| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Grundreinigung PCWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
01.10.2015, 18:33
| #1 |
 |  Grundreinigung PC Hallo, ich bin mir nicht zu 100% sicher, ob ich hiermit hier richtig bin, aber das wird sich ja zeigen. Mein Grundanliegen ist, dass ich weiß, dass ich mich auf "ungünstigen" Seiten rumgetrieben habe und mir denke, dass es schon verwunderlich sein könnte, sollte ich mir dort nichts eingefangen haben. Dem möchte ich ein Ende machen und das Ganze mit einer Bereinigung meines PCs abschließen. Dennoch gibt es auch das ein oder andere "Symptom", dass mir komisch vorkommt, bei dem ich mir aber absolut nicht sicher bin, ob das an Schadsoftware liegen kann, oder nicht vielleicht doch an was ganz anderem. Internet: Sporadische DSL-Synchverluste. Die Internetverbindung ist für ca. eine Minute weg und dann verbindet sich der Router neu, oft mit einer stark schwankenden Geschwindigkeit. Sporadisch heisst: Mal 20x am Tag. Mal 6 Monate lang gar nicht. Wirklich nachvollziehbar ist das nicht. Kabel, Router etc. wurden schon vom Provider (M-Net) getauscht. Es war vor kurzem zum 3. Mal ein Techniker hier, der sich das Ganze angeguckt und die Leitung geprüft, aber nichts gefunden hat. Mein Einwand, dass die Leitung für jede Minute, die sie rumspackt ja auch selbst an schlechten Tagen gut 1 Stunde "sauber" läuft, wurde gekonnt weggewischt, zurecht? Ich habe eine Seite in Verdacht, bei deren Besuchen die Probleme häufiger auftraten. Vielleicht ist es aber auch nur Einbildung. Eine Statistik habe ich nicht geführt. Zu den Internetproblemen würde möglicherweise passen, dass ich gehäuft Probleme mit Streamingdiensten (Amazon Instant Video, Youtube, Netflix) habe. Meist bleibt das Bild(!) des Streams nach 20-40Minuten hängen und die Seite muss neu geladen werden. Ein MTB Log habe ich mal angehangen. Schönen Gruß Krwasch Code:
ATTFilter MiniToolBox by Farbar Version: 25-07-2015 01
Ran by Thorp (ATTENTION: The logged in user is not administrator) on 01-10-2015 at 19:08:03
Running from "C:\Users\Thorp\Downloads"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Model: H87-HD3 Manufacturer: Gigabyte Technology Co., Ltd.
Boot Mode: Normal
***************************************************************************
========================= Flush DNS: ===================================
Windows-IP-Konfiguration
Der DNS-Aufl�sungscache wurde geleert.
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= FF Proxy Settings: ==============================
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
========================= Hosts content: =================================
========================= IP Configuration: ================================
Realtek PCIe GBE Family Controller = LAN-Verbindung (Connected)
# ----------------------------------
# IPv4-Konfiguration
# ----------------------------------
pushd interface ipv4
reset
set global icmpredirects=enabled
popd
# Ende der IPv4-Konfiguration
Windows-IP-Konfiguration
Hostname . . . . . . . . . . . . : Superthorpania
Prim�res DNS-Suffix . . . . . . . :
Knotentyp . . . . . . . . . . . . : Hybrid
IP-Routing aktiviert . . . . . . : Nein
WINS-Proxy aktiviert . . . . . . : Nein
DNS-Suffixsuchliste . . . . . . . : fritz.box
Ethernet-Adapter LAN-Verbindung:
Verbindungsspezifisches DNS-Suffix: fritz.box
Beschreibung. . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physikalische Adresse . . . . . . : 74-D4-35-88-34-9E
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
IPv6-Adresse. . . . . . . . . . . : 2001:a62:1027:7d01:6c08:f4ca:8ec9:c88a(Bevorzugt)
IPv6-Adresse. . . . . . . . . . . : fd00::6c08:f4ca:8ec9:c88a(Bevorzugt)
Tempor�re IPv6-Adresse. . . . . . : 2001:a62:1027:7d01:d042:1d56:8cb1:d6fa(Bevorzugt)
Tempor�re IPv6-Adresse. . . . . . : fd00::d042:1d56:8cb1:d6fa(Bevorzugt)
Verbindungslokale IPv6-Adresse . : fe80::6c08:f4ca:8ec9:c88a%10(Bevorzugt)
IPv4-Adresse . . . . . . . . . . : 192.168.178.21(Bevorzugt)
Subnetzmaske . . . . . . . . . . : 255.255.255.0
Lease erhalten. . . . . . . . . . : Donnerstag, 1. Oktober 2015 17:24:45
Lease l�uft ab. . . . . . . . . . : Sonntag, 11. Oktober 2015 17:24:45
Standardgateway . . . . . . . . . : fe80::a96:d7ff:feb4:8f70%10
192.168.178.1
DHCP-Server . . . . . . . . . . . : 192.168.178.1
DHCPv6-IAID . . . . . . . . . . . : 242537525
DHCPv6-Client-DUID. . . . . . . . : 00-01-00-01-1C-55-28-8B-74-D4-35-88-34-9E
DNS-Server . . . . . . . . . . . : fd00::a96:d7ff:feb4:8f70
192.168.178.1
NetBIOS �ber TCP/IP . . . . . . . : Aktiviert
Tunneladapter isatap.fritz.box:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix: fritz.box
Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Tunneladapter Teredo Tunneling Pseudo-Interface:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Server: fritz.box
Address: fd00::a96:d7ff:feb4:8f70
Name: google.com
Addresses: 2a00:1450:4016:805::200e
88.217.135.53
88.217.135.57
88.217.135.49
88.217.135.31
88.217.135.46
88.217.135.42
88.217.135.59
88.217.135.38
88.217.135.35
88.217.135.48
88.217.135.26
88.217.135.24
88.217.135.37
88.217.135.27
88.217.135.20
88.217.135.16
Ping wird ausgef�hrt f�r google.com [2a00:1450:4016:805::200e] mit 32 Bytes Daten:
Antwort von 2a00:1450:4016:805::200e: Zeit=40ms
Antwort von 2a00:1450:4016:805::200e: Zeit=40ms
Ping-Statistik f�r 2a00:1450:4016:805::200e:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 40ms, Maximum = 40ms, Mittelwert = 40ms
Server: fritz.box
Address: fd00::a96:d7ff:feb4:8f70
Name: yahoo.com
Addresses: 2001:4998:44:204::a7
2001:4998:c:a06::2:4008
2001:4998:58:c02::a9
98.139.183.24
206.190.36.45
98.138.253.109
Ping wird ausgef�hrt f�r yahoo.com [2001:4998:44:204::a7] mit 32 Bytes Daten:
Zeit�berschreitung der Anforderung.
Antwort von 2001:4998:44:204::a7: Zeit=162ms
Ping-Statistik f�r 2001:4998:44:204::a7:
Pakete: Gesendet = 2, Empfangen = 1, Verloren = 1
(50% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 162ms, Maximum = 162ms, Mittelwert = 162ms
Ping wird ausgef�hrt f�r 127.0.0.1 mit 32 Bytes Daten:
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Ping-Statistik f�r 127.0.0.1:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 0ms, Maximum = 0ms, Mittelwert = 0ms
===========================================================================
Schnittstellenliste
10...74 d4 35 88 34 9e ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
13...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
IPv4-Routentabelle
===========================================================================
Aktive Routen:
Netzwerkziel Netzwerkmaske Gateway Schnittstelle Metrik
0.0.0.0 0.0.0.0 192.168.178.1 192.168.178.21 10
127.0.0.0 255.0.0.0 Auf Verbindung 127.0.0.1 306
127.0.0.1 255.255.255.255 Auf Verbindung 127.0.0.1 306
127.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
192.168.178.0 255.255.255.0 Auf Verbindung 192.168.178.21 266
192.168.178.21 255.255.255.255 Auf Verbindung 192.168.178.21 266
192.168.178.255 255.255.255.255 Auf Verbindung 192.168.178.21 266
224.0.0.0 240.0.0.0 Auf Verbindung 127.0.0.1 306
224.0.0.0 240.0.0.0 Auf Verbindung 192.168.178.21 266
255.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
255.255.255.255 255.255.255.255 Auf Verbindung 192.168.178.21 266
===========================================================================
St�ndige Routen:
Keine
IPv6-Routentabelle
===========================================================================
Aktive Routen:
If Metrik Netzwerkziel Gateway
10 26 ::/0 fe80::a96:d7ff:feb4:8f70
1 306 ::1/128 Auf Verbindung
10 18 2001:a62:1027:7d01::/64 Auf Verbindung
10 26 2001:a62:1027:7d01::/64 fe80::a96:d7ff:feb4:8f70
10 266 2001:a62:1027:7d01:6c08:f4ca:8ec9:c88a/128
Auf Verbindung
10 266 2001:a62:1027:7d01:d042:1d56:8cb1:d6fa/128
Auf Verbindung
10 18 fd00::/64 Auf Verbindung
10 26 fd00::/64 fe80::a96:d7ff:feb4:8f70
10 266 fd00::6c08:f4ca:8ec9:c88a/128
Auf Verbindung
10 266 fd00::d042:1d56:8cb1:d6fa/128
Auf Verbindung
10 266 fe80::/64 Auf Verbindung
10 266 fe80::6c08:f4ca:8ec9:c88a/128
Auf Verbindung
1 306 ff00::/8 Auf Verbindung
10 266 ff00::/8 Auf Verbindung
===========================================================================
St�ndige Routen:
Keine
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
========================= Event log errors: ===============================
Application errors:
==================
Error: (10/01/2015 05:37:20 PM) (Source: MsiInstaller) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/30/2015 08:06:16 PM) (Source: MsiInstaller) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/29/2015 06:21:12 PM) (Source: MsiInstaller) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/29/2015 08:29:20 AM) (Source: MsiInstaller) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/28/2015 11:35:16 PM) (Source: MsiInstaller) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/28/2015 04:46:22 PM) (Source: MsiInstaller) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/28/2015 05:48:15 AM) (Source: MsiInstaller) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/27/2015 10:57:47 AM) (Source: MsiInstaller) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/26/2015 01:27:07 PM) (Source: MsiInstaller) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/25/2015 02:51:42 PM) (Source: MsiInstaller) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
System errors:
=============
Error: (09/12/2015 07:33:30 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 12.09.2015 um 19:32:50 unerwartet heruntergefahren.
Error: (09/09/2015 05:49:31 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.
Error: (08/21/2015 04:46:07 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/21/2015 04:46:07 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (08/13/2015 06:30:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/13/2015 06:30:11 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (08/02/2015 03:39:25 AM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (07/24/2015 10:46:25 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/24/2015 10:46:25 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (07/23/2015 05:09:47 PM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Microsoft Office Sessions:
=========================
Error: (10/01/2015 05:37:20 PM) (Source: MsiInstaller)(User: Superthorpania)
Description: Adobe Reader XI (11.0.11) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (09/30/2015 08:06:16 PM) (Source: MsiInstaller)(User: Superthorpania)
Description: Adobe Reader XI (11.0.11) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (09/29/2015 06:21:12 PM) (Source: MsiInstaller)(User: Superthorpania)
Description: Adobe Reader XI (11.0.11) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (09/29/2015 08:29:20 AM) (Source: MsiInstaller)(User: Superthorpania)
Description: Adobe Reader XI (11.0.11) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (09/28/2015 11:35:16 PM) (Source: MsiInstaller)(User: Superthorpania)
Description: Adobe Reader XI (11.0.11) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (09/28/2015 04:46:22 PM) (Source: MsiInstaller)(User: Superthorpania)
Description: Adobe Reader XI (11.0.11) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (09/28/2015 05:48:15 AM) (Source: MsiInstaller)(User: Superthorpania)
Description: Adobe Reader XI (11.0.11) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (09/27/2015 10:57:47 AM) (Source: MsiInstaller)(User: Superthorpania)
Description: Adobe Reader XI (11.0.11) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (09/26/2015 01:27:07 PM) (Source: MsiInstaller)(User: Superthorpania)
Description: Adobe Reader XI (11.0.11) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
Error: (09/25/2015 02:51:42 PM) (Source: MsiInstaller)(User: Superthorpania)
Description: Adobe Reader XI (11.0.11) - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011012}1625(NULL)(NULL)(NULL)
**** End of log ****
|
|
01.10.2015, 19:20
| #2 |
| /// the machine /// TB-Ausbilder    | Grundreinigung PC hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
01.10.2015, 20:00
| #3 |
| | Grundreinigung PC Moin,
__________________FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:30-09-2015 durchgeführt von Thorp (ACHTUNG: der Benutzer ist kein Administrator) auf SUPERTHORPANIA (01-10-2015 20:51:31) Gestartet von C:\Users\Thorp\Desktop\TB Geladene Profile: Superthorp & Thorp (Verfügbare Profile: Superthorp & Thorp) Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) konnte nicht auf den Prozess zugreifen -> smss.exe konnte nicht auf den Prozess zugreifen -> csrss.exe konnte nicht auf den Prozess zugreifen -> wininit.exe konnte nicht auf den Prozess zugreifen -> csrss.exe konnte nicht auf den Prozess zugreifen -> services.exe konnte nicht auf den Prozess zugreifen -> winlogon.exe konnte nicht auf den Prozess zugreifen -> lsass.exe konnte nicht auf den Prozess zugreifen -> lsm.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> atiesrxx.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> atieclxx.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> spoolsv.exe konnte nicht auf den Prozess zugreifen -> sched.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> armsvc.exe konnte nicht auf den Prozess zugreifen -> avguard.exe () C:\Windows\SysWOW64\HsMgr.exe () C:\Windows\system\HsMgr64.exe konnte nicht auf den Prozess zugreifen -> AppleMobileDeviceService.exe (Apple Inc.) D:\Programme\iTunes\iTunesHelper.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (CMedia) C:\Program Files\ASUS Xonar D1 Audio\Customapp\AsusAudioCenter.exe konnte nicht auf den Prozess zugreifen -> mDNSResponder.exe konnte nicht auf den Prozess zugreifen -> officeclicktorun.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> mbamscheduler.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe konnte nicht auf den Prozess zugreifen -> mbamservice.exe (Malwarebytes Corporation) D:\Programme\ Malwarebytes Anti-Malware \mbam.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> Avira.ServiceHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe konnte nicht auf den Prozess zugreifen -> avshadow.exe konnte nicht auf den Prozess zugreifen -> SearchIndexer.exe konnte nicht auf den Prozess zugreifen -> iPodService.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> svchost.exe konnte nicht auf den Prozess zugreifen -> wmpnetwk.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe konnte nicht auf den Prozess zugreifen -> TrustedInstaller.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] () HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] () HKLM\...\Run: [iTunesHelper] => D:\Programme\iTunes\iTunesHelper.exe [169768 2015-04-07] (Apple Inc.) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782520 2015-09-26] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66936 2015-08-13] (Avira Operations GmbH & Co. KG) HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \mbamdor.exe [54072 2015-04-14] (Malwarebytes Corporation) HKU\S-1-5-21-2072509774-729216835-2019632087-1001\...\Run: [DAEMON Tools Lite Automount] => "D:\Programme\DAEMON Tools Lite\DTAgent.exe" -autorun HKU\S-1-5-21-2072509774-729216835-2019632087-1001\...\MountPoints2: {3fa4cdb3-a4e6-11e4-86b7-806e6f6e6963} - F:\scct_launcher.exe HKU\S-1-5-21-2072509774-729216835-2019632087-1001\...\MountPoints2: {9e4b4e64-0304-11e5-b8b8-74d43588349e} - H:\FalloutLauncher.exe ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{D33AB31F-E9B9-45B2-9D48-3D6BAD852C94}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{E3A77279-FB37-4D02-9365-28DFD49AFB55}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKU\S-1-5-21-2072509774-729216835-2019632087-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp URLSearchHook: [S-1-5-21-2072509774-729216835-2019632087-1000] ACHTUNG => Standard URLSearchHook fehlt BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-09-11] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-09-11] (Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-09-12] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Thorp\AppData\Roaming\Mozilla\Firefox\Profiles\hteNUKfi.default FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-31] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.) FF Extension: Avira Browser Safety - C:\Users\Thorp\AppData\Roaming\Mozilla\Firefox\Profiles\hteNUKfi.default\Extensions\abs@avira.com [2015-01-24] Chrome: ======= CHR HomePage: Default -> hxxp://de.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:de:official CHR Profile: C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (ProxFlow) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-01-24] CHR Extension: (Google Präsentationen) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-24] CHR Extension: (Google Docs) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-24] CHR Extension: (Google Drive) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-24] CHR Extension: (YouTube) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-24] CHR Extension: (Google-Suche) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-24] CHR Extension: (Google Tabellen) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-24] CHR Extension: (Google Text & Tabellen Offline) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-04] CHR Extension: (AdBlock) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-01-24] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12] CHR Extension: (Flashcontrol) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidmkgnfgnkihnjeklbekckimkipmoe [2015-08-11] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-24] CHR Extension: (Google Mail) - C:\Users\Thorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-24] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [932912 2015-09-26] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672 2015-09-26] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672 2015-09-26] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1148688 2015-09-26] (Avira Operations GmbH & Co. KG) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [228104 2015-08-13] (Avira Operations GmbH & Co. KG) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1128448 2015-07-27] () R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2774104 2015-09-11] (Microsoft Corporation) R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 lmhosts; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Corporation) R2 MBAMScheduler; D:\Programme\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation) R2 MBAMService; D:\Programme\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 NlaSvc; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Corporation) R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 nsi; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [163544 2015-09-26] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-08-01] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-11-24] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [74952 2015-09-26] (Avira Operations GmbH & Co. KG) R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2734080 2013-04-11] (C-Media Inc) S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-05-25] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-10-29] (Intel Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-26] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation) S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [762472 2011-07-06] (Realtek Semiconductor Corporation ) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-01 20:51 - 2015-10-01 20:51 - 00000000 ____D C:\FRST 2015-10-01 19:11 - 2015-10-01 19:11 - 03908184 _____ (Crystal Dew World ) C:\Users\Thorp\Downloads\CrystalDiskInfo6_5_2-en.exe 2015-10-01 19:10 - 2015-10-01 20:51 - 00000000 ____D C:\Users\Thorp\Desktop\TB 2015-09-20 23:23 - 2015-09-20 23:23 - 06970488 _____ (Wargaming.net ) C:\Users\Thorp\Downloads\WoWS_internet_install_eu.exe 2015-09-17 18:55 - 2015-09-17 18:55 - 00000827 _____ C:\Users\Thorp\Desktop\Pen & Paper.lnk 2015-09-15 20:48 - 2015-09-15 20:48 - 00011864 _____ C:\Users\Thorp\Downloads\pdf+ATN-Berwerbung.odt 2015-09-09 17:27 - 2015-08-18 03:42 - 00393304 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-09-09 17:27 - 2015-08-18 03:14 - 00344168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-09-09 17:27 - 2015-08-15 08:48 - 25190400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-09-09 17:27 - 2015-08-15 08:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-09-09 17:27 - 2015-08-15 08:33 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-09-09 17:27 - 2015-08-15 08:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-09-09 17:27 - 2015-08-15 08:18 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-09-09 17:27 - 2015-08-15 08:17 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-09-09 17:27 - 2015-08-15 08:17 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-09-09 17:27 - 2015-08-15 08:17 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-09-09 17:27 - 2015-08-15 08:17 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-09-09 17:27 - 2015-08-15 08:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-09-09 17:27 - 2015-08-15 08:09 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-09-09 17:27 - 2015-08-15 08:06 - 19856896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-09-09 17:27 - 2015-08-15 08:06 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-09-09 17:27 - 2015-08-15 08:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-09-09 17:27 - 2015-08-15 08:04 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-09-09 17:27 - 2015-08-15 08:04 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-09-09 17:27 - 2015-08-15 08:04 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-09-09 17:27 - 2015-08-15 08:00 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-09-09 17:27 - 2015-08-15 07:57 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-09-09 17:27 - 2015-08-15 07:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-09-09 17:27 - 2015-08-15 07:53 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-09-09 17:27 - 2015-08-15 07:46 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-09-09 17:27 - 2015-08-15 07:42 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-09-09 17:27 - 2015-08-15 07:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-09-09 17:27 - 2015-08-15 07:40 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-09-09 17:27 - 2015-08-15 07:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-09-09 17:27 - 2015-08-15 07:39 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-09-09 17:27 - 2015-08-15 07:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-09-09 17:27 - 2015-08-15 07:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-09-09 17:27 - 2015-08-15 07:38 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-09-09 17:27 - 2015-08-15 07:35 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-09-09 17:27 - 2015-08-15 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-09-09 17:27 - 2015-08-15 07:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-09-09 17:27 - 2015-08-15 07:30 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-09-09 17:27 - 2015-08-15 07:29 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-09-09 17:27 - 2015-08-15 07:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-09-09 17:27 - 2015-08-15 07:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-09-09 17:27 - 2015-08-15 07:24 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-09-09 17:27 - 2015-08-15 07:23 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-09-09 17:27 - 2015-08-15 07:22 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-09-09 17:27 - 2015-08-15 07:22 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-09-09 17:27 - 2015-08-15 07:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-09-09 17:27 - 2015-08-15 07:16 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-09-09 17:27 - 2015-08-15 07:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-09-09 17:27 - 2015-08-15 07:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-09-09 17:27 - 2015-08-15 07:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-09-09 17:27 - 2015-08-15 07:11 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-09-09 17:27 - 2015-08-15 07:10 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-09-09 17:27 - 2015-08-15 07:07 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-09-09 17:27 - 2015-08-15 07:04 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-09-09 17:27 - 2015-08-15 07:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-09-09 17:27 - 2015-08-15 07:01 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-09-09 17:27 - 2015-08-15 07:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-09-09 17:27 - 2015-08-15 06:55 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-09-09 17:27 - 2015-08-15 06:43 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-09-09 17:27 - 2015-08-15 06:43 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-09-09 17:27 - 2015-08-15 06:39 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-09-09 17:27 - 2015-08-15 06:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-09-09 17:03 - 2015-08-05 19:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2015-09-09 17:03 - 2015-08-05 19:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-09-09 17:03 - 2015-08-05 19:56 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll 2015-09-09 17:03 - 2015-08-05 19:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll 2015-09-09 17:01 - 2015-07-15 05:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2015-09-09 17:01 - 2015-07-15 04:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2015-09-09 17:01 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2015-09-09 17:01 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll 2015-09-09 17:01 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2015-09-09 17:01 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll 2015-09-09 16:57 - 2015-07-23 02:06 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-09-09 16:57 - 2015-07-23 02:06 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-09-09 16:57 - 2015-07-23 02:06 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-09-09 16:57 - 2015-07-23 02:03 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-09-09 16:57 - 2015-07-23 02:03 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-09-09 16:57 - 2015-07-23 02:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-09-09 16:57 - 2015-07-23 02:03 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-09-09 16:57 - 2015-07-23 02:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-09-09 16:57 - 2015-07-23 02:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-09-09 16:57 - 2015-07-23 02:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-09-09 16:57 - 2015-07-23 02:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-09-09 16:57 - 2015-07-23 02:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-09-09 16:57 - 2015-07-23 02:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-09-09 16:57 - 2015-07-23 01:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-09-09 16:57 - 2015-07-23 01:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:51 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-09-09 16:57 - 2015-07-22 19:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-09-09 16:57 - 2015-07-22 19:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-09-09 16:57 - 2015-07-22 19:54 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-09-09 16:57 - 2015-07-22 19:52 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-09-09 16:57 - 2015-07-22 19:52 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2015-09-09 16:57 - 2015-07-22 19:52 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-09-09 16:57 - 2015-07-22 19:52 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-09-09 16:57 - 2015-07-22 19:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-09-09 16:57 - 2015-07-22 19:52 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-09-09 16:57 - 2015-07-22 19:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-09-09 16:57 - 2015-07-22 19:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-09-09 16:57 - 2015-07-22 19:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-09-09 16:57 - 2015-07-22 18:45 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-09-09 16:57 - 2015-07-22 18:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-09-09 16:57 - 2015-07-22 18:44 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-09-09 16:57 - 2015-07-22 18:34 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-09-09 16:57 - 2015-07-22 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-09-09 16:57 - 2015-07-22 18:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 18:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 18:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 18:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-09-09 16:56 - 2015-09-02 05:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2015-09-09 16:56 - 2015-09-02 05:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-09-09 16:56 - 2015-09-02 05:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2015-09-09 16:56 - 2015-09-02 05:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2015-09-09 16:56 - 2015-09-02 04:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2015-09-09 16:56 - 2015-09-02 04:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2015-09-09 16:56 - 2015-09-02 04:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2015-09-09 16:56 - 2015-09-02 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2015-09-09 16:56 - 2015-09-02 03:51 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-09-09 16:56 - 2015-09-02 03:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-09-09 16:56 - 2015-09-02 03:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2015-09-09 16:56 - 2015-08-27 20:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2015-09-09 16:56 - 2015-08-27 20:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-09-09 16:56 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2015-09-09 16:56 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2015-09-09 16:56 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2015-09-09 16:56 - 2015-08-27 19:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2015-09-09 16:56 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll 2015-09-09 16:56 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2015-09-09 16:56 - 2015-08-04 20:03 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2015-09-09 16:56 - 2015-08-04 20:00 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2015-09-09 16:56 - 2015-08-04 19:56 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2015-09-09 16:56 - 2015-08-04 19:56 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2015-09-09 16:56 - 2015-08-04 19:56 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2015-09-09 16:56 - 2015-08-04 19:55 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2015-09-09 16:56 - 2015-08-04 19:55 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2015-09-09 16:56 - 2015-08-04 19:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2015-09-09 16:56 - 2015-08-04 18:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2015-09-09 16:56 - 2015-06-25 12:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2015-09-09 16:56 - 2015-06-25 12:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2015-09-09 16:56 - 2015-06-25 12:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2015-09-09 16:56 - 2015-06-25 11:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 03165696 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-09-09 16:55 - 2015-08-26 20:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-09-09 16:55 - 2015-08-26 20:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-09-09 16:55 - 2015-08-26 20:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-09-09 16:55 - 2015-08-26 20:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-09-09 16:55 - 2015-08-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-09-09 16:55 - 2015-08-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-09-09 16:55 - 2015-08-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-09-09 16:55 - 2015-08-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-09-09 16:55 - 2015-08-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-09-06 08:34 - 2015-09-06 10:03 - 00000000 ____D C:\Users\Public\Documents\stalker-shoc 2015-09-05 15:10 - 2015-09-05 15:10 - 00000000 ____D C:\Users\Superthorp\AppData\Local\Ubisoft 2015-09-05 15:10 - 2015-09-05 15:10 - 00000000 ____D C:\ProgramData\Ubisoft 2015-09-05 15:09 - 2015-09-05 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft 2015-09-02 17:48 - 2015-09-09 17:49 - 00001144 _____ C:\Users\Public\Desktop\Avira Launcher.lnk ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-01 20:44 - 2015-08-26 03:27 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-10-01 17:39 - 2009-07-14 06:45 - 00017536 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-10-01 17:39 - 2009-07-14 06:45 - 00017536 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-10-01 17:30 - 2009-07-14 19:58 - 00699416 _____ C:\Windows\system32\perfh007.dat 2015-10-01 17:30 - 2009-07-14 19:58 - 00149556 _____ C:\Windows\system32\perfc007.dat 2015-10-01 17:30 - 2009-07-14 07:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI 2015-10-01 17:24 - 2015-08-26 03:27 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-10-01 17:24 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-10-01 17:24 - 2009-07-14 06:51 - 00043609 _____ C:\Windows\setupact.log 2015-09-30 23:03 - 2015-01-24 11:46 - 01595806 _____ C:\Windows\WindowsUpdate.log 2015-09-28 06:21 - 2015-01-24 12:47 - 00003264 _____ C:\Users\Thorp\Desktop\Serien.txt 2015-09-27 16:46 - 2015-08-26 03:28 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-09-26 23:34 - 2015-06-11 15:57 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-09-26 12:04 - 2015-02-08 13:06 - 00000737 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-09-26 09:47 - 2015-01-24 12:40 - 00163544 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2015-09-26 09:47 - 2015-01-24 12:40 - 00074952 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys 2015-09-26 09:47 - 2015-01-24 12:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-09-25 18:35 - 2015-06-29 21:13 - 00000230 _____ C:\Users\Thorp\Desktop\Spiele.txt 2015-09-25 14:38 - 2015-01-24 12:35 - 00545338 _____ C:\Windows\PFRO.log 2015-09-25 14:12 - 2015-01-31 08:59 - 00000000 ____D C:\Program Files\Microsoft Office 15 2015-09-23 21:34 - 2015-01-24 20:51 - 00000000 ____D C:\Users\Thorp\AppData\Roaming\TS3Client 2015-09-20 23:24 - 2015-01-24 12:46 - 00000000 ____D C:\Users\Thorp\Desktop\Spiele 2015-09-14 18:40 - 2015-01-24 12:41 - 00000000 ____D C:\Users\Thorp\AppData\Local\Google 2015-09-12 20:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2015-09-11 19:40 - 2015-08-08 05:25 - 00000000 ____D C:\Users\Thorp\AppData\Roaming\vlc 2015-09-10 06:04 - 2009-07-14 06:45 - 00437464 _____ C:\Windows\system32\FNTCACHE.DAT 2015-09-10 06:03 - 2009-07-14 20:18 - 00000000 ____D C:\Program Files\Windows Journal 2015-09-10 06:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2015-09-09 23:04 - 2015-01-25 09:46 - 00000000 ____D C:\Windows\system32\MRT 2015-09-09 17:49 - 2015-01-24 12:07 - 00000000 ____D C:\ProgramData\Package Cache 2015-09-06 21:18 - 2015-04-10 13:58 - 00000000 ____D C:\Users\Thorp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2015-09-05 15:06 - 2015-01-24 12:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-09-05 10:37 - 2015-04-08 05:54 - 00000000 ____D C:\Users\Thorp\Documents\my games 2015-09-04 21:55 - 2015-01-24 12:57 - 00000000 ____D C:\Users\Thorp\AppData\Local\Battle.net ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-02-15 12:25 - 2015-02-15 12:25 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Einige Dateien in TEMP: ==================== C:\Users\Superthorp\AppData\Local\Temp\AutoDetectUtilApp.exe C:\Users\Superthorp\AppData\Local\Temp\avgnt.exe C:\Users\Superthorp\AppData\Local\Temp\DSETUP.dll C:\Users\Superthorp\AppData\Local\Temp\dsetup32.dll C:\Users\Superthorp\AppData\Local\Temp\DXSETUP.exe C:\Users\Thorp\AppData\Local\Temp\avgnt.exe C:\Users\Thorp\AppData\Local\Temp\drm_dialogs.dll C:\Users\Thorp\AppData\Local\Temp\drm_dyndata_7400009.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert ACHTUNG: ==> Auf den BCD konnte nicht zugegriffen werden. der Benutzer ist kein Administrator ==================== Ende von FRST.txt ============================ Addition Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:30-09-2015
durchgeführt von Thorp (2015-10-01 20:51:44)
Gestartet von C:\Users\Thorp\Desktop\TB
Windows 7 Professional Service Pack 1 (X64) (2015-01-24 09:46:39)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2072509774-729216835-2019632087-500 - Administrator - Disabled)
Gast (S-1-5-21-2072509774-729216835-2019632087-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2072509774-729216835-2019632087-1003 - Limited - Enabled)
Superthorp (S-1-5-21-2072509774-729216835-2019632087-1000 - Administrator - Enabled) => C:\Users\Superthorp
Thorp (S-1-5-21-2072509774-729216835-2019632087-1001 - Limited - Enabled) => C:\Users\Thorp
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
µTorrent (HKU\S-1-5-21-2072509774-729216835-2019632087-1001\...\uTorrent) (Version: 3.4.2.39744 - BitTorrent Inc.)
7-Zip 9.25 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0925-000001000000}) (Version: 9.25.00.0 - Igor Pavlov)
Adobe Reader XI (11.0.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{637D7E6D-2798-E0D0-D257-1796F13B951F}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Armagetron Advanced 0.2.8.3.3.gcc (HKLM-x32\...\Armagetron Advanced) (Version: 0.2.8.3.3.gcc - Armagetron Advanced Team)
Assassin's Creed Chronicles China (HKLM-x32\...\Uplay Install 1651) (Version: - Ubisoft)
ASUS Xonar D1 Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.13.202 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{315dd168-0794-4cf1-8355-f195cde642fc}) (Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG) Hidden
Baldur's Gate(TM) II - Schatten von Amn(TM) (HKLM-x32\...\{7AF32AB1-CB97-11D4-9607-0050BA84F5F7}) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BZFlag 2.4.2 32Bit (remove only) (HKLM-x32\...\BZFlag2.4.2_32Bit) (Version: - )
Child of Light (HKLM-x32\...\Steam App 256290) (Version: - Ubisoft Montréal)
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - FromSoftware)
Darkest Dungeon (HKLM-x32\...\Steam App 262060) (Version: - Red Hook Studios)
Deus Ex: Game of the Year Edition (HKLM-x32\...\Steam App 6910) (Version: - Ion Storm)
Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version: - Larian Studios)
Epic Battle Fantasy 4 (HKLM-x32\...\Steam App 265610) (Version: - Matt Roszak)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version: - Ubisoft)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version: - Subset Games)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hammerwatch (HKLM-x32\...\Steam App 239070) (Version: - Crackshell)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version: - IO Interactive)
Hotline Miami (HKLM-x32\...\1207659118_is1) (Version: 2.2.0.8 - GOG.com)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Mass Effect (HKLM-x32\...\Steam App 17460) (Version: - BioWare)
Microsoft .NET Framework 4.5.1 RC (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50861 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 15.0.4753.1003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Monaco (HKLM-x32\...\Steam App 113020) (Version: - Pocketwatch Games)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Papers, Please (HKLM-x32\...\Steam App 239030) (Version: - 3909)
Pillars of Eternity (HKLM-x32\...\Steam App 291650) (Version: - Obsidian Entertainment)
Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve)
Portal Stories: Mel (HKLM-x32\...\Steam App 317400) (Version: - Prism Studios)
Project CARS (HKLM-x32\...\Steam App 234630) (Version: - Slightly Mad Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.82.317.2014 - Realtek)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
Rogue Legacy (HKLM-x32\...\Steam App 241600) (Version: - Cellar Door Games)
S.T.A.L.K.E.R.: Shadow of Chernobyl (HKLM-x32\...\Steam App 4500) (Version: - GSC Game World)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version: - Carbon)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sword of the Stars: The Pit (HKLM-x32\...\Steam App 233700) (Version: - Kerberos Productions Inc.)
TeamSpeak 3 Client (HKU\S-1-5-21-2072509774-729216835-2019632087-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - Edmund McMillen and Florian Himsl)
The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\GOGPACKTHEWITCHER2EE_is1) (Version: 3.4.0.25 - GOG.com)
Tom Clancy's Splinter Cell Chaos Theory (HKLM-x32\...\{888DD888-82BE-4D85-BCB2-2E042CD3E844}) (Version: 1.05.157 - Ubisoft)
Unepic (HKLM-x32\...\Steam App 233980) (Version: - Francisco Téllez de Meneses)
Uplay (HKLM-x32\...\Uplay) (Version: 4.3 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wasteland 2 (HKLM-x32\...\Steam App 240760) (Version: - inXile Entertainment)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
World of Goo (HKLM-x32\...\Steam App 22000) (Version: - 2D BOY)
World of Tanks (HKU\S-1-5-21-2072509774-729216835-2019632087-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warships (HKU\S-1-5-21-2072509774-729216835-2019632087-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)
XCOM: Enemy Unknown (HKLM-x32\...\Steam App 200510) (Version: - Firaxis Games)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
Überprüfen Sie den "winmgmt" Dienst oder reparieren Sie den WMI.
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job =>
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job =>
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-01-24 12:10 - 2008-07-11 16:04 - 00200704 ____N () C:\Windows\SysWOW64\HsMgr.exe
2015-01-24 12:10 - 2008-07-11 16:03 - 00282112 ____N () C:\Windows\system\HsMgr64.exe
2015-03-20 18:12 - 2015-03-20 18:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2072509774-729216835-2019632087-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Thorp\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{DBE64511-7D73-4577-A356-F7100F769049}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{CC0919F8-ED2F-4035-AA8A-FA56E37003F2}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{A6C5ACCD-2200-4123-AE9F-CCBE282EA32C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{E977A753-278D-4220-AA0C-70B4187119CD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{9FE8A700-13EC-4029-BC46-AA8001C2BB28}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{2ECF6208-A790-490F-A820-1FC474A569EA}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{E87FB022-BA6F-49A4-AE6B-ACC55EA37F76}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{39A4DCCC-513E-4405-ACEC-678CD0109717}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{84E9916A-1391-4AA1-B566-3F2BDC2582FE}] => (Allow) E:\Spiele\Steam\steamapps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{B54692C6-C809-472E-BFA5-A705915C1E2B}] => (Allow) E:\Spiele\Steam\steamapps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{03C2BB3A-630F-49D2-8941-1DCB5605D250}] => (Allow) E:\Spiele\Steam\steamapps\common\The Pit\ThePit.exe
FirewallRules: [{83F60C37-D39C-4BF8-848E-D339C624028F}] => (Allow) E:\Spiele\Steam\steamapps\common\The Pit\ThePit.exe
FirewallRules: [{1D45776C-6EC0-4EB5-8ABE-44A537101B1F}] => (Allow) E:\Spiele\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{4E1D9892-834B-485E-9668-EDE55C0603A6}] => (Allow) E:\Spiele\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{09AFCC51-DE65-4912-8435-0623734FA58D}] => (Allow) E:\Spiele\Steam\steamapps\common\Child of Light\ChildofLight.exe
FirewallRules: [{2BEDF6DE-A7AF-4885-A95C-1EFA7230651D}] => (Allow) E:\Spiele\Steam\steamapps\common\Child of Light\ChildofLight.exe
FirewallRules: [{1F95CE6D-CC30-4D8F-85AE-23383F0F7B10}] => (Allow) E:\Spiele\Steam\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{61B18CD0-B00B-4E05-AE49-DF0E4D158142}] => (Allow) E:\Spiele\Steam\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [TCP Query User{4371C417-9A98-4F39-A8CA-B209963BDF2E}D:\battle.net\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe] => (Allow) D:\battle.net\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4353CA32-8C77-4C8A-A45D-8567B95B54EE}D:\battle.net\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe] => (Allow) D:\battle.net\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe
FirewallRules: [{7C8E5AAF-054F-47CF-A391-BDB3466470A7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{A78ECD84-78B5-473A-8897-C948B0984924}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{86FF3748-F725-459E-B470-9ADCEAE93848}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{10BCF26B-AAAD-4770-922C-41DA64641DE5}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{5C3343C9-9E31-4EB0-99B9-15E06EB933A7}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [TCP Query User{4BCAE4B5-CEB3-4BCE-9A3A-A4A70D4FA2BF}D:\steam\steamapps\common\dayz\dayz.exe] => (Allow) D:\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{3453FA2B-DF4B-4C9E-BA41-4E67ABE14F57}D:\steam\steamapps\common\dayz\dayz.exe] => (Allow) D:\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [{7A8F0BB1-3ED3-4BCF-BCA0-CBA7C308FA63}] => (Allow) D:\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{1DBDF174-4A30-4A6B-B49F-9B9941A66EB7}] => (Allow) D:\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{11BEF646-54ED-4AC7-8735-BC6360AA3D8F}D:\onlinegames\world_of_warships\wowslauncher.exe] => (Allow) D:\onlinegames\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{32343EA7-CA22-494E-8132-81322C64801E}D:\onlinegames\world_of_warships\wowslauncher.exe] => (Allow) D:\onlinegames\world_of_warships\wowslauncher.exe
FirewallRules: [{56E8E784-C950-4A75-A2B5-CD4A112AE075}] => (Allow) D:\Steam\steamapps\common\Child of Light\ChildofLight.exe
FirewallRules: [{3E93F2F0-C1B0-4A5E-9B24-96294B139C4D}] => (Allow) D:\Steam\steamapps\common\Child of Light\ChildofLight.exe
FirewallRules: [{EA0DC3A3-AA67-45D8-906B-273A6C4DBE20}] => (Allow) C:\Users\Thorp\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6E838ED7-ED80-4B5E-AA77-A79512EB366A}] => (Allow) C:\Users\Thorp\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{783BA1ED-88D6-4DC8-9D30-74B4AD64C28E}C:\users\thorp\appdata\roaming\utorrent\updates\3.4.2_39744.exe] => (Allow) C:\users\thorp\appdata\roaming\utorrent\updates\3.4.2_39744.exe
FirewallRules: [UDP Query User{95DC4B68-89FB-41D3-B85C-19B60D1CF41D}C:\users\thorp\appdata\roaming\utorrent\updates\3.4.2_39744.exe] => (Allow) C:\users\thorp\appdata\roaming\utorrent\updates\3.4.2_39744.exe
FirewallRules: [{19438C89-EB61-43A8-A6B2-B098426938CA}] => (Allow) D:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{EC053CEB-63CC-44EC-BA1B-EBB041FA8E47}] => (Allow) D:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{02F7144D-A801-4035-AE17-E7A23F67BD35}] => (Allow) D:\Steam\steamapps\common\World of Goo\WorldOfGoo.exe
FirewallRules: [{8CC5ED78-05C5-484E-856A-DAA930D94E7F}] => (Allow) D:\Steam\steamapps\common\World of Goo\WorldOfGoo.exe
FirewallRules: [{CA3FE607-9A3E-422D-89CB-C62DCD4043F4}] => (Allow) D:\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{6F7ED1CE-F532-4451-B140-27EA18445C49}] => (Allow) D:\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{BD4F418B-AF2C-4F8D-83F3-AA57687066FE}] => (Allow) D:\Steam\steamapps\common\Hammerwatch\Hammerwatch.exe
FirewallRules: [{E1719298-34C5-41D3-9670-D97DCCAD6EF7}] => (Allow) D:\Steam\steamapps\common\Hammerwatch\Hammerwatch.exe
FirewallRules: [{4576F14A-B7A2-4C11-8044-106D6A463AE8}] => (Allow) D:\Steam\steamapps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{CD01A2B5-CEB8-4AA5-A251-5A3C2ADC14C5}] => (Allow) D:\Steam\steamapps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{737C253B-D85A-4DAE-A537-83694DB1723B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3FFC15D1-8120-472A-881F-8E2E35ACB930}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BC5FA1B4-D1FF-4DD8-A79E-E5AF4AA325C4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F7F9B09E-C5CD-4B3E-9034-FFD8B7DC9FDF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{48781DC5-C0C2-4B0F-A688-801BBFBE2BCE}] => (Allow) D:\Programme\iTunes\iTunes.exe
FirewallRules: [{85C8A575-8FA1-47B6-B2F1-101A1222DE74}] => (Allow) D:\Steam\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{2E1AF55A-A65A-493E-AF36-119EB41EC0DD}] => (Allow) D:\Steam\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{2C88BE92-8140-4B25-A8CD-D20A62A166FF}] => (Allow) D:\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{C24DF632-750E-4DD7-89B1-386E124D85E9}] => (Allow) D:\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{C6BC442A-441B-418E-B873-C2A59AC20EDC}] => (Allow) D:\Steam\steamapps\common\Unepic\unepic.exe
FirewallRules: [{5AF23BC8-C9F9-4749-A32D-D73DACAD82A2}] => (Allow) D:\Steam\steamapps\common\Unepic\unepic.exe
FirewallRules: [{2B607076-2934-4DA7-A1D8-DC06ACB2FF2A}] => (Allow) E:\Spiele\Steam\steamapps\common\Wasteland 2\Build\WL2.exe
FirewallRules: [{FE3A9954-31E2-462C-B45F-BCAA9BC499C6}] => (Allow) E:\Spiele\Steam\steamapps\common\Wasteland 2\Build\WL2.exe
FirewallRules: [{58607970-6946-41A7-87D3-8332121C8AB5}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{4D7B7E2C-D510-43A1-B8D2-36AA98440F64}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{C102D7F2-08B7-4808-9D0B-C50EF372C3EC}] => (Allow) E:\Spiele\uPlay\Assassin's Creed Chronicles China\Binaries\Win32\ACCGame-Win32-Shipping.exe
FirewallRules: [{B8219D92-A431-4B34-B368-988CCA32B7B9}] => (Allow) E:\Spiele\uPlay\Assassin's Creed Chronicles China\Binaries\Win32\ACCGame-Win32-Shipping.exe
FirewallRules: [{7A6A05E0-D826-4B2B-AD2A-63AF2A779493}] => (Allow) E:\Spiele\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{D3745CEF-A6DC-4957-88FA-6A6C97F873F0}] => (Allow) E:\Spiele\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [TCP Query User{F7E16E77-F610-4C62-8140-16D1AC42ACA9}E:\spiele\wolfenstein the new order\wolfneworder_x64.exe] => (Block) E:\spiele\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [UDP Query User{006B5094-8FBA-4357-97E1-E12F6975D5C4}E:\spiele\wolfenstein the new order\wolfneworder_x64.exe] => (Block) E:\spiele\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [{5002BCC9-F6F4-498C-BD94-8221E3B956B0}] => (Allow) E:\Spiele\uPlay\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{F514FDAA-3EA1-455A-83AF-EDACFC63AFB5}] => (Allow) E:\Spiele\uPlay\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{77FCF2B0-9460-41BD-8147-5013D53E281A}] => (Allow) E:\Spiele\uPlay\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{60E4B265-83C2-480C-9475-03CB5A7BA15F}] => (Allow) E:\Spiele\uPlay\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{CE37347E-D78E-4BBC-B430-059C6F790227}] => (Allow) E:\Spiele\Steam\steamapps\common\pCars\pCARS64.exe
FirewallRules: [{978EE50A-11EB-44F0-B086-F2CCF3B7D517}] => (Allow) E:\Spiele\Steam\steamapps\common\pCars\pCARS64.exe
FirewallRules: [{467BBEF1-74C3-4A41-97D0-9A16CA96B1A3}] => (Allow) E:\Spiele\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{1650DBB1-76D5-48F1-B668-C3FA69363667}] => (Allow) E:\Spiele\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{888454C2-D969-4B27-B2A8-AF424517F609}] => (Allow) E:\Spiele\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{FB36A226-A385-4197-8853-A43C7CA037F3}] => (Allow) E:\Spiele\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{D3518E83-E3F5-4F34-BA9A-0FDBB25224AE}] => (Allow) D:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{2923A615-A12C-493D-BF54-F399DEECE9DA}] => (Allow) D:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{6D700EFE-86ED-4340-B6A9-D413099D727C}] => (Allow) D:\Steam\steamapps\common\Monaco\MONACO.exe
FirewallRules: [{B7D09F2E-6257-4B51-85D9-DE8E80351C39}] => (Allow) D:\Steam\steamapps\common\Monaco\MONACO.exe
FirewallRules: [TCP Query User{F5F97596-2962-4835-A6C9-ED7D348A711A}E:\spiele\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) E:\spiele\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [UDP Query User{FB3ED92A-C042-4F5B-9584-7062AB20590D}E:\spiele\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) E:\spiele\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [{C7D6BE1E-3AF8-476E-88CD-218331C2EF36}] => (Allow) E:\Spiele\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{C03AA304-F4C0-4766-B3D6-478421AD44E3}] => (Allow) E:\Spiele\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{4BE872F2-F267-4398-83C2-01B3784726CB}] => (Allow) E:\Spiele\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{0275C006-1826-488B-8E1C-6B33268B7ADA}] => (Allow) E:\Spiele\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{CC2BD728-7CAF-4754-8E63-E9D9713F3C3A}] => (Allow) E:\Spiele\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{BDF49AE5-3000-40B8-98AE-E8F01DE01C5E}] => (Allow) E:\Spiele\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [TCP Query User{4CA9172A-9F40-4F86-AF3D-069C579BD42F}E:\spiele\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) E:\spiele\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [UDP Query User{E7E9B473-5830-4AF0-82BA-8ADC1F085975}E:\spiele\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) E:\spiele\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [{7D09DD3C-8471-4583-8288-4304C4E496D9}] => (Allow) E:\Spiele\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{0D844956-741D-484B-8807-58C4BBC2C4B5}] => (Allow) E:\Spiele\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{93F49347-F0A5-4757-82A8-7E077FECD6A8}] => (Allow) E:\Spiele\Steam\steamapps\common\Portal Stories Mel\portal2.exe
FirewallRules: [{8B401BAB-6209-4CFA-8A6E-12629D0718D0}] => (Allow) E:\Spiele\Steam\steamapps\common\Portal Stories Mel\portal2.exe
FirewallRules: [{CD873A40-A711-480F-87CC-22D7740EDEC4}] => (Allow) D:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{B901B35E-1ADB-4112-915E-C544256FDE1B}] => (Allow) D:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{AC720ED1-3A62-4A11-A438-E2209F7F35F4}] => (Allow) E:\Spiele\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{33049F3D-C4DB-40AF-A5DA-66DFECE8C64F}] => (Allow) E:\Spiele\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{F35507EF-C924-4C82-8C8A-8F97CFC5DCDE}] => (Allow) E:\Spiele\Steam\steamapps\common\The Talos Principle Demo\Bin\Talos_Demo.exe
FirewallRules: [{2E285DB5-2ECA-4EEC-BB24-93FAEA9DB785}] => (Allow) E:\Spiele\Steam\steamapps\common\The Talos Principle Demo\Bin\Talos_Demo.exe
FirewallRules: [{05CAE2E5-0B87-407E-B099-90FF2256D348}] => (Allow) E:\Spiele\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{5A12A322-6B90-44DA-B6AD-0C8B8A2DAD09}] => (Allow) E:\Spiele\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{0061A586-FF21-4F1C-8190-00DBE4784513}] => (Allow) E:\Spiele\Steam\steamapps\common\Epic Battle Fantasy 4\EBF4.exe
FirewallRules: [{9A14DC9A-88EE-4B21-91DA-490D3DFDCAB5}] => (Allow) E:\Spiele\Steam\steamapps\common\Epic Battle Fantasy 4\EBF4.exe
FirewallRules: [{6EC69404-44B5-42A7-B9D8-123F54D0D66C}] => (Allow) E:\Spiele\uPlay\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{E3EB3B2F-7E24-4C6B-8084-1F345C9531D7}] => (Allow) E:\Spiele\uPlay\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [TCP Query User{68561A46-B9F0-4FCB-A72F-DE498B65BA3F}E:\spiele\bzflag\bzfs.exe] => (Allow) E:\spiele\bzflag\bzfs.exe
FirewallRules: [UDP Query User{26B636A0-5EFB-49D3-A01E-03135C84BA4F}E:\spiele\bzflag\bzfs.exe] => (Allow) E:\spiele\bzflag\bzfs.exe
FirewallRules: [{17E4777A-8068-47EB-871B-C8CBE5FB59B7}] => (Allow) E:\Spiele\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [{C4F10667-43FD-4DA7-9D2A-5E868833D77F}] => (Allow) E:\Spiele\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [{128745CE-B709-411F-B2D2-D904007ED8C2}] => (Allow) E:\Spiele\Battle.net\StarCraft II\StarCraft II.exe
FirewallRules: [{67F75085-A26E-46C9-BD63-02D380038257}] => (Allow) E:\Spiele\Battle.net\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{827FE3C4-0688-49A6-A138-3636B565304C}E:\spiele\battle.net\diablo iii\diablo iii.exe] => (Allow) E:\spiele\battle.net\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{4C132F4B-4C2A-43C1-AAB8-D76038306219}E:\spiele\battle.net\diablo iii\diablo iii.exe] => (Allow) E:\spiele\battle.net\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{F9926C16-A3DD-4805-B07A-BB8BBABA7E4B}D:\battle.net\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) D:\battle.net\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D7C39F5A-DC37-4DCC-BB25-6A47A2B7EC55}D:\battle.net\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) D:\battle.net\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9B82ECF7-3363-4991-AC00-D90806ED5C2C}D:\onlinegames\world_of_tanks\wotlauncher.exe] => (Allow) D:\onlinegames\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{10B18713-A256-48FC-9A1B-0F170526E2AE}D:\onlinegames\world_of_tanks\wotlauncher.exe] => (Allow) D:\onlinegames\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{9BDDAE61-25C3-4096-98CE-36358CBD1237}D:\onlinegames\world_of_tanks\worldoftanks.exe] => (Allow) D:\onlinegames\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{FDAF151E-4F6C-42E0-A927-7007386E351A}D:\onlinegames\world_of_tanks\worldoftanks.exe] => (Allow) D:\onlinegames\world_of_tanks\worldoftanks.exe
FirewallRules: [{D0C40B16-0D64-4DBE-8EEF-D4DE7A120655}] => (Allow) D:\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{697F54A9-1795-4843-BE72-DDAA1FC27F72}] => (Allow) D:\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{22C82F14-5B3E-436E-B51E-48B04E8712DE}] => (Allow) D:\Steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{09D12141-79B5-47DD-BC9C-360C400B0699}] => (Allow) D:\Steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{B92A6211-EEF6-44FC-84A4-C470ED93989A}] => (Allow) E:\Spiele\Steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{8464946E-F266-40BE-AAB4-D3D72F497282}] => (Allow) E:\Spiele\Steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{16317CCD-DEF6-4649-BA2B-61A051E217F6}] => (Allow) D:\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{E610DFC8-EF8F-4D30-8B8A-8E698551DFAD}] => (Allow) D:\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{D4A6BA3F-E4DC-4554-926C-443D423FAADA}] => (Allow) D:\Steam\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{7D833B16-A1D8-4F96-85B4-E07C7DAEB66A}] => (Allow) D:\Steam\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{0018A3BA-8D23-44EA-AB7C-B72E3EA7D32D}] => (Allow) E:\Spiele\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{B13107ED-4EAE-48DE-AB60-3E2C113E9BDE}] => (Allow) E:\Spiele\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{32785987-47FF-4BD3-A274-B4DC8255EF66}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (10/01/2015 05:37:20 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/30/2015 08:06:16 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/29/2015 06:21:12 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/29/2015 08:29:20 AM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/28/2015 11:35:16 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/28/2015 04:46:22 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/28/2015 05:48:15 AM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/27/2015 10:57:47 AM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/26/2015 01:27:07 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/25/2015 02:51:42 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Systemfehler:
=============
Error: (09/12/2015 07:33:30 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 12.09.2015 um 19:32:50 unerwartet heruntergefahren.
Error: (09/09/2015 05:49:31 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.
Error: (08/21/2015 04:46:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/21/2015 04:46:07 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (08/13/2015 06:30:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/13/2015 06:30:11 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (08/02/2015 03:39:25 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (07/24/2015 10:46:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/24/2015 10:46:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (07/23/2015 05:09:47 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Xeon(R) CPU E3-1230 v3 @ 3.30GHz
Prozentuale Nutzung des RAM: 42%
Installierter physikalischer RAM: 8136.63 MB
Verfügbarer physikalischer RAM: 4701.99 MB
Summe virtueller Speicher: 16271.46 MB
Verfügbarer virtueller Speicher: 11870.38 MB
==================== Laufwerke ================================
Drive c: (System) (Fixed) (Total:111.69 GB) (Free:61.09 GB) NTFS
Drive d: (Spiele) (Fixed) (Total:232.88 GB) (Free:95.77 GB) NTFS
Drive e: (KrimsKrams) (Fixed) (Total:1863.01 GB) (Free:1598.77 GB) NTFS
Drive f: (SCCT) (CDROM) (Total:4.07 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
==================== Ende von Addition.txt ============================
|
|
02.10.2015, 19:54
| #4 |
| /// the machine /// TB-Ausbilder | Grundreinigung PC Bitte nochmal, unsere Tools brauchen immer Adminrechte. Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.10.2015, 21:51
| #5 |
| | Grundreinigung PC Hallo schrauber, vielen Dank für deine Antwort. Ich hatte mit Rechtsklick > Ausführen als Administrator ausgeführt, das reicht offenbar nicht. Ich habe mich jetzt mit dem Adminkonto angemeldet (mit dem ich sonst fast nie angemeldet bin) und alle Schritte damit ausgeführt. MBar hat beim Beenden kurz gehangen, falls das wichtig ist. Dass das Forum bei der Menge an Text recht lahm wird und auch mal einige Sekunden hängt, ist normal nehme ich an? FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:30-09-2015 durchgeführt von Superthorp (Administrator) auf SUPERTHORPANIA (02-10-2015 22:30:04) Gestartet von C:\Users\Thorp\Desktop\TB Geladene Profile: Superthorp (Verfügbare Profile: Superthorp & Thorp) Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Malwarebytes Corporation) D:\Programme\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) D:\Programme\ Malwarebytes Anti-Malware \mbamservice.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (AMD) C:\Windows\System32\atieclxx.exe (Malwarebytes Corporation) D:\Programme\ Malwarebytes Anti-Malware \mbam.exe () C:\Windows\SysWOW64\HsMgr.exe () C:\Windows\system\HsMgr64.exe (Apple Inc.) D:\Programme\iTunes\iTunesHelper.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (CMedia) C:\Program Files\ASUS Xonar D1 Audio\Customapp\AsusAudioCenter.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] () HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] () HKLM\...\Run: [iTunesHelper] => D:\Programme\iTunes\iTunesHelper.exe [169768 2015-04-07] (Apple Inc.) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782520 2015-09-26] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66936 2015-08-13] (Avira Operations GmbH & Co. KG) HKU\S-1-5-21-2072509774-729216835-2019632087-1000\...\Run: [Steam] => D:\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{D33AB31F-E9B9-45B2-9D48-3D6BAD852C94}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{E3A77279-FB37-4D02-9365-28DFD49AFB55}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-09-11] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-09-11] (Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-09-12] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation) FireFox: ======== FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-31] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-02] CHR Extension: (Google Docs) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-02] CHR Extension: (Google Drive) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-02] CHR Extension: (YouTube) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-02] CHR Extension: (Google-Suche) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-02] CHR Extension: (Google Tabellen) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-02] CHR Extension: (Avira Browserschutz) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-10-02] CHR Extension: (Google Docs Offline) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-02] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-10-02] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-02] CHR Extension: (Google Mail) - C:\Users\Superthorp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-02] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [932912 2015-09-26] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672 2015-09-26] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672 2015-09-26] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1148688 2015-09-26] (Avira Operations GmbH & Co. KG) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [228104 2015-08-13] (Avira Operations GmbH & Co. KG) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1128448 2015-07-27] () R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2774104 2015-09-11] (Microsoft Corporation) R2 MBAMScheduler; D:\Programme\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation) R2 MBAMService; D:\Programme\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [163544 2015-09-26] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-08-01] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-11-24] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [74952 2015-09-26] (Avira Operations GmbH & Co. KG) R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2734080 2013-04-11] (C-Media Inc) S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-05-25] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-10-29] (Intel Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-10-02] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation) S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [762472 2011-07-06] (Realtek Semiconductor Corporation ) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-02 22:25 - 2015-10-02 22:25 - 00000000 ____D C:\Users\Superthorp\AppData\Local\GWX 2015-10-02 22:24 - 2015-10-02 22:24 - 00000000 ____D C:\Users\Superthorp\AppData\Local\CEF 2015-10-01 20:51 - 2015-10-02 22:30 - 00000000 ____D C:\FRST 2015-10-01 19:11 - 2015-10-01 19:11 - 03908184 _____ (Crystal Dew World ) C:\Users\Thorp\Downloads\CrystalDiskInfo6_5_2-en.exe 2015-10-01 19:10 - 2015-10-02 22:30 - 00000000 ____D C:\Users\Thorp\Desktop\TB 2015-09-20 23:23 - 2015-09-20 23:23 - 06970488 _____ (Wargaming.net ) C:\Users\Thorp\Downloads\WoWS_internet_install_eu.exe 2015-09-17 18:55 - 2015-09-17 18:55 - 00000827 _____ C:\Users\Thorp\Desktop\Pen & Paper.lnk 2015-09-15 20:48 - 2015-09-15 20:48 - 00011864 _____ C:\Users\Thorp\Downloads\pdf+ATN-Berwerbung.odt 2015-09-09 17:27 - 2015-08-18 03:42 - 00393304 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-09-09 17:27 - 2015-08-18 03:14 - 00344168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-09-09 17:27 - 2015-08-15 08:48 - 25190400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-09-09 17:27 - 2015-08-15 08:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-09-09 17:27 - 2015-08-15 08:33 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-09-09 17:27 - 2015-08-15 08:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-09-09 17:27 - 2015-08-15 08:18 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-09-09 17:27 - 2015-08-15 08:17 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-09-09 17:27 - 2015-08-15 08:17 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-09-09 17:27 - 2015-08-15 08:17 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-09-09 17:27 - 2015-08-15 08:17 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-09-09 17:27 - 2015-08-15 08:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-09-09 17:27 - 2015-08-15 08:09 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-09-09 17:27 - 2015-08-15 08:06 - 19856896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-09-09 17:27 - 2015-08-15 08:06 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-09-09 17:27 - 2015-08-15 08:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-09-09 17:27 - 2015-08-15 08:04 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-09-09 17:27 - 2015-08-15 08:04 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-09-09 17:27 - 2015-08-15 08:04 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-09-09 17:27 - 2015-08-15 08:00 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-09-09 17:27 - 2015-08-15 07:57 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-09-09 17:27 - 2015-08-15 07:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-09-09 17:27 - 2015-08-15 07:53 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-09-09 17:27 - 2015-08-15 07:46 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-09-09 17:27 - 2015-08-15 07:42 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-09-09 17:27 - 2015-08-15 07:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-09-09 17:27 - 2015-08-15 07:40 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-09-09 17:27 - 2015-08-15 07:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-09-09 17:27 - 2015-08-15 07:39 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-09-09 17:27 - 2015-08-15 07:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-09-09 17:27 - 2015-08-15 07:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-09-09 17:27 - 2015-08-15 07:38 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-09-09 17:27 - 2015-08-15 07:35 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-09-09 17:27 - 2015-08-15 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-09-09 17:27 - 2015-08-15 07:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-09-09 17:27 - 2015-08-15 07:30 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-09-09 17:27 - 2015-08-15 07:29 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-09-09 17:27 - 2015-08-15 07:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-09-09 17:27 - 2015-08-15 07:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-09-09 17:27 - 2015-08-15 07:24 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-09-09 17:27 - 2015-08-15 07:23 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-09-09 17:27 - 2015-08-15 07:22 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-09-09 17:27 - 2015-08-15 07:22 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-09-09 17:27 - 2015-08-15 07:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-09-09 17:27 - 2015-08-15 07:16 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-09-09 17:27 - 2015-08-15 07:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-09-09 17:27 - 2015-08-15 07:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-09-09 17:27 - 2015-08-15 07:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-09-09 17:27 - 2015-08-15 07:11 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-09-09 17:27 - 2015-08-15 07:10 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-09-09 17:27 - 2015-08-15 07:07 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-09-09 17:27 - 2015-08-15 07:04 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-09-09 17:27 - 2015-08-15 07:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-09-09 17:27 - 2015-08-15 07:01 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-09-09 17:27 - 2015-08-15 07:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-09-09 17:27 - 2015-08-15 06:55 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-09-09 17:27 - 2015-08-15 06:43 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-09-09 17:27 - 2015-08-15 06:43 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-09-09 17:27 - 2015-08-15 06:39 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-09-09 17:27 - 2015-08-15 06:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-09-09 17:03 - 2015-08-05 19:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2015-09-09 17:03 - 2015-08-05 19:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-09-09 17:03 - 2015-08-05 19:56 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll 2015-09-09 17:03 - 2015-08-05 19:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll 2015-09-09 17:01 - 2015-07-15 05:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2015-09-09 17:01 - 2015-07-15 04:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2015-09-09 17:01 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2015-09-09 17:01 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll 2015-09-09 17:01 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2015-09-09 17:01 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll 2015-09-09 16:57 - 2015-07-23 02:06 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-09-09 16:57 - 2015-07-23 02:06 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-09-09 16:57 - 2015-07-23 02:06 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-09-09 16:57 - 2015-07-23 02:03 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-09-09 16:57 - 2015-07-23 02:03 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-09-09 16:57 - 2015-07-23 02:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-09-09 16:57 - 2015-07-23 02:03 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-09-09 16:57 - 2015-07-23 02:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-09-09 16:57 - 2015-07-23 02:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-09-09 16:57 - 2015-07-23 02:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-09-09 16:57 - 2015-07-23 02:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-09-09 16:57 - 2015-07-23 02:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-09-09 16:57 - 2015-07-23 02:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-09-09 16:57 - 2015-07-23 02:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-09-09 16:57 - 2015-07-23 01:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-09-09 16:57 - 2015-07-23 01:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-09-09 16:57 - 2015-07-23 01:51 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-09-09 16:57 - 2015-07-22 19:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-09-09 16:57 - 2015-07-22 19:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-09-09 16:57 - 2015-07-22 19:54 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-09-09 16:57 - 2015-07-22 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-09-09 16:57 - 2015-07-22 19:52 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-09-09 16:57 - 2015-07-22 19:52 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2015-09-09 16:57 - 2015-07-22 19:52 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-09-09 16:57 - 2015-07-22 19:52 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-09-09 16:57 - 2015-07-22 19:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-09-09 16:57 - 2015-07-22 19:52 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-09-09 16:57 - 2015-07-22 19:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-09-09 16:57 - 2015-07-22 19:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-09-09 16:57 - 2015-07-22 19:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-09-09 16:57 - 2015-07-22 18:45 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-09-09 16:57 - 2015-07-22 18:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-09-09 16:57 - 2015-07-22 18:44 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-09-09 16:57 - 2015-07-22 18:34 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-09-09 16:57 - 2015-07-22 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-09-09 16:57 - 2015-07-22 18:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 18:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 18:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-09-09 16:57 - 2015-07-22 18:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-09-09 16:56 - 2015-09-02 05:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2015-09-09 16:56 - 2015-09-02 05:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-09-09 16:56 - 2015-09-02 05:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2015-09-09 16:56 - 2015-09-02 05:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2015-09-09 16:56 - 2015-09-02 04:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2015-09-09 16:56 - 2015-09-02 04:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2015-09-09 16:56 - 2015-09-02 04:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2015-09-09 16:56 - 2015-09-02 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2015-09-09 16:56 - 2015-09-02 03:51 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-09-09 16:56 - 2015-09-02 03:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-09-09 16:56 - 2015-09-02 03:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2015-09-09 16:56 - 2015-08-27 20:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2015-09-09 16:56 - 2015-08-27 20:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-09-09 16:56 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2015-09-09 16:56 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2015-09-09 16:56 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2015-09-09 16:56 - 2015-08-27 19:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2015-09-09 16:56 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll 2015-09-09 16:56 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2015-09-09 16:56 - 2015-08-04 20:03 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2015-09-09 16:56 - 2015-08-04 20:00 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2015-09-09 16:56 - 2015-08-04 19:56 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2015-09-09 16:56 - 2015-08-04 19:56 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2015-09-09 16:56 - 2015-08-04 19:56 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2015-09-09 16:56 - 2015-08-04 19:55 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2015-09-09 16:56 - 2015-08-04 19:55 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2015-09-09 16:56 - 2015-08-04 19:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2015-09-09 16:56 - 2015-08-04 18:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2015-09-09 16:56 - 2015-06-25 12:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2015-09-09 16:56 - 2015-06-25 12:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2015-09-09 16:56 - 2015-06-25 12:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2015-09-09 16:56 - 2015-06-25 11:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 03165696 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-09-09 16:55 - 2015-08-26 20:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-09-09 16:55 - 2015-08-26 20:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-09-09 16:55 - 2015-08-26 20:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-09-09 16:55 - 2015-08-26 20:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-09-09 16:55 - 2015-08-26 20:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-09-09 16:55 - 2015-08-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-09-09 16:55 - 2015-08-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-09-09 16:55 - 2015-08-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-09-09 16:55 - 2015-08-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-09-09 16:55 - 2015-08-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-09-06 08:34 - 2015-09-06 10:03 - 00000000 ____D C:\Users\Public\Documents\stalker-shoc 2015-09-05 15:10 - 2015-09-05 15:10 - 00000000 ____D C:\Users\Superthorp\AppData\Local\Ubisoft 2015-09-05 15:10 - 2015-09-05 15:10 - 00000000 ____D C:\ProgramData\Ubisoft 2015-09-05 15:09 - 2015-09-05 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft 2015-09-02 17:48 - 2015-09-09 17:49 - 00001144 _____ C:\Users\Public\Desktop\Avira Launcher.lnk ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-10-02 22:24 - 2015-08-26 03:27 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-10-02 22:24 - 2015-06-11 15:57 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-10-02 22:24 - 2015-01-24 12:42 - 00000000 ____D C:\Users\Superthorp\AppData\Local\Google 2015-10-02 21:44 - 2015-08-26 03:27 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-10-02 20:31 - 2015-01-24 20:51 - 00000000 ____D C:\Users\Thorp\AppData\Roaming\TS3Client 2015-10-02 20:05 - 2009-07-14 06:45 - 00017536 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-10-02 20:05 - 2009-07-14 06:45 - 00017536 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-10-02 16:34 - 2009-07-14 19:58 - 00699416 _____ C:\Windows\system32\perfh007.dat 2015-10-02 16:34 - 2009-07-14 19:58 - 00149556 _____ C:\Windows\system32\perfc007.dat 2015-10-02 16:34 - 2009-07-14 07:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI 2015-10-02 16:28 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-10-02 16:28 - 2009-07-14 06:51 - 00043665 _____ C:\Windows\setupact.log 2015-10-01 23:02 - 2015-01-24 11:46 - 01635310 _____ C:\Windows\WindowsUpdate.log 2015-09-28 06:21 - 2015-01-24 12:47 - 00003264 _____ C:\Users\Thorp\Desktop\Serien.txt 2015-09-27 16:46 - 2015-08-26 03:28 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-09-26 12:04 - 2015-02-08 13:06 - 00000737 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-09-26 09:47 - 2015-01-24 12:40 - 00163544 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2015-09-26 09:47 - 2015-01-24 12:40 - 00074952 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys 2015-09-26 09:47 - 2015-01-24 12:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-09-25 18:35 - 2015-06-29 21:13 - 00000230 _____ C:\Users\Thorp\Desktop\Spiele.txt 2015-09-25 14:38 - 2015-01-24 12:35 - 00545338 _____ C:\Windows\PFRO.log 2015-09-25 14:12 - 2015-01-31 08:59 - 00000000 ____D C:\Program Files\Microsoft Office 15 2015-09-20 23:24 - 2015-01-24 12:46 - 00000000 ____D C:\Users\Thorp\Desktop\Spiele 2015-09-15 22:39 - 2015-08-26 03:27 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-15 22:39 - 2015-08-26 03:27 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-14 18:40 - 2015-01-24 12:41 - 00000000 ____D C:\Users\Thorp\AppData\Local\Google 2015-09-12 20:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2015-09-11 19:40 - 2015-08-08 05:25 - 00000000 ____D C:\Users\Thorp\AppData\Roaming\vlc 2015-09-10 06:04 - 2009-07-14 06:45 - 00437464 _____ C:\Windows\system32\FNTCACHE.DAT 2015-09-10 06:03 - 2009-07-14 20:18 - 00000000 ____D C:\Program Files\Windows Journal 2015-09-10 06:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2015-09-09 23:04 - 2015-01-25 09:46 - 00000000 ____D C:\Windows\system32\MRT 2015-09-09 17:49 - 2015-01-24 12:07 - 00000000 ____D C:\ProgramData\Package Cache 2015-09-06 21:18 - 2015-04-10 13:58 - 00000000 ____D C:\Users\Thorp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2015-09-05 15:06 - 2015-01-24 12:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-09-05 10:37 - 2015-04-08 05:54 - 00000000 ____D C:\Users\Thorp\Documents\my games 2015-09-04 21:55 - 2015-01-24 12:57 - 00000000 ____D C:\Users\Thorp\AppData\Local\Battle.net ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-01-24 11:48 - 2015-01-24 11:48 - 0000017 _____ () C:\Users\Superthorp\AppData\Local\resmon.resmoncfg 2015-02-15 12:25 - 2015-02-15 12:25 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Einige Dateien in TEMP: ==================== C:\Users\Superthorp\AppData\Local\Temp\AutoDetectUtilApp.exe C:\Users\Superthorp\AppData\Local\Temp\avgnt.exe C:\Users\Superthorp\AppData\Local\Temp\DSETUP.dll C:\Users\Superthorp\AppData\Local\Temp\dsetup32.dll C:\Users\Superthorp\AppData\Local\Temp\DXSETUP.exe C:\Users\Thorp\AppData\Local\Temp\avgnt.exe C:\Users\Thorp\AppData\Local\Temp\drm_dialogs.dll C:\Users\Thorp\AppData\Local\Temp\drm_dyndata_7400009.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-10-01 20:33 ==================== Ende von FRST.txt ============================ Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:30-09-2015
durchgeführt von Superthorp (2015-10-02 22:30:18)
Gestartet von C:\Users\Thorp\Desktop\TB
Windows 7 Professional Service Pack 1 (X64) (2015-01-24 09:46:39)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2072509774-729216835-2019632087-500 - Administrator - Disabled)
Gast (S-1-5-21-2072509774-729216835-2019632087-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2072509774-729216835-2019632087-1003 - Limited - Enabled)
Superthorp (S-1-5-21-2072509774-729216835-2019632087-1000 - Administrator - Enabled) => C:\Users\Superthorp
Thorp (S-1-5-21-2072509774-729216835-2019632087-1001 - Limited - Enabled) => C:\Users\Thorp
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.25 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0925-000001000000}) (Version: 9.25.00.0 - Igor Pavlov)
Adobe Reader XI (11.0.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{637D7E6D-2798-E0D0-D257-1796F13B951F}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Armagetron Advanced 0.2.8.3.3.gcc (HKLM-x32\...\Armagetron Advanced) (Version: 0.2.8.3.3.gcc - Armagetron Advanced Team)
Assassin's Creed Chronicles China (HKLM-x32\...\Uplay Install 1651) (Version: - Ubisoft)
ASUS Xonar D1 Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.13.202 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{315dd168-0794-4cf1-8355-f195cde642fc}) (Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG) Hidden
Baldur's Gate(TM) II - Schatten von Amn(TM) (HKLM-x32\...\{7AF32AB1-CB97-11D4-9607-0050BA84F5F7}) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BZFlag 2.4.2 32Bit (remove only) (HKLM-x32\...\BZFlag2.4.2_32Bit) (Version: - )
Child of Light (HKLM-x32\...\Steam App 256290) (Version: - Ubisoft Montréal)
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - FromSoftware)
Darkest Dungeon (HKLM-x32\...\Steam App 262060) (Version: - Red Hook Studios)
Deus Ex: Game of the Year Edition (HKLM-x32\...\Steam App 6910) (Version: - Ion Storm)
Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version: - Larian Studios)
Epic Battle Fantasy 4 (HKLM-x32\...\Steam App 265610) (Version: - Matt Roszak)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version: - Ubisoft)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version: - Subset Games)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hammerwatch (HKLM-x32\...\Steam App 239070) (Version: - Crackshell)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hotline Miami (HKLM-x32\...\1207659118_is1) (Version: 2.2.0.8 - GOG.com)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Mass Effect (HKLM-x32\...\Steam App 17460) (Version: - BioWare)
Microsoft .NET Framework 4.5.1 RC (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50861 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 15.0.4753.1003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Monaco (HKLM-x32\...\Steam App 113020) (Version: - Pocketwatch Games)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Papers, Please (HKLM-x32\...\Steam App 239030) (Version: - 3909)
Pillars of Eternity (HKLM-x32\...\Steam App 291650) (Version: - Obsidian Entertainment)
Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve)
Portal Stories: Mel (HKLM-x32\...\Steam App 317400) (Version: - Prism Studios)
Project CARS (HKLM-x32\...\Steam App 234630) (Version: - Slightly Mad Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.82.317.2014 - Realtek)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
Rogue Legacy (HKLM-x32\...\Steam App 241600) (Version: - Cellar Door Games)
S.T.A.L.K.E.R.: Shadow of Chernobyl (HKLM-x32\...\Steam App 4500) (Version: - GSC Game World)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version: - Carbon)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sword of the Stars: The Pit (HKLM-x32\...\Steam App 233700) (Version: - Kerberos Productions Inc.)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - Edmund McMillen and Florian Himsl)
The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\GOGPACKTHEWITCHER2EE_is1) (Version: 3.4.0.25 - GOG.com)
Tom Clancy's Splinter Cell Chaos Theory (HKLM-x32\...\{888DD888-82BE-4D85-BCB2-2E042CD3E844}) (Version: 1.05.157 - Ubisoft)
Unepic (HKLM-x32\...\Steam App 233980) (Version: - Francisco Téllez de Meneses)
Uplay (HKLM-x32\...\Uplay) (Version: 4.3 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Wasteland 2 (HKLM-x32\...\Steam App 240760) (Version: - inXile Entertainment)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
World of Goo (HKLM-x32\...\Steam App 22000) (Version: - 2D BOY)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
XCOM: Enemy Unknown (HKLM-x32\...\Steam App 200510) (Version: - Firaxis Games)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
19-09-2015 11:16:21 Geplanter Prüfpunkt
02-10-2015 18:15:22 Geplanter Prüfpunkt
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {1871422C-99A0-426E-A015-F429C9AFDCC2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-09-11] (Microsoft Corporation)
Task: {2D2D7D39-5C79-4751-9137-AFF804F6207E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-26] (Google Inc.)
Task: {48CC8D16-106A-401D-A7A3-00DE326255D5} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {5D7D60D5-559C-4C94-A9D5-D3B789708119} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {89ADB511-9545-46C4-B858-D766148209FC} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-09-11] (Microsoft Corporation)
Task: {A301C2CE-1A2A-47F8-9FEF-E608549672E7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-26] (Google Inc.)
Task: {AE9F65FB-842E-4B94-A32E-4B7D470C6155} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-09-12] (Microsoft Corporation)
Task: {B45579E6-1D3C-4271-9BB4-BEF3D88C3B98} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-09-12] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-03-20 18:12 - 2015-03-20 18:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-31 08:59 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2015-01-24 12:10 - 2008-07-11 16:04 - 00200704 ____N () C:\Windows\SysWOW64\HsMgr.exe
2015-01-24 12:10 - 2008-07-11 16:03 - 00282112 ____N () C:\Windows\system\HsMgr64.exe
2015-01-24 12:10 - 2012-06-06 10:56 - 00143360 ____N () C:\Program Files\ASUS Xonar D1 Audio\Customapp\VmixP8.dll
2015-09-27 16:46 - 2015-09-24 04:34 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libglesv2.dll
2015-09-27 16:46 - 2015-09-24 04:34 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2072509774-729216835-2019632087-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Superthorp\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{DBE64511-7D73-4577-A356-F7100F769049}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{CC0919F8-ED2F-4035-AA8A-FA56E37003F2}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{A6C5ACCD-2200-4123-AE9F-CCBE282EA32C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{E977A753-278D-4220-AA0C-70B4187119CD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{9FE8A700-13EC-4029-BC46-AA8001C2BB28}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{2ECF6208-A790-490F-A820-1FC474A569EA}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{E87FB022-BA6F-49A4-AE6B-ACC55EA37F76}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{39A4DCCC-513E-4405-ACEC-678CD0109717}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{84E9916A-1391-4AA1-B566-3F2BDC2582FE}] => (Allow) E:\Spiele\Steam\steamapps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{B54692C6-C809-472E-BFA5-A705915C1E2B}] => (Allow) E:\Spiele\Steam\steamapps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{03C2BB3A-630F-49D2-8941-1DCB5605D250}] => (Allow) E:\Spiele\Steam\steamapps\common\The Pit\ThePit.exe
FirewallRules: [{83F60C37-D39C-4BF8-848E-D339C624028F}] => (Allow) E:\Spiele\Steam\steamapps\common\The Pit\ThePit.exe
FirewallRules: [{1D45776C-6EC0-4EB5-8ABE-44A537101B1F}] => (Allow) E:\Spiele\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{4E1D9892-834B-485E-9668-EDE55C0603A6}] => (Allow) E:\Spiele\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{09AFCC51-DE65-4912-8435-0623734FA58D}] => (Allow) E:\Spiele\Steam\steamapps\common\Child of Light\ChildofLight.exe
FirewallRules: [{2BEDF6DE-A7AF-4885-A95C-1EFA7230651D}] => (Allow) E:\Spiele\Steam\steamapps\common\Child of Light\ChildofLight.exe
FirewallRules: [{1F95CE6D-CC30-4D8F-85AE-23383F0F7B10}] => (Allow) E:\Spiele\Steam\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{61B18CD0-B00B-4E05-AE49-DF0E4D158142}] => (Allow) E:\Spiele\Steam\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [TCP Query User{4371C417-9A98-4F39-A8CA-B209963BDF2E}D:\battle.net\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe] => (Allow) D:\battle.net\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4353CA32-8C77-4C8A-A45D-8567B95B54EE}D:\battle.net\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe] => (Allow) D:\battle.net\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe
FirewallRules: [{7C8E5AAF-054F-47CF-A391-BDB3466470A7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{A78ECD84-78B5-473A-8897-C948B0984924}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{86FF3748-F725-459E-B470-9ADCEAE93848}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{10BCF26B-AAAD-4770-922C-41DA64641DE5}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{5C3343C9-9E31-4EB0-99B9-15E06EB933A7}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [TCP Query User{4BCAE4B5-CEB3-4BCE-9A3A-A4A70D4FA2BF}D:\steam\steamapps\common\dayz\dayz.exe] => (Allow) D:\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{3453FA2B-DF4B-4C9E-BA41-4E67ABE14F57}D:\steam\steamapps\common\dayz\dayz.exe] => (Allow) D:\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [{7A8F0BB1-3ED3-4BCF-BCA0-CBA7C308FA63}] => (Allow) D:\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{1DBDF174-4A30-4A6B-B49F-9B9941A66EB7}] => (Allow) D:\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{11BEF646-54ED-4AC7-8735-BC6360AA3D8F}D:\onlinegames\world_of_warships\wowslauncher.exe] => (Allow) D:\onlinegames\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{32343EA7-CA22-494E-8132-81322C64801E}D:\onlinegames\world_of_warships\wowslauncher.exe] => (Allow) D:\onlinegames\world_of_warships\wowslauncher.exe
FirewallRules: [{56E8E784-C950-4A75-A2B5-CD4A112AE075}] => (Allow) D:\Steam\steamapps\common\Child of Light\ChildofLight.exe
FirewallRules: [{3E93F2F0-C1B0-4A5E-9B24-96294B139C4D}] => (Allow) D:\Steam\steamapps\common\Child of Light\ChildofLight.exe
FirewallRules: [{EA0DC3A3-AA67-45D8-906B-273A6C4DBE20}] => (Allow) C:\Users\Thorp\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6E838ED7-ED80-4B5E-AA77-A79512EB366A}] => (Allow) C:\Users\Thorp\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{783BA1ED-88D6-4DC8-9D30-74B4AD64C28E}C:\users\thorp\appdata\roaming\utorrent\updates\3.4.2_39744.exe] => (Allow) C:\users\thorp\appdata\roaming\utorrent\updates\3.4.2_39744.exe
FirewallRules: [UDP Query User{95DC4B68-89FB-41D3-B85C-19B60D1CF41D}C:\users\thorp\appdata\roaming\utorrent\updates\3.4.2_39744.exe] => (Allow) C:\users\thorp\appdata\roaming\utorrent\updates\3.4.2_39744.exe
FirewallRules: [{19438C89-EB61-43A8-A6B2-B098426938CA}] => (Allow) D:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{EC053CEB-63CC-44EC-BA1B-EBB041FA8E47}] => (Allow) D:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{02F7144D-A801-4035-AE17-E7A23F67BD35}] => (Allow) D:\Steam\steamapps\common\World of Goo\WorldOfGoo.exe
FirewallRules: [{8CC5ED78-05C5-484E-856A-DAA930D94E7F}] => (Allow) D:\Steam\steamapps\common\World of Goo\WorldOfGoo.exe
FirewallRules: [{CA3FE607-9A3E-422D-89CB-C62DCD4043F4}] => (Allow) D:\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{6F7ED1CE-F532-4451-B140-27EA18445C49}] => (Allow) D:\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{BD4F418B-AF2C-4F8D-83F3-AA57687066FE}] => (Allow) D:\Steam\steamapps\common\Hammerwatch\Hammerwatch.exe
FirewallRules: [{E1719298-34C5-41D3-9670-D97DCCAD6EF7}] => (Allow) D:\Steam\steamapps\common\Hammerwatch\Hammerwatch.exe
FirewallRules: [{4576F14A-B7A2-4C11-8044-106D6A463AE8}] => (Allow) D:\Steam\steamapps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{CD01A2B5-CEB8-4AA5-A251-5A3C2ADC14C5}] => (Allow) D:\Steam\steamapps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{737C253B-D85A-4DAE-A537-83694DB1723B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3FFC15D1-8120-472A-881F-8E2E35ACB930}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BC5FA1B4-D1FF-4DD8-A79E-E5AF4AA325C4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F7F9B09E-C5CD-4B3E-9034-FFD8B7DC9FDF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{48781DC5-C0C2-4B0F-A688-801BBFBE2BCE}] => (Allow) D:\Programme\iTunes\iTunes.exe
FirewallRules: [{85C8A575-8FA1-47B6-B2F1-101A1222DE74}] => (Allow) D:\Steam\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{2E1AF55A-A65A-493E-AF36-119EB41EC0DD}] => (Allow) D:\Steam\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{2C88BE92-8140-4B25-A8CD-D20A62A166FF}] => (Allow) D:\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{C24DF632-750E-4DD7-89B1-386E124D85E9}] => (Allow) D:\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{C6BC442A-441B-418E-B873-C2A59AC20EDC}] => (Allow) D:\Steam\steamapps\common\Unepic\unepic.exe
FirewallRules: [{5AF23BC8-C9F9-4749-A32D-D73DACAD82A2}] => (Allow) D:\Steam\steamapps\common\Unepic\unepic.exe
FirewallRules: [{2B607076-2934-4DA7-A1D8-DC06ACB2FF2A}] => (Allow) E:\Spiele\Steam\steamapps\common\Wasteland 2\Build\WL2.exe
FirewallRules: [{FE3A9954-31E2-462C-B45F-BCAA9BC499C6}] => (Allow) E:\Spiele\Steam\steamapps\common\Wasteland 2\Build\WL2.exe
FirewallRules: [{58607970-6946-41A7-87D3-8332121C8AB5}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{4D7B7E2C-D510-43A1-B8D2-36AA98440F64}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{C102D7F2-08B7-4808-9D0B-C50EF372C3EC}] => (Allow) E:\Spiele\uPlay\Assassin's Creed Chronicles China\Binaries\Win32\ACCGame-Win32-Shipping.exe
FirewallRules: [{B8219D92-A431-4B34-B368-988CCA32B7B9}] => (Allow) E:\Spiele\uPlay\Assassin's Creed Chronicles China\Binaries\Win32\ACCGame-Win32-Shipping.exe
FirewallRules: [{7A6A05E0-D826-4B2B-AD2A-63AF2A779493}] => (Allow) E:\Spiele\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{D3745CEF-A6DC-4957-88FA-6A6C97F873F0}] => (Allow) E:\Spiele\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [TCP Query User{F7E16E77-F610-4C62-8140-16D1AC42ACA9}E:\spiele\wolfenstein the new order\wolfneworder_x64.exe] => (Block) E:\spiele\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [UDP Query User{006B5094-8FBA-4357-97E1-E12F6975D5C4}E:\spiele\wolfenstein the new order\wolfneworder_x64.exe] => (Block) E:\spiele\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [{5002BCC9-F6F4-498C-BD94-8221E3B956B0}] => (Allow) E:\Spiele\uPlay\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{F514FDAA-3EA1-455A-83AF-EDACFC63AFB5}] => (Allow) E:\Spiele\uPlay\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{77FCF2B0-9460-41BD-8147-5013D53E281A}] => (Allow) E:\Spiele\uPlay\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{60E4B265-83C2-480C-9475-03CB5A7BA15F}] => (Allow) E:\Spiele\uPlay\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{CE37347E-D78E-4BBC-B430-059C6F790227}] => (Allow) E:\Spiele\Steam\steamapps\common\pCars\pCARS64.exe
FirewallRules: [{978EE50A-11EB-44F0-B086-F2CCF3B7D517}] => (Allow) E:\Spiele\Steam\steamapps\common\pCars\pCARS64.exe
FirewallRules: [{467BBEF1-74C3-4A41-97D0-9A16CA96B1A3}] => (Allow) E:\Spiele\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{1650DBB1-76D5-48F1-B668-C3FA69363667}] => (Allow) E:\Spiele\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{888454C2-D969-4B27-B2A8-AF424517F609}] => (Allow) E:\Spiele\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{FB36A226-A385-4197-8853-A43C7CA037F3}] => (Allow) E:\Spiele\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{D3518E83-E3F5-4F34-BA9A-0FDBB25224AE}] => (Allow) D:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{2923A615-A12C-493D-BF54-F399DEECE9DA}] => (Allow) D:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{6D700EFE-86ED-4340-B6A9-D413099D727C}] => (Allow) D:\Steam\steamapps\common\Monaco\MONACO.exe
FirewallRules: [{B7D09F2E-6257-4B51-85D9-DE8E80351C39}] => (Allow) D:\Steam\steamapps\common\Monaco\MONACO.exe
FirewallRules: [TCP Query User{F5F97596-2962-4835-A6C9-ED7D348A711A}E:\spiele\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) E:\spiele\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [UDP Query User{FB3ED92A-C042-4F5B-9584-7062AB20590D}E:\spiele\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) E:\spiele\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [{C7D6BE1E-3AF8-476E-88CD-218331C2EF36}] => (Allow) E:\Spiele\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{C03AA304-F4C0-4766-B3D6-478421AD44E3}] => (Allow) E:\Spiele\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{4BE872F2-F267-4398-83C2-01B3784726CB}] => (Allow) E:\Spiele\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{0275C006-1826-488B-8E1C-6B33268B7ADA}] => (Allow) E:\Spiele\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{CC2BD728-7CAF-4754-8E63-E9D9713F3C3A}] => (Allow) E:\Spiele\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{BDF49AE5-3000-40B8-98AE-E8F01DE01C5E}] => (Allow) E:\Spiele\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [TCP Query User{4CA9172A-9F40-4F86-AF3D-069C579BD42F}E:\spiele\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) E:\spiele\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [UDP Query User{E7E9B473-5830-4AF0-82BA-8ADC1F085975}E:\spiele\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) E:\spiele\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [{7D09DD3C-8471-4583-8288-4304C4E496D9}] => (Allow) E:\Spiele\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{0D844956-741D-484B-8807-58C4BBC2C4B5}] => (Allow) E:\Spiele\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{93F49347-F0A5-4757-82A8-7E077FECD6A8}] => (Allow) E:\Spiele\Steam\steamapps\common\Portal Stories Mel\portal2.exe
FirewallRules: [{8B401BAB-6209-4CFA-8A6E-12629D0718D0}] => (Allow) E:\Spiele\Steam\steamapps\common\Portal Stories Mel\portal2.exe
FirewallRules: [{CD873A40-A711-480F-87CC-22D7740EDEC4}] => (Allow) D:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{B901B35E-1ADB-4112-915E-C544256FDE1B}] => (Allow) D:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{AC720ED1-3A62-4A11-A438-E2209F7F35F4}] => (Allow) E:\Spiele\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{33049F3D-C4DB-40AF-A5DA-66DFECE8C64F}] => (Allow) E:\Spiele\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{F35507EF-C924-4C82-8C8A-8F97CFC5DCDE}] => (Allow) E:\Spiele\Steam\steamapps\common\The Talos Principle Demo\Bin\Talos_Demo.exe
FirewallRules: [{2E285DB5-2ECA-4EEC-BB24-93FAEA9DB785}] => (Allow) E:\Spiele\Steam\steamapps\common\The Talos Principle Demo\Bin\Talos_Demo.exe
FirewallRules: [{05CAE2E5-0B87-407E-B099-90FF2256D348}] => (Allow) E:\Spiele\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{5A12A322-6B90-44DA-B6AD-0C8B8A2DAD09}] => (Allow) E:\Spiele\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{0061A586-FF21-4F1C-8190-00DBE4784513}] => (Allow) E:\Spiele\Steam\steamapps\common\Epic Battle Fantasy 4\EBF4.exe
FirewallRules: [{9A14DC9A-88EE-4B21-91DA-490D3DFDCAB5}] => (Allow) E:\Spiele\Steam\steamapps\common\Epic Battle Fantasy 4\EBF4.exe
FirewallRules: [{6EC69404-44B5-42A7-B9D8-123F54D0D66C}] => (Allow) E:\Spiele\uPlay\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{E3EB3B2F-7E24-4C6B-8084-1F345C9531D7}] => (Allow) E:\Spiele\uPlay\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [TCP Query User{68561A46-B9F0-4FCB-A72F-DE498B65BA3F}E:\spiele\bzflag\bzfs.exe] => (Allow) E:\spiele\bzflag\bzfs.exe
FirewallRules: [UDP Query User{26B636A0-5EFB-49D3-A01E-03135C84BA4F}E:\spiele\bzflag\bzfs.exe] => (Allow) E:\spiele\bzflag\bzfs.exe
FirewallRules: [{17E4777A-8068-47EB-871B-C8CBE5FB59B7}] => (Allow) E:\Spiele\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [{C4F10667-43FD-4DA7-9D2A-5E868833D77F}] => (Allow) E:\Spiele\Battle.net\Hearthstone\Hearthstone.exe
FirewallRules: [{128745CE-B709-411F-B2D2-D904007ED8C2}] => (Allow) E:\Spiele\Battle.net\StarCraft II\StarCraft II.exe
FirewallRules: [{67F75085-A26E-46C9-BD63-02D380038257}] => (Allow) E:\Spiele\Battle.net\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{827FE3C4-0688-49A6-A138-3636B565304C}E:\spiele\battle.net\diablo iii\diablo iii.exe] => (Allow) E:\spiele\battle.net\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{4C132F4B-4C2A-43C1-AAB8-D76038306219}E:\spiele\battle.net\diablo iii\diablo iii.exe] => (Allow) E:\spiele\battle.net\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{F9926C16-A3DD-4805-B07A-BB8BBABA7E4B}D:\battle.net\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) D:\battle.net\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D7C39F5A-DC37-4DCC-BB25-6A47A2B7EC55}D:\battle.net\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) D:\battle.net\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9B82ECF7-3363-4991-AC00-D90806ED5C2C}D:\onlinegames\world_of_tanks\wotlauncher.exe] => (Allow) D:\onlinegames\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{10B18713-A256-48FC-9A1B-0F170526E2AE}D:\onlinegames\world_of_tanks\wotlauncher.exe] => (Allow) D:\onlinegames\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{9BDDAE61-25C3-4096-98CE-36358CBD1237}D:\onlinegames\world_of_tanks\worldoftanks.exe] => (Allow) D:\onlinegames\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{FDAF151E-4F6C-42E0-A927-7007386E351A}D:\onlinegames\world_of_tanks\worldoftanks.exe] => (Allow) D:\onlinegames\world_of_tanks\worldoftanks.exe
FirewallRules: [{22C82F14-5B3E-436E-B51E-48B04E8712DE}] => (Allow) D:\Steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{09D12141-79B5-47DD-BC9C-360C400B0699}] => (Allow) D:\Steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{B92A6211-EEF6-44FC-84A4-C470ED93989A}] => (Allow) E:\Spiele\Steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{8464946E-F266-40BE-AAB4-D3D72F497282}] => (Allow) E:\Spiele\Steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{D4A6BA3F-E4DC-4554-926C-443D423FAADA}] => (Allow) D:\Steam\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{7D833B16-A1D8-4F96-85B4-E07C7DAEB66A}] => (Allow) D:\Steam\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{0018A3BA-8D23-44EA-AB7C-B72E3EA7D32D}] => (Allow) E:\Spiele\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{B13107ED-4EAE-48DE-AB60-3E2C113E9BDE}] => (Allow) E:\Spiele\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{32785987-47FF-4BD3-A274-B4DC8255EF66}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9B3D7314-CB05-41DA-9776-4463790FA500}] => (Allow) D:\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{09EA6280-83C5-4A74-8B3A-4F3AE26F5EE3}] => (Allow) D:\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (10/02/2015 04:40:55 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (10/01/2015 05:37:20 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/30/2015 08:06:16 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/29/2015 06:21:12 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/29/2015 08:29:20 AM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/28/2015 11:35:16 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/28/2015 04:46:22 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/28/2015 05:48:15 AM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/27/2015 10:57:47 AM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (09/26/2015 01:27:07 PM) (Source: MsiInstaller) (EventID: 1024) (User: Superthorpania)
Description: Produkt: Adobe Reader XI (11.0.11) - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011012}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Systemfehler:
=============
Error: (09/12/2015 07:33:30 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 12.09.2015 um 19:32:50 unerwartet heruntergefahren.
Error: (09/09/2015 05:49:31 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.
Error: (08/21/2015 04:46:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/21/2015 04:46:07 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (08/13/2015 06:30:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/13/2015 06:30:11 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (08/02/2015 03:39:25 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (07/24/2015 10:46:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/24/2015 10:46:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (07/23/2015 05:09:47 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Xeon(R) CPU E3-1230 v3 @ 3.30GHz
Prozentuale Nutzung des RAM: 29%
Installierter physikalischer RAM: 8136.63 MB
Verfügbarer physikalischer RAM: 5698.87 MB
Summe virtueller Speicher: 16271.46 MB
Verfügbarer virtueller Speicher: 13716 MB
==================== Laufwerke ================================
Drive c: (System) (Fixed) (Total:111.69 GB) (Free:60.43 GB) NTFS
Drive d: (Spiele) (Fixed) (Total:232.88 GB) (Free:119.01 GB) NTFS
Drive e: (KrimsKrams) (Fixed) (Total:1863.01 GB) (Free:1598.77 GB) NTFS
Drive f: (SCCT) (CDROM) (Total:4.07 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 991AB19C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: F6D970BD)
Partition: GPT.
========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: 991AB1A4)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
02.10.2015, 21:52
| #6 |
| | Grundreinigung PC MBar Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2015.10.02.07
rootkit: v2015.10.02.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18015
Superthorp :: SUPERTHORPANIA [administrator]
02.10.2015 22:33:54
mbar-log-2015-10-02 (22-33-54).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 397133
Time elapsed: 5 minute(s), 53 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 22:44:15.0197 0x12d4 TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
22:44:23.0186 0x12d4 ============================================================
22:44:23.0186 0x12d4 Current date / time: 2015/10/02 22:44:23.0186
22:44:23.0186 0x12d4 SystemInfo:
22:44:23.0186 0x12d4
22:44:23.0186 0x12d4 OS Version: 6.1.7601 ServicePack: 1.0
22:44:23.0186 0x12d4 Product type: Workstation
22:44:23.0186 0x12d4 ComputerName: SUPERTHORPANIA
22:44:23.0186 0x12d4 UserName: Superthorp
22:44:23.0186 0x12d4 Windows directory: C:\Windows
22:44:23.0186 0x12d4 System windows directory: C:\Windows
22:44:23.0186 0x12d4 Running under WOW64
22:44:23.0186 0x12d4 Processor architecture: Intel x64
22:44:23.0186 0x12d4 Number of processors: 8
22:44:23.0186 0x12d4 Page size: 0x1000
22:44:23.0186 0x12d4 Boot type: Normal boot
22:44:23.0186 0x12d4 ============================================================
22:44:23.0515 0x12d4 KLMD registered as C:\Windows\system32\drivers\89140058.sys
22:44:23.0686 0x12d4 System UUID: {31CCEB2E-3250-DAAC-6B6F-87AB80A7DEC9}
22:44:24.0066 0x12d4 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:44:24.0069 0x12d4 Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:44:24.0069 0x12d4 Drive \Device\Harddisk2\DR2 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:44:24.0080 0x12d4 ============================================================
22:44:24.0080 0x12d4 \Device\Harddisk0\DR0:
22:44:24.0080 0x12d4 MBR partitions:
22:44:24.0080 0x12d4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:44:24.0080 0x12d4 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61800
22:44:24.0080 0x12d4 \Device\Harddisk1\DR1:
22:44:24.0080 0x12d4 GPT partitions:
22:44:24.0081 0x12d4 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {0AC5D750-88FE-46B8-B009-FF960EB78289}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1D1C5000
22:44:24.0081 0x12d4 MBR partitions:
22:44:24.0081 0x12d4 \Device\Harddisk2\DR2:
22:44:24.0081 0x12d4 MBR partitions:
22:44:24.0081 0x12d4 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
22:44:24.0081 0x12d4 ============================================================
22:44:24.0081 0x12d4 C: <-> \Device\Harddisk0\DR0\Partition2
22:44:24.0082 0x12d4 D: <-> \Device\Harddisk1\DR1\Partition1
22:44:24.0095 0x12d4 E: <-> \Device\Harddisk2\DR2\Partition1
22:44:24.0095 0x12d4 ============================================================
22:44:24.0095 0x12d4 Initialize success
22:44:24.0095 0x12d4 ============================================================
22:44:50.0783 0x0a28 ============================================================
22:44:50.0783 0x0a28 Scan started
22:44:50.0783 0x0a28 Mode: Manual; SigCheck; TDLFS;
22:44:50.0783 0x0a28 ============================================================
22:44:50.0783 0x0a28 KSN ping started
22:44:53.0335 0x0a28 KSN ping finished: true
22:44:53.0726 0x0a28 ================ Scan system memory ========================
22:44:53.0726 0x0a28 System memory - ok
22:44:53.0727 0x0a28 ================ Scan services =============================
22:44:53.0745 0x0a28 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:44:53.0775 0x0a28 1394ohci - ok
22:44:53.0785 0x0a28 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:44:53.0796 0x0a28 ACPI - ok
22:44:53.0800 0x0a28 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:44:53.0812 0x0a28 AcpiPmi - ok
22:44:53.0816 0x0a28 [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:44:53.0822 0x0a28 AdobeARMservice - ok
22:44:53.0835 0x0a28 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:44:53.0853 0x0a28 adp94xx - ok
22:44:53.0863 0x0a28 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:44:53.0878 0x0a28 adpahci - ok
22:44:53.0885 0x0a28 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:44:53.0896 0x0a28 adpu320 - ok
22:44:53.0901 0x0a28 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:44:53.0907 0x0a28 AeLookupSvc - ok
22:44:53.0923 0x0a28 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
22:44:53.0945 0x0a28 AFD - ok
22:44:53.0948 0x0a28 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
22:44:53.0955 0x0a28 agp440 - ok
22:44:53.0958 0x0a28 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
22:44:53.0967 0x0a28 ALG - ok
22:44:53.0970 0x0a28 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
22:44:53.0977 0x0a28 aliide - ok
22:44:53.0985 0x0a28 [ 6FA0534DF8E1155FB1BDB5BEF04D0B6D, D4EAAA21FE818708BAE18F2668DCDBD44ED0AC7FA6C89A136F54829E357B9677 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:44:54.0000 0x0a28 AMD External Events Utility - ok
22:44:54.0003 0x0a28 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
22:44:54.0011 0x0a28 amdide - ok
22:44:54.0013 0x0a28 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:44:54.0023 0x0a28 AmdK8 - ok
22:44:54.0357 0x0a28 [ CCDE12FC590AB90AF449145689E19E26, 5DC2A1D44B58AF87D4AF42812C0106CCC05711189618745ECC5DBCB683D6D5D3 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
22:44:54.0842 0x0a28 amdkmdag - ok
22:44:54.0881 0x0a28 [ 1CEBD7A2E0C678E0625F5468098931F6, 829B3783E073C82430CB632F534A33555B768C6D519631C67F5CA49A2E0B7210 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
22:44:54.0908 0x0a28 amdkmdap - ok
22:44:54.0912 0x0a28 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:44:54.0922 0x0a28 AmdPPM - ok
22:44:54.0926 0x0a28 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:44:54.0936 0x0a28 amdsata - ok
22:44:54.0940 0x0a28 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:44:54.0951 0x0a28 amdsbs - ok
22:44:54.0953 0x0a28 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:44:54.0960 0x0a28 amdxata - ok
22:44:54.0976 0x0a28 [ 6B31C215750CD41567E962D22839EE44, FF0B92807296B88DE37F9F2EB27FF7B73AA998B98074AA54A949A2B79690AFE5 ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
22:44:54.0995 0x0a28 AntiVirMailService - ok
22:44:55.0003 0x0a28 [ 18B0643B3B504E0FDCFCE0C8743B29C7, 1D4C004AD5066F52A4AA039F5364814F8F6B04EC1F704A5A3110172AD465661C ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
22:44:55.0015 0x0a28 AntiVirSchedulerService - ok
22:44:55.0022 0x0a28 [ 18B0643B3B504E0FDCFCE0C8743B29C7, 1D4C004AD5066F52A4AA039F5364814F8F6B04EC1F704A5A3110172AD465661C ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
22:44:55.0033 0x0a28 AntiVirService - ok
22:44:55.0050 0x0a28 [ 9A12F8E472FE05EF653CA152050405D4, 569EA8FFDE827F850CA8E3CB747A8552FD9981E61C48C7EA55E550A6C07F770E ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
22:44:55.0070 0x0a28 AntiVirWebService - ok
22:44:55.0073 0x0a28 [ A0711D119BA4B48A1470C768D301013E, 536366F809125D2C2171597C8C2CB3271BE5C6B373152112E0D970749776E00A ] AppID C:\Windows\system32\drivers\appid.sys
22:44:55.0081 0x0a28 AppID - ok
22:44:55.0082 0x0a28 [ 173C90AF5B243B4DD86F95CA154CB58A, 349F566DADC96B31FDC34C4F26545FB880844DBF84E5821AA0D0CAA91FB837E1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:44:55.0088 0x0a28 AppIDSvc - ok
22:44:55.0091 0x0a28 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
22:44:55.0097 0x0a28 Appinfo - ok
22:44:55.0101 0x0a28 [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:44:55.0106 0x0a28 Apple Mobile Device Service - ok
22:44:55.0112 0x0a28 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
22:44:55.0122 0x0a28 AppMgmt - ok
22:44:55.0125 0x0a28 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
22:44:55.0135 0x0a28 arc - ok
22:44:55.0137 0x0a28 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:44:55.0147 0x0a28 arcsas - ok
22:44:55.0155 0x0a28 [ 041672BAC20B34EAEDEB033129655DD8, 14264732F0CACF5732C7652C411F0A1C3B4A4417C31DD289C8AFF170BE683E5A ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:44:55.0166 0x0a28 aspnet_state - ok
22:44:55.0167 0x0a28 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:44:55.0186 0x0a28 AsyncMac - ok
22:44:55.0188 0x0a28 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
22:44:55.0195 0x0a28 atapi - ok
22:44:55.0198 0x0a28 [ ED38B8924DE8C806A2A1C12C4F61E9CF, 88B71426CF09A8458B1AE2DDF41F2C86FE9B4DDA742D22BFF8AF110915486DDA ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
22:44:55.0210 0x0a28 AtiHDAudioService - ok
22:44:55.0225 0x0a28 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:44:55.0242 0x0a28 AudioEndpointBuilder - ok
22:44:55.0257 0x0a28 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:44:55.0272 0x0a28 AudioSrv - ok
22:44:55.0277 0x0a28 [ 03C6DEB5C74C8140C2167677DBE2F79A, D5C727B007C5B486DECE1A1B83D8155299DD7CB46DC8208CE9185C5BAE5CC33A ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
22:44:55.0285 0x0a28 avgntflt - ok
22:44:55.0288 0x0a28 [ 043E5F34C3878C844568658B79B3E55C, D13D8FC5205562E02F252C0EE1AB2236C9212445D6EC3715041EBDF993CB467F ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
22:44:55.0301 0x0a28 avipbb - ok
22:44:55.0307 0x0a28 [ 24680B56D862F1DE30C13FC64B80F568, 4B30EB73369691B915F5615E1BF6C95B070E184BC42BCC505C94410014A04EB3 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
22:44:55.0316 0x0a28 Avira.ServiceHost - ok
22:44:55.0318 0x0a28 [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
22:44:55.0326 0x0a28 avkmgr - ok
22:44:55.0330 0x0a28 [ 080860E03F0219AF0A0377A02292741F, F0A151509BFEBFE639CC15388847EB2EDA298CFAE0AC4A1358A1472F42320249 ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
22:44:55.0340 0x0a28 avnetflt - ok
22:44:55.0343 0x0a28 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:44:55.0355 0x0a28 AxInstSV - ok
22:44:55.0363 0x0a28 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:44:55.0380 0x0a28 b06bdrv - ok
22:44:55.0386 0x0a28 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:44:55.0400 0x0a28 b57nd60a - ok
22:44:55.0405 0x0a28 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
22:44:55.0413 0x0a28 BDESVC - ok
22:44:55.0415 0x0a28 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
22:44:55.0433 0x0a28 Beep - ok
22:44:55.0452 0x0a28 [ 2EE42E7539BBF4252F7F47B288E61CEA, 2113A7C825AE2D222FD80D092BAA254AB3EFA8A2F58EC8325837A6BC611BC715 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
22:44:55.0488 0x0a28 BEService - ok
22:44:55.0505 0x0a28 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
22:44:55.0521 0x0a28 BFE - ok
22:44:55.0541 0x0a28 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
22:44:55.0583 0x0a28 BITS - ok
22:44:55.0586 0x0a28 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:44:55.0596 0x0a28 blbdrive - ok
22:44:55.0610 0x0a28 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:44:55.0620 0x0a28 Bonjour Service - ok
22:44:55.0625 0x0a28 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:44:55.0633 0x0a28 bowser - ok
22:44:55.0635 0x0a28 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:44:55.0645 0x0a28 BrFiltLo - ok
22:44:55.0647 0x0a28 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:44:55.0656 0x0a28 BrFiltUp - ok
22:44:55.0660 0x0a28 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
22:44:55.0667 0x0a28 Browser - ok
22:44:55.0673 0x0a28 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:44:55.0688 0x0a28 Brserid - ok
22:44:55.0691 0x0a28 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:44:55.0701 0x0a28 BrSerWdm - ok
22:44:55.0702 0x0a28 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:44:55.0711 0x0a28 BrUsbMdm - ok
22:44:55.0713 0x0a28 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:44:55.0722 0x0a28 BrUsbSer - ok
22:44:55.0725 0x0a28 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:44:55.0736 0x0a28 BTHMODEM - ok
22:44:55.0740 0x0a28 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
22:44:55.0758 0x0a28 bthserv - ok
22:44:55.0761 0x0a28 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:44:55.0780 0x0a28 cdfs - ok
22:44:55.0785 0x0a28 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:44:55.0792 0x0a28 cdrom - ok
22:44:55.0796 0x0a28 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
22:44:55.0816 0x0a28 CertPropSvc - ok
22:44:55.0818 0x0a28 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:44:55.0830 0x0a28 circlass - ok
22:44:55.0837 0x0a28 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
22:44:55.0848 0x0a28 CLFS - ok
22:44:55.0888 0x0a28 [ 55C892763A614BA39BA956A0323C65F3, 3A4FFB6140D8390CBA67ADEB459C71B0B6B5720D17E30E2677CC9AB603D43016 ] ClickToRunSvc C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
22:44:55.0931 0x0a28 ClickToRunSvc - ok
22:44:55.0936 0x0a28 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:44:55.0942 0x0a28 clr_optimization_v2.0.50727_32 - ok
22:44:55.0947 0x0a28 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:44:55.0953 0x0a28 clr_optimization_v2.0.50727_64 - ok
22:44:55.0961 0x0a28 [ 397C2677C25CBE213F3270245A401624, 8121E37108DE7A0402DC5111EBF452F91893B63EECE3AAD9EACF61C40D3FC182 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:44:55.0968 0x0a28 clr_optimization_v4.0.30319_32 - ok
22:44:55.0972 0x0a28 [ 29139759FCC4E4E0531ABE2EA82CE646, CFF7B2F4A9B37D343BE18DC40161DC03FA9DB308CAE9E0B3DF1FCDC3EBAC0C08 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:44:55.0980 0x0a28 clr_optimization_v4.0.30319_64 - ok
22:44:55.0982 0x0a28 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:44:55.0990 0x0a28 CmBatt - ok
22:44:55.0992 0x0a28 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:44:56.0000 0x0a28 cmdide - ok
22:44:56.0043 0x0a28 [ A22223EBADA0DA435D82FF97067E9CC5, 2974145532F7ABAA66E897289379B676FBB19757B84CFE2D4967CEB9961B1157 ] cmudaxp C:\Windows\system32\drivers\cmudaxp.sys
22:44:56.0106 0x0a28 cmudaxp - ok
22:44:56.0120 0x0a28 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
22:44:56.0140 0x0a28 CNG - ok
22:44:56.0141 0x0a28 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:44:56.0150 0x0a28 Compbatt - ok
22:44:56.0152 0x0a28 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:44:56.0162 0x0a28 CompositeBus - ok
22:44:56.0163 0x0a28 COMSysApp - ok
22:44:56.0165 0x0a28 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:44:56.0173 0x0a28 crcdisk - ok
22:44:56.0178 0x0a28 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:44:56.0187 0x0a28 CryptSvc - ok
22:44:56.0202 0x0a28 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
22:44:56.0220 0x0a28 CSC - ok
22:44:56.0236 0x0a28 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
22:44:56.0251 0x0a28 CscService - ok
22:44:56.0265 0x0a28 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:44:56.0290 0x0a28 DcomLaunch - ok
22:44:56.0300 0x0a28 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
22:44:56.0325 0x0a28 defragsvc - ok
22:44:56.0328 0x0a28 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:44:56.0352 0x0a28 DfsC - ok
22:44:56.0361 0x0a28 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
22:44:56.0373 0x0a28 Dhcp - ok
22:44:56.0396 0x0a28 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
22:44:56.0421 0x0a28 DiagTrack - ok
22:44:56.0425 0x0a28 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
22:44:56.0442 0x0a28 discache - ok
22:44:56.0446 0x0a28 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:44:56.0452 0x0a28 Disk - ok
22:44:56.0457 0x0a28 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:44:56.0466 0x0a28 Dnscache - ok
22:44:56.0473 0x0a28 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
22:44:56.0497 0x0a28 dot3svc - ok
22:44:56.0501 0x0a28 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
22:44:56.0521 0x0a28 DPS - ok
22:44:56.0522 0x0a28 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:44:56.0528 0x0a28 drmkaud - ok
22:44:56.0531 0x0a28 [ 496C3C6BC3D930D0960C9E75AA30F4A7, 3FE0E86DA8C2C6A990BB2F1B92C22BD3483882B8D69FF8025BB68A199362C234 ] dtlitescsibus C:\Windows\system32\DRIVERS\dtlitescsibus.sys
22:44:56.0540 0x0a28 dtlitescsibus - ok
22:44:56.0563 0x0a28 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:44:56.0593 0x0a28 DXGKrnl - ok
22:44:56.0597 0x0a28 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
22:44:56.0617 0x0a28 EapHost - ok
22:44:56.0662 0x0a28 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:44:56.0728 0x0a28 ebdrv - ok
22:44:56.0733 0x0a28 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] EFS C:\Windows\System32\lsass.exe
22:44:56.0741 0x0a28 EFS - ok
22:44:56.0756 0x0a28 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:44:56.0777 0x0a28 ehRecvr - ok
22:44:56.0782 0x0a28 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
22:44:56.0791 0x0a28 ehSched - ok
22:44:56.0800 0x0a28 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:44:56.0817 0x0a28 elxstor - ok
22:44:56.0820 0x0a28 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:44:56.0826 0x0a28 ErrDev - ok
22:44:56.0836 0x0a28 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
22:44:56.0858 0x0a28 EventSystem - ok
22:44:56.0863 0x0a28 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
22:44:56.0882 0x0a28 exfat - ok
22:44:56.0887 0x0a28 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:44:56.0908 0x0a28 fastfat - ok
22:44:56.0921 0x0a28 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
22:44:56.0941 0x0a28 Fax - ok
22:44:56.0943 0x0a28 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:44:56.0952 0x0a28 fdc - ok
22:44:56.0955 0x0a28 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
22:44:56.0975 0x0a28 fdPHost - ok
22:44:56.0977 0x0a28 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
22:44:56.0998 0x0a28 FDResPub - ok
22:44:57.0001 0x0a28 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:44:57.0007 0x0a28 FileInfo - ok
22:44:57.0011 0x0a28 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:44:57.0028 0x0a28 Filetrace - ok
22:44:57.0031 0x0a28 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:44:57.0038 0x0a28 flpydisk - ok
22:44:57.0048 0x0a28 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:44:57.0061 0x0a28 FltMgr - ok
22:44:57.0080 0x0a28 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
22:44:57.0103 0x0a28 FontCache - ok
22:44:57.0107 0x0a28 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:44:57.0112 0x0a28 FontCache3.0.0.0 - ok
22:44:57.0116 0x0a28 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:44:57.0123 0x0a28 FsDepends - ok
22:44:57.0125 0x0a28 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:44:57.0130 0x0a28 Fs_Rec - ok
22:44:57.0135 0x0a28 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:44:57.0145 0x0a28 fvevol - ok
22:44:57.0147 0x0a28 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:44:57.0157 0x0a28 gagp30kx - ok
22:44:57.0160 0x0a28 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:44:57.0166 0x0a28 GEARAspiWDM - ok
22:44:57.0182 0x0a28 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
22:44:57.0210 0x0a28 gpsvc - ok
22:44:57.0215 0x0a28 [ 7814A8ED32D5186BA651008AFFB55080, 1116694AD45DC53B987910DFD16909B69DEF754034E4C535AEE6340229CE5697 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:44:57.0221 0x0a28 gupdate - ok
22:44:57.0223 0x0a28 [ 7814A8ED32D5186BA651008AFFB55080, 1116694AD45DC53B987910DFD16909B69DEF754034E4C535AEE6340229CE5697 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:44:57.0230 0x0a28 gupdatem - ok
22:44:57.0232 0x0a28 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:44:57.0241 0x0a28 hcw85cir - ok
22:44:57.0248 0x0a28 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:44:57.0261 0x0a28 HdAudAddService - ok
22:44:57.0265 0x0a28 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:44:57.0275 0x0a28 HDAudBus - ok
22:44:57.0277 0x0a28 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:44:57.0286 0x0a28 HidBatt - ok
22:44:57.0288 0x0a28 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:44:57.0301 0x0a28 HidBth - ok
22:44:57.0303 0x0a28 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:44:57.0315 0x0a28 HidIr - ok
22:44:57.0317 0x0a28 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
22:44:57.0336 0x0a28 hidserv - ok
22:44:57.0338 0x0a28 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:44:57.0346 0x0a28 HidUsb - ok
22:44:57.0351 0x0a28 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:44:57.0375 0x0a28 hkmsvc - ok
22:44:57.0383 0x0a28 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:44:57.0396 0x0a28 HomeGroupListener - ok
22:44:57.0401 0x0a28 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:44:57.0410 0x0a28 HomeGroupProvider - ok
22:44:57.0412 0x0a28 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:44:57.0421 0x0a28 HpSAMD - ok
22:44:57.0439 0x0a28 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:44:57.0461 0x0a28 HTTP - ok
22:44:57.0464 0x0a28 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:44:57.0470 0x0a28 hwpolicy - ok
22:44:57.0472 0x0a28 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:44:57.0480 0x0a28 i8042prt - ok
22:44:57.0491 0x0a28 [ 25555186E4FBDF0E30A5DBFC9B9A73F9, 4A9DAC2B56389C5955C343E202C6E81CD3A608E78A4BB7E6ED560719DF02C955 ] iaStorA C:\Windows\system32\DRIVERS\iaStorA.sys
22:44:57.0505 0x0a28 iaStorA - ok
22:44:57.0509 0x0a28 [ 10E79E366FA255318F5D1D0ED07F947D, ED1511334356A582D0CAAB94A22BBA5C90FFB4AF3673D02FE0909D4105FD1191 ] iaStorF C:\Windows\system32\DRIVERS\iaStorF.sys
22:44:57.0514 0x0a28 iaStorF - ok
22:44:57.0521 0x0a28 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:44:57.0536 0x0a28 iaStorV - ok
22:44:57.0552 0x0a28 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:44:57.0572 0x0a28 idsvc - ok
22:44:57.0577 0x0a28 IEEtwCollectorService - ok
22:44:57.0580 0x0a28 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:44:57.0589 0x0a28 iirsp - ok
22:44:57.0606 0x0a28 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
22:44:57.0640 0x0a28 IKEEXT - ok
22:44:57.0694 0x0a28 [ 067D63BC5A114FF0C4EF3404F0134625, F6CE79F0015F19B1B346815F769758F5FF6DCA663626DCE352682D93763CFFC0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:44:57.0766 0x0a28 IntcAzAudAddService - ok
22:44:57.0770 0x0a28 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
22:44:57.0777 0x0a28 intelide - ok
22:44:57.0781 0x0a28 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:44:57.0787 0x0a28 intelppm - ok
22:44:57.0791 0x0a28 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:44:57.0811 0x0a28 IPBusEnum - ok
22:44:57.0814 0x0a28 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:44:57.0831 0x0a28 IpFilterDriver - ok
22:44:57.0845 0x0a28 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:44:57.0862 0x0a28 iphlpsvc - ok
22:44:57.0866 0x0a28 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:44:57.0877 0x0a28 IPMIDRV - ok
22:44:57.0880 0x0a28 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:44:57.0900 0x0a28 IPNAT - ok
22:44:57.0921 0x0a28 [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:44:57.0935 0x0a28 iPod Service - ok
22:44:57.0937 0x0a28 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:44:57.0946 0x0a28 IRENUM - ok
22:44:57.0947 0x0a28 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:44:57.0954 0x0a28 isapnp - ok
22:44:57.0959 0x0a28 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:44:57.0969 0x0a28 iScsiPrt - ok
22:44:57.0972 0x0a28 [ 45392E76EE30DC9C8F0181C785F0BA48, 7FB522E1AA9B877B9FB1A29C2ADC42EA794E8864AD2411AD275F00F00547F8F3 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
22:44:57.0977 0x0a28 iusb3hcs - ok
22:44:57.0987 0x0a28 [ C6E8FB7FF41877378CCB30DE6E9941DF, CA808A00C0CC21C1C7BE54F0D1E5D3F24C0032BE821C064E0A63901F20F3C6BC ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
22:44:58.0007 0x0a28 iusb3hub - ok
22:44:58.0027 0x0a28 [ 6FBA980433B2B21604CE990FBF542D3F, ACB35A5558DD9EF9A339C9D061207AF5527D3AEFC9AC99AB6CFBA1CE92F8B62D ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
22:44:58.0060 0x0a28 iusb3xhc - ok
22:44:58.0064 0x0a28 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:44:58.0071 0x0a28 kbdclass - ok
22:44:58.0074 0x0a28 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:44:58.0082 0x0a28 kbdhid - ok
22:44:58.0084 0x0a28 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] KeyIso C:\Windows\system32\lsass.exe
22:44:58.0090 0x0a28 KeyIso - ok
22:44:58.0092 0x0a28 [ A405647429DE231CD954D93F792CFBA2, EDE6095A20FE10EB26B3018457A44807A120508E6C514F2EAC12F5BA1F74841E ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:44:58.0099 0x0a28 KSecDD - ok
22:44:58.0102 0x0a28 [ E4DC0909B5EACB5BF50F6252095BCFF2, 18779648B7FD9D3DFFD8F314E2197962DF98884CC9F025BC5D884984C1C0759D ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:44:58.0110 0x0a28 KSecPkg - ok
22:44:58.0112 0x0a28 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:44:58.0132 0x0a28 ksthunk - ok
22:44:58.0140 0x0a28 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
22:44:58.0165 0x0a28 KtmRm - ok
22:44:58.0170 0x0a28 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:44:58.0192 0x0a28 LanmanServer - ok
22:44:58.0196 0x0a28 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:44:58.0216 0x0a28 LanmanWorkstation - ok
22:44:58.0220 0x0a28 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:44:58.0239 0x0a28 lltdio - ok
22:44:58.0245 0x0a28 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:44:58.0269 0x0a28 lltdsvc - ok
22:44:58.0271 0x0a28 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:44:58.0291 0x0a28 lmhosts - ok
22:44:58.0295 0x0a28 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:44:58.0305 0x0a28 LSI_FC - ok
22:44:58.0309 0x0a28 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:44:58.0317 0x0a28 LSI_SAS - ok
22:44:58.0320 0x0a28 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:44:58.0329 0x0a28 LSI_SAS2 - ok
22:44:58.0332 0x0a28 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:44:58.0342 0x0a28 LSI_SCSI - ok
22:44:58.0347 0x0a28 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
22:44:58.0374 0x0a28 luafv - ok
22:44:58.0376 0x0a28 [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
22:44:58.0381 0x0a28 MBAMProtector - ok
22:44:58.0411 0x0a28 [ 301E3FDFCF33640BB8763BA444BC5093, 362B069BB9A313A06B376CE27E6F7F8D569F6CA39A8ABC96D9DF231EE462C604 ] MBAMScheduler D:\Programme\ Malwarebytes Anti-Malware \mbamscheduler.exe
22:44:58.0440 0x0a28 MBAMScheduler - ok
22:44:58.0457 0x0a28 [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService D:\Programme\ Malwarebytes Anti-Malware \mbamservice.exe
22:44:58.0476 0x0a28 MBAMService - ok
22:44:58.0480 0x0a28 [ 8F22037D3F5A6BB676525D825A1388B9, 2AAC748D46136DFA1BE45150BF0AB7707D45391CAC1F63B964D341D11B135C91 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
22:44:58.0487 0x0a28 MBAMSwissArmy - ok
22:44:58.0490 0x0a28 [ AE757332EA130E94E646621CC695B52A, E688CF34A4206F32B5C7301119D8459C3456FC178FA1DAA6215CE15F2C824C43 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
22:44:58.0495 0x0a28 MBAMWebAccessControl - ok
22:44:58.0499 0x0a28 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:44:58.0507 0x0a28 Mcx2Svc - ok
22:44:58.0510 0x0a28 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:44:58.0517 0x0a28 megasas - ok
22:44:58.0524 0x0a28 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:44:58.0536 0x0a28 MegaSR - ok
22:44:58.0539 0x0a28 [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:44:58.0551 0x0a28 MEIx64 - ok
22:44:58.0554 0x0a28 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
22:44:58.0574 0x0a28 MMCSS - ok
22:44:58.0576 0x0a28 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
22:44:58.0595 0x0a28 Modem - ok
22:44:58.0599 0x0a28 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:44:58.0606 0x0a28 monitor - ok
22:44:58.0609 0x0a28 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:44:58.0616 0x0a28 mouclass - ok
22:44:58.0617 0x0a28 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:44:58.0625 0x0a28 mouhid - ok
22:44:58.0629 0x0a28 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:44:58.0635 0x0a28 mountmgr - ok
22:44:58.0639 0x0a28 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
22:44:58.0647 0x0a28 mpio - ok
22:44:58.0650 0x0a28 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:44:58.0670 0x0a28 mpsdrv - ok
22:44:58.0694 0x0a28 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:44:58.0721 0x0a28 MpsSvc - ok
22:44:58.0726 0x0a28 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:44:58.0735 0x0a28 MRxDAV - ok
22:44:58.0739 0x0a28 [ 43E1F4B0EFDC244D2A83995CCD7846F7, B8FB3CB6C736E20399AF3164197B14E977DDEC8FD164564501A328A8A3A30267 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:44:58.0746 0x0a28 mrxsmb - ok
22:44:58.0752 0x0a28 [ 62CEA59FF56B66154E08BD51D87392C2, 5DC63583E417659139FACD2365C2F8F3C9867E331F7374BD4F6C6E2386B5F746 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:44:58.0759 0x12cc Object required for P2P: [ 55C892763A614BA39BA956A0323C65F3 ] ClickToRunSvc
22:44:58.0762 0x0a28 mrxsmb10 - ok
22:44:58.0766 0x0a28 [ 7D65B5E9573A26C204AA547457DBF544, CE88A733D031DEDBA6ADADB7D9911B3D151A2DDB566A65E0C9E1F07B1A4364AF ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:44:58.0776 0x0a28 mrxsmb20 - ok
22:44:58.0779 0x0a28 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
22:44:58.0785 0x0a28 msahci - ok
22:44:58.0789 0x0a28 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:44:58.0795 0x0a28 msdsm - ok
22:44:58.0799 0x0a28 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
22:44:58.0807 0x0a28 MSDTC - ok
22:44:58.0811 0x0a28 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:44:58.0831 0x0a28 Msfs - ok
22:44:58.0832 0x0a28 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:44:58.0851 0x0a28 mshidkmdf - ok
22:44:58.0854 0x0a28 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:44:58.0859 0x0a28 msisadrv - ok
22:44:58.0864 0x0a28 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:44:58.0885 0x0a28 MSiSCSI - ok
22:44:58.0886 0x0a28 msiserver - ok
22:44:58.0887 0x0a28 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:44:58.0905 0x0a28 MSKSSRV - ok
22:44:58.0907 0x0a28 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:44:58.0925 0x0a28 MSPCLOCK - ok
22:44:58.0926 0x0a28 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:44:58.0944 0x0a28 MSPQM - ok
22:44:58.0952 0x0a28 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:44:58.0962 0x0a28 MsRPC - ok
22:44:58.0965 0x0a28 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:44:58.0971 0x0a28 mssmbios - ok
22:44:58.0972 0x0a28 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:44:58.0990 0x0a28 MSTEE - ok
22:44:58.0992 0x0a28 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:44:59.0000 0x0a28 MTConfig - ok
22:44:59.0004 0x0a28 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
22:44:59.0010 0x0a28 Mup - ok
22:44:59.0021 0x0a28 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
22:44:59.0046 0x0a28 napagent - ok
22:44:59.0054 0x0a28 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:44:59.0069 0x0a28 NativeWifiP - ok
22:44:59.0086 0x0a28 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
22:44:59.0109 0x0a28 NDIS - ok
22:44:59.0111 0x0a28 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:44:59.0130 0x0a28 NdisCap - ok
22:44:59.0132 0x0a28 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:44:59.0151 0x0a28 NdisTapi - ok
22:44:59.0154 0x0a28 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:44:59.0172 0x0a28 Ndisuio - ok
22:44:59.0177 0x0a28 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:44:59.0197 0x0a28 NdisWan - ok
22:44:59.0200 0x0a28 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:44:59.0217 0x0a28 NDProxy - ok
22:44:59.0220 0x0a28 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:44:59.0239 0x0a28 NetBIOS - ok
22:44:59.0246 0x0a28 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:44:59.0271 0x0a28 NetBT - ok
22:44:59.0272 0x0a28 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] Netlogon C:\Windows\system32\lsass.exe
22:44:59.0279 0x0a28 Netlogon - ok
22:44:59.0292 0x0a28 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
22:44:59.0324 0x0a28 Netman - ok
22:44:59.0327 0x0a28 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:44:59.0340 0x0a28 NetMsmqActivator - ok
22:44:59.0344 0x0a28 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:44:59.0351 0x0a28 NetPipeActivator - ok
22:44:59.0364 0x0a28 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
22:44:59.0387 0x0a28 netprofm - ok
22:44:59.0391 0x0a28 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:44:59.0399 0x0a28 NetTcpActivator - ok
22:44:59.0402 0x0a28 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:44:59.0410 0x0a28 NetTcpPortSharing - ok
22:44:59.0412 0x0a28 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:44:59.0421 0x0a28 nfrd960 - ok
22:44:59.0429 0x0a28 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
22:44:59.0440 0x0a28 NlaSvc - ok
22:44:59.0442 0x0a28 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:44:59.0461 0x0a28 Npfs - ok
22:44:59.0464 0x0a28 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
22:44:59.0482 0x0a28 nsi - ok
22:44:59.0486 0x0a28 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:44:59.0505 0x0a28 nsiproxy - ok
22:44:59.0544 0x0a28 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:44:59.0571 0x0a28 Ntfs - ok
22:44:59.0574 0x0a28 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
22:44:59.0591 0x0a28 Null - ok
22:44:59.0595 0x0a28 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:44:59.0605 0x0a28 nvraid - ok
22:44:59.0609 0x0a28 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:44:59.0620 0x0a28 nvstor - ok
22:44:59.0624 0x0a28 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:44:59.0634 0x0a28 nv_agp - ok
22:44:59.0636 0x0a28 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:44:59.0643 0x0a28 ohci1394 - ok
22:44:59.0648 0x0a28 [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:44:59.0661 0x0a28 ose - ok
22:44:59.0731 0x0a28 [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:44:59.0827 0x0a28 osppsvc - ok
22:44:59.0840 0x0a28 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:44:59.0851 0x0a28 p2pimsvc - ok
22:44:59.0862 0x0a28 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
22:44:59.0876 0x0a28 p2psvc - ok
22:44:59.0880 0x0a28 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:44:59.0888 0x0a28 Parport - ok
22:44:59.0892 0x0a28 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:44:59.0900 0x0a28 partmgr - ok
22:44:59.0905 0x0a28 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:44:59.0913 0x0a28 PcaSvc - ok
22:44:59.0918 0x0a28 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
22:44:59.0927 0x0a28 pci - ok
22:44:59.0930 0x0a28 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
22:44:59.0935 0x0a28 pciide - ok
22:44:59.0940 0x0a28 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:44:59.0952 0x0a28 pcmcia - ok
22:44:59.0955 0x0a28 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
22:44:59.0961 0x0a28 pcw - ok
22:44:59.0973 0x0a28 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:44:59.0991 0x0a28 PEAUTH - ok
22:45:00.0021 0x0a28 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
22:45:00.0056 0x0a28 PeerDistSvc - ok
22:45:00.0068 0x0a28 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:45:00.0076 0x0a28 PerfHost - ok
22:45:00.0108 0x0a28 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
22:45:00.0156 0x0a28 pla - ok
22:45:00.0167 0x0a28 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:45:00.0180 0x0a28 PlugPlay - ok
22:45:00.0183 0x0a28 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:45:00.0191 0x0a28 PNRPAutoReg - ok
22:45:00.0200 0x0a28 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:45:00.0210 0x0a28 PNRPsvc - ok
22:45:00.0220 0x0a28 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:45:00.0247 0x0a28 PolicyAgent - ok
22:45:00.0253 0x0a28 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
22:45:00.0273 0x0a28 Power - ok
22:45:00.0277 0x0a28 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:45:00.0297 0x0a28 PptpMiniport - ok
22:45:00.0300 0x0a28 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:45:00.0310 0x0a28 Processor - ok
22:45:00.0316 0x0a28 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
22:45:00.0326 0x0a28 ProfSvc - ok
22:45:00.0327 0x0a28 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] ProtectedStorage C:\Windows\system32\lsass.exe
22:45:00.0333 0x0a28 ProtectedStorage - ok
22:45:00.0338 0x0a28 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:45:00.0356 0x0a28 Psched - ok
22:45:00.0378 0x0a28 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:45:00.0415 0x0a28 ql2300 - ok
22:45:00.0418 0x0a28 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:45:00.0430 0x0a28 ql40xx - ok
22:45:00.0436 0x0a28 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
22:45:00.0450 0x0a28 QWAVE - ok
22:45:00.0452 0x0a28 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:45:00.0461 0x0a28 QWAVEdrv - ok
22:45:00.0462 0x0a28 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:45:00.0480 0x0a28 RasAcd - ok
22:45:00.0482 0x0a28 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:45:00.0501 0x0a28 RasAgileVpn - ok
22:45:00.0505 0x0a28 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
22:45:00.0526 0x0a28 RasAuto - ok
22:45:00.0532 0x0a28 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:45:00.0553 0x0a28 Rasl2tp - ok
22:45:00.0565 0x0a28 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
22:45:00.0591 0x0a28 RasMan - ok
22:45:00.0595 0x0a28 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:45:00.0615 0x0a28 RasPppoe - ok
22:45:00.0620 0x0a28 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:45:00.0641 0x0a28 RasSstp - ok
22:45:00.0650 0x0a28 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:45:00.0675 0x0a28 rdbss - ok
22:45:00.0677 0x0a28 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:45:00.0685 0x0a28 rdpbus - ok
22:45:00.0687 0x0a28 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:45:00.0705 0x0a28 RDPCDD - ok
22:45:00.0710 0x0a28 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
22:45:00.0718 0x0a28 RDPDR - ok
22:45:00.0720 0x0a28 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:45:00.0737 0x0a28 RDPENCDD - ok
22:45:00.0740 0x0a28 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:45:00.0757 0x0a28 RDPREFMP - ok
22:45:00.0763 0x0a28 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:45:00.0773 0x0a28 RDPWD - ok
22:45:00.0780 0x0a28 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:45:00.0790 0x0a28 rdyboost - ok
22:45:00.0793 0x0a28 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:45:00.0815 0x0a28 RemoteAccess - ok
22:45:00.0818 0x0a28 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:45:00.0838 0x0a28 RemoteRegistry - ok
22:45:00.0843 0x0a28 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:45:00.0862 0x0a28 RpcEptMapper - ok
22:45:00.0865 0x0a28 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
22:45:00.0871 0x0a28 RpcLocator - ok
22:45:00.0883 0x0a28 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
22:45:00.0908 0x0a28 RpcSs - ok
22:45:00.0911 0x0a28 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:45:00.0930 0x0a28 rspndr - ok
22:45:00.0948 0x0a28 [ EB287A54E91FE224FCDB12F0B6C3FA05, 45E0A93A9147CF747E388DCDA1EF3500AFFB29A6C0FEA87A492028505B193144 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:45:00.0975 0x0a28 RTL8167 - ok
22:45:00.0987 0x0a28 [ 2BE8E7D6DF63183100F15B27B82EE2ED, CEF98489F7A36F06FF2961CA852386F6E7160BF2F31F12E578D778BE61D56BD6 ] RTL8192cu C:\Windows\system32\DRIVERS\RTL8192cu.sys
22:45:01.0010 0x0a28 RTL8192cu - ok
22:45:01.0011 0x0a28 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
22:45:01.0018 0x0a28 s3cap - ok
22:45:01.0021 0x0a28 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] SamSs C:\Windows\system32\lsass.exe
22:45:01.0028 0x0a28 SamSs - ok
22:45:01.0032 0x0a28 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:45:01.0042 0x0a28 sbp2port - ok
22:45:01.0048 0x0a28 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:45:01.0072 0x0a28 SCardSvr - ok
22:45:01.0075 0x0a28 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:45:01.0092 0x0a28 scfilter - ok
22:45:01.0110 0x0a28 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
22:45:01.0133 0x0a28 Schedule - ok
22:45:01.0137 0x0a28 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
22:45:01.0155 0x0a28 SCPolicySvc - ok
22:45:01.0162 0x0a28 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:45:01.0173 0x0a28 SDRSVC - ok
22:45:01.0176 0x0a28 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:45:01.0183 0x0a28 secdrv - ok
22:45:01.0186 0x0a28 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
22:45:01.0205 0x0a28 seclogon - ok
22:45:01.0208 0x0a28 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
22:45:01.0228 0x0a28 SENS - ok
22:45:01.0231 0x0a28 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:45:01.0238 0x0a28 SensrSvc - ok
22:45:01.0240 0x0a28 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:45:01.0246 0x0a28 Serenum - ok
22:45:01.0248 0x0a28 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:45:01.0256 0x0a28 Serial - ok
22:45:01.0258 0x0a28 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:45:01.0265 0x0a28 sermouse - ok
22:45:01.0270 0x0a28 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
22:45:01.0283 0x12cc Object send P2P result: true
22:45:01.0291 0x0a28 SessionEnv - ok
22:45:01.0292 0x0a28 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:45:01.0300 0x0a28 sffdisk - ok
22:45:01.0301 0x0a28 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:45:01.0308 0x0a28 sffp_mmc - ok
22:45:01.0311 0x0a28 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:45:01.0317 0x0a28 sffp_sd - ok
22:45:01.0320 0x0a28 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:45:01.0327 0x0a28 sfloppy - ok
22:45:01.0337 0x0a28 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:45:01.0362 0x0a28 SharedAccess - ok
22:45:01.0372 0x0a28 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:45:01.0396 0x0a28 ShellHWDetection - ok
22:45:01.0398 0x0a28 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:45:01.0406 0x0a28 SiSRaid2 - ok
22:45:01.0410 0x0a28 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:45:01.0418 0x0a28 SiSRaid4 - ok
22:45:01.0421 0x0a28 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:45:01.0441 0x0a28 Smb - ok
22:45:01.0443 0x0a28 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:45:01.0451 0x0a28 SNMPTRAP - ok
22:45:01.0453 0x0a28 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
22:45:01.0458 0x0a28 spldr - ok
22:45:01.0471 0x0a28 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
22:45:01.0490 0x0a28 Spooler - ok
22:45:01.0552 0x0a28 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
22:45:01.0628 0x0a28 sppsvc - ok
22:45:01.0633 0x0a28 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:45:01.0653 0x0a28 sppuinotify - ok
22:45:01.0665 0x0a28 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
22:45:01.0680 0x0a28 srv - ok
22:45:01.0688 0x0a28 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:45:01.0701 0x0a28 srv2 - ok
22:45:01.0706 0x0a28 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:45:01.0713 0x0a28 srvnet - ok
22:45:01.0718 0x0a28 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:45:01.0738 0x0a28 SSDPSRV - ok
22:45:01.0741 0x0a28 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:45:01.0761 0x0a28 SstpSvc - ok
22:45:01.0775 0x0a28 [ 2A6EDC2FBB4B9C11BB21BE3881C7A692, 74482CA4EC2B98C069A32C224BA5449AE10A8B41BFC053A4C23B6F65113A97A4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
22:45:01.0798 0x0a28 Steam Client Service - ok
22:45:01.0801 0x0a28 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:45:01.0810 0x0a28 stexstor - ok
22:45:01.0825 0x0a28 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
22:45:01.0846 0x0a28 stisvc - ok
22:45:01.0850 0x0a28 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
22:45:01.0856 0x0a28 storflt - ok
22:45:01.0857 0x0a28 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
22:45:01.0865 0x0a28 StorSvc - ok
22:45:01.0867 0x0a28 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
22:45:01.0876 0x0a28 storvsc - ok
22:45:01.0877 0x0a28 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
22:45:01.0885 0x0a28 swenum - ok
22:45:01.0898 0x0a28 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
22:45:01.0928 0x0a28 swprv - ok
22:45:01.0955 0x0a28 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
22:45:01.0983 0x0a28 SysMain - ok
22:45:01.0990 0x0a28 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:45:02.0001 0x0a28 TabletInputService - ok
22:45:02.0010 0x0a28 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
22:45:02.0035 0x0a28 TapiSrv - ok
22:45:02.0037 0x0a28 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
22:45:02.0057 0x0a28 TBS - ok
22:45:02.0090 0x0a28 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:45:02.0131 0x0a28 Tcpip - ok
22:45:02.0163 0x0a28 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:45:02.0193 0x0a28 TCPIP6 - ok
22:45:02.0197 0x0a28 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:45:02.0205 0x0a28 tcpipreg - ok
22:45:02.0207 0x0a28 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:45:02.0213 0x0a28 TDPIPE - ok
22:45:02.0216 0x0a28 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:45:02.0222 0x0a28 TDTCP - ok
22:45:02.0226 0x0a28 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:45:02.0235 0x0a28 tdx - ok
22:45:02.0237 0x0a28 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
22:45:02.0243 0x0a28 TermDD - ok
22:45:02.0260 0x0a28 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
22:45:02.0276 0x0a28 TermService - ok
22:45:02.0280 0x0a28 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
22:45:02.0290 0x0a28 Themes - ok
22:45:02.0293 0x0a28 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
22:45:02.0312 0x0a28 THREADORDER - ok
22:45:02.0316 0x0a28 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
22:45:02.0335 0x0a28 TrkWks - ok
22:45:02.0340 0x0a28 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:45:02.0360 0x0a28 TrustedInstaller - ok
22:45:02.0362 0x0a28 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:45:02.0368 0x0a28 tssecsrv - ok
22:45:02.0371 0x0a28 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:45:02.0377 0x0a28 TsUsbFlt - ok
22:45:02.0381 0x0a28 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:45:02.0401 0x0a28 tunnel - ok
22:45:02.0403 0x0a28 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:45:02.0413 0x0a28 uagp35 - ok
22:45:02.0422 0x0a28 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:45:02.0448 0x0a28 udfs - ok
22:45:02.0453 0x0a28 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:45:02.0461 0x0a28 UI0Detect - ok
22:45:02.0463 0x0a28 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:45:02.0473 0x0a28 uliagpkx - ok
22:45:02.0476 0x0a28 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:45:02.0483 0x0a28 umbus - ok
22:45:02.0486 0x0a28 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:45:02.0495 0x0a28 UmPass - ok
22:45:02.0502 0x0a28 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
22:45:02.0513 0x0a28 UmRdpService - ok
22:45:02.0522 0x0a28 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
22:45:02.0547 0x0a28 upnphost - ok
22:45:02.0550 0x0a28 [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
22:45:02.0558 0x0a28 USBAAPL64 - ok
22:45:02.0562 0x0a28 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:45:02.0571 0x0a28 usbccgp - ok
22:45:02.0573 0x0a28 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:45:02.0585 0x0a28 usbcir - ok
22:45:02.0587 0x0a28 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
22:45:02.0593 0x0a28 usbehci - ok
22:45:02.0600 0x0a28 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:45:02.0611 0x0a28 usbhub - ok
22:45:02.0613 0x0a28 [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:45:02.0621 0x0a28 usbohci - ok
22:45:02.0623 0x0a28 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:45:02.0633 0x0a28 usbprint - ok
22:45:02.0637 0x0a28 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:45:02.0645 0x0a28 USBSTOR - ok
22:45:02.0646 0x0a28 [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:45:02.0655 0x0a28 usbuhci - ok
22:45:02.0657 0x0a28 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
22:45:02.0676 0x0a28 UxSms - ok
22:45:02.0677 0x0a28 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] VaultSvc C:\Windows\system32\lsass.exe
22:45:02.0683 0x0a28 VaultSvc - ok
22:45:02.0686 0x0a28 [ 3C8E2C591345F38149C69FE8E5DF8C90, 9F4BB9BDA09CB2E99A6A888B288F322AE5C460B5D124CD714C6F00FF5029144B ] VClone C:\Windows\system32\DRIVERS\VClone.sys
22:45:02.0693 0x0a28 VClone - ok
22:45:02.0696 0x0a28 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:45:02.0702 0x0a28 vdrvroot - ok
22:45:02.0716 0x0a28 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
22:45:02.0745 0x0a28 vds - ok
22:45:02.0747 0x0a28 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:45:02.0755 0x0a28 vga - ok
22:45:02.0756 0x0a28 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
22:45:02.0775 0x0a28 VgaSave - ok
22:45:02.0780 0x0a28 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:45:02.0790 0x0a28 vhdmp - ok
22:45:02.0792 0x0a28 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
22:45:02.0800 0x0a28 viaide - ok
22:45:02.0803 0x0a28 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
22:45:02.0813 0x0a28 vmbus - ok
22:45:02.0815 0x0a28 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
22:45:02.0822 0x0a28 VMBusHID - ok
22:45:02.0825 0x0a28 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:45:02.0831 0x0a28 volmgr - ok
22:45:02.0840 0x0a28 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:45:02.0852 0x0a28 volmgrx - ok
22:45:02.0860 0x0a28 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:45:02.0870 0x0a28 volsnap - ok
22:45:02.0875 0x0a28 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:45:02.0885 0x0a28 vsmraid - ok
22:45:02.0915 0x0a28 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
22:45:02.0962 0x0a28 VSS - ok
22:45:02.0966 0x0a28 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:45:02.0973 0x0a28 vwifibus - ok
22:45:02.0976 0x0a28 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:45:02.0986 0x0a28 vwififlt - ok
22:45:02.0996 0x0a28 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
22:45:03.0021 0x0a28 W32Time - ok
22:45:03.0023 0x0a28 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:45:03.0033 0x0a28 WacomPen - ok
22:45:03.0036 0x0a28 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:45:03.0055 0x0a28 WANARP - ok
22:45:03.0057 0x0a28 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:45:03.0075 0x0a28 Wanarpv6 - ok
22:45:03.0105 0x0a28 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
22:45:03.0141 0x0a28 wbengine - ok
22:45:03.0147 0x0a28 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:45:03.0160 0x0a28 WbioSrvc - ok
22:45:03.0172 0x0a28 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:45:03.0191 0x0a28 wcncsvc - ok
22:45:03.0193 0x0a28 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:45:03.0201 0x0a28 WcsPlugInService - ok
22:45:03.0203 0x0a28 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:45:03.0211 0x0a28 Wd - ok
22:45:03.0227 0x0a28 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:45:03.0247 0x0a28 Wdf01000 - ok
22:45:03.0251 0x0a28 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:45:03.0258 0x0a28 WdiServiceHost - ok
22:45:03.0261 0x0a28 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:45:03.0270 0x0a28 WdiSystemHost - ok
22:45:03.0275 0x0a28 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
22:45:03.0286 0x0a28 WebClient - ok
22:45:03.0293 0x0a28 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:45:03.0318 0x0a28 Wecsvc - ok
22:45:03.0321 0x0a28 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:45:03.0341 0x0a28 wercplsupport - ok
22:45:03.0343 0x0a28 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
22:45:03.0362 0x0a28 WerSvc - ok
22:45:03.0365 0x0a28 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:45:03.0382 0x0a28 WfpLwf - ok
22:45:03.0383 0x0a28 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:45:03.0390 0x0a28 WIMMount - ok
22:45:03.0391 0x0a28 WinDefend - ok
22:45:03.0393 0x0a28 WinHttpAutoProxySvc - ok
22:45:03.0400 0x0a28 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:45:03.0421 0x0a28 Winmgmt - ok
22:45:03.0462 0x0a28 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
22:45:03.0510 0x0a28 WinRM - ok
22:45:03.0516 0x0a28 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
22:45:03.0523 0x0a28 WinUsb - ok
22:45:03.0545 0x0a28 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:45:03.0565 0x0a28 Wlansvc - ok
22:45:03.0567 0x0a28 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:45:03.0573 0x0a28 WmiAcpi - ok
22:45:03.0580 0x0a28 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:45:03.0591 0x0a28 wmiApSrv - ok
22:45:03.0593 0x0a28 WMPNetworkSvc - ok
22:45:03.0595 0x0a28 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:45:03.0602 0x0a28 WPCSvc - ok
22:45:03.0607 0x0a28 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:45:03.0617 0x0a28 WPDBusEnum - ok
22:45:03.0618 0x0a28 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:45:03.0637 0x0a28 ws2ifsl - ok
22:45:03.0641 0x0a28 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
22:45:03.0651 0x0a28 wscsvc - ok
22:45:03.0652 0x0a28 WSearch - ok
22:45:03.0690 0x0a28 [ 39D604E190DFE2E483B637D6796ABAFF, 52DCCEA0DB59F00C615D94CC2B70FC1C335E553E8FC79AAC8C8C7D9EE1F6111D ] wuauserv C:\Windows\system32\wuaueng.dll
22:45:03.0730 0x0a28 wuauserv - ok
22:45:03.0736 0x0a28 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:45:03.0743 0x0a28 WudfPf - ok
22:45:03.0748 0x0a28 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\drivers\WUDFRd.sys
22:45:03.0757 0x0a28 WUDFRd - ok
22:45:03.0760 0x0a28 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:45:03.0767 0x0a28 wudfsvc - ok
22:45:03.0776 0x0a28 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
22:45:03.0787 0x0a28 WwanSvc - ok
22:45:03.0792 0x0a28 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
22:45:03.0801 0x0a28 xusb21 - ok
22:45:03.0803 0x0a28 ================ Scan global ===============================
22:45:03.0805 0x0a28 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
22:45:03.0810 0x0a28 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
22:45:03.0817 0x0a28 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
22:45:03.0822 0x0a28 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
22:45:03.0828 0x0a28 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
22:45:03.0833 0x0a28 [ Global ] - ok
22:45:03.0833 0x0a28 ================ Scan MBR ==================================
22:45:03.0835 0x0a28 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:45:03.0915 0x0a28 \Device\Harddisk0\DR0 - ok
22:45:03.0920 0x0a28 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
22:45:03.0950 0x0a28 \Device\Harddisk1\DR1 - ok
22:45:03.0960 0x0a28 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
22:45:04.0801 0x0a28 \Device\Harddisk2\DR2 - ok
22:45:04.0802 0x0a28 ================ Scan VBR ==================================
22:45:04.0806 0x0a28 [ 48CCB2175DB45B24F9E9B1C56345E26C ] \Device\Harddisk0\DR0\Partition1
22:45:04.0810 0x0a28 \Device\Harddisk0\DR0\Partition1 - ok
22:45:04.0813 0x0a28 [ FDAF91BE8744B5C895713C1596F7FF92 ] \Device\Harddisk0\DR0\Partition2
22:45:04.0816 0x0a28 \Device\Harddisk0\DR0\Partition2 - ok
22:45:04.0822 0x0a28 [ D384AD76F2F3F2452CDC36E7E800F270 ] \Device\Harddisk1\DR1\Partition1
22:45:04.0826 0x0a28 \Device\Harddisk1\DR1\Partition1 - ok
22:45:04.0830 0x0a28 [ 684B28CB1B8216953CD603956B20DC8D ] \Device\Harddisk2\DR2\Partition1
22:45:04.0881 0x0a28 \Device\Harddisk2\DR2\Partition1 - ok
22:45:04.0881 0x0a28 ================ Scan generic autorun ======================
22:45:04.0902 0x0a28 [ 51138BEEA3E2C21EC44D0932C71762A8, 5AD3C37E6F2B9DB3EE8B5AEEDC474645DE90C66E3D95F8620C48102F1EBA4124 ] C:\Windows\syswow64\RunDll32.exe
22:45:04.0932 0x0a28 Cmaudio8788 - ok
22:45:04.0943 0x0a28 [ 0740D338A42F7778760F2B0CB6DA5830, C6D275B4993502A155F85D8DE26B119866DEE106C98CF29CDAACBAF11484C94A ] C:\Windows\syswow64\HsMgr.exe
22:45:04.0955 0x0a28 Cmaudio8788GX - detected UnsignedFile.Multi.Generic ( 1 )
22:45:07.0418 0x0a28 Detect skipped due to KSN trusted
22:45:07.0418 0x0a28 Cmaudio8788GX - ok
22:45:07.0437 0x0a28 [ BEF1B23AD0BBF805F02FAA01EAE0AF4E, 65CCFEC1F61E475A1F6759ECCA8DE1844A26AB7F827BC1F63339A0DFF554B039 ] C:\Windows\system\HsMgr64.exe
22:45:07.0461 0x0a28 Cmaudio8788GX64 - detected UnsignedFile.Multi.Generic ( 1 )
22:45:09.0936 0x0a28 Detect skipped due to KSN trusted
22:45:09.0936 0x0a28 Cmaudio8788GX64 - ok
22:45:09.0949 0x0a28 [ 076B3EE149E01ADBAC2DC529554A3FD9, 4F65D9D2EE44829AA2264210112851E899165C2346489BEBE679C41420CF7D07 ] D:\Programme\iTunes\iTunesHelper.exe
22:45:09.0974 0x0a28 iTunesHelper - ok
22:45:10.0003 0x0a28 [ ED43758BF94B8A5221D69F1B7F63F13D, F6E7418823E45085F4D4F50DD25A55ED517C0A335C6C2F69A1139B30677D3DA9 ] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe
22:45:10.0026 0x0a28 XboxStat - ok
22:45:10.0034 0x0a28 [ E4E7B29D050F5480071984FE6543C311, 9A4D8D1702AE74AB4FE4367EAF4AD6500F59D4F25B3CCACE3EF07613B7B5853C ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
22:45:10.0044 0x0a28 USB3MON - ok
22:45:10.0058 0x0a28 [ C1A86A6D6847DEFF009EAE85BA0C1F20, 7DC2A823FA281117B335B74876469C788A5C81534251179BE86F3FB35F1B6D67 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
22:45:10.0074 0x0a28 avgnt - ok
22:45:10.0077 0x0a28 [ F5060B034D37EA26D325A4319806E202, D43ACE85421DB29A6B6E8080D838152AB3858F83C2B373731945460E217C7D9F ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
22:45:10.0087 0x0a28 Avira SystrayStartTrigger - ok
22:45:10.0104 0x0a28 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:45:10.0133 0x0a28 Sidebar - ok
22:45:10.0137 0x0a28 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:45:10.0148 0x0a28 mctadmin - ok
22:45:10.0167 0x0a28 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:45:10.0188 0x0a28 Sidebar - ok
22:45:10.0192 0x0a28 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:45:10.0201 0x0a28 mctadmin - ok
22:45:10.0243 0x0a28 [ 86BF17A265E1B4BA41325623EC132E66, 4414B5F01A78B76BFC1A7C39F595645A09E674FA6DE7991F31BA6673EEB23F9E ] D:\Steam\steam.exe
22:45:10.0286 0x0a28 Steam - ok
22:45:10.0316 0x0a28 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
22:45:10.0351 0x0a28 Sidebar - ok
22:45:10.0352 0x0a28 DAEMON Tools Lite Automount - ok
22:45:10.0352 0x0a28 Waiting for KSN requests completion. In queue: 292
22:45:11.0352 0x0a28 Waiting for KSN requests completion. In queue: 11
22:45:12.0352 0x0a28 Waiting for KSN requests completion. In queue: 11
22:45:13.0473 0x0a28 AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 15.0.13.202 ), 0x41000 ( enabled : updated )
22:45:13.0496 0x0a28 Win FW state via NFP2: enabled ( trusted )
22:45:15.0938 0x0a28 ============================================================
22:45:15.0938 0x0a28 Scan finished
22:45:15.0938 0x0a28 ============================================================
22:45:15.0952 0x1324 Detected object count: 0
22:45:15.0952 0x1324 Actual detected object count: 0
|
|
03.10.2015, 17:07
| #7 |
| /// the machine /// TB-Ausbilder | Grundreinigung PC Ich sehe so nix in den Logs. Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Lade Dir bitte von hier  Emsisoft Emergency Kit herunter.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.10.2015, 19:44
| #8 |
| | Grundreinigung PC Nabend, habe mich wieder mit dem normalen Konto ab- und dem Admin-Konto angemeldet um die Scans durchzuführen. Beides hat nichts gefunden. AdwC Code:
ATTFilter # AdwCleaner v5.009 - Bericht erstellt am 03/10/2015 um 20:35:14
# Aktualisiert am 27/09/2015 von Xplode
# Datenbank : 2015-09-30.1 [Server]
# Betriebssystem : Windows 7 Professional Service Pack 1 (x64)
# Benutzername : Superthorp - SUPERTHORPANIA
# Gestartet von : C:\Users\Thorp\Desktop\TB\AdwCleaner_5.009.exe
# Option : Suchlauf
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ Verknüpfungen ] *****
***** [ Geplante Tasks ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Internetbrowser ] *****
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [625 Bytes] ##########
Code:
ATTFilter Emsisoft Emergency Kit - Version 10.0
Letztes Update: 03.10.2015 20:38:06
Benutzerkonto: Superthorpania\Superthorp
Scan-Einstellungen:
Scan-Methode: Malware-Scan
Objekte: Rootkits, Speicher, Traces, Dateien
PUPs-Erkennung: An
Archiv-Scan: Aus
ADS Scan: An
Dateitypen-Filter: Aus
Erweitertes Caching: An
Direkter Festplattenzugriff: Aus
Scan-Beginn: 03.10.2015 20:39:27
Gescannt: 77045
Gefunden 0
Scan-Ende: 03.10.2015 20:40:14
Scan-Zeit: 0:00:47
|
|
04.10.2015, 07:27
| #9 |
| /// the machine /// TB-Ausbilder | Grundreinigung PC Da ist nix 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.10.2015, 09:32
| #10 |
| | Grundreinigung PC Erstaunlich. Dann vielen Dank und auf Wiedersehen |
|
04.10.2015, 15:31
| #11 |
| /// the machine /// TB-Ausbilder | Grundreinigung PC Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Grundreinigung PC |
| 100%, administrator, adobe, bios, bonjour, dns, firefox, hängen, installation, log, neu, proxy, proxy server, reset, router, seite, seiten, server, super, system, system32, teredo, update, warnung, windows, windows installer, winsock |
Linear-Darstellung
