turbine\lotro\lotroclient.exe |
"TCP Query User{7B5AAE01-E32C-41F9-85E7-F96EAD837CB8}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe |
"TCP Query User{7E0D2860-2926-4758-9E61-C3D62A6EE882}D:\spiele\der herr der ringe online\lotroclient.exe" = protocol=6 | dir=in | app=d:\spiele\der herr der ringe online\lotroclient.exe |
"TCP Query User{811D149A-8102-4474-B680-7B0E1F1DB80D}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe" = protocol=6 | dir=in | app=d:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe |
"TCP Query User{89EFC158-2255-4AD5-AD13-C0E7D8C6DDF0}C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe" = protocol=6 | dir=in | app=c:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe |
"TCP Query User{8C2A0CB4-B109-46D4-AABB-C160E0B4BC2A}C:\users\diefackel\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\akamai\netsession_win.exe |
"TCP Query User{8F8759CE-CB68-4E5B-8674-F698BF887F6D}C:\steam\total war rome ii\rome2.exe" = protocol=6 | dir=in | app=c:\steam\total war rome ii\rome2.exe |
"TCP Query User{99791AC9-E644-49DE-86C4-F301DA9B706F}C:\program files\java\jre1.8.0_51\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.8.0_51\bin\javaw.exe |
"TCP Query User{A35D10AF-D92A-4ABA-ACBF-C15CE5BC4854}C:\programdata\battle.net\agent\agent.3286\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"TCP Query User{AA80F67F-5B29-4F21-AF43-610BD2557134}C:\program files\java\jre1.8.0_51\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.8.0_51\bin\java.exe |
"TCP Query User{AB7ED2C4-B673-4C55-83A0-5E725CB106E4}D:\spiele\steam\steamapps\common\total war attila\attila.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steamapps\common\total war attila\attila.exe |
"TCP Query User{C7489638-ABE6-4C6E-9EF0-20E06C24DBF4}C:\steam\dayz\dayz_experimental.exe" = protocol=6 | dir=in | app=c:\steam\dayz\dayz_experimental.exe |
"TCP Query User{D499F6AB-D5DA-4AE8-B1FE-0C5672BDAAEC}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe |
"TCP Query User{DF81AFF9-6AB8-429F-9D37-56BCA58078BB}C:\users\diefackel\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\diefackel\appdata\local\akamai\netsession_win.exe |
"TCP Query User{E16FC49E-8D94-4B67-A2C9-9950910F8D4F}C:\steam\total war attila\attila.exe" = protocol=6 | dir=in | app=c:\steam\total war attila\attila.exe |
"TCP Query User{E264AEE9-98D1-4F0C-A8D8-EF320B419BA4}D:\spiele\rockstar games\grand theft auto v\gta5.exe" = protocol=6 | dir=in | app=d:\spiele\rockstar games\grand theft auto v\gta5.exe |
"TCP Query User{E4D7CB05-04C0-4D43-AF88-AD7F4CADA6A7}C:\program files (x86)\hearthstone\hearthstone.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"TCP Query User{E6809934-F0AB-44EA-92A3-4F06E02800A4}D:\spiele\starcraft ii\versions\base32283\sc2.exe" = protocol=6 | dir=in | app=d:\spiele\starcraft ii\versions\base32283\sc2.exe |
"TCP Query User{E9B168F0-3A0F-4CB0-8F7B-1762918B2F50}D:\spiele\alien isolation\ai.exe" = protocol=6 | dir=in | app=d:\spiele\alien isolation\ai.exe |
"TCP Query User{F0114F43-EF09-4068-9E8B-99DE01B36196}D:\spiele\steam\steam.exe" = protocol=6 | dir=in | app=d:\spiele\steam\steam.exe |
"TCP Query User{FDAB8299-263A-4540-98EB-B9BF2FFF7833}C:\users\diefackel\desktop\candisoft load!\load.exe" = protocol=6 | dir=in | app=c:\users\diefackel\desktop\candisoft load!\load.exe |
"UDP Query User{01F3AAB2-F100-486D-9ECE-B0CE0B6D9092}D:\spiele\der herr der ringe online\lotroclient.exe" = protocol=17 | dir=in | app=d:\spiele\der herr der ringe online\lotroclient.exe |
"UDP Query User{09D3B12E-1D64-4720-9738-808B2BB03418}D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe" = protocol=17 | dir=in | app=d:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe |
"UDP Query User{0D90916A-B2DB-4CD4-9340-B147B03340B9}D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe" = protocol=17 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe |
"UDP Query User{10132D8F-7597-4747-9782-0BFFDD89409C}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe |
"UDP Query User{10CE2B65-E5F4-42BC-8163-71E573619FB5}C:\programdata\battle.net\agent\agent.3286\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"UDP Query User{14B7CD50-9E78-45C7-B322-B12F8E02D065}C:\steam\total war rome ii\rome2.exe" = protocol=17 | dir=in | app=c:\steam\total war rome ii\rome2.exe |
"UDP Query User{2B0BD43A-F410-4B4D-B059-B6240AFC9884}C:\users\diefackel\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\diefackel\appdata\local\akamai\netsession_win.exe |
"UDP Query User{34AB8C0E-5E53-439E-945C-0A955A44B729}D:\spiele\steam\steam.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steam.exe |
"UDP Query User{34BCA22E-99A9-4037-899C-174952D355DE}D:\spiele\turbine\lotro\lotroclient.exe" = protocol=17 | dir=in | app=d:\spiele\turbine\lotro\lotroclient.exe |
"UDP Query User{3BD0FB36-6A35-474D-B8D4-54428A7073F7}C:\steam\dayz\dayz.exe" = protocol=17 | dir=in | app=c:\steam\dayz\dayz.exe |
"UDP Query User{3F166EB9-307C-4A2B-9432-B9F44FD2DAB3}D:\spiele\steam\steamapps\common\total war attila\attila.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war attila\attila.exe |
"UDP Query User{3FF88DA6-90AD-4569-A544-9BD32D95B4DE}C:\users\diefackel\desktop\candisoft load!\load.exe" = protocol=17 | dir=in | app=c:\users\diefackel\desktop\candisoft load!\load.exe |
"UDP Query User{46682FD8-186D-49C6-A2F6-8726E2F384C5}D:\spiele\far cry 4\bin\farcry4.exe" = protocol=17 | dir=in | app=d:\spiele\far cry 4\bin\farcry4.exe |
"UDP Query User{52E2A39D-CDF8-4BD2-A960-F3FB7AC8F64D}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe |
"UDP Query User{6BD38B9B-C5B3-444B-9445-275EE4EF4F01}D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe |
"UDP Query User{70BA62A2-5F2E-4255-A782-5AC9112EBBCF}D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe" = protocol=17 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe |
"UDP Query User{71783481-456F-4E47-B816-DE0237716065}D:\spiele\rockstar games\grand theft auto v\gta5.exe" = protocol=17 | dir=in | app=d:\spiele\rockstar games\grand theft auto v\gta5.exe |
"UDP Query User{721024D8-CA0B-4E5A-8BD3-1DD886EF554B}C:\steam\dayz\dayz_experimental.exe" = protocol=17 | dir=in | app=c:\steam\dayz\dayz_experimental.exe |
"UDP Query User{768ADEDF-7348-4888-A306-9D2D9BCFAB3C}C:\program files (x86)\hearthstone\hearthstone.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"UDP Query User{8B6CB9A1-CCD9-4ED2-8550-672343D27E06}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe" = protocol=17 | dir=in | app=d:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe |
"UDP Query User{91E2485E-E838-477D-A73E-4A2676154231}C:\users\diefackel\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\diefackel\appdata\local\akamai\netsession_win.exe |
"UDP Query User{94A160E1-66C3-4B87-9603-39556EFD9D49}C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe" = protocol=17 | dir=in | app=c:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe |
"UDP Query User{994ABB63-697E-4845-8262-7188C1B3840C}C:\steam\total war attila\attila.exe" = protocol=17 | dir=in | app=c:\steam\total war attila\attila.exe |
"UDP Query User{9ECD126D-32EB-4A1F-9489-25F4A7842E71}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"UDP Query User{9F485F74-1D47-45B3-8AFD-61787933B854}D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\total war rome ii\rome2.exe |
"UDP Query User{A1C93A3A-B967-4C58-A16D-F1E7DE6A8FA3}D:\spiele\alien isolation\ai.exe" = protocol=17 | dir=in | app=d:\spiele\alien isolation\ai.exe |
"UDP Query User{A9C1AB2D-4EB1-4FFF-BF4F-6A34049E98AA}C:\steam\total war rome ii\rome2.exe" = protocol=17 | dir=in | app=c:\steam\total war rome ii\rome2.exe |
"UDP Query User{AC4641F8-12FC-420F-823F-EFFC3F28FDBE}C:\program files\java\jre1.8.0_51\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.8.0_51\bin\java.exe |
"UDP Query User{B0847E20-BD2F-4CE3-81BD-B269F8AE2DCE}C:\program files\java\jre1.8.0_51\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.8.0_51\bin\javaw.exe |
"UDP Query User{B520E170-4F76-4BC5-A52D-FB024EEF4451}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe" = protocol=17 | dir=in | app=d:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe |
"UDP Query User{C27FDE17-733B-4E36-8FB2-179CA232B7F5}D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe" = protocol=17 | dir=in | app=d:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe |
"UDP Query User{C7336522-0718-4032-B21C-44DAB4327448}C:\steam\dayz\dayz.exe" = protocol=17 | dir=in | app=c:\steam\dayz\dayz.exe |
"UDP Query User{D156C6E4-CF56-47E4-8877-C9FA020097D1}C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe" = protocol=17 | dir=in | app=c:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe |
"UDP Query User{EF209801-AE72-41D9-9F77-608AD8263367}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe" = protocol=17 | dir=in | app=d:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe |
"UDP Query User{EF620606-1FAD-4D0F-A60A-B3D46FA847CD}D:\spiele\starcraft ii\versions\base32283\sc2.exe" = protocol=17 | dir=in | app=d:\spiele\starcraft ii\versions\base32283\sc2.exe |
"UDP Query User{F5D0F458-A64A-4AAC-88D7-6DB7D0B66659}C:\programdata\battle.net\agent\agent.beta.2753\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2753\agent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1" = Core Temp 1.0 RC6
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86418060F0}" = Java 8 Update 60 (64-bit)
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{670B1B49-9FD3-4827-9B41-471EFF580AA8}" = Evolve
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{9086D601-50B7-491D-A143-28193DADE36B}" = HP Officejet 6700 - Grundlegende Software für das Gerät
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{986E003C-E56D-5A47-110E-D3C81F0E8535}" = Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.11761.0_neutral_~_8wekyb3d8bbwe (x64)
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 352.86
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 353.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 352.86
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.4.3.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 352.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.15.0428
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 2.4.3.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.3.34.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 2.4.3.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.27
"{C513739C-5F16-37B5-9ACF-99925FF1C1F3}" = Microsoft .NET Framework 4.5.1 (DEU)
"{CCF92FFE-5341-4263-9048-472D9E3C5703}" = HP Officejet 4630 series - Grundlegende Software für das Gerät
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}" = Microsoft Xbox One Controller for Windows
"6af12c54-643b-4752-87d0-8335503010de_is1" = Nexus Mod Manager
"AutoHotkey" = AutoHotkey 1.1.15.03
"CCleaner" = CCleaner
"GIMP-2_is1" = GIMP 2.8.14
"HardlinkShellExt" = Link Shell Extension
"jdownloader2" = JDownloader 2
"Recuva" = Recuva
"TAP-Windows" = TAP-Windows 9.9.2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"VLC media player" = VLC media player
"WinRAR archiver" = WinRAR 4.20 (64-Bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{07300F01-89CA-4CF8-92BD-2A605EB83C95}" = EasySaver B9.1214.1
"{0F659036-14C7-4622-9505-35A0DC93526A}" = System Requirements Lab
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83218060F0}" = Java 8 Update 60
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = Gigabyte Raid Configurer
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Star Wars: The Old Republic
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0427.1
"{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}" = Microsoft ASP.NET MVC 4 Runtime
"{456A5815-604D-4D72-94DF-346D2B978A59}_is1" = GOG.com Downloader version 3.6.0
"{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.0516.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}" = Google Earth Plug-in
"{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}" = ROCCAT Isku Keyboard Driver
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{517E7DBD-7A5B-4B7F-B137-82AB4DAD68FC}" = LogMeIn Hamachi
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{6A0549A9-1B96-498C-ACBC-3943001FEB19}" = Skype™ 7.8
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7133137D-DF48-4522-AD88-13C82B7D0A63}" = ROCCAT Kone XTD Mouse Driver
"{7258BA11-600C-430E-A759-27E2C691A335}_is1" = GOG Galaxy
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD}" = Adobe AIR
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}" = Sitecom Europe BV Wireless LAN
"{912D30CF-F39E-4B31-AD9A-123C6B794EE2}" = HP Update
"{987B04C4-B5AC-4AD6-A7E9-8D681085B850}" = AMD USB Filter Driver
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}" = Browser Configuration Utility
"{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}" = inSSIDer 3
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-0804-1033-1959-001824147215}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1031-7B44-AC0F074E4100}" = Adobe Acrobat Reader DC - Deutsch
"{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}" = OpenOffice 4.1.1
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}" = @BIOS
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{C75FAD21-EC08-42F3-92D6-C9C0AB355345}" = AutoGreen B10.0517.1
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{CA6BCA2F-EDEB-408F-850B-31404BE16A61}" = I.R.I.S. OCR
"{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}" = Microsoft XNA Framework Redistributable 4.0 Refresh
"{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"{DC4C36DC-4E5B-4262-B0C7-157DF534B969}" = Dragon Age™: Inquisition
"{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}" = Grand Theft Auto V
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.275
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"1207664643_is1" = The Witcher 3 - Wild Hunt
"1424773427_is1" = Hotline Miami 2 - Wrong Number
"Adobe AIR" = Adobe AIR
"Adobe Flash Player NPAPI" = Adobe Flash Player 18 NPAPI
"Alternative Look for Triss_is1" = The Witcher 3: Wild Hunt - Alternative Look for Triss
"Alternative Look for Yennefer_is1" = The Witcher 3: Wild Hunt - Alternative Look for Yennefer
"avast" = Avast Free Antivirus
"Ballad Heroes - Neutral Gwent Card Set_is1" = The Witcher 3: Wild Hunt - Ballad Heroes - Neutral Gwent Card Set
"Battle.net" = Battle.net
"Beard and Hairstyle Set_is1" = The Witcher 3: Wild Hunt - Beard and Hairstyle Set
"BitRaider Streaming Client" = BitRaider Streaming Client
"Capsule" = Capsule
"Cheat Engine 6.4_is1" = Cheat Engine 6.4
"CrystalDiskInfo_is1" = CrystalDiskInfo 6.5.2
"Elite Crossbow Set_is1" = The Witcher 3: Wild Hunt - Elite Crossbow Set
"FormatFactory" = FormatFactory 3.1.1
"Fraps" = Fraps
"Free Audio Converter_is1" = Free Audio Converter version 5.0.57.301
"GOGPACKPAPERSPLEASE_is1" = Papers, Please
"Google Chrome" = Google Chrome
"Hearthstone" = Hearthstone
"InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.0516.1
"InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}" = AutoGreen B10.0517.1
"InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"LogMeIn Hamachi" = LogMeIn Hamachi
"LOOT" = LOOT
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware Version 2.1.8.1057
"Mozilla Firefox 40.0.3 (x86 de)" = Mozilla Firefox 40.0.3 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"New Quest - Contract Missing Miners_is1" = The Witcher 3: Wild Hunt - New Quest - Contract Missing Miners
"New Quest - Contract: Skellige's Most Wanted_is1" = The Witcher 3: Wild Hunt - New Quest - Contract - Skellige's Most Wanted
"New Quest - Fool's Gold_is1" = The Witcher 3: Wild Hunt - New Quest - Fool's Gold
"New Quest - Scavenger Hunt: Wolf School Gear_is1" = The Witcher 3: Wild Hunt - New Quest - Scavenger Hunt - Wolf School Gear
"New Quest - Where the Cat and Wolf Play..._is1" = The Witcher 3: Wild Hunt - New Quest - Where the Cat and Wolf Play...
"Nilfgaardian Armor Set_is1" = The Witcher 3: Wild Hunt - Nilfgaardian Armor Set
"Notepad++" = Notepad++
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenAL" = OpenAL
"Origin" = Origin
"ParkControl" = ParkControl
"Reassembly_is1" = Reassembly version 10.12.14
"Rockstar Games Social Club" = Rockstar Games Social Club
"Samsung Universal Print Driver 2" = Samsung Universal Print Driver 2
"Secunia PSI" = Secunia PSI (3.0.0.7011)
"Skellige Armor Set_is1" = The Witcher 3: Wild Hunt - Skellige Armor Set
"StarCraft II" = StarCraft II
"StarCraft II - Legacy of the Void Beta" = StarCraft II - Legacy of the Void Beta
"Steam App 108600" = Project Zomboid
"Steam App 200260" = Batman: Arkham City GOTY
"Steam App 212680" = FTL: Faster Than Light
"Steam App 221100" = DayZ
"Steam App 230230" = Divinity: Original Sin
"Steam App 235460" = METAL GEAR RISING: REVENGEANCE
"Steam App 236430" = DARK SOULS™ II
"Steam App 237990" = The Banner Saga
"Steam App 239350" = Spelunky
"Steam App 242920" = Banished
"Steam App 257350" = Baldur's Gate II: Enhanced Edition
"Steam App 262060" = Darkest Dungeon
"Steam App 273350" = Evolve
"Steam App 282070" = This War of Mine
"Steam App 318230" = Convoy
"Steam App 32470" = Star Wars: Empire at War Gold
"Steam App 325610" = Total War: ATTILA
"Steam App 335180" = StarMade Demo
"Steam App 34330" = Total War: SHOGUN 2
"Steam App 550" = Left 4 Dead 2
"Steam App 65980" = Sid Meier's Civilization: Beyond Earth
"Steam App 72850" = The Elder Scrolls V: Skyrim
"Steam App 8930" = Sid Meier's Civilization V
"Temerian Armor Set_is1" = The Witcher 3: Wild Hunt - Temerian Armor Set
"Tunngle beta_is1" = Tunngle beta
"uTorrent" = µTorrent
"VirtualCloneDrive" = VirtualCloneDrive
"Wasteland 2 Ranger Edition MULTi7 Update 1 1.0" = Wasteland 2 Ranger Edition MULTi7 Update 1 1.0
"Winamp" = Winamp
"Yahoo! SearchSet" = Yahoo Search Set
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 20.09.2015 07:14:58 | Computer Name = Sol-PC | Source = ESENT | ID = 488
Description = SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log"
zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen.
Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error - 20.09.2015 07:14:58 | Computer Name = Sol-PC | Source = ESENT | ID = 413
Description = SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt
werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das
Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder
hat zu wenig freien Speicherplatz. Fehler -1032.
Error - 20.09.2015 07:15:08 | Computer Name = Sol-PC | Source = ESENT | ID = 488
Description = SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log"
zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen.
Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error - 20.09.2015 07:15:08 | Computer Name = Sol-PC | Source = ESENT | ID = 413
Description = SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt
werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das
Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder
hat zu wenig freien Speicherplatz. Fehler -1032.
Error - 20.09.2015 07:15:18 | Computer Name = Sol-PC | Source = ESENT | ID = 488
Description = SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log"
zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen.
Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error - 20.09.2015 07:15:18 | Computer Name = Sol-PC | Source = ESENT | ID = 413
Description = SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt
werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das
Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder
hat zu wenig freien Speicherplatz. Fehler -1032.
Error - 20.09.2015 07:15:29 | Computer Name = Sol-PC | Source = ESENT | ID = 488
Description = SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log"
zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen.
Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error - 20.09.2015 07:15:29 | Computer Name = Sol-PC | Source = ESENT | ID = 413
Description = SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt
werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das
Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder
hat zu wenig freien Speicherplatz. Fehler -1032.
Error - 20.09.2015 07:15:39 | Computer Name = Sol-PC | Source = ESENT | ID = 488
Description = SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log"
zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen.
Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error - 20.09.2015 07:15:39 | Computer Name = Sol-PC | Source = ESENT | ID = 413
Description = SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt
werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das
Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder
hat zu wenig freien Speicherplatz. Fehler -1032.
[ System Events ]
Error - 18.09.2015 22:20:20 | Computer Name = Sol-PC | Source = DCOM | ID = 10010
Description =
Error - 18.09.2015 22:20:49 | Computer Name = Sol-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 19.09.2015 07:15:37 | Computer Name = Sol-PC | Source = DCOM | ID = 10016
Description =
Error - 19.09.2015 14:26:00 | Computer Name = Sol-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x80070490 fehlgeschlagen: HP - Enterprise WSD Multi-Function Printer, Other
hardware - Null Fax - HP Officejet 4630 series
Error - 19.09.2015 18:33:54 | Computer Name = Sol-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 19.09.2015 18:33:54 | Computer Name = Sol-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Kontaktdaten_Session2" wurde unerwartet beendet. Dies
ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden
durchgeführt: Neustart des Diensts.
Error - 19.09.2015 18:33:54 | Computer Name = Sol-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Benutzerdatenspeicher _Session2" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 19.09.2015 18:33:54 | Computer Name = Sol-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Benutzerdatenzugriff_Session2" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 19.09.2015 18:33:57 | Computer Name = Sol-PC | Source = DCOM | ID = 10010
Description =
Error - 19.09.2015 18:34:21 | Computer Name = Sol-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
< End of report >
|
|
20.09.2015, 14:55
| #3 |
| /// Malwareteam   | Malware Befall? Ich habe dein Thema in Arbeit und melde mich so schnell als möglich mit weiteren Anweisungen. Bitte beachte, dass alle meine Antworten zuerst von einem Ausbilder freigegeben werden müssen, bevor ich diese hier posten darf. Dies garantiert, dass Du Hilfe von einem ausgebildeten Helfer bekommst. Ich bedanke mich für deine Geduld  ================ Du hast mir zweimal die Extras.txt gepostet  Trotzdem würde ich dich mal um FRST bitten: Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
20.09.2015, 16:46
| #4 |
| | Malware Befall? Ups, sorry wegen dem doppelten Extras Log. Hier sind jetzt hoffentlich alle korrekt. FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015 durchgeführt von dieFackel (Administrator) auf SOL-PC (20-09-2015 17:39:40) Gestartet von C:\Users\dieFackel\Desktop Geladene Profile: dieFackel (Verfügbare Profile: dieFackel & DefaultAppPool) Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe () C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe () C:\Windows\SysWOW64\XSrvSetup.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (LogMeIn Inc.) D:\Dateien\LogMeIn Hamachi\hamachi-2.exe () C:\Windows\SysWOW64\SecUPDUtilSvc.exe (Ralink Technology, Corp.) C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe (Ralink Technology, Corp.) C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe (LogMeIn, Inc.) D:\Dateien\LogMeIn Hamachi\LMIGuardianSvc.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Bitsum LLC) D:\Dateien\ParkControl\ParkControl.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe (DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Valve Corporation) D:\Spiele\Steam\Steam.exe (Valve Corporation) D:\Spiele\Steam\bin\steamwebhelper.exe (Valve Corporation) D:\Spiele\Steam\bin\steamwebhelper.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (NVIDIA Corporation) C:\Users\dieFackel\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-01] (NVIDIA Corporation) HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [558944 2012-11-30] (ROCCAT GmbH) HKLM-x32\...\Run: [BCU] => C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [375000 2009-10-15] (DeviceVM, Inc.) HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-19] () HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-11-20] (NEC Electronics Corporation) HKLM-x32\...\Run: [RoccatIsku] => C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE [536576 2013-10-30] (ROCCAT GmbH) HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-07-02] (Avast Software s.r.o.) HKLM-x32\...\Run: [VirtualCloneDrive] => D:\Dateien\Programme\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Dateien\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation) HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \mbamdor.exe [54072 2015-06-18] (Malwarebytes Corporation) HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [456576 2015-06-10] (Sony) HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [EADM] => D:\Spiele\Origin\Origin.exe [3632112 2015-07-25] (Electronic Arts) HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [GalaxyClient] => D:\Spiele\GalaxyClient\GalaxyClient.exe [7247416 2015-07-20] (GOG.com) HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [EvolveClient] => D:\Dateien\Echobit\Evolve\EvolveClient.exe [3334016 2015-08-05] (Echobit LLC) HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53735968 2015-08-07] (Skype Technologies S.A.) HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd) HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\RunOnce: [Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\RunOnce: [Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64" HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\RunOnce: [Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-02] (Avast Software s.r.o.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2013-08-18] ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Sitecom Wireless Utility.lnk [2013-08-18] ShortcutTarget: Sitecom Wireless Utility.lnk -> C:\Program Files (x86)\Sitecom\Common\WLANUtil.exe (Sitecom Europe BV.) Startup: C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6700.lnk [2013-09-01] ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6700.lnk -> C:\Program Files\HP\HP Officejet 6700\Bin\HPStatusBL.dll (Hewlett-Packard Co.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\..\Interfaces\{1e498d26-a69f-40b8-be95-ebbee9ff9f23}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp URLSearchHook: HKU\S-1-5-21-2542595381-3183390579-2223026719-1000 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch64.dll (DeviceVM, Inc.) URLSearchHook: HKU\S-1-5-21-2542595381-3183390579-2223026719-1000 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.) SearchScopes: HKU\S-1-5-21-2542595381-3183390579-2223026719-1000 -> DefaultScope {888255F5-E5F4-4626-9D68-92C58086424C} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD SearchScopes: HKU\S-1-5-21-2542595381-3183390579-2223026719-1000 -> {62DB5B0D-4BDE-42ab-9009-2B3B3B097939} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=1975384696&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms} SearchScopes: HKU\S-1-5-21-2542595381-3183390579-2223026719-1000 -> {888255F5-E5F4-4626-9D68-92C58086424C} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-29] (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-02] (Avast Software s.r.o.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-29] (Oracle Corporation) BHO: Kein Name -> {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} -> Keine Datei BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-29] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-02] (Avast Software s.r.o.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-29] (Oracle Corporation) Toolbar: HKLM - Kein Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Keine Datei DPF: HKLM-x32 {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} hxxp://download.gigabyte.com.tw/object/Dldrv.ocx DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210 FF Homepage: Twitter.com FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1)%20%7B%20return%20'PROXY%20nq-us09.personalitycores.com%3A8000%3B%20PROXY%20nq-us08.personalitycores.com%3A8000%3B%20PROXY%20nq-us07.personalitycores.com%3A8000%3B%20PROXY%20nq-us04.personalitycores.com%3A8000%3B%20PROXY%20nq-us05.personalitycores.com%3A8000%3B%20PROXY%20nq-us06.personalitycores.com%3A8000%3B%20PROXY%20nq-us12.personalitycores.com%3A8000%3B%20PROXY%20nq-us11.personalitycores.com%3A8000%3B%20PROXY%20nq-us10.personalitycores.com%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D" FF NetworkProxy: "type", 2 FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] () FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-29] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-29] (Oracle Corporation) FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-29] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-29] (Oracle Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-05-12] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-05-12] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2542595381-3183390579-2223026719-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-06-04] () FF user.js: detected! => C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\user.js [2014-10-01] FF SearchPlugin: C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\searchplugins\divinity-wiki-en.xml [2015-05-14] FF SearchPlugin: C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\searchplugins\youtube-videosuche.xml [2015-06-01] FF Extension: FT DeepDark - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-08-25] FF Extension: WOT - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-10] FF Extension: Ghostery - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\firefox@ghostery.com.xpi [2013-11-14] FF Extension: Reddit Enhancement Suite - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\jid1-xUfzOsOFlzSOXg@jetpack.xpi [2015-04-01] FF Extension: New Tab Wallpapers - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\{a5312b79-bf0d-4825-a25f-b33d67d4a58a}.xpi [2013-11-14] FF Extension: Adblock Plus - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-11-14] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-08-19] Chrome: ======= CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default CHR DefaultSearchKeyword: Default -> Yahoo CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10 CHR Profile: C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Avast Online Security) - C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-06-25] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-26] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-14] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-02] CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] () R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-07-02] (Avast Software s.r.o.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1128448 2015-07-28] () S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2014-11-01] (BitRaider, LLC) R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] () S3 GalaxyClientService; D:\Spiele\GalaxyClient\GalaxyClientService.exe [1718840 2015-07-20] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6871608 2015-07-20] (GOG.com) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-01] (NVIDIA Corporation) R2 Hamachi2Svc; D:\Dateien\LogMeIn Hamachi\hamachi-2.exe [2545512 2015-08-03] (LogMeIn Inc.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert] R2 JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [72304 2010-01-19] () S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-06] (Microsoft Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-01] (NVIDIA Corporation) S3 Origin Client Service; D:\Spiele\Origin\OriginClientService.exe [2007048 2015-07-25] (Electronic Arts) R2 RalinkRegistryWriter; C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe [185632 2009-12-15] (Ralink Technology, Corp.) R2 RalinkRegistryWriter64; C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe [212256 2009-12-15] (Ralink Technology, Corp.) R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [118576 2014-11-26] () R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia) S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [757144 2013-08-16] (Tunngle.net GmbH) [Datei ist nicht signiert] S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-06] (Microsoft Corporation) R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-06] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21544 2010-04-27] () R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-07-02] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-07-02] (Avast Software s.r.o.) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-02] (Avast Software s.r.o.) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-07-02] () S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-07-02] (Avast Software s.r.o.) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-07-02] (Avast Software s.r.o.) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-07-02] (Avast Software s.r.o.) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-07-02] () R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2015-02-09] () S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2014-11-01] (BitRaider) S3 dc1-controller; C:\Windows\System32\drivers\dc1-controller.sys [50688 2015-07-10] (Microsoft Corp.) S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2013-08-19] () R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2015-02-09] () S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation) R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-06] (Microsoft Corporation) S3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-01] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) U0 owahm; C:\Windows\System32\drivers\ggpcixbf.sys [79064 2015-09-20] (Malwarebytes Corporation) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-07-03] (Secunia) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek ) R3 tap0901t; C:\Windows\System32\drivers\tap0901t.sys [31232 2009-09-16] (Tunngle.net) S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) U3 idsvc; kein ImagePath S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] U3 wpcsvc; kein ImagePath ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-09-20 17:39 - 2015-09-20 17:40 - 00027170 _____ C:\Users\dieFackel\Desktop\FRST.txt 2015-09-20 17:39 - 2015-09-20 17:39 - 00000000 ____D C:\FRST 2015-09-20 17:38 - 2015-09-20 17:39 - 02191360 _____ (Farbar) C:\Users\dieFackel\Desktop\FRST64.exe 2015-09-20 15:25 - 2015-09-20 15:25 - 00001336 _____ C:\Users\dieFackel\Desktop\Malwarebytes.txt 2015-09-20 14:20 - 2015-09-20 14:20 - 00347864 _____ C:\Users\dieFackel\Desktop\OTL.Txt 2015-09-20 14:20 - 2015-09-20 14:20 - 00181926 _____ C:\Users\dieFackel\Desktop\Extras.Txt 2015-09-20 13:55 - 2015-09-20 13:55 - 06667640 _____ (Piriform Ltd) C:\Users\dieFackel\Downloads\ccsetup509.exe 2015-09-20 13:55 - 2015-09-20 13:55 - 00602112 _____ (OldTimer Tools) C:\Users\dieFackel\Desktop\OTL.exe 2015-09-20 13:55 - 2015-09-20 13:55 - 00002860 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2015-09-20 13:55 - 2015-09-20 13:55 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2015-09-20 13:55 - 2015-09-20 13:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-09-20 13:55 - 2015-09-20 13:55 - 00000000 ____D C:\Program Files\CCleaner 2015-09-20 13:43 - 2015-09-20 13:43 - 00079064 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\ggpcixbf.sys 2015-09-20 13:35 - 2015-09-20 13:54 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-09-20 13:34 - 2015-09-20 13:34 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\dieFackel\Downloads\mbam-setup-2.1.8.1057.exe 2015-09-20 13:34 - 2015-09-20 13:34 - 00001175 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-09-20 13:34 - 2015-09-20 13:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-09-20 13:34 - 2015-09-20 13:34 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-09-20 13:34 - 2015-09-20 13:34 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-09-20 13:34 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-09-20 13:34 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-09-20 13:34 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2015-09-20 13:10 - 2015-09-20 13:10 - 00016148 _____ C:\WINDOWS\system32\SOL-PC_dieFackel_HistoryPrediction.bin 2015-09-19 02:33 - 2015-09-19 02:33 - 00000838 _____ C:\Users\dieFackel\Desktop\CrystalDiskInfo.lnk 2015-09-19 02:33 - 2015-09-19 02:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2015-09-19 02:29 - 2015-09-19 02:29 - 03908184 _____ (Crystal Dew World ) C:\Users\dieFackel\Downloads\CrystalDiskInfo6_5_2-en.exe 2015-09-19 02:21 - 2015-09-19 02:21 - 02354034 _____ C:\Users\dieFackel\Downloads\cpu-z_1.73-en.zip 2015-09-18 19:13 - 2015-09-18 19:13 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2015-09-18 19:13 - 2015-09-18 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-09-18 19:13 - 2015-07-02 10:38 - 00442264 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\asw5478.tmp 2015-09-18 19:13 - 2015-07-02 00:46 - 00364472 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\aswBoot.exe 2015-09-18 19:13 - 2015-07-02 00:46 - 00272248 _____ C:\WINDOWS\system32\Drivers\asw5479.tmp 2015-09-18 19:13 - 2015-07-02 00:46 - 00137288 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\asw548A.tmp 2015-09-18 19:13 - 2015-07-02 00:46 - 00093528 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\asw5474.tmp 2015-09-18 19:13 - 2015-07-02 00:46 - 00089944 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\asw5476.tmp 2015-09-18 19:13 - 2015-07-02 00:46 - 00065736 _____ C:\WINDOWS\system32\Drivers\asw5477.tmp 2015-09-18 19:13 - 2015-07-02 00:46 - 00029168 _____ C:\WINDOWS\system32\Drivers\asw5475.tmp 2015-09-18 19:13 - 2015-07-02 00:45 - 01047320 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\asw5464.tmp 2015-09-18 19:12 - 2015-09-18 19:12 - 00337536 _____ C:\WINDOWS\Minidump\091815-8671-01.dmp 2015-09-18 19:10 - 2015-09-18 19:12 - 00000000 ____D C:\WINDOWS\Minidump 2015-09-18 19:10 - 2015-09-18 19:10 - 00339336 _____ C:\WINDOWS\Minidump\091815-10203-01.dmp 2015-09-17 23:17 - 2015-09-17 23:17 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten 2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 ____D C:\Users\DefaultAppPool 2015-09-17 23:17 - 2015-08-20 13:18 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-09-17 23:17 - 2015-08-06 18:56 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia 2015-09-17 23:17 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-09-17 23:17 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-09-17 23:17 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-09-17 23:17 - 2015-07-10 13:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-09-17 14:07 - 2014-07-24 13:01 - 00028672 _____ () C:\Users\dieFackel\Desktop\memtest.exe 2015-09-17 14:05 - 2015-09-17 14:05 - 00015201 _____ C:\Users\dieFackel\Downloads\MemTest41.zip 2015-09-17 14:04 - 2015-09-17 14:04 - 01457952 _____ C:\Users\dieFackel\Downloads\MemTest - CHIP-Installer.exe 2015-09-09 23:59 - 2015-09-09 23:59 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2015-09-09 23:49 - 2015-09-09 23:57 - 164858324 _____ C:\Users\dieFackel\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_de.exe 2015-09-09 14:54 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-09-09 14:54 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-09-09 14:54 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-09-09 14:54 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-09-09 14:54 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-09-09 14:54 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-09-09 14:54 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-09-09 14:54 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-09-09 14:54 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-09-09 14:54 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-09-09 14:54 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-09-09 14:54 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2015-09-09 14:54 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-09-09 14:54 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-09-09 14:54 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-09-09 14:54 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-09-09 14:54 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2015-09-09 14:54 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-09-09 14:54 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll 2015-09-09 14:54 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll 2015-09-09 14:54 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-09-09 14:54 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-09-09 14:54 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-09-09 14:54 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-09-09 14:54 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-09-09 14:54 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2015-09-09 14:54 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-09-09 14:54 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-09-09 14:54 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2015-09-09 14:54 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll 2015-09-09 14:54 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-09-09 14:54 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-09-09 11:25 - 2015-09-09 11:25 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-09-09 11:25 - 2015-09-09 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-09-07 22:09 - 2015-09-20 13:10 - 00003096 _____ C:\WINDOWS\System32\Tasks\ParkControl 2015-09-07 22:09 - 2015-09-07 22:09 - 00650928 _____ (Bitsum LLC) C:\Users\dieFackel\Downloads\parkcontrolsetup64.exe 2015-09-07 22:09 - 2015-09-07 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParkControl 2015-09-05 14:13 - 2015-09-05 14:13 - 00025163 _____ C:\Users\dieFackel\Downloads\LB160-15D_04(1).zip 2015-09-03 02:33 - 2015-09-03 02:33 - 00000000 ____D C:\Users\dieFackel\AppData\Local\MicrosoftEdge 2015-09-02 14:11 - 2015-09-02 14:11 - 00025163 _____ C:\Users\dieFackel\Downloads\LB160-15D_04.zip 2015-08-31 18:08 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-08-31 18:08 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2015-08-31 18:08 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-08-31 18:08 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2015-08-31 18:08 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll 2015-08-31 18:08 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-08-31 18:08 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-08-31 18:08 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-08-31 18:08 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2015-08-31 18:08 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-08-31 18:08 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-08-31 18:08 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-08-31 18:08 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll 2015-08-31 18:08 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll 2015-08-31 18:08 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-08-31 18:08 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2015-08-31 18:08 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2015-08-31 18:08 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-08-31 18:08 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll 2015-08-31 18:08 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll 2015-08-31 18:08 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll 2015-08-31 18:08 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll 2015-08-31 18:08 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll 2015-08-31 18:08 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll 2015-08-31 18:08 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll 2015-08-31 18:08 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll 2015-08-31 18:08 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-08-31 18:08 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll 2015-08-31 18:08 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll 2015-08-31 18:08 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2015-08-31 18:08 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-08-31 18:08 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2015-08-31 18:08 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll 2015-08-31 18:08 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll 2015-08-31 18:08 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll 2015-08-31 18:08 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll 2015-08-31 18:08 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll 2015-08-31 18:08 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll 2015-08-31 18:08 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2015-08-31 18:08 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll 2015-08-31 18:08 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList 2015-08-29 15:43 - 2015-08-29 15:43 - 00000000 ____D C:\Users\dieFackel\AppData\Local\YSearchUtil 2015-08-29 15:43 - 2015-08-29 15:43 - 00000000 ____D C:\Program Files (x86)\Yahoo! 2015-08-29 15:40 - 2015-08-29 15:40 - 00000000 _____ C:\WINDOWS\SysWOW64\REN21DD.tmp 2015-08-29 15:39 - 2015-08-29 15:40 - 00000000 ____D C:\Users\dieFackel\.oracle_jre_usage 2015-08-29 15:39 - 2015-08-29 15:39 - 00000000 ____D C:\Users\dieFackel\AppData\Roaming\Sun 2015-08-28 00:16 - 2015-08-28 00:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-08-22 19:29 - 2015-08-22 19:29 - 00000208 _____ C:\Users\dieFackel\Desktop\Total War SHOGUN 2.url ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-09-20 17:36 - 2014-03-16 11:51 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-09-20 17:36 - 2014-01-24 20:35 - 00000000 ____D C:\Users\dieFackel\AppData\Local\Battle.net 2015-09-20 17:35 - 2013-08-18 23:34 - 00000000 ____D C:\Users\dieFackel\AppData\Roaming\Skype 2015-09-20 17:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru 2015-09-20 16:59 - 2013-08-28 19:37 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-20 16:40 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log 2015-09-20 16:40 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-09-20 15:13 - 2014-01-24 20:35 - 00000000 ____D C:\Program Files (x86)\Battle.net 2015-09-20 14:56 - 2015-04-13 22:18 - 00000000 ____D C:\Users\dieFackel\Desktop\University 2015-09-20 14:26 - 2014-06-15 14:32 - 00000000 ____D C:\Users\dieFackel\Documents\WB Games 2015-09-20 14:26 - 2013-08-19 19:19 - 00000000 ____D C:\Users\dieFackel\Documents\my games 2015-09-20 14:23 - 2014-09-18 00:41 - 00000000 ____D C:\Users\dieFackel\AppData\Local\LOOT 2015-09-20 14:18 - 2015-07-10 13:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-09-20 14:18 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-09-20 13:59 - 2013-08-28 19:37 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-09-20 13:43 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Branding 2015-09-20 13:43 - 2013-08-19 19:13 - 00000000 ____D C:\ProgramData\APN 2015-09-20 13:13 - 2015-08-19 23:43 - 00004162 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5C282664-0F36-4F05-B367-33191A713477} 2015-09-19 02:22 - 2015-04-13 22:33 - 00000000 ___RD C:\Users\dieFackel\Desktop\Programme 2015-09-18 23:03 - 2013-12-29 18:01 - 00000000 ____D C:\Users\dieFackel\AppData\Local\DayZ 2015-09-18 20:25 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\restore 2015-09-18 20:12 - 2015-08-06 19:47 - 00000000 __SHD C:\Recovery 2015-09-18 19:19 - 2015-08-06 18:51 - 02077126 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-09-18 19:19 - 2015-07-10 18:34 - 00883584 _____ C:\WINDOWS\system32\perfh007.dat 2015-09-18 19:19 - 2015-07-10 18:34 - 00195718 _____ C:\WINDOWS\system32\perfc007.dat 2015-09-18 19:13 - 2013-08-19 00:49 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys 2015-09-18 19:13 - 2013-08-19 00:44 - 00004006 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2015-09-18 19:13 - 2013-08-19 00:18 - 00000144 _____ C:\service.log 2015-09-18 19:12 - 2015-08-06 18:50 - 00000000 ____D C:\ProgramData\NVIDIA 2015-09-18 19:12 - 2015-07-21 21:57 - 589516284 _____ C:\WINDOWS\MEMORY.DMP 2015-09-18 19:12 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-09-17 00:00 - 2015-08-06 18:53 - 00000000 ____D C:\Users\dieFackel 2015-09-16 13:54 - 2013-08-28 19:37 - 00004190 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-16 13:54 - 2013-08-28 19:37 - 00003958 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-16 13:35 - 2015-08-06 19:02 - 00000000 ____D C:\Users\dieFackel\AppData\Local\Packages 2015-09-16 13:15 - 2015-08-06 19:05 - 00000000 ____D C:\Users\dieFackel\OneDrive 2015-09-16 13:14 - 2015-07-10 14:20 - 00219888 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-09-16 13:12 - 2015-07-10 18:46 - 00000000 ____D C:\Program Files\Windows Journal 2015-09-16 13:12 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-09-16 13:12 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-09-16 02:17 - 2013-10-01 22:23 - 00000000 ____D C:\Users\dieFackel\AppData\Roaming\TS3Client 2015-09-15 22:49 - 2015-04-14 11:46 - 00000080 _____ C:\Users\dieFackel\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦 2015-09-15 16:01 - 2015-08-06 19:05 - 00002406 _____ C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-09-11 18:01 - 2014-07-23 20:53 - 00000000 ____D C:\Users\dieFackel\Desktop\Hearthstone Screenshots 2015-09-10 14:20 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-09-10 14:19 - 2013-08-18 21:54 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-09-09 11:25 - 2013-08-18 23:34 - 00000000 ____D C:\ProgramData\Skype 2015-09-08 13:12 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache 2015-09-07 12:37 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-09-07 12:36 - 2015-08-06 18:48 - 00007704 _____ C:\WINDOWS\PFRO.log 2015-09-07 12:36 - 2013-08-18 23:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-09-06 13:08 - 2015-08-06 19:10 - 00000000 ____D C:\Users\dieFackel\AppData\Local\Comms 2015-08-29 16:07 - 2013-10-19 17:01 - 00000000 ____D C:\ProgramData\Oracle 2015-08-29 15:40 - 2015-07-28 13:44 - 00000000 ____D C:\Program Files\Java 2015-08-29 15:40 - 2014-10-21 17:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-08-29 15:40 - 2013-08-18 23:30 - 00000000 ____D C:\Program Files (x86)\Java 2015-08-29 15:39 - 2015-07-28 13:44 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2015-08-27 11:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2015-08-26 18:37 - 2013-08-18 21:54 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-08-21 22:49 - 2015-04-13 21:04 - 00000000 ____D C:\Program Files (x86)\Rockstar Games 2015-08-21 22:48 - 2015-04-13 21:04 - 00000000 ____D C:\Program Files\Rockstar Games ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2013-10-01 20:17 - 2013-10-01 20:17 - 0000037 ___SH () C:\Users\dieFackel\AppData\Local\70149b02515b3bb20dd492.47983420 2015-02-02 04:09 - 2015-02-02 04:09 - 0000000 ___SH () C:\Users\dieFackel\AppData\Local\LumaEmu 2015-06-21 20:51 - 2015-06-21 20:51 - 0009494 _____ () C:\Users\dieFackel\AppData\Local\recently-used.xbel 2015-04-21 13:24 - 2015-04-21 13:24 - 0007603 _____ () C:\Users\dieFackel\AppData\Local\Resmon.ResmonCfg 2014-10-31 15:44 - 2014-10-31 15:44 - 0000000 _____ () C:\Users\dieFackel\AppData\Local\{A310A91F-EC09-4402-A3F7-8F8D2A6ACFCD} 2013-09-01 13:00 - 2013-09-01 13:00 - 0000057 _____ () C:\ProgramData\Ament.ini 2015-08-06 18:50 - 2015-08-06 18:50 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Einige Dateien in TEMP: ==================== C:\Users\dieFackel\AppData\Local\Temp\jre-8u60-windows-au.exe C:\Users\dieFackel\AppData\Local\Temp\Uninstall.exe C:\Users\dieFackel\AppData\Local\Temp\ytb.exe C:\Users\dieFackel\AppData\Local\Temp\__pythonRunner.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-09-11 13:22 ==================== Ende von FRST.txt ============================ |
|
20.09.2015, 16:48
| #5 |
| | Malware Befall? Addition Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:15-09-2015
durchgeführt von dieFackel (2015-09-20 17:40:16)
Gestartet von C:\Users\dieFackel\Desktop
Windows 10 Home (X64) (2015-08-06 17:02:52)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2542595381-3183390579-2223026719-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2542595381-3183390579-2223026719-503 - Limited - Disabled)
dieFackel (S-1-5-21-2542595381-3183390579-2223026719-1000 - Administrator - Enabled) => C:\Users\dieFackel
Gast (S-1-5-21-2542595381-3183390579-2223026719-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2542595381-3183390579-2223026719-1003 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.08 - GIGABYTE)
µTorrent (HKLM-x32\...\uTorrent) (Version: 3.3.0.29625 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.293 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
AutoGreen B10.0517.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.0517.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AutoHotkey 1.1.15.03 (HKLM\...\AutoHotkey) (Version: 1.1.15.03 - Lexikos)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2218 - AVAST Software)
Baldur's Gate II: Enhanced Edition (HKLM-x32\...\Steam App 257350) (Version: - Beamdog)
Banished (HKLM-x32\...\Steam App 242920) (Version: - Shining Rock Software LLC)
Batman: Arkham City GOTY (HKLM-x32\...\Steam App 200260) (Version: - Rocksteady Studios)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Browser Configuration Utility (HKLM-x32\...\{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}) (Version: 1.1.18.0 - DeviceVM Inc.) <==== ACHTUNG
Capsule (HKLM-x32\...\Capsule) (Version: 1.0.000 - Green Man Gaming Limited)
CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Convoy (HKLM-x32\...\Steam App 318230) (Version: - Convoy Games)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
DARK SOULS™ II (HKLM-x32\...\Steam App 236430) (Version: - FromSoftware, Inc)
Darkest Dungeon (HKLM-x32\...\Steam App 262060) (Version: - Red Hook Studios)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version: - Larian Studios)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.3 - Electronic Arts)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Easy Tune 6 B10.0516.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B10.0516.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1 (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.17 - Echobit, LLC)
Evolve (HKLM-x32\...\Steam App 273350) (Version: - Turtle Rock Studios)
FormatFactory 3.1.1 (HKLM-x32\...\FormatFactory) (Version: 3.1.1 - Free Time)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Free Audio Converter version 5.0.57.301 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.57.301 - DVDVideoSoft Ltd.)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version: - Subset Games)
Gigabyte Raid Configurer (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0001 - GIGABYTE Technologies, Inc.)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
GOG.com Downloader version 3.6.0 (HKLM-x32\...\{456A5815-604D-4D72-94DF-346D2B978A59}_is1) (Version: 3.6.0 - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.93 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hotline Miami 2 - Wrong Number (HKLM-x32\...\1424773427_is1) (Version: 2.0.0.1 - GOG.com)
HP Officejet 4630 series - Grundlegende Software für das Gerät (HKLM\...\{CCF92FFE-5341-4263-9048-472D9E3C5703}) (Version: 32.0.1180.44630 - Hewlett-Packard Co.)
HP Officejet 6700 - Grundlegende Software für das Gerät (HKLM\...\{9086D601-50B7-491D-A143-28193DADE36B}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
inSSIDer 3 (HKLM-x32\...\{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}) (Version: 3.0.7.48 - MetaGeek, LLC)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Link Shell Extension (HKLM\...\HardlinkShellExt) (Version: 3.8.6.0 - Hermann Schinagl)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
METAL GEAR RISING: REVENGEANCE (HKLM-x32\...\Steam App 235460) (Version: - PlatinumGames)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 40.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 de)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.18.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.18.0 - NEC Electronics Corporation) Hidden
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 352.86 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.3.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.22 - NVIDIA Corporation)
NVIDIA Grafiktreiber 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
ON_OFF Charge B10.0427.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.5.1.571 - Electronic Arts, Inc.)
Papers, Please (HKLM-x32\...\GOGPACKPAPERSPLEASE_is1) (Version: 2.4.0.10 - GOG.com)
ParkControl (HKLM-x32\...\ParkControl) (Version: 0.0.3.0 - Bitsum)
Project Zomboid (HKLM-x32\...\Steam App 108600) (Version: - The Indie Stone)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.18.322.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
ROCCAT Isku Keyboard Driver (HKLM-x32\...\{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}) (Version: - Roccat GmbH)
ROCCAT Kone XTD Mouse Driver (HKLM-x32\...\{7133137D-DF48-4522-AD88-13C82B7D0A63}) (Version: - Roccat GmbH)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.5 - Rockstar Games)
Samsung Universal Print Driver 2 (HKLM-x32\...\Samsung Universal Print Driver 2) (Version: 2.50.06.00 - Samsung Electronics Co., Ltd.)
Secunia PSI (3.0.0.7011) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.7011 - Secunia)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.)
Sid Meier's Civilization: Beyond Earth (HKLM-x32\...\Steam App 65980) (Version: - Firaxis Games)
Sitecom Europe BV Wireless LAN (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.6.0 - Sitecom)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Sony PC Companion 2.10.275 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.275 - Sony)
Spelunky (HKLM-x32\...\Steam App 239350) (Version: - )
Star Wars: Empire at War Gold (HKLM-x32\...\Steam App 32470) (Version: - Petroglyph)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
StarCraft II - Legacy of the Void Beta (HKLM-x32\...\StarCraft II - Legacy of the Void Beta) (Version: - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
StarMade Demo (HKLM-x32\...\Steam App 335180) (Version: - Schine, GmbH)
System Requirements Lab (HKLM-x32\...\{0F659036-14C7-4622-9505-35A0DC93526A}) (Version: 6.1.3.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Banner Saga (HKLM-x32\...\Steam App 237990) (Version: - Stoic)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.7.0 - GOG.com)
The Witcher 3: Wild Hunt - Alternative Look for Triss (HKLM-x32\...\Alternative Look for Triss_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Alternative Look for Yennefer (HKLM-x32\...\Alternative Look for Yennefer_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Ballad Heroes - Neutral Gwent Card Set (HKLM-x32\...\Ballad Heroes - Neutral Gwent Card Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Beard and Hairstyle Set (HKLM-x32\...\Beard and Hairstyle Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Elite Crossbow Set (HKLM-x32\...\Elite Crossbow Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Contract - Skellige's Most Wanted (HKLM-x32\...\New Quest - Contract: Skellige's Most Wanted_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Contract Missing Miners (HKLM-x32\...\New Quest - Contract Missing Miners_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Fool's Gold (HKLM-x32\...\New Quest - Fool's Gold_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Scavenger Hunt - Wolf School Gear (HKLM-x32\...\New Quest - Scavenger Hunt: Wolf School Gear_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Where the Cat and Wolf Play... (HKLM-x32\...\New Quest - Where the Cat and Wolf Play..._is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Nilfgaardian Armor Set (HKLM-x32\...\Nilfgaardian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Skellige Armor Set (HKLM-x32\...\Skellige Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Temerian Armor Set (HKLM-x32\...\Temerian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version: - 11 bit studios)
Total War: ATTILA (HKLM-x32\...\Steam App 325610) (Version: - Creative Assembly)
Total War: SHOGUN 2 (HKLM-x32\...\Steam App 34330) (Version: - The Creative Assembly)
Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version: - Tunngle.net GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Wasteland 2 Ranger Edition MULTi7 Update 1 1.0 (HKLM-x32\...\Wasteland 2 Ranger Edition MULTi7 Update 1 1.0) (Version: - )
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version: - Yahoo Inc.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
19-09-2015 00:28:20 Windows Update
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {007FD569-54C3-49A3-8253-0E0F395482D0} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {0383F50C-10FC-4040-A88B-255E40ED0718} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {084C4971-47A8-45F9-B3D4-6428B1DEE881} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {12D881B8-E734-416A-A028-6015E7EC6595} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {150F6739-4D66-4199-B9E0-4A6036F6D1E3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {184FF6BF-AE08-4746-B1ED-58A09F572B43} - System32\Tasks\ParkControl => D:\Dateien\ParkControl\parkcontrol.exe [2015-09-06] (Bitsum LLC)
Task: {19157D73-6A5A-4235-A1FB-5426DEEA7A5E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {1E3858FF-E903-44C5-B3FD-123E185A4418} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {28815D36-92F8-47FB-8122-5993A2D7FAE0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {2956CF19-F792-4A9B-8BEE-AD0E8AC9BB44} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {2FB4C784-7B77-4FC1-AD9E-BDB7965DB6AA} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-18] (Avast Software s.r.o.)
Task: {310AAB93-F31B-419C-AC9C-1341BFDD3539} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {33EF87E4-1891-4EEF-A7C9-E6E04D9214E0} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {377E7CDC-2A35-4D14-A9D8-49128516DB1A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {3FD4EB54-C2D6-4967-BB88-80BBF8C40A43} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-20] (Piriform Ltd)
Task: {44FE11CF-3C38-40A3-9493-A4A49EA471C3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {4DA4623F-2143-4DED-8840-199F2039EC86} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {537EDD82-D044-4E4B-A66C-5101874B229E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {59D77CEA-ED7B-4500-89C9-0232E7206C55} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11] (Adobe Systems Incorporated)
Task: {5EF69986-67D5-4614-B028-C38706C7912F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {5F71DF05-892E-400C-BCFA-20C877FF8FFB} - \ASP -> Keine Datei <==== ACHTUNG
Task: {62161B17-BBE0-4CC8-84E3-8F778C923A0F} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {66CA6249-C5C4-42EA-A114-32777C647074} - System32\Tasks\{CEED1077-07CF-4FE6-BA38-F89840399C6C} => pcalua.exe -a "D:\Spiele\Steam\SteamApps\common\The Talos Principle\Uninstall.exe"
Task: {6C6B408C-ABB7-4CDE-A2FC-598219EC69AF} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {739DA745-42F7-41D9-9FD8-F145E77A2852} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {759FD429-B6FA-4A99-9616-3B9517B3B377} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {75DD3EDE-5FD2-4C70-8102-FF1C5D38B12A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {7E7CF516-AEF8-4C55-8ACC-86E52E53C5E7} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {8928D6C7-7F61-40AF-BCCC-7B0E5D089856} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {8FA47A0E-248D-4A4C-ABC7-739455135FE2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {99F43B2C-4B9B-458F-8253-C56307D66F25} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9B99641C-82AD-430E-99D3-95403253A9F4} - System32\Tasks\{1B1DFA78-A4FB-400D-8359-E064CBA855AC} => pcalua.exe -a C:\Users\dieFackel\Downloads\AdobeAIRInstaller.exe -d C:\Users\dieFackel\Downloads
Task: {9DF62012-097A-432A-A864-896C0D0A58C7} - System32\Tasks\{17B1D9FC-619A-4019-9106-9E42DBD0F377} => pcalua.exe -a "D:\Spiele\Endless Legend\Uninstall.exe"
Task: {A02D7968-4E72-40FF-BFD5-EE9EFB9F69B1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {A0C3ED9C-6CCF-46DD-AFC1-B7A92242AEDB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {A3B958EF-6EA8-46FD-BC9C-7D831347D2F2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {AAF7903A-042E-445F-BCF0-D2989889D7AF} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {B0E4BE89-8ACC-45E6-AA66-80418E141D6B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {B3BA9488-CC8E-4610-9991-318DF6AC4EA5} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {BA7FDBED-76CC-4426-9BB3-4E40EB345604} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {C209C164-6EB7-4B8F-9858-E6E9D867CC1A} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {C7C0D305-2AE3-428A-9A0F-0CE0850295B0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {DA5E6DF4-4A57-477B-9EED-99B2E8A73250} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {E2822C6F-6FA1-4C79-8CBA-E875A3523E86} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {EDBF36E0-04A5-40EE-B88E-32965CAB73DC} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {F1B6BD64-4062-4FEA-A3EE-F93D36875EFD} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {F4ED529C-8F47-43CD-92D4-0FB6C947774B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-08-06 19:45 - 2015-08-06 19:45 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-04-23 19:40 - 2014-04-16 10:22 - 00029184 _____ () C:\WINDOWS\System32\usp02l.dll
2015-08-19 18:31 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2013-08-19 00:18 - 2009-08-24 14:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2013-08-19 00:21 - 2010-01-19 04:31 - 00072304 ____R () C:\Windows\SysWOW64\XSrvSetup.exe
2015-04-23 19:43 - 2014-11-26 13:07 - 00118576 _____ () C:\Windows\SysWOW64\SecUPDUtilSvc.exe
2015-08-06 18:50 - 2015-07-23 03:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-31 18:08 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2012-06-18 17:24 - 2012-06-18 17:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2015-08-31 18:08 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2015-08-11 21:51 - 2015-08-03 03:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 18:31 - 2015-08-11 10:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-11 21:51 - 2015-08-03 03:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-08-24 20:28 - 2015-08-24 20:28 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-07-02 00:45 - 2015-07-02 00:45 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-07-02 00:45 - 2015-07-02 00:45 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-09-18 19:02 - 2015-09-18 19:02 - 02965504 _____ () C:\Program Files\AVAST Software\Avast\defs\15091801\algo.dll
2015-09-20 13:58 - 2015-09-20 13:58 - 02965504 _____ () C:\Program Files\AVAST Software\Avast\defs\15092000\algo.dll
2013-08-19 00:18 - 2009-03-13 11:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-05-22 16:45 - 2015-05-01 18:52 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2013-08-19 00:15 - 2012-06-17 11:20 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll
2009-06-27 10:11 - 2009-06-27 10:11 - 00503202 _____ () C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll
2014-06-09 04:02 - 2010-11-04 11:48 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Isku Keyboard\hiddriver.dll
2015-07-02 00:45 - 2015-07-02 00:46 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-08-03 17:42 - 2015-07-03 18:12 - 00778240 _____ () D:\Spiele\Steam\SDL2.dll
2015-01-20 19:25 - 2015-07-03 18:12 - 04962816 _____ () D:\Spiele\Steam\v8.dll
2014-08-03 17:42 - 2015-08-19 22:39 - 02413248 _____ () D:\Spiele\Steam\video.dll
2015-01-20 19:25 - 2015-07-03 18:12 - 01556992 _____ () D:\Spiele\Steam\icui18n.dll
2015-01-20 19:25 - 2015-07-03 18:12 - 01187840 _____ () D:\Spiele\Steam\icuuc.dll
2014-08-29 17:22 - 2014-12-01 23:31 - 02396672 _____ () D:\Spiele\Steam\libavcodec-56.dll
2014-08-29 17:22 - 2014-12-01 23:31 - 00479744 _____ () D:\Spiele\Steam\libavformat-56.dll
2014-08-29 17:22 - 2014-12-01 23:31 - 00332800 _____ () D:\Spiele\Steam\libavresample-2.dll
2014-08-29 17:22 - 2014-12-01 23:31 - 00442880 _____ () D:\Spiele\Steam\libavutil-54.dll
2014-08-29 17:22 - 2014-12-01 23:31 - 00485888 _____ () D:\Spiele\Steam\libswscale-3.dll
2014-08-03 17:42 - 2015-08-19 22:39 - 00704192 _____ () D:\Spiele\Steam\bin\chromehtml.DLL
2015-07-22 19:33 - 2015-07-27 03:13 - 00171008 _____ () D:\Spiele\Steam\bin\openvr_api.dll
2014-08-03 17:42 - 2015-07-03 18:12 - 39553928 _____ () D:\Spiele\Steam\bin\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\Control Panel\Desktop\\Wallpaper -> D:\Dateien\Bilder\Wallpaper\song-of-ice-and-fire-a-song-of-ice-and-fire-game-of-thrones-game-of-thrones-serial-book.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\...\StartupApproved\StartupFolder: => "Sitecom Wireless Utility.lnk"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\StartupApproved\Run: => "EvolveClient"
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\StartupApproved\Run: => "Sony PC Companion"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{3BC6CFE2-7EA2-4011-84BA-7FEED091D83A}] => (Allow) D:\Dateien\Echobit\Evolve\EvolveClient.exe
FirewallRules: [{61375D69-A18E-4803-8779-D8BF39D6268A}] => (Allow) D:\Dateien\Echobit\Evolve\EvoSvc.exe
FirewallRules: [UDP Query User{6BD38B9B-C5B3-444B-9445-275EE4EF4F01}D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe] => (Allow) D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe
FirewallRules: [TCP Query User{0FFDD242-BB2F-49BF-905C-5B05E6D833B6}D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe] => (Allow) D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe
FirewallRules: [{37DBD5E1-76BC-46E5-8F23-179DADB6C408}] => (Allow) D:\Spiele\Steam\SteamApps\common\Star Wars Empire at War\runme2.exe
FirewallRules: [{F1DBD15E-DA8E-47A6-9329-BFD53767D7C6}] => (Allow) D:\Spiele\Steam\SteamApps\common\Star Wars Empire at War\runme2.exe
FirewallRules: [{0C591109-FBC6-4F73-BBBB-61092B9BB943}] => (Allow) D:\Spiele\Steam\SteamApps\common\Star Wars Empire at War\runme.exe
FirewallRules: [{131CBD8F-19F4-4077-AA23-2E3A9B932972}] => (Allow) D:\Spiele\Steam\SteamApps\common\Star Wars Empire at War\runme.exe
FirewallRules: [UDP Query User{AC4641F8-12FC-420F-823F-EFFC3F28FDBE}C:\program files\java\jre1.8.0_51\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\java.exe
FirewallRules: [TCP Query User{AA80F67F-5B29-4F21-AF43-610BD2557134}C:\program files\java\jre1.8.0_51\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\java.exe
FirewallRules: [UDP Query User{B0847E20-BD2F-4CE3-81BD-B269F8AE2DCE}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{99791AC9-E644-49DE-86C4-F301DA9B706F}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{52E2A39D-CDF8-4BD2-A960-F3FB7AC8F64D}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{D499F6AB-D5DA-4AE8-B1FE-0C5672BDAAEC}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{49FBEF79-5265-4DBB-80C5-04929B850A06}] => (Allow) D:\Spiele\Steam\SteamApps\common\StarMade\StarMade-starter.exe
FirewallRules: [{96EBA60C-D22C-4AE4-B9FF-48344DCD1A8B}] => (Allow) D:\Spiele\Steam\SteamApps\common\StarMade\StarMade-starter.exe
FirewallRules: [UDP Query User{0D90916A-B2DB-4CD4-9340-B147B03340B9}D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe
FirewallRules: [TCP Query User{679176C4-B17C-48AC-9438-D72A64AADF45}D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe
FirewallRules: [UDP Query User{94A160E1-66C3-4B87-9603-39556EFD9D49}C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe] => (Allow) C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe
FirewallRules: [TCP Query User{89EFC158-2255-4AD5-AD13-C0E7D8C6DDF0}C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe] => (Allow) C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe
FirewallRules: [{47331124-787A-4A26-A875-7E33D2E60C2E}] => (Allow) D:\Spiele\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{0BB03995-1E3A-4C68-839F-2683138514C7}] => (Allow) D:\Spiele\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{A4AE1FED-1B2E-4400-B66B-44EF7AB1085C}] => (Allow) D:\Spiele\Steam\SteamApps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{7F4738E0-D875-4AAA-8603-B22CCD24074A}] => (Allow) D:\Spiele\Steam\SteamApps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{C8F9D5F7-0F0E-4656-B32A-EC826FEB347F}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveGame\Bin64_SteamRetail\Evolve.exe
FirewallRules: [{4E00D23C-FC6C-460D-B09D-C74E9829E1E6}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveGame\Bin64_SteamRetail\Evolve.exe
FirewallRules: [{260998F8-92AC-4377-B056-ABB93BE243F7}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{E20C141F-B4E3-40B8-9EE2-4E3D0395E972}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{6680ACBA-36E3-4AAD-B9B0-01E7654230F0}] => (Block) D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe
FirewallRules: [{9A344900-C141-44D8-A5DD-68DA9610A391}] => (Block) D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe
FirewallRules: [UDP Query User{C27FDE17-733B-4E36-8FB2-179CA232B7F5}D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe
FirewallRules: [TCP Query User{44A642B9-0B12-4F97-84BE-93251718E92E}D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe
FirewallRules: [{50A0F398-48A6-498F-9B67-4D5C9A071F1B}] => (Allow) C:\Steam\DayZ\DayZ_BE.exe
FirewallRules: [{F7EC3CDC-284C-442A-BB04-2AC14E401D19}] => (Allow) C:\Steam\DayZ\DayZ_BE.exe
FirewallRules: [{8B769242-BA38-42BD-B61E-C869E9D4AFD6}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{7E08556E-1E48-491D-9432-D0CD72FB0C37}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{8B88620A-E50A-426E-949A-8CC410A9D244}] => (Allow) D:\Spiele\Steam\SteamApps\common\Convoy\Convoy.exe
FirewallRules: [{1007BD7E-888D-41BC-9DF6-6016D0A2C516}] => (Allow) D:\Spiele\Steam\SteamApps\common\Convoy\Convoy.exe
FirewallRules: [{E737A0A8-401F-4D1D-BDDD-A74D8366577F}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe
FirewallRules: [{DA0A9DB6-75C2-4D33-AF3E-957E96B0EF8D}] => (Allow) C:\Users\dieFackel\AppData\Local\Temp\InsA09A\Setup.exe
FirewallRules: [{85C5C8CE-4D27-4531-A568-5EFDE17198F5}] => (Allow) C:\Users\dieFackel\AppData\Local\Temp\InsA09A\Setup.exe
FirewallRules: [{B4495F83-B379-4899-85D3-E45164AF6B0E}] => (Allow) C:\Users\dieFackel\AppData\Local\Temp\InsA09A\Setup.exe
FirewallRules: [{454B6152-3A20-4BB5-852C-649F4293A1FA}] => (Allow) C:\Users\dieFackel\AppData\Local\Temp\InsA09A\Setup.exe
FirewallRules: [{C536F582-753F-4E9C-976A-1D730B05E962}] => (Allow) C:\Users\dieFackel\AppData\Local\Temp\InsA09A\Setup.exe
FirewallRules: [{E30A1B3E-FE21-4810-B6DC-2DF67F566FAC}] => (Block) D:\spiele\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [{10F2AA7E-B647-4859-A997-8DCA038F947F}] => (Block) D:\spiele\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{71783481-456F-4E47-B816-DE0237716065}D:\spiele\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\spiele\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{E264AEE9-98D1-4F0C-A8D8-EF320B419BA4}D:\spiele\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\spiele\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [{A2F61F36-90A6-400C-8F5B-32D7A043FC06}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{6FCEA93C-55AE-4EB2-98EB-B68ED3541B24}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{874CB0D8-1A02-4AC9-A166-9F8293E19B86}] => (Allow) C:\Steam\Total War Attila\launcher\launcher.exe
FirewallRules: [{C94F57A0-0A4A-470F-B710-2DAAB728AFB3}] => (Allow) C:\Steam\Total War Attila\launcher\launcher.exe
FirewallRules: [{732BA3E2-1182-4397-8D28-A9A2C88849AA}] => (Block) D:\Spiele\GOG Games\Hotline Miami 2 - Wrong Number\HotlineMiami2.exe
FirewallRules: [{5712810A-D8E8-47F1-867C-8A567865F1FA}] => (Allow) D:\Spiele\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{121C2BBA-ADCF-4A00-A003-8E4DC7C19F42}] => (Allow) D:\Spiele\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [UDP Query User{01F3AAB2-F100-486D-9ECE-B0CE0B6D9092}D:\spiele\der herr der ringe online\lotroclient.exe] => (Allow) D:\spiele\der herr der ringe online\lotroclient.exe
FirewallRules: [TCP Query User{7E0D2860-2926-4758-9E61-C3D62A6EE882}D:\spiele\der herr der ringe online\lotroclient.exe] => (Allow) D:\spiele\der herr der ringe online\lotroclient.exe
FirewallRules: [UDP Query User{EF620606-1FAD-4D0F-A60A-B3D46FA847CD}D:\spiele\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\spiele\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [TCP Query User{E6809934-F0AB-44EA-92A3-4F06E02800A4}D:\spiele\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\spiele\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{5185CE5F-6F3A-4005-9FFA-99A07BFC30AF}] => (Block) D:\Spiele\The Escapists\TheEscapists.exe
FirewallRules: [UDP Query User{994ABB63-697E-4845-8262-7188C1B3840C}C:\steam\total war attila\attila.exe] => (Allow) C:\steam\total war attila\attila.exe
FirewallRules: [TCP Query User{E16FC49E-8D94-4B67-A2C9-9950910F8D4F}C:\steam\total war attila\attila.exe] => (Allow) C:\steam\total war attila\attila.exe
FirewallRules: [UDP Query User{3F166EB9-307C-4A2B-9432-B9F44FD2DAB3}D:\spiele\steam\steamapps\common\total war attila\attila.exe] => (Allow) D:\spiele\steam\steamapps\common\total war attila\attila.exe
FirewallRules: [TCP Query User{AB7ED2C4-B673-4C55-83A0-5E725CB106E4}D:\spiele\steam\steamapps\common\total war attila\attila.exe] => (Allow) D:\spiele\steam\steamapps\common\total war attila\attila.exe
FirewallRules: [{A69E166B-B8ED-48C9-8F37-7BC3560B9061}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Attila\launcher\launcher.exe
FirewallRules: [{A0EFB1FA-5906-4CDD-B7CD-CF975BD867FD}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Attila\launcher\launcher.exe
FirewallRules: [{0EF27D38-E34C-49C9-8FFF-A8DEE122C744}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{D9020509-1915-46C3-8F77-73656050A0ED}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{4701180F-828D-4A7D-BEE2-0525E357EEDF}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{042A055D-138C-4D24-943A-D29B3400242B}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{84E05554-EBD4-4F2C-935A-8476C0213A1B}] => (Allow) D:\Dateien\Winamp\winamp.exe
FirewallRules: [{AF973B7E-92F7-4563-88EC-4D14DF7F570A}] => (Allow) D:\Dateien\Winamp\winamp.exe
FirewallRules: [{65ED1D28-06B3-4520-B7A1-C1B0B3C19453}] => (Block) D:\Spiele\Dying Light - Season Pass Edition\Dying Light - Season Pass Edition\DyingLightGame.exe
FirewallRules: [{B8262556-3A71-44D0-844E-C47F3BF5FE9C}] => (Block) D:\Spiele\Dying Light - Season Pass Edition\DyingLightGame.exe
FirewallRules: [{47C063DB-E35A-4680-ACF9-074E46A11E7F}] => (Block) D:\Spiele\Steam\SteamApps\common\The Talos Principle\Bin\TalosLauncher.exe
FirewallRules: [{9A669733-4F0E-4354-A9F2-783A3E91ABC0}] => (Block) D:\Spiele\Steam\SteamApps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{E51C2980-FA5D-4DD3-9111-65127B787228}] => (Block) D:\Spiele\Steam\SteamApps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{9E96DFA9-52C0-465E-ABC3-2E5E6D034881}] => (Block) D:\Spiele\Steam\SteamApps\common\The Talos Principle\original\Talos_Unrestricted.exe
FirewallRules: [{A6441CE9-9B08-426E-BD68-524B7CA68ACA}] => (Block) D:\Spiele\Steam\SteamApps\common\The Talos Principle\original\Talos.exe
FirewallRules: [{66BD3D56-1118-4FC3-9E54-80150813DA09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{EE93AA36-B737-4CE9-A350-E7329041BB81}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{0C0652B7-FCB4-46F4-B493-383EA1E10206}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveBeta\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{77F7FC88-7D10-47A1-A934-A458A2FD7952}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveBeta\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{5BEEE90D-0BBE-4967-8B44-654F73F5E717}] => (Allow) D:\Spiele\Steam\SteamApps\common\the banner saga factions\win32\The Banner Saga Factions.exe
FirewallRules: [{4E55DE75-0541-4FFF-A27A-B8E7A0708C41}] => (Allow) D:\Spiele\Steam\SteamApps\common\the banner saga factions\win32\The Banner Saga Factions.exe
FirewallRules: [{BD02DD28-83A4-40BE-BCB0-A01DEB78070A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{791AE8AB-8F4F-4403-997C-7D6431C71758}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{200F8714-305F-4403-A7E8-177A79F7581D}] => (Allow) D:\Spiele\Steam\SteamApps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{CBC7F8AB-00EB-4892-9F01-78F6C467AA2D}] => (Allow) D:\Spiele\Steam\SteamApps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{6BF50E30-7EB9-4353-BC55-1167AFD223F4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{B030A168-6281-48CA-9621-76A8AEA3AF09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{BAEB663C-7F5E-4F29-A51D-1235BF4C7897}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{B83D49E3-C9EE-49E5-93EC-0C2A0ECB1797}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{A58FCE97-E1C6-441E-BCA5-4F1A94A75D35}] => (Allow) D:\Spiele\Steam\SteamApps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{6824D999-E278-4D96-A8EB-3C4D6761872C}] => (Allow) D:\Spiele\Steam\SteamApps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{90C2CADE-0B84-499A-B2F0-315635D1D7C9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3668\Agent.exe
FirewallRules: [{FF29EDB2-18BB-4CCD-896A-52444C37CE8C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3668\Agent.exe
FirewallRules: [{7ABD6415-AAE2-4A3F-AD8C-0056BCBE5447}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{80C91602-0A9B-403A-8488-F952FA86D28F}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{6DB10C88-5451-485A-B1DB-C7936DD88213}] => (Allow) D:\Spiele\Steam\SteamApps\common\ProjectZomboid\ProjectZomboid32.exe
FirewallRules: [{50CA82F3-6FD3-4198-BC73-5E7FB0BEC229}] => (Allow) D:\Spiele\Steam\SteamApps\common\ProjectZomboid\ProjectZomboid32.exe
FirewallRules: [{4110D224-9A94-479B-BDD6-927B5E0CD22F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{B5CC3189-6AFD-4B0A-BF7B-606DB90611A2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [UDP Query User{721024D8-CA0B-4E5A-8BD3-1DD886EF554B}C:\steam\dayz\dayz_experimental.exe] => (Allow) C:\steam\dayz\dayz_experimental.exe
FirewallRules: [TCP Query User{C7489638-ABE6-4C6E-9EF0-20E06C24DBF4}C:\steam\dayz\dayz_experimental.exe] => (Allow) C:\steam\dayz\dayz_experimental.exe
FirewallRules: [{52E231DB-F5D6-4028-BEC4-8E8ED67F12AD}] => (Allow) D:\Spiele\StarCraft II\StarCraft II.exe
FirewallRules: [{5FD0AFAB-647B-413F-8806-D83B6639A7D5}] => (Allow) D:\Spiele\StarCraft II\StarCraft II.exe
FirewallRules: [{B243255C-A7CC-4062-88F3-5A68A9818BF0}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{71EDB1FE-7946-4123-80C9-0B72647F813D}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [UDP Query User{46682FD8-186D-49C6-A2F6-8726E2F384C5}D:\spiele\far cry 4\bin\farcry4.exe] => (Allow) D:\spiele\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{2087E360-86C8-4F44-9479-A342A8F24C4C}D:\spiele\far cry 4\bin\farcry4.exe] => (Allow) D:\spiele\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{3BD0FB36-6A35-474D-B8D4-54428A7073F7}C:\steam\dayz\dayz.exe] => (Allow) C:\steam\dayz\dayz.exe
FirewallRules: [TCP Query User{1E2E57F1-9282-4817-BF17-86AF3119982D}C:\steam\dayz\dayz.exe] => (Allow) C:\steam\dayz\dayz.exe
FirewallRules: [UDP Query User{768ADEDF-7348-4888-A306-9D2D9BCFAB3C}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{E4D7CB05-04C0-4D43-AF88-AD7F4CADA6A7}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{3C37B9E7-A1B0-41FF-BB5C-41BB7071420B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{487C9432-BD35-49B9-99F5-3BAFE1A664EE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [UDP Query User{2B0BD43A-F410-4B4D-B059-B6240AFC9884}C:\users\diefackel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\diefackel\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{8C2A0CB4-B109-46D4-AABB-C160E0B4BC2A}C:\users\diefackel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\diefackel\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{EF209801-AE72-41D9-9F77-608AD8263367}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe
FirewallRules: [TCP Query User{5A3687F6-AA2F-41D8-BC1F-6D0028F43762}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe
FirewallRules: [{75FC0C17-CEE6-4683-A000-68DC461CDDCF}] => (Allow) D:\Spiele\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C1F02300-6FE1-413E-97D5-9D2E1BCC7BE5}] => (Allow) D:\Spiele\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{A2F231C9-4CD8-4395-81DF-C34C6DE0F706}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{E6612FF6-20D1-486B-BE99-B2EE40A8EE64}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{B2F30D36-41BD-46C2-BFAC-77710BEA7E86}] => (Allow) D:\Spiele\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{91F29332-8300-4A77-8646-391A0E36647B}] => (Allow) D:\Spiele\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{F32D8B5C-0A39-4213-B311-4264F61EDD29}] => (Allow) D:\Spiele\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{4CEB2609-F630-445B-ADE0-E7A4F484BD37}] => (Allow) D:\Spiele\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [UDP Query User{34BCA22E-99A9-4037-899C-174952D355DE}D:\spiele\turbine\lotro\lotroclient.exe] => (Allow) D:\spiele\turbine\lotro\lotroclient.exe
FirewallRules: [TCP Query User{75A8E893-2DB3-4F96-A700-1BDD93AEC419}D:\spiele\turbine\lotro\lotroclient.exe] => (Allow) D:\spiele\turbine\lotro\lotroclient.exe
FirewallRules: [UDP Query User{91E2485E-E838-477D-A73E-4A2676154231}C:\users\diefackel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\diefackel\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{DF81AFF9-6AB8-429F-9D37-56BCA58078BB}C:\users\diefackel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\diefackel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{3675F0AF-25B1-45AE-BDED-BEECEADB7462}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{05B42524-C3C8-41AE-898B-8F2B08533BBD}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{5B828859-7EB5-48C0-B521-DAF312FC3B92}] => (Allow) D:\Spiele\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{6ACFD153-8905-467B-970D-055343BD393E}] => (Allow) D:\Spiele\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{50A4018A-E9AB-4375-85D1-DB1EA03F464C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{12F913B6-00F8-4DEB-B3E4-8D97D2850BED}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{612F91F9-9A30-412D-B951-56F8B50574E5}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe
FirewallRules: [{850377DC-94A3-4B2A-AA1F-2D4A61142648}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe
FirewallRules: [{725EA809-0C27-44BB-A6D1-42DFFB83A5B6}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe
FirewallRules: [{1162E8DD-48DD-4181-812E-659536393FF0}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe
FirewallRules: [UDP Query User{A1C93A3A-B967-4C58-A16D-F1E7DE6A8FA3}D:\spiele\alien isolation\ai.exe] => (Allow) D:\spiele\alien isolation\ai.exe
FirewallRules: [TCP Query User{E9B168F0-3A0F-4CB0-8F7B-1762918B2F50}D:\spiele\alien isolation\ai.exe] => (Allow) D:\spiele\alien isolation\ai.exe
FirewallRules: [{63E93650-FC6E-470D-B081-ED7D3885B788}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{B715B48F-AF68-463A-94F5-8E0D35B547A9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{F4001CEF-B676-4F8F-9CBE-5F88C6865C09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{466FED5B-6575-4E15-87A2-545F7300F3DA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [UDP Query User{D156C6E4-CF56-47E4-8877-C9FA020097D1}C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [TCP Query User{2E3D86B6-3222-4719-A1C3-6465A9825C7E}C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [{EA07A9B6-AE7B-426E-90FB-069CCDCFB202}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{1DC62405-5788-4878-AEEF-73C0E95C6951}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [UDP Query User{3FF88DA6-90AD-4569-A544-9BD32D95B4DE}C:\users\diefackel\desktop\candisoft load!\load.exe] => (Allow) C:\users\diefackel\desktop\candisoft load!\load.exe
FirewallRules: [TCP Query User{FDAB8299-263A-4540-98EB-B9BF2FFF7833}C:\users\diefackel\desktop\candisoft load!\load.exe] => (Allow) C:\users\diefackel\desktop\candisoft load!\load.exe
FirewallRules: [{F3B481F2-78BB-4809-B174-E6BF94AD446C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{A27DCD31-FB3D-4FFE-A0A1-8EB8491B9F49}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{C8111857-2C72-45AC-91FB-4FEDD31A8BBC}] => (Allow) D:\Spiele\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{5C97D2AD-62A5-4F8E-A76D-8CBD095C76AB}] => (Allow) D:\Spiele\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{B407A014-5DA2-44E3-B87F-65197BCC60D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{4AE9B7C5-F214-42B4-BD04-4D111B6C6902}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{8A07CC39-D9D6-4986-A7E7-FC3984AC7127}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{161B3A9B-F20F-432A-A4F8-529C74EDA64C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{8E689C35-4729-49A6-BAD2-957DC852D36D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{1FDDD19F-D61F-4E96-9476-9EE53E29A059}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{473F3C8B-E48E-49EC-B8ED-971DDEED3907}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{5CE8D20C-85C6-4DE3-A472-B7817AC6AAEA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{2E372AA7-F0B1-41BF-9BCF-3AFE1A50E663}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{7BE77165-226E-4090-ACA4-A8C96846A894}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{1AC1DBEE-839F-431D-8D8E-029BC8B31A0B}] => (Allow) D:\Spiele\Steam\SteamApps\common\Resident Evil 4\Bin32\bio4.exe
FirewallRules: [{C82C6185-880F-4E6E-8746-2B6BB818BD6B}] => (Allow) D:\Spiele\Steam\SteamApps\common\Resident Evil 4\Bin32\bio4.exe
FirewallRules: [UDP Query User{10CE2B65-E5F4-42BC-8163-71E573619FB5}C:\programdata\battle.net\agent\agent.3286\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3286\agent.exe
FirewallRules: [TCP Query User{A35D10AF-D92A-4ABA-ACBF-C15CE5BC4854}C:\programdata\battle.net\agent\agent.3286\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3286\agent.exe
FirewallRules: [{24AD6035-4531-4D19-88F4-22279AFC5DAA}] => (Allow) D:\Spiele\Steam\bin\steamwebhelper.exe
FirewallRules: [{2E04DF7B-58DC-40FD-9861-C65DEEF3472B}] => (Allow) D:\Spiele\Steam\bin\steamwebhelper.exe
FirewallRules: [{65BCD715-1B96-40FB-93BC-46BB53473CA1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{BB349080-4EF5-4A0F-AFCF-58D1A5BE541D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{C976ADF5-7175-4272-B4BE-CCD10EAC1E1C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{930A184D-3AC6-40FF-A3BD-97983CF14E97}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{3A7BC421-EDBF-409F-AE22-B79A7C6D1E11}] => (Allow) C:\Program Files\HP\HP Officejet 4630 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{C346D2EC-0F46-4B35-BF88-45A910E8F65D}] => (Allow) LPort=5357
FirewallRules: [{A20C7EC1-D7F0-4699-A999-C11A6AF98445}] => (Allow) C:\Program Files\HP\HP Officejet 4630 series\Bin\DeviceSetup.exe
FirewallRules: [{FA10D693-1CA9-4710-A397-22E92281F546}] => (Allow) C:\Program Files\HP\HP Officejet 4630 series\bin\SendAFax.exe
FirewallRules: [{F4E28960-8EA3-4167-B305-A5D09CF4CB1B}] => (Allow) C:\Program Files\HP\HP Officejet 4630 series\bin\DigitalWizards.exe
FirewallRules: [{396624B1-C30D-48C7-A088-13E424FC2A24}] => (Allow) C:\Program Files\HP\HP Officejet 4630 series\bin\FaxApplications.exe
FirewallRules: [{7E35D448-A58D-4FC2-BA21-430360FADCD6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe
FirewallRules: [{0BAE9171-52B3-4EC5-9A19-A016C1E03D02}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe
FirewallRules: [{E5A67602-3EB0-42DE-B3AD-4031D2D252F9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
FirewallRules: [{42E8ED7D-6813-475E-9526-E86E74431098}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
FirewallRules: [{4FEC670E-A4A5-4FCA-AD3C-C8CEBC9F80E4}] => (Allow) D:\Spiele\Steam\SteamApps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{6A1E11C6-2FD4-4442-B793-54CAD8E63F82}] => (Allow) D:\Spiele\Steam\SteamApps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{6083F112-8C04-4F34-8B81-E280FF1B4F08}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe
FirewallRules: [{5E9EC2DE-8C92-4258-AC76-9FA200A6CFCA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe
FirewallRules: [{D37AC809-3DCF-48D3-A935-663B1B235D36}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{27B6BBB1-7DD7-44E0-9F5F-821FCBFA2D98}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{22EF0059-D71E-46A6-A646-B5E9903D7EB7}] => (Allow) D:\Spiele\Dragon Age\bin_ship\daupdatersvc.service.exe
FirewallRules: [{08FE3F0B-E290-4A32-8D1A-5E0431B92CD9}] => (Allow) D:\Spiele\Dragon Age\bin_ship\daupdatersvc.service.exe
FirewallRules: [{271C88E9-96B2-4725-ADE1-49DBFA58099D}] => (Allow) C:\Steam\Total War Rome II\launcher\launcher.exe
FirewallRules: [{4D31A50F-DD2C-44A1-8106-12450F1BD174}] => (Allow) C:\Steam\Total War Rome II\launcher\launcher.exe
FirewallRules: [{E5325EEB-3F01-445B-B94D-A233B1AEBA19}] => (Allow) D:\Spiele\Dragon Age\DAOriginsLauncher.exe
FirewallRules: [{30BD7EC9-61EF-43AD-BFCA-932704125836}] => (Allow) D:\Spiele\Dragon Age\DAOriginsLauncher.exe
FirewallRules: [{35241231-34FA-42D4-921F-BAC90A61C91A}] => (Allow) D:\Spiele\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{27D80C77-5768-47B2-BC71-ECEF146C8A2D}] => (Allow) D:\Spiele\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{4373D304-EC2F-4DC7-A098-1034ED7EC19D}] => (Allow) D:\Spiele\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{804D6F11-A546-48E8-8806-D776353B49F5}] => (Allow) D:\Spiele\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{28B9B0CA-69CF-49C4-886D-1F7E6D0E63E0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F23413BE-72FF-48FF-935F-B4423B56EB70}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{9D0EB4A1-0242-4620-8E01-2CCDF0A2AD7C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F8966F84-0191-401B-B9D7-BDE8ECAE8DB2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{0E181344-9146-427F-B8C5-F7CEC8AE589F}] => (Allow) D:\Ubisoft\Future Soldier DX9.exe
FirewallRules: [{BE6201F6-47F2-4F6D-A260-1DE904ACCA50}] => (Allow) D:\Ubisoft\Future Soldier DX9.exe
FirewallRules: [{C970D1FA-1BB1-45FB-8E2F-1EDEC790AEBC}] => (Allow) D:\Ubisoft\Future Soldier DX11.exe
FirewallRules: [{B3B18623-32C2-4E9A-953A-C7A9D41C08DD}] => (Allow) D:\Ubisoft\Future Soldier DX11.exe
FirewallRules: [{01A59A15-B150-4261-A832-C13E2333934A}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{5933A99D-DE56-4D42-A127-7361BCDDBA2B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [UDP Query User{8B6CB9A1-CCD9-4ED2-8550-672343D27E06}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe
FirewallRules: [TCP Query User{811D149A-8102-4474-B680-7B0E1F1DB80D}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe
FirewallRules: [{FF515000-9D08-408E-9921-26D9E623A3EB}] => (Allow) D:\Spiele\Diablo III\Diablo III.exe
FirewallRules: [{F1F436EB-F01E-4B64-89F0-D9D9CC3237A5}] => (Allow) D:\Spiele\Diablo III\Diablo III.exe
FirewallRules: [{0898D30C-4DDF-4852-9CEF-CD79E0FB0347}] => (Allow) D:\Spiele\Steam\SteamApps\common\ProjectZomboid\ProjectZomboid64.exe
FirewallRules: [{59C36A26-852E-4745-BEF7-698FF9D6C85E}] => (Allow) D:\Spiele\Steam\SteamApps\common\ProjectZomboid\ProjectZomboid64.exe
FirewallRules: [{454808A4-0F57-4997-A163-A11BEB797424}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [{BD7E8AC0-D371-47DC-A1E0-8F627C3E1039}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [{967DF2D9-1094-404F-95FB-747EDD01CEFB}] => (Allow) D:\Spiele\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{98F95051-3DCF-440C-9AE9-E94D278E79EB}] => (Allow) D:\Spiele\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{B8E9E7A8-22E9-46D2-B15A-2616ACBE94FF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{E3458C9D-9AD5-42D0-8D36-940F11B65F9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [UDP Query User{F5D0F458-A64A-4AAC-88D7-6DB7D0B66659}C:\programdata\battle.net\agent\agent.beta.2753\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.beta.2753\agent.exe
FirewallRules: [TCP Query User{26D928E9-F98F-40D1-A2AE-23E28514F798}C:\programdata\battle.net\agent\agent.beta.2753\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.beta.2753\agent.exe
FirewallRules: [{15789D71-645E-40BA-A62F-658AE5200343}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{A7964258-CEEC-492B-89D8-9130CD0587CC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{E8E042D8-E451-44F8-82FA-536CB3D94352}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{4A5DB823-6EE7-455F-A4B4-66B5A92E1DAC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [UDP Query User{C7336522-0718-4032-B21C-44DAB4327448}C:\steam\dayz\dayz.exe] => (Allow) C:\steam\dayz\dayz.exe
FirewallRules: [TCP Query User{0E4CC603-C65B-4D8A-9395-77790EFC0784}C:\steam\dayz\dayz.exe] => (Allow) C:\steam\dayz\dayz.exe
FirewallRules: [{E52FDDF5-AC5F-464C-A17A-6D47A3EB837E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{BF657D00-BF2C-4E0D-B45C-68D76EB62355}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{3E09C03A-4152-4866-8740-9436C209C174}] => (Allow) D:\Spiele\Steam\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{229F2905-9307-4961-B2F4-EEB6BE81AAE4}] => (Allow) D:\Spiele\Steam\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{0E12E7A7-B93C-4E19-B9B7-6095AF6767F1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{9A7C1B98-4563-4D9C-BAB1-247FB5423C24}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{02077CB4-DEE6-45F8-9434-2E73F92525A4}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{9F8489F4-D6C3-45C7-A2F1-E8D675DAD137}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{E5AD670E-B9DC-4C91-A919-746F255CF8A1}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{D8D7A9A1-B3A6-4931-9103-5F103D19E2C7}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{FE67CB5F-9D76-4332-8418-D9684CBAAF40}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{17802179-CA10-493D-89B9-93EDC204577E}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{E46B9AE6-F4BC-4DDC-A396-475B489DD224}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{7946B31A-3D86-4532-8C59-B2608D2F5089}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{1BFB075B-45D6-4E2A-85A9-291CD184C82D}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{4963AD04-0B6C-4175-BDC5-D89A44D8BBE8}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{9285C295-959E-446A-A96B-12113128E64F}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{4C509833-4E81-4B7D-9786-A86864E79778}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{C921C817-C4BD-46C0-B066-1FE300EA2322}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{8759A254-2AFE-4E31-912C-C534E6F5F517}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{78C7F32C-24C4-45B6-8186-FD812927A836}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{4DCD9165-0CDD-43E8-89E4-C09A2AFEC4F6}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{AD04575E-BD2A-49DC-8256-0902D8205E44}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{005CA57C-0C3A-47D0-8BF8-250011EEADDB}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{BFA46502-EAF1-45ED-903C-835E538F931F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{86B7401E-8AB8-447F-BEA3-F5DD0CDF19CA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{E1FA138B-3E50-44DE-AFE2-901A23E91FD9}] => (Allow) D:\Spiele\Steam\SteamApps\common\Magic 2014\DotP_D14.exe
FirewallRules: [{3D77A983-461C-4A06-BDE7-A19AD55B4DD8}] => (Allow) D:\Spiele\Steam\SteamApps\common\Magic 2014\DotP_D14.exe
FirewallRules: [{EF868012-A3C8-4B3F-979D-4580606B6089}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{05C433B1-045D-4649-9FE8-AA33A16A6681}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{E93BF174-DA47-4A48-9243-942B83AF5711}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{74B20526-C704-4197-B388-4CC6E61A0C1C}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{65CA368D-AA79-49E2-99A8-3734AD9636F2}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{C7F5C892-26AC-492E-AF4B-B91D56F57A5C}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{A2BBD7E9-1467-4104-9099-CD811030CD9C}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{8BEDEFB4-D4DD-49DB-AF32-02BC67C7F08E}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{05890CEC-27A6-4394-90E0-BB59AF447910}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{2B1DAD53-06C0-466F-9E22-55FA34F4F7C1}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{A0FFBA22-BA61-4766-8CA9-F76115D3ABC2}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{33EC2108-E97A-4AA1-BD77-5008A89FC222}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{18B2ED39-6F83-4A48-8D68-DC86F3330C75}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{F7B00440-33F6-4F71-976D-3587989F807C}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{3303FDE8-CEFC-452C-B250-A1DB46463A31}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{7BB0851D-6A74-42EB-A886-3DD13A42722B}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{8F403FA8-32ED-4220-B599-037F2278A985}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{D6C0EDC8-5443-432D-B927-A42C0252C284}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{45D8D20D-013A-4430-8691-DF5DB7BB3C5B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{44B570B6-8F9C-49AC-8F60-141064742DDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B63F0017-2F7E-41CE-B2BB-357A5923027F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3FEAF7FE-3E22-4EC7-A31F-206284E9E1CA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{592D499E-5BC0-476C-A7C2-512F75587FD3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F7500448-256C-4CF4-921E-F82C761ED2EB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{9B47F7B1-0285-4904-8D57-52FDC09473D8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{B9EA31C3-7A77-4730-9AA5-8E0C39EEF0C4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{B7A18863-2979-473F-980B-236D675FB059}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{B9E397A5-6684-438B-A818-1DF8C61E9B38}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{D2FFE9DA-6BEA-4700-A64E-D9652A604C6C}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{11C01E43-C6A3-487F-98FC-F8720A67124B}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{CF1307F5-73F8-47A0-8567-8409FD73B1D9}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{44789199-E0E1-4D74-9AA9-927C61BEBF41}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{F2545E51-0152-4CD8-9DDD-4070AF02854B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6BDCEACE-97D2-4073-9739-91AA434DA97A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A7CDDBE0-F603-4ED4-BD35-F587C8055EBB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{A093B23A-34C2-4679-B293-D93929427E28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [UDP Query User{09D3B12E-1D64-4720-9738-808B2BB03418}D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe] => (Allow) D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe
FirewallRules: [TCP Query User{1E242760-BA70-462B-8804-2B2DD000B617}D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe] => (Allow) D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe
FirewallRules: [{A7ED935A-F3EC-42F6-BFD7-2BECCA4668BD}] => (Allow) D:\Spiele\Steam\SteamApps\common\Spelunky\Spelunky.exe
FirewallRules: [{A9CBEE33-4680-41F4-B98A-79F7E51310D2}] => (Allow) D:\Spiele\Steam\SteamApps\common\Spelunky\Spelunky.exe
FirewallRules: [{AAE2CD6D-47F5-408E-A3CA-675F1053E35C}] => (Allow) D:\Spiele\Steam\SteamApps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{66A06236-BF4D-4C8A-91D8-1036C1CED3C5}] => (Allow) D:\Spiele\Steam\SteamApps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{5E7713F5-7BBD-4363-9B96-0C255F7D2E3D}] => (Allow) D:\Spiele\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe
FirewallRules: [{D623BF2F-54FC-4366-84B2-1CAC8D46AACA}] => (Allow) D:\Spiele\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe
FirewallRules: [UDP Query User{9ECD126D-32EB-4A1F-9489-25F4A7842E71}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{66FE9211-BCCF-4D46-BFE7-8A2DF6DCC740}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{34AB8C0E-5E53-439E-945C-0A955A44B729}D:\spiele\steam\steam.exe] => (Allow) D:\spiele\steam\steam.exe
FirewallRules: [TCP Query User{F0114F43-EF09-4068-9E8B-99DE01B36196}D:\spiele\steam\steam.exe] => (Allow) D:\spiele\steam\steam.exe
FirewallRules: [UDP Query User{B520E170-4F76-4BC5-A52D-FB024EEF4451}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [TCP Query User{5C786FE9-C1E2-4B8A-B90E-6B8D503599A0}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [UDP Query User{A9C1AB2D-4EB1-4FFF-BF4F-6A34049E98AA}C:\steam\total war rome ii\rome2.exe] => (Allow) C:\steam\total war rome ii\rome2.exe
FirewallRules: [TCP Query User{8F8759CE-CB68-4E5B-8674-F698BF887F6D}C:\steam\total war rome ii\rome2.exe] => (Allow) C:\steam\total war rome ii\rome2.exe
FirewallRules: [{9F1CCF75-75D5-46FC-B93F-A8C688C0CD17}] => (Allow) C:\Steam\Total War Rome II\launcher\launcher.exe
FirewallRules: [{B7600AF9-C7D4-4B5D-81ED-C091D5432314}] => (Allow) C:\Steam\Total War Rome II\launcher\launcher.exe
FirewallRules: [{F9AC4827-BB5D-4839-AA25-366ECF0B46D9}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{6865C0BD-E5FB-4EE7-A14C-6BC7ADC5AF5E}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{CDE2447B-D5E2-4DBE-8C94-F911A02C6F62}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{0B4EBB85-0C1D-4E89-8CE1-83B826995FED}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{0512736B-D209-4A68-9032-8F1E5EBC5663}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{F19E59A1-2DF8-4F3D-9B53-F93106C90DF2}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{3130F182-68CD-449D-A804-A997F2261D73}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{0D67BF69-771F-4CC6-B60E-FE209BC5D2AA}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{8BE9C610-6900-4DC0-ABAD-CB4AC37F2188}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\launcher\launcher.exe
FirewallRules: [{27CF53A7-4C2D-447E-B96F-CA6BFAACB147}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\launcher\launcher.exe
FirewallRules: [{3A2FD336-EDBD-40E1-B06A-24C24C50670E}] => (Allow) D:\Spiele\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe
FirewallRules: [{18E3DFF2-8E7F-4F8D-B17D-9CEFEF9410D2}] => (Allow) D:\Spiele\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe
FirewallRules: [UDP Query User{14B7CD50-9E78-45C7-B322-B12F8E02D065}C:\steam\total war rome ii\rome2.exe] => (Allow) C:\steam\total war rome ii\rome2.exe
FirewallRules: [TCP Query User{153FC93A-87EC-47B0-9686-645FBEB20530}C:\steam\total war rome ii\rome2.exe] => (Allow) C:\steam\total war rome ii\rome2.exe
FirewallRules: [UDP Query User{9F485F74-1D47-45B3-8AFD-61787933B854}D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [TCP Query User{53CA6491-A5DE-489E-9250-55D4291DBB2E}D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [{D0AB18AF-7B1B-40D8-A1DD-648716E7511F}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{6FD1367F-BE5F-445D-9450-6288750D57E0}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
FirewallRules: [{02753EB8-721E-4F3C-A12C-34C33645F4AA}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\DeviceSetup.exe
FirewallRules: [{8478B8DE-38F7-4608-B84F-15A89CCCF4D7}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\SendAFax.exe
FirewallRules: [{8D209263-84F7-4FE6-B69E-868302C09FD2}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\DigitalWizards.exe
FirewallRules: [{3827FB5E-BF15-4667-9A6F-FF5A3112D939}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\FaxApplications.exe
FirewallRules: [{7DB26FD5-0ED8-4977-B3AE-74BC78F74905}] => (Allow) D:\Spiele\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{B9C5D61E-29CD-43E9-9445-093116FC9FC8}] => (Allow) D:\Spiele\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{20947C9C-C050-4E24-ACE3-A9192112A63A}] => (Allow) D:\Spiele\Steam\SteamApps\common\Hitman Absolution\HMA.exe
FirewallRules: [{3555AFC8-175C-4A2E-B148-CC93257FCED2}] => (Allow) D:\Spiele\Steam\SteamApps\common\Hitman Absolution\HMA.exe
FirewallRules: [{D0D54C33-B40E-4A4D-BBA6-C10B67E8D7D7}] => (Allow) D:\Spiele\Steam\SteamApps\common\Deus Ex - Human Revolution\dxhr.exe
FirewallRules: [{88F4AE15-7AAB-4B72-BEC4-9C72D67F7A88}] => (Allow) D:\Spiele\Steam\SteamApps\common\Deus Ex - Human Revolution\dxhr.exe
FirewallRules: [UDP Query User{10132D8F-7597-4747-9782-0BFFDD89409C}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [TCP Query User{7B5AAE01-E32C-41F9-85E7-F96EAD837CB8}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{05E2912F-1FB3-4D2D-B26F-731F9C4972A1}] => (Allow) D:\Spiele\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{E9182879-663A-4583-AC43-287F507628A2}] => (Allow) D:\Spiele\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{F4512911-456B-4408-9148-46ED2516F2E2}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{DB1D0129-9430-4B7A-A461-18021DEE16BD}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{CB685B40-307C-4D72-82A9-2C5D9C1300FD}] => (Allow) D:\Spiele\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{15548B49-43E5-471A-931A-2699DE5B0C2A}] => (Allow) D:\Spiele\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{95590C03-1640-4DFA-88D5-77BEC88C5CAB}] => (Allow) D:\Spiele\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{62EE0961-BA3D-4D95-9334-21F2BADA5749}] => (Allow) D:\Spiele\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{BB5826E7-2A22-4527-A02E-B9188881C9CC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{522D8F47-7A69-4C86-8D0A-3B96A5BA7490}] => (Allow) D:\Spiele\Steam\Steam.exe
FirewallRules: [{5A635D4F-1529-4FD1-87C0-0B9C1FAAA69A}] => (Allow) D:\Spiele\Steam\Steam.exe
FirewallRules: [{347A10AF-F98B-4779-B70B-3F025D418E11}] => (Allow) D:\Dateien\uTorrent\uTorrent.exe
FirewallRules: [{CF3A864B-8FB3-4AA1-A68D-7373BD05BB5D}] => (Allow) D:\Dateien\uTorrent\uTorrent.exe
FirewallRules: [{CAE2BF93-7E85-46CB-9CEA-5A4A49612521}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{C72CC072-C3AB-4D93-AE47-0CC79584F85E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{688477AC-2BC2-432D-BB5F-610B8EE78714}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{7E712ACE-081E-4A1D-A7DB-1DA6AA724707}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{F4ED5D7F-A38F-4D71-BF80-C1EEA149F559}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{DC2D9DB8-5B41-4D64-9AB6-C65C58B1EC1F}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{72C456E5-DAA4-431D-9980-04CFD84D8BE1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{9AFD8555-084C-4CAB-9EFB-79460318035D}] => (Allow) D:\Spiele\Steam\SteamApps\common\Baldur's Gate II Enhanced Edition\Baldur.exe
FirewallRules: [{F6A0F5F8-3587-467B-9152-066807ADBFC3}] => (Allow) D:\Spiele\Steam\SteamApps\common\Baldur's Gate II Enhanced Edition\Baldur.exe
FirewallRules: [TCP Query User{6CFE4AB8-AACC-4D53-BDE9-4B7B1DC85A49}D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe
FirewallRules: [UDP Query User{70BA62A2-5F2E-4255-A782-5AC9112EBBCF}D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe
FirewallRules: [{C8F2300C-DFA2-4270-8E8F-A07F00192E4C}] => (Allow) D:\Spiele\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{D9575063-E67C-4168-A0F9-EC0C4BA3A36D}] => (Allow) D:\Spiele\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{C3F3315C-1356-4F3B-9F77-FE5B9DE9966A}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveGame\Bin64_SteamRetail\Evolve.exe
FirewallRules: [{6C2CB2BE-9CBB-42C8-B541-075309D8621E}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveGame\Bin64_SteamRetail\Evolve.exe
FirewallRules: [{FB27EE1E-1789-4ECE-B224-B3F27B5E82FE}] => (Allow) C:\Steam\DayZ\DayZ_BE.exe
FirewallRules: [{D8C55077-E30F-4B93-B5F6-02699B7E744F}] => (Allow) C:\Steam\DayZ\DayZ_BE.exe
FirewallRules: [{0A7AC2B9-D334-4A5F-BAD8-BBBA43FAEF85}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/20/2015 01:15:39 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.
Error: (09/20/2015 01:15:39 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error: (09/20/2015 01:15:29 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.
Error: (09/20/2015 01:15:29 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error: (09/20/2015 01:15:18 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.
Error: (09/20/2015 01:15:18 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error: (09/20/2015 01:15:08 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.
Error: (09/20/2015 01:15:08 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error: (09/20/2015 01:14:58 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (376) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.
Error: (09/20/2015 01:14:58 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (376) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Systemfehler:
=============
Error: (09/20/2015 12:34:21 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5
Error: (09/20/2015 12:33:57 AM) (Source: DCOM) (EventID: 10010) (User: SOL-PC)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca
Error: (09/20/2015 12:33:54 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/20/2015 12:33:54 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/20/2015 12:33:54 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/20/2015 12:33:54 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/19/2015 08:26:00 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070490 fehlgeschlagen: HP - Enterprise WSD Multi-Function Printer, Other hardware - Null Fax - HP Officejet 4630 series
Error: (09/19/2015 01:15:37 PM) (Source: DCOM) (EventID: 10016) (User: SOL-PC)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}SOL-PCdieFackelS-1-5-21-2542595381-3183390579-2223026719-1000LocalHost (unter Verwendung von LRPC)Microsoft.WindowsStore_2015.9.9.0_x64__8wekyb3d8bbweS-1-15-2-1609473798-1231923017-684268153-4268514328-882773646-2760585773-1760938157
Error: (09/19/2015 04:20:49 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5
Error: (09/19/2015 04:20:20 AM) (Source: DCOM) (EventID: 10010) (User: SOL-PC)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca
==================== Speicherinformationen ===========================
Prozessor: AMD Phenom(tm) II X4 955 Processor
Prozentuale Nutzung des RAM: 49%
Installierter physikalischer RAM: 8188.52 MB
Verfügbarer physikalischer RAM: 4158.71 MB
Summe virtueller Speicher: 16380.52 MB
Verfügbarer virtueller Speicher: 11185.61 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:24.16 GB) NTFS
Drive d: () (Fixed) (Total:931.41 GB) (Free:299.71 GB) NTFS
Drive e: (Civilization Beyond Earth) (CDROM) (Total:2.88 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 6B841FED)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 9DEED671)
Partition 1: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
20.09.2015, 16:54
| #6 |
| | Malware Befall? OTL 1/2 Code:
ATTFilter OTL logfile created on: 20.09.2015 14:12:03 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\dieFackel\Desktop 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.11.10240.16384) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 8,00 Gb Total Physical Memory | 4,10 Gb Available Physical Memory | 51,24% Memory free 16,00 Gb Paging File | 11,46 Gb Available in Paging File | 71,62% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 119,14 Gb Total Space | 24,30 Gb Free Space | 20,40% Space Free | Partition Type: NTFS Drive D: | 931,41 Gb Total Space | 117,87 Gb Free Space | 12,65% Space Free | Partition Type: NTFS Drive E: | 2,88 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Computer Name: SOL-PC | User Name: dieFackel | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days ========== Processes (SafeList) ========== PRC - File not found PRC - C:\Users\dieFackel\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - D:\Spiele\Steam\Steam.exe (Valve Corporation) PRC - D:\Spiele\Steam\bin\steamwebhelper.exe (Valve Corporation) PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe (Adobe Systems, Inc.) PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Programme\AVAST Software\Avast\avastui.exe (Avast Software s.r.o.) PRC - C:\Programme\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o.) PRC - C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamresearch.exe (Malwarebytes Corporation) PRC - C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes Corporation) PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) PRC - C:\Windows\SysWOW64\SecUPDUtilSvc.exe () PRC - C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe (ROCCAT GmbH) PRC - C:\Program Files (x86)\Secunia\PSI\PSIA.exe (Secunia) PRC - C:\Program Files (x86)\Secunia\PSI\sua.exe (Secunia) PRC - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia) PRC - C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe (ROCCAT GmbH) PRC - C:\Windows\SysWOW64\XSrvSetup.exe () PRC - C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe (Ralink Technology, Corp.) PRC - C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation) PRC - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe (DeviceVM, Inc.) PRC - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.) PRC - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE () ========== Modules (No Company Name) ========== MOD - D:\Spiele\Steam\video.dll () MOD - D:\Spiele\Steam\bin\chromehtml.dll () MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll () MOD - D:\Spiele\Steam\bin\openvr_api.dll () MOD - D:\Spiele\Steam\v8.dll () MOD - D:\Spiele\Steam\bin\libcef.dll () MOD - D:\Spiele\Steam\icui18n.dll () MOD - D:\Spiele\Steam\icuuc.dll () MOD - D:\Spiele\Steam\SDL2.dll () MOD - C:\Programme\AVAST Software\Avast\libcef.dll () MOD - C:\Programme\AVAST Software\Avast\log.dll () MOD - C:\Programme\AVAST Software\Avast\JsonRpcServer.dll () MOD - C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll () MOD - D:\Spiele\Steam\libavcodec-56.dll () MOD - D:\Spiele\Steam\libswscale-3.dll () MOD - D:\Spiele\Steam\libavformat-56.dll () MOD - D:\Spiele\Steam\libavutil-54.dll () MOD - D:\Spiele\Steam\libavresample-2.dll () MOD - C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll () MOD - C:\Program Files (x86)\ROCCAT\Isku Keyboard\hiddriver.dll () MOD - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll () ========== Services (SafeList) ========== SRV:64bit: - (NetSetupSvc) -- C:\Windows\SysNative\NetSetupSvc.dll (Microsoft Corporation) SRV:64bit: - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation) SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation) SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation) SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation) SRV:64bit: - (icssvc) -- C:\Windows\SysNative\tetheringservice.dll (Microsoft Corporation) SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation) SRV:64bit: - (RetailDemo) -- C:\Windows\SysNative\RDXService.dll (Microsoft Corporation) SRV:64bit: - (SensorDataService) -- C:\Windows\SysNative\SensorDataService.exe (Microsoft Corporation) SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation) SRV:64bit: - (UserDataSvc) -- C:\Windows\SysNative\UserDataService.dll (Microsoft Corporation) SRV:64bit: - (UnistoreSvc) -- C:\Windows\SysNative\Unistore.dll (Microsoft Corporation) SRV:64bit: - (DoSvc) -- C:\Windows\SysNative\dosvc.dll (Microsoft Corporation) SRV:64bit: - (UsoSvc) -- C:\Windows\SysNative\usocore.dll (Microsoft Corporation) SRV:64bit: - (SensorService) -- C:\Windows\SysNative\SensorService.dll (Microsoft Corporation) SRV:64bit: - (CoreMessagingRegistrar) -- C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation) SRV:64bit: - (ClipSVC) -- C:\Windows\SysNative\ClipSVC.dll (Microsoft Corporation) SRV:64bit: - (w3logsvc) -- C:\Windows\SysNative\inetsrv\w3logsvc.dll (Microsoft Corporation) SRV:64bit: - (MSMQ) -- C:\Windows\SysNative\mqsvc.exe (Microsoft Corporation) SRV:64bit: - (tiledatamodelsvc) -- C:\Windows\SysNative\tileobjserver.dll (Microsoft Corporation) SRV:64bit: - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation) SRV:64bit: - (WalletService) -- C:\Windows\SysNative\WalletService.dll (Microsoft Corporation) SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation) SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation) SRV:64bit: - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation) SRV:64bit: - (IEEtwCollectorService) -- C:\WINDOWS\SysNative\IEEtwCollector.exe (Microsoft Corporation) SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation) SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation) SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation) SRV:64bit: - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation) SRV:64bit: - (PimIndexMaintenanceSvc) -- C:\Windows\SysNative\PimIndexMaintenance.dll (Microsoft Corporation) SRV:64bit: - (WpnService) -- C:\Windows\SysNative\wpnservice.dll (Microsoft Corporation) SRV:64bit: - (DevQueryBroker) -- C:\Windows\SysNative\DevQueryBroker.dll (Microsoft Corporation) SRV:64bit: - (lfsvc) -- C:\Windows\SysNative\lfsvc.dll (Microsoft Corporation) SRV:64bit: - (StateRepository) -- C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation) SRV:64bit: - (XblGameSave) -- C:\Windows\SysNative\XblGameSave.dll (Microsoft Corporation) SRV:64bit: - (XboxNetApiSvc) -- C:\Windows\SysNative\XboxNetApiSvc.dll (Microsoft Corporation) SRV:64bit: - (NgcSvc) -- C:\Windows\SysNative\ngcsvc.dll (Microsoft Corporation) SRV:64bit: - (NgcCtnrSvc) -- C:\Windows\SysNative\NgcCtnrSvc.dll (Microsoft Corporation) SRV:64bit: - (MapsBroker) -- C:\Windows\SysNative\moshost.dll (Microsoft Corporation) SRV:64bit: - (AJRouter) -- C:\Windows\SysNative\AJRouter.dll (Microsoft Corporation) SRV:64bit: - (LicenseManager) -- C:\Windows\SysNative\LicenseManagerSvc.dll (Microsoft Corporation) SRV:64bit: - (CDPSvc) -- C:\Windows\SysNative\cdpsvc.dll (Microsoft Corporation) SRV:64bit: - (embeddedmode) -- C:\Windows\SysNative\embeddedmodesvc.dll (Microsoft Corporation) SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation) SRV:64bit: - (XblAuthManager) -- C:\Windows\SysNative\XblAuthManager.dll (Microsoft Corporation) SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation) SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation) SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation) SRV:64bit: - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation) SRV:64bit: - (UserManager) -- C:\Windows\SysNative\usermgr.dll (Microsoft Corporation) SRV:64bit: - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation) SRV:64bit: - (OneSyncSvc) -- C:\Windows\SysNative\APHostService.dll (Microsoft Corporation) SRV:64bit: - (DcpSvc) -- C:\Windows\SysNative\dcpsvc.dll (Microsoft Corporation) SRV:64bit: - (diagnosticshub.standardcollector.service) -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (Microsoft Corporation) SRV:64bit: - (DsSvc) -- C:\Windows\SysNative\dssvc.dll (Microsoft Corporation) SRV:64bit: - (UserDataSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation) SRV:64bit: - (UnistoreSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation) SRV:64bit: - (PimIndexMaintenanceSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation) SRV:64bit: - (OneSyncSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation) SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation) SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation) SRV:64bit: - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation) SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation) SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation) SRV:64bit: - (EntAppSvc) -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll (Microsoft Corporation) SRV:64bit: - (DmEnrollmentSvc) -- C:\Windows\SysNative\Windows.Internal.Management.dll (Microsoft Corporation) SRV:64bit: - (dmwappushservice) -- C:\Windows\SysNative\dmwappushsvc.dll (Microsoft Corporation) SRV:64bit: - (SmsRouter) -- C:\Windows\SysNative\SmsRouterSvc.dll (Microsoft Corporation) SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation) SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation) SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation) SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicvmsession) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation) SRV:64bit: - (BthHFSrv) -- C:\Windows\SysNative\BthHFSrv.dll (Microsoft Corporation) SRV:64bit: - (AppleChargerSrv) -- C:\Windows\SysNative\AppleChargerSrv.exe () SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (UnistoreSvc) -- C:\Windows\SysWOW64\Unistore.dll (Microsoft Corporation) SRV - (CoreMessagingRegistrar) -- C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation) SRV - (WAS) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation) SRV - (W3SVC) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation) SRV - (w3logsvc) -- C:\Windows\SysWOW64\inetsrv\w3logsvc.dll (Microsoft Corporation) SRV - (AppHostSvc) -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll (Microsoft Corporation) SRV - (Hamachi2Svc) -- D:\Dateien\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.) SRV - (BEService) -- C:\Program Files (x86)\Common Files\BattlEye\BEService.exe () SRV - (Origin Client Service) -- D:\Spiele\Origin\OriginClientService.exe (Electronic Arts) SRV - (GalaxyClientService) -- D:\Spiele\GalaxyClient\GalaxyClientService.exe (GOG.com) SRV - (GalaxyCommunication) -- C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe (GOG.com) SRV - (lfsvc) -- C:\Windows\SysWOW64\lfsvc.dll (Microsoft Corporation) SRV - (StateRepository) -- C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation) SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation) SRV - (DmEnrollmentSvc) -- C:\Windows\SysWOW64\Windows.Internal.Management.dll (Microsoft Corporation) SRV - (PrintNotify) -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation) SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (avast! Antivirus) -- C:\Programme\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o.) SRV - (MBAMService) -- C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Malwarebytes Corporation) SRV - (Sony PC Companion) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe (Avanquest Software) SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) SRV - (NvNetworkService) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) SRV - (GfExperienceService) -- C:\Programme\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation) SRV - (NvStreamSvc) -- C:\Programme\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) SRV - (SamsungUPDUtilSvc) -- C:\Windows\SysWOW64\SecUPDUtilSvc.exe () SRV - (BRSptStub) -- C:\ProgramData\BitRaider\BRSptStub.exe (BitRaider, LLC) SRV - (TunngleService) -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH) SRV - (Secunia PSI Agent) -- C:\Program Files (x86)\Secunia\PSI\PSIA.exe (Secunia) SRV - (Secunia Update Agent) -- C:\Program Files (x86)\Secunia\PSI\sua.exe (Secunia) SRV - (JMB36X) -- C:\Windows\SysWOW64\XSrvSetup.exe () SRV - (RalinkRegistryWriter64) -- C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe (Ralink Technology, Corp.) SRV - (RalinkRegistryWriter) -- C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe (Ralink Technology, Corp.) SRV - (BCUService) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe (DeviceVM, Inc.) SRV - (ES lite Service) -- C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE () ========== Driver Services (SafeList) ========== DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes Corporation) DRV:64bit: - (owahm) -- C:\Windows\SysNative\drivers\ggpcixbf.sys (Malwarebytes Corporation) DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation) DRV:64bit: - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation) DRV:64bit: - (ReFSv1) -- C:\WINDOWS\SysNative\drivers\refsv1.sys (Microsoft Corporation) DRV:64bit: - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation) DRV:64bit: - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation) DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation) DRV:64bit: - (UcmUcsi) -- C:\Windows\SysNative\drivers\UcmUcsi.sys (Microsoft Corporation) DRV:64bit: - (MQAC) -- C:\Windows\SysNative\drivers\mqac.sys (Microsoft Corporation) DRV:64bit: - (Wof) -- C:\WINDOWS\SysNative\drivers\wof.sys (Microsoft Corporation) DRV:64bit: - (wdiwifi) -- C:\Windows\SysNative\drivers\WdiWiFi.sys (Microsoft Corporation) DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation) DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\Hamdrv.sys (LogMeIn Inc.) DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation) DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\drivers\wpcfltr.sys (Microsoft Corporation) DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation) DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation) DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation) DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation) DRV:64bit: - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation) DRV:64bit: - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation) DRV:64bit: - (WindowsTrustedRT) -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys (Microsoft Corporation) DRV:64bit: - (UcmCx0101) -- C:\Windows\SysNative\drivers\UcmCx.sys (Microsoft Corporation) DRV:64bit: - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation) DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation) DRV:64bit: - (storqosflt) -- C:\Windows\SysNative\drivers\storqosflt.sys (Microsoft Corporation) DRV:64bit: - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation) DRV:64bit: - (IoQos) -- C:\Windows\SysNative\drivers\ioqos.sys (Microsoft Corporation) DRV:64bit: - (MMCSS) -- C:\Windows\SysNative\drivers\mmcss.sys (Microsoft Corporation) DRV:64bit: - (Ufx01000) -- C:\Windows\SysNative\drivers\ufx01000.sys (Microsoft Corporation) DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation) DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation) DRV:64bit: - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation) DRV:64bit: - (UrsCx01000) -- C:\Windows\SysNative\drivers\urscx01000.sys (Microsoft Corporation) DRV:64bit: - (cnghwassist) -- C:\Windows\SysNative\drivers\cnghwassist.sys (Microsoft Corporation) DRV:64bit: - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation) DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation) DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation) DRV:64bit: - (GpuEnergyDrv) -- C:\Windows\SysNative\drivers\gpuenergydrv.sys (Microsoft Corporation) DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation) DRV:64bit: - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation) DRV:64bit: - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation) DRV:64bit: - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation) DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation) DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation) DRV:64bit: - (Ucx01000) -- C:\Windows\SysNative\drivers\Ucx01000.sys (Microsoft Corporation) DRV:64bit: - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation) DRV:64bit: - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation) DRV:64bit: - (FileCrypt) -- C:\Windows\SysNative\drivers\filecrypt.sys (Microsoft Corporation) DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation) DRV:64bit: - (UdeCx) -- C:\Windows\SysNative\drivers\Udecx.sys () DRV:64bit: - (vhf) -- C:\Windows\SysNative\drivers\vhf.sys (Microsoft Corporation) DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation) DRV:64bit: - (UrsChipidea) -- C:\Windows\SysNative\drivers\urschipidea.sys (Microsoft Corporation) DRV:64bit: - (UrsSynopsys) -- C:\Windows\SysNative\drivers\urssynopsys.sys (Microsoft Corporation) DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation) DRV:64bit: - (WindowsTrustedRTProxy) -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys (Microsoft Corporation) DRV:64bit: - (mlx4_bus) -- C:\Windows\SysNative\drivers\mlx4_bus.sys (Mellanox) DRV:64bit: - (rt640x64) -- C:\Windows\SysNative\drivers\rt640x64.sys (Realtek ) DRV:64bit: - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation) DRV:64bit: - (ibbus) -- C:\Windows\SysNative\drivers\ibbus.sys (Mellanox) DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation) DRV:64bit: - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation) DRV:64bit: - (ufxsynopsys) -- C:\Windows\SysNative\drivers\ufxsynopsys.sys (Microsoft Corporation) DRV:64bit: - (UfxChipidea) -- C:\Windows\SysNative\drivers\UfxChipidea.sys (Microsoft Corporation) DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation) DRV:64bit: - (ndfltr) -- C:\Windows\SysNative\drivers\ndfltr.sys (Mellanox) DRV:64bit: - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.) DRV:64bit: - (WinVerbs) -- C:\Windows\SysNative\drivers\winverbs.sys (Mellanox) DRV:64bit: - (percsas3i) -- C:\Windows\SysNative\drivers\percsas3i.sys (Avago Technologies) DRV:64bit: - (percsas2i) -- C:\Windows\SysNative\drivers\percsas2i.sys (LSI Corporation) DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation) DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation) DRV:64bit: - (storufs) -- C:\Windows\SysNative\drivers\storufs.sys (Microsoft Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.) DRV:64bit: - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation) DRV:64bit: - (WinMad) -- C:\Windows\SysNative\drivers\winmad.sys (Mellanox) DRV:64bit: - (swenum) -- C:\Windows\SysNative\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys (Microsoft Corporation) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (QLogic Corporation) DRV:64bit: - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra) DRV:64bit: - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (xboxgip) -- C:\Windows\SysNative\drivers\xboxgip.sys (Microsoft Corporation) DRV:64bit: - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation) DRV:64bit: - (CapImg) -- C:\Windows\SysNative\drivers\capimg.sys (Microsoft Corporation) DRV:64bit: - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI) DRV:64bit: - (LSI_SAS2i) -- C:\Windows\SysNative\drivers\lsi_sas2i.sys (LSI Corporation) DRV:64bit: - (LSI_SAS3i) -- C:\Windows\SysNative\drivers\lsi_sas3i.sys (Avago Technologies) DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (dc1-controller) -- C:\Windows\SysNative\drivers\dc1-controller.sys (Microsoft Corp.) DRV:64bit: - (hidinterrupt) -- C:\Windows\SysNative\drivers\hidinterrupt.sys (Microsoft Corporation) DRV:64bit: - (buttonconverter) -- C:\Windows\SysNative\drivers\buttonconverter.sys (Microsoft Corporation) DRV:64bit: - (xinputhid) -- C:\Windows\SysNative\drivers\xinputhid.sys (Microsoft Corporation) DRV:64bit: - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation) DRV:64bit: - (genericusbfn) -- C:\Windows\SysNative\drivers\genericusbfn.sys (Microsoft Corporation) DRV:64bit: - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider) DRV:64bit: - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation) DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation) DRV:64bit: - (StillCam) -- C:\Windows\SysNative\drivers\serscan.sys (Microsoft Corporation) DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation) DRV:64bit: - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation) DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation) DRV:64bit: - (netvsc) -- C:\Windows\SysNative\drivers\netvsc.sys (Microsoft Corporation) DRV:64bit: - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation) DRV:64bit: - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation) DRV:64bit: - (Synth3dVsc) -- C:\Windows\SysNative\drivers\Synth3dVsc.sys (Microsoft Corporation) DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation) DRV:64bit: - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation) DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation) DRV:64bit: - (CompositeBus) -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys (Microsoft Corporation) DRV:64bit: - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation) DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation) DRV:64bit: - (fcvsc) -- C:\Windows\SysNative\drivers\fcvsc.sys (Microsoft Corporation) DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation) DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation) DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation) DRV:64bit: - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation) DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (Avast Software s.r.o.) DRV:64bit: - (aswStm) -- C:\Windows\SysNative\drivers\aswStm.sys (Avast Software s.r.o.) DRV:64bit: - (aswVmm) -- C:\WINDOWS\SysNative\drivers\aswVmm.sys () DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (Avast Software s.r.o.) DRV:64bit: - (aswRvrt) -- C:\WINDOWS\SysNative\drivers\aswRvrt.sys () DRV:64bit: - (aswHwid) -- C:\Windows\SysNative\drivers\aswHwid.sys () DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (Avast Software s.r.o.) DRV:64bit: - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (Avast Software s.r.o.) DRV:64bit: - (MBAMWebAccessControl) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes Corporation) DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation) DRV:64bit: - (netr28x) -- C:\Windows\SysNative\drivers\netr28x.sys (MediaTek Inc.) DRV:64bit: - (atksgt) -- C:\Windows\SysNative\drivers\atksgt.sys () DRV:64bit: - (lirsgt) -- C:\Windows\SysNative\drivers\lirsgt.sys () DRV:64bit: - (nvvad_WaveExtensible) -- C:\Windows\SysNative\drivers\nvvad64v.sys (NVIDIA Corporation) DRV:64bit: - (VBoxNetAdp) -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys (Oracle Corporation) DRV:64bit: - (tap0901) -- C:\Windows\SysNative\drivers\tap0901.sys (The OpenVPN Project) DRV:64bit: - (VClone) -- C:\Windows\SysNative\drivers\VClone.sys (Elaborate Bytes AG) DRV:64bit: - (PSI) -- C:\Windows\SysNative\drivers\psi_mf_amd64.sys (Secunia) DRV:64bit: - (taphss6) -- C:\Windows\SysNative\drivers\taphss6.sys (Anchorfree Inc.) DRV:64bit: - (ElbyCDIO) -- C:\Windows\SysNative\drivers\ElbyCDIO.sys (Elaborate Bytes AG) DRV:64bit: - (AppleCharger) -- C:\Windows\SysNative\drivers\AppleCharger.sys () DRV:64bit: - (JRAID) -- C:\Windows\SysNative\drivers\jraid.sys (JMicron Technology Corp.) DRV:64bit: - (usbfilter) -- C:\Windows\SysNative\drivers\usbfilter.sys (Advanced Micro Devices) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (tap0901t) -- C:\Windows\SysNative\drivers\tap0901t.sys (Tunngle.net) DRV:64bit: - (AtiPcie) -- C:\Windows\SysNative\drivers\AtiPcie.sys (Advanced Micro Devices Inc.) DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows (R) Server 2003 DDK provider) DRV - (swenum) -- C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys (Microsoft Corporation) DRV - (CompositeBus) -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys (Microsoft Corporation) DRV - (NvStreamKms) -- C:\Programme\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys (NVIDIA Corporation) DRV - (BRDriver64_1_3_3_E02B25FC) -- C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys (BitRaider) DRV - (GVTDrv64) -- C:\Windows\GVTDrv64.sys () ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 67 87 FD 97 56 9C CE 01 [binary data] IE - HKCU\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.) IE - HKCU\..\SearchScopes,DefaultScope = {888255F5-E5F4-4626-9D68-92C58086424C} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 IE - HKCU\..\SearchScopes\{62DB5B0D-4BDE-42ab-9009-2B3B3B097939}: "URL" = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=1975384696&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms} IE - HKCU\..\SearchScopes\{888255F5-E5F4-4626-9D68-92C58086424C}: "URL" = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local> ========== FireFox ========== FF - prefs.js..browser.search.countryCode: "DE" FF - prefs.js..browser.search.hiddenOneOffs: "Yahoo,Amazon.de,Bing,DuckDuckGo,eBay,Wikipedia (de),Twitter,Divinity Wiki (en),1&1 Suche,Englische Ergebnisse,GMX Suche,WEB.DE Bilder-Suche,WEB.DE Maps-Suche,WEB.DE Suche" FF - prefs.js..browser.search.isUS: false FF - prefs.js..browser.search.region: "DE" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "Twitter.com" FF - prefs.js..extensions.enabledAddons: %7Ba5312b79-bf0d-4825-a25f-b33d67d4a58a%7D:13.15.63.1-signed FF - prefs.js..extensions.enabledAddons: %7Ba0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7%7D:20150708 FF - prefs.js..extensions.enabledAddons: %7B77d2ed30-4cd2-11e0-b8af-0800200c9a66%7D:13.0.2 FF - prefs.js..network.proxy.autoconfig_url: "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1)%20%7B%20return%20'PROXY%20nq-us09.personalitycores.com%3A8000%3B%20PROXY%20nq-us08.personalitycores.com%3A8000%3B%20PROXY%20nq-us07.personalitycores.com%3A8000%3B%20PROXY%20nq-us04.personalitycores.com%3A8000%3B%20PROXY%20nq-us05.personalitycores.com%3A8000%3B%20PROXY%20nq-us06.personalitycores.com%3A8000%3B%20PROXY%20nq-us12.personalitycores.com%3A8000%3B%20PROXY%20nq-us11.personalitycores.com%3A8000%3B%20PROXY%20nq-us10.personalitycores.com%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D" FF - prefs.js..network.proxy.type: 2 FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.60.2: C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2: C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.7: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll () FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.60.2: C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2: C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll () FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2015.09.18 19:13:09 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013.08.18 23:06:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\dieFackel\AppData\Roaming\mozilla\Extensions [2015.09.19 20:08:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\dieFackel\AppData\Roaming\mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\extensions [2015.08.25 19:30:39 | 000,000,000 | ---D | M] (FT DeepDark) -- C:\Users\dieFackel\AppData\Roaming\mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015.07.10 11:33:39 | 000,000,000 | ---D | M] (WOT) -- C:\Users\dieFackel\AppData\Roaming\mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015.09.19 20:08:19 | 001,548,404 | ---- | M] () (No name found) -- C:\Users\dieFackel\AppData\Roaming\mozilla\firefox\profiles\xdjdf4al.default-1384448785210\extensions\firefox@ghostery.com.xpi [2015.05.27 13:41:39 | 000,568,568 | ---- | M] () (No name found) -- C:\Users\dieFackel\AppData\Roaming\mozilla\firefox\profiles\xdjdf4al.default-1384448785210\extensions\jid1-xUfzOsOFlzSOXg@jetpack.xpi [2015.05.30 01:24:40 | 000,050,455 | ---- | M] () (No name found) -- C:\Users\dieFackel\AppData\Roaming\mozilla\firefox\profiles\xdjdf4al.default-1384448785210\extensions\{a5312b79-bf0d-4825-a25f-b33d67d4a58a}.xpi [2015.07.28 21:27:01 | 000,963,213 | ---- | M] () (No name found) -- C:\Users\dieFackel\AppData\Roaming\mozilla\firefox\profiles\xdjdf4al.default-1384448785210\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015.05.14 23:28:00 | 000,000,715 | ---- | M] () -- C:\Users\dieFackel\AppData\Roaming\mozilla\firefox\profiles\xdjdf4al.default-1384448785210\searchplugins\divinity-wiki-en.xml [2015.03.28 23:27:51 | 000,009,207 | ---- | M] () -- C:\Users\dieFackel\AppData\Roaming\mozilla\firefox\profiles\xdjdf4al.default-1384448785210\searchplugins\twitter.xml [2015.06.01 16:40:14 | 000,002,084 | ---- | M] () -- C:\Users\dieFackel\AppData\Roaming\mozilla\firefox\profiles\xdjdf4al.default-1384448785210\searchplugins\youtube-videosuche.xml [2015.08.28 00:16:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions [2015.08.28 00:16:18 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ========== Chrome ========== CHR - Extension: No name found = C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\ CHR - Extension: No name found = C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.5_0\ CHR - Extension: No name found = C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\ O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.8.0_60\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE64.dll (Avast Software s.r.o.) O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre1.8.0_60\bin\jp2ssv.dll (Oracle Corporation) O2:64bit: - BHO: (no name) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - No CLSID value found. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll (Oracle Corporation) O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (Avast Software s.r.o.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll (Oracle Corporation) O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found. O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [ShadowPlay] C:\WINDOWS\SysNative\nvspcap64.dll (NVIDIA Corporation) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD) O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o.) O4 - HKLM..\Run: [BCU] C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.) O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe () O4 - HKLM..\Run: [LogMeIn Hamachi Ui] D:\Dateien\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation) O4 - HKLM..\Run: [RoccatIsku] C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE (ROCCAT GmbH) O4 - HKLM..\Run: [RoccatKoneXTD] C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE (ROCCAT GmbH) O4 - HKLM..\Run: [VirtualCloneDrive] D:\Dateien\Programme\VirtualCloneDrive\VCDDaemon.exe (Elaborate Bytes AG) O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd) O4 - HKCU..\Run: [EADM] D:\Spiele\Origin\Origin.exe (Electronic Arts) O4 - HKCU..\Run: [EvolveClient] D:\Dateien\Echobit\Evolve\EvolveClient.exe (Echobit LLC) O4 - HKCU..\Run: [GalaxyClient] D:\Spiele\GalaxyClient\GalaxyClient.exe (GOG.com) O4 - HKCU..\Run: [OneDrive] C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) O4 - HKCU..\Run: [Sony PC Companion] C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony) O4 - HKLM..\RunOnce: [ Malwarebytes Anti-Malware (cleanup)] C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \mbamdor.exe (Malwarebytes Corporation) O4 - HKCU..\RunOnce: [Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" File not found O4 - HKCU..\RunOnce: [Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64" File not found O4 - HKCU..\RunOnce: [Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1 O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} hxxp://download.gigabyte.com.tw/object/Dldrv.ocx (Dldrv2 Control) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1e498d26-a69f-40b8-be95-ebbee9ff9f23}: DhcpNameServer = 192.168.1.1 O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O30:64bit: - LSA: Security Packages - (livessp) - File not found O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.10.31 19:13:06 | 000,000,044 | R--- | M] () - E:\autorun.inf -- [ UDF ] O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 60 Days ========== [2015.09.20 13:55:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner [2015.09.20 13:55:54 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2015.09.20 13:55:04 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\dieFackel\Desktop\OTL.exe [2015.09.20 13:43:58 | 000,079,064 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\ggpcixbf.sys [2015.09.20 13:35:19 | 000,113,880 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys [2015.09.20 13:34:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware [2015.09.20 13:34:39 | 000,109,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys [2015.09.20 13:34:39 | 000,064,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mwac.sys [2015.09.20 13:34:39 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys [2015.09.20 13:34:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ Malwarebytes Anti-Malware [2015.09.20 13:34:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2015.09.19 02:33:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo [2015.09.18 19:13:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software [2015.09.18 19:13:10 | 000,364,472 | ---- | C] (Avast Software s.r.o.) -- C:\WINDOWS\SysNative\aswBoot.exe [2015.09.18 19:10:10 | 000,000,000 | --SD | C] -- C:\WINDOWS\SysWow64\Microsoft [2015.09.18 19:10:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2015.09.09 23:59:29 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 [2015.09.09 14:54:19 | 021,874,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll [2015.09.09 14:54:19 | 018,806,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll [2015.09.09 14:54:16 | 002,350,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll [2015.09.09 14:54:16 | 001,774,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll [2015.09.09 14:54:15 | 003,586,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys [2015.09.09 14:54:15 | 002,153,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll [2015.09.09 14:54:15 | 001,612,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll [2015.09.09 14:54:14 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll [2015.09.09 14:54:14 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll [2015.09.09 14:54:14 | 000,608,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe [2015.09.09 14:54:14 | 000,596,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSync.dll [2015.09.09 14:54:14 | 000,578,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe [2015.09.09 14:54:14 | 000,541,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe [2015.09.09 14:54:14 | 000,484,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSync.dll [2015.09.09 14:54:13 | 001,382,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys [2015.09.09 14:54:13 | 000,576,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll [2015.09.09 14:54:13 | 000,365,568 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll [2015.09.09 14:54:13 | 000,303,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll [2015.09.09 14:54:13 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.PicturePassword.dll [2015.09.09 14:54:13 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shacct.dll [2015.09.09 14:54:13 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\shacct.dll [2015.09.09 14:54:13 | 000,077,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll [2015.09.09 14:54:12 | 000,045,568 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll [2015.09.09 14:54:12 | 000,037,376 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll [2015.09.09 11:25:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2015.09.09 11:25:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2015.09.09 11:25:06 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype [2015.09.07 22:09:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParkControl [2015.09.03 02:33:29 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\MicrosoftEdge [2015.08.31 18:08:09 | 002,225,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll [2015.08.31 18:08:09 | 001,396,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll [2015.08.31 18:08:08 | 001,888,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll [2015.08.31 18:08:08 | 000,963,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll [2015.08.31 18:08:08 | 000,859,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\modernexecserver.dll [2015.08.31 18:08:07 | 008,019,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe [2015.08.31 18:08:07 | 001,593,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll [2015.08.31 18:08:07 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupShim.dll [2015.08.31 18:08:06 | 000,609,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll [2015.08.31 18:08:06 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupShim.dll [2015.08.31 18:08:05 | 001,061,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll [2015.08.31 18:08:05 | 000,373,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS [2015.08.31 18:08:05 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll [2015.08.31 18:08:05 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe [2015.08.31 18:08:05 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BthRadioMedia.dll [2015.08.31 18:08:04 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcnwiz.dll [2015.08.31 18:08:04 | 001,234,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aitstatic.exe [2015.08.31 18:08:04 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WlanMediaManager.dll [2015.08.31 18:08:04 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WcnNetsh.dll [2015.08.31 18:08:04 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll [2015.08.31 18:08:03 | 002,178,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll [2015.08.31 18:08:03 | 001,795,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll [2015.08.31 18:08:03 | 001,226,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wcnwiz.dll [2015.08.31 18:08:03 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EnterpriseModernAppMgmtCSP.dll [2015.08.31 18:08:03 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WcnApi.dll [2015.08.31 18:08:03 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafWCN.dll [2015.08.31 18:08:03 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fdWCN.dll [2015.08.31 18:08:03 | 000,100,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WcnApi.dll [2015.08.31 18:08:03 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfdprov.dll [2015.08.31 18:08:02 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vaultsvc.dll [2015.08.31 18:08:02 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PackageStateRoaming.dll [2015.08.31 18:08:02 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PackageStateRoaming.dll [2015.08.29 15:43:03 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\YSearchUtil [2015.08.29 15:43:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yahoo! [2015.08.29 15:40:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2015.08.29 15:39:31 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Roaming\Sun [2015.08.29 15:39:29 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\.oracle_jre_usage [2015.08.28 00:16:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2015.08.19 18:31:53 | 016,706,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll [2015.08.19 18:31:50 | 013,024,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll [2015.08.19 18:31:48 | 003,527,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll [2015.08.19 18:31:47 | 004,532,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [2015.08.19 18:31:47 | 002,558,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll [2015.08.19 18:31:47 | 002,416,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll [2015.08.19 18:31:46 | 007,523,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll [2015.08.19 18:31:46 | 004,048,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe [2015.08.19 18:31:46 | 002,151,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll [2015.08.19 18:31:46 | 002,093,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidsvc.dll [2015.08.19 18:31:46 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll [2015.08.19 18:31:46 | 001,643,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diagtrack.dll [2015.08.19 18:31:45 | 002,748,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll [2015.08.19 18:31:45 | 001,916,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll [2015.08.19 18:31:45 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll [2015.08.19 18:31:44 | 000,996,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXService.dll [2015.08.19 18:31:44 | 000,586,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll [2015.08.19 18:31:43 | 005,454,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll [2015.08.19 18:31:43 | 001,334,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll [2015.08.19 18:31:43 | 000,893,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApiPublic.dll [2015.08.19 18:31:43 | 000,292,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppHost.exe [2015.08.19 18:31:43 | 000,243,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppHost.exe [2015.08.19 18:31:42 | 001,112,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll [2015.08.19 18:31:42 | 001,087,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll [2015.08.19 18:31:42 | 000,918,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll [2015.08.19 18:31:42 | 000,593,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll [2015.08.19 18:31:42 | 000,563,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApi.dll [2015.08.19 18:31:42 | 000,554,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\directmanipulation.dll [2015.08.19 18:31:42 | 000,454,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\directmanipulation.dll [2015.08.19 18:31:42 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationPermissions.dll [2015.08.19 18:31:41 | 000,993,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgent.dll [2015.08.19 18:31:41 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApiPublic.dll [2015.08.19 18:31:41 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApi.dll [2015.08.19 18:31:41 | 000,336,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe [2015.08.19 18:31:41 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Notifications.dll [2015.08.19 18:31:41 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll [2015.08.19 18:31:41 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cloudAP.dll [2015.08.19 18:31:41 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringservice.dll [2015.08.19 18:31:41 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeParserTask.exe [2015.08.19 18:31:41 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys [2015.08.19 18:31:40 | 002,462,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll [2015.08.19 18:31:40 | 000,845,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgent.dll [2015.08.19 18:31:40 | 000,642,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdbui.dll [2015.08.19 18:31:40 | 000,483,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OneDriveSettingSyncProvider.dll [2015.08.19 18:31:40 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll [2015.08.19 18:31:40 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationGeofences.dll [2015.08.19 18:31:40 | 000,311,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll [2015.08.19 18:31:40 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\syncutil.dll [2015.08.19 18:31:40 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationFramework.dll [2015.08.19 18:31:40 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll [2015.08.19 18:31:39 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll [2015.08.19 18:31:39 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GamePanel.exe [2015.08.19 18:31:39 | 000,442,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys [2015.08.19 18:31:39 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OneDriveSettingSyncProvider.dll [2015.08.19 18:31:39 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll [2015.08.19 18:31:39 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll [2015.08.19 18:31:39 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationFrameworkInternalPS.dll [2015.08.19 18:31:39 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringclient.dll [2015.08.19 18:31:39 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tetheringclient.dll [2015.08.19 18:31:39 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuautoappupdate.dll [2015.08.19 18:31:38 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GamePanel.exe [2015.08.19 18:31:38 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll [2015.08.19 18:31:38 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll [2015.08.19 18:31:38 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReInfo.dll [2015.08.11 21:51:47 | 008,613,200 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll [2015.08.11 21:51:47 | 006,878,256 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll [2015.08.11 21:51:30 | 003,780,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll [2015.08.11 21:51:26 | 001,212,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemoteNaturalLanguage.dll [2015.08.11 21:51:25 | 002,415,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWrite.dll [2015.08.11 21:51:25 | 001,601,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll [2015.08.11 21:51:25 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll [2015.08.11 21:51:25 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RemoteNaturalLanguage.dll [2015.08.11 21:51:24 | 000,595,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LogonController.dll [2015.08.11 21:51:24 | 000,583,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll [2015.08.11 21:51:23 | 000,783,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll [2015.08.11 21:51:23 | 000,644,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll [2015.08.11 21:51:23 | 000,494,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LogonController.dll [2015.08.11 21:51:22 | 000,801,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe [2015.08.11 21:51:22 | 000,505,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys [2015.08.11 21:51:22 | 000,310,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionCenter.dll [2015.08.11 21:51:22 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.LockScreen.dll [2015.08.11 21:51:22 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.LockScreen.dll [2015.08.11 21:51:21 | 000,700,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe [2015.08.11 21:51:21 | 000,685,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdiWiFi.sys [2015.08.11 21:51:21 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActionCenter.dll [2015.08.11 21:51:21 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinBioDataModel.dll [2015.08.11 21:51:21 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SubscriptionMgr.dll [2015.08.11 21:51:21 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkStatus.dll [2015.08.11 21:51:20 | 001,274,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll [2015.08.11 21:51:20 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctfuimanager.dll [2015.08.11 21:51:20 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msctfuimanager.dll [2015.08.11 21:51:20 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Cortana.Desktop.dll [2015.08.11 21:51:20 | 000,516,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS [2015.08.11 21:51:20 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationObjFactory.dll [2015.08.11 21:51:20 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NotificationObjFactory.dll [2015.08.11 21:51:20 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VPNv2CSP.dll [2015.08.11 21:51:19 | 001,822,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll [2015.08.11 21:51:19 | 000,317,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\configmanager2.dll [2015.08.11 21:51:19 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe [2015.08.11 21:51:19 | 000,200,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wof.sys [2015.08.11 21:51:19 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\coredpus.dll [2015.08.11 21:51:18 | 000,052,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wpcfltr.sys [2015.08.11 21:51:17 | 000,594,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Shell.Broker.dll [2015.08.11 21:51:17 | 000,046,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\msgpiowin32.sys [2015.08.11 21:51:15 | 000,243,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll [2015.08.11 21:51:14 | 000,393,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys [2015.08.11 21:51:11 | 000,384,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppBroker.dll [2015.08.11 21:51:11 | 000,311,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppBroker.dll [2015.08.11 21:51:11 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModelShim.dll [2015.08.11 21:51:10 | 001,290,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll [2015.08.11 21:51:10 | 000,911,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModel.dll [2015.08.11 21:51:10 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tileobjserver.dll [2015.08.11 21:51:09 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEEventDispatcher.dll [2015.08.11 21:51:09 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_UserAccount.dll [2015.08.11 21:51:09 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEEventDispatcher.dll [2015.08.11 21:51:09 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEDataLayerHelpers.dll [2015.08.11 21:51:08 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEDataLayerHelpers.dll [2015.08.11 18:23:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi [2015.08.10 14:20:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\SleepStudy [2015.08.07 17:45:54 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\Documents\Baldur's Gate II - Enhanced Edition [2015.08.06 19:48:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther [2015.08.06 19:47:59 | 000,000,000 | -HSD | C] -- C:\Recovery [2015.08.06 19:45:22 | 001,561,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll [2015.08.06 19:45:22 | 001,356,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll [2015.08.06 19:45:22 | 000,569,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MCRecvSrc.dll [2015.08.06 19:45:22 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll [2015.08.06 19:45:22 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MCRecvSrc.dll [2015.08.06 19:45:22 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe [2015.08.06 19:45:15 | 014,241,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll [2015.08.06 19:45:15 | 012,589,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll [2015.08.06 19:45:15 | 011,557,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll [2015.08.06 19:45:15 | 009,889,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll [2015.08.06 19:45:15 | 006,305,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll [2015.08.06 19:45:15 | 004,791,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll [2015.08.06 19:45:15 | 004,760,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll [2015.08.06 19:45:15 | 004,398,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll [2015.08.06 19:45:15 | 004,350,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll [2015.08.06 19:45:15 | 004,169,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIRibbon.dll [2015.08.06 19:45:15 | 003,443,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIRibbon.dll [2015.08.06 19:45:15 | 003,248,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll [2015.08.06 19:45:15 | 002,646,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll [2015.08.06 19:45:15 | 002,147,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll [2015.08.06 19:45:15 | 001,562,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpmde.dll [2015.08.06 19:45:15 | 001,411,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Editing.dll [2015.08.06 19:45:15 | 001,201,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Cred.dll [2015.08.06 19:45:15 | 001,200,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll [2015.08.06 19:45:15 | 001,043,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Editing.dll [2015.08.06 19:45:15 | 001,043,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll [2015.08.06 19:45:15 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorDataService.exe [2015.08.06 19:45:15 | 001,025,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll [2015.08.06 19:45:15 | 000,980,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecConfig.efi [2015.08.06 19:45:15 | 000,896,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll [2015.08.06 19:45:15 | 000,877,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll [2015.08.06 19:45:15 | 000,872,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntshrui.dll [2015.08.06 19:45:15 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comdlg32.dll [2015.08.06 19:45:15 | 000,846,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll [2015.08.06 19:45:15 | 000,816,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll [2015.08.06 19:45:15 | 000,799,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpccpl.dll [2015.08.06 19:45:15 | 000,754,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Cred.dll [2015.08.06 19:45:15 | 000,713,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll [2015.08.06 19:45:15 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieproxy.dll [2015.08.06 19:45:15 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnapps.dll [2015.08.06 19:45:15 | 000,589,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uxtheme.dll [2015.08.06 19:45:15 | 000,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\efscore.dll [2015.08.06 19:45:15 | 000,584,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll [2015.08.06 19:45:15 | 000,584,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIRibbonRes.dll [2015.08.06 19:45:15 | 000,584,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIRibbonRes.dll [2015.08.06 19:45:15 | 000,584,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll [2015.08.06 19:45:15 | 000,542,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFolder.dll [2015.08.06 19:45:15 | 000,527,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll [2015.08.06 19:45:15 | 000,521,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PsmServiceExtHost.dll [2015.08.06 19:45:15 | 000,501,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll [2015.08.06 19:45:15 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmkvsrcsnk.dll [2015.08.06 19:45:15 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.BlockedShutdown.dll [2015.08.06 19:45:15 | 000,473,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wpnapps.dll [2015.08.06 19:45:15 | 000,437,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll [2015.08.06 19:45:15 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.BioFeedback.dll [2015.08.06 19:45:15 | 000,407,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredProvDataModel.dll [2015.08.06 19:45:15 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmkvsrcsnk.dll [2015.08.06 19:45:15 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stobject.dll [2015.08.06 19:45:15 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredProvDataModel.dll [2015.08.06 19:45:15 | 000,333,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFPlay.dll [2015.08.06 19:45:15 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.BlockedShutdown.dll [2015.08.06 19:45:15 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ConhostV2.dll [2015.08.06 19:45:15 | 000,310,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsApi.dll [2015.08.06 19:45:15 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieproxy.dll [2015.08.06 19:45:15 | 000,291,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemcpl.dll [2015.08.06 19:45:15 | 000,285,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFPlay.dll [2015.08.06 19:45:15 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.BioFeedback.dll [2015.08.06 19:45:15 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll [2015.08.06 19:45:15 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\systemcpl.dll [2015.08.06 19:45:15 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ConsoleLogon.dll [2015.08.06 19:45:15 | 000,252,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll [2015.08.06 19:45:15 | 000,251,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsApi.dll [2015.08.06 19:45:15 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicesFlowBroker.dll [2015.08.06 19:45:15 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fwpolicyiomgr.dll [2015.08.06 19:45:15 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll [2015.08.06 19:45:15 | 000,181,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll [2015.08.06 19:45:15 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_SignInOptions.dll [2015.08.06 19:45:15 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srumsvc.dll [2015.08.06 19:45:15 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Privacy.dll [2015.08.06 19:45:15 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fwpolicyiomgr.dll [2015.08.06 19:45:15 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sendmail.dll [2015.08.06 19:45:15 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sendmail.dll [2015.08.06 19:45:15 | 000,097,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcd.dll [2015.08.06 19:45:15 | 000,082,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcd.dll [2015.08.06 19:45:15 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spbcd.dll [2015.08.06 19:45:15 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Cortana.ProxyStub.dll [2015.08.06 19:45:15 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Cortana.OneCore.dll [2015.08.06 19:45:15 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Cortana.PAL.Desktop.dll [2015.08.06 19:45:15 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\calc.exe [2015.08.06 19:45:15 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\calc.exe [2015.08.06 19:45:09 | 007,569,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll [2015.08.06 19:45:09 | 007,051,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll [2015.08.06 19:45:09 | 006,101,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll [2015.08.06 19:45:09 | 005,076,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll [2015.08.06 19:45:09 | 003,362,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll [2015.08.06 19:45:09 | 001,521,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActiveSyncProvider.dll [2015.08.06 19:45:09 | 001,420,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataService.dll [2015.08.06 19:45:09 | 001,418,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RecoveryDrive.exe [2015.08.06 19:45:09 | 001,294,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi [2015.08.06 19:45:09 | 001,203,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Unistore.dll [2015.08.06 19:45:09 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll [2015.08.06 19:45:09 | 001,135,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipUp.exe [2015.08.06 19:45:09 | 001,123,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe [2015.08.06 19:45:09 | 001,018,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi [2015.08.06 19:45:09 | 000,934,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\refsv1.sys [2015.08.06 19:45:09 | 000,925,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Unistore.dll [2015.08.06 19:45:09 | 000,869,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll [2015.08.06 19:45:09 | 000,858,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe [2015.08.06 19:45:09 | 000,856,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContactApis.dll [2015.08.06 19:45:09 | 000,832,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll [2015.08.06 19:45:09 | 000,783,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll [2015.08.06 19:45:09 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\efscore.dll [2015.08.06 19:45:09 | 000,695,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll [2015.08.06 19:45:09 | 000,654,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll [2015.08.06 19:45:09 | 000,630,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll [2015.08.06 19:45:09 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ContactApis.dll [2015.08.06 19:45:09 | 000,521,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe [2015.08.06 19:45:09 | 000,494,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll [2015.08.06 19:45:09 | 000,446,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll [2015.08.06 19:45:09 | 000,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppcomapi.dll [2015.08.06 19:45:09 | 000,425,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll [2015.08.06 19:45:09 | 000,416,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdedit.exe [2015.08.06 19:45:09 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhext.dll [2015.08.06 19:45:09 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncsi.dll [2015.08.06 19:45:09 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usocore.dll [2015.08.06 19:45:09 | 000,342,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe [2015.08.06 19:45:09 | 000,329,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll [2015.08.06 19:45:09 | 000,328,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll [2015.08.06 19:45:09 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MBMediaManager.dll [2015.08.06 19:45:09 | 000,287,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll [2015.08.06 19:45:09 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll [2015.08.06 19:45:09 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\updatehandlers.dll [2015.08.06 19:45:09 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll [2015.08.06 19:45:09 | 000,208,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll [2015.08.06 19:45:09 | 000,208,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srumsvc.dll [2015.08.06 19:45:09 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll [2015.08.06 19:45:09 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OmaDmAgent.dll [2015.08.06 19:45:09 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReInfo.dll [2015.08.06 19:45:09 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll [2015.08.06 19:45:09 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BootMenuUX.dll [2015.08.06 19:45:09 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll [2015.08.06 19:45:09 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdboot.exe [2015.08.06 19:45:09 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll [2015.08.06 19:45:09 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe [2015.08.06 19:45:09 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEStoreEventHandlers.dll [2015.08.06 19:45:09 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmclient.exe [2015.08.06 19:45:09 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.V2.dll [2015.08.06 19:45:09 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spbcd.dll [2015.08.06 19:45:09 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSysprep.dll [2015.08.06 19:45:09 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsNativeApi.V2.dll [2015.08.06 19:45:09 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\setbcdlocale.dll [2015.08.06 19:45:09 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\unenrollhook.dll [2015.08.06 19:45:09 | 000,061,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys [2015.08.06 19:45:09 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hmkd.dll [2015.08.06 19:45:09 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotificationUx.exe [2015.08.06 19:45:09 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmprc.exe [2015.08.06 19:45:09 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\hmkd.dll [2015.08.06 19:45:09 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VoiceActivationManager.dll [2015.08.06 19:45:09 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerShellext.exe [2015.08.06 19:45:08 | 006,488,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll [2015.08.06 19:45:08 | 005,118,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll [2015.08.06 19:45:08 | 004,611,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll [2015.08.06 19:45:08 | 003,248,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll [2015.08.06 19:45:08 | 002,606,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll [2015.08.06 19:45:08 | 002,125,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll [2015.08.06 19:45:08 | 001,714,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll [2015.08.06 19:45:08 | 001,591,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll [2015.08.06 19:45:08 | 001,417,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll [2015.08.06 19:45:08 | 001,203,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Bluetooth.dll [2015.08.06 19:45:08 | 001,101,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll [2015.08.06 19:45:08 | 000,966,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.appcore.dll [2015.08.06 19:45:08 | 000,841,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Import.dll [2015.08.06 19:45:08 | 000,828,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Bluetooth.dll [2015.08.06 19:45:08 | 000,823,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll [2015.08.06 19:45:08 | 000,808,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CoreMessaging.dll [2015.08.06 19:45:08 | 000,762,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.appcore.dll [2015.08.06 19:45:08 | 000,680,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll [2015.08.06 19:45:08 | 000,679,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppContracts.dll [2015.08.06 19:45:08 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll [2015.08.06 19:45:08 | 000,658,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipSVC.dll [2015.08.06 19:45:08 | 000,632,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll [2015.08.06 19:45:08 | 000,590,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MessagingDataModel2.dll [2015.08.06 19:45:08 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Import.dll [2015.08.06 19:45:08 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationController.dll [2015.08.06 19:45:08 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CoreMessaging.dll [2015.08.06 19:45:08 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll [2015.08.06 19:45:08 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MessagingDataModel2.dll [2015.08.06 19:45:08 | 000,441,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppContracts.dll [2015.08.06 19:45:08 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Bluetooth.dll [2015.08.06 19:45:08 | 000,335,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll [2015.08.06 19:45:08 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Bluetooth.dll [2015.08.06 19:45:08 | 000,290,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininit.exe [2015.08.06 19:45:08 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DisplayManager.dll [2015.08.06 19:45:08 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DisplayManager.dll [2015.08.06 19:45:08 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmapi.dll [2015.08.06 19:45:08 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ACPBackgroundManagerPolicy.dll [2015.08.06 19:45:08 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbser.sys [2015.08.06 19:45:08 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\bthhfenum.sys [2015.08.06 19:45:08 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UcmUcsi.sys [2015.08.06 19:45:08 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VoiceActivationManager.dll [2015.08.06 19:45:08 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationControllerPS.dll [2015.08.06 19:38:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\XPSViewer [2015.08.06 19:38:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\msmq [2015.08.06 19:38:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\BestPractices [2015.08.06 19:38:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\BestPractices [2015.08.06 19:38:12 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2015.08.06 19:38:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies [2015.08.06 19:38:12 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2015.08.06 19:38:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild [2015.08.06 19:38:12 | 000,000,000 | ---D | C] -- C:\inetpub [2015.08.06 19:37:47 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll [2015.08.06 19:37:47 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll [2015.08.06 19:37:47 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe [2015.08.06 19:37:46 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll [2015.08.06 19:37:46 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll [2015.08.06 19:37:46 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe [2015.08.06 19:10:12 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\Comms [2015.08.06 19:05:45 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\OneDrive [2015.08.06 19:05:05 | 006,358,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NlsData0009.dll [2015.08.06 19:05:05 | 005,739,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\prm0009.dll [2015.08.06 19:05:05 | 002,629,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NlsLexicons0009.dll [2015.08.06 19:04:57 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\NetworkTiles [2015.08.06 19:04:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive [2015.08.06 19:03:13 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\Publishers [2015.08.06 19:02:56 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\Packages [2015.08.06 19:02:55 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\TileDataLayer [2015.08.06 18:58:10 | 002,718,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintConfig.dll [2015.08.06 18:54:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SpeechEngines [2015.08.06 18:54:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2015.08.06 18:53:43 | 000,000,000 | --SD | C] -- C:\Users\dieFackel\AppData\Roaming\Microsoft [2015.08.06 18:53:43 | 000,000,000 | R-SD | C] -- C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell [2015.08.06 18:53:43 | 000,000,000 | R--D | C] -- C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools [2015.08.06 18:53:43 | 000,000,000 | R--D | C] -- C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2015.08.06 18:53:43 | 000,000,000 | R--D | C] -- C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Vorlagen [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\AppData\Local\Verlauf [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\AppData\Local\Temporary Internet Files [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Startmenü [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\SendTo [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Recent [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Netzwerkumgebung [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Lokale Einstellungen [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Documents\Eigene Videos [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Documents\Eigene Musik [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Eigene Dateien [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Documents\Eigene Bilder [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Druckumgebung [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Cookies [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\AppData\Local\Anwendungsdaten [2015.08.06 18:53:43 | 000,000,000 | -HSD | C] -- C:\Users\dieFackel\Anwendungsdaten [2015.08.06 18:53:43 | 000,000,000 | -H-D | C] -- C:\Users\dieFackel\AppData [2015.08.06 18:53:43 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\Temp [2015.08.06 18:53:43 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\Microsoft [2015.08.06 18:53:43 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2015.08.06 18:50:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung [2015.08.06 18:50:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\DAX2 [2015.08.06 18:50:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM [2015.08.06 18:50:19 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2015.08.06 18:50:18 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2015.08.06 18:50:16 | 006,873,928 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcpl.dll [2015.08.06 18:50:16 | 003,493,008 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvc64.dll [2015.08.06 18:50:16 | 002,558,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvcr.dll [2015.08.06 18:50:16 | 000,385,168 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvmctray.dll [2015.08.06 18:50:16 | 000,062,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvshext.dll [2015.08.06 18:50:08 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2015.08.06 18:50:03 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2015.08.06 18:50:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2015.08.06 18:48:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2015.08.05 16:55:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Echobit [2015.08.05 16:55:41 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\Echobit [2015.08.05 03:40:16 | 018,385,304 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvwgf2umx.dll [2015.08.05 03:40:16 | 015,762,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvwgf2um.dll [2015.08.05 03:40:14 | 030,529,168 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvoglv64.dll [2015.08.05 03:40:14 | 022,983,824 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvoglv32.dll [2015.08.05 03:40:14 | 016,169,160 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvopencl.dll [2015.08.05 03:40:14 | 013,285,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvopencl.dll [2015.08.05 03:40:14 | 001,569,080 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvhdagenco6420103.dll [2015.08.05 03:40:14 | 001,173,904 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvumdshimx.dll [2015.08.05 03:40:14 | 001,071,248 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFR64.dll [2015.08.05 03:40:14 | 000,999,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvumdshim.dll [2015.08.05 03:40:14 | 000,993,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFR.dll [2015.08.05 03:40:14 | 000,418,448 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFROpenGL.dll [2015.08.05 03:40:14 | 000,374,600 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFROpenGL.dll [2015.08.05 03:40:14 | 000,206,152 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\drivers\nvhda64v.sys [2015.08.05 03:40:14 | 000,187,136 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvinitx.dll [2015.08.05 03:40:14 | 000,165,512 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvinit.dll [2015.08.05 03:40:14 | 000,161,064 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvoglshim64.dll [2015.08.05 03:40:14 | 000,137,224 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvoglshim32.dll [2015.08.05 03:40:14 | 000,041,784 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvhdap64.dll [2015.08.05 03:40:12 | 016,021,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvd3dumx.dll [2015.08.05 03:40:12 | 014,521,840 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuda.dll [2015.08.05 03:40:12 | 012,983,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvd3dum.dll [2015.08.05 03:40:12 | 011,852,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuda.dll [2015.08.05 03:40:12 | 002,371,216 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvid.dll [2015.08.05 03:40:12 | 002,174,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvid.dll [2015.08.05 03:40:12 | 001,908,368 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispco6435362.dll [2015.08.05 03:40:12 | 001,567,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispgenco6435362.dll [2015.08.05 03:40:12 | 001,063,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvFBC64.dll [2015.08.05 03:40:12 | 000,985,248 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvFBC.dll [2015.08.05 03:40:12 | 000,797,616 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncMFTH264.dll [2015.08.05 03:40:12 | 000,642,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvEncMFTH264.dll [2015.08.05 03:40:12 | 000,394,696 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncodeAPI64.dll [2015.08.05 03:40:12 | 000,384,840 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvDecMFTMjpeg.dll [2015.08.05 03:40:12 | 000,350,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvDecMFTMjpeg.dll [2015.08.05 03:40:12 | 000,325,168 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvEncodeAPI.dll [2015.08.05 03:40:10 | 003,360,576 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvapi64.dll [2015.08.05 03:40:10 | 002,971,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvapi.dll [2015.08.04 14:46:41 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\LogMeIn [2015.08.04 14:46:41 | 000,000,000 | ---D | C] -- C:\ProgramData\LogMeIn [2015.08.04 14:45:15 | 000,033,856 | -H-- | C] (LogMeIn, Inc.) -- C:\WINDOWS\SysNative\hamachi.sys [2015.08.04 14:45:12 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Local\LogMeIn Hamachi [2015.08.03 12:12:32 | 000,045,680 | -H-- | C] (LogMeIn Inc.) -- C:\WINDOWS\SysNative\drivers\Hamdrv.sys [2015.07.28 13:44:35 | 000,110,688 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysNative\WindowsAccessBridge-64.dll [2015.07.28 13:44:20 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2015.07.25 23:26:08 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Roaming\.StarMade [2015.07.23 01:17:02 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Roaming\PFStaticIP [2015.07.23 01:16:18 | 000,000,000 | ---D | C] -- C:\Users\dieFackel\AppData\Roaming\PortForward.com [8 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ] [1 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ] [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] Geändert von dieFackel (20.09.2015 um 17:00 Uhr) |
|
20.09.2015, 17:00
| #7 |
| | Malware Befall? OTL 2/2 Code:
ATTFilter ========== Files - Modified Within 60 Days ========== [2015.09.20 13:59:25 | 000,001,132 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2015.09.20 13:59:00 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2015.09.20 13:55:55 | 000,000,863 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2015.09.20 13:55:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\dieFackel\Desktop\OTL.exe [2015.09.20 13:54:14 | 000,113,880 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys [2015.09.20 13:43:58 | 000,079,064 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\ggpcixbf.sys [2015.09.20 13:36:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2015.09.20 13:34:41 | 000,001,175 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2015.09.20 13:10:45 | 000,016,148 | ---- | M] () -- C:\WINDOWS\SysNative\SOL-PC_dieFackel_HistoryPrediction.bin [2015.09.20 13:10:39 | 2144,747,519 | -HS- | M] () -- C:\hiberfil.sys [2015.09.20 13:10:39 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2015.09.19 02:33:11 | 000,000,838 | ---- | M] () -- C:\Users\dieFackel\Desktop\CrystalDiskInfo.lnk [2015.09.18 19:19:19 | 002,077,126 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2015.09.18 19:19:19 | 000,883,584 | ---- | M] () -- C:\WINDOWS\SysNative\perfh007.dat [2015.09.18 19:19:19 | 000,824,568 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat [2015.09.18 19:19:19 | 000,195,718 | ---- | M] () -- C:\WINDOWS\SysNative\perfc007.dat [2015.09.18 19:19:19 | 000,171,286 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat [2015.09.18 19:13:17 | 000,001,967 | ---- | M] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk [2015.09.18 19:13:01 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\gdrv.sys [2015.09.18 19:12:57 | 589,516,284 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP [2015.09.18 19:12:57 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2015.09.16 13:14:06 | 000,219,888 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT [2015.09.02 03:20:52 | 000,077,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll [2015.09.02 02:25:58 | 003,586,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys [2015.09.02 02:25:34 | 001,382,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys [2015.08.29 15:39:50 | 000,110,688 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysNative\WindowsAccessBridge-64.dll [2015.08.27 08:32:24 | 000,608,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe [2015.08.27 08:04:18 | 021,874,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll [2015.08.27 07:54:40 | 000,365,568 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll [2015.08.27 07:54:26 | 000,541,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe [2015.08.27 07:51:48 | 001,774,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll [2015.08.27 07:51:42 | 002,350,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll [2015.08.27 07:43:57 | 000,826,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll [2015.08.27 07:43:31 | 000,576,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll [2015.08.27 07:42:52 | 000,187,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.PicturePassword.dll [2015.08.27 07:42:46 | 000,596,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSync.dll [2015.08.27 07:42:36 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shacct.dll [2015.08.27 07:42:25 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe [2015.08.27 07:39:42 | 000,045,568 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll [2015.08.27 07:23:43 | 000,303,104 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll [2015.08.27 07:16:41 | 001,612,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll [2015.08.27 07:16:38 | 002,153,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll [2015.08.27 07:16:03 | 018,806,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll [2015.08.27 07:12:34 | 000,650,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll [2015.08.27 07:11:54 | 000,484,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSync.dll [2015.08.27 07:11:39 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\shacct.dll [2015.08.27 07:08:18 | 000,037,376 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll [2015.08.22 19:29:28 | 000,000,208 | ---- | M] () -- C:\Users\dieFackel\Desktop\Total War SHOGUN 2.url [2015.08.20 08:07:55 | 008,019,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe [2015.08.20 08:06:53 | 000,609,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll [2015.08.20 07:26:23 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe [2015.08.20 07:21:13 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EnterpriseModernAppMgmtCSP.dll [2015.08.18 09:56:25 | 002,498,808 | ---- | M] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll [2015.08.18 09:55:45 | 000,373,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS [2015.08.18 09:54:30 | 001,396,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll [2015.08.18 09:27:23 | 001,771,592 | ---- | M] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll [2015.08.18 09:24:35 | 000,963,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll [2015.08.18 09:13:10 | 000,497,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WlanMediaManager.dll [2015.08.18 09:13:06 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupShim.dll [2015.08.18 09:12:20 | 000,692,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\NfcCx.dll [2015.08.18 09:12:18 | 002,225,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll [2015.08.18 09:04:20 | 000,859,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\modernexecserver.dll [2015.08.18 09:04:14 | 001,234,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aitstatic.exe [2015.08.18 08:59:35 | 001,294,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcnwiz.dll [2015.08.18 08:59:02 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WcnApi.dll [2015.08.18 08:58:46 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WcnNetsh.dll [2015.08.18 08:58:34 | 000,112,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fdWCN.dll [2015.08.18 08:58:31 | 000,117,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafWCN.dll [2015.08.18 08:58:25 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll [2015.08.18 08:57:54 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll [2015.08.18 08:56:48 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BthRadioMedia.dll [2015.08.18 08:55:01 | 002,178,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll [2015.08.18 08:54:11 | 000,247,296 | ---- | M] () -- C:\WINDOWS\SysNative\facecredentialprovider.dll [2015.08.18 08:54:03 | 000,322,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vaultsvc.dll [2015.08.18 08:52:26 | 001,888,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll [2015.08.18 08:50:04 | 001,795,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll [2015.08.18 08:49:52 | 001,061,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll [2015.08.18 08:49:20 | 000,246,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PackageStateRoaming.dll [2015.08.18 08:49:03 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupShim.dll [2015.08.18 08:36:08 | 001,226,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wcnwiz.dll [2015.08.18 08:35:49 | 000,100,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WcnApi.dll [2015.08.18 08:34:44 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfdprov.dll [2015.08.18 08:29:11 | 001,593,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll [2015.08.18 08:26:08 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PackageStateRoaming.dll [2015.08.18 06:44:12 | 000,008,847 | ---- | M] () -- C:\WINDOWS\SysNative\ResPriHMImageList [2015.08.17 23:58:53 | 000,001,089 | ---- | M] () -- C:\Users\dieFackel\Desktop\Common.lnk [2015.08.14 03:25:18 | 000,001,902 | ---- | M] () -- C:\Users\dieFackel\Desktop\StarMade Server.lnk [2015.08.13 06:22:26 | 002,093,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidsvc.dll [2015.08.13 06:20:39 | 000,414,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll [2015.08.13 05:53:21 | 000,311,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll [2015.08.11 12:04:24 | 002,462,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll [2015.08.11 12:04:23 | 004,532,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [2015.08.11 12:04:15 | 001,087,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll [2015.08.11 12:03:09 | 000,442,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys [2015.08.11 12:02:57 | 000,554,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\directmanipulation.dll [2015.08.11 12:02:56 | 000,080,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys [2015.08.11 12:02:49 | 000,292,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppHost.exe [2015.08.11 11:52:49 | 000,993,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgent.dll [2015.08.11 11:50:47 | 001,643,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diagtrack.dll [2015.08.11 11:40:22 | 004,048,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe [2015.08.11 11:40:12 | 000,918,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll [2015.08.11 11:40:08 | 002,151,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll [2015.08.11 11:38:22 | 000,454,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\directmanipulation.dll [2015.08.11 11:37:48 | 000,243,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppHost.exe [2015.08.11 11:26:03 | 000,845,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgent.dll [2015.08.11 11:23:59 | 016,706,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll [2015.08.11 11:21:13 | 000,148,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringservice.dll [2015.08.11 11:21:04 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringclient.dll [2015.08.11 11:20:02 | 000,483,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OneDriveSettingSyncProvider.dll [2015.08.11 11:19:45 | 000,235,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Notifications.dll [2015.08.11 11:18:44 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll [2015.08.11 11:16:32 | 002,416,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll [2015.08.11 11:14:02 | 000,404,480 | ---- | M] () -- C:\WINDOWS\SysNative\diagtrack_wininternal.dll [2015.08.11 11:13:42 | 000,413,184 | ---- | M] () -- C:\WINDOWS\SysNative\diagtrack_win.dll [2015.08.11 11:11:40 | 002,446,336 | ---- | M] () -- C:\WINDOWS\SysNative\InputService.dll [2015.08.11 11:11:18 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GamePanel.exe [2015.08.11 11:10:47 | 000,293,376 | ---- | M] () -- C:\WINDOWS\SysNative\TextInputFramework.dll [2015.08.11 11:10:12 | 000,324,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll [2015.08.11 11:10:06 | 000,778,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll [2015.08.11 11:09:55 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuautoappupdate.dll [2015.08.11 11:08:04 | 000,893,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApiPublic.dll [2015.08.11 11:08:04 | 000,563,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApi.dll [2015.08.11 11:07:52 | 000,593,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll [2015.08.11 11:07:44 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeParserTask.exe [2015.08.11 11:06:19 | 007,523,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll [2015.08.11 11:05:48 | 000,342,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationGeofences.dll [2015.08.11 11:05:27 | 000,269,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationFramework.dll [2015.08.11 11:05:23 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationFrameworkInternalPS.dll [2015.08.11 11:05:20 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationPermissions.dll [2015.08.11 11:05:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXService.dll [2015.08.11 11:05:07 | 003,527,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll [2015.08.11 11:03:09 | 002,558,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll [2015.08.11 11:02:53 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cloudAP.dll [2015.08.11 11:02:15 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll [2015.08.11 11:01:38 | 001,334,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll [2015.08.11 11:00:45 | 000,336,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe [2015.08.11 11:00:06 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\syncutil.dll [2015.08.11 10:59:51 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll [2015.08.11 10:59:33 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tetheringclient.dll [2015.08.11 10:59:27 | 000,642,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdbui.dll [2015.08.11 10:58:11 | 000,372,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OneDriveSettingSyncProvider.dll [2015.08.11 10:57:51 | 013,024,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll [2015.08.11 10:57:12 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll [2015.08.11 10:51:35 | 001,916,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll [2015.08.11 10:51:33 | 001,823,232 | ---- | M] () -- C:\WINDOWS\SysWow64\InputService.dll [2015.08.11 10:50:59 | 000,131,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll [2015.08.11 10:50:58 | 000,200,704 | ---- | M] () -- C:\WINDOWS\SysWow64\TextInputFramework.dll [2015.08.11 10:50:47 | 000,420,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GamePanel.exe [2015.08.11 10:49:50 | 000,586,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll [2015.08.11 10:49:30 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll [2015.08.11 10:48:25 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApiPublic.dll [2015.08.11 10:47:09 | 000,448,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApi.dll [2015.08.11 10:43:39 | 002,748,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll [2015.08.11 10:42:33 | 005,454,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll [2015.08.11 10:40:32 | 001,964,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll [2015.08.11 10:40:12 | 001,112,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll [2015.08.11 10:38:43 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReInfo.dll [2015.08.08 17:38:46 | 000,794,088 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe [2015.08.08 17:38:46 | 000,179,688 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl [2015.08.08 09:29:58 | 001,822,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll [2015.08.08 08:24:15 | 002,415,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWrite.dll [2015.08.07 16:28:27 | 000,016,148 | ---- | M] () -- C:\WINDOWS\SysNative\DIEFACKEL-PC_dieFackel_HistoryPrediction.bin [2015.08.06 19:45:22 | 001,561,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll [2015.08.06 19:45:22 | 001,356,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll [2015.08.06 19:45:22 | 000,569,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MCRecvSrc.dll [2015.08.06 19:45:22 | 000,497,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll [2015.08.06 19:45:22 | 000,480,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MCRecvSrc.dll [2015.08.06 19:45:22 | 000,275,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe [2015.08.06 19:45:15 | 014,241,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll [2015.08.06 19:45:15 | 012,589,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll [2015.08.06 19:45:15 | 011,557,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll [2015.08.06 19:45:15 | 009,889,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll [2015.08.06 19:45:15 | 006,305,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll [2015.08.06 19:45:15 | 004,791,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll [2015.08.06 19:45:15 | 004,760,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll [2015.08.06 19:45:15 | 004,398,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll [2015.08.06 19:45:15 | 004,350,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll [2015.08.06 19:45:15 | 004,169,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIRibbon.dll [2015.08.06 19:45:15 | 003,443,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIRibbon.dll [2015.08.06 19:45:15 | 003,248,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll [2015.08.06 19:45:15 | 002,646,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll [2015.08.06 19:45:15 | 002,147,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll [2015.08.06 19:45:15 | 001,562,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpmde.dll [2015.08.06 19:45:15 | 001,411,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Editing.dll [2015.08.06 19:45:15 | 001,201,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Cred.dll [2015.08.06 19:45:15 | 001,200,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll [2015.08.06 19:45:15 | 001,043,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Editing.dll [2015.08.06 19:45:15 | 001,043,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll [2015.08.06 19:45:15 | 001,031,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorDataService.exe [2015.08.06 19:45:15 | 001,025,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll [2015.08.06 19:45:15 | 000,980,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecConfig.efi [2015.08.06 19:45:15 | 000,896,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll [2015.08.06 19:45:15 | 000,877,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll [2015.08.06 19:45:15 | 000,872,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntshrui.dll [2015.08.06 19:45:15 | 000,850,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comdlg32.dll [2015.08.06 19:45:15 | 000,846,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll [2015.08.06 19:45:15 | 000,816,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll [2015.08.06 19:45:15 | 000,799,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpccpl.dll [2015.08.06 19:45:15 | 000,754,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Cred.dll [2015.08.06 19:45:15 | 000,713,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll [2015.08.06 19:45:15 | 000,670,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieproxy.dll [2015.08.06 19:45:15 | 000,599,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnapps.dll [2015.08.06 19:45:15 | 000,589,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uxtheme.dll [2015.08.06 19:45:15 | 000,589,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\efscore.dll [2015.08.06 19:45:15 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll [2015.08.06 19:45:15 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIRibbonRes.dll [2015.08.06 19:45:15 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIRibbonRes.dll [2015.08.06 19:45:15 | 000,584,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll [2015.08.06 19:45:15 | 000,542,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFolder.dll [2015.08.06 19:45:15 | 000,527,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll [2015.08.06 19:45:15 | 000,521,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PsmServiceExtHost.dll [2015.08.06 19:45:15 | 000,501,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll [2015.08.06 19:45:15 | 000,487,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmkvsrcsnk.dll [2015.08.06 19:45:15 | 000,485,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.BlockedShutdown.dll [2015.08.06 19:45:15 | 000,473,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wpnapps.dll [2015.08.06 19:45:15 | 000,437,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll [2015.08.06 19:45:15 | 000,414,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.BioFeedback.dll [2015.08.06 19:45:15 | 000,407,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredProvDataModel.dll [2015.08.06 19:45:15 | 000,373,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmkvsrcsnk.dll [2015.08.06 19:45:15 | 000,356,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stobject.dll [2015.08.06 19:45:15 | 000,335,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredProvDataModel.dll [2015.08.06 19:45:15 | 000,333,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFPlay.dll [2015.08.06 19:45:15 | 000,322,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.BlockedShutdown.dll [2015.08.06 19:45:15 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ConhostV2.dll [2015.08.06 19:45:15 | 000,310,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsApi.dll [2015.08.06 19:45:15 | 000,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieproxy.dll [2015.08.06 19:45:15 | 000,291,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemcpl.dll [2015.08.06 19:45:15 | 000,285,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFPlay.dll [2015.08.06 19:45:15 | 000,283,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.BioFeedback.dll [2015.08.06 19:45:15 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll [2015.08.06 19:45:15 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\systemcpl.dll [2015.08.06 19:45:15 | 000,271,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ConsoleLogon.dll [2015.08.06 19:45:15 | 000,252,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll [2015.08.06 19:45:15 | 000,251,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsApi.dll [2015.08.06 19:45:15 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicesFlowBroker.dll [2015.08.06 19:45:15 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fwpolicyiomgr.dll [2015.08.06 19:45:15 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll [2015.08.06 19:45:15 | 000,181,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll [2015.08.06 19:45:15 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_SignInOptions.dll [2015.08.06 19:45:15 | 000,179,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srumsvc.dll [2015.08.06 19:45:15 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_Privacy.dll [2015.08.06 19:45:15 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fwpolicyiomgr.dll [2015.08.06 19:45:15 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sendmail.dll [2015.08.06 19:45:15 | 000,104,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sendmail.dll [2015.08.06 19:45:15 | 000,097,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcd.dll [2015.08.06 19:45:15 | 000,082,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcd.dll [2015.08.06 19:45:15 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spbcd.dll [2015.08.06 19:45:15 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Cortana.ProxyStub.dll [2015.08.06 19:45:15 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Cortana.OneCore.dll [2015.08.06 19:45:15 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Cortana.PAL.Desktop.dll [2015.08.06 19:45:15 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\calc.exe [2015.08.06 19:45:15 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\calc.exe [2015.08.06 19:45:09 | 007,569,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll [2015.08.06 19:45:09 | 007,051,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll [2015.08.06 19:45:09 | 006,101,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll [2015.08.06 19:45:09 | 005,076,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll [2015.08.06 19:45:09 | 003,362,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll [2015.08.06 19:45:09 | 001,521,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActiveSyncProvider.dll [2015.08.06 19:45:09 | 001,420,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDataService.dll [2015.08.06 19:45:09 | 001,418,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RecoveryDrive.exe [2015.08.06 19:45:09 | 001,294,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi [2015.08.06 19:45:09 | 001,203,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Unistore.dll [2015.08.06 19:45:09 | 001,169,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll [2015.08.06 19:45:09 | 001,135,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipUp.exe [2015.08.06 19:45:09 | 001,123,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe [2015.08.06 19:45:09 | 001,018,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi [2015.08.06 19:45:09 | 000,934,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\refsv1.sys [2015.08.06 19:45:09 | 000,925,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Unistore.dll [2015.08.06 19:45:09 | 000,869,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll [2015.08.06 19:45:09 | 000,858,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe [2015.08.06 19:45:09 | 000,856,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContactApis.dll [2015.08.06 19:45:09 | 000,832,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll [2015.08.06 19:45:09 | 000,783,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll [2015.08.06 19:45:09 | 000,752,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\efscore.dll [2015.08.06 19:45:09 | 000,695,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll [2015.08.06 19:45:09 | 000,654,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll [2015.08.06 19:45:09 | 000,630,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll [2015.08.06 19:45:09 | 000,623,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ContactApis.dll [2015.08.06 19:45:09 | 000,521,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe [2015.08.06 19:45:09 | 000,505,344 | ---- | M] () -- C:\WINDOWS\SysNative\EditionUpgradeManagerObj.dll [2015.08.06 19:45:09 | 000,494,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll [2015.08.06 19:45:09 | 000,446,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll [2015.08.06 19:45:09 | 000,430,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppcomapi.dll [2015.08.06 19:45:09 | 000,425,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll [2015.08.06 19:45:09 | 000,416,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdedit.exe [2015.08.06 19:45:09 | 000,366,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhext.dll [2015.08.06 19:45:09 | 000,359,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncsi.dll [2015.08.06 19:45:09 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usocore.dll [2015.08.06 19:45:09 | 000,342,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe [2015.08.06 19:45:09 | 000,329,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll [2015.08.06 19:45:09 | 000,328,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll [2015.08.06 19:45:09 | 000,303,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MBMediaManager.dll [2015.08.06 19:45:09 | 000,287,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll [2015.08.06 19:45:09 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll [2015.08.06 19:45:09 | 000,242,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\updatehandlers.dll [2015.08.06 19:45:09 | 000,229,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll [2015.08.06 19:45:09 | 000,208,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll [2015.08.06 19:45:09 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srumsvc.dll [2015.08.06 19:45:09 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll [2015.08.06 19:45:09 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OmaDmAgent.dll [2015.08.06 19:45:09 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReInfo.dll [2015.08.06 19:45:09 | 000,187,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll [2015.08.06 19:45:09 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BootMenuUX.dll [2015.08.06 19:45:09 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll [2015.08.06 19:45:09 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdboot.exe [2015.08.06 19:45:09 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll [2015.08.06 19:45:09 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe [2015.08.06 19:45:09 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\SensorsCx.dll [2015.08.06 19:45:09 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEStoreEventHandlers.dll [2015.08.06 19:45:09 | 000,120,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmclient.exe [2015.08.06 19:45:09 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.V2.dll [2015.08.06 19:45:09 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spbcd.dll [2015.08.06 19:45:09 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSysprep.dll [2015.08.06 19:45:09 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsNativeApi.V2.dll [2015.08.06 19:45:09 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\setbcdlocale.dll [2015.08.06 19:45:09 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\unenrollhook.dll [2015.08.06 19:45:09 | 000,061,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys [2015.08.06 19:45:09 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hmkd.dll [2015.08.06 19:45:09 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotificationUx.exe [2015.08.06 19:45:09 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmprc.exe [2015.08.06 19:45:09 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\hmkd.dll [2015.08.06 19:45:09 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VoiceActivationManager.dll [2015.08.06 19:45:09 | 000,032,768 | ---- | M] () -- C:\WINDOWS\SysNative\LicenseManagerApi.dll [2015.08.06 19:45:09 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerShellext.exe [2015.08.06 19:45:08 | 006,488,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll [2015.08.06 19:45:08 | 005,118,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll [2015.08.06 19:45:08 | 004,611,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll [2015.08.06 19:45:08 | 003,248,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll [2015.08.06 19:45:08 | 002,606,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll [2015.08.06 19:45:08 | 002,125,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll [2015.08.06 19:45:08 | 001,714,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll [2015.08.06 19:45:08 | 001,591,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll [2015.08.06 19:45:08 | 001,417,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll [2015.08.06 19:45:08 | 001,203,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Bluetooth.dll [2015.08.06 19:45:08 | 001,101,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll [2015.08.06 19:45:08 | 000,966,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.appcore.dll [2015.08.06 19:45:08 | 000,841,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Import.dll [2015.08.06 19:45:08 | 000,828,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Bluetooth.dll [2015.08.06 19:45:08 | 000,823,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll [2015.08.06 19:45:08 | 000,808,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CoreMessaging.dll [2015.08.06 19:45:08 | 000,762,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.appcore.dll [2015.08.06 19:45:08 | 000,680,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll [2015.08.06 19:45:08 | 000,679,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppContracts.dll [2015.08.06 19:45:08 | 000,677,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll [2015.08.06 19:45:08 | 000,658,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ClipSVC.dll [2015.08.06 19:45:08 | 000,632,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll [2015.08.06 19:45:08 | 000,590,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MessagingDataModel2.dll [2015.08.06 19:45:08 | 000,575,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Import.dll [2015.08.06 19:45:08 | 000,518,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationController.dll [2015.08.06 19:45:08 | 000,510,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CoreMessaging.dll [2015.08.06 19:45:08 | 000,503,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll [2015.08.06 19:45:08 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MessagingDataModel2.dll [2015.08.06 19:45:08 | 000,441,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppContracts.dll [2015.08.06 19:45:08 | 000,421,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Bluetooth.dll [2015.08.06 19:45:08 | 000,335,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll [2015.08.06 19:45:08 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Bluetooth.dll [2015.08.06 19:45:08 | 000,290,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininit.exe [2015.08.06 19:45:08 | 000,263,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DisplayManager.dll [2015.08.06 19:45:08 | 000,191,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DisplayManager.dll [2015.08.06 19:45:08 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmapi.dll [2015.08.06 19:45:08 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ACPBackgroundManagerPolicy.dll [2015.08.06 19:45:08 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbser.sys [2015.08.06 19:45:08 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\bthhfenum.sys [2015.08.06 19:45:08 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UcmUcsi.sys [2015.08.06 19:45:08 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VoiceActivationManager.dll [2015.08.06 19:45:08 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationControllerPS.dll [2015.08.06 19:38:10 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqoa.tlb [2015.08.06 19:38:10 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqoa10.tlb [2015.08.06 19:38:09 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqsnap.dll [2015.08.06 19:38:09 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iisRtl.dll [2015.08.06 19:38:09 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqoa30.tlb [2015.08.06 19:38:09 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqoa20.tlb [2015.08.06 19:38:09 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\admwprox.dll [2015.08.06 19:38:09 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ahadmin.dll [2015.08.06 19:38:09 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iisreset.exe [2015.08.06 19:38:09 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wamregps.dll [2015.08.06 19:38:09 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqcertui.dll [2015.08.06 19:38:09 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iisrstap.dll [2015.08.06 19:38:08 | 000,564,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqutil.dll [2015.08.06 19:38:08 | 000,265,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqoa.dll [2015.08.06 19:38:08 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqrt.dll [2015.08.06 19:38:08 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\mqac.sys [2015.08.06 19:38:08 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iisRtl.dll [2015.08.06 19:38:08 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqlogmgr.dll [2015.08.06 19:38:08 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\admwprox.dll [2015.08.06 19:38:08 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ahadmin.dll [2015.08.06 19:38:08 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iisreset.exe [2015.08.06 19:38:08 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wamregps.dll [2015.08.06 19:38:08 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iisrstap.dll [2015.08.06 19:38:08 | 000,009,096 | ---- | M] () -- C:\WINDOWS\SysWow64\msmqtrc.mof [2015.08.06 19:38:07 | 000,813,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqsnap.dll [2015.08.06 19:38:07 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqoa.tlb [2015.08.06 19:38:07 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqoa30.tlb [2015.08.06 19:38:07 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqoa20.tlb [2015.08.06 19:38:07 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqoa10.tlb [2015.08.06 19:38:07 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqcertui.dll [2015.08.06 19:38:06 | 001,417,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqqm.dll [2015.08.06 19:38:06 | 000,562,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqutil.dll [2015.08.06 19:38:06 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqoa.dll [2015.08.06 19:38:06 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mqrt.dll [2015.08.06 19:38:06 | 000,009,096 | ---- | M] () -- C:\WINDOWS\SysNative\msmqtrc.mof [2015.08.06 19:38:05 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqbkup.exe [2015.08.06 19:38:05 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mqsvc.exe [2015.08.06 19:01:24 | 000,010,447 | ---- | M] () -- C:\WINDOWS\diagerr.xml [2015.08.06 19:01:24 | 000,009,528 | ---- | M] () -- C:\WINDOWS\diagwrn.xml [2015.08.06 19:01:00 | 000,022,960 | ---- | M] () -- C:\WINDOWS\SysNative\emptyregdb.dat [2015.08.06 18:51:04 | 001,980,268 | ---- | M] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI [2015.08.06 18:50:26 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl [2015.08.06 18:27:40 | 000,023,168 | -H-- | M] () -- C:\WINDOWS\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2015.08.06 18:27:40 | 000,023,168 | -H-- | M] () -- C:\WINDOWS\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2015.08.06 13:39:48 | 000,001,924 | ---- | M] () -- C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6700.lnk [2015.08.06 05:17:40 | 000,200,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wof.sys [2015.08.06 04:22:03 | 000,685,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdiWiFi.sys [2015.08.05 06:49:51 | 000,783,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll [2015.08.05 06:29:04 | 000,644,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll [2015.08.05 06:00:28 | 000,310,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionCenter.dll [2015.08.05 05:54:25 | 001,274,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll [2015.08.05 05:39:56 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActionCenter.dll [2015.08.05 03:40:16 | 018,385,304 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvwgf2umx.dll [2015.08.05 03:40:16 | 015,762,912 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvwgf2um.dll [2015.08.05 03:40:14 | 030,529,168 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvoglv64.dll [2015.08.05 03:40:14 | 022,983,824 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvoglv32.dll [2015.08.05 03:40:14 | 016,169,160 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvopencl.dll [2015.08.05 03:40:14 | 013,285,144 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvopencl.dll [2015.08.05 03:40:14 | 001,569,080 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvhdagenco6420103.dll [2015.08.05 03:40:14 | 001,173,904 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvumdshimx.dll [2015.08.05 03:40:14 | 001,071,248 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFR64.dll [2015.08.05 03:40:14 | 000,999,864 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvumdshim.dll [2015.08.05 03:40:14 | 000,993,608 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFR.dll [2015.08.05 03:40:14 | 000,418,448 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFROpenGL.dll [2015.08.05 03:40:14 | 000,374,600 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFROpenGL.dll [2015.08.05 03:40:14 | 000,206,152 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\drivers\nvhda64v.sys [2015.08.05 03:40:14 | 000,187,136 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvinitx.dll [2015.08.05 03:40:14 | 000,165,512 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvinit.dll [2015.08.05 03:40:14 | 000,161,064 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvoglshim64.dll [2015.08.05 03:40:14 | 000,137,224 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvoglshim32.dll [2015.08.05 03:40:14 | 000,041,784 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvhdap64.dll [2015.08.05 03:40:12 | 042,740,552 | ---- | M] () -- C:\WINDOWS\SysNative\nvcompiler.dll [2015.08.05 03:40:12 | 037,759,304 | ---- | M] () -- C:\WINDOWS\SysWow64\nvcompiler.dll [2015.08.05 03:40:12 | 016,021,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvd3dumx.dll [2015.08.05 03:40:12 | 014,521,840 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuda.dll [2015.08.05 03:40:12 | 012,983,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvd3dum.dll [2015.08.05 03:40:12 | 011,852,096 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuda.dll [2015.08.05 03:40:12 | 002,371,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvid.dll [2015.08.05 03:40:12 | 002,174,280 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvid.dll [2015.08.05 03:40:12 | 001,908,368 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispco6435362.dll [2015.08.05 03:40:12 | 001,567,888 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispgenco6435362.dll [2015.08.05 03:40:12 | 001,063,240 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvFBC64.dll [2015.08.05 03:40:12 | 000,985,248 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvFBC.dll [2015.08.05 03:40:12 | 000,797,616 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncMFTH264.dll [2015.08.05 03:40:12 | 000,642,896 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvEncMFTH264.dll [2015.08.05 03:40:12 | 000,394,696 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncodeAPI64.dll [2015.08.05 03:40:12 | 000,384,840 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvDecMFTMjpeg.dll [2015.08.05 03:40:12 | 000,350,864 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvDecMFTMjpeg.dll [2015.08.05 03:40:12 | 000,325,168 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvEncodeAPI.dll [2015.08.05 03:40:10 | 003,360,576 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvapi64.dll [2015.08.05 03:40:10 | 002,971,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvapi.dll [2015.08.04 06:41:15 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mountmgr.sys.mui [2015.08.04 06:06:24 | 000,583,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll [2015.08.04 06:06:14 | 000,243,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll [2015.08.04 05:23:25 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VPNv2CSP.dll [2015.08.04 04:59:20 | 001,212,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemoteNaturalLanguage.dll [2015.08.04 04:47:23 | 000,898,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RemoteNaturalLanguage.dll [2015.08.03 12:12:32 | 000,045,680 | -H-- | M] (LogMeIn Inc.) -- C:\WINDOWS\SysNative\drivers\Hamdrv.sys [2015.08.03 12:12:32 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) -- C:\WINDOWS\SysNative\hamachi.sys [2015.08.03 04:32:49 | 000,306,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationObjFactory.dll [2015.08.03 04:28:04 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NotificationObjFactory.dll [2015.08.03 04:19:59 | 000,505,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys [2015.08.03 04:19:58 | 000,393,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys [2015.08.03 04:18:37 | 000,046,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\msgpiowin32.sys [2015.08.03 04:18:28 | 000,594,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Shell.Broker.dll [2015.08.03 04:18:01 | 008,613,200 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll [2015.08.03 04:17:53 | 000,052,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wpcfltr.sys [2015.08.03 04:17:45 | 000,516,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS [2015.08.03 04:12:58 | 000,801,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe [2015.08.03 03:56:47 | 006,878,256 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll [2015.08.03 03:49:58 | 000,700,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe [2015.08.03 03:31:01 | 000,911,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModel.dll [2015.08.03 03:30:59 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_UserAccount.dll [2015.08.03 03:24:24 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModelShim.dll [2015.08.03 03:24:19 | 000,503,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tileobjserver.dll [2015.08.03 03:24:05 | 000,282,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEEventDispatcher.dll [2015.08.03 03:23:57 | 000,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEDataLayerHelpers.dll [2015.08.03 03:22:51 | 000,317,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\configmanager2.dll [2015.08.03 03:22:23 | 001,601,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll [2015.08.03 03:21:25 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\coredpus.dll [2015.08.03 03:19:54 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe [2015.08.03 03:18:43 | 003,780,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll [2015.08.03 03:18:24 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SubscriptionMgr.dll [2015.08.03 03:18:07 | 000,120,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkStatus.dll [2015.08.03 03:15:28 | 000,573,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Cortana.Desktop.dll [2015.08.03 03:15:25 | 001,290,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll [2015.08.03 03:15:24 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinBioDataModel.dll [2015.08.03 03:15:18 | 000,595,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LogonController.dll [2015.08.03 03:15:00 | 000,384,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppBroker.dll [2015.08.03 03:14:52 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.LockScreen.dll [2015.08.03 03:12:54 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEEventDispatcher.dll [2015.08.03 03:12:48 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEDataLayerHelpers.dll [2015.08.03 03:11:40 | 000,814,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctfuimanager.dll [2015.08.03 03:10:15 | 001,162,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll [2015.08.03 03:03:28 | 000,494,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LogonController.dll [2015.08.03 03:02:44 | 000,311,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppBroker.dll [2015.08.03 03:02:18 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.LockScreen.dll [2015.08.03 02:59:11 | 000,752,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msctfuimanager.dll [2015.07.25 23:24:40 | 000,000,209 | ---- | M] () -- C:\Users\dieFackel\Desktop\StarMade Demo.url [2015.07.23 04:02:12 | 000,031,976 | ---- | M] () -- C:\WINDOWS\SysNative\nvinfo.pb [2015.07.23 03:10:18 | 002,558,608 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvcr.dll [2015.07.23 03:10:18 | 000,385,168 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvmctray.dll [2015.07.23 03:10:18 | 000,062,608 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvshext.dll [2015.07.23 03:10:17 | 006,873,928 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcpl.dll [2015.07.23 03:10:17 | 003,493,008 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvc64.dll [8 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ] [1 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ] [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2015.09.20 13:55:55 | 000,000,863 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2015.09.20 13:34:41 | 000,001,175 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2015.09.20 13:10:45 | 000,016,148 | ---- | C] () -- C:\WINDOWS\SysNative\SOL-PC_dieFackel_HistoryPrediction.bin [2015.09.19 02:33:11 | 000,000,838 | ---- | C] () -- C:\Users\dieFackel\Desktop\CrystalDiskInfo.lnk [2015.09.18 19:13:17 | 000,001,967 | ---- | C] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk [2015.09.17 14:07:09 | 000,028,672 | ---- | C] () -- C:\Users\dieFackel\Desktop\memtest.exe [2015.08.31 18:08:09 | 002,498,808 | ---- | C] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll [2015.08.31 18:08:08 | 001,771,592 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll [2015.08.31 18:08:06 | 000,247,296 | ---- | C] () -- C:\WINDOWS\SysNative\facecredentialprovider.dll [2015.08.31 18:08:05 | 000,008,847 | ---- | C] () -- C:\WINDOWS\SysNative\ResPriHMImageList [2015.08.22 19:29:28 | 000,000,208 | ---- | C] () -- C:\Users\dieFackel\Desktop\Total War SHOGUN 2.url [2015.08.19 18:31:45 | 002,446,336 | ---- | C] () -- C:\WINDOWS\SysNative\InputService.dll [2015.08.19 18:31:43 | 001,823,232 | ---- | C] () -- C:\WINDOWS\SysWow64\InputService.dll [2015.08.19 18:31:42 | 000,413,184 | ---- | C] () -- C:\WINDOWS\SysNative\diagtrack_win.dll [2015.08.19 18:31:42 | 000,404,480 | ---- | C] () -- C:\WINDOWS\SysNative\diagtrack_wininternal.dll [2015.08.19 18:31:41 | 000,293,376 | ---- | C] () -- C:\WINDOWS\SysNative\TextInputFramework.dll [2015.08.19 18:31:39 | 000,200,704 | ---- | C] () -- C:\WINDOWS\SysWow64\TextInputFramework.dll [2015.08.17 23:58:57 | 000,001,089 | ---- | C] () -- C:\Users\dieFackel\Desktop\Common.lnk [2015.08.14 03:25:23 | 000,001,902 | ---- | C] () -- C:\Users\dieFackel\Desktop\StarMade Server.lnk [2015.08.07 16:28:27 | 000,016,148 | ---- | C] () -- C:\WINDOWS\SysNative\DIEFACKEL-PC_dieFackel_HistoryPrediction.bin [2015.08.06 19:45:09 | 000,505,344 | ---- | C] () -- C:\WINDOWS\SysNative\EditionUpgradeManagerObj.dll [2015.08.06 19:45:09 | 000,032,768 | ---- | C] () -- C:\WINDOWS\SysNative\LicenseManagerApi.dll [2015.08.06 19:05:45 | 000,002,406 | ---- | C] () -- C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk [2015.08.06 19:04:58 | 000,001,051 | ---- | C] () -- C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk [2015.08.06 19:01:00 | 000,022,960 | ---- | C] () -- C:\WINDOWS\SysNative\emptyregdb.dat [2015.08.06 18:57:46 | 2144,747,519 | -HS- | C] () -- C:\hiberfil.sys [2015.08.06 18:56:30 | 000,001,576 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk [2015.08.06 18:51:07 | 002,077,126 | ---- | C] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2015.08.06 18:51:04 | 001,980,268 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI [2015.08.06 18:50:26 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl [2015.08.06 18:50:16 | 005,121,613 | ---- | C] () -- C:\WINDOWS\SysNative\nvcoproc.bin [2015.08.06 18:48:36 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys [2015.08.06 18:24:15 | 000,010,447 | ---- | C] () -- C:\WINDOWS\diagerr.xml [2015.08.06 18:24:15 | 000,009,528 | ---- | C] () -- C:\WINDOWS\diagwrn.xml [2015.08.05 16:57:03 | 000,000,872 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk [2015.08.05 03:40:12 | 042,740,552 | ---- | C] () -- C:\WINDOWS\SysNative\nvcompiler.dll [2015.08.05 03:40:12 | 037,759,304 | ---- | C] () -- C:\WINDOWS\SysWow64\nvcompiler.dll [2015.07.25 23:24:40 | 000,000,209 | ---- | C] () -- C:\Users\dieFackel\Desktop\StarMade Demo.url [2015.07.23 04:02:12 | 000,031,976 | ---- | C] () -- C:\WINDOWS\SysNative\nvinfo.pb [2015.07.10 14:20:52 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2015.07.10 13:04:39 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT [2015.07.10 13:04:38 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat [2015.07.10 13:00:35 | 000,161,632 | ---- | C] () -- C:\WINDOWS\SysWow64\weretw.dll [2015.07.10 13:00:33 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat [2015.07.10 13:00:32 | 000,047,104 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll [2015.07.10 13:00:31 | 000,156,672 | ---- | C] () -- C:\WINDOWS\SysWow64\MTF.dll [2015.07.10 13:00:30 | 000,028,672 | ---- | C] () -- C:\WINDOWS\SysWow64\dtdump.exe [2015.07.10 13:00:29 | 000,081,408 | ---- | C] () -- C:\WINDOWS\SysWow64\InputLocaleManager.dll [2015.07.10 13:00:29 | 000,057,344 | ---- | C] () -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll [2015.07.10 13:00:29 | 000,053,760 | ---- | C] () -- C:\WINDOWS\SysWow64\WpKbdLayout.dll [2015.07.10 13:00:29 | 000,022,016 | ---- | C] () -- C:\WINDOWS\SysWow64\WordBreakers.dll [2015.07.10 13:00:28 | 000,270,848 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll [2015.07.10 13:00:27 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll [2015.07.10 13:00:26 | 000,022,528 | ---- | C] () -- C:\WINDOWS\SysWow64\efsext.dll [2015.07.10 13:00:25 | 000,002,269 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini [2015.07.10 13:00:24 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat [2015.07.10 12:59:51 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin [2015.06.21 20:51:40 | 000,009,494 | ---- | C] () -- C:\Users\dieFackel\AppData\Local\recently-used.xbel [2015.04.23 19:43:16 | 000,118,576 | ---- | C] () -- C:\WINDOWS\SysWow64\SecUPDUtilSvc.exe [2015.04.23 19:43:06 | 002,738,496 | ---- | C] () -- C:\WINDOWS\TotalUninstaller.exe [2015.04.21 13:24:13 | 000,007,603 | ---- | C] () -- C:\Users\dieFackel\AppData\Local\Resmon.ResmonCfg [2015.02.02 04:09:57 | 000,000,000 | -HS- | C] () -- C:\Users\dieFackel\AppData\Local\LumaEmu [2014.10.31 15:44:14 | 000,000,000 | ---- | C] () -- C:\Users\dieFackel\AppData\Local\{A310A91F-EC09-4402-A3F7-8F8D2A6ACFCD} [2013.10.01 20:17:19 | 000,000,037 | -HS- | C] () -- C:\Users\dieFackel\AppData\Local\70149b02515b3bb20dd492.47983420 [2013.09.01 13:00:24 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini ========== ZeroAccess Check ========== [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\windows.storage.dll -- [2015.08.06 19:45:08 | 006,488,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\windows.storage.dll -- [2015.08.06 19:45:08 | 005,118,024 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2015.07.10 12:59:53 | 000,995,328 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2015.07.10 13:00:23 | 000,754,688 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2015.07.10 12:59:55 | 000,516,096 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] < End of report > |
|
20.09.2015, 18:12
| #8 |
| /// Malwareteam | Malware Befall? Schritt 1 Lade Dir bitte von hier  Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Schritt 2 Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Schritt 3 Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Bitte poste in deiner nächsten Antwort also:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
21.09.2015, 15:25
| #9 |
| | Malware Befall? Browser Configuration Utility habe ich erfolgreich entfernt und die anderen beiden Programme haben, wohl zum Glück, nichts gefunden. Hier die Logs: MBAR Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2015.09.21.04
rootkit: v2015.09.18.01
Windows 10 x64 NTFS
Internet Explorer 11.0.10240.16431
dieFackel :: SOL-PC [administrator]
21.09.2015 16:06:25
mbar-log-2015-09-21 (16-06-25).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 447082
Time elapsed: 10 minute(s), 39 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 16:21:13.0571 0x2118 TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
16:21:15.0488 0x2118 ============================================================
16:21:15.0488 0x2118 Current date / time: 2015/09/21 16:21:15.0488
16:21:15.0489 0x2118 SystemInfo:
16:21:15.0489 0x2118
16:21:15.0489 0x2118 OS Version: 10.0.10240 ServicePack: 0.0
16:21:15.0489 0x2118 Product type: Workstation
16:21:15.0489 0x2118 ComputerName: SOL-PC
16:21:15.0489 0x2118 UserName: dieFackel
16:21:15.0489 0x2118 Windows directory: C:\WINDOWS
16:21:15.0489 0x2118 System windows directory: C:\WINDOWS
16:21:15.0489 0x2118 Running under WOW64
16:21:15.0489 0x2118 Processor architecture: Intel x64
16:21:15.0489 0x2118 Number of processors: 4
16:21:15.0489 0x2118 Page size: 0x1000
16:21:15.0489 0x2118 Boot type: Normal boot
16:21:15.0489 0x2118 ============================================================
16:21:15.0562 0x2118 KLMD registered as C:\WINDOWS\system32\drivers\00742783.sys
16:21:15.0649 0x2118 System UUID: {9087F08A-3F3A-1B8D-DDC7-FA3D68387CAB}
16:21:15.0962 0x2118 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:21:15.0978 0x2118 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:21:15.0983 0x2118 ============================================================
16:21:15.0983 0x2118 \Device\Harddisk0\DR0:
16:21:15.0983 0x2118 MBR partitions:
16:21:15.0983 0x2118 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:21:15.0983 0x2118 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE49000
16:21:15.0983 0x2118 \Device\Harddisk1\DR1:
16:21:15.0983 0x2118 MBR partitions:
16:21:15.0983 0x2118 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3000
16:21:15.0983 0x2118 ============================================================
16:21:15.0984 0x2118 C: <-> \Device\Harddisk0\DR0\Partition2
16:21:16.0002 0x2118 D: <-> \Device\Harddisk1\DR1\Partition1
16:21:16.0002 0x2118 ============================================================
16:21:16.0002 0x2118 Initialize success
16:21:16.0002 0x2118 ============================================================
16:21:18.0567 0x2360 ============================================================
16:21:18.0567 0x2360 Scan started
16:21:18.0567 0x2360 Mode: Manual;
16:21:18.0567 0x2360 ============================================================
16:21:18.0567 0x2360 KSN ping started
16:21:21.0022 0x2360 KSN ping finished: true
16:21:21.0856 0x2360 ================ Scan system memory ========================
16:21:21.0856 0x2360 System memory - ok
16:21:21.0857 0x2360 ================ Scan services =============================
16:21:21.0915 0x2360 1394ohci - ok
16:21:21.0918 0x2360 3ware - ok
16:21:21.0922 0x2360 ACPI - ok
16:21:21.0927 0x2360 acpiex - ok
16:21:21.0932 0x2360 acpipagr - ok
16:21:21.0937 0x2360 AcpiPmi - ok
16:21:21.0941 0x2360 acpitime - ok
16:21:21.0949 0x2360 [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:21:21.0951 0x2360 AdobeARMservice - ok
16:21:21.0994 0x2360 [ 368290D0A612D62DA6F3D798B1BB8FE7, D573BF8543F37BC51B88A2473EDFD28AFBCCC446E8CADD54A90FA48D8739D222 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:21:21.0999 0x2360 AdobeFlashPlayerUpdateSvc - ok
16:21:22.0005 0x2360 ADP80XX - ok
16:21:22.0010 0x2360 AFD - ok
16:21:22.0013 0x2360 agp440 - ok
16:21:22.0017 0x2360 ahcache - ok
16:21:22.0021 0x2360 AJRouter - ok
16:21:22.0024 0x2360 ALG - ok
16:21:22.0028 0x2360 AmdK8 - ok
16:21:22.0032 0x2360 AmdPPM - ok
16:21:22.0037 0x2360 [ 53D8D46D51D390ABDB54ECA623165CB7, D16A3604412D0DC3EA68320FB6980D146ED60D587AAB6B65810C038AFF1EC237 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
16:21:22.0039 0x2360 amdsata - ok
16:21:22.0042 0x2360 amdsbs - ok
16:21:22.0047 0x2360 [ 75C51148154E34EB3D7BB84749A758D5, 8865F223CBAE166A9BF6CBCDA66F63369F151CCB449A28E95560C36AD45D0C85 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
16:21:22.0048 0x2360 amdxata - ok
16:21:22.0051 0x2360 AppHostSvc - ok
16:21:22.0054 0x2360 AppID - ok
16:21:22.0058 0x2360 AppIDSvc - ok
16:21:22.0062 0x2360 Appinfo - ok
16:21:22.0066 0x2360 [ 301AA64F9643BC453D90A66C4C0E7204, F9EDAD13F865B5F0A89FF59827EECB519F113EB037F2DA8367F1572629B503B1 ] AppleCharger C:\WINDOWS\system32\DRIVERS\AppleCharger.sys
16:21:22.0067 0x2360 AppleCharger - ok
16:21:22.0072 0x2360 [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\WINDOWS\system32\AppleChargerSrv.exe
16:21:22.0073 0x2360 AppleChargerSrv - ok
16:21:22.0078 0x2360 AppReadiness - ok
16:21:22.0083 0x2360 AppXSvc - ok
16:21:22.0087 0x2360 arcsas - ok
16:21:22.0103 0x2360 aspnet_state - ok
16:21:22.0108 0x2360 [ B5B4C90E9F52DA8586F1E5461AD90A5D, D1EAA34E6AEB014E942D22F8CB5FB19BF1E2EADE5B5357274C001F44FDC25F05 ] aswHwid C:\WINDOWS\system32\drivers\aswHwid.sys
16:21:22.0110 0x2360 aswHwid - ok
16:21:22.0118 0x2360 [ 300CB8E510855189CAD0B72FFB5590CB, EB50DC553FA8FD9DE3F60AAFED20702EAFBB1498EBD3220A39CC52A12F694246 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
16:21:22.0120 0x2360 aswMonFlt - ok
16:21:22.0126 0x2360 [ 6D37D8DB30D086739507C5F6E542656A, 746D9E32E729138EA19062F4E6B6C98B6833504020A296E3E2A9CD92E0FED0B9 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr2.sys
16:21:22.0129 0x2360 aswRdr - ok
16:21:22.0135 0x2360 [ 07E32DFCA422A2920482D762D01957EC, A6502D26266D708E55EB2883897673AD3087C41D9EA0B41CD6BF6BD923EBDCB8 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
16:21:22.0136 0x2360 aswRvrt - ok
16:21:22.0160 0x2360 [ 3B4AC2DBFC86F7247C1FF1FAF2860530, A54A693D01C02AAE2B78BFE9B3900B5A6DD0C2C37C8FA58B14B5F57107032FF5 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
16:21:22.0179 0x2360 aswSnx - ok
16:21:22.0193 0x2360 [ A04F190FCD762E7BCC9BFC70563C52DB, 2BF6823F2EADBDA28DF1CCECCAC84D9FF37D3CFB66A7B402575C6B9FCFB45EB3 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
16:21:22.0201 0x2360 aswSP - ok
16:21:22.0208 0x2360 [ 6E53278ECCFFBC2ACC2A5006745ED4BB, 392170073A8933DB43CD1D64AD087F972F1971BF83BCAFE5B8FA1273C02026CE ] aswStm C:\WINDOWS\system32\drivers\aswStm.sys
16:21:22.0212 0x2360 aswStm - ok
16:21:22.0221 0x2360 [ 91782404718C6352C26B3242BAC3F0F1, 84B1CDD1EBC83FAEBDCC8F67B13CA405C6CF0C518FC016603889EBE48FC91AB9 ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
16:21:22.0225 0x2360 aswVmm - ok
16:21:22.0230 0x2360 AsyncMac - ok
16:21:22.0233 0x2360 atapi - ok
16:21:22.0237 0x2360 [ 7C5D273E29DCC5505469B299C6F29163, 206CAB85CE12A3953F0861C811575DC7FD000147436219EEE334584A33370B3A ] AtiPcie C:\WINDOWS\system32\drivers\AtiPcie.sys
16:21:22.0239 0x2360 AtiPcie - ok
16:21:22.0249 0x2360 [ FC0E8778C000291CAF60EB88C011E931, 09BCCA3DE01021AEF76DFB46F01D21BA6FF409E816FA7547E5C3DFBF3A615ED2 ] atksgt C:\WINDOWS\system32\DRIVERS\atksgt.sys
16:21:22.0255 0x2360 atksgt - ok
16:21:22.0259 0x2360 AudioEndpointBuilder - ok
16:21:22.0262 0x2360 Audiosrv - ok
16:21:22.0276 0x2360 [ 54236E79A44F909612391C8A2D70D512, B0DF5BCC4F90AF087D0306F8D81F90B2CAE0176813E3AA6A7D5460F7878677CD ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
16:21:22.0282 0x2360 avast! Antivirus - ok
16:21:22.0286 0x2360 AxInstSV - ok
16:21:22.0289 0x2360 b06bdrv - ok
16:21:22.0292 0x2360 BasicDisplay - ok
16:21:22.0296 0x2360 BasicRender - ok
16:21:22.0301 0x2360 bcmfn2 - ok
16:21:22.0304 0x2360 BDESVC - ok
16:21:22.0308 0x2360 Beep - ok
16:21:22.0333 0x2360 [ 2EE42E7539BBF4252F7F47B288E61CEA, 2113A7C825AE2D222FD80D092BAA254AB3EFA8A2F58EC8325837A6BC611BC715 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
16:21:22.0354 0x2360 BEService - ok
16:21:22.0359 0x2360 BFE - ok
16:21:22.0362 0x2360 BITS - ok
16:21:22.0366 0x2360 bowser - ok
16:21:22.0372 0x2360 [ 7487B46E104303E247F68D485C12326F, BAC6A4FFD5B4009B4B673479630FAA2784618438925DFB6489F07BF163188114 ] BRDriver64_1_3_3_E02B25FC C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys
16:21:22.0374 0x2360 BRDriver64_1_3_3_E02B25FC - ok
16:21:22.0378 0x2360 BrokerInfrastructure - ok
16:21:22.0381 0x2360 Browser - ok
16:21:22.0392 0x2360 [ 448917845F097FCE9D4554C3D2001EF3, BDCBEC01579D7CF28963E4E13CDC5B26E4B69CA24FA2CC4D6E24CAE0DDBCB3FE ] BRSptStub C:\ProgramData\BitRaider\BRSptStub.exe
16:21:22.0399 0x2360 BRSptStub - ok
16:21:22.0403 0x2360 BthAvrcpTg - ok
16:21:22.0406 0x2360 BthHFEnum - ok
16:21:22.0410 0x2360 bthhfhid - ok
16:21:22.0414 0x2360 BthHFSrv - ok
16:21:22.0417 0x2360 BTHMODEM - ok
16:21:22.0422 0x2360 bthserv - ok
16:21:22.0425 0x2360 buttonconverter - ok
16:21:22.0431 0x2360 CapImg - ok
16:21:22.0436 0x2360 cdfs - ok
16:21:22.0440 0x2360 CDPSvc - ok
16:21:22.0444 0x2360 cdrom - ok
16:21:22.0448 0x2360 CertPropSvc - ok
16:21:22.0452 0x2360 circlass - ok
16:21:22.0455 0x2360 CLFS - ok
16:21:22.0461 0x2360 ClipSVC - ok
16:21:22.0474 0x2360 CmBatt - ok
16:21:22.0481 0x2360 CNG - ok
16:21:22.0485 0x2360 cnghwassist - ok
16:21:22.0508 0x2360 CompositeBus - ok
16:21:22.0513 0x2360 COMSysApp - ok
16:21:22.0517 0x2360 condrv - ok
16:21:22.0521 0x2360 CoreMessagingRegistrar - ok
16:21:22.0530 0x2360 CryptSvc - ok
16:21:22.0538 0x2360 dam - ok
16:21:22.0544 0x2360 dc1-controller - ok
16:21:22.0556 0x2360 DcomLaunch - ok
16:21:22.0560 0x2360 DcpSvc - ok
16:21:22.0565 0x2360 defragsvc - ok
16:21:22.0568 0x2360 DeviceAssociationService - ok
16:21:22.0571 0x2360 DeviceInstall - ok
16:21:22.0574 0x2360 DevQueryBroker - ok
16:21:22.0579 0x2360 Dfsc - ok
16:21:22.0583 0x2360 Dhcp - ok
16:21:22.0587 0x2360 diagnosticshub.standardcollector.service - ok
16:21:22.0590 0x2360 DiagTrack - ok
16:21:22.0594 0x2360 disk - ok
16:21:22.0599 0x2360 DmEnrollmentSvc - ok
16:21:22.0602 0x2360 dmvsc - ok
16:21:22.0606 0x2360 dmwappushservice - ok
16:21:22.0609 0x2360 Dnscache - ok
16:21:22.0614 0x2360 dot3svc - ok
16:21:22.0618 0x2360 DPS - ok
16:21:22.0621 0x2360 drmkaud - ok
16:21:22.0624 0x2360 DsmSvc - ok
16:21:22.0628 0x2360 DsSvc - ok
16:21:22.0632 0x2360 DXGKrnl - ok
16:21:22.0635 0x2360 Eaphost - ok
16:21:22.0638 0x2360 ebdrv - ok
16:21:22.0642 0x2360 EFS - ok
16:21:22.0645 0x2360 EhStorClass - ok
16:21:22.0649 0x2360 EhStorTcgDrv - ok
16:21:22.0653 0x2360 [ BE2902E13CA69383F449B6BF927844FB, F092785E305D8E1FE795AF98A7A7B7B4548A0D6687060568C9E078FFA8D65C1C ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
16:21:22.0655 0x2360 ElbyCDIO - ok
16:21:22.0658 0x2360 embeddedmode - ok
16:21:22.0662 0x2360 EntAppSvc - ok
16:21:22.0666 0x2360 ErrDev - ok
16:21:22.0671 0x2360 [ B8FA96995726D1FA58476E352C02AD82, 6BBD49B16A19CC3C3337707EFBEB6BC355CB077CBBBC99D8985A3FBB6E871A89 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
16:21:22.0673 0x2360 ES lite Service - ok
16:21:22.0680 0x2360 EventSystem - ok
16:21:22.0684 0x2360 exfat - ok
16:21:22.0688 0x2360 fastfat - ok
16:21:22.0691 0x2360 Fax - ok
16:21:22.0694 0x2360 fcvsc - ok
16:21:22.0698 0x2360 fdc - ok
16:21:22.0702 0x2360 fdPHost - ok
16:21:22.0705 0x2360 FDResPub - ok
16:21:22.0709 0x2360 fhsvc - ok
16:21:22.0713 0x2360 FileCrypt - ok
16:21:22.0716 0x2360 FileInfo - ok
16:21:22.0720 0x2360 Filetrace - ok
16:21:22.0723 0x2360 flpydisk - ok
16:21:22.0726 0x2360 FltMgr - ok
16:21:22.0731 0x2360 FontCache - ok
16:21:22.0734 0x2360 FontCache3.0.0.0 - ok
16:21:22.0738 0x2360 FsDepends - ok
16:21:22.0741 0x2360 Fs_Rec - ok
16:21:22.0744 0x2360 fvevol - ok
16:21:22.0749 0x2360 gagp30kx - ok
16:21:22.0809 0x2360 [ 7037D548B726108F9420B9F345573DC4, 659202CD4F8E789B47D9E7281312DD87B4718A615EC8B5C7F143E84AC7B9ACA3 ] GalaxyClientService D:\Spiele\GalaxyClient\GalaxyClientService.exe
16:21:22.0848 0x2360 GalaxyClientService - ok
16:21:23.0002 0x2360 [ 7747954B78DEED16169FC816108FE995, 677A09A5702884A138C83739487AF23EF6E4C8F79875997D26417E823D692293 ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
16:21:23.0146 0x2360 GalaxyCommunication - ok
16:21:23.0175 0x2360 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
16:21:23.0176 0x2360 gdrv - ok
16:21:23.0180 0x2360 gencounter - ok
16:21:23.0184 0x2360 genericusbfn - ok
16:21:23.0212 0x2360 [ C2730FE9713C1C474257A7085386B11E, 7D35D00D2B455841C8C9A87CE92885CD22F4B8B6690CB21443ED1B515117EF95 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
16:21:23.0231 0x2360 GfExperienceService - ok
16:21:23.0237 0x2360 GPIOClx0101 - ok
16:21:23.0241 0x2360 gpsvc - ok
16:21:23.0245 0x2360 GpuEnergyDrv - ok
16:21:23.0251 0x2360 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:21:23.0254 0x2360 gupdate - ok
16:21:23.0259 0x2360 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:21:23.0262 0x2360 gupdatem - ok
16:21:23.0266 0x2360 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
16:21:23.0267 0x2360 GVTDrv64 - ok
16:21:23.0272 0x2360 [ 7F79205B4EFA98F0767309479C8C01C6, 4B576903A83F33A8CF31D3887144A3D51C56D1187115C83AC99C0E9F6B4BF128 ] hamachi C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
16:21:23.0274 0x2360 hamachi - ok
16:21:23.0364 0x2360 [ 2ADED86ED9B92885378467CFEE9ABE8F, 78703B6E51C5E7DCFFBA9F15C404DB2A0054FE8F2F92B7AD470B08498995712A ] Hamachi2Svc D:\Dateien\LogMeIn Hamachi\hamachi-2.exe
16:21:23.0403 0x2360 Hamachi2Svc - ok
16:21:23.0410 0x2360 HDAudBus - ok
16:21:23.0435 0x2360 HidBatt - ok
16:21:23.0448 0x2360 HidBth - ok
16:21:23.0451 0x2360 hidi2c - ok
16:21:23.0456 0x2360 hidinterrupt - ok
16:21:23.0460 0x2360 HidIr - ok
16:21:23.0464 0x2360 hidserv - ok
16:21:23.0468 0x2360 HidUsb - ok
16:21:23.0472 0x2360 HomeGroupListener - ok
16:21:23.0477 0x2360 HomeGroupProvider - ok
16:21:23.0481 0x2360 HpSAMD - ok
16:21:23.0485 0x2360 HTTP - ok
16:21:23.0489 0x2360 hwpolicy - ok
16:21:23.0493 0x2360 hyperkbd - ok
16:21:23.0499 0x2360 HyperVideo - ok
16:21:23.0503 0x2360 i8042prt - ok
16:21:23.0508 0x2360 iaLPSSi_GPIO - ok
16:21:23.0512 0x2360 iaLPSSi_I2C - ok
16:21:23.0516 0x2360 iaStorAV - ok
16:21:23.0519 0x2360 iaStorV - ok
16:21:23.0523 0x2360 ibbus - ok
16:21:23.0527 0x2360 icssvc - ok
16:21:23.0532 0x2360 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:21:23.0534 0x2360 IDriverT - ok
16:21:23.0539 0x2360 IEEtwCollectorService - ok
16:21:23.0542 0x2360 IKEEXT - ok
16:21:23.0634 0x2360 [ 3A2D6740F51BE48C0FD01AD907329DEE, 4FD899CD6E3B3D5C9803E52CB72F002B6CFC144D524FAF6845CF6D115EC6E059 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
16:21:23.0723 0x2360 IntcAzAudAddService - ok
16:21:23.0731 0x2360 intelide - ok
16:21:23.0735 0x2360 intelpep - ok
16:21:23.0738 0x2360 intelppm - ok
16:21:23.0742 0x2360 IoQos - ok
16:21:23.0746 0x2360 IpFilterDriver - ok
16:21:23.0753 0x2360 iphlpsvc - ok
16:21:23.0767 0x2360 IPMIDRV - ok
16:21:23.0770 0x2360 IPNAT - ok
16:21:23.0774 0x2360 IRENUM - ok
16:21:23.0779 0x2360 isapnp - ok
16:21:23.0784 0x2360 iScsiPrt - ok
16:21:23.0822 0x2360 [ F3A41EC4C6506E76E07A219B3A1DF8D2, B34FDAA453E6E089374B33533A89F76DEE1C2D14F9939AF3669B6F33FA41DD76 ] JMB36X C:\Windows\SysWOW64\XSrvSetup.exe
16:21:23.0837 0x2360 JMB36X - ok
16:21:23.0843 0x2360 [ 1C368C1A2733DCC5B8E15420AA2B0F6D, C43A3534E33CEAEB8359D493FDB4663CB7C1E9286862B2CEE2788E9EA060DF1D ] JRAID C:\WINDOWS\system32\drivers\jraid.sys
16:21:23.0847 0x2360 JRAID - ok
16:21:23.0852 0x2360 kbdclass - ok
16:21:23.0856 0x2360 kbdhid - ok
16:21:23.0860 0x2360 kdnic - ok
16:21:23.0864 0x2360 KeyIso - ok
16:21:23.0869 0x2360 KSecDD - ok
16:21:23.0873 0x2360 KSecPkg - ok
16:21:23.0878 0x2360 ksthunk - ok
16:21:23.0884 0x2360 KtmRm - ok
16:21:23.0888 0x2360 LanmanServer - ok
16:21:23.0892 0x2360 LanmanWorkstation - ok
16:21:23.0899 0x2360 lfsvc - ok
16:21:23.0903 0x2360 LicenseManager - ok
16:21:23.0907 0x2360 [ 156AB2E56DC3CA0B582E3362E07CDED7, 7B03929273861690DC42E4C686E655BE5A1C60136AE5E739D7E62306AFD4AB9A ] lirsgt C:\WINDOWS\system32\DRIVERS\lirsgt.sys
16:21:23.0909 0x2360 lirsgt - ok
16:21:23.0913 0x2360 lltdio - ok
16:21:23.0916 0x2360 lltdsvc - ok
16:21:23.0920 0x2360 lmhosts - ok
16:21:23.0925 0x2360 LSI_SAS - ok
16:21:23.0929 0x2360 LSI_SAS2i - ok
16:21:23.0932 0x2360 LSI_SAS3i - ok
16:21:23.0935 0x2360 LSI_SSS - ok
16:21:23.0939 0x2360 LSM - ok
16:21:23.0942 0x2360 luafv - ok
16:21:23.0946 0x2360 MapsBroker - ok
16:21:23.0950 0x2360 [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
16:21:23.0952 0x2360 MBAMProtector - ok
16:21:23.0977 0x2360 [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
16:21:23.0996 0x2360 MBAMService - ok
16:21:24.0003 0x2360 [ 85CFE7AB85B43B6B7AC7961AA3983A9F, 4E88B75818FD00C0ABBDF8E02EBFB550A67B46E5E13D3B3DF52611793F7DA0DD ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
16:21:24.0005 0x2360 MBAMWebAccessControl - ok
16:21:24.0008 0x2360 megasas - ok
16:21:24.0011 0x2360 megasr - ok
16:21:24.0015 0x2360 mlx4_bus - ok
16:21:24.0018 0x2360 MMCSS - ok
16:21:24.0022 0x2360 Modem - ok
16:21:24.0025 0x2360 monitor - ok
16:21:24.0029 0x2360 mouclass - ok
16:21:24.0032 0x2360 mouhid - ok
16:21:24.0036 0x2360 mountmgr - ok
16:21:24.0042 0x2360 [ CC11EEB7AF4617D65DF0E9A21FC1ABD0, A683A5FB26E1B9FB4EEB40A9C7186F8433E3FB0A45848DF6102EF07B4DC75AC8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:21:24.0045 0x2360 MozillaMaintenance - ok
16:21:24.0048 0x2360 mpsdrv - ok
16:21:24.0052 0x2360 MpsSvc - ok
16:21:24.0055 0x2360 MQAC - ok
16:21:24.0059 0x2360 MRxDAV - ok
16:21:24.0062 0x2360 mrxsmb - ok
16:21:24.0066 0x2360 mrxsmb10 - ok
16:21:24.0069 0x2360 mrxsmb20 - ok
16:21:24.0073 0x2360 MsBridge - ok
16:21:24.0077 0x2360 MSDTC - ok
16:21:24.0084 0x2360 Msfs - ok
16:21:24.0088 0x2360 msgpiowin32 - ok
16:21:24.0092 0x2360 mshidkmdf - ok
16:21:24.0096 0x2360 mshidumdf - ok
16:21:24.0099 0x2360 msisadrv - ok
16:21:24.0103 0x2360 MSiSCSI - ok
16:21:24.0107 0x2360 msiserver - ok
16:21:24.0111 0x2360 MSKSSRV - ok
16:21:24.0116 0x2360 MsLldp - ok
16:21:24.0120 0x2360 MSMQ - ok
16:21:24.0123 0x2360 MSPCLOCK - ok
16:21:24.0127 0x2360 MSPQM - ok
16:21:24.0131 0x2360 MsRPC - ok
16:21:24.0136 0x2360 mssmbios - ok
16:21:24.0140 0x2360 MSTEE - ok
16:21:24.0143 0x2360 MTConfig - ok
16:21:24.0147 0x2360 Mup - ok
16:21:24.0150 0x2360 mvumis - ok
16:21:24.0156 0x2360 NativeWifiP - ok
16:21:24.0159 0x2360 NcaSvc - ok
16:21:24.0163 0x2360 NcbService - ok
16:21:24.0167 0x2360 NcdAutoSetup - ok
16:21:24.0170 0x2360 ndfltr - ok
16:21:24.0174 0x2360 NDIS - ok
16:21:24.0178 0x2360 NdisCap - ok
16:21:24.0181 0x2360 NdisImPlatform - ok
16:21:24.0185 0x2360 NdisTapi - ok
16:21:24.0188 0x2360 Ndisuio - ok
16:21:24.0192 0x2360 NdisVirtualBus - ok
16:21:24.0195 0x2360 NdisWan - ok
16:21:24.0199 0x2360 ndiswanlegacy - ok
16:21:24.0202 0x2360 ndproxy - ok
16:21:24.0213 0x2360 Ndu - ok
16:21:24.0216 0x2360 NetBIOS - ok
16:21:24.0221 0x2360 NetBT - ok
16:21:24.0224 0x2360 Netlogon - ok
16:21:24.0230 0x2360 Netman - ok
16:21:24.0238 0x2360 NetMsmqActivator - ok
16:21:24.0240 0x2360 NetPipeActivator - ok
16:21:24.0245 0x2360 netprofm - ok
16:21:24.0297 0x2360 [ 152E946E60EEF45088D7D1E74D9F1779, A0330BBE51E900F5956BA92BD04C54CC6CB57A611AF1A3FF2454FEB852E105BA ] netr28x C:\WINDOWS\system32\DRIVERS\netr28x.sys
16:21:24.0343 0x2360 netr28x - ok
16:21:24.0350 0x2360 NetSetupSvc - ok
16:21:24.0352 0x2360 NetTcpActivator - ok
16:21:24.0356 0x2360 NetTcpPortSharing - ok
16:21:24.0361 0x2360 netvsc - ok
16:21:24.0366 0x2360 NgcCtnrSvc - ok
16:21:24.0369 0x2360 NgcSvc - ok
16:21:24.0373 0x2360 NlaSvc - ok
16:21:24.0376 0x2360 Npfs - ok
16:21:24.0380 0x2360 npsvctrig - ok
16:21:24.0383 0x2360 nsi - ok
16:21:24.0387 0x2360 nsiproxy - ok
16:21:24.0392 0x2360 NTFS - ok
16:21:24.0397 0x2360 Null - ok
16:21:24.0404 0x2360 [ 3EC9421780196DDA1A4C368BC7471778, FC5DEB52CAA76F968D3FF5F2418FA0A9DAC9E07BA5B259DEA5380759305F290E ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
16:21:24.0409 0x2360 NVHDA - ok
16:21:24.0615 0x2360 [ 9BE2E483F588B3A57C67352847037046, 1D0A4D86853C8A9188C4545842037F99DCC423CBA9DB68F51D10ACE302DE5AE2 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
16:21:24.0828 0x2360 nvlddmkm - ok
16:21:24.0902 0x2360 [ F9CF3FB8DD81B390783532B3C98D6976, 8C94638136CFAEB3ED6DD7CE2059E98B64B15918DDB0796CC0B88474EE99F5BF ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
16:21:24.0930 0x2360 NvNetworkService - ok
16:21:24.0936 0x2360 nvraid - ok
16:21:24.0939 0x2360 nvstor - ok
16:21:24.0944 0x2360 [ 3A7B0570D896602E37EAF80EC3D1615A, 1F5A71432F96731115ADA2A50E605923666188D08F9FD748424AB6588D0E1482 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:21:24.0945 0x2360 NvStreamKms - ok
16:21:24.0948 0x2360 NvStreamSvc - ok
16:21:24.0970 0x2360 [ DFCCA437717EACA8418F47992A41B39A, E587A629B894EE6A16AC414747D492FFC6B6E9F051B40F7D25F0D4406E2FF919 ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
16:21:24.0992 0x2360 nvsvc - ok
16:21:24.0998 0x2360 [ DBFE7B2DF103F74AE51840B3C5F25FE9, 436CAA417FD24BA870F117FA4BABA2AB694825795508BCFCC8C927CC2D5BBC5E ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
16:21:25.0000 0x2360 nvvad_WaveExtensible - ok
16:21:25.0003 0x2360 nv_agp - ok
16:21:25.0006 0x2360 OneSyncSvc - ok
16:21:25.0069 0x2360 [ 29B093BA6759118DB14AF41026385E03, 660176D122344A79E52FFD9FE3D32D1967D9B22BC4AD76549D839B09693D0713 ] Origin Client Service D:\Spiele\Origin\OriginClientService.exe
16:21:25.0109 0x2360 Origin Client Service - ok
16:21:25.0134 0x2360 [ 60F5579B6B33F509C52200207F79B795, 1AB99528EF65799CBA7BCF43A654698ABE37A6DB8EB9BE2AC6ED7758AF795327 ] owahm C:\WINDOWS\system32\drivers\ggpcixbf.sys
16:21:25.0136 0x2360 owahm - ok
16:21:25.0140 0x2360 p2pimsvc - ok
16:21:25.0143 0x2360 p2psvc - ok
16:21:25.0147 0x2360 Parport - ok
16:21:25.0150 0x2360 partmgr - ok
16:21:25.0155 0x2360 PcaSvc - ok
16:21:25.0158 0x2360 pci - ok
16:21:25.0163 0x2360 pciide - ok
16:21:25.0166 0x2360 pcmcia - ok
16:21:25.0169 0x2360 pcw - ok
16:21:25.0173 0x2360 pdc - ok
16:21:25.0177 0x2360 PEAUTH - ok
16:21:25.0180 0x2360 percsas2i - ok
16:21:25.0184 0x2360 percsas3i - ok
16:21:25.0222 0x2360 PerfHost - ok
16:21:25.0230 0x2360 PimIndexMaintenanceSvc - ok
16:21:25.0235 0x2360 pla - ok
16:21:25.0239 0x2360 PlugPlay - ok
16:21:25.0242 0x2360 PNRPAutoReg - ok
16:21:25.0247 0x2360 PNRPsvc - ok
16:21:25.0250 0x2360 PolicyAgent - ok
16:21:25.0255 0x2360 Power - ok
16:21:25.0259 0x2360 PptpMiniport - ok
16:21:25.0340 0x2360 [ 12E2582F69ACA40A6BAE91DA578CBF34, 648C6394763906AA4163976DA2C3308F8B706486D9D8F16258CB1D61C2929930 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:21:25.0398 0x2360 PrintNotify - ok
16:21:25.0406 0x2360 Processor - ok
16:21:25.0409 0x2360 ProfSvc - ok
16:21:25.0412 0x2360 Psched - ok
16:21:25.0416 0x2360 [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI C:\WINDOWS\system32\DRIVERS\psi_mf_amd64.sys
16:21:25.0418 0x2360 PSI - ok
16:21:25.0421 0x2360 QWAVE - ok
16:21:25.0424 0x2360 QWAVEdrv - ok
16:21:25.0432 0x2360 [ 720FEA3AAA15FE7E0BEAB10AC2E6D2B0, E1E6A79751B7CAA86F4C7F9DD2A835D5C30FBD433644F916B8E54CD8105D00D2 ] RalinkRegistryWriter C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe
16:21:25.0435 0x2360 RalinkRegistryWriter - ok
16:21:25.0443 0x2360 [ 178CEF55E09DC320FF6561D4EEB4F632, 0B11CE080341CAD324F6A46ABE30D71E3BD2C27EA9188A0C9574ED757706E8A7 ] RalinkRegistryWriter64 C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe
16:21:25.0447 0x2360 RalinkRegistryWriter64 - ok
16:21:25.0450 0x2360 RasAcd - ok
16:21:25.0453 0x2360 RasAgileVpn - ok
16:21:25.0457 0x2360 RasAuto - ok
16:21:25.0460 0x2360 Rasl2tp - ok
16:21:25.0464 0x2360 RasMan - ok
16:21:25.0467 0x2360 RasPppoe - ok
16:21:25.0470 0x2360 RasSstp - ok
16:21:25.0474 0x2360 rdbss - ok
16:21:25.0479 0x2360 rdpbus - ok
16:21:25.0483 0x2360 RDPDR - ok
16:21:25.0490 0x2360 RdpVideoMiniport - ok
16:21:25.0494 0x2360 rdyboost - ok
16:21:25.0498 0x2360 ReFSv1 - ok
16:21:25.0502 0x2360 RemoteAccess - ok
16:21:25.0506 0x2360 RemoteRegistry - ok
16:21:25.0512 0x2360 RetailDemo - ok
16:21:25.0516 0x2360 RpcEptMapper - ok
16:21:25.0520 0x2360 RpcLocator - ok
16:21:25.0524 0x2360 RpcSs - ok
16:21:25.0528 0x2360 rspndr - ok
16:21:25.0533 0x2360 rt640x64 - ok
16:21:25.0538 0x2360 s3cap - ok
16:21:25.0541 0x2360 SamSs - ok
16:21:25.0550 0x2360 [ B7A4102FCA57F022CF69E3E1EAD61421, 75B70A96925E855E07AE3A364D9CA7A433A7FEB4185891F4124BA64D490C24F3 ] SamsungUPDUtilSvc C:\Windows\SysWOW64\SecUPDUtilSvc.exe
16:21:25.0557 0x2360 SamsungUPDUtilSvc - ok
16:21:25.0561 0x2360 sbp2port - ok
16:21:25.0566 0x2360 SCardSvr - ok
16:21:25.0569 0x2360 ScDeviceEnum - ok
16:21:25.0573 0x2360 scfilter - ok
16:21:25.0578 0x2360 Schedule - ok
16:21:25.0583 0x2360 SCPolicySvc - ok
16:21:25.0588 0x2360 sdbus - ok
16:21:25.0592 0x2360 SDRSVC - ok
16:21:25.0596 0x2360 sdstor - ok
16:21:25.0600 0x2360 seclogon - ok
16:21:25.0630 0x2360 [ 05E383849FA1FBBBC160612B0080618C, 43A33CC6BD24635EE849E89DB4391AB36292DDC0AC407E1B480B6E1DF7FC3BC5 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
16:21:25.0650 0x2360 Secunia PSI Agent - ok
16:21:25.0668 0x2360 [ F8173F1454F21C451439CB47EF75830A, CF87917CD061686CD956884D4ED73AA8C0B04B0B7B5BA36BAA4CC4A03C8C0263 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
16:21:25.0678 0x2360 Secunia Update Agent - ok
16:21:25.0684 0x2360 SENS - ok
16:21:25.0688 0x2360 SensorDataService - ok
16:21:25.0692 0x2360 SensorService - ok
16:21:25.0696 0x2360 SensrSvc - ok
16:21:25.0699 0x2360 SerCx - ok
16:21:25.0703 0x2360 SerCx2 - ok
16:21:25.0706 0x2360 Serenum - ok
16:21:25.0710 0x2360 Serial - ok
16:21:25.0714 0x2360 sermouse - ok
16:21:25.0723 0x2360 SessionEnv - ok
16:21:25.0731 0x2360 sfloppy - ok
16:21:25.0735 0x2360 SharedAccess - ok
16:21:25.0738 0x2360 ShellHWDetection - ok
16:21:25.0742 0x2360 SiSRaid2 - ok
16:21:25.0746 0x2360 SiSRaid4 - ok
16:21:25.0757 0x2360 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:21:25.0763 0x2360 SkypeUpdate - ok
16:21:25.0766 0x2360 smphost - ok
16:21:25.0769 0x2360 SmsRouter - ok
16:21:25.0779 0x2360 SNMPTRAP - ok
16:21:25.0786 0x2360 [ 21FF393512F51F5A98620C794B4488A3, 8A35923D3D6993FC014D86F0F7BD5C106586824DB8D26C04DC2AD0B8ED13ED20 ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
16:21:25.0789 0x2360 Sony PC Companion - ok
16:21:25.0793 0x2360 spaceport - ok
16:21:25.0796 0x2360 SpbCx - ok
16:21:25.0801 0x2360 Spooler - ok
16:21:25.0804 0x2360 sppsvc - ok
16:21:25.0808 0x2360 srv - ok
16:21:25.0812 0x2360 srv2 - ok
16:21:25.0815 0x2360 srvnet - ok
16:21:25.0819 0x2360 SSDPSRV - ok
16:21:25.0822 0x2360 SstpSvc - ok
16:21:25.0826 0x2360 StateRepository - ok
16:21:25.0847 0x2360 [ 2A6EDC2FBB4B9C11BB21BE3881C7A692, 74482CA4EC2B98C069A32C224BA5449AE10A8B41BFC053A4C23B6F65113A97A4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:21:25.0862 0x2360 Steam Client Service - ok
16:21:25.0875 0x2360 [ C64C157B167FE562E8670984E72C25FA, 9302C82A75CA65515297B72F3A6230307AAE0B14FD8C9C7FA343F7B62E5ED376 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:21:25.0882 0x2360 Stereo Service - ok
16:21:25.0886 0x2360 stexstor - ok
16:21:25.0890 0x2360 [ 7C4D2F167FA6153B4FE7145FE6D3DF15, F39ED9CDF323DDC57D0F64F9CC121E911EA53819A3A941A2F6EA557C35FCB372 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
16:21:25.0892 0x2360 StillCam - ok
16:21:25.0895 0x2360 stisvc - ok
16:21:25.0898 0x2360 storahci - ok
16:21:25.0902 0x2360 storflt - ok
16:21:25.0905 0x2360 stornvme - ok
16:21:25.0909 0x2360 storqosflt - ok
16:21:25.0914 0x2360 StorSvc - ok
16:21:25.0917 0x2360 storufs - ok
16:21:25.0921 0x2360 storvsc - ok
16:21:25.0924 0x2360 svsvc - ok
16:21:25.0945 0x2360 swenum - ok
16:21:25.0948 0x2360 swprv - ok
16:21:25.0952 0x2360 Synth3dVsc - ok
16:21:25.0955 0x2360 SysMain - ok
16:21:25.0959 0x2360 SystemEventsBroker - ok
16:21:25.0964 0x2360 TabletInputService - ok
16:21:25.0970 0x2360 [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901 C:\WINDOWS\System32\drivers\tap0901.sys
16:21:25.0972 0x2360 tap0901 - ok
16:21:25.0976 0x2360 [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t C:\WINDOWS\System32\drivers\tap0901t.sys
16:21:25.0978 0x2360 tap0901t - ok
16:21:25.0982 0x2360 [ 3A7CABF7DE8F1325BE8F46685469AEC3, 03B2FDEA5E10B9584EFC4ED22D6C2529322FBEF0DFEC60FE12FCE5C4A2E42F9C ] taphss6 C:\WINDOWS\system32\DRIVERS\taphss6.sys
16:21:25.0984 0x2360 taphss6 - ok
16:21:25.0987 0x2360 TapiSrv - ok
16:21:25.0991 0x2360 Tcpip - ok
16:21:25.0995 0x2360 Tcpip6 - ok
16:21:26.0002 0x2360 tcpipreg - ok
16:21:26.0006 0x2360 tdx - ok
16:21:26.0010 0x2360 terminpt - ok
16:21:26.0015 0x2360 TermService - ok
16:21:26.0019 0x2360 Themes - ok
16:21:26.0023 0x2360 tiledatamodelsvc - ok
16:21:26.0025 0x2360 TimeBroker - ok
16:21:26.0030 0x2360 TPM - ok
16:21:26.0033 0x2360 TrkWks - ok
16:21:26.0038 0x2360 TrustedInstaller - ok
16:21:26.0043 0x2360 TsUsbFlt - ok
16:21:26.0053 0x2360 TsUsbGD - ok
16:21:26.0059 0x2360 tunnel - ok
16:21:26.0087 0x2360 [ 57D1025FD44FA47BAE92EDF4D7645BD5, 20577723BA72927A38C851BE6EC3861E4C311C159FDDA773FF6F18063B899676 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
16:21:26.0101 0x2360 TunngleService - ok
16:21:26.0105 0x2360 uagp35 - ok
16:21:26.0109 0x2360 UASPStor - ok
16:21:26.0114 0x2360 UcmCx0101 - ok
16:21:26.0117 0x2360 UcmUcsi - ok
16:21:26.0121 0x2360 Ucx01000 - ok
16:21:26.0125 0x2360 UdeCx - ok
16:21:26.0130 0x2360 udfs - ok
16:21:26.0133 0x2360 UEFI - ok
16:21:26.0137 0x2360 Ufx01000 - ok
16:21:26.0141 0x2360 UfxChipidea - ok
16:21:26.0148 0x2360 ufxsynopsys - ok
16:21:26.0155 0x2360 UI0Detect - ok
16:21:26.0158 0x2360 uliagpkx - ok
16:21:26.0162 0x2360 umbus - ok
16:21:26.0166 0x2360 UmPass - ok
16:21:26.0170 0x2360 UmRdpService - ok
16:21:26.0173 0x2360 UnistoreSvc - ok
16:21:26.0179 0x2360 upnphost - ok
16:21:26.0183 0x2360 UrsChipidea - ok
16:21:26.0187 0x2360 UrsCx01000 - ok
16:21:26.0191 0x2360 UrsSynopsys - ok
16:21:26.0194 0x2360 usbccgp - ok
16:21:26.0198 0x2360 usbcir - ok
16:21:26.0201 0x2360 usbehci - ok
16:21:26.0206 0x2360 [ 2C780746DC44A28FE67004DC58173F05, 9E0596CE35C7430A31A7E77B4D12A1F521B9ED8EB0614E6FB38403AC614C3EE3 ] usbfilter C:\WINDOWS\system32\DRIVERS\usbfilter.sys
16:21:26.0208 0x2360 usbfilter - ok
16:21:26.0214 0x2360 usbhub - ok
16:21:26.0218 0x2360 USBHUB3 - ok
16:21:26.0222 0x2360 usbohci - ok
16:21:26.0225 0x2360 usbprint - ok
16:21:26.0229 0x2360 usbser - ok
16:21:26.0232 0x2360 USBSTOR - ok
16:21:26.0236 0x2360 usbuhci - ok
16:21:26.0239 0x2360 USBXHCI - ok
16:21:26.0243 0x2360 UserDataSvc - ok
16:21:26.0248 0x2360 UserManager - ok
16:21:26.0251 0x2360 UsoSvc - ok
16:21:26.0255 0x2360 VaultSvc - ok
16:21:26.0261 0x2360 [ 8CD776EB77695524CCE594AAC3A71569, AEF6F9B0E5F67E87819EB0E9FA5220EEF247A160A2BF8511CEDC8D12A9D4D941 ] VBoxNetAdp C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
16:21:26.0265 0x2360 VBoxNetAdp - ok
16:21:26.0269 0x2360 [ 3C8E2C591345F38149C69FE8E5DF8C90, 9F4BB9BDA09CB2E99A6A888B288F322AE5C460B5D124CD714C6F00FF5029144B ] VClone C:\WINDOWS\System32\drivers\VClone.sys
16:21:26.0271 0x2360 VClone - ok
16:21:26.0274 0x2360 vdrvroot - ok
16:21:26.0278 0x2360 vds - ok
16:21:26.0281 0x2360 VerifierExt - ok
16:21:26.0285 0x2360 vhdmp - ok
16:21:26.0289 0x2360 vhf - ok
16:21:26.0292 0x2360 vmbus - ok
16:21:26.0296 0x2360 VMBusHID - ok
16:21:26.0299 0x2360 vmicguestinterface - ok
16:21:26.0303 0x2360 vmicheartbeat - ok
16:21:26.0306 0x2360 vmickvpexchange - ok
16:21:26.0310 0x2360 vmicrdv - ok
16:21:26.0314 0x2360 vmicshutdown - ok
16:21:26.0317 0x2360 vmictimesync - ok
16:21:26.0320 0x2360 vmicvmsession - ok
16:21:26.0323 0x2360 vmicvss - ok
16:21:26.0327 0x2360 volmgr - ok
16:21:26.0331 0x2360 volmgrx - ok
16:21:26.0335 0x2360 volsnap - ok
16:21:26.0338 0x2360 vpci - ok
16:21:26.0341 0x2360 vsmraid - ok
16:21:26.0345 0x2360 VSS - ok
16:21:26.0349 0x2360 VSTXRAID - ok
16:21:26.0353 0x2360 vwifibus - ok
16:21:26.0356 0x2360 vwififlt - ok
16:21:26.0360 0x2360 vwifimp - ok
16:21:26.0363 0x2360 W32Time - ok
16:21:26.0367 0x2360 w3logsvc - ok
16:21:26.0370 0x2360 W3SVC - ok
16:21:26.0374 0x2360 WacomPen - ok
16:21:26.0378 0x2360 WalletService - ok
16:21:26.0382 0x2360 wanarp - ok
16:21:26.0386 0x2360 wanarpv6 - ok
16:21:26.0390 0x2360 WAS - ok
16:21:26.0395 0x2360 wbengine - ok
16:21:26.0399 0x2360 WbioSrvc - ok
16:21:26.0402 0x2360 Wcmsvc - ok
16:21:26.0406 0x2360 wcncsvc - ok
16:21:26.0410 0x2360 WcsPlugInService - ok
16:21:26.0414 0x2360 WdBoot - ok
16:21:26.0418 0x2360 Wdf01000 - ok
16:21:26.0422 0x2360 WdFilter - ok
16:21:26.0426 0x2360 WdiServiceHost - ok
16:21:26.0429 0x2360 WdiSystemHost - ok
16:21:26.0433 0x2360 wdiwifi - ok
16:21:26.0437 0x2360 WdNisDrv - ok
16:21:26.0440 0x2360 WdNisSvc - ok
16:21:26.0445 0x2360 WebClient - ok
16:21:26.0448 0x2360 Wecsvc - ok
16:21:26.0452 0x2360 WEPHOSTSVC - ok
16:21:26.0456 0x2360 wercplsupport - ok
16:21:26.0459 0x2360 WerSvc - ok
16:21:26.0463 0x2360 wfpcapture - ok
16:21:26.0467 0x2360 WFPLWFS - ok
16:21:26.0471 0x2360 WiaRpc - ok
16:21:26.0474 0x2360 WIMMount - ok
16:21:26.0477 0x2360 WinDefend - ok
16:21:26.0485 0x2360 WindowsTrustedRT - ok
16:21:26.0489 0x2360 WindowsTrustedRTProxy - ok
16:21:26.0492 0x2360 WinHttpAutoProxySvc - ok
16:21:26.0496 0x2360 WinMad - ok
16:21:26.0502 0x2360 Winmgmt - ok
16:21:26.0506 0x2360 WinRM - ok
16:21:26.0514 0x2360 WINUSB - ok
16:21:26.0517 0x2360 WinVerbs - ok
16:21:26.0521 0x2360 WlanSvc - ok
16:21:26.0524 0x2360 wlidsvc - ok
16:21:26.0528 0x2360 WmiAcpi - ok
16:21:26.0533 0x2360 wmiApSrv - ok
16:21:26.0536 0x2360 WMPNetworkSvc - ok
16:21:26.0541 0x2360 Wof - ok
16:21:26.0546 0x2360 workfolderssvc - ok
16:21:26.0550 0x2360 wpcfltr - ok
16:21:26.0555 0x2360 WPDBusEnum - ok
16:21:26.0558 0x2360 WpdUpFltr - ok
16:21:26.0562 0x2360 WpnService - ok
16:21:26.0565 0x2360 ws2ifsl - ok
16:21:26.0569 0x2360 wscsvc - ok
16:21:26.0572 0x2360 WSearch - ok
16:21:26.0578 0x2360 WSService - ok
16:21:26.0581 0x2360 wuauserv - ok
16:21:26.0585 0x2360 WudfPf - ok
16:21:26.0588 0x2360 WUDFRd - ok
16:21:26.0592 0x2360 wudfsvc - ok
16:21:26.0595 0x2360 WwanSvc - ok
16:21:26.0600 0x2360 XblAuthManager - ok
16:21:26.0603 0x2360 XblGameSave - ok
16:21:26.0607 0x2360 xboxgip - ok
16:21:26.0610 0x2360 XboxNetApiSvc - ok
16:21:26.0614 0x2360 xinputhid - ok
16:21:26.0617 0x2360 ================ Scan global ===============================
16:21:26.0629 0x2360 [ Global ] - ok
16:21:26.0629 0x2360 ================ Scan MBR ==================================
16:21:26.0632 0x2360 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:21:26.0720 0x2360 \Device\Harddisk0\DR0 - ok
16:21:26.0723 0x2360 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
16:21:26.0728 0x2360 \Device\Harddisk1\DR1 - ok
16:21:26.0729 0x2360 ================ Scan VBR ==================================
16:21:26.0731 0x2360 [ B137EA7CDA7CEA43F9889BEB0C129048 ] \Device\Harddisk0\DR0\Partition1
16:21:26.0732 0x2360 \Device\Harddisk0\DR0\Partition1 - ok
16:21:26.0734 0x2360 [ 42E846FE50911FA991BE6513EB7B0677 ] \Device\Harddisk0\DR0\Partition2
16:21:26.0736 0x2360 \Device\Harddisk0\DR0\Partition2 - ok
16:21:26.0738 0x2360 [ DDC71AC668D786C5DE83C16A232B042C ] \Device\Harddisk1\DR1\Partition1
16:21:26.0775 0x2360 \Device\Harddisk1\DR1\Partition1 - ok
16:21:26.0775 0x2360 ================ Scan generic autorun ======================
16:21:27.0035 0x2360 [ D0E9E2E198C8BA95297EF8C9D04865F1, 1889A66AEEEE1E9D80FB99E23AFBB23AF37044BAA8AE00070667D3B2E32AB804 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:21:27.0243 0x2360 RTHDVCPL - ok
16:21:27.0260 0x2360 ShadowPlay - ok
16:21:27.0319 0x2360 [ 046DDF9B31BEC14D03CCC97DD728A4D1, D29F49F870B27553E13F9C1486D9B27A27C41FBEC7ACEC77EDFD5552C941E710 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
16:21:27.0361 0x2360 NvBackend - ok
16:21:27.0379 0x2360 [ 63E0C11E1CEBA6CC05443E98041BB1E0, 3C52E5F7191519A0DF545DFA42B140F55426D01E0CEF6212CEE263E0D7BFD9EC ] C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE
16:21:27.0388 0x2360 RoccatKoneXTD - ok
16:21:27.0392 0x2360 [ 17D9440D55500418C8FDB8EF1390C5AD, C4C57AE427FB89EFDFC1D111C300BB588E475BE90DD57084C03399557641F948 ] C:\Windows\RaidTool\xInsIDE.exe
16:21:27.0393 0x2360 JMB36X IDE Setup - ok
16:21:27.0399 0x2360 [ 087A06DB98D0E84C0DE90EE308707E63, 96E8CDC492115A93B1B244196947E45D3C30CF64F538EAB634E0B02BEFBF1607 ] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
16:21:27.0401 0x2360 NUSB3MON - ok
16:21:27.0415 0x2360 [ D0B1DA5382433AFBF52DE8815298EB0C, A326D01783359CCA1054210D82F17533638A9769A7A08C2BD0621DE016909359 ] C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE
16:21:27.0425 0x2360 RoccatIsku - ok
16:21:27.0432 0x2360 [ EBC0E8C0A4DDA2C32A7D5863462A321A, 2F410138DB66D0219254339F1F098E401CEDAA032596F1F67BC54F394256FC68 ] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
16:21:27.0434 0x2360 amd_dc_opt - ok
16:21:27.0439 0x2360 [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
16:21:27.0441 0x2360 HP Software Update - ok
16:21:27.0451 0x2360 [ 9DECF401AE4CB834D89957BDBF484068, 084056EAA068F88B6168566F14D315F2AD35F2202B18CFC5F88A466C154210A3 ] C:\Program Files\AVAST Software\Avast\setup\emupdate\5b9c12bd-ec1a-4df2-8712-ac5ed4039682.exe
16:21:27.0454 0x2360 20150107 - ok
16:21:27.0484 0x2360 OneDriveSetup - ok
16:21:27.0486 0x2360 OneDriveSetup - ok
16:21:27.0499 0x2360 [ 8F97EDDF827C64AB2C42971095BF2F76, 5A42AA8E3A5E5BA6E93F1CD5B3229022D881B6180976E48A219A7C80F3EBE37D ] C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
16:21:27.0507 0x2360 Sony PC Companion - ok
16:21:27.0628 0x2360 [ F2B4338E54D09E15E28E170B3EB2B430, 6B7008C4D58806D8D67F0E860138A1660BAC3000CE239C34480E40379F792B6F ] D:\Spiele\Origin\Origin.exe
16:21:27.0696 0x2360 EADM - ok
16:21:27.0920 0x2360 [ 36C55F2645D61F15457D23B56F0149DA, 410DDEA347DD8AA58838560CC01AABD3F7D40A6879482AADD09BC4A82E26D48D ] D:\Spiele\GalaxyClient\GalaxyClient.exe
16:21:28.0125 0x2360 GalaxyClient - ok
16:21:28.0300 0x2360 [ 0AF9C61507E71E715B94C3AC228B34DD, 2426D70F95E1AA4A30E4549B90C15BB1FCA58231376BA311C8B3578BCA4FC3C5 ] D:\Dateien\Echobit\Evolve\EvolveClient.exe
16:21:28.0365 0x2360 EvolveClient - ok
16:21:28.0384 0x2360 [ C2D2FFD27F46815951C9562F0A2EC864, 892A5DC5C3D797E3FD36230710BA9AF43ADA5CDFD19A03268D20D5A9DA3CCB3A ] C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:21:28.0391 0x2360 OneDrive - ok
16:21:28.0394 0x2360 Skype - ok
16:21:28.0575 0x2360 [ FB5B78A3DE88FD3B725DA574497BC225, 0096C3ED0E29153E6A9E84C121B79A170FEDFE521AEA1BC602BC536E1795E5F3 ] C:\Program Files\CCleaner\CCleaner64.exe
16:21:28.0701 0x2360 CCleaner Monitoring - ok
16:21:28.0719 0x2360 Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64 - ok
16:21:28.0725 0x2360 Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64 - ok
16:21:28.0731 0x2360 Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64 - ok
16:21:28.0733 0x2360 OneDriveSetup - ok
16:21:28.0734 0x2360 Waiting for KSN requests completion. In queue: 55
16:21:29.0734 0x2360 Waiting for KSN requests completion. In queue: 55
16:21:30.0734 0x2360 Waiting for KSN requests completion. In queue: 55
16:21:31.0774 0x2360 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x60100 ( disabled : updated )
16:21:31.0780 0x2360 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.2.2218.942 ), 0x41000 ( enabled : updated )
16:21:31.0805 0x2360 Win FW state via NFP2: enabled ( trusted )
16:21:34.0221 0x2360 ============================================================
16:21:34.0221 0x2360 Scan finished
16:21:34.0221 0x2360 ============================================================
16:21:34.0232 0x2210 Detected object count: 0
16:21:34.0232 0x2210 Actual detected object count: 0
16:22:04.0938 0x17b4 ============================================================
16:22:04.0938 0x17b4 Scan started
16:22:04.0938 0x17b4 Mode: Manual;
16:22:04.0939 0x17b4 ============================================================
16:22:04.0939 0x17b4 KSN ping started
16:22:07.0261 0x17b4 KSN ping finished: true
16:22:07.0924 0x17b4 ================ Scan system memory ========================
16:22:07.0924 0x17b4 System memory - ok
16:22:07.0925 0x17b4 ================ Scan services =============================
16:22:07.0976 0x17b4 1394ohci - ok
16:22:07.0980 0x17b4 3ware - ok
16:22:07.0984 0x17b4 ACPI - ok
16:22:07.0987 0x17b4 acpiex - ok
16:22:07.0991 0x17b4 acpipagr - ok
16:22:07.0995 0x17b4 AcpiPmi - ok
16:22:08.0000 0x17b4 acpitime - ok
16:22:08.0008 0x17b4 [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:22:08.0010 0x17b4 AdobeARMservice - ok
16:22:08.0045 0x17b4 [ 368290D0A612D62DA6F3D798B1BB8FE7, D573BF8543F37BC51B88A2473EDFD28AFBCCC446E8CADD54A90FA48D8739D222 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:22:08.0050 0x17b4 AdobeFlashPlayerUpdateSvc - ok
16:22:08.0055 0x17b4 ADP80XX - ok
16:22:08.0060 0x17b4 AFD - ok
16:22:08.0064 0x17b4 agp440 - ok
16:22:08.0068 0x17b4 ahcache - ok
16:22:08.0072 0x17b4 AJRouter - ok
16:22:08.0075 0x17b4 ALG - ok
16:22:08.0080 0x17b4 AmdK8 - ok
16:22:08.0084 0x17b4 AmdPPM - ok
16:22:08.0089 0x17b4 [ 53D8D46D51D390ABDB54ECA623165CB7, D16A3604412D0DC3EA68320FB6980D146ED60D587AAB6B65810C038AFF1EC237 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
16:22:08.0091 0x17b4 amdsata - ok
16:22:08.0094 0x17b4 amdsbs - ok
16:22:08.0099 0x17b4 [ 75C51148154E34EB3D7BB84749A758D5, 8865F223CBAE166A9BF6CBCDA66F63369F151CCB449A28E95560C36AD45D0C85 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
16:22:08.0100 0x17b4 amdxata - ok
16:22:08.0103 0x17b4 AppHostSvc - ok
16:22:08.0106 0x17b4 AppID - ok
16:22:08.0110 0x17b4 AppIDSvc - ok
16:22:08.0114 0x17b4 Appinfo - ok
16:22:08.0118 0x17b4 [ 301AA64F9643BC453D90A66C4C0E7204, F9EDAD13F865B5F0A89FF59827EECB519F113EB037F2DA8367F1572629B503B1 ] AppleCharger C:\WINDOWS\system32\DRIVERS\AppleCharger.sys
16:22:08.0118 0x17b4 AppleCharger - ok
16:22:08.0122 0x17b4 [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\WINDOWS\system32\AppleChargerSrv.exe
16:22:08.0123 0x17b4 AppleChargerSrv - ok
16:22:08.0127 0x17b4 AppReadiness - ok
16:22:08.0130 0x17b4 AppXSvc - ok
16:22:08.0134 0x17b4 arcsas - ok
16:22:08.0148 0x17b4 aspnet_state - ok
16:22:08.0152 0x17b4 [ B5B4C90E9F52DA8586F1E5461AD90A5D, D1EAA34E6AEB014E942D22F8CB5FB19BF1E2EADE5B5357274C001F44FDC25F05 ] aswHwid C:\WINDOWS\system32\drivers\aswHwid.sys
16:22:08.0153 0x17b4 aswHwid - ok
16:22:08.0158 0x17b4 [ 300CB8E510855189CAD0B72FFB5590CB, EB50DC553FA8FD9DE3F60AAFED20702EAFBB1498EBD3220A39CC52A12F694246 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
16:22:08.0160 0x17b4 aswMonFlt - ok
16:22:08.0166 0x17b4 [ 6D37D8DB30D086739507C5F6E542656A, 746D9E32E729138EA19062F4E6B6C98B6833504020A296E3E2A9CD92E0FED0B9 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr2.sys
16:22:08.0167 0x17b4 aswRdr - ok
16:22:08.0172 0x17b4 [ 07E32DFCA422A2920482D762D01957EC, A6502D26266D708E55EB2883897673AD3087C41D9EA0B41CD6BF6BD923EBDCB8 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
16:22:08.0174 0x17b4 aswRvrt - ok
16:22:08.0198 0x17b4 [ 3B4AC2DBFC86F7247C1FF1FAF2860530, A54A693D01C02AAE2B78BFE9B3900B5A6DD0C2C37C8FA58B14B5F57107032FF5 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
16:22:08.0214 0x17b4 aswSnx - ok
16:22:08.0227 0x17b4 [ A04F190FCD762E7BCC9BFC70563C52DB, 2BF6823F2EADBDA28DF1CCECCAC84D9FF37D3CFB66A7B402575C6B9FCFB45EB3 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
16:22:08.0235 0x17b4 aswSP - ok
16:22:08.0242 0x17b4 [ 6E53278ECCFFBC2ACC2A5006745ED4BB, 392170073A8933DB43CD1D64AD087F972F1971BF83BCAFE5B8FA1273C02026CE ] aswStm C:\WINDOWS\system32\drivers\aswStm.sys
16:22:08.0245 0x17b4 aswStm - ok
16:22:08.0254 0x17b4 [ 91782404718C6352C26B3242BAC3F0F1, 84B1CDD1EBC83FAEBDCC8F67B13CA405C6CF0C518FC016603889EBE48FC91AB9 ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
16:22:08.0258 0x17b4 aswVmm - ok
16:22:08.0262 0x17b4 AsyncMac - ok
16:22:08.0266 0x17b4 atapi - ok
16:22:08.0270 0x17b4 [ 7C5D273E29DCC5505469B299C6F29163, 206CAB85CE12A3953F0861C811575DC7FD000147436219EEE334584A33370B3A ] AtiPcie C:\WINDOWS\system32\drivers\AtiPcie.sys
16:22:08.0271 0x17b4 AtiPcie - ok
16:22:08.0281 0x17b4 [ FC0E8778C000291CAF60EB88C011E931, 09BCCA3DE01021AEF76DFB46F01D21BA6FF409E816FA7547E5C3DFBF3A615ED2 ] atksgt C:\WINDOWS\system32\DRIVERS\atksgt.sys
16:22:08.0286 0x17b4 atksgt - ok
16:22:08.0290 0x17b4 AudioEndpointBuilder - ok
16:22:08.0293 0x17b4 Audiosrv - ok
16:22:08.0306 0x17b4 [ 54236E79A44F909612391C8A2D70D512, B0DF5BCC4F90AF087D0306F8D81F90B2CAE0176813E3AA6A7D5460F7878677CD ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
16:22:08.0312 0x17b4 avast! Antivirus - ok
16:22:08.0316 0x17b4 AxInstSV - ok
16:22:08.0320 0x17b4 b06bdrv - ok
16:22:08.0324 0x17b4 BasicDisplay - ok
16:22:08.0327 0x17b4 BasicRender - ok
16:22:08.0333 0x17b4 bcmfn2 - ok
16:22:08.0337 0x17b4 BDESVC - ok
16:22:08.0340 0x17b4 Beep - ok
16:22:08.0365 0x17b4 [ 2EE42E7539BBF4252F7F47B288E61CEA, 2113A7C825AE2D222FD80D092BAA254AB3EFA8A2F58EC8325837A6BC611BC715 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
16:22:08.0383 0x17b4 BEService - ok
16:22:08.0388 0x17b4 BFE - ok
16:22:08.0391 0x17b4 BITS - ok
16:22:08.0394 0x17b4 bowser - ok
16:22:08.0401 0x17b4 [ 7487B46E104303E247F68D485C12326F, BAC6A4FFD5B4009B4B673479630FAA2784618438925DFB6489F07BF163188114 ] BRDriver64_1_3_3_E02B25FC C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys
16:22:08.0403 0x17b4 BRDriver64_1_3_3_E02B25FC - ok
16:22:08.0406 0x17b4 BrokerInfrastructure - ok
16:22:08.0409 0x17b4 Browser - ok
16:22:08.0420 0x17b4 [ 448917845F097FCE9D4554C3D2001EF3, BDCBEC01579D7CF28963E4E13CDC5B26E4B69CA24FA2CC4D6E24CAE0DDBCB3FE ] BRSptStub C:\ProgramData\BitRaider\BRSptStub.exe
16:22:08.0426 0x17b4 BRSptStub - ok
16:22:08.0431 0x17b4 BthAvrcpTg - ok
16:22:08.0435 0x17b4 BthHFEnum - ok
16:22:08.0439 0x17b4 bthhfhid - ok
16:22:08.0442 0x17b4 BthHFSrv - ok
16:22:08.0446 0x17b4 BTHMODEM - ok
16:22:08.0451 0x17b4 bthserv - ok
16:22:08.0454 0x17b4 buttonconverter - ok
16:22:08.0458 0x17b4 CapImg - ok
16:22:08.0461 0x17b4 cdfs - ok
16:22:08.0465 0x17b4 CDPSvc - ok
16:22:08.0468 0x17b4 cdrom - ok
16:22:08.0471 0x17b4 CertPropSvc - ok
16:22:08.0475 0x17b4 circlass - ok
16:22:08.0478 0x17b4 CLFS - ok
16:22:08.0482 0x17b4 ClipSVC - ok
16:22:08.0491 0x17b4 CmBatt - ok
16:22:08.0494 0x17b4 CNG - ok
16:22:08.0498 0x17b4 cnghwassist - ok
16:22:08.0519 0x17b4 CompositeBus - ok
16:22:08.0522 0x17b4 COMSysApp - ok
16:22:08.0526 0x17b4 condrv - ok
16:22:08.0530 0x17b4 CoreMessagingRegistrar - ok
16:22:08.0536 0x17b4 CryptSvc - ok
16:22:08.0540 0x17b4 dam - ok
16:22:08.0543 0x17b4 dc1-controller - ok
16:22:08.0548 0x17b4 DcomLaunch - ok
16:22:08.0552 0x17b4 DcpSvc - ok
16:22:08.0555 0x17b4 defragsvc - ok
16:22:08.0558 0x17b4 DeviceAssociationService - ok
16:22:08.0562 0x17b4 DeviceInstall - ok
16:22:08.0565 0x17b4 DevQueryBroker - ok
16:22:08.0569 0x17b4 Dfsc - ok
16:22:08.0572 0x17b4 Dhcp - ok
16:22:08.0576 0x17b4 diagnosticshub.standardcollector.service - ok
16:22:08.0579 0x17b4 DiagTrack - ok
16:22:08.0583 0x17b4 disk - ok
16:22:08.0587 0x17b4 DmEnrollmentSvc - ok
16:22:08.0590 0x17b4 dmvsc - ok
16:22:08.0593 0x17b4 dmwappushservice - ok
16:22:08.0597 0x17b4 Dnscache - ok
16:22:08.0602 0x17b4 dot3svc - ok
16:22:08.0605 0x17b4 DPS - ok
16:22:08.0609 0x17b4 drmkaud - ok
16:22:08.0612 0x17b4 DsmSvc - ok
16:22:08.0616 0x17b4 DsSvc - ok
16:22:08.0619 0x17b4 DXGKrnl - ok
16:22:08.0623 0x17b4 Eaphost - ok
16:22:08.0626 0x17b4 ebdrv - ok
16:22:08.0630 0x17b4 EFS - ok
16:22:08.0634 0x17b4 EhStorClass - ok
16:22:08.0637 0x17b4 EhStorTcgDrv - ok
16:22:08.0642 0x17b4 [ BE2902E13CA69383F449B6BF927844FB, F092785E305D8E1FE795AF98A7A7B7B4548A0D6687060568C9E078FFA8D65C1C ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
16:22:08.0643 0x17b4 ElbyCDIO - ok
16:22:08.0646 0x17b4 embeddedmode - ok
16:22:08.0650 0x17b4 EntAppSvc - ok
16:22:08.0653 0x17b4 ErrDev - ok
16:22:08.0658 0x17b4 [ B8FA96995726D1FA58476E352C02AD82, 6BBD49B16A19CC3C3337707EFBEB6BC355CB077CBBBC99D8985A3FBB6E871A89 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
16:22:08.0659 0x17b4 ES lite Service - ok
16:22:08.0665 0x17b4 EventSystem - ok
16:22:08.0669 0x17b4 exfat - ok
16:22:08.0672 0x17b4 fastfat - ok
16:22:08.0676 0x17b4 Fax - ok
16:22:08.0679 0x17b4 fcvsc - ok
16:22:08.0682 0x17b4 fdc - ok
16:22:08.0686 0x17b4 fdPHost - ok
16:22:08.0689 0x17b4 FDResPub - ok
16:22:08.0693 0x17b4 fhsvc - ok
16:22:08.0696 0x17b4 FileCrypt - ok
16:22:08.0700 0x17b4 FileInfo - ok
16:22:08.0703 0x17b4 Filetrace - ok
16:22:08.0707 0x17b4 flpydisk - ok
16:22:08.0710 0x17b4 FltMgr - ok
16:22:08.0714 0x17b4 FontCache - ok
16:22:08.0717 0x17b4 FontCache3.0.0.0 - ok
16:22:08.0721 0x17b4 FsDepends - ok
16:22:08.0724 0x17b4 Fs_Rec - ok
16:22:08.0727 0x17b4 fvevol - ok
16:22:08.0731 0x17b4 gagp30kx - ok
16:22:08.0821 0x17b4 [ 7037D548B726108F9420B9F345573DC4, 659202CD4F8E789B47D9E7281312DD87B4718A615EC8B5C7F143E84AC7B9ACA3 ] GalaxyClientService D:\Spiele\GalaxyClient\GalaxyClientService.exe
16:22:08.0848 0x17b4 GalaxyClientService - ok
16:22:08.0982 0x17b4 [ 7747954B78DEED16169FC816108FE995, 677A09A5702884A138C83739487AF23EF6E4C8F79875997D26417E823D692293 ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
16:22:09.0089 0x17b4 GalaxyCommunication - ok
16:22:09.0103 0x17b4 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
16:22:09.0104 0x17b4 gdrv - ok
16:22:09.0108 0x17b4 gencounter - ok
16:22:09.0112 0x17b4 genericusbfn - ok
16:22:09.0139 0x17b4 [ C2730FE9713C1C474257A7085386B11E, 7D35D00D2B455841C8C9A87CE92885CD22F4B8B6690CB21443ED1B515117EF95 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
16:22:09.0157 0x17b4 GfExperienceService - ok
16:22:09.0162 0x17b4 GPIOClx0101 - ok
16:22:09.0167 0x17b4 gpsvc - ok
16:22:09.0170 0x17b4 GpuEnergyDrv - ok
16:22:09.0177 0x17b4 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:22:09.0180 0x17b4 gupdate - ok
16:22:09.0184 0x17b4 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:22:09.0187 0x17b4 gupdatem - ok
16:22:09.0190 0x17b4 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
16:22:09.0191 0x17b4 GVTDrv64 - ok
16:22:09.0196 0x17b4 [ 7F79205B4EFA98F0767309479C8C01C6, 4B576903A83F33A8CF31D3887144A3D51C56D1187115C83AC99C0E9F6B4BF128 ] hamachi C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
16:22:09.0198 0x17b4 hamachi - ok
16:22:09.0385 0x17b4 [ 2ADED86ED9B92885378467CFEE9ABE8F, 78703B6E51C5E7DCFFBA9F15C404DB2A0054FE8F2F92B7AD470B08498995712A ] Hamachi2Svc D:\Dateien\LogMeIn Hamachi\hamachi-2.exe
16:22:09.0424 0x17b4 Hamachi2Svc - ok
16:22:09.0434 0x17b4 HDAudBus - ok
16:22:09.0438 0x17b4 HidBatt - ok
16:22:09.0442 0x17b4 HidBth - ok
16:22:09.0446 0x17b4 hidi2c - ok
16:22:09.0451 0x17b4 hidinterrupt - ok
16:22:09.0454 0x17b4 HidIr - ok
16:22:09.0459 0x17b4 hidserv - ok
16:22:09.0463 0x17b4 HidUsb - ok
16:22:09.0467 0x17b4 HomeGroupListener - ok
16:22:09.0473 0x17b4 HomeGroupProvider - ok
16:22:09.0477 0x17b4 HpSAMD - ok
16:22:09.0481 0x17b4 HTTP - ok
16:22:09.0486 0x17b4 hwpolicy - ok
16:22:09.0490 0x17b4 hyperkbd - ok
16:22:09.0494 0x17b4 HyperVideo - ok
16:22:09.0498 0x17b4 i8042prt - ok
16:22:09.0503 0x17b4 iaLPSSi_GPIO - ok
16:22:09.0507 0x17b4 iaLPSSi_I2C - ok
16:22:09.0510 0x17b4 iaStorAV - ok
16:22:09.0514 0x17b4 iaStorV - ok
16:22:09.0519 0x17b4 ibbus - ok
16:22:09.0523 0x17b4 icssvc - ok
16:22:09.0528 0x17b4 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:22:09.0530 0x17b4 IDriverT - ok
16:22:09.0535 0x17b4 IEEtwCollectorService - ok
16:22:09.0539 0x17b4 IKEEXT - ok
16:22:09.0631 0x17b4 [ 3A2D6740F51BE48C0FD01AD907329DEE, 4FD899CD6E3B3D5C9803E52CB72F002B6CFC144D524FAF6845CF6D115EC6E059 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
16:22:09.0700 0x17b4 IntcAzAudAddService - ok
16:22:09.0710 0x17b4 intelide - ok
16:22:09.0714 0x17b4 intelpep - ok
16:22:09.0717 0x17b4 intelppm - ok
16:22:09.0720 0x17b4 IoQos - ok
16:22:09.0724 0x17b4 IpFilterDriver - ok
16:22:09.0727 0x17b4 iphlpsvc - ok
16:22:09.0731 0x17b4 IPMIDRV - ok
16:22:09.0735 0x17b4 IPNAT - ok
16:22:09.0738 0x17b4 IRENUM - ok
16:22:09.0742 0x17b4 isapnp - ok
16:22:09.0746 0x17b4 iScsiPrt - ok
16:22:09.0778 0x17b4 [ F3A41EC4C6506E76E07A219B3A1DF8D2, B34FDAA453E6E089374B33533A89F76DEE1C2D14F9939AF3669B6F33FA41DD76 ] JMB36X C:\Windows\SysWOW64\XSrvSetup.exe
16:22:09.0790 0x17b4 JMB36X - ok
16:22:09.0796 0x17b4 [ 1C368C1A2733DCC5B8E15420AA2B0F6D, C43A3534E33CEAEB8359D493FDB4663CB7C1E9286862B2CEE2788E9EA060DF1D ] JRAID C:\WINDOWS\system32\drivers\jraid.sys
16:22:09.0798 0x17b4 JRAID - ok
16:22:09.0801 0x17b4 kbdclass - ok
16:22:09.0805 0x17b4 kbdhid - ok
16:22:09.0808 0x17b4 kdnic - ok
16:22:09.0811 0x17b4 KeyIso - ok
16:22:09.0815 0x17b4 KSecDD - ok
16:22:09.0819 0x17b4 KSecPkg - ok
16:22:09.0822 0x17b4 ksthunk - ok
16:22:09.0826 0x17b4 KtmRm - ok
16:22:09.0831 0x17b4 LanmanServer - ok
16:22:09.0836 0x17b4 LanmanWorkstation - ok
16:22:09.0841 0x17b4 lfsvc - ok
16:22:09.0845 0x17b4 LicenseManager - ok
16:22:09.0850 0x17b4 [ 156AB2E56DC3CA0B582E3362E07CDED7, 7B03929273861690DC42E4C686E655BE5A1C60136AE5E739D7E62306AFD4AB9A ] lirsgt C:\WINDOWS\system32\DRIVERS\lirsgt.sys
16:22:09.0852 0x17b4 lirsgt - ok
16:22:09.0855 0x17b4 lltdio - ok
16:22:09.0859 0x17b4 lltdsvc - ok
16:22:09.0863 0x17b4 lmhosts - ok
16:22:09.0868 0x17b4 LSI_SAS - ok
16:22:09.0871 0x17b4 LSI_SAS2i - ok
16:22:09.0875 0x17b4 LSI_SAS3i - ok
16:22:09.0878 0x17b4 LSI_SSS - ok
16:22:09.0882 0x17b4 LSM - ok
16:22:09.0885 0x17b4 luafv - ok
16:22:09.0889 0x17b4 MapsBroker - ok
16:22:09.0893 0x17b4 [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
16:22:09.0894 0x17b4 MBAMProtector - ok
16:22:09.0920 0x17b4 [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
16:22:09.0939 0x17b4 MBAMService - ok
16:22:09.0947 0x17b4 [ 85CFE7AB85B43B6B7AC7961AA3983A9F, 4E88B75818FD00C0ABBDF8E02EBFB550A67B46E5E13D3B3DF52611793F7DA0DD ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
16:22:09.0949 0x17b4 MBAMWebAccessControl - ok
16:22:09.0952 0x17b4 megasas - ok
16:22:09.0956 0x17b4 megasr - ok
16:22:09.0961 0x17b4 mlx4_bus - ok
16:22:09.0965 0x17b4 MMCSS - ok
16:22:09.0969 0x17b4 Modem - ok
16:22:09.0972 0x17b4 monitor - ok
16:22:09.0977 0x17b4 mouclass - ok
16:22:09.0981 0x17b4 mouhid - ok
16:22:09.0985 0x17b4 mountmgr - ok
16:22:09.0992 0x17b4 [ CC11EEB7AF4617D65DF0E9A21FC1ABD0, A683A5FB26E1B9FB4EEB40A9C7186F8433E3FB0A45848DF6102EF07B4DC75AC8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:22:09.0995 0x17b4 MozillaMaintenance - ok
16:22:09.0999 0x17b4 mpsdrv - ok
16:22:10.0003 0x17b4 MpsSvc - ok
16:22:10.0006 0x17b4 MQAC - ok
16:22:10.0010 0x17b4 MRxDAV - ok
16:22:10.0013 0x17b4 mrxsmb - ok
16:22:10.0016 0x17b4 mrxsmb10 - ok
16:22:10.0020 0x17b4 mrxsmb20 - ok
16:22:10.0023 0x17b4 MsBridge - ok
16:22:10.0026 0x17b4 MSDTC - ok
16:22:10.0033 0x17b4 Msfs - ok
16:22:10.0036 0x17b4 msgpiowin32 - ok
16:22:10.0039 0x17b4 mshidkmdf - ok
16:22:10.0043 0x17b4 mshidumdf - ok
16:22:10.0046 0x17b4 msisadrv - ok
16:22:10.0050 0x17b4 MSiSCSI - ok
16:22:10.0053 0x17b4 msiserver - ok
16:22:10.0056 0x17b4 MSKSSRV - ok
16:22:10.0059 0x17b4 MsLldp - ok
16:22:10.0064 0x17b4 MSMQ - ok
16:22:10.0068 0x17b4 MSPCLOCK - ok
16:22:10.0071 0x17b4 MSPQM - ok
16:22:10.0074 0x17b4 MsRPC - ok
16:22:10.0079 0x17b4 mssmbios - ok
16:22:10.0083 0x17b4 MSTEE - ok
16:22:10.0086 0x17b4 MTConfig - ok
16:22:10.0090 0x17b4 Mup - ok
16:22:10.0093 0x17b4 mvumis - ok
16:22:10.0098 0x17b4 NativeWifiP - ok
16:22:10.0101 0x17b4 NcaSvc - ok
16:22:10.0105 0x17b4 NcbService - ok
16:22:10.0108 0x17b4 NcdAutoSetup - ok
16:22:10.0111 0x17b4 ndfltr - ok
16:22:10.0115 0x17b4 NDIS - ok
16:22:10.0118 0x17b4 NdisCap - ok
16:22:10.0122 0x17b4 NdisImPlatform - ok
16:22:10.0125 0x17b4 NdisTapi - ok
16:22:10.0128 0x17b4 Ndisuio - ok
16:22:10.0132 0x17b4 NdisVirtualBus - ok
16:22:10.0136 0x17b4 NdisWan - ok
16:22:10.0139 0x17b4 ndiswanlegacy - ok
16:22:10.0143 0x17b4 ndproxy - ok
16:22:10.0146 0x17b4 Ndu - ok
16:22:10.0150 0x17b4 NetBIOS - ok
16:22:10.0154 0x17b4 NetBT - ok
16:22:10.0158 0x17b4 Netlogon - ok
16:22:10.0162 0x17b4 Netman - ok
16:22:10.0169 0x17b4 NetMsmqActivator - ok
16:22:10.0172 0x17b4 NetPipeActivator - ok
16:22:10.0177 0x17b4 netprofm - ok
16:22:10.0230 0x17b4 [ 152E946E60EEF45088D7D1E74D9F1779, A0330BBE51E900F5956BA92BD04C54CC6CB57A611AF1A3FF2454FEB852E105BA ] netr28x C:\WINDOWS\system32\DRIVERS\netr28x.sys
16:22:10.0271 0x17b4 netr28x - ok
16:22:10.0279 0x17b4 NetSetupSvc - ok
16:22:10.0282 0x17b4 NetTcpActivator - ok
16:22:10.0286 0x17b4 NetTcpPortSharing - ok
16:22:10.0291 0x17b4 netvsc - ok
16:22:10.0296 0x17b4 NgcCtnrSvc - ok
16:22:10.0300 0x17b4 NgcSvc - ok
16:22:10.0304 0x17b4 NlaSvc - ok
16:22:10.0307 0x17b4 Npfs - ok
16:22:10.0311 0x17b4 npsvctrig - ok
16:22:10.0316 0x17b4 nsi - ok
16:22:10.0319 0x17b4 nsiproxy - ok
16:22:10.0324 0x17b4 NTFS - ok
16:22:10.0328 0x17b4 Null - ok
16:22:10.0336 0x17b4 [ 3EC9421780196DDA1A4C368BC7471778, FC5DEB52CAA76F968D3FF5F2418FA0A9DAC9E07BA5B259DEA5380759305F290E ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
16:22:10.0340 0x17b4 NVHDA - ok
16:22:10.0551 0x17b4 [ 9BE2E483F588B3A57C67352847037046, 1D0A4D86853C8A9188C4545842037F99DCC423CBA9DB68F51D10ACE302DE5AE2 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
16:22:10.0726 0x17b4 nvlddmkm - ok
16:22:10.0784 0x17b4 [ F9CF3FB8DD81B390783532B3C98D6976, 8C94638136CFAEB3ED6DD7CE2059E98B64B15918DDB0796CC0B88474EE99F5BF ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
16:22:10.0812 0x17b4 NvNetworkService - ok
16:22:10.0818 0x17b4 nvraid - ok
16:22:10.0822 0x17b4 nvstor - ok
16:22:10.0827 0x17b4 [ 3A7B0570D896602E37EAF80EC3D1615A, 1F5A71432F96731115ADA2A50E605923666188D08F9FD748424AB6588D0E1482 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:22:10.0828 0x17b4 NvStreamKms - ok
16:22:10.0831 0x17b4 NvStreamSvc - ok
16:22:10.0854 0x17b4 [ DFCCA437717EACA8418F47992A41B39A, E587A629B894EE6A16AC414747D492FFC6B6E9F051B40F7D25F0D4406E2FF919 ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
16:22:10.0876 0x17b4 nvsvc - ok
16:22:10.0882 0x17b4 [ DBFE7B2DF103F74AE51840B3C5F25FE9, 436CAA417FD24BA870F117FA4BABA2AB694825795508BCFCC8C927CC2D5BBC5E ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
16:22:10.0883 0x17b4 nvvad_WaveExtensible - ok
16:22:10.0886 0x17b4 nv_agp - ok
16:22:10.0890 0x17b4 OneSyncSvc - ok
16:22:10.0978 0x17b4 [ 29B093BA6759118DB14AF41026385E03, 660176D122344A79E52FFD9FE3D32D1967D9B22BC4AD76549D839B09693D0713 ] Origin Client Service D:\Spiele\Origin\OriginClientService.exe
16:22:11.0011 0x17b4 Origin Client Service - ok
16:22:11.0019 0x17b4 [ 60F5579B6B33F509C52200207F79B795, 1AB99528EF65799CBA7BCF43A654698ABE37A6DB8EB9BE2AC6ED7758AF795327 ] owahm C:\WINDOWS\system32\drivers\ggpcixbf.sys
16:22:11.0021 0x17b4 owahm - ok
16:22:11.0024 0x17b4 p2pimsvc - ok
16:22:11.0029 0x17b4 p2psvc - ok
16:22:11.0032 0x17b4 Parport - ok
16:22:11.0036 0x17b4 partmgr - ok
16:22:11.0040 0x17b4 PcaSvc - ok
16:22:11.0043 0x17b4 pci - ok
16:22:11.0048 0x17b4 pciide - ok
16:22:11.0052 0x17b4 pcmcia - ok
16:22:11.0055 0x17b4 pcw - ok
16:22:11.0059 0x17b4 pdc - ok
16:22:11.0062 0x17b4 PEAUTH - ok
16:22:11.0066 0x17b4 percsas2i - ok
16:22:11.0070 0x17b4 percsas3i - ok
16:22:11.0101 0x17b4 PerfHost - ok
16:22:11.0110 0x17b4 PimIndexMaintenanceSvc - ok
16:22:11.0116 0x17b4 pla - ok
16:22:11.0119 0x17b4 PlugPlay - ok
16:22:11.0122 0x17b4 PNRPAutoReg - ok
16:22:11.0126 0x17b4 PNRPsvc - ok
16:22:11.0130 0x17b4 PolicyAgent - ok
16:22:11.0135 0x17b4 Power - ok
16:22:11.0139 0x17b4 PptpMiniport - ok
16:22:11.0220 0x17b4 [ 12E2582F69ACA40A6BAE91DA578CBF34, 648C6394763906AA4163976DA2C3308F8B706486D9D8F16258CB1D61C2929930 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:22:11.0282 0x17b4 PrintNotify - ok
16:22:11.0294 0x17b4 Processor - ok
16:22:11.0299 0x17b4 ProfSvc - ok
16:22:11.0303 0x17b4 Psched - ok
16:22:11.0308 0x17b4 [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI C:\WINDOWS\system32\DRIVERS\psi_mf_amd64.sys
16:22:11.0310 0x17b4 PSI - ok
16:22:11.0315 0x17b4 QWAVE - ok
16:22:11.0318 0x17b4 QWAVEdrv - ok
16:22:11.0326 0x17b4 [ 720FEA3AAA15FE7E0BEAB10AC2E6D2B0, E1E6A79751B7CAA86F4C7F9DD2A835D5C30FBD433644F916B8E54CD8105D00D2 ] RalinkRegistryWriter C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe
16:22:11.0330 0x17b4 RalinkRegistryWriter - ok
16:22:11.0341 0x17b4 [ 178CEF55E09DC320FF6561D4EEB4F632, 0B11CE080341CAD324F6A46ABE30D71E3BD2C27EA9188A0C9574ED757706E8A7 ] RalinkRegistryWriter64 C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe
16:22:11.0345 0x17b4 RalinkRegistryWriter64 - ok
16:22:11.0350 0x17b4 RasAcd - ok
16:22:11.0356 0x17b4 RasAgileVpn - ok
16:22:11.0360 0x17b4 RasAuto - ok
16:22:11.0365 0x17b4 Rasl2tp - ok
16:22:11.0368 0x17b4 RasMan - ok
16:22:11.0372 0x17b4 RasPppoe - ok
16:22:11.0377 0x17b4 RasSstp - ok
16:22:11.0381 0x17b4 rdbss - ok
16:22:11.0387 0x17b4 rdpbus - ok
16:22:11.0391 0x17b4 RDPDR - ok
16:22:11.0399 0x17b4 RdpVideoMiniport - ok
16:22:11.0402 0x17b4 rdyboost - ok
16:22:11.0406 0x17b4 ReFSv1 - ok
16:22:11.0411 0x17b4 RemoteAccess - ok
16:22:11.0418 0x17b4 RemoteRegistry - ok
16:22:11.0424 0x17b4 RetailDemo - ok
16:22:11.0444 0x17b4 RpcEptMapper - ok
16:22:11.0454 0x17b4 RpcLocator - ok
16:22:11.0460 0x17b4 RpcSs - ok
16:22:11.0465 0x17b4 rspndr - ok
16:22:11.0469 0x17b4 rt640x64 - ok
16:22:11.0474 0x17b4 s3cap - ok
16:22:11.0479 0x17b4 SamSs - ok
16:22:11.0498 0x17b4 [ B7A4102FCA57F022CF69E3E1EAD61421, 75B70A96925E855E07AE3A364D9CA7A433A7FEB4185891F4124BA64D490C24F3 ] SamsungUPDUtilSvc C:\Windows\SysWOW64\SecUPDUtilSvc.exe
16:22:11.0506 0x17b4 SamsungUPDUtilSvc - ok
16:22:11.0511 0x17b4 sbp2port - ok
16:22:11.0526 0x17b4 SCardSvr - ok
16:22:11.0533 0x17b4 ScDeviceEnum - ok
16:22:11.0538 0x17b4 scfilter - ok
16:22:11.0543 0x17b4 Schedule - ok
16:22:11.0550 0x17b4 SCPolicySvc - ok
16:22:11.0558 0x17b4 sdbus - ok
16:22:11.0562 0x17b4 SDRSVC - ok
16:22:11.0567 0x17b4 sdstor - ok
16:22:11.0573 0x17b4 seclogon - ok
16:22:11.0610 0x17b4 [ 05E383849FA1FBBBC160612B0080618C, 43A33CC6BD24635EE849E89DB4391AB36292DDC0AC407E1B480B6E1DF7FC3BC5 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
16:22:11.0630 0x17b4 Secunia PSI Agent - ok
16:22:11.0649 0x17b4 [ F8173F1454F21C451439CB47EF75830A, CF87917CD061686CD956884D4ED73AA8C0B04B0B7B5BA36BAA4CC4A03C8C0263 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
16:22:11.0660 0x17b4 Secunia Update Agent - ok
16:22:11.0664 0x17b4 SENS - ok
16:22:11.0668 0x17b4 SensorDataService - ok
16:22:11.0672 0x17b4 SensorService - ok
16:22:11.0676 0x17b4 SensrSvc - ok
16:22:11.0681 0x17b4 SerCx - ok
16:22:11.0685 0x17b4 SerCx2 - ok
16:22:11.0691 0x17b4 Serenum - ok
16:22:11.0695 0x17b4 Serial - ok
16:22:11.0699 0x17b4 sermouse - ok
16:22:11.0707 0x17b4 SessionEnv - ok
16:22:11.0715 0x17b4 sfloppy - ok
16:22:11.0721 0x17b4 SharedAccess - ok
16:22:11.0724 0x17b4 ShellHWDetection - ok
16:22:11.0727 0x17b4 SiSRaid2 - ok
16:22:11.0732 0x17b4 SiSRaid4 - ok
16:22:11.0742 0x17b4 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:22:11.0747 0x17b4 SkypeUpdate - ok
16:22:11.0752 0x17b4 smphost - ok
16:22:11.0755 0x17b4 SmsRouter - ok
16:22:11.0764 0x17b4 SNMPTRAP - ok
16:22:11.0771 0x17b4 [ 21FF393512F51F5A98620C794B4488A3, 8A35923D3D6993FC014D86F0F7BD5C106586824DB8D26C04DC2AD0B8ED13ED20 ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
16:22:11.0774 0x17b4 Sony PC Companion - ok
16:22:11.0777 0x17b4 spaceport - ok
16:22:11.0781 0x17b4 SpbCx - ok
16:22:11.0785 0x17b4 Spooler - ok
16:22:11.0790 0x17b4 sppsvc - ok
16:22:11.0794 0x17b4 srv - ok
16:22:11.0797 0x17b4 srv2 - ok
16:22:11.0801 0x17b4 srvnet - ok
16:22:11.0804 0x17b4 SSDPSRV - ok
16:22:11.0809 0x17b4 SstpSvc - ok
16:22:11.0812 0x17b4 StateRepository - ok
16:22:11.0833 0x17b4 [ 2A6EDC2FBB4B9C11BB21BE3881C7A692, 74482CA4EC2B98C069A32C224BA5449AE10A8B41BFC053A4C23B6F65113A97A4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:22:11.0847 0x17b4 Steam Client Service - ok
16:22:11.0861 0x17b4 [ C64C157B167FE562E8670984E72C25FA, 9302C82A75CA65515297B72F3A6230307AAE0B14FD8C9C7FA343F7B62E5ED376 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:22:11.0868 0x17b4 Stereo Service - ok
16:22:11.0872 0x17b4 stexstor - ok
16:22:11.0877 0x17b4 [ 7C4D2F167FA6153B4FE7145FE6D3DF15, F39ED9CDF323DDC57D0F64F9CC121E911EA53819A3A941A2F6EA557C35FCB372 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
16:22:11.0878 0x17b4 StillCam - ok
16:22:11.0881 0x17b4 stisvc - ok
16:22:11.0889 0x17b4 storahci - ok
16:22:11.0892 0x17b4 storflt - ok
16:22:11.0898 0x17b4 stornvme - ok
16:22:11.0901 0x17b4 storqosflt - ok
16:22:11.0905 0x17b4 StorSvc - ok
16:22:11.0908 0x17b4 storufs - ok
16:22:11.0912 0x17b4 storvsc - ok
16:22:11.0916 0x17b4 svsvc - ok
16:22:11.0936 0x17b4 swenum - ok
16:22:11.0939 0x17b4 swprv - ok
16:22:11.0943 0x17b4 Synth3dVsc - ok
16:22:11.0947 0x17b4 SysMain - ok
16:22:11.0950 0x17b4 SystemEventsBroker - ok
16:22:11.0953 0x17b4 TabletInputService - ok
16:22:11.0958 0x17b4 [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901 C:\WINDOWS\System32\drivers\tap0901.sys
16:22:11.0960 0x17b4 tap0901 - ok
16:22:11.0964 0x17b4 [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t C:\WINDOWS\System32\drivers\tap0901t.sys
16:22:11.0966 0x17b4 tap0901t - ok
16:22:11.0970 0x17b4 [ 3A7CABF7DE8F1325BE8F46685469AEC3, 03B2FDEA5E10B9584EFC4ED22D6C2529322FBEF0DFEC60FE12FCE5C4A2E42F9C ] taphss6 C:\WINDOWS\system32\DRIVERS\taphss6.sys
16:22:11.0972 0x17b4 taphss6 - ok
16:22:11.0975 0x17b4 TapiSrv - ok
16:22:11.0978 0x17b4 Tcpip - ok
16:22:11.0981 0x17b4 Tcpip6 - ok
16:22:11.0987 0x17b4 tcpipreg - ok
16:22:11.0992 0x17b4 tdx - ok
16:22:11.0996 0x17b4 terminpt - ok
16:22:12.0000 0x17b4 TermService - ok
16:22:12.0003 0x17b4 Themes - ok
16:22:12.0006 0x17b4 tiledatamodelsvc - ok
16:22:12.0011 0x17b4 TimeBroker - ok
16:22:12.0015 0x17b4 TPM - ok
16:22:12.0019 0x17b4 TrkWks - ok
16:22:12.0022 0x17b4 TrustedInstaller - ok
16:22:12.0027 0x17b4 TsUsbFlt - ok
16:22:12.0031 0x17b4 TsUsbGD - ok
16:22:12.0034 0x17b4 tunnel - ok
16:22:12.0053 0x17b4 [ 57D1025FD44FA47BAE92EDF4D7645BD5, 20577723BA72927A38C851BE6EC3861E4C311C159FDDA773FF6F18063B899676 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
16:22:12.0065 0x17b4 TunngleService - ok
16:22:12.0069 0x17b4 uagp35 - ok
16:22:12.0072 0x17b4 UASPStor - ok
16:22:12.0076 0x17b4 UcmCx0101 - ok
16:22:12.0079 0x17b4 UcmUcsi - ok
16:22:12.0083 0x17b4 Ucx01000 - ok
16:22:12.0086 0x17b4 UdeCx - ok
16:22:12.0089 0x17b4 udfs - ok
16:22:12.0093 0x17b4 UEFI - ok
16:22:12.0097 0x17b4 Ufx01000 - ok
16:22:12.0101 0x17b4 UfxChipidea - ok
16:22:12.0104 0x17b4 ufxsynopsys - ok
16:22:12.0111 0x17b4 UI0Detect - ok
16:22:12.0115 0x17b4 uliagpkx - ok
16:22:12.0119 0x17b4 umbus - ok
16:22:12.0122 0x17b4 UmPass - ok
16:22:12.0126 0x17b4 UmRdpService - ok
16:22:12.0129 0x17b4 UnistoreSvc - ok
16:22:12.0134 0x17b4 upnphost - ok
16:22:12.0138 0x17b4 UrsChipidea - ok
16:22:12.0141 0x17b4 UrsCx01000 - ok
16:22:12.0145 0x17b4 UrsSynopsys - ok
16:22:12.0150 0x17b4 usbccgp - ok
16:22:12.0153 0x17b4 usbcir - ok
16:22:12.0157 0x17b4 usbehci - ok
16:22:12.0161 0x17b4 [ 2C780746DC44A28FE67004DC58173F05, 9E0596CE35C7430A31A7E77B4D12A1F521B9ED8EB0614E6FB38403AC614C3EE3 ] usbfilter C:\WINDOWS\system32\DRIVERS\usbfilter.sys
16:22:12.0163 0x17b4 usbfilter - ok
16:22:12.0166 0x17b4 usbhub - ok
16:22:12.0170 0x17b4 USBHUB3 - ok
16:22:12.0173 0x17b4 usbohci - ok
16:22:12.0176 0x17b4 usbprint - ok
16:22:12.0180 0x17b4 usbser - ok
16:22:12.0183 0x17b4 USBSTOR - ok
16:22:12.0187 0x17b4 usbuhci - ok
16:22:12.0192 0x17b4 USBXHCI - ok
16:22:12.0196 0x17b4 UserDataSvc - ok
16:22:12.0201 0x17b4 UserManager - ok
16:22:12.0205 0x17b4 UsoSvc - ok
16:22:12.0209 0x17b4 VaultSvc - ok
16:22:12.0215 0x17b4 [ 8CD776EB77695524CCE594AAC3A71569, AEF6F9B0E5F67E87819EB0E9FA5220EEF247A160A2BF8511CEDC8D12A9D4D941 ] VBoxNetAdp C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
16:22:12.0218 0x17b4 VBoxNetAdp - ok
16:22:12.0223 0x17b4 [ 3C8E2C591345F38149C69FE8E5DF8C90, 9F4BB9BDA09CB2E99A6A888B288F322AE5C460B5D124CD714C6F00FF5029144B ] VClone C:\WINDOWS\System32\drivers\VClone.sys
16:22:12.0225 0x17b4 VClone - ok
16:22:12.0228 0x17b4 vdrvroot - ok
16:22:12.0231 0x17b4 vds - ok
16:22:12.0234 0x17b4 VerifierExt - ok
16:22:12.0239 0x17b4 vhdmp - ok
16:22:12.0243 0x17b4 vhf - ok
16:22:12.0247 0x17b4 vmbus - ok
16:22:12.0251 0x17b4 VMBusHID - ok
16:22:12.0255 0x17b4 vmicguestinterface - ok
16:22:12.0258 0x17b4 vmicheartbeat - ok
16:22:12.0261 0x17b4 vmickvpexchange - ok
16:22:12.0265 0x17b4 vmicrdv - ok
16:22:12.0268 0x17b4 vmicshutdown - ok
16:22:12.0272 0x17b4 vmictimesync - ok
16:22:12.0276 0x17b4 vmicvmsession - ok
16:22:12.0279 0x17b4 vmicvss - ok
16:22:12.0283 0x17b4 volmgr - ok
16:22:12.0287 0x17b4 volmgrx - ok
16:22:12.0290 0x17b4 volsnap - ok
16:22:12.0294 0x17b4 vpci - ok
16:22:12.0297 0x17b4 vsmraid - ok
16:22:12.0302 0x17b4 VSS - ok
16:22:12.0305 0x17b4 VSTXRAID - ok
16:22:12.0309 0x17b4 vwifibus - ok
16:22:12.0313 0x17b4 vwififlt - ok
16:22:12.0317 0x17b4 vwifimp - ok
16:22:12.0320 0x17b4 W32Time - ok
16:22:12.0324 0x17b4 w3logsvc - ok
16:22:12.0327 0x17b4 W3SVC - ok
16:22:12.0331 0x17b4 WacomPen - ok
16:22:12.0335 0x17b4 WalletService - ok
16:22:12.0338 0x17b4 wanarp - ok
16:22:12.0342 0x17b4 wanarpv6 - ok
16:22:12.0345 0x17b4 WAS - ok
16:22:12.0350 0x17b4 wbengine - ok
16:22:12.0353 0x17b4 WbioSrvc - ok
16:22:12.0357 0x17b4 Wcmsvc - ok
16:22:12.0360 0x17b4 wcncsvc - ok
16:22:12.0365 0x17b4 WcsPlugInService - ok
16:22:12.0369 0x17b4 WdBoot - ok
16:22:12.0373 0x17b4 Wdf01000 - ok
16:22:12.0376 0x17b4 WdFilter - ok
16:22:12.0380 0x17b4 WdiServiceHost - ok
16:22:12.0383 0x17b4 WdiSystemHost - ok
16:22:12.0387 0x17b4 wdiwifi - ok
16:22:12.0391 0x17b4 WdNisDrv - ok
16:22:12.0394 0x17b4 WdNisSvc - ok
16:22:12.0398 0x17b4 WebClient - ok
16:22:12.0402 0x17b4 Wecsvc - ok
16:22:12.0405 0x17b4 WEPHOSTSVC - ok
16:22:12.0409 0x17b4 wercplsupport - ok
16:22:12.0413 0x17b4 WerSvc - ok
16:22:12.0416 0x17b4 wfpcapture - ok
16:22:12.0420 0x17b4 WFPLWFS - ok
16:22:12.0423 0x17b4 WiaRpc - ok
16:22:12.0430 0x17b4 WIMMount - ok
16:22:12.0432 0x17b4 WinDefend - ok
16:22:12.0440 0x17b4 WindowsTrustedRT - ok
16:22:12.0444 0x17b4 WindowsTrustedRTProxy - ok
16:22:12.0447 0x17b4 WinHttpAutoProxySvc - ok
16:22:12.0451 0x17b4 WinMad - ok
16:22:12.0457 0x17b4 Winmgmt - ok
16:22:12.0460 0x17b4 WinRM - ok
16:22:12.0467 0x17b4 WINUSB - ok
16:22:12.0471 0x17b4 WinVerbs - ok
16:22:12.0474 0x17b4 WlanSvc - ok
16:22:12.0478 0x17b4 wlidsvc - ok
16:22:12.0481 0x17b4 WmiAcpi - ok
16:22:12.0486 0x17b4 wmiApSrv - ok
16:22:12.0489 0x17b4 WMPNetworkSvc - ok
16:22:12.0493 0x17b4 Wof - ok
16:22:12.0499 0x17b4 workfolderssvc - ok
16:22:12.0503 0x17b4 wpcfltr - ok
16:22:12.0508 0x17b4 WPDBusEnum - ok
16:22:12.0511 0x17b4 WpdUpFltr - ok
16:22:12.0516 0x17b4 WpnService - ok
16:22:12.0519 0x17b4 ws2ifsl - ok
16:22:12.0523 0x17b4 wscsvc - ok
16:22:12.0526 0x17b4 WSearch - ok
16:22:12.0531 0x17b4 WSService - ok
16:22:12.0535 0x17b4 wuauserv - ok
16:22:12.0539 0x17b4 WudfPf - ok
16:22:12.0543 0x17b4 WUDFRd - ok
16:22:12.0546 0x17b4 wudfsvc - ok
16:22:12.0550 0x17b4 WwanSvc - ok
16:22:12.0555 0x17b4 XblAuthManager - ok
16:22:12.0558 0x17b4 XblGameSave - ok
16:22:12.0562 0x17b4 xboxgip - ok
16:22:12.0566 0x17b4 XboxNetApiSvc - ok
16:22:12.0569 0x17b4 xinputhid - ok
16:22:12.0571 0x17b4 ================ Scan global ===============================
16:22:12.0582 0x17b4 [ Global ] - ok
16:22:12.0582 0x17b4 ================ Scan MBR ==================================
16:22:12.0584 0x17b4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:22:12.0666 0x17b4 \Device\Harddisk0\DR0 - ok
16:22:12.0677 0x17b4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
16:22:12.0689 0x17b4 \Device\Harddisk1\DR1 - ok
16:22:12.0690 0x17b4 ================ Scan VBR ==================================
16:22:12.0693 0x17b4 [ B137EA7CDA7CEA43F9889BEB0C129048 ] \Device\Harddisk0\DR0\Partition1
16:22:12.0695 0x17b4 \Device\Harddisk0\DR0\Partition1 - ok
16:22:12.0697 0x17b4 [ 42E846FE50911FA991BE6513EB7B0677 ] \Device\Harddisk0\DR0\Partition2
16:22:12.0698 0x17b4 \Device\Harddisk0\DR0\Partition2 - ok
16:22:12.0701 0x17b4 [ DDC71AC668D786C5DE83C16A232B042C ] \Device\Harddisk1\DR1\Partition1
16:22:12.0743 0x17b4 \Device\Harddisk1\DR1\Partition1 - ok
16:22:12.0744 0x17b4 ================ Scan generic autorun ======================
16:22:13.0002 0x17b4 [ D0E9E2E198C8BA95297EF8C9D04865F1, 1889A66AEEEE1E9D80FB99E23AFBB23AF37044BAA8AE00070667D3B2E32AB804 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:22:13.0212 0x17b4 RTHDVCPL - ok
16:22:13.0230 0x17b4 ShadowPlay - ok
16:22:13.0289 0x17b4 [ 046DDF9B31BEC14D03CCC97DD728A4D1, D29F49F870B27553E13F9C1486D9B27A27C41FBEC7ACEC77EDFD5552C941E710 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
16:22:13.0329 0x17b4 NvBackend - ok
16:22:13.0348 0x17b4 [ 63E0C11E1CEBA6CC05443E98041BB1E0, 3C52E5F7191519A0DF545DFA42B140F55426D01E0CEF6212CEE263E0D7BFD9EC ] C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE
16:22:13.0357 0x17b4 RoccatKoneXTD - ok
16:22:13.0361 0x17b4 [ 17D9440D55500418C8FDB8EF1390C5AD, C4C57AE427FB89EFDFC1D111C300BB588E475BE90DD57084C03399557641F948 ] C:\Windows\RaidTool\xInsIDE.exe
16:22:13.0362 0x17b4 JMB36X IDE Setup - ok
16:22:13.0367 0x17b4 [ 087A06DB98D0E84C0DE90EE308707E63, 96E8CDC492115A93B1B244196947E45D3C30CF64F538EAB634E0B02BEFBF1607 ] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
16:22:13.0369 0x17b4 NUSB3MON - ok
16:22:13.0384 0x17b4 [ D0B1DA5382433AFBF52DE8815298EB0C, A326D01783359CCA1054210D82F17533638A9769A7A08C2BD0621DE016909359 ] C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE
16:22:13.0392 0x17b4 RoccatIsku - ok
16:22:13.0398 0x17b4 [ EBC0E8C0A4DDA2C32A7D5863462A321A, 2F410138DB66D0219254339F1F098E401CEDAA032596F1F67BC54F394256FC68 ] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
16:22:13.0399 0x17b4 amd_dc_opt - ok
16:22:13.0403 0x17b4 [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
16:22:13.0405 0x17b4 HP Software Update - ok
16:22:13.0416 0x17b4 [ 9DECF401AE4CB834D89957BDBF484068, 084056EAA068F88B6168566F14D315F2AD35F2202B18CFC5F88A466C154210A3 ] C:\Program Files\AVAST Software\Avast\setup\emupdate\5b9c12bd-ec1a-4df2-8712-ac5ed4039682.exe
16:22:13.0419 0x17b4 20150107 - ok
16:22:13.0448 0x17b4 OneDriveSetup - ok
16:22:13.0449 0x17b4 OneDriveSetup - ok
16:22:13.0462 0x17b4 [ 8F97EDDF827C64AB2C42971095BF2F76, 5A42AA8E3A5E5BA6E93F1CD5B3229022D881B6180976E48A219A7C80F3EBE37D ] C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
16:22:13.0469 0x17b4 Sony PC Companion - ok
16:22:13.0591 0x17b4 [ F2B4338E54D09E15E28E170B3EB2B430, 6B7008C4D58806D8D67F0E860138A1660BAC3000CE239C34480E40379F792B6F ] D:\Spiele\Origin\Origin.exe
16:22:13.0649 0x17b4 EADM - ok
16:22:13.0849 0x17b4 [ 36C55F2645D61F15457D23B56F0149DA, 410DDEA347DD8AA58838560CC01AABD3F7D40A6879482AADD09BC4A82E26D48D ] D:\Spiele\GalaxyClient\GalaxyClient.exe
16:22:13.0959 0x17b4 GalaxyClient - ok
16:22:14.0088 0x17b4 [ 0AF9C61507E71E715B94C3AC228B34DD, 2426D70F95E1AA4A30E4549B90C15BB1FCA58231376BA311C8B3578BCA4FC3C5 ] D:\Dateien\Echobit\Evolve\EvolveClient.exe
16:22:14.0139 0x17b4 EvolveClient - ok
16:22:14.0159 0x17b4 [ C2D2FFD27F46815951C9562F0A2EC864, 892A5DC5C3D797E3FD36230710BA9AF43ADA5CDFD19A03268D20D5A9DA3CCB3A ] C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:22:14.0165 0x17b4 OneDrive - ok
16:22:14.0168 0x17b4 Skype - ok
16:22:14.0350 0x17b4 [ FB5B78A3DE88FD3B725DA574497BC225, 0096C3ED0E29153E6A9E84C121B79A170FEDFE521AEA1BC602BC536E1795E5F3 ] C:\Program Files\CCleaner\CCleaner64.exe
16:22:14.0478 0x17b4 CCleaner Monitoring - ok
16:22:14.0494 0x17b4 Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64 - ok
16:22:14.0499 0x17b4 Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64 - ok
16:22:14.0505 0x17b4 Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64 - ok
16:22:14.0507 0x17b4 OneDriveSetup - ok
16:22:14.0511 0x17b4 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x60100 ( disabled : updated )
16:22:14.0512 0x17b4 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.2.2218.942 ), 0x41000 ( enabled : updated )
16:22:14.0514 0x17b4 Win FW state via NFP2: enabled ( trusted )
16:22:16.0854 0x17b4 ============================================================
16:22:16.0854 0x17b4 Scan finished
16:22:16.0855 0x17b4 ============================================================
16:22:16.0880 0x221c Detected object count: 0
16:22:16.0880 0x221c Actual detected object count: 0
16:22:36.0008 0x0328 Deinitialize success
|
|
21.09.2015, 17:51
| #10 |
| /// Malwareteam | Malware Befall? Schritt 1 Downloade Dir bitte  Malwarebytes Anti-Malware
Schritt 2 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 3 Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte poste in deiner nächsten Antwort also:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
21.09.2015, 19:00
| #11 |
| | Malware Befall? Hier sind alle 3 Logs: mbam Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 21.09.2015 Suchlaufzeit: 19:46 Protokolldatei: mbam.txt Administrator: Ja Version: 2.1.8.1057 Malware-Datenbank: v2015.09.21.05 Rootkit-Datenbank: v2015.09.18.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: dieFackel Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 430545 Abgelaufene Zeit: 4 Min., 34 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter # AdwCleaner v5.008 - Bericht erstellt am 21/09/2015 um 19:55:52
# Aktualisiert am 18/09/2015 von Xplode
# Datenbank : 2015-09-20.1 [Server]
# Betriebssystem : Windows 10 Home (x64)
# Benutzername : dieFackel - SOL-PC
# Gestartet von : C:\Users\dieFackel\Desktop\AdwCleaner_5.008.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner Gelöscht : C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\YSearchUtil
***** [ Dateien ] *****
[-] Datei Gelöscht : C:\END
[-] Datei Gelöscht : C:\WINDOWS\Sysnative\roboot64.exe
***** [ Verknüpfungen ] *****
***** [ Geplante Tasks ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{E69D4A59-73DE-4E38-9FB3-740EC4D9060D}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\systweak
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\systweak
[!] Schlüssel Nicht Gelöscht : [x64] HKCU\Software\OCS
[!] Schlüssel Nicht Gelöscht : [x64] HKCU\Software\systweak
***** [ Internetbrowser ] *****
*************************
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Chrome Richtlinien gelöscht
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1618 Bytes] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.2 (09.14.2015:1)
OS: Windows 10 Home x64
Ran by dieFackel on 21.09.2015 at 19:24:48,84
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
~~~ Registry Values
~~~ Registry Keys
~~~ Files
Successfully deleted: [File] C:\WINDOWS\SysWOW64\REN21DD.tmp
~~~ Folders
Successfully deleted: [Folder] C:\ProgramData\apn
Successfully deleted: [Folder] C:\Users\dieFackel\Appdata\Local\ysearchutil
Successfully deleted: [Folder] C:\Users\dieFackel\AppData\Roaming\systweak
~~~ FireFox
Successfully deleted: [File] C:\Users\dieFackel\AppData\Roaming\mozilla\firefox\profiles\xdjdf4al.default-1384448785210\user.js
Successfully deleted the following from C:\Users\dieFackel\AppData\Roaming\mozilla\firefox\profiles\xdjdf4al.default-1384448785210\prefs.js
user_pref(extensions.unitedinternet.email.runonceNewUsersShown, true);
Emptied folder: C:\Users\dieFackel\AppData\Roaming\mozilla\firefox\profiles\xdjdf4al.default-1384448785210\minidumps [168 files]
~~~ Chrome
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\npdicihegicnhaangkdmcgbjceoemeoo
[C:\Users\dieFackel\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
[C:\Users\dieFackel\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
[C:\Users\dieFackel\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
[C:\Users\dieFackel\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
npdicihegicnhaangkdmcgbjceoemeoo
]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 21.09.2015 at 19:52:24,87
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
22.09.2015, 10:17
| #12 |
| /// Malwareteam | Malware Befall? Schritt 1 ESET Online Scanner
Schritt 2 Downloade Dir bitte  SecurityCheck und:
Schritt 3 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Scan Bitte poste in deiner nächsten Antwort also:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
22.09.2015, 21:37
| #13 |
| | Malware Befall? ESET Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=996933657e44f143a78691769cb8acd2
# end=init
# utc_time=2015-09-22 05:43:13
# local_time=2015-09-22 07:43:13 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 25886
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=996933657e44f143a78691769cb8acd2
# end=updated
# utc_time=2015-09-22 05:57:22
# local_time=2015-09-22 07:57:22 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=996933657e44f143a78691769cb8acd2
# engine=25886
# end=stopped
# remove_checked=false
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-09-22 06:01:36
# local_time=2015-09-22 08:01:36 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='avast! Internet Security'
# compatibility_mode=779 16777213 85 72 86670 207365386 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 3997622 6418908 0 0
# scanned=11638
# found=1
# cleaned=0
# scan_time=253
sh=E2E7555ACD0F7F6827A0958817774C8E4253DC21 ft=1 fh=117f72a1057668b7 vn="Variante von Win64/Systweak.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\WINDOWS\Sysnative\roboot64.exe.vir"
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=996933657e44f143a78691769cb8acd2
# end=init
# utc_time=2015-09-22 06:03:22
# local_time=2015-09-22 08:03:22 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
esets_scanner_update returned -1 esets_gle=53251
Update Finalize
Updated modules version: 25886
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=996933657e44f143a78691769cb8acd2
# end=updated
# utc_time=2015-09-22 06:03:43
# local_time=2015-09-22 08:03:43 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=996933657e44f143a78691769cb8acd2
# engine=25886
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-09-22 08:18:12
# local_time=2015-09-22 10:18:12 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='avast! Internet Security'
# compatibility_mode=779 16777213 85 72 94866 207373582 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 4005818 6427104 0 0
# scanned=400484
# found=7
# cleaned=0
# scan_time=8068
sh=E2E7555ACD0F7F6827A0958817774C8E4253DC21 ft=1 fh=117f72a1057668b7 vn="Variante von Win64/Systweak.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\WINDOWS\Sysnative\roboot64.exe.vir"
sh=62BFF91A7E351CB1A21EF92320815874B2D2DFA8 ft=1 fh=fc2555afc5bde153 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\dieFackel\AppData\Local\Temp\DMR\dmr_72.exe"
sh=421792EDD972FB462D93583199B1F6AD2B3112BC ft=1 fh=7ee4243048f143d1 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\dieFackel\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279 - CHIP-Installer.exe"
sh=7669F3D56E0CD22381C7EACE00B9D3B1DD41BF07 ft=1 fh=fc296988becdd3eb vn="Win32/Somoto.Q evtl. unerwünschte Anwendung" ac=I fn="C:\Users\dieFackel\Downloads\Core-Temp-installer.exe"
sh=122266E2AAFE4A2BCC61B19B893FA56D899A556A ft=1 fh=8a8902424563b20f vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\dieFackel\Downloads\LogMeIn Hamachi - CHIP-Installer.exe"
sh=CF3B72A1C6BF0A3327B4A519F017CDBDBF4B1A9D ft=1 fh=8021f457eaa3edfa vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\dieFackel\Downloads\MemTest - CHIP-Installer.exe"
sh=7240E7CC914E468D926040896195AAD97B54E512 ft=1 fh=57dbf025aafc7e25 vn="Variante von Win32/AdkDLLWrapper.A evtl. unerwünschte Anwendung" ac=I fn="D:\Dateien\uTorrent\uTorrent.exe"
Code:
ATTFilter Results of screen317's Security Check version 1.008
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Defender
avast! Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Secunia PSI (3.0.0.7011)
Java 8 Update 60
Adobe Flash Player 19.0.0.185
Mozilla Firefox (40.0.3)
Google Chrome (45.0.2454.85)
Google Chrome (45.0.2454.93)
````````Process Check: objlist.exe by Laurent````````
AVAST Software Avast AvastSvc.exe
AVAST Software Avast avastui.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015
durchgeführt von dieFackel (Administrator) auf SOL-PC (22-09-2015 22:35:29)
Gestartet von C:\Users\dieFackel\Desktop
Geladene Profile: dieFackel (Verfügbare Profile: dieFackel & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Windows\SysWOW64\XSrvSetup.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(LogMeIn Inc.) D:\Dateien\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) D:\Dateien\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Bitsum LLC) D:\Dateien\ParkControl\ParkControl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Valve Corporation) D:\Spiele\Steam\Steam.exe
(Valve Corporation) D:\Spiele\Steam\bin\steamwebhelper.exe
(Valve Corporation) D:\Spiele\Steam\bin\steamwebhelper.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_185.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_185.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-01] (NVIDIA Corporation)
HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [558944 2012-11-30] (ROCCAT GmbH)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-19] ()
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-11-20] (NEC Electronics Corporation)
HKLM-x32\...\Run: [RoccatIsku] => C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE [536576 2013-10-30] (ROCCAT GmbH)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-07-02] (Avast Software s.r.o.)
HKLM-x32\...\Run: [VirtualCloneDrive] => D:\Dateien\Programme\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Dateien\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [456576 2015-06-10] (Sony)
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [EADM] => D:\Spiele\Origin\Origin.exe [3632112 2015-07-25] (Electronic Arts)
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [GalaxyClient] => D:\Spiele\GalaxyClient\GalaxyClient.exe [7247416 2015-07-20] (GOG.com)
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [EvolveClient] => D:\Dateien\Echobit\Evolve\EvolveClient.exe [3334016 2015-08-05] (Echobit LLC)
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53735968 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd)
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\RunOnce: [Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\RunOnce: [Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\RunOnce: [Uninstall C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\dieFackel\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-02] (Avast Software s.r.o.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2013-08-18]
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Sitecom Wireless Utility.lnk [2013-08-18]
ShortcutTarget: Sitecom Wireless Utility.lnk -> C:\Program Files (x86)\Sitecom\Common\WLANUtil.exe (Sitecom Europe BV.)
Startup: C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6700.lnk [2013-09-01]
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6700.lnk -> C:\Program Files\HP\HP Officejet 6700\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\..\Interfaces\{1e498d26-a69f-40b8-be95-ebbee9ff9f23}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2542595381-3183390579-2223026719-1000 -> DefaultScope {888255F5-E5F4-4626-9D68-92C58086424C} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-29] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-02] (Avast Software s.r.o.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-29] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-29] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-02] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-29] (Oracle Corporation)
Toolbar: HKLM - Kein Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Keine Datei
DPF: HKLM-x32 {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} hxxp://download.gigabyte.com.tw/object/Dldrv.ocx
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210
FF Homepage: Twitter.com
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1)%20%7B%20return%20'PROXY%20nq-us09.personalitycores.com%3A8000%3B%20PROXY%20nq-us08.personalitycores.com%3A8000%3B%20PROXY%20nq-us07.personalitycores.com%3A8000%3B%20PROXY%20nq-us04.personalitycores.com%3A8000%3B%20PROXY%20nq-us05.personalitycores.com%3A8000%3B%20PROXY%20nq-us06.personalitycores.com%3A8000%3B%20PROXY%20nq-us12.personalitycores.com%3A8000%3B%20PROXY%20nq-us11.personalitycores.com%3A8000%3B%20PROXY%20nq-us10.personalitycores.com%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-22] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-29] (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-23] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-22] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-29] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-05-12] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-05-12] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2542595381-3183390579-2223026719-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-06-04] ()
FF SearchPlugin: C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\searchplugins\divinity-wiki-en.xml [2015-05-14]
FF SearchPlugin: C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\searchplugins\youtube-videosuche.xml [2015-06-01]
FF Extension: FT DeepDark - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-08-25]
FF Extension: WOT - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-10]
FF Extension: Ghostery - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\firefox@ghostery.com.xpi [2013-11-14]
FF Extension: Reddit Enhancement Suite - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\jid1-xUfzOsOFlzSOXg@jetpack.xpi [2015-04-01]
FF Extension: New Tab Wallpapers - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\{a5312b79-bf0d-4825-a25f-b33d67d4a58a}.xpi [2013-11-14]
FF Extension: Adblock Plus - C:\Users\dieFackel\AppData\Roaming\Mozilla\Firefox\Profiles\xdjdf4al.default-1384448785210\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-11-14]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-08-19]
Chrome:
=======
CHR Profile: C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Avast Online Security) - C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-06-25]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-26]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\dieFackel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-02]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-07-02] (Avast Software s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1128448 2015-07-28] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2014-11-01] (BitRaider, LLC)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
S3 GalaxyClientService; D:\Spiele\GalaxyClient\GalaxyClientService.exe [1718840 2015-07-20] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6871608 2015-07-20] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-01] (NVIDIA Corporation)
R2 Hamachi2Svc; D:\Dateien\LogMeIn Hamachi\hamachi-2.exe [2545512 2015-08-03] (LogMeIn Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [72304 2010-01-19] ()
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-06] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-01] (NVIDIA Corporation)
S3 Origin Client Service; D:\Spiele\Origin\OriginClientService.exe [2007048 2015-07-25] (Electronic Arts)
R2 RalinkRegistryWriter; C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe [185632 2009-12-15] (Ralink Technology, Corp.)
R2 RalinkRegistryWriter64; C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe [212256 2009-12-15] (Ralink Technology, Corp.)
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [118576 2014-11-26] ()
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [757144 2013-08-16] (Tunngle.net GmbH) [Datei ist nicht signiert]
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-06] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-06] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21544 2010-04-27] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-07-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-07-02] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-02] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-07-02] ()
S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-07-02] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-07-02] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-07-02] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-07-02] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2015-02-09] ()
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2014-11-01] (BitRaider)
S3 dc1-controller; C:\Windows\System32\drivers\dc1-controller.sys [50688 2015-07-10] (Microsoft Corp.)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2013-08-19] ()
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2015-02-09] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-06] (Microsoft Corporation)
S3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-01] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-07-03] (Secunia)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 tap0901t; C:\Windows\System32\drivers\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-09-22 22:29 - 2015-09-22 22:29 - 00016148 _____ C:\WINDOWS\system32\SOL-PC_dieFackel_HistoryPrediction.bin
2015-09-22 19:42 - 2015-09-22 22:32 - 00852704 _____ C:\Users\dieFackel\Desktop\SecurityCheck.exe
2015-09-22 19:42 - 2015-09-22 19:42 - 02870984 _____ (ESET) C:\Users\dieFackel\Desktop\esetsmartinstaller_deu.exe
2015-09-21 19:55 - 2015-09-21 19:56 - 00001709 _____ C:\Users\dieFackel\Desktop\AdwCleaner[C1].txt
2015-09-21 19:52 - 2015-09-21 19:52 - 00002003 _____ C:\Users\dieFackel\Desktop\JRT.txt
2015-09-21 19:50 - 2015-09-21 19:50 - 00001199 _____ C:\Users\dieFackel\Desktop\mbam.txt
2015-09-21 19:24 - 2015-09-21 19:59 - 00000000 ____D C:\AdwCleaner
2015-09-21 19:20 - 2015-09-21 19:24 - 01798976 _____ (Malwarebytes) C:\Users\dieFackel\Desktop\JRT.exe
2015-09-21 19:20 - 2015-09-21 19:22 - 01662976 _____ C:\Users\dieFackel\Desktop\AdwCleaner_5.008.exe
2015-09-21 19:19 - 2015-09-21 19:20 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\dieFackel\Downloads\mbam-setup-2.1.8.1057(1).exe
2015-09-21 16:06 - 2015-09-21 16:19 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-09-21 16:01 - 2015-09-21 16:20 - 00000000 ____D C:\Users\dieFackel\Desktop\mbar
2015-09-21 16:00 - 2015-09-21 16:21 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\dieFackel\Desktop\tdsskiller.exe
2015-09-21 15:59 - 2015-09-21 16:01 - 16563352 _____ (Malwarebytes Corp.) C:\Users\dieFackel\Downloads\mbar-1.09.3.1001.exe
2015-09-21 15:59 - 2015-09-21 15:59 - 00001341 _____ C:\Users\dieFackel\Desktop\Revo Uninstaller.lnk
2015-09-21 15:59 - 2015-09-21 15:59 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-09-21 15:58 - 2015-09-21 15:58 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\dieFackel\Downloads\revosetup95.exe
2015-09-20 17:40 - 2015-09-20 17:40 - 00095516 _____ C:\Users\dieFackel\Desktop\Addition.txt
2015-09-20 17:39 - 2015-09-22 22:35 - 00024674 _____ C:\Users\dieFackel\Desktop\FRST.txt
2015-09-20 17:39 - 2015-09-22 22:35 - 00000000 ____D C:\FRST
2015-09-20 17:38 - 2015-09-20 17:39 - 02191360 _____ (Farbar) C:\Users\dieFackel\Desktop\FRST64.exe
2015-09-20 15:25 - 2015-09-20 15:25 - 00001336 _____ C:\Users\dieFackel\Desktop\Malwarebytes.txt
2015-09-20 14:20 - 2015-09-20 14:20 - 00347864 _____ C:\Users\dieFackel\Desktop\OTL.Txt
2015-09-20 14:20 - 2015-09-20 14:20 - 00181926 _____ C:\Users\dieFackel\Desktop\Extras.Txt
2015-09-20 13:55 - 2015-09-20 13:55 - 06667640 _____ (Piriform Ltd) C:\Users\dieFackel\Downloads\ccsetup509.exe
2015-09-20 13:55 - 2015-09-20 13:55 - 00602112 _____ (OldTimer Tools) C:\Users\dieFackel\Desktop\OTL.exe
2015-09-20 13:55 - 2015-09-20 13:55 - 00002860 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-09-20 13:55 - 2015-09-20 13:55 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-09-20 13:55 - 2015-09-20 13:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-09-20 13:55 - 2015-09-20 13:55 - 00000000 ____D C:\Program Files\CCleaner
2015-09-20 13:35 - 2015-09-21 19:53 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-20 13:34 - 2015-09-21 16:01 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-09-20 13:34 - 2015-09-20 13:34 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\dieFackel\Downloads\mbam-setup-2.1.8.1057.exe
2015-09-20 13:34 - 2015-09-20 13:34 - 00001175 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-09-20 13:34 - 2015-09-20 13:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2015-09-20 13:34 - 2015-09-20 13:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-20 13:34 - 2015-09-20 13:34 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2015-09-20 13:34 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-09-20 13:34 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-09-19 02:33 - 2015-09-19 02:33 - 00000838 _____ C:\Users\dieFackel\Desktop\CrystalDiskInfo.lnk
2015-09-19 02:33 - 2015-09-19 02:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2015-09-19 02:29 - 2015-09-19 02:29 - 03908184 _____ (Crystal Dew World ) C:\Users\dieFackel\Downloads\CrystalDiskInfo6_5_2-en.exe
2015-09-19 02:21 - 2015-09-19 02:21 - 02354034 _____ C:\Users\dieFackel\Downloads\cpu-z_1.73-en.zip
2015-09-18 19:13 - 2015-09-18 19:13 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-09-18 19:13 - 2015-09-18 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-09-18 19:13 - 2015-07-02 00:46 - 00364472 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\aswBoot.exe
2015-09-18 19:12 - 2015-09-18 19:12 - 00337536 _____ C:\WINDOWS\Minidump\091815-8671-01.dmp
2015-09-18 19:10 - 2015-09-18 19:12 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-18 19:10 - 2015-09-18 19:10 - 00339336 _____ C:\WINDOWS\Minidump\091815-10203-01.dmp
2015-09-17 23:17 - 2015-09-17 23:17 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2015-09-17 23:17 - 2015-09-17 23:17 - 00000000 ____D C:\Users\DefaultAppPool
2015-09-17 23:17 - 2015-08-20 13:18 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-17 23:17 - 2015-08-06 18:56 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2015-09-17 23:17 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-09-17 23:17 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-17 23:17 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-17 23:17 - 2015-07-10 13:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-17 14:07 - 2014-07-24 13:01 - 00028672 _____ () C:\Users\dieFackel\Desktop\memtest.exe
2015-09-17 14:05 - 2015-09-17 14:05 - 00015201 _____ C:\Users\dieFackel\Downloads\MemTest41.zip
2015-09-17 14:04 - 2015-09-17 14:04 - 01457952 _____ C:\Users\dieFackel\Downloads\MemTest - CHIP-Installer.exe
2015-09-09 23:59 - 2015-09-09 23:59 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-09-09 23:49 - 2015-09-09 23:57 - 164858324 _____ C:\Users\dieFackel\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_de.exe
2015-09-09 14:54 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-09 14:54 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-09 14:54 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-09 14:54 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 14:54 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 14:54 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-09 14:54 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 14:54 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 14:54 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 14:54 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 14:54 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 14:54 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 14:54 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 14:54 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 14:54 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 14:54 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 14:54 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 14:54 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-09 14:54 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 14:54 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 14:54 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 14:54 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 14:54 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 14:54 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-09 14:54 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 14:54 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 14:54 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 14:54 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 14:54 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 14:54 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 14:54 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 14:54 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-09 11:25 - 2015-09-09 11:25 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-09 11:25 - 2015-09-09 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-07 22:09 - 2015-09-22 19:37 - 00003096 _____ C:\WINDOWS\System32\Tasks\ParkControl
2015-09-07 22:09 - 2015-09-07 22:09 - 00650928 _____ (Bitsum LLC) C:\Users\dieFackel\Downloads\parkcontrolsetup64.exe
2015-09-07 22:09 - 2015-09-07 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParkControl
2015-09-05 14:13 - 2015-09-05 14:13 - 00025163 _____ C:\Users\dieFackel\Downloads\LB160-15D_04(1).zip
2015-09-03 02:33 - 2015-09-03 02:33 - 00000000 ____D C:\Users\dieFackel\AppData\Local\MicrosoftEdge
2015-09-02 14:11 - 2015-09-02 14:11 - 00025163 _____ C:\Users\dieFackel\Downloads\LB160-15D_04.zip
2015-08-31 18:08 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-31 18:08 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-31 18:08 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-31 18:08 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-31 18:08 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-31 18:08 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-31 18:08 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-31 18:08 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-31 18:08 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-31 18:08 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-31 18:08 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-31 18:08 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-31 18:08 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-31 18:08 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-31 18:08 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-31 18:08 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-31 18:08 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-31 18:08 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-31 18:08 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-31 18:08 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-31 18:08 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-31 18:08 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-31 18:08 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-31 18:08 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-31 18:08 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-31 18:08 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-31 18:08 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-31 18:08 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-31 18:08 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-31 18:08 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-31 18:08 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-31 18:08 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-31 18:08 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-31 18:08 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-31 18:08 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-31 18:08 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-31 18:08 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-31 18:08 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-31 18:08 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-31 18:08 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-31 18:08 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-29 15:39 - 2015-08-29 15:40 - 00000000 ____D C:\Users\dieFackel\.oracle_jre_usage
2015-08-29 15:39 - 2015-08-29 15:39 - 00000000 ____D C:\Users\dieFackel\AppData\Roaming\Sun
2015-08-28 00:16 - 2015-09-07 12:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-09-22 22:22 - 2013-08-18 23:34 - 00000000 ____D C:\Users\dieFackel\AppData\Roaming\Skype
2015-09-22 21:59 - 2013-08-28 19:37 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-22 21:52 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-22 21:36 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-22 21:36 - 2014-03-16 11:51 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-22 20:26 - 2014-01-24 20:35 - 00000000 ____D C:\Users\dieFackel\AppData\Local\Battle.net
2015-09-22 20:26 - 2014-01-24 20:35 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-09-22 19:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-22 19:37 - 2013-08-28 19:37 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-21 21:28 - 2015-08-19 23:43 - 00004162 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5C282664-0F36-4F05-B367-33191A713477}
2015-09-21 20:03 - 2015-08-06 18:51 - 02077126 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-21 20:03 - 2015-07-10 18:34 - 00883584 _____ C:\WINDOWS\system32\perfh007.dat
2015-09-21 20:03 - 2015-07-10 18:34 - 00195718 _____ C:\WINDOWS\system32\perfc007.dat
2015-09-21 20:03 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-21 19:57 - 2015-08-06 18:50 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-21 19:57 - 2015-08-06 18:48 - 00010954 _____ C:\WINDOWS\PFRO.log
2015-09-21 19:57 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-21 19:57 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Branding
2015-09-21 19:57 - 2013-08-19 00:49 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2015-09-21 19:57 - 2013-08-19 00:18 - 00000144 _____ C:\service.log
2015-09-21 19:56 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-09-21 18:25 - 2013-08-24 20:40 - 00000000 ____D C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-21 18:23 - 2015-04-13 22:32 - 00000000 ___RD C:\Users\dieFackel\Desktop\Games
2015-09-21 16:02 - 2009-07-14 05:20 - 00000000 ____D C:\Users\Default.migrated
2015-09-21 02:07 - 2013-10-01 22:23 - 00000000 ____D C:\Users\dieFackel\AppData\Roaming\TS3Client
2015-09-20 21:41 - 2015-04-14 11:46 - 00000080 _____ C:\Users\dieFackel\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
2015-09-20 14:56 - 2015-04-13 22:18 - 00000000 ____D C:\Users\dieFackel\Desktop\University
2015-09-20 14:26 - 2014-06-15 14:32 - 00000000 ____D C:\Users\dieFackel\Documents\WB Games
2015-09-20 14:26 - 2013-08-19 19:19 - 00000000 ____D C:\Users\dieFackel\Documents\my games
2015-09-20 14:23 - 2014-09-18 00:41 - 00000000 ____D C:\Users\dieFackel\AppData\Local\LOOT
2015-09-20 14:18 - 2015-07-10 13:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-20 14:18 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-09-19 02:22 - 2015-04-13 22:33 - 00000000 ___RD C:\Users\dieFackel\Desktop\Programme
2015-09-18 23:03 - 2013-12-29 18:01 - 00000000 ____D C:\Users\dieFackel\AppData\Local\DayZ
2015-09-18 20:25 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-09-18 20:12 - 2015-08-06 19:47 - 00000000 __SHD C:\Recovery
2015-09-18 19:13 - 2013-08-19 00:44 - 00004006 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-09-18 19:12 - 2015-07-21 21:57 - 589516284 _____ C:\WINDOWS\MEMORY.DMP
2015-09-17 00:00 - 2015-08-06 18:53 - 00000000 ____D C:\Users\dieFackel
2015-09-16 13:54 - 2013-08-28 19:37 - 00004190 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 13:54 - 2013-08-28 19:37 - 00003958 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-16 13:35 - 2015-08-06 19:02 - 00000000 ____D C:\Users\dieFackel\AppData\Local\Packages
2015-09-16 13:15 - 2015-08-06 19:05 - 00000000 ____D C:\Users\dieFackel\OneDrive
2015-09-16 13:14 - 2015-07-10 14:20 - 00219888 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-16 13:12 - 2015-07-10 18:46 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-16 13:12 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-15 16:01 - 2015-08-06 19:05 - 00002406 _____ C:\Users\dieFackel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-11 18:01 - 2014-07-23 20:53 - 00000000 ____D C:\Users\dieFackel\Desktop\Hearthstone Screenshots
2015-09-10 14:19 - 2013-08-18 21:54 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-09 11:25 - 2013-08-18 23:34 - 00000000 ____D C:\ProgramData\Skype
2015-09-08 13:12 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-07 12:37 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-09-07 12:36 - 2013-08-18 23:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-09-06 13:08 - 2015-08-06 19:10 - 00000000 ____D C:\Users\dieFackel\AppData\Local\Comms
2015-08-29 16:07 - 2013-10-19 17:01 - 00000000 ____D C:\ProgramData\Oracle
2015-08-29 15:40 - 2015-07-28 13:44 - 00000000 ____D C:\Program Files\Java
2015-08-29 15:40 - 2014-10-21 17:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-29 15:40 - 2013-08-18 23:30 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-29 15:39 - 2015-07-28 13:44 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-08-27 11:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-26 18:37 - 2013-08-18 21:54 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2013-10-01 20:17 - 2013-10-01 20:17 - 0000037 ___SH () C:\Users\dieFackel\AppData\Local\70149b02515b3bb20dd492.47983420
2015-02-02 04:09 - 2015-02-02 04:09 - 0000000 ___SH () C:\Users\dieFackel\AppData\Local\LumaEmu
2015-06-21 20:51 - 2015-06-21 20:51 - 0009494 _____ () C:\Users\dieFackel\AppData\Local\recently-used.xbel
2015-04-21 13:24 - 2015-04-21 13:24 - 0007603 _____ () C:\Users\dieFackel\AppData\Local\Resmon.ResmonCfg
2014-10-31 15:44 - 2014-10-31 15:44 - 0000000 _____ () C:\Users\dieFackel\AppData\Local\{A310A91F-EC09-4402-A3F7-8F8D2A6ACFCD}
2013-09-01 13:00 - 2013-09-01 13:00 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-08-06 18:50 - 2015-08-06 18:50 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\dieFackel\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\dieFackel\AppData\Local\Temp\sqlite3.dll
C:\Users\dieFackel\AppData\Local\Temp\Uninstall.exe
C:\Users\dieFackel\AppData\Local\Temp\ytb.exe
C:\Users\dieFackel\AppData\Local\Temp\__pythonRunner.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-09-21 19:31
==================== Ende von FRST.txt ============================
|
|
22.09.2015, 21:38
| #14 |
| | Malware Befall? Addition Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:15-09-2015
durchgeführt von dieFackel (2015-09-22 22:36:04)
Gestartet von C:\Users\dieFackel\Desktop
Windows 10 Home (X64) (2015-08-06 17:02:52)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2542595381-3183390579-2223026719-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2542595381-3183390579-2223026719-503 - Limited - Disabled)
dieFackel (S-1-5-21-2542595381-3183390579-2223026719-1000 - Administrator - Enabled) => C:\Users\dieFackel
Gast (S-1-5-21-2542595381-3183390579-2223026719-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2542595381-3183390579-2223026719-1003 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.08 - GIGABYTE)
µTorrent (HKLM-x32\...\uTorrent) (Version: 3.3.0.29625 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.293 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
AutoGreen B10.0517.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.0517.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AutoHotkey 1.1.15.03 (HKLM\...\AutoHotkey) (Version: 1.1.15.03 - Lexikos)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2218 - AVAST Software)
Banished (HKLM-x32\...\Steam App 242920) (Version: - Shining Rock Software LLC)
Batman: Arkham City GOTY (HKLM-x32\...\Steam App 200260) (Version: - Rocksteady Studios)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Capsule (HKLM-x32\...\Capsule) (Version: 1.0.000 - Green Man Gaming Limited)
CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Convoy (HKLM-x32\...\Steam App 318230) (Version: - Convoy Games)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
Crazy Machines 2 (HKLM-x32\...\Steam App 18400) (Version: - Fakt Software)
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
DARK SOULS™ II (HKLM-x32\...\Steam App 236430) (Version: - FromSoftware, Inc)
Darkest Dungeon (HKLM-x32\...\Steam App 262060) (Version: - Red Hook Studios)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version: - Larian Studios)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.3 - Electronic Arts)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Easy Tune 6 B10.0516.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B10.0516.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1 (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.17 - Echobit, LLC)
Evolve (HKLM-x32\...\Steam App 273350) (Version: - Turtle Rock Studios)
FormatFactory 3.1.1 (HKLM-x32\...\FormatFactory) (Version: 3.1.1 - Free Time)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Free Audio Converter version 5.0.57.301 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.57.301 - DVDVideoSoft Ltd.)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version: - Subset Games)
Gigabyte Raid Configurer (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0001 - GIGABYTE Technologies, Inc.)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
GOG.com Downloader version 3.6.0 (HKLM-x32\...\{456A5815-604D-4D72-94DF-346D2B978A59}_is1) (Version: 3.6.0 - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.93 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hotline Miami 2 - Wrong Number (HKLM-x32\...\1424773427_is1) (Version: 2.0.0.1 - GOG.com)
HP Officejet 4630 series - Grundlegende Software für das Gerät (HKLM\...\{CCF92FFE-5341-4263-9048-472D9E3C5703}) (Version: 32.0.1180.44630 - Hewlett-Packard Co.)
HP Officejet 6700 - Grundlegende Software für das Gerät (HKLM\...\{9086D601-50B7-491D-A143-28193DADE36B}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
inSSIDer 3 (HKLM-x32\...\{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}) (Version: 3.0.7.48 - MetaGeek, LLC)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Link Shell Extension (HKLM\...\HardlinkShellExt) (Version: 3.8.6.0 - Hermann Schinagl)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
METAL GEAR RISING: REVENGEANCE (HKLM-x32\...\Steam App 235460) (Version: - PlatinumGames)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 40.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 de)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.18.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.18.0 - NEC Electronics Corporation) Hidden
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 352.86 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.3.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.22 - NVIDIA Corporation)
NVIDIA Grafiktreiber 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
ON_OFF Charge B10.0427.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.5.1.571 - Electronic Arts, Inc.)
Papers, Please (HKLM-x32\...\GOGPACKPAPERSPLEASE_is1) (Version: 2.4.0.10 - GOG.com)
ParkControl (HKLM-x32\...\ParkControl) (Version: 0.0.3.0 - Bitsum)
Project Zomboid (HKLM-x32\...\Steam App 108600) (Version: - The Indie Stone)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.18.322.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
ROCCAT Isku Keyboard Driver (HKLM-x32\...\{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}) (Version: - Roccat GmbH)
ROCCAT Kone XTD Mouse Driver (HKLM-x32\...\{7133137D-DF48-4522-AD88-13C82B7D0A63}) (Version: - Roccat GmbH)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.5 - Rockstar Games)
Samsung Universal Print Driver 2 (HKLM-x32\...\Samsung Universal Print Driver 2) (Version: 2.50.06.00 - Samsung Electronics Co., Ltd.)
Secunia PSI (3.0.0.7011) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.7011 - Secunia)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.)
Sid Meier's Civilization: Beyond Earth (HKLM-x32\...\Steam App 65980) (Version: - Firaxis Games)
Sitecom Europe BV Wireless LAN (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.6.0 - Sitecom)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Sony PC Companion 2.10.275 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.275 - Sony)
Spelunky (HKLM-x32\...\Steam App 239350) (Version: - )
Star Wars: Empire at War Gold (HKLM-x32\...\Steam App 32470) (Version: - Petroglyph)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
StarCraft II - Legacy of the Void Beta (HKLM-x32\...\StarCraft II - Legacy of the Void Beta) (Version: - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
StarMade Demo (HKLM-x32\...\Steam App 335180) (Version: - Schine, GmbH)
System Requirements Lab (HKLM-x32\...\{0F659036-14C7-4622-9505-35A0DC93526A}) (Version: 6.1.3.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Banner Saga (HKLM-x32\...\Steam App 237990) (Version: - Stoic)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.7.0 - GOG.com)
The Witcher 3: Wild Hunt - Alternative Look for Triss (HKLM-x32\...\Alternative Look for Triss_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Alternative Look for Yennefer (HKLM-x32\...\Alternative Look for Yennefer_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Ballad Heroes - Neutral Gwent Card Set (HKLM-x32\...\Ballad Heroes - Neutral Gwent Card Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Beard and Hairstyle Set (HKLM-x32\...\Beard and Hairstyle Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Elite Crossbow Set (HKLM-x32\...\Elite Crossbow Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Contract - Skellige's Most Wanted (HKLM-x32\...\New Quest - Contract: Skellige's Most Wanted_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Contract Missing Miners (HKLM-x32\...\New Quest - Contract Missing Miners_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Fool's Gold (HKLM-x32\...\New Quest - Fool's Gold_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Scavenger Hunt - Wolf School Gear (HKLM-x32\...\New Quest - Scavenger Hunt: Wolf School Gear_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Where the Cat and Wolf Play... (HKLM-x32\...\New Quest - Where the Cat and Wolf Play..._is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Nilfgaardian Armor Set (HKLM-x32\...\Nilfgaardian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Skellige Armor Set (HKLM-x32\...\Skellige Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Temerian Armor Set (HKLM-x32\...\Temerian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version: - 11 bit studios)
Total War: ATTILA (HKLM-x32\...\Steam App 325610) (Version: - Creative Assembly)
Total War: SHOGUN 2 (HKLM-x32\...\Steam App 34330) (Version: - The Creative Assembly)
Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version: - Tunngle.net GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Wasteland 2 Ranger Edition MULTi7 Update 1 1.0 (HKLM-x32\...\Wasteland 2 Ranger Edition MULTi7 Update 1 1.0) (Version: - )
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
19-09-2015 00:28:20 Windows Update
21-09-2015 16:00:44 Revo Uninstaller's restore point - Browser Configuration Utility
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {007FD569-54C3-49A3-8253-0E0F395482D0} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {0383F50C-10FC-4040-A88B-255E40ED0718} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {084C4971-47A8-45F9-B3D4-6428B1DEE881} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {12D881B8-E734-416A-A028-6015E7EC6595} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {150F6739-4D66-4199-B9E0-4A6036F6D1E3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {1E3858FF-E903-44C5-B3FD-123E185A4418} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {28815D36-92F8-47FB-8122-5993A2D7FAE0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {2956CF19-F792-4A9B-8BEE-AD0E8AC9BB44} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {2FB4C784-7B77-4FC1-AD9E-BDB7965DB6AA} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-18] (Avast Software s.r.o.)
Task: {310AAB93-F31B-419C-AC9C-1341BFDD3539} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {33EF87E4-1891-4EEF-A7C9-E6E04D9214E0} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {377E7CDC-2A35-4D14-A9D8-49128516DB1A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {3FD4EB54-C2D6-4967-BB88-80BBF8C40A43} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-20] (Piriform Ltd)
Task: {44FE11CF-3C38-40A3-9493-A4A49EA471C3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {4DA4623F-2143-4DED-8840-199F2039EC86} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {537EDD82-D044-4E4B-A66C-5101874B229E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {59D77CEA-ED7B-4500-89C9-0232E7206C55} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-22] (Adobe Systems Incorporated)
Task: {5EF69986-67D5-4614-B028-C38706C7912F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {5F71DF05-892E-400C-BCFA-20C877FF8FFB} - \ASP -> Keine Datei <==== ACHTUNG
Task: {62161B17-BBE0-4CC8-84E3-8F778C923A0F} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {66CA6249-C5C4-42EA-A114-32777C647074} - System32\Tasks\{CEED1077-07CF-4FE6-BA38-F89840399C6C} => pcalua.exe -a "D:\Spiele\Steam\SteamApps\common\The Talos Principle\Uninstall.exe"
Task: {6C6B408C-ABB7-4CDE-A2FC-598219EC69AF} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {739DA745-42F7-41D9-9FD8-F145E77A2852} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {759FD429-B6FA-4A99-9616-3B9517B3B377} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {75DD3EDE-5FD2-4C70-8102-FF1C5D38B12A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {7E7CF516-AEF8-4C55-8ACC-86E52E53C5E7} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {81F54F4F-AB64-4C47-B080-C79FAB3FB46A} - System32\Tasks\ParkControl => D:\Dateien\ParkControl\parkcontrol.exe [2015-09-06] (Bitsum LLC)
Task: {8928D6C7-7F61-40AF-BCCC-7B0E5D089856} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {8FA47A0E-248D-4A4C-ABC7-739455135FE2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {99F43B2C-4B9B-458F-8253-C56307D66F25} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9B99641C-82AD-430E-99D3-95403253A9F4} - System32\Tasks\{1B1DFA78-A4FB-400D-8359-E064CBA855AC} => pcalua.exe -a C:\Users\dieFackel\Downloads\AdobeAIRInstaller.exe -d C:\Users\dieFackel\Downloads
Task: {9DF62012-097A-432A-A864-896C0D0A58C7} - System32\Tasks\{17B1D9FC-619A-4019-9106-9E42DBD0F377} => pcalua.exe -a "D:\Spiele\Endless Legend\Uninstall.exe"
Task: {A02D7968-4E72-40FF-BFD5-EE9EFB9F69B1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {A0C3ED9C-6CCF-46DD-AFC1-B7A92242AEDB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {A3B958EF-6EA8-46FD-BC9C-7D831347D2F2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {AAF7903A-042E-445F-BCF0-D2989889D7AF} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {B0E4BE89-8ACC-45E6-AA66-80418E141D6B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {B3BA9488-CC8E-4610-9991-318DF6AC4EA5} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {BA7FDBED-76CC-4426-9BB3-4E40EB345604} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {C209C164-6EB7-4B8F-9858-E6E9D867CC1A} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {C7C0D305-2AE3-428A-9A0F-0CE0850295B0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {CED20494-E076-4B29-B6AD-5BA2F019E82E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {DA5E6DF4-4A57-477B-9EED-99B2E8A73250} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {E2822C6F-6FA1-4C79-8CBA-E875A3523E86} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {EDBF36E0-04A5-40EE-B88E-32965CAB73DC} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {F1B6BD64-4062-4FEA-A3EE-F93D36875EFD} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {F4ED529C-8F47-43CD-92D4-0FB6C947774B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-08-06 19:45 - 2015-08-06 19:45 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-04-23 19:40 - 2014-04-16 10:22 - 00029184 _____ () C:\WINDOWS\System32\usp02l.dll
2013-08-19 00:18 - 2009-08-24 14:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2015-08-19 18:31 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2013-08-19 00:21 - 2010-01-19 04:31 - 00072304 ____R () C:\Windows\SysWOW64\XSrvSetup.exe
2015-04-23 19:43 - 2014-11-26 13:07 - 00118576 _____ () C:\Windows\SysWOW64\SecUPDUtilSvc.exe
2015-08-06 18:50 - 2015-07-23 03:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-31 18:08 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-08-31 18:08 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2015-08-11 21:51 - 2015-08-03 03:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 18:31 - 2015-08-11 10:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-11 21:51 - 2015-08-03 03:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-08-24 20:28 - 2015-08-24 20:28 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-07-02 00:45 - 2015-07-02 00:45 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-07-02 00:45 - 2015-07-02 00:45 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-09-21 19:23 - 2015-09-21 19:23 - 02965504 _____ () C:\Program Files\AVAST Software\Avast\defs\15092101\algo.dll
2015-09-22 19:45 - 2015-09-22 19:45 - 02965504 _____ () C:\Program Files\AVAST Software\Avast\defs\15092200\algo.dll
2013-08-19 00:18 - 2009-03-13 11:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-05-22 16:45 - 2015-05-01 18:52 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2013-08-19 00:15 - 2012-06-17 11:20 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll
2014-06-09 04:02 - 2010-11-04 11:48 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Isku Keyboard\hiddriver.dll
2015-07-02 00:45 - 2015-07-02 00:46 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-08-03 17:42 - 2015-07-03 18:12 - 00778240 _____ () D:\Spiele\Steam\SDL2.dll
2015-01-20 19:25 - 2015-07-03 18:12 - 04962816 _____ () D:\Spiele\Steam\v8.dll
2014-08-03 17:42 - 2015-08-19 22:39 - 02413248 _____ () D:\Spiele\Steam\video.dll
2014-08-29 17:22 - 2014-12-01 23:31 - 02396672 _____ () D:\Spiele\Steam\libavcodec-56.dll
2014-08-29 17:22 - 2014-12-01 23:31 - 00479744 _____ () D:\Spiele\Steam\libavformat-56.dll
2014-08-29 17:22 - 2014-12-01 23:31 - 00332800 _____ () D:\Spiele\Steam\libavresample-2.dll
2014-08-29 17:22 - 2014-12-01 23:31 - 00442880 _____ () D:\Spiele\Steam\libavutil-54.dll
2014-08-29 17:22 - 2014-12-01 23:31 - 00485888 _____ () D:\Spiele\Steam\libswscale-3.dll
2015-01-20 19:25 - 2015-07-03 18:12 - 01556992 _____ () D:\Spiele\Steam\icui18n.dll
2015-01-20 19:25 - 2015-07-03 18:12 - 01187840 _____ () D:\Spiele\Steam\icuuc.dll
2014-08-03 17:42 - 2015-08-19 22:39 - 00704192 _____ () D:\Spiele\Steam\bin\chromehtml.DLL
2015-07-22 19:33 - 2015-07-27 03:13 - 00171008 _____ () D:\Spiele\Steam\bin\openvr_api.dll
2014-08-03 17:42 - 2015-07-03 18:12 - 39553928 _____ () D:\Spiele\Steam\bin\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\Control Panel\Desktop\\Wallpaper -> D:\Dateien\Bilder\Wallpaper\song-of-ice-and-fire-a-song-of-ice-and-fire-game-of-thrones-game-of-thrones-serial-book.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\...\StartupApproved\StartupFolder: => "Sitecom Wireless Utility.lnk"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\StartupApproved\Run: => "EvolveClient"
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-2542595381-3183390579-2223026719-1000\...\StartupApproved\Run: => "Sony PC Companion"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{3BC6CFE2-7EA2-4011-84BA-7FEED091D83A}] => (Allow) D:\Dateien\Echobit\Evolve\EvolveClient.exe
FirewallRules: [{61375D69-A18E-4803-8779-D8BF39D6268A}] => (Allow) D:\Dateien\Echobit\Evolve\EvoSvc.exe
FirewallRules: [UDP Query User{6BD38B9B-C5B3-444B-9445-275EE4EF4F01}D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe] => (Allow) D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe
FirewallRules: [TCP Query User{0FFDD242-BB2F-49BF-905C-5B05E6D833B6}D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe] => (Allow) D:\spiele\steam\steamapps\common\star wars empire at war\corruption\swfoc.exe
FirewallRules: [{37DBD5E1-76BC-46E5-8F23-179DADB6C408}] => (Allow) D:\Spiele\Steam\SteamApps\common\Star Wars Empire at War\runme2.exe
FirewallRules: [{F1DBD15E-DA8E-47A6-9329-BFD53767D7C6}] => (Allow) D:\Spiele\Steam\SteamApps\common\Star Wars Empire at War\runme2.exe
FirewallRules: [{0C591109-FBC6-4F73-BBBB-61092B9BB943}] => (Allow) D:\Spiele\Steam\SteamApps\common\Star Wars Empire at War\runme.exe
FirewallRules: [{131CBD8F-19F4-4077-AA23-2E3A9B932972}] => (Allow) D:\Spiele\Steam\SteamApps\common\Star Wars Empire at War\runme.exe
FirewallRules: [UDP Query User{AC4641F8-12FC-420F-823F-EFFC3F28FDBE}C:\program files\java\jre1.8.0_51\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\java.exe
FirewallRules: [TCP Query User{AA80F67F-5B29-4F21-AF43-610BD2557134}C:\program files\java\jre1.8.0_51\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\java.exe
FirewallRules: [UDP Query User{B0847E20-BD2F-4CE3-81BD-B269F8AE2DCE}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{99791AC9-E644-49DE-86C4-F301DA9B706F}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{52E2A39D-CDF8-4BD2-A960-F3FB7AC8F64D}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{D499F6AB-D5DA-4AE8-B1FE-0C5672BDAAEC}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{49FBEF79-5265-4DBB-80C5-04929B850A06}] => (Allow) D:\Spiele\Steam\SteamApps\common\StarMade\StarMade-starter.exe
FirewallRules: [{96EBA60C-D22C-4AE4-B9FF-48344DCD1A8B}] => (Allow) D:\Spiele\Steam\SteamApps\common\StarMade\StarMade-starter.exe
FirewallRules: [UDP Query User{0D90916A-B2DB-4CD4-9340-B147B03340B9}D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe
FirewallRules: [TCP Query User{679176C4-B17C-48AC-9438-D72A64AADF45}D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe
FirewallRules: [UDP Query User{94A160E1-66C3-4B87-9603-39556EFD9D49}C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe] => (Allow) C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe
FirewallRules: [TCP Query User{89EFC158-2255-4AD5-AD13-C0E7D8C6DDF0}C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe] => (Allow) C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe
FirewallRules: [{47331124-787A-4A26-A875-7E33D2E60C2E}] => (Allow) D:\Spiele\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{0BB03995-1E3A-4C68-839F-2683138514C7}] => (Allow) D:\Spiele\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{A4AE1FED-1B2E-4400-B66B-44EF7AB1085C}] => (Allow) D:\Spiele\Steam\SteamApps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{7F4738E0-D875-4AAA-8603-B22CCD24074A}] => (Allow) D:\Spiele\Steam\SteamApps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{C8F9D5F7-0F0E-4656-B32A-EC826FEB347F}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveGame\Bin64_SteamRetail\Evolve.exe
FirewallRules: [{4E00D23C-FC6C-460D-B09D-C74E9829E1E6}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveGame\Bin64_SteamRetail\Evolve.exe
FirewallRules: [{260998F8-92AC-4377-B056-ABB93BE243F7}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{E20C141F-B4E3-40B8-9EE2-4E3D0395E972}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{6680ACBA-36E3-4AAD-B9B0-01E7654230F0}] => (Block) D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe
FirewallRules: [{9A344900-C141-44D8-A5DD-68DA9610A391}] => (Block) D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe
FirewallRules: [UDP Query User{C27FDE17-733B-4E36-8FB2-179CA232B7F5}D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe
FirewallRules: [TCP Query User{44A642B9-0B12-4F97-84BE-93251718E92E}D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base35543\sc2_x64.exe
FirewallRules: [{50A0F398-48A6-498F-9B67-4D5C9A071F1B}] => (Allow) C:\Steam\DayZ\DayZ_BE.exe
FirewallRules: [{F7EC3CDC-284C-442A-BB04-2AC14E401D19}] => (Allow) C:\Steam\DayZ\DayZ_BE.exe
FirewallRules: [{8B769242-BA38-42BD-B61E-C869E9D4AFD6}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{7E08556E-1E48-491D-9432-D0CD72FB0C37}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{8B88620A-E50A-426E-949A-8CC410A9D244}] => (Allow) D:\Spiele\Steam\SteamApps\common\Convoy\Convoy.exe
FirewallRules: [{1007BD7E-888D-41BC-9DF6-6016D0A2C516}] => (Allow) D:\Spiele\Steam\SteamApps\common\Convoy\Convoy.exe
FirewallRules: [{E737A0A8-401F-4D1D-BDDD-A74D8366577F}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe
FirewallRules: [{DA0A9DB6-75C2-4D33-AF3E-957E96B0EF8D}] => (Allow) C:\Users\dieFackel\AppData\Local\Temp\InsA09A\Setup.exe
FirewallRules: [{85C5C8CE-4D27-4531-A568-5EFDE17198F5}] => (Allow) C:\Users\dieFackel\AppData\Local\Temp\InsA09A\Setup.exe
FirewallRules: [{B4495F83-B379-4899-85D3-E45164AF6B0E}] => (Allow) C:\Users\dieFackel\AppData\Local\Temp\InsA09A\Setup.exe
FirewallRules: [{454B6152-3A20-4BB5-852C-649F4293A1FA}] => (Allow) C:\Users\dieFackel\AppData\Local\Temp\InsA09A\Setup.exe
FirewallRules: [{C536F582-753F-4E9C-976A-1D730B05E962}] => (Allow) C:\Users\dieFackel\AppData\Local\Temp\InsA09A\Setup.exe
FirewallRules: [{E30A1B3E-FE21-4810-B6DC-2DF67F566FAC}] => (Block) D:\spiele\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [{10F2AA7E-B647-4859-A997-8DCA038F947F}] => (Block) D:\spiele\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{71783481-456F-4E47-B816-DE0237716065}D:\spiele\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\spiele\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{E264AEE9-98D1-4F0C-A8D8-EF320B419BA4}D:\spiele\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\spiele\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [{A2F61F36-90A6-400C-8F5B-32D7A043FC06}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{6FCEA93C-55AE-4EB2-98EB-B68ED3541B24}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{874CB0D8-1A02-4AC9-A166-9F8293E19B86}] => (Allow) C:\Steam\Total War Attila\launcher\launcher.exe
FirewallRules: [{C94F57A0-0A4A-470F-B710-2DAAB728AFB3}] => (Allow) C:\Steam\Total War Attila\launcher\launcher.exe
FirewallRules: [{732BA3E2-1182-4397-8D28-A9A2C88849AA}] => (Block) D:\Spiele\GOG Games\Hotline Miami 2 - Wrong Number\HotlineMiami2.exe
FirewallRules: [{5712810A-D8E8-47F1-867C-8A567865F1FA}] => (Allow) D:\Spiele\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{121C2BBA-ADCF-4A00-A003-8E4DC7C19F42}] => (Allow) D:\Spiele\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [UDP Query User{01F3AAB2-F100-486D-9ECE-B0CE0B6D9092}D:\spiele\der herr der ringe online\lotroclient.exe] => (Allow) D:\spiele\der herr der ringe online\lotroclient.exe
FirewallRules: [TCP Query User{7E0D2860-2926-4758-9E61-C3D62A6EE882}D:\spiele\der herr der ringe online\lotroclient.exe] => (Allow) D:\spiele\der herr der ringe online\lotroclient.exe
FirewallRules: [UDP Query User{EF620606-1FAD-4D0F-A60A-B3D46FA847CD}D:\spiele\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\spiele\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [TCP Query User{E6809934-F0AB-44EA-92A3-4F06E02800A4}D:\spiele\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\spiele\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{5185CE5F-6F3A-4005-9FFA-99A07BFC30AF}] => (Block) D:\Spiele\The Escapists\TheEscapists.exe
FirewallRules: [UDP Query User{994ABB63-697E-4845-8262-7188C1B3840C}C:\steam\total war attila\attila.exe] => (Allow) C:\steam\total war attila\attila.exe
FirewallRules: [TCP Query User{E16FC49E-8D94-4B67-A2C9-9950910F8D4F}C:\steam\total war attila\attila.exe] => (Allow) C:\steam\total war attila\attila.exe
FirewallRules: [UDP Query User{3F166EB9-307C-4A2B-9432-B9F44FD2DAB3}D:\spiele\steam\steamapps\common\total war attila\attila.exe] => (Allow) D:\spiele\steam\steamapps\common\total war attila\attila.exe
FirewallRules: [TCP Query User{AB7ED2C4-B673-4C55-83A0-5E725CB106E4}D:\spiele\steam\steamapps\common\total war attila\attila.exe] => (Allow) D:\spiele\steam\steamapps\common\total war attila\attila.exe
FirewallRules: [{A69E166B-B8ED-48C9-8F37-7BC3560B9061}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Attila\launcher\launcher.exe
FirewallRules: [{A0EFB1FA-5906-4CDD-B7CD-CF975BD867FD}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Attila\launcher\launcher.exe
FirewallRules: [{0EF27D38-E34C-49C9-8FFF-A8DEE122C744}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{D9020509-1915-46C3-8F77-73656050A0ED}] => (Allow) D:\Spiele\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{4701180F-828D-4A7D-BEE2-0525E357EEDF}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{042A055D-138C-4D24-943A-D29B3400242B}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{84E05554-EBD4-4F2C-935A-8476C0213A1B}] => (Allow) D:\Dateien\Winamp\winamp.exe
FirewallRules: [{AF973B7E-92F7-4563-88EC-4D14DF7F570A}] => (Allow) D:\Dateien\Winamp\winamp.exe
FirewallRules: [{65ED1D28-06B3-4520-B7A1-C1B0B3C19453}] => (Block) D:\Spiele\Dying Light - Season Pass Edition\Dying Light - Season Pass Edition\DyingLightGame.exe
FirewallRules: [{B8262556-3A71-44D0-844E-C47F3BF5FE9C}] => (Block) D:\Spiele\Dying Light - Season Pass Edition\DyingLightGame.exe
FirewallRules: [{47C063DB-E35A-4680-ACF9-074E46A11E7F}] => (Block) D:\Spiele\Steam\SteamApps\common\The Talos Principle\Bin\TalosLauncher.exe
FirewallRules: [{9A669733-4F0E-4354-A9F2-783A3E91ABC0}] => (Block) D:\Spiele\Steam\SteamApps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{E51C2980-FA5D-4DD3-9111-65127B787228}] => (Block) D:\Spiele\Steam\SteamApps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{9E96DFA9-52C0-465E-ABC3-2E5E6D034881}] => (Block) D:\Spiele\Steam\SteamApps\common\The Talos Principle\original\Talos_Unrestricted.exe
FirewallRules: [{A6441CE9-9B08-426E-BD68-524B7CA68ACA}] => (Block) D:\Spiele\Steam\SteamApps\common\The Talos Principle\original\Talos.exe
FirewallRules: [{66BD3D56-1118-4FC3-9E54-80150813DA09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{EE93AA36-B737-4CE9-A350-E7329041BB81}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{0C0652B7-FCB4-46F4-B493-383EA1E10206}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveBeta\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{77F7FC88-7D10-47A1-A934-A458A2FD7952}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveBeta\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{5BEEE90D-0BBE-4967-8B44-654F73F5E717}] => (Allow) D:\Spiele\Steam\SteamApps\common\the banner saga factions\win32\The Banner Saga Factions.exe
FirewallRules: [{4E55DE75-0541-4FFF-A27A-B8E7A0708C41}] => (Allow) D:\Spiele\Steam\SteamApps\common\the banner saga factions\win32\The Banner Saga Factions.exe
FirewallRules: [{BD02DD28-83A4-40BE-BCB0-A01DEB78070A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{791AE8AB-8F4F-4403-997C-7D6431C71758}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{200F8714-305F-4403-A7E8-177A79F7581D}] => (Allow) D:\Spiele\Steam\SteamApps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{CBC7F8AB-00EB-4892-9F01-78F6C467AA2D}] => (Allow) D:\Spiele\Steam\SteamApps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{6BF50E30-7EB9-4353-BC55-1167AFD223F4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{B030A168-6281-48CA-9621-76A8AEA3AF09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{BAEB663C-7F5E-4F29-A51D-1235BF4C7897}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{B83D49E3-C9EE-49E5-93EC-0C2A0ECB1797}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{A58FCE97-E1C6-441E-BCA5-4F1A94A75D35}] => (Allow) D:\Spiele\Steam\SteamApps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{6824D999-E278-4D96-A8EB-3C4D6761872C}] => (Allow) D:\Spiele\Steam\SteamApps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{90C2CADE-0B84-499A-B2F0-315635D1D7C9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3668\Agent.exe
FirewallRules: [{FF29EDB2-18BB-4CCD-896A-52444C37CE8C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3668\Agent.exe
FirewallRules: [{7ABD6415-AAE2-4A3F-AD8C-0056BCBE5447}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{80C91602-0A9B-403A-8488-F952FA86D28F}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{6DB10C88-5451-485A-B1DB-C7936DD88213}] => (Allow) D:\Spiele\Steam\SteamApps\common\ProjectZomboid\ProjectZomboid32.exe
FirewallRules: [{50CA82F3-6FD3-4198-BC73-5E7FB0BEC229}] => (Allow) D:\Spiele\Steam\SteamApps\common\ProjectZomboid\ProjectZomboid32.exe
FirewallRules: [{4110D224-9A94-479B-BDD6-927B5E0CD22F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{B5CC3189-6AFD-4B0A-BF7B-606DB90611A2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [UDP Query User{721024D8-CA0B-4E5A-8BD3-1DD886EF554B}C:\steam\dayz\dayz_experimental.exe] => (Allow) C:\steam\dayz\dayz_experimental.exe
FirewallRules: [TCP Query User{C7489638-ABE6-4C6E-9EF0-20E06C24DBF4}C:\steam\dayz\dayz_experimental.exe] => (Allow) C:\steam\dayz\dayz_experimental.exe
FirewallRules: [{52E231DB-F5D6-4028-BEC4-8E8ED67F12AD}] => (Allow) D:\Spiele\StarCraft II\StarCraft II.exe
FirewallRules: [{5FD0AFAB-647B-413F-8806-D83B6639A7D5}] => (Allow) D:\Spiele\StarCraft II\StarCraft II.exe
FirewallRules: [{B243255C-A7CC-4062-88F3-5A68A9818BF0}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{71EDB1FE-7946-4123-80C9-0B72647F813D}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [UDP Query User{46682FD8-186D-49C6-A2F6-8726E2F384C5}D:\spiele\far cry 4\bin\farcry4.exe] => (Allow) D:\spiele\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{2087E360-86C8-4F44-9479-A342A8F24C4C}D:\spiele\far cry 4\bin\farcry4.exe] => (Allow) D:\spiele\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{3BD0FB36-6A35-474D-B8D4-54428A7073F7}C:\steam\dayz\dayz.exe] => (Allow) C:\steam\dayz\dayz.exe
FirewallRules: [TCP Query User{1E2E57F1-9282-4817-BF17-86AF3119982D}C:\steam\dayz\dayz.exe] => (Allow) C:\steam\dayz\dayz.exe
FirewallRules: [UDP Query User{768ADEDF-7348-4888-A306-9D2D9BCFAB3C}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{E4D7CB05-04C0-4D43-AF88-AD7F4CADA6A7}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{3C37B9E7-A1B0-41FF-BB5C-41BB7071420B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{487C9432-BD35-49B9-99F5-3BAFE1A664EE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [UDP Query User{2B0BD43A-F410-4B4D-B059-B6240AFC9884}C:\users\diefackel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\diefackel\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{8C2A0CB4-B109-46D4-AABB-C160E0B4BC2A}C:\users\diefackel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\diefackel\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{EF209801-AE72-41D9-9F77-608AD8263367}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe
FirewallRules: [TCP Query User{5A3687F6-AA2F-41D8-BC1F-6D0028F43762}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe
FirewallRules: [{75FC0C17-CEE6-4683-A000-68DC461CDDCF}] => (Allow) D:\Spiele\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C1F02300-6FE1-413E-97D5-9D2E1BCC7BE5}] => (Allow) D:\Spiele\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{A2F231C9-4CD8-4395-81DF-C34C6DE0F706}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{E6612FF6-20D1-486B-BE99-B2EE40A8EE64}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{B2F30D36-41BD-46C2-BFAC-77710BEA7E86}] => (Allow) D:\Spiele\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{91F29332-8300-4A77-8646-391A0E36647B}] => (Allow) D:\Spiele\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{F32D8B5C-0A39-4213-B311-4264F61EDD29}] => (Allow) D:\Spiele\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{4CEB2609-F630-445B-ADE0-E7A4F484BD37}] => (Allow) D:\Spiele\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [UDP Query User{34BCA22E-99A9-4037-899C-174952D355DE}D:\spiele\turbine\lotro\lotroclient.exe] => (Allow) D:\spiele\turbine\lotro\lotroclient.exe
FirewallRules: [TCP Query User{75A8E893-2DB3-4F96-A700-1BDD93AEC419}D:\spiele\turbine\lotro\lotroclient.exe] => (Allow) D:\spiele\turbine\lotro\lotroclient.exe
FirewallRules: [UDP Query User{91E2485E-E838-477D-A73E-4A2676154231}C:\users\diefackel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\diefackel\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{DF81AFF9-6AB8-429F-9D37-56BCA58078BB}C:\users\diefackel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\diefackel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{3675F0AF-25B1-45AE-BDED-BEECEADB7462}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{05B42524-C3C8-41AE-898B-8F2B08533BBD}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{5B828859-7EB5-48C0-B521-DAF312FC3B92}] => (Allow) D:\Spiele\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{6ACFD153-8905-467B-970D-055343BD393E}] => (Allow) D:\Spiele\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{50A4018A-E9AB-4375-85D1-DB1EA03F464C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{12F913B6-00F8-4DEB-B3E4-8D97D2850BED}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{612F91F9-9A30-412D-B951-56F8B50574E5}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe
FirewallRules: [{850377DC-94A3-4B2A-AA1F-2D4A61142648}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe
FirewallRules: [{725EA809-0C27-44BB-A6D1-42DFFB83A5B6}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe
FirewallRules: [{1162E8DD-48DD-4181-812E-659536393FF0}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe
FirewallRules: [UDP Query User{A1C93A3A-B967-4C58-A16D-F1E7DE6A8FA3}D:\spiele\alien isolation\ai.exe] => (Allow) D:\spiele\alien isolation\ai.exe
FirewallRules: [TCP Query User{E9B168F0-3A0F-4CB0-8F7B-1762918B2F50}D:\spiele\alien isolation\ai.exe] => (Allow) D:\spiele\alien isolation\ai.exe
FirewallRules: [{63E93650-FC6E-470D-B081-ED7D3885B788}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{B715B48F-AF68-463A-94F5-8E0D35B547A9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{F4001CEF-B676-4F8F-9CBE-5F88C6865C09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{466FED5B-6575-4E15-87A2-545F7300F3DA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [UDP Query User{D156C6E4-CF56-47E4-8877-C9FA020097D1}C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [TCP Query User{2E3D86B6-3222-4719-A1C3-6465A9825C7E}C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\diefackel\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [{EA07A9B6-AE7B-426E-90FB-069CCDCFB202}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{1DC62405-5788-4878-AEEF-73C0E95C6951}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [UDP Query User{3FF88DA6-90AD-4569-A544-9BD32D95B4DE}C:\users\diefackel\desktop\candisoft load!\load.exe] => (Allow) C:\users\diefackel\desktop\candisoft load!\load.exe
FirewallRules: [TCP Query User{FDAB8299-263A-4540-98EB-B9BF2FFF7833}C:\users\diefackel\desktop\candisoft load!\load.exe] => (Allow) C:\users\diefackel\desktop\candisoft load!\load.exe
FirewallRules: [{F3B481F2-78BB-4809-B174-E6BF94AD446C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{A27DCD31-FB3D-4FFE-A0A1-8EB8491B9F49}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{C8111857-2C72-45AC-91FB-4FEDD31A8BBC}] => (Allow) D:\Spiele\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{5C97D2AD-62A5-4F8E-A76D-8CBD095C76AB}] => (Allow) D:\Spiele\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{B407A014-5DA2-44E3-B87F-65197BCC60D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{4AE9B7C5-F214-42B4-BD04-4D111B6C6902}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{8A07CC39-D9D6-4986-A7E7-FC3984AC7127}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{161B3A9B-F20F-432A-A4F8-529C74EDA64C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{8E689C35-4729-49A6-BAD2-957DC852D36D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{1FDDD19F-D61F-4E96-9476-9EE53E29A059}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{473F3C8B-E48E-49EC-B8ED-971DDEED3907}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{5CE8D20C-85C6-4DE3-A472-B7817AC6AAEA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{2E372AA7-F0B1-41BF-9BCF-3AFE1A50E663}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{7BE77165-226E-4090-ACA4-A8C96846A894}] => (Allow) D:\Spiele\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{1AC1DBEE-839F-431D-8D8E-029BC8B31A0B}] => (Allow) D:\Spiele\Steam\SteamApps\common\Resident Evil 4\Bin32\bio4.exe
FirewallRules: [{C82C6185-880F-4E6E-8746-2B6BB818BD6B}] => (Allow) D:\Spiele\Steam\SteamApps\common\Resident Evil 4\Bin32\bio4.exe
FirewallRules: [UDP Query User{10CE2B65-E5F4-42BC-8163-71E573619FB5}C:\programdata\battle.net\agent\agent.3286\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3286\agent.exe
FirewallRules: [TCP Query User{A35D10AF-D92A-4ABA-ACBF-C15CE5BC4854}C:\programdata\battle.net\agent\agent.3286\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3286\agent.exe
FirewallRules: [{24AD6035-4531-4D19-88F4-22279AFC5DAA}] => (Allow) D:\Spiele\Steam\bin\steamwebhelper.exe
FirewallRules: [{2E04DF7B-58DC-40FD-9861-C65DEEF3472B}] => (Allow) D:\Spiele\Steam\bin\steamwebhelper.exe
FirewallRules: [{65BCD715-1B96-40FB-93BC-46BB53473CA1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{BB349080-4EF5-4A0F-AFCF-58D1A5BE541D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{C976ADF5-7175-4272-B4BE-CCD10EAC1E1C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{930A184D-3AC6-40FF-A3BD-97983CF14E97}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{3A7BC421-EDBF-409F-AE22-B79A7C6D1E11}] => (Allow) C:\Program Files\HP\HP Officejet 4630 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{C346D2EC-0F46-4B35-BF88-45A910E8F65D}] => (Allow) LPort=5357
FirewallRules: [{A20C7EC1-D7F0-4699-A999-C11A6AF98445}] => (Allow) C:\Program Files\HP\HP Officejet 4630 series\Bin\DeviceSetup.exe
FirewallRules: [{FA10D693-1CA9-4710-A397-22E92281F546}] => (Allow) C:\Program Files\HP\HP Officejet 4630 series\bin\SendAFax.exe
FirewallRules: [{F4E28960-8EA3-4167-B305-A5D09CF4CB1B}] => (Allow) C:\Program Files\HP\HP Officejet 4630 series\bin\DigitalWizards.exe
FirewallRules: [{396624B1-C30D-48C7-A088-13E424FC2A24}] => (Allow) C:\Program Files\HP\HP Officejet 4630 series\bin\FaxApplications.exe
FirewallRules: [{7E35D448-A58D-4FC2-BA21-430360FADCD6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe
FirewallRules: [{0BAE9171-52B3-4EC5-9A19-A016C1E03D02}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe
FirewallRules: [{E5A67602-3EB0-42DE-B3AD-4031D2D252F9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
FirewallRules: [{42E8ED7D-6813-475E-9526-E86E74431098}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
FirewallRules: [{4FEC670E-A4A5-4FCA-AD3C-C8CEBC9F80E4}] => (Allow) D:\Spiele\Steam\SteamApps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{6A1E11C6-2FD4-4442-B793-54CAD8E63F82}] => (Allow) D:\Spiele\Steam\SteamApps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{6083F112-8C04-4F34-8B81-E280FF1B4F08}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe
FirewallRules: [{5E9EC2DE-8C92-4258-AC76-9FA200A6CFCA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe
FirewallRules: [{D37AC809-3DCF-48D3-A935-663B1B235D36}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{27B6BBB1-7DD7-44E0-9F5F-821FCBFA2D98}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{22EF0059-D71E-46A6-A646-B5E9903D7EB7}] => (Allow) D:\Spiele\Dragon Age\bin_ship\daupdatersvc.service.exe
FirewallRules: [{08FE3F0B-E290-4A32-8D1A-5E0431B92CD9}] => (Allow) D:\Spiele\Dragon Age\bin_ship\daupdatersvc.service.exe
FirewallRules: [{271C88E9-96B2-4725-ADE1-49DBFA58099D}] => (Allow) C:\Steam\Total War Rome II\launcher\launcher.exe
FirewallRules: [{4D31A50F-DD2C-44A1-8106-12450F1BD174}] => (Allow) C:\Steam\Total War Rome II\launcher\launcher.exe
FirewallRules: [{E5325EEB-3F01-445B-B94D-A233B1AEBA19}] => (Allow) D:\Spiele\Dragon Age\DAOriginsLauncher.exe
FirewallRules: [{30BD7EC9-61EF-43AD-BFCA-932704125836}] => (Allow) D:\Spiele\Dragon Age\DAOriginsLauncher.exe
FirewallRules: [{35241231-34FA-42D4-921F-BAC90A61C91A}] => (Allow) D:\Spiele\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{27D80C77-5768-47B2-BC71-ECEF146C8A2D}] => (Allow) D:\Spiele\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{4373D304-EC2F-4DC7-A098-1034ED7EC19D}] => (Allow) D:\Spiele\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{804D6F11-A546-48E8-8806-D776353B49F5}] => (Allow) D:\Spiele\Steam\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{28B9B0CA-69CF-49C4-886D-1F7E6D0E63E0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F23413BE-72FF-48FF-935F-B4423B56EB70}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{9D0EB4A1-0242-4620-8E01-2CCDF0A2AD7C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F8966F84-0191-401B-B9D7-BDE8ECAE8DB2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{0E181344-9146-427F-B8C5-F7CEC8AE589F}] => (Allow) D:\Ubisoft\Future Soldier DX9.exe
FirewallRules: [{BE6201F6-47F2-4F6D-A260-1DE904ACCA50}] => (Allow) D:\Ubisoft\Future Soldier DX9.exe
FirewallRules: [{C970D1FA-1BB1-45FB-8E2F-1EDEC790AEBC}] => (Allow) D:\Ubisoft\Future Soldier DX11.exe
FirewallRules: [{B3B18623-32C2-4E9A-953A-C7A9D41C08DD}] => (Allow) D:\Ubisoft\Future Soldier DX11.exe
FirewallRules: [{01A59A15-B150-4261-A832-C13E2333934A}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{5933A99D-DE56-4D42-A127-7361BCDDBA2B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [UDP Query User{8B6CB9A1-CCD9-4ED2-8550-672343D27E06}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe
FirewallRules: [TCP Query User{811D149A-8102-4474-B680-7B0E1F1DB80D}D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) D:\spiele\starcitizen\citizenclient\bin64\starcitizen.exe
FirewallRules: [{FF515000-9D08-408E-9921-26D9E623A3EB}] => (Allow) D:\Spiele\Diablo III\Diablo III.exe
FirewallRules: [{F1F436EB-F01E-4B64-89F0-D9D9CC3237A5}] => (Allow) D:\Spiele\Diablo III\Diablo III.exe
FirewallRules: [{0898D30C-4DDF-4852-9CEF-CD79E0FB0347}] => (Allow) D:\Spiele\Steam\SteamApps\common\ProjectZomboid\ProjectZomboid64.exe
FirewallRules: [{59C36A26-852E-4745-BEF7-698FF9D6C85E}] => (Allow) D:\Spiele\Steam\SteamApps\common\ProjectZomboid\ProjectZomboid64.exe
FirewallRules: [{454808A4-0F57-4997-A163-A11BEB797424}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [{BD7E8AC0-D371-47DC-A1E0-8F627C3E1039}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [{967DF2D9-1094-404F-95FB-747EDD01CEFB}] => (Allow) D:\Spiele\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{98F95051-3DCF-440C-9AE9-E94D278E79EB}] => (Allow) D:\Spiele\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{B8E9E7A8-22E9-46D2-B15A-2616ACBE94FF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{E3458C9D-9AD5-42D0-8D36-940F11B65F9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [UDP Query User{F5D0F458-A64A-4AAC-88D7-6DB7D0B66659}C:\programdata\battle.net\agent\agent.beta.2753\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.beta.2753\agent.exe
FirewallRules: [TCP Query User{26D928E9-F98F-40D1-A2AE-23E28514F798}C:\programdata\battle.net\agent\agent.beta.2753\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.beta.2753\agent.exe
FirewallRules: [{15789D71-645E-40BA-A62F-658AE5200343}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{A7964258-CEEC-492B-89D8-9130CD0587CC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{E8E042D8-E451-44F8-82FA-536CB3D94352}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{4A5DB823-6EE7-455F-A4B4-66B5A92E1DAC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [UDP Query User{C7336522-0718-4032-B21C-44DAB4327448}C:\steam\dayz\dayz.exe] => (Allow) C:\steam\dayz\dayz.exe
FirewallRules: [TCP Query User{0E4CC603-C65B-4D8A-9395-77790EFC0784}C:\steam\dayz\dayz.exe] => (Allow) C:\steam\dayz\dayz.exe
FirewallRules: [{E52FDDF5-AC5F-464C-A17A-6D47A3EB837E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{BF657D00-BF2C-4E0D-B45C-68D76EB62355}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{3E09C03A-4152-4866-8740-9436C209C174}] => (Allow) D:\Spiele\Steam\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{229F2905-9307-4961-B2F4-EEB6BE81AAE4}] => (Allow) D:\Spiele\Steam\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{0E12E7A7-B93C-4E19-B9B7-6095AF6767F1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{9A7C1B98-4563-4D9C-BAB1-247FB5423C24}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{02077CB4-DEE6-45F8-9434-2E73F92525A4}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{9F8489F4-D6C3-45C7-A2F1-E8D675DAD137}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{E5AD670E-B9DC-4C91-A919-746F255CF8A1}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{D8D7A9A1-B3A6-4931-9103-5F103D19E2C7}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{FE67CB5F-9D76-4332-8418-D9684CBAAF40}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{17802179-CA10-493D-89B9-93EDC204577E}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{E46B9AE6-F4BC-4DDC-A396-475B489DD224}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{7946B31A-3D86-4532-8C59-B2608D2F5089}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{1BFB075B-45D6-4E2A-85A9-291CD184C82D}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{4963AD04-0B6C-4175-BDC5-D89A44D8BBE8}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{9285C295-959E-446A-A96B-12113128E64F}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{4C509833-4E81-4B7D-9786-A86864E79778}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{C921C817-C4BD-46C0-B066-1FE300EA2322}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{8759A254-2AFE-4E31-912C-C534E6F5F517}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{78C7F32C-24C4-45B6-8186-FD812927A836}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{4DCD9165-0CDD-43E8-89E4-C09A2AFEC4F6}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{AD04575E-BD2A-49DC-8256-0902D8205E44}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{005CA57C-0C3A-47D0-8BF8-250011EEADDB}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{BFA46502-EAF1-45ED-903C-835E538F931F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{86B7401E-8AB8-447F-BEA3-F5DD0CDF19CA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{E1FA138B-3E50-44DE-AFE2-901A23E91FD9}] => (Allow) D:\Spiele\Steam\SteamApps\common\Magic 2014\DotP_D14.exe
FirewallRules: [{3D77A983-461C-4A06-BDE7-A19AD55B4DD8}] => (Allow) D:\Spiele\Steam\SteamApps\common\Magic 2014\DotP_D14.exe
FirewallRules: [{EF868012-A3C8-4B3F-979D-4580606B6089}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{05C433B1-045D-4649-9FE8-AA33A16A6681}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{E93BF174-DA47-4A48-9243-942B83AF5711}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{74B20526-C704-4197-B388-4CC6E61A0C1C}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{65CA368D-AA79-49E2-99A8-3734AD9636F2}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{C7F5C892-26AC-492E-AF4B-B91D56F57A5C}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{A2BBD7E9-1467-4104-9099-CD811030CD9C}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{8BEDEFB4-D4DD-49DB-AF32-02BC67C7F08E}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{05890CEC-27A6-4394-90E0-BB59AF447910}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{2B1DAD53-06C0-466F-9E22-55FA34F4F7C1}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{A0FFBA22-BA61-4766-8CA9-F76115D3ABC2}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{33EC2108-E97A-4AA1-BD77-5008A89FC222}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{18B2ED39-6F83-4A48-8D68-DC86F3330C75}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{F7B00440-33F6-4F71-976D-3587989F807C}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{3303FDE8-CEFC-452C-B250-A1DB46463A31}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{7BB0851D-6A74-42EB-A886-3DD13A42722B}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{8F403FA8-32ED-4220-B599-037F2278A985}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{D6C0EDC8-5443-432D-B927-A42C0252C284}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{45D8D20D-013A-4430-8691-DF5DB7BB3C5B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{44B570B6-8F9C-49AC-8F60-141064742DDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B63F0017-2F7E-41CE-B2BB-357A5923027F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3FEAF7FE-3E22-4EC7-A31F-206284E9E1CA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{592D499E-5BC0-476C-A7C2-512F75587FD3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F7500448-256C-4CF4-921E-F82C761ED2EB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{9B47F7B1-0285-4904-8D57-52FDC09473D8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{B9EA31C3-7A77-4730-9AA5-8E0C39EEF0C4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{B7A18863-2979-473F-980B-236D675FB059}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{B9E397A5-6684-438B-A818-1DF8C61E9B38}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{D2FFE9DA-6BEA-4700-A64E-D9652A604C6C}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{11C01E43-C6A3-487F-98FC-F8720A67124B}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{CF1307F5-73F8-47A0-8567-8409FD73B1D9}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{44789199-E0E1-4D74-9AA9-927C61BEBF41}] => (Allow) D:\Spiele\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{F2545E51-0152-4CD8-9DDD-4070AF02854B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6BDCEACE-97D2-4073-9739-91AA434DA97A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A7CDDBE0-F603-4ED4-BD35-F587C8055EBB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{A093B23A-34C2-4679-B293-D93929427E28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [UDP Query User{09D3B12E-1D64-4720-9738-808B2BB03418}D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe] => (Allow) D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe
FirewallRules: [TCP Query User{1E242760-BA70-462B-8804-2B2DD000B617}D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe] => (Allow) D:\spiele\capsule\capsulegames\the witcher ii assassins of kings - pc\bin\witcher2.exe
FirewallRules: [{A7ED935A-F3EC-42F6-BFD7-2BECCA4668BD}] => (Allow) D:\Spiele\Steam\SteamApps\common\Spelunky\Spelunky.exe
FirewallRules: [{A9CBEE33-4680-41F4-B98A-79F7E51310D2}] => (Allow) D:\Spiele\Steam\SteamApps\common\Spelunky\Spelunky.exe
FirewallRules: [{AAE2CD6D-47F5-408E-A3CA-675F1053E35C}] => (Allow) D:\Spiele\Steam\SteamApps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{66A06236-BF4D-4C8A-91D8-1036C1CED3C5}] => (Allow) D:\Spiele\Steam\SteamApps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{5E7713F5-7BBD-4363-9B96-0C255F7D2E3D}] => (Allow) D:\Spiele\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe
FirewallRules: [{D623BF2F-54FC-4366-84B2-1CAC8D46AACA}] => (Allow) D:\Spiele\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe
FirewallRules: [UDP Query User{9ECD126D-32EB-4A1F-9489-25F4A7842E71}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{66FE9211-BCCF-4D46-BFE7-8A2DF6DCC740}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{34AB8C0E-5E53-439E-945C-0A955A44B729}D:\spiele\steam\steam.exe] => (Allow) D:\spiele\steam\steam.exe
FirewallRules: [TCP Query User{F0114F43-EF09-4068-9E8B-99DE01B36196}D:\spiele\steam\steam.exe] => (Allow) D:\spiele\steam\steam.exe
FirewallRules: [UDP Query User{B520E170-4F76-4BC5-A52D-FB024EEF4451}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [TCP Query User{5C786FE9-C1E2-4B8A-B90E-6B8D503599A0}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [UDP Query User{A9C1AB2D-4EB1-4FFF-BF4F-6A34049E98AA}C:\steam\total war rome ii\rome2.exe] => (Allow) C:\steam\total war rome ii\rome2.exe
FirewallRules: [TCP Query User{8F8759CE-CB68-4E5B-8674-F698BF887F6D}C:\steam\total war rome ii\rome2.exe] => (Allow) C:\steam\total war rome ii\rome2.exe
FirewallRules: [{9F1CCF75-75D5-46FC-B93F-A8C688C0CD17}] => (Allow) C:\Steam\Total War Rome II\launcher\launcher.exe
FirewallRules: [{B7600AF9-C7D4-4B5D-81ED-C091D5432314}] => (Allow) C:\Steam\Total War Rome II\launcher\launcher.exe
FirewallRules: [{F9AC4827-BB5D-4839-AA25-366ECF0B46D9}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{6865C0BD-E5FB-4EE7-A14C-6BC7ADC5AF5E}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{CDE2447B-D5E2-4DBE-8C94-F911A02C6F62}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{0B4EBB85-0C1D-4E89-8CE1-83B826995FED}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{0512736B-D209-4A68-9032-8F1E5EBC5663}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{F19E59A1-2DF8-4F3D-9B53-F93106C90DF2}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{3130F182-68CD-449D-A804-A997F2261D73}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{0D67BF69-771F-4CC6-B60E-FE209BC5D2AA}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{8BE9C610-6900-4DC0-ABAD-CB4AC37F2188}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\launcher\launcher.exe
FirewallRules: [{27CF53A7-4C2D-447E-B96F-CA6BFAACB147}] => (Allow) D:\Spiele\Steam\SteamApps\common\Total War SHOGUN 2\launcher\launcher.exe
FirewallRules: [{3A2FD336-EDBD-40E1-B06A-24C24C50670E}] => (Allow) D:\Spiele\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe
FirewallRules: [{18E3DFF2-8E7F-4F8D-B17D-9CEFEF9410D2}] => (Allow) D:\Spiele\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe
FirewallRules: [UDP Query User{14B7CD50-9E78-45C7-B322-B12F8E02D065}C:\steam\total war rome ii\rome2.exe] => (Allow) C:\steam\total war rome ii\rome2.exe
FirewallRules: [TCP Query User{153FC93A-87EC-47B0-9686-645FBEB20530}C:\steam\total war rome ii\rome2.exe] => (Allow) C:\steam\total war rome ii\rome2.exe
FirewallRules: [UDP Query User{9F485F74-1D47-45B3-8AFD-61787933B854}D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [TCP Query User{53CA6491-A5DE-489E-9250-55D4291DBB2E}D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) D:\spiele\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [{D0AB18AF-7B1B-40D8-A1DD-648716E7511F}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{6FD1367F-BE5F-445D-9450-6288750D57E0}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
FirewallRules: [{02753EB8-721E-4F3C-A12C-34C33645F4AA}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\DeviceSetup.exe
FirewallRules: [{8478B8DE-38F7-4608-B84F-15A89CCCF4D7}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\SendAFax.exe
FirewallRules: [{8D209263-84F7-4FE6-B69E-868302C09FD2}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\DigitalWizards.exe
FirewallRules: [{3827FB5E-BF15-4667-9A6F-FF5A3112D939}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\FaxApplications.exe
FirewallRules: [{7DB26FD5-0ED8-4977-B3AE-74BC78F74905}] => (Allow) D:\Spiele\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{B9C5D61E-29CD-43E9-9445-093116FC9FC8}] => (Allow) D:\Spiele\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{20947C9C-C050-4E24-ACE3-A9192112A63A}] => (Allow) D:\Spiele\Steam\SteamApps\common\Hitman Absolution\HMA.exe
FirewallRules: [{3555AFC8-175C-4A2E-B148-CC93257FCED2}] => (Allow) D:\Spiele\Steam\SteamApps\common\Hitman Absolution\HMA.exe
FirewallRules: [{D0D54C33-B40E-4A4D-BBA6-C10B67E8D7D7}] => (Allow) D:\Spiele\Steam\SteamApps\common\Deus Ex - Human Revolution\dxhr.exe
FirewallRules: [{88F4AE15-7AAB-4B72-BEC4-9C72D67F7A88}] => (Allow) D:\Spiele\Steam\SteamApps\common\Deus Ex - Human Revolution\dxhr.exe
FirewallRules: [UDP Query User{10132D8F-7597-4747-9782-0BFFDD89409C}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [TCP Query User{7B5AAE01-E32C-41F9-85E7-F96EAD837CB8}D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\spiele\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{05E2912F-1FB3-4D2D-B26F-731F9C4972A1}] => (Allow) D:\Spiele\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{E9182879-663A-4583-AC43-287F507628A2}] => (Allow) D:\Spiele\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{F4512911-456B-4408-9148-46ED2516F2E2}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{DB1D0129-9430-4B7A-A461-18021DEE16BD}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{CB685B40-307C-4D72-82A9-2C5D9C1300FD}] => (Allow) D:\Spiele\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{15548B49-43E5-471A-931A-2699DE5B0C2A}] => (Allow) D:\Spiele\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{95590C03-1640-4DFA-88D5-77BEC88C5CAB}] => (Allow) D:\Spiele\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{62EE0961-BA3D-4D95-9334-21F2BADA5749}] => (Allow) D:\Spiele\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{BB5826E7-2A22-4527-A02E-B9188881C9CC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{522D8F47-7A69-4C86-8D0A-3B96A5BA7490}] => (Allow) D:\Spiele\Steam\Steam.exe
FirewallRules: [{5A635D4F-1529-4FD1-87C0-0B9C1FAAA69A}] => (Allow) D:\Spiele\Steam\Steam.exe
FirewallRules: [{347A10AF-F98B-4779-B70B-3F025D418E11}] => (Allow) D:\Dateien\uTorrent\uTorrent.exe
FirewallRules: [{CF3A864B-8FB3-4AA1-A68D-7373BD05BB5D}] => (Allow) D:\Dateien\uTorrent\uTorrent.exe
FirewallRules: [{CAE2BF93-7E85-46CB-9CEA-5A4A49612521}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{C72CC072-C3AB-4D93-AE47-0CC79584F85E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{688477AC-2BC2-432D-BB5F-610B8EE78714}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{7E712ACE-081E-4A1D-A7DB-1DA6AA724707}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{F4ED5D7F-A38F-4D71-BF80-C1EEA149F559}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{DC2D9DB8-5B41-4D64-9AB6-C65C58B1EC1F}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{72C456E5-DAA4-431D-9980-04CFD84D8BE1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{6CFE4AB8-AACC-4D53-BDE9-4B7B1DC85A49}D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe
FirewallRules: [UDP Query User{70BA62A2-5F2E-4255-A782-5AC9112EBBCF}D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe] => (Allow) D:\spiele\starcraft ii - legacy of the void beta\versions\base37164\sc2_x64.exe
FirewallRules: [{C8F2300C-DFA2-4270-8E8F-A07F00192E4C}] => (Allow) D:\Spiele\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{D9575063-E67C-4168-A0F9-EC0C4BA3A36D}] => (Allow) D:\Spiele\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{C3F3315C-1356-4F3B-9F77-FE5B9DE9966A}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveGame\Bin64_SteamRetail\Evolve.exe
FirewallRules: [{6C2CB2BE-9CBB-42C8-B541-075309D8621E}] => (Allow) D:\Spiele\Steam\SteamApps\common\EvolveGame\Bin64_SteamRetail\Evolve.exe
FirewallRules: [{FB27EE1E-1789-4ECE-B224-B3F27B5E82FE}] => (Allow) C:\Steam\DayZ\DayZ_BE.exe
FirewallRules: [{D8C55077-E30F-4B93-B5F6-02699B7E744F}] => (Allow) C:\Steam\DayZ\DayZ_BE.exe
FirewallRules: [{0A7AC2B9-D334-4A5F-BAD8-BBBA43FAEF85}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{4645DAC2-F3D9-474A-A7D9-B5F5D59E5881}] => (Allow) D:\Spiele\Steam\SteamApps\common\Crazy Machines 2\cm2.exe
FirewallRules: [{2DF53158-848F-4AA9-A2B1-B2172D1FFA34}] => (Allow) D:\Spiele\Steam\SteamApps\common\Crazy Machines 2\cm2.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/22/2015 10:30:27 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (09/22/2015 08:03:05 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (09/22/2015 08:01:58 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (09/22/2015 08:01:54 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (09/22/2015 07:42:55 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (09/22/2015 07:42:54 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (09/22/2015 07:42:53 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (09/22/2015 07:38:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: xInsIDE.exe, Version: 0.0.0.0, Zeitstempel: 0x45ff80e2
Name des fehlerhaften Moduls: xInsIDE.exe, Version: 0.0.0.0, Zeitstempel: 0x45ff80e2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000257b
ID des fehlerhaften Prozesses: 0xbf0
Startzeit der fehlerhaften Anwendung: 0xxInsIDE.exe0
Pfad der fehlerhaften Anwendung: xInsIDE.exe1
Pfad des fehlerhaften Moduls: xInsIDE.exe2
Berichtskennung: xInsIDE.exe3
Vollständiger Name des fehlerhaften Pakets: xInsIDE.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: xInsIDE.exe5
Error: (09/22/2015 12:22:55 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SOL-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (09/21/2015 07:57:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: xInsIDE.exe, Version: 0.0.0.0, Zeitstempel: 0x45ff80e2
Name des fehlerhaften Moduls: xInsIDE.exe, Version: 0.0.0.0, Zeitstempel: 0x45ff80e2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000257b
ID des fehlerhaften Prozesses: 0x1f54
Startzeit der fehlerhaften Anwendung: 0xxInsIDE.exe0
Pfad der fehlerhaften Anwendung: xInsIDE.exe1
Pfad des fehlerhaften Moduls: xInsIDE.exe2
Berichtskennung: xInsIDE.exe3
Vollständiger Name des fehlerhaften Pakets: xInsIDE.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: xInsIDE.exe5
Systemfehler:
=============
Error: (09/22/2015 08:03:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (09/22/2015 08:03:39 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\DIEFAC~1\AppData\Local\Temp\ehdrv.sys
Error: (09/22/2015 08:03:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (09/22/2015 08:03:39 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\DIEFAC~1\AppData\Local\Temp\ehdrv.sys
Error: (09/22/2015 08:03:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (09/22/2015 08:03:39 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\DIEFAC~1\AppData\Local\Temp\ehdrv.sys
Error: (09/22/2015 08:03:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (09/22/2015 08:03:39 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\DIEFAC~1\AppData\Local\Temp\ehdrv.sys
Error: (09/22/2015 08:03:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (09/22/2015 08:03:38 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\DIEFAC~1\AppData\Local\Temp\ehdrv.sys
==================== Speicherinformationen ===========================
Prozessor: AMD Phenom(tm) II X4 955 Processor
Prozentuale Nutzung des RAM: 44%
Installierter physikalischer RAM: 8188.52 MB
Verfügbarer physikalischer RAM: 4508.34 MB
Summe virtueller Speicher: 16380.52 MB
Verfügbarer virtueller Speicher: 11814.21 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:31.3 GB) NTFS
Drive d: () (Fixed) (Total:931.41 GB) (Free:293.95 GB) NTFS
Drive e: (Civilization Beyond Earth) (CDROM) (Total:2.88 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 6B841FED)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 9DEED671)
Partition 1: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
23.09.2015, 10:54
| #15 |
| /// Malwareteam | Malware Befall? Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter closeprocesses:
C:\Users\dieFackel\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279 - CHIP-Installer.exe
C:\Users\dieFackel\Downloads\Core-Temp-installer.exe
C:\Users\dieFackel\Downloads\LogMeIn Hamachi - CHIP-Installer.exe
C:\Users\dieFackel\Downloads\MemTest - CHIP-Installer.exe
HKLM-x32\...\Run: [] => [X]
Toolbar: HKLM - Kein Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Keine Datei
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1)%20%7B%20return%20'PROXY%20nq-us09.personalitycores.com%3A8000%3B%20PROXY%20nq-us08.personalitycores.com%3A8000%3B%20PROXY%20nq-us07.personalitycores.com%3A8000%3B%20PROXY%20nq-us04.personalitycores.com%3A8000%3B%20PROXY%20nq-us05.personalitycores.com%3A8000%3B%20PROXY%20nq-us06.personalitycores.com%3A8000%3B%20PROXY%20nq-us12.personalitycores.com%3A8000%3B%20PROXY%20nq-us11.personalitycores.com%3A8000%3B%20PROXY%20nq-us10.personalitycores.com%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "type", 2
removeproxy:
Task: {007FD569-54C3-49A3-8253-0E0F395482D0} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {12D881B8-E734-416A-A028-6015E7EC6595} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {150F6739-4D66-4199-B9E0-4A6036F6D1E3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {377E7CDC-2A35-4D14-A9D8-49128516DB1A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {44FE11CF-3C38-40A3-9493-A4A49EA471C3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {4DA4623F-2143-4DED-8840-199F2039EC86} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {537EDD82-D044-4E4B-A66C-5101874B229E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {5F71DF05-892E-400C-BCFA-20C877FF8FFB} - \ASP -> Keine Datei <==== ACHTUNG
Task: {75DD3EDE-5FD2-4C70-8102-FF1C5D38B12A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {8928D6C7-7F61-40AF-BCCC-7B0E5D089856} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {E2822C6F-6FA1-4C79-8CBA-E875A3523E86} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {F4ED529C-8F47-43CD-92D4-0FB6C947774B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
emptytemp:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 2 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Scan Frage Wie verhält sich den System jetzt so? Hat es sich verbessert? Bitte poste in deiner nächsten Antwort also:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
| Themen zu Malware Befall? |
| akamai, browser, converter, crystaldiskinfo, error, firefox, flash player, format, google, grand theft auto, homepage, iexplore.exe, install.exe, installation, logfile, malware, mozilla, officejet, realtek, recuva, registry, rundll, scan, security, software, tcp, teamspeak, updates, windows, yahoo search, zugriff verweigert |
dann auf 
und dann auf 
. 
Linear-Darstellung
