| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Internetverbindung plötzlich sehr langsamWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
04.02.2016, 17:22
| #1 |
| |  Internetverbindung plötzlich sehr langsam Hallo, ich habe seit kurzer Zeit das Problem, dass meine Internetverbindung sehr langsam ist. Was kann ich dagegen tun? Grüße Kabanjak OTL Logfile: Code:
ATTFilter OTL logfile created on: 04.02.2016 07:39:56 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = G:\Users\Desktop\Desktop 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.11.10240.16384) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 12,00 Gb Total Physical Memory | 10,54 Gb Available Physical Memory | 87,89% Memory free 24,00 Gb Paging File | 22,57 Gb Available in Paging File | 94,07% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = G: | %SystemRoot% = G:\WINDOWS | %ProgramFiles% = G:\Program Files (x86) Drive F: | 853,39 Gb Total Space | 517,64 Gb Free Space | 60,66% Space Free | Partition Type: NTFS Drive G: | 78,12 Gb Total Space | 22,60 Gb Free Space | 28,93% Space Free | Partition Type: NTFS Computer Name: DESKTOP-PC | User Name: Desktop | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - File not found -- PRC - [2016.02.04 07:32:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- G:\Users\Desktop\Desktop\OTL.exe PRC - [2016.01.08 10:47:10 | 001,433,216 | ---- | M] (Microsoft Corporation) -- G:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe PRC - [2016.01.08 10:44:00 | 001,773,696 | ---- | M] (Microsoft Corporation) -- G:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe PRC - [2015.12.09 17:36:01 | 000,551,112 | ---- | M] (Microsoft Corporation) -- G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\OneDrive.exe PRC - [2015.11.09 12:51:54 | 000,923,184 | ---- | M] (Oracle Corporation) -- G:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe PRC - [2015.04.24 11:21:12 | 000,740,568 | ---- | M] (pdfforge GmbH) -- G:\Program Files (x86)\PDF Architect 3\creator-ws.exe PRC - [2013.12.06 15:53:36 | 000,389,120 | ---- | M] (AMD) -- G:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe PRC - [2010.09.07 10:46:56 | 000,072,280 | ---- | M] () -- G:\Windows\SysWOW64\XSrvSetup.exe PRC - [2004.12.14 01:12:02 | 000,483,328 | ---- | M] (Adobe Systems Inc.) -- F:\Programme\Distillr\acrotray.exe ========== Modules (No Company Name) ========== ========== Services (SafeList) ========== SRV:64bit: - [2016.01.22 13:00:38 | 000,254,992 | ---- | M] (AMD) [Auto | Running] -- G:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2016.01.05 02:57:28 | 000,712,704 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\usermgr.dll -- (UserManager) SRV:64bit: - [2015.11.25 05:27:26 | 002,180,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc) SRV:64bit: - [2015.11.05 05:03:49 | 001,015,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\RDXService.dll -- (RetailDemo) SRV:64bit: - [2015.11.05 04:59:13 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository) SRV:64bit: - [2015.11.05 04:55:55 | 000,145,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\dssvc.dll -- (DsSvc) SRV:64bit: - [2015.09.25 04:00:50 | 001,423,872 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\UserDataService.dll -- (UserDataSvc) SRV:64bit: - [2015.09.25 03:59:48 | 000,288,256 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc) SRV:64bit: - [2015.09.25 03:59:38 | 001,205,248 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\Unistore.dll -- (UnistoreSvc) SRV:64bit: - [2015.09.17 07:48:41 | 000,809,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar) SRV:64bit: - [2015.09.17 07:06:04 | 000,149,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\tetheringservice.dll -- (icssvc) SRV:64bit: - [2015.09.17 07:03:28 | 000,267,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc) SRV:64bit: - [2015.09.17 06:58:01 | 000,503,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc) SRV:64bit: - [2015.09.17 06:52:31 | 000,591,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:64bit: - [2015.09.17 06:48:26 | 002,093,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:64bit: - [2015.09.17 06:47:56 | 000,513,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\ngcsvc.dll -- (NgcSvc) SRV:64bit: - [2015.09.17 06:44:10 | 000,526,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:64bit: - [2015.09.17 06:44:08 | 001,844,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc) SRV:64bit: - [2015.09.17 06:43:32 | 000,378,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:64bit: - [2015.08.23 10:23:36 | 000,280,064 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:64bit: - [2015.08.23 10:23:29 | 001,169,408 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- G:\Windows\SysNative\dosvc.dll -- (DoSvc) SRV:64bit: - [2015.08.23 10:23:29 | 001,031,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\SensorDataService.exe -- (SensorDataService) SRV:64bit: - [2015.08.23 10:23:29 | 000,343,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\usocore.dll -- (UsoSvc) SRV:64bit: - [2015.08.23 10:23:23 | 000,229,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\SensorService.dll -- (SensorService) SRV:64bit: - [2015.08.23 10:23:22 | 001,643,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\diagtrack.dll -- (DiagTrack) SRV:64bit: - [2015.08.23 10:23:22 | 000,658,568 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\ClipSVC.dll -- (ClipSVC) SRV:64bit: - [2015.08.18 07:58:25 | 000,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc) SRV:64bit: - [2015.08.18 07:54:03 | 000,322,048 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:64bit: - [2015.07.10 12:01:10 | 000,621,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\AppReadiness.dll -- (AppReadiness) SRV:64bit: - [2015.07.10 12:01:10 | 000,504,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\WalletService.dll -- (WalletService) SRV:64bit: - [2015.07.10 12:01:10 | 000,074,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:64bit: - [2015.07.10 12:00:41 | 000,167,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:64bit: - [2015.07.10 12:00:36 | 000,115,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService) SRV:64bit: - [2015.07.10 12:00:20 | 000,749,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\lsm.dll -- (LSM) SRV:64bit: - [2015.07.10 12:00:16 | 000,075,264 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:64bit: - [2015.07.10 12:00:09 | 000,337,408 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\ncbservice.dll -- (NcbService) SRV:64bit: - [2015.07.10 12:00:09 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\wpnservice.dll -- (WpnService) SRV:64bit: - [2015.07.10 12:00:09 | 000,033,280 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker) SRV:64bit: - [2015.07.10 12:00:09 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\lfsvc.dll -- (lfsvc) SRV:64bit: - [2015.07.10 12:00:07 | 001,149,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\XblGameSave.dll -- (XblGameSave) SRV:64bit: - [2015.07.10 12:00:07 | 001,019,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc) SRV:64bit: - [2015.07.10 12:00:07 | 000,268,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc) SRV:64bit: - [2015.07.10 12:00:07 | 000,062,464 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- G:\Windows\SysNative\moshost.dll -- (MapsBroker) SRV:64bit: - [2015.07.10 12:00:07 | 000,023,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\AJRouter.dll -- (AJRouter) SRV:64bit: - [2015.07.10 12:00:07 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager) SRV:64bit: - [2015.07.10 12:00:06 | 000,134,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\cdpsvc.dll -- (CDPSvc) SRV:64bit: - [2015.07.10 12:00:06 | 000,087,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode) SRV:64bit: - [2015.07.10 12:00:03 | 003,467,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\WSService.dll -- (WSService) SRV:64bit: - [2015.07.10 12:00:02 | 000,918,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager) SRV:64bit: - [2015.07.10 12:00:02 | 000,836,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:64bit: - [2015.07.10 12:00:02 | 000,055,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\efssvc.dll -- (EFS) SRV:64bit: - [2015.07.10 12:00:01 | 000,096,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:64bit: - [2015.07.10 12:00:01 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC) SRV:64bit: - [2015.07.10 12:00:00 | 000,181,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum) SRV:64bit: - [2015.07.10 11:59:59 | 000,296,960 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- G:\Windows\SysNative\APHostService.dll -- (OneSyncSvc) SRV:64bit: - [2015.07.10 11:59:59 | 000,196,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\dcpsvc.dll -- (DcpSvc) SRV:64bit: - [2015.07.10 11:59:59 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service) SRV:64bit: - [2015.07.10 11:59:58 | 000,039,856 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\svchost.exe -- (UserDataSvc_Session1) SRV:64bit: - [2015.07.10 11:59:58 | 000,039,856 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\svchost.exe -- (UnistoreSvc_Session1) SRV:64bit: - [2015.07.10 11:59:58 | 000,039,856 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_Session1) SRV:64bit: - [2015.07.10 11:59:58 | 000,039,856 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- G:\Windows\SysNative\svchost.exe -- (OneSyncSvc_Session1) SRV:64bit: - [2015.07.10 11:59:57 | 000,405,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:64bit: - [2015.07.10 11:59:57 | 000,237,568 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:64bit: - [2015.07.10 11:59:56 | 000,019,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\smphost.dll -- (smphost) SRV:64bit: - [2015.07.10 11:59:55 | 000,118,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:64bit: - [2015.07.10 11:59:55 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:64bit: - [2015.07.10 11:59:54 | 000,275,456 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc) SRV:64bit: - [2015.07.10 11:59:53 | 000,063,488 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- G:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice) SRV:64bit: - [2015.07.10 11:59:51 | 000,583,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter) SRV:64bit: - [2015.07.10 11:59:50 | 000,550,400 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:64bit: - [2015.07.10 11:59:50 | 000,167,936 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicvss) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicvmsession) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicrdv) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicguestinterface) SRV:64bit: - [2015.07.10 11:59:37 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:64bit: - [2015.07.10 11:59:36 | 000,326,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv) SRV - [2016.01.20 19:37:23 | 000,269,504 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- G:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2016.01.17 10:16:31 | 000,147,624 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- G:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2016.01.08 10:47:10 | 001,433,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc) SRV - [2016.01.08 10:44:00 | 001,773,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc) SRV - [2015.12.14 21:01:12 | 000,836,176 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- G:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2015.11.19 20:02:30 | 000,056,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe -- (VSStandardCollectorService140) SRV - [2015.11.05 04:27:12 | 002,049,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository) SRV - [2015.09.25 03:34:00 | 000,928,256 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc) SRV - [2015.09.17 06:45:35 | 000,193,024 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc) SRV - [2015.09.17 06:16:16 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar) SRV - [2015.07.10 12:00:30 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysWOW64\lfsvc.dll -- (lfsvc) SRV - [2015.07.10 12:00:24 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysWOW64\smphost.dll -- (smphost) SRV - [2015.07.10 11:59:37 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2015.07.09 12:14:04 | 000,327,296 | R--- | M] (Skype Technologies) [Auto | Stopped] -- G:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2015.04.24 11:21:22 | 002,244,312 | ---- | M] (pdfforge GmbH) [On_Demand | Stopped] -- G:\Program Files (x86)\PDF Architect 3\ws.exe -- (PDF Architect 3) SRV - [2015.04.24 11:21:12 | 000,740,568 | ---- | M] (pdfforge GmbH) [Auto | Running] -- G:\Program Files (x86)\PDF Architect 3\creator-ws.exe -- (PDF Architect 3 Creator) SRV - [2015.04.24 11:21:06 | 000,901,336 | ---- | M] (pdfforge GmbH) [On_Demand | Stopped] -- G:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe -- (PDF Architect 3 CrashHandler) SRV - [2010.09.07 10:46:56 | 000,072,280 | ---- | M] () [Auto | Running] -- G:\Windows\SysWOW64\XSrvSetup.exe -- (JMB36X) ========== Driver Services (SafeList) ========== DRV:64bit: - [2016.01.22 13:01:02 | 000,679,952 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:64bit: - [2016.01.22 13:00:56 | 023,969,808 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:64bit: - [2015.12.09 12:44:42 | 000,051,488 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\SaiBus.sys -- (SaiNtBus) DRV:64bit: - [2015.12.09 12:44:38 | 000,180,928 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\_hid_0738_1713.sys -- (_hid_0738_1713) DRV:64bit: - [2015.12.09 12:44:38 | 000,046,528 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\_usb_0738_1713.sys -- (_usb_0738_1713) DRV:64bit: - [2015.12.01 07:03:10 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- G:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv) DRV:64bit: - [2015.11.25 06:40:09 | 000,516,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3) DRV:64bit: - [2015.10.01 14:24:24 | 000,023,968 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\SaiMini.sys -- (SaiMini) DRV:64bit: - [2015.10.01 14:24:22 | 000,180,928 | ---- | M] (Saitek) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\_hid_0738_1708.sys -- (_hid_0738_1708) DRV:64bit: - [2015.10.01 14:24:22 | 000,046,528 | ---- | M] (Saitek) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\_usb_0738_1708.sys -- (_usb_0738_1708) DRV:64bit: - [2015.09.18 01:38:22 | 000,102,912 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\AtihdWT6.sys -- (AtiHDAudioService) DRV:64bit: - [2015.09.17 07:50:17 | 000,099,664 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\pdc.sys -- (pdc) DRV:64bit: - [2015.09.17 07:48:41 | 000,278,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:64bit: - [2015.09.17 06:50:08 | 000,036,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter) DRV:64bit: - [2015.09.03 21:56:26 | 000,206,080 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm) DRV:64bit: - [2015.09.03 21:56:04 | 000,108,800 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus) DRV:64bit: - [2015.08.23 10:23:36 | 000,052,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr) DRV:64bit: - [2015.08.23 10:23:29 | 000,934,752 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- G:\WINDOWS\SysNative\drivers\refsv1.sys -- (ReFSv1) DRV:64bit: - [2015.08.23 10:23:29 | 000,685,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi) DRV:64bit: - [2015.08.23 10:23:29 | 000,200,528 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- G:\WINDOWS\SysNative\drivers\wof.sys -- (Wof) DRV:64bit: - [2015.08.23 10:23:29 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- G:\Windows\SysNative\drivers\dam.sys -- (dam) DRV:64bit: - [2015.08.23 10:23:22 | 000,080,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\stornvme.sys -- (stornvme) DRV:64bit: - [2015.08.23 10:23:22 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\usbser.sys -- (usbser) DRV:64bit: - [2015.08.23 10:23:22 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum) DRV:64bit: - [2015.08.23 10:23:22 | 000,046,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32) DRV:64bit: - [2015.08.23 10:23:22 | 000,046,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi) DRV:64bit: - [2015.08.18 08:55:45 | 000,373,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI) DRV:64bit: - [2015.07.28 18:45:36 | 000,040,720 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\amdkmafd.sys -- (amdkmafd) DRV:64bit: - [2015.07.10 17:45:52 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\terminpt.sys -- (terminpt) DRV:64bit: - [2015.07.10 17:45:29 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2015.07.10 12:01:20 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr) DRV:64bit: - [2015.07.10 12:00:14 | 000,380,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\clfs.sys -- (CLFS) DRV:64bit: - [2015.07.10 12:00:14 | 000,215,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- G:\Windows\SysNative\drivers\ahcache.sys -- (ahcache) DRV:64bit: - [2015.07.10 12:00:10 | 000,106,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT) DRV:64bit: - [2015.07.10 12:00:10 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101) DRV:64bit: - [2015.07.10 12:00:10 | 000,031,072 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- G:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2015.07.10 12:00:09 | 000,200,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt) DRV:64bit: - [2015.07.10 12:00:09 | 000,153,440 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS) DRV:64bit: - [2015.07.10 12:00:09 | 000,061,952 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- G:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt) DRV:64bit: - [2015.07.10 12:00:09 | 000,041,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\condrv.sys -- (condrv) DRV:64bit: - [2015.07.10 12:00:09 | 000,026,624 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ioqos.sys -- (IoQos) DRV:64bit: - [2015.07.10 12:00:04 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- G:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS) DRV:64bit: - [2015.07.10 12:00:00 | 000,245,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000) DRV:64bit: - [2015.07.10 12:00:00 | 000,159,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101) DRV:64bit: - [2015.07.10 12:00:00 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx) DRV:64bit: - [2015.07.10 12:00:00 | 000,074,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\SerCx.sys -- (SerCx) DRV:64bit: - [2015.07.10 12:00:00 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000) DRV:64bit: - [2015.07.10 12:00:00 | 000,039,264 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- G:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist) DRV:64bit: - [2015.07.10 11:59:59 | 000,155,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2) DRV:64bit: - [2015.07.10 11:59:59 | 000,088,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass) DRV:64bit: - [2015.07.10 11:59:59 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf) DRV:64bit: - [2015.07.10 11:59:53 | 000,129,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform) DRV:64bit: - [2015.07.10 11:59:53 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- G:\Windows\SysNative\drivers\Ndu.sys -- (Ndu) DRV:64bit: - [2015.07.10 11:59:52 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus) DRV:64bit: - [2015.07.10 11:59:50 | 000,119,648 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- G:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv) DRV:64bit: - [2015.07.10 11:59:50 | 000,082,432 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- G:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp) DRV:64bit: - [2015.07.10 11:59:48 | 000,291,680 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- G:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter) DRV:64bit: - [2015.07.10 11:59:48 | 000,209,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000) DRV:64bit: - [2015.07.10 11:59:48 | 000,127,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\acpiex.sys -- (acpiex) DRV:64bit: - [2015.07.10 11:59:48 | 000,083,968 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- G:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt) DRV:64bit: - [2015.07.10 11:59:48 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2015.07.10 11:59:48 | 000,044,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot) DRV:64bit: - [2015.07.10 11:59:48 | 000,044,032 | ---- | M] () [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx) DRV:64bit: - [2015.07.10 11:59:48 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\vhf.sys -- (vhf) DRV:64bit: - [2015.07.10 11:59:40 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2015.07.10 11:59:40 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea) DRV:64bit: - [2015.07.10 11:59:40 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys) DRV:64bit: - [2015.07.10 11:59:40 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- G:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig) DRV:64bit: - [2015.07.10 11:59:40 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy) DRV:64bit: - [2015.07.10 11:59:39 | 000,705,376 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus) DRV:64bit: - [2015.07.10 11:59:39 | 000,587,264 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64) DRV:64bit: - [2015.07.10 11:59:39 | 000,474,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\spaceport.sys -- (spaceport) DRV:64bit: - [2015.07.10 11:59:39 | 000,424,800 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ibbus.sys -- (ibbus) DRV:64bit: - [2015.07.10 11:59:39 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID) DRV:64bit: - [2015.07.10 11:59:39 | 000,133,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\storahci.sys -- (storahci) DRV:64bit: - [2015.07.10 11:59:39 | 000,127,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys) DRV:64bit: - [2015.07.10 11:59:39 | 000,094,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea) DRV:64bit: - [2015.07.10 11:59:39 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor) DRV:64bit: - [2015.07.10 11:59:39 | 000,076,128 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr) DRV:64bit: - [2015.07.10 11:59:39 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\mvumis.sys -- (mvumis) DRV:64bit: - [2015.07.10 11:59:39 | 000,059,232 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs) DRV:64bit: - [2015.07.10 11:59:39 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i) DRV:64bit: - [2015.07.10 11:59:39 | 000,058,208 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i) DRV:64bit: - [2015.07.10 11:59:39 | 000,055,296 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- G:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay) DRV:64bit: - [2015.07.10 11:59:39 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- G:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender) DRV:64bit: - [2015.07.10 11:59:39 | 000,040,288 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\storufs.sys -- (storufs) DRV:64bit: - [2015.07.10 11:59:39 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2015.07.10 11:59:39 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\uefi.sys -- (UEFI) DRV:64bit: - [2015.07.10 11:59:39 | 000,026,976 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\winmad.sys -- (WinMad) DRV:64bit: - [2015.07.10 11:59:39 | 000,017,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys -- (swenum) DRV:64bit: - [2015.07.10 11:59:38 | 003,436,896 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2015.07.10 11:59:38 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX) DRV:64bit: - [2015.07.10 11:59:38 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV) DRV:64bit: - [2015.07.10 11:59:38 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2015.07.10 11:59:38 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2015.07.10 11:59:38 | 000,222,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip) DRV:64bit: - [2015.07.10 11:59:38 | 000,207,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\tpm.sys -- (TPM) DRV:64bit: - [2015.07.10 11:59:38 | 000,116,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\capimg.sys -- (CapImg) DRV:64bit: - [2015.07.10 11:59:38 | 000,107,360 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\3ware.sys -- (3ware) DRV:64bit: - [2015.07.10 11:59:38 | 000,104,800 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i) DRV:64bit: - [2015.07.10 11:59:38 | 000,099,168 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i) DRV:64bit: - [2015.07.10 11:59:38 | 000,083,296 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2015.07.10 11:59:38 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS) DRV:64bit: - [2015.07.10 11:59:38 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2015.07.10 11:59:38 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt) DRV:64bit: - [2015.07.10 11:59:38 | 000,026,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2015.07.10 11:59:38 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid) DRV:64bit: - [2015.07.10 11:59:38 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\kdnic.sys -- (kdnic) DRV:64bit: - [2015.07.10 11:59:38 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn) DRV:64bit: - [2015.07.10 11:59:38 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2) DRV:64bit: - [2015.07.10 11:59:38 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\acpitime.sys -- (acpitime) DRV:64bit: - [2015.07.10 11:59:38 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr) DRV:64bit: - [2015.07.10 11:59:36 | 000,122,608 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C) DRV:64bit: - [2015.07.10 11:59:36 | 000,116,576 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv) DRV:64bit: - [2015.07.10 11:59:36 | 000,094,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\netvsc.sys -- (netvsc) DRV:64bit: - [2015.07.10 11:59:36 | 000,092,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\sdstor.sys -- (sdstor) DRV:64bit: - [2015.07.10 11:59:36 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\vpci.sys -- (vpci) DRV:64bit: - [2015.07.10 11:59:36 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc) DRV:64bit: - [2015.07.10 11:59:36 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c) DRV:64bit: - [2015.07.10 11:59:36 | 000,043,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\intelpep.sys -- (intelpep) DRV:64bit: - [2015.07.10 11:59:36 | 000,042,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg) DRV:64bit: - [2015.07.10 11:59:36 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys -- (CompositeBus) DRV:64bit: - [2015.07.10 11:59:36 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO) DRV:64bit: - [2015.07.10 11:59:36 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2015.07.10 11:59:36 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\fcvsc.sys -- (fcvsc) DRV:64bit: - [2015.07.10 11:59:36 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid) DRV:64bit: - [2015.07.10 11:59:36 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo) DRV:64bit: - [2015.07.10 11:59:36 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd) DRV:64bit: - [2015.07.10 11:59:36 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter) DRV:64bit: - [2010.09.07 03:37:28 | 000,121,432 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\jraid.sys -- (JRAID) DRV:64bit: - [2010.04.07 12:14:50 | 000,446,304 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\netr6164.sys -- (rt61x64) DRV - [2015.07.10 11:59:39 | 000,017,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys -- (swenum) DRV - [2015.07.10 11:59:36 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys -- (CompositeBus) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=de&pid=NIS&pvid=21.7.0.11 IE:64bit: - HKLM\..\SearchScopes,DefaultScope = IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = G:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=de&pid=NIS&pvid=21.7.0.11 IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=de&pid=NIS&pvid=21.7.0.11 IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=de-de IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EB C2 82 FA 80 3D D0 01 [binary data] IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}: "URL" = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=ima&utm_campaign=install_ie&utm_content=ds&from=ima&uid=TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS&ts=1422729603&type=default&q={searchTerms} IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}: "URL" = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NIS&chn=retail&geo=DE&ver=21&locale=de_DE&gct=sb&qsrc=2869 IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}: "URL" = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=ima&utm_campaign=install_ie&utm_content=ds&from=ima&uid=TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS&ts=1422729603&type=default&q={searchTerms} IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "mystartsearch" FF - prefs.js..browser.search.isUS: false FF - prefs.js..browser.search.searchengine.alias: "mystartsearch" FF - prefs.js..browser.search.searchengine.desc: "this is my first firefox searchEngine" FF - prefs.js..browser.search.searchengine.iconURL: "hxxp://www.mystartsearch.com/favicon.ico" FF - prefs.js..browser.search.searchengine.name: "mystartsearch" FF - prefs.js..browser.search.searchengine.ptid: "ima" FF - prefs.js..browser.search.searchengine.uid: "TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS" FF - prefs.js..browser.search.searchengine.url: "hxxp://www.mystartsearch.com/web/?type=ds&ts=1422729545&from=ima&uid=TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS&q={searchTerms}" FF - prefs.js..browser.search.selectedEngine: "mystartsearch" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "hxxp://www.mystartsearch.com/?type=hppp&ts=1422729585&from=ima&uid=TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS" FF - prefs.js..extensions.enabledAddons: 8hffxtbr%40Allin1Convert_8h.com:6.85.6.1415 FF - prefs.js..extensions.enabledAddons: %7B91f3cb70-65fb-4c07-71d7-0cb547f8816f%7D:1.1 FF - prefs.js..extensions.enabledAddons: veggy%40veggyAddon.com:2.107529 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:35.0.1 FF - prefs.js..browser.startup.homepage: "hxxp://www.mystartsearch.com/?type=hp&ts=1422729545&from=ima&uid=TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS" FF - prefs.js..browser.startup.homepage: "true" FF - prefs.js..browser.startup.homepage: "hxxp://home.tb.ask.com/index.jhtml?ptb=47F2DEF6-F5FA-4C68-81D6-58A3921DD928&n=781aa8f3&p2=^AYY^xdm070^LADEDE^de&si=flvrunner" FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: G:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.65.2: G:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2: G:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: G:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: G:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll () FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: F:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: F:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp: F:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf: F:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.66.2: F:\Programme\Java\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2: F:\Programme\Java\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: G:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: G:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: G:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\PDF Architect 3: G:\Program Files (x86)\PDF Architect 3\np-previewer.dll (pdfforge GmbH) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fftoolbar2014@etech.com: G:\Users\Desktop\AppData\Roaming\Mozilla\Firefox\Profiles\8dgxr61q.default\extensions\fftoolbar2014@etech.com FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\faststartff@gmail.com: G:\Users\Desktop\AppData\Roaming\Mozilla\Firefox\Profiles\8dgxr61q.default\extensions\faststartff@gmail.com FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\pdf_architect_3_conv@pdfarchitect.org: G:\Program Files (x86)\PDF Architect 3\resources\pdfarchitect3firefoxextension\ [2015.08.20 20:35:36 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Components: G:\Program Files (x86)\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Plugins: G:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 38.5.0\extensions\\Components: G:\Program Files (x86)\Mozilla Thunderbird\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 38.5.0\extensions\\Plugins: G:\Program Files (x86)\Mozilla Thunderbird\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 38.5.0\extensions\\Components: G:\Program Files (x86)\Mozilla Thunderbird\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 38.5.0\extensions\\Plugins: G:\Program Files (x86)\Mozilla Thunderbird\plugins [2015.01.31 19:26:08 | 000,000,000 | ---D | M] (No name found) -- G:\Users\Desktop\AppData\Roaming\mozilla\Extensions [2015.12.22 10:14:05 | 000,000,000 | ---D | M] (No name found) -- G:\Users\Desktop\AppData\Roaming\mozilla\Firefox\Profiles\8dgxr61q.default\extensions [2015.08.25 09:27:03 | 000,000,000 | ---D | M] ("Zoom It") -- G:\Users\Desktop\AppData\Roaming\mozilla\Firefox\Profiles\8dgxr61q.default\extensions\{91f3cb70-65fb-4c07-71d7-0cb547f8816f} [2015.02.05 18:21:24 | 000,000,000 | ---D | M] (Allin1Convert) -- G:\Users\Desktop\AppData\Roaming\mozilla\Firefox\Profiles\8dgxr61q.default\extensions\8hffxtbr@Allin1Convert_8h.com [2015.12.22 10:14:05 | 000,000,000 | ---D | M] ("Mozilla Firefox Hotfixer") -- G:\Users\Desktop\AppData\Roaming\mozilla\Firefox\Profiles\8dgxr61q.default\extensions\veggy@veggyAddon.com [2015.01.31 19:28:34 | 000,002,598 | ---- | M] () -- G:\Users\Desktop\AppData\Roaming\mozilla\firefox\profiles\8dgxr61q.default\searchplugins\ask-web-search.xml [2015.02.01 07:14:01 | 000,002,083 | ---- | M] () -- G:\Users\Desktop\AppData\Roaming\mozilla\firefox\profiles\8dgxr61q.default\searchplugins\mystartsearch.xml [2016.01.22 18:33:24 | 000,000,000 | ---D | M] (No name found) -- G:\Program Files (x86)\mozilla firefox\browser\extensions [2015.02.01 07:32:33 | 000,000,000 | ---D | M] (Default) -- G:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ========== Chrome ========== CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\8.0.0.9098_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\ O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - G:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - G:\Programme\Java\jre1.8.0_65\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - G:\Programme\Java\jre1.8.0_65\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Programme\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (PDF Architect 3 Helper) - {06E08260-0695-4EC1-A74B-1310D8899D93} - G:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll (pdfforge GmbH) O2 - BHO: (IETabPage Class) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - G:\Program Files (x86)\XTab\SupTab.dll File not found O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - G:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL File not found O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Programme\Java\bin\ssv.dll (Oracle Corporation) O2 - BHO: (AcroIEToolbarHelper Class) - {AE7CD045-E861-484f-8273-0445EE161910} - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Programme\Java\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (PDF Architect 3 Toolbar) - {2DFF3579-5AA7-45B9-9328-1D38EA230861} - G:\Program Files (x86)\PDF Architect 3\creator-ie-plugin.dll (pdfforge GmbH) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O4:64bit: - HKLM..\Run: [ProfilerU] G:\Programme\SmartTechnology\Software\ProfilerU.exe (Saitek) O4:64bit: - HKLM..\Run: [RtHDVCpl] G:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [SaiMfd] G:\Programme\SmartTechnology\Software\SaiMfd.exe (Saitek) O4:64bit: - HKLM..\Run: [StartCN] G:\Program Files\AMD\CNext\CNext\cnext.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Acrobat Assistant 7.0] F:\Programme\Distillr\Acrotray.exe (Adobe Systems Inc.) O4 - HKLM..\Run: [StartCCC] "G:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun File not found O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] G:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] G:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\Run: [HydraVisionDesktopManager] G:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe (AMD) O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\Run: [OneDrive] G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\Run: [Steam] G:\Program Files (x86)\Steam\steam.exe (Valve Corporation) O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\RunOnce: [Uninstall G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] G:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" File not found O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\RunOnce: [Uninstall G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] G:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" File not found O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\RunOnce: [Uninstall G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] G:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64" File not found O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\RunOnce: [Uninstall G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] G:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64" File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O8:64bit: - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Auswahl in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: In Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: In vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: In Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: In vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O9:64bit: - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0292df2a-529d-4de4-9189-8c51c2a42ba8}: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{21636d14-864c-473d-bb3c-620d4e78bd00}: DhcpNameServer = 192.168.178.1 O18:64bit: - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - G:\Windows\SysNative\tbauth.dll (Microsoft Corporation) O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - G:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - G:\WINDOWS\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (G:\Windows\system32\userinit.exe) - G:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - G:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - U ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - G:\Windows\System32\ie4uinit.exe -UserConfig ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - G:\Windows\System32\Rundll32.exe G:\Windows\System32\mscories.dll,Install ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX:64bit: {BD6F5371-DAC1-30F0-9DDE-CAC6791E28C3} - .NET Framework ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\inf\unregmp2.exe /ShowWMP ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework ActiveX: {30500C7C-2206-3DC6-9792-96E95A04669D} - .NET Framework ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - G:\Windows\SysWOW64\Rundll32.exe G:\Windows\SysWOW64\mscories.dll,Install ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "G:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2016.02.04 07:31:53 | 000,000,000 | -H-D | C] -- G:\OneDriveTemp [2016.02.04 07:29:01 | 000,602,112 | ---- | C] (OldTimer Tools) -- G:\Users\Desktop\Desktop\OTL.exe [2016.02.04 07:22:23 | 000,000,000 | ---D | C] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings [2016.02.04 07:22:18 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\AMD [2016.02.03 19:29:00 | 000,000,000 | -H-D | C] -- G:\$WINDOWS.~BT [2016.02.03 18:53:37 | 000,000,000 | ---D | C] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo [2016.02.03 18:52:23 | 000,000,000 | ---D | C] -- G:\ProgramData\Comodo [2016.01.23 10:02:49 | 000,000,000 | ---D | C] -- G:\Users\Desktop\AppData\Roaming\Nvu [2016.01.23 10:02:42 | 000,000,000 | ---D | C] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nvu [2016.01.23 10:02:40 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\Nvu [2016.01.23 10:00:01 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\phase5 [2016.01.23 10:00:01 | 000,000,000 | ---D | C] -- G:\Users\Desktop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Phase 5 HTML-Editor [2016.01.22 13:05:16 | 000,143,080 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiuxpag.dll [2016.01.22 13:05:14 | 008,168,856 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiumdva.dll [2016.01.22 13:05:04 | 009,158,496 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiumdag.dll [2016.01.22 13:04:52 | 009,105,552 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiumd6a.dll [2016.01.22 13:04:38 | 010,919,104 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiumd64.dll [2016.01.22 13:04:26 | 000,130,616 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiu9p64.dll [2016.01.22 13:04:26 | 000,112,392 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiu9pag.dll [2016.01.22 13:04:26 | 000,088,032 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atimpc64.dll [2016.01.22 13:04:24 | 000,081,200 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atimpc32.dll [2016.01.22 13:04:08 | 011,011,560 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atidxx32.dll [2016.01.22 13:03:54 | 001,249,664 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\aticfx32.dll [2016.01.22 13:03:46 | 010,339,016 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdxc64.dll [2016.01.22 13:03:38 | 008,426,376 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdxc32.dll [2016.01.22 13:03:26 | 000,088,032 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdpcom64.dll [2016.01.22 13:03:24 | 000,081,192 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdpcom32.dll [2016.01.22 13:03:22 | 000,151,968 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\amdhcp64.dll [2016.01.22 13:03:20 | 000,138,416 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\amdhcp32.dll [2016.01.22 13:03:14 | 000,128,568 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdave64.dll [2016.01.22 13:03:12 | 000,120,192 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdave32.dll [2016.01.22 13:02:54 | 000,136,216 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\mantle64.dll [2016.01.22 13:02:54 | 000,104,976 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\mantleaxl64.dll [2016.01.22 13:02:54 | 000,097,808 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\mantleaxl32.dll [2016.01.22 13:02:52 | 000,122,384 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\mantle32.dll [2016.01.22 13:02:46 | 000,012,816 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\detoured.dll [2016.01.22 13:02:44 | 000,874,008 | ---- | C] (AMD) -- G:\WINDOWS\SysNative\coinst_15.30.dll [2016.01.22 13:02:44 | 000,012,816 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\detoured.dll [2016.01.22 13:01:42 | 000,199,696 | ---- | C] (AMD) -- G:\WINDOWS\SysNative\atitmm64.dll [2016.01.22 13:01:42 | 000,097,816 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atisamu64.dll [2016.01.22 13:01:42 | 000,089,624 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atisamu32.dll [2016.01.22 13:01:38 | 025,848,848 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atioglxx.dll [2016.01.22 13:01:24 | 000,341,528 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\ATIODE.exe [2016.01.22 13:01:22 | 000,059,928 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\ATIODCLI.exe [2016.01.22 13:01:20 | 031,385,616 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atio6axx.dll [2016.01.22 13:01:02 | 000,040,472 | ---- | C] (AMD) -- G:\WINDOWS\SysNative\atimuixx.dll [2016.01.22 13:00:40 | 000,151,056 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atigktxx.dll [2016.01.22 13:00:40 | 000,078,872 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiglpxx.dll [2016.01.22 13:00:40 | 000,078,872 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiglpxx.dll [2016.01.22 13:00:38 | 000,254,992 | ---- | C] (AMD) -- G:\WINDOWS\SysNative\atiesrxx.exe [2016.01.22 13:00:38 | 000,166,416 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atig6txx.dll [2016.01.22 13:00:38 | 000,084,504 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atig6pxx.dll [2016.01.22 13:00:36 | 000,561,176 | ---- | C] (AMD) -- G:\WINDOWS\SysNative\atieclxx.exe [2016.01.22 13:00:34 | 000,451,088 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atidemgy.dll [2016.01.22 13:00:30 | 000,071,192 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticalrt64.dll [2016.01.22 13:00:30 | 000,060,944 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticalrt.dll [2016.01.22 13:00:28 | 015,720,464 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticaldd64.dll [2016.01.22 13:00:08 | 014,310,936 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticaldd.dll [2016.01.22 12:59:56 | 000,064,528 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticalcl64.dll [2016.01.22 12:59:56 | 000,057,872 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticalcl.dll [2016.01.22 12:59:54 | 000,950,288 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atiadlxy.dll [2016.01.22 12:59:54 | 000,950,288 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atiadlxx.dll [2016.01.22 12:59:54 | 000,375,824 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atiapfxx.exe [2016.01.22 12:59:50 | 001,281,552 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atiadlxx.dll [2016.01.22 12:59:48 | 000,052,248 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\drivers\ati2erec.dll [2016.01.22 12:59:34 | 049,992,720 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\amdocl64.dll [2016.01.22 12:59:02 | 027,605,008 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\amdocl12cl64.dll [2016.01.22 12:58:44 | 022,357,008 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\amdocl12cl.dll [2016.01.22 12:58:20 | 041,519,120 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\amdocl.dll [2016.01.22 12:57:52 | 000,059,408 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdmmcl6.dll [2016.01.22 12:57:52 | 000,048,144 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdmmcl.dll [2016.01.22 12:57:46 | 006,651,928 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdmantle64.dll [2016.01.22 12:57:38 | 005,232,664 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdmantle32.dll [2016.01.22 12:57:30 | 000,686,608 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\amdlvr64.dll [2016.01.22 12:57:28 | 000,571,408 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\amdlvr32.dll [2016.01.22 12:57:12 | 000,305,392 | ---- | C] (Advanced Micro Devices) -- G:\WINDOWS\SysNative\drivers\amdacpksd.sys [2016.01.22 12:57:10 | 000,073,752 | ---- | C] (Khronos Group) -- G:\WINDOWS\SysNative\OpenCL.dll [2016.01.22 12:57:10 | 000,068,112 | ---- | C] (Khronos Group) -- G:\WINDOWS\SysWow64\OpenCL.dll [2016.01.17 10:16:27 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\Mozilla Thunderbird [2016.01.12 21:43:07 | 021,873,152 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\edgehtml.dll [2016.01.12 21:43:05 | 018,802,176 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\edgehtml.dll [2016.01.12 21:43:03 | 002,459,096 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMVDECOD.DLL [2016.01.12 21:43:03 | 000,787,720 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMADMOD.DLL [2016.01.12 21:43:03 | 000,695,752 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMADMOD.DLL [2016.01.12 21:43:03 | 000,377,592 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MP4SDECD.DLL [2016.01.12 21:43:03 | 000,368,776 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MP4SDECD.DLL [2016.01.12 21:43:03 | 000,345,080 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMVSDECD.DLL [2016.01.12 21:43:03 | 000,305,776 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMVSDECD.DLL [2016.01.12 21:43:03 | 000,205,072 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\COLORCNV.DLL [2016.01.12 21:43:03 | 000,188,032 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\COLORCNV.DLL [2016.01.12 21:43:03 | 000,083,704 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfvdsp.dll [2016.01.12 21:43:02 | 002,641,928 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMVDECOD.DLL [2016.01.12 21:43:02 | 002,162,064 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMVENCOD.DLL [2016.01.12 21:43:02 | 001,991,120 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMVENCOD.DLL [2016.01.12 21:43:02 | 001,672,192 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\quartz.dll [2016.01.12 21:43:02 | 001,541,632 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\quartz.dll [2016.01.12 21:43:02 | 001,270,104 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfnetsrc.dll [2016.01.12 21:43:02 | 001,255,936 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMSPDMOE.DLL [2016.01.12 21:43:02 | 001,150,816 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\aeinv.dll [2016.01.12 21:43:02 | 001,070,080 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMSPDMOE.DLL [2016.01.12 21:43:02 | 001,063,504 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\msmpeg2adec.dll [2016.01.12 21:43:02 | 000,882,208 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\msmpeg2adec.dll [2016.01.12 21:43:02 | 000,862,056 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfnetcore.dll [2016.01.12 21:43:02 | 000,751,992 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMADMOE.DLL [2016.01.12 21:43:02 | 000,747,008 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMVXENCD.DLL [2016.01.12 21:43:02 | 000,696,192 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMADMOE.DLL [2016.01.12 21:43:02 | 000,634,368 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMVXENCD.DLL [2016.01.12 21:43:02 | 000,563,200 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\qdvd.dll [2016.01.12 21:43:02 | 000,447,488 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMVSENCD.DLL [2016.01.12 21:43:02 | 000,409,088 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMVSENCD.DLL [2016.01.12 21:43:02 | 000,205,312 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\aepic.dll [2016.01.12 21:43:02 | 000,115,704 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\VIDRESZR.DLL [2016.01.12 21:43:02 | 000,107,952 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\VIDRESZR.DLL [2016.01.12 21:43:02 | 000,072,808 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfvdsp.dll [2016.01.12 21:43:01 | 008,022,368 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\ntoskrnl.exe [2016.01.12 21:43:01 | 002,824,248 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\msmpeg2vdec.dll [2016.01.12 21:43:01 | 001,106,872 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfnetsrc.dll [2016.01.12 21:43:01 | 001,009,664 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMSPDMOD.DLL [2016.01.12 21:43:01 | 000,931,328 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MSMPEG2ENC.DLL [2016.01.12 21:43:01 | 000,890,880 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMSPDMOD.DLL [2016.01.12 21:43:01 | 000,871,936 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MSMPEG2ENC.DLL [2016.01.12 21:43:01 | 000,779,928 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\evr.dll [2016.01.12 21:43:01 | 000,714,808 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfnetcore.dll [2016.01.12 21:43:01 | 000,678,912 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\qedit.dll [2016.01.12 21:43:01 | 000,667,856 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\advapi32.dll [2016.01.12 21:43:01 | 000,573,440 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\qedit.dll [2016.01.12 21:43:01 | 000,463,872 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MFWMAAEC.DLL [2016.01.12 21:43:01 | 000,404,992 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MFWMAAEC.DLL [2016.01.12 21:43:01 | 000,090,912 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\devenum.dll [2016.01.12 21:43:01 | 000,082,096 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\devenum.dll [2016.01.12 21:43:00 | 007,523,840 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\Chakra.dll [2016.01.12 21:43:00 | 005,454,848 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\Chakra.dll [2016.01.12 21:43:00 | 002,463,704 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfcore.dll [2016.01.12 21:43:00 | 002,152,744 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfcore.dll [2016.01.12 21:43:00 | 000,772,448 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\invagent.dll [2016.01.12 21:43:00 | 000,723,648 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\generaltel.dll [2016.01.12 21:43:00 | 000,635,312 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\evr.dll [2016.01.12 21:43:00 | 000,556,032 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfh264enc.dll [2016.01.12 21:43:00 | 000,539,136 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfh264enc.dll [2016.01.12 21:43:00 | 000,441,696 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\devinv.dll [2016.01.12 21:43:00 | 000,379,392 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\qdvd.dll [2016.01.12 21:43:00 | 000,305,664 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\ksproxy.ax [2016.01.12 21:43:00 | 000,249,464 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\RESAMPLEDMO.DLL [2016.01.12 21:43:00 | 000,233,992 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mftranscode.dll [2016.01.12 21:43:00 | 000,232,896 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\RESAMPLEDMO.DLL [2016.01.12 21:43:00 | 000,208,688 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mftranscode.dll [2016.01.12 21:42:59 | 002,445,128 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\msmpeg2vdec.dll [2016.01.12 21:42:59 | 001,591,848 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\gdi32.dll [2016.01.12 21:42:59 | 000,784,136 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfsvr.dll [2016.01.12 21:42:59 | 000,781,976 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfds.dll [2016.01.12 21:42:59 | 000,712,704 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\usermgr.dll [2016.01.12 21:42:59 | 000,658,528 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfds.dll [2016.01.12 21:42:59 | 000,645,144 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfsvr.dll [2016.01.12 21:42:59 | 000,578,560 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\winlogon.exe [2016.01.12 21:42:59 | 000,278,424 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MP43DECD.DLL [2016.01.12 21:42:59 | 000,277,400 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MPG4DECD.DLL [2016.01.12 21:42:59 | 000,251,544 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MP43DECD.DLL [2016.01.12 21:42:59 | 000,250,520 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MPG4DECD.DLL [2016.01.12 21:42:59 | 000,235,008 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\ksproxy.ax [2016.01.12 21:42:59 | 000,119,800 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MP3DMOD.DLL [2016.01.12 21:42:59 | 000,100,712 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MP3DMOD.DLL [2016.01.12 21:42:59 | 000,042,496 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\usermgrcli.dll [2016.01.12 21:42:58 | 001,817,064 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMALFXGFXDSP.dll [2016.01.12 21:42:58 | 000,572,928 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\vbscript.dll [2016.01.12 21:42:58 | 000,243,248 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfps.dll [2016.01.12 21:42:58 | 000,033,280 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\usermgrcli.dll [2016.01.12 21:42:57 | 001,234,944 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\aitstatic.exe [2016.01.12 21:42:57 | 001,083,072 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\appraiser.dll [2016.01.12 21:42:57 | 000,826,880 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\jscript.dll [2016.01.12 21:42:57 | 000,771,072 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\Chakradiag.dll [2016.01.12 21:42:57 | 000,650,240 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\jscript.dll [2016.01.12 21:42:57 | 000,235,008 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\UserMgrProxy.dll [2016.01.12 21:42:57 | 000,159,744 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\UserMgrProxy.dll [2016.01.12 21:42:57 | 000,116,728 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfps.dll [2 G:\WINDOWS\SysNative\*.tmp files -> G:\WINDOWS\SysNative\*.tmp -> ] [1 G:\WINDOWS\*.tmp files -> G:\WINDOWS\*.tmp -> ] [1 G:\Users\Public\Documents\*.tmp files -> G:\Users\Public\Documents\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2016.02.04 07:37:03 | 000,000,884 | ---- | M] () -- G:\WINDOWS\tasks\Adobe Flash Player Updater.job [2016.02.04 07:35:09 | 002,351,844 | ---- | M] () -- G:\WINDOWS\SysNative\PerfStringBackup.INI [2016.02.04 07:35:09 | 001,111,574 | ---- | M] () -- G:\WINDOWS\SysNative\perfh007.dat [2016.02.04 07:35:09 | 000,796,508 | ---- | M] () -- G:\WINDOWS\SysNative\perfh009.dat [2016.02.04 07:35:09 | 000,274,732 | ---- | M] () -- G:\WINDOWS\SysNative\perfc007.dat [2016.02.04 07:35:09 | 000,163,922 | ---- | M] () -- G:\WINDOWS\SysNative\perfc009.dat [2016.02.04 07:32:51 | 000,067,584 | --S- | M] () -- G:\WINDOWS\bootstat.dat [2016.02.04 07:32:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- G:\Users\Desktop\Desktop\OTL.exe [2016.02.04 07:32:00 | 000,001,136 | ---- | M] () -- G:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2016.02.04 07:31:16 | 000,016,148 | ---- | M] () -- G:\WINDOWS\SysNative\DESKTOP-PC_Desktop_HistoryPrediction.bin [2016.02.04 07:30:47 | 268,435,456 | -HS- | M] () -- G:\swapfile.sys [2016.02.04 07:30:44 | 1070,186,494 | -HS- | M] () -- G:\hiberfil.sys [2016.02.04 07:09:00 | 000,001,140 | ---- | M] () -- G:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2016.02.04 06:58:01 | 000,000,046 | ---- | M] () -- G:\WINDOWS\wininit.ini [2016.02.03 19:27:12 | 000,874,480 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\coinst_15.20.dll [2016.02.03 19:27:08 | 001,196,032 | ---- | M] () -- G:\WINDOWS\SysNative\amdocl_as64.exe [2016.02.03 19:27:08 | 001,070,592 | ---- | M] () -- G:\WINDOWS\SysNative\amdocl_ld64.exe [2016.02.03 19:27:08 | 001,004,032 | ---- | M] () -- G:\WINDOWS\SysWow64\amdocl_as32.exe [2016.02.03 19:27:08 | 000,807,424 | ---- | M] () -- G:\WINDOWS\SysWow64\amdocl_ld32.exe [2016.01.30 14:13:00 | 000,000,946 | ---- | M] () -- G:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job [2016.01.29 17:05:23 | 000,002,259 | ---- | M] () -- G:\Users\Public\Desktop\Google Chrome.lnk [2016.01.28 19:19:53 | 000,000,000 | -H-- | M] () -- G:\WINDOWS\SysNative\drivers\Msft_Kernel__hid_0738_1713_01009.Wdf [2016.01.24 10:42:37 | 000,012,752 | ---- | M] () -- G:\Users\Desktop\Documents\Unbenannt 1.odt [2016.01.23 10:02:42 | 000,000,957 | ---- | M] () -- G:\Users\Desktop\Desktop\Nvu.lnk [2016.01.23 10:00:02 | 000,000,997 | ---- | M] () -- G:\Users\Desktop\Desktop\HTML Editor.lnk [2016.01.22 13:05:16 | 000,143,080 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiuxpag.dll [2016.01.22 13:05:14 | 008,168,856 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiumdva.dll [2016.01.22 13:05:14 | 000,162,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiuxp64.dll [2016.01.22 13:05:04 | 009,158,496 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiumdag.dll [2016.01.22 13:04:52 | 009,105,552 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiumd6a.dll [2016.01.22 13:04:38 | 010,919,104 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiumd64.dll [2016.01.22 13:04:26 | 000,130,616 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiu9p64.dll [2016.01.22 13:04:26 | 000,112,392 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiu9pag.dll [2016.01.22 13:04:26 | 000,088,032 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atimpc64.dll [2016.01.22 13:04:24 | 000,081,200 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atimpc32.dll [2016.01.22 13:04:22 | 013,313,544 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atidxx64.dll [2016.01.22 13:04:08 | 011,011,560 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atidxx32.dll [2016.01.22 13:03:56 | 001,519,232 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\aticfx64.dll [2016.01.22 13:03:54 | 001,249,664 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\aticfx32.dll [2016.01.22 13:03:46 | 010,339,016 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdxc64.dll [2016.01.22 13:03:38 | 008,426,376 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdxc32.dll [2016.01.22 13:03:26 | 000,088,032 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdpcom64.dll [2016.01.22 13:03:24 | 000,471,352 | ---- | M] () -- G:\WINDOWS\SysNative\amdmiracast.dll [2016.01.22 13:03:24 | 000,081,192 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdpcom32.dll [2016.01.22 13:03:22 | 000,151,968 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\amdhcp64.dll [2016.01.22 13:03:20 | 000,138,416 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\amdhcp32.dll [2016.01.22 13:03:14 | 000,128,568 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdave64.dll [2016.01.22 13:03:12 | 000,120,192 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdave32.dll [2016.01.22 13:02:54 | 000,136,216 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\mantle64.dll [2016.01.22 13:02:54 | 000,104,976 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\mantleaxl64.dll [2016.01.22 13:02:54 | 000,097,808 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\mantleaxl32.dll [2016.01.22 13:02:52 | 000,203,800 | ---- | M] () -- G:\WINDOWS\SysNative\hsa-thunk64.dll [2016.01.22 13:02:52 | 000,122,384 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\mantle32.dll [2016.01.22 13:02:50 | 000,183,312 | ---- | M] () -- G:\WINDOWS\SysWow64\hsa-thunk.dll [2016.01.22 13:02:46 | 000,232,472 | ---- | M] () -- G:\WINDOWS\SysNative\dgtrayicon.exe [2016.01.22 13:02:46 | 000,012,816 | ---- | M] (Microsoft Corporation) -- G:\WINDOWS\SysNative\detoured.dll [2016.01.22 13:02:44 | 000,874,008 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\coinst_15.30.dll [2016.01.22 13:02:44 | 000,012,816 | ---- | M] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\detoured.dll [2016.01.22 13:02:42 | 000,243,736 | ---- | M] () -- G:\WINDOWS\SysNative\clinfo.exe [2016.01.22 13:01:42 | 000,199,696 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\atitmm64.dll [2016.01.22 13:01:42 | 000,097,816 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atisamu64.dll [2016.01.22 13:01:42 | 000,089,624 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atisamu32.dll [2016.01.22 13:01:38 | 025,848,848 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atioglxx.dll [2016.01.22 13:01:24 | 000,341,528 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\ATIODE.exe [2016.01.22 13:01:22 | 000,059,928 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\ATIODCLI.exe [2016.01.22 13:01:20 | 031,385,616 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atio6axx.dll [2016.01.22 13:01:02 | 000,679,952 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\drivers\atikmpag.sys [2016.01.22 13:01:02 | 000,040,472 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\atimuixx.dll [2016.01.22 13:00:56 | 023,969,808 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\drivers\atikmdag.sys [2016.01.22 13:00:40 | 000,151,056 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atigktxx.dll [2016.01.22 13:00:40 | 000,078,872 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiglpxx.dll [2016.01.22 13:00:40 | 000,078,872 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiglpxx.dll [2016.01.22 13:00:38 | 000,254,992 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\atiesrxx.exe [2016.01.22 13:00:38 | 000,166,416 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atig6txx.dll [2016.01.22 13:00:38 | 000,084,504 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atig6pxx.dll [2016.01.22 13:00:36 | 000,561,176 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\atieclxx.exe [2016.01.22 13:00:34 | 000,451,088 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atidemgy.dll [2016.01.22 13:00:34 | 000,171,024 | ---- | M] () -- G:\WINDOWS\SysNative\atieah64.exe [2016.01.22 13:00:34 | 000,154,136 | ---- | M] () -- G:\WINDOWS\SysWow64\atieah32.exe [2016.01.22 13:00:30 | 000,071,192 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticalrt64.dll [2016.01.22 13:00:30 | 000,060,944 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticalrt.dll [2016.01.22 13:00:28 | 015,720,464 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticaldd64.dll [2016.01.22 13:00:08 | 014,310,936 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticaldd.dll [2016.01.22 12:59:56 | 000,064,528 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticalcl64.dll [2016.01.22 12:59:56 | 000,057,872 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticalcl.dll [2016.01.22 12:59:54 | 000,950,288 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atiadlxy.dll [2016.01.22 12:59:54 | 000,950,288 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atiadlxx.dll [2016.01.22 12:59:54 | 000,375,824 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atiapfxx.exe [2016.01.22 12:59:50 | 001,281,552 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atiadlxx.dll [2016.01.22 12:59:48 | 000,052,248 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\drivers\ati2erec.dll [2016.01.22 12:59:34 | 049,992,720 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\amdocl64.dll [2016.01.22 12:59:02 | 027,605,008 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\amdocl12cl64.dll [2016.01.22 12:58:44 | 022,357,008 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\amdocl12cl.dll [2016.01.22 12:58:20 | 041,519,120 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\amdocl.dll [2016.01.22 12:57:52 | 000,059,408 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdmmcl6.dll [2016.01.22 12:57:52 | 000,048,144 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdmmcl.dll [2016.01.22 12:57:46 | 006,651,928 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdmantle64.dll [2016.01.22 12:57:38 | 005,232,664 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdmantle32.dll [2016.01.22 12:57:30 | 000,686,608 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\amdlvr64.dll [2016.01.22 12:57:28 | 000,571,408 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\amdlvr32.dll [2016.01.22 12:57:18 | 000,143,384 | ---- | M] () -- G:\WINDOWS\SysNative\amdhdl64.dll [2016.01.22 12:57:18 | 000,132,120 | ---- | M] () -- G:\WINDOWS\SysWow64\amdhdl32.dll [2016.01.22 12:57:16 | 000,213,520 | ---- | M] () -- G:\WINDOWS\SysNative\amdgfxinfo64.dll [2016.01.22 12:57:14 | 000,198,672 | ---- | M] () -- G:\WINDOWS\SysWow64\amdgfxinfo32.dll [2016.01.22 12:57:12 | 000,305,392 | ---- | M] (Advanced Micro Devices) -- G:\WINDOWS\SysNative\drivers\amdacpksd.sys [2016.01.22 12:57:10 | 000,073,752 | ---- | M] (Khronos Group) -- G:\WINDOWS\SysNative\OpenCL.dll [2016.01.22 12:57:10 | 000,068,112 | ---- | M] (Khronos Group) -- G:\WINDOWS\SysWow64\OpenCL.dll [2016.01.22 11:31:36 | 000,323,588 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_el.dat [2016.01.22 11:31:36 | 000,322,740 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_vi.dat [2016.01.22 11:31:36 | 000,321,072 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_vi_nd.dat [2016.01.22 11:31:36 | 000,320,992 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_el_nd.dat [2016.01.22 11:31:36 | 000,261,920 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_stn_nd.dat [2016.01.22 11:31:36 | 000,258,464 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_cz_nd.dat [2016.01.22 11:31:36 | 000,252,628 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_FJ.dat [2016.01.22 11:31:36 | 000,249,680 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_FJ_nd.dat [2016.01.22 11:31:34 | 003,471,376 | ---- | M] () -- G:\WINDOWS\SysWow64\atiumdva.cap [2016.01.22 11:31:34 | 000,234,292 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_cik.dat [2016.01.22 11:31:34 | 000,232,624 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_cik_nd.dat [2016.01.22 11:31:34 | 000,177,344 | ---- | M] () -- G:\WINDOWS\SysNative\ativce03.dat [2016.01.22 11:31:34 | 000,100,832 | ---- | M] () -- G:\WINDOWS\SysNative\ativce02.dat [2016.01.22 11:31:30 | 003,437,632 | ---- | M] () -- G:\WINDOWS\SysNative\atiumd6a.cap [2016.01.22 11:31:10 | 000,683,968 | ---- | M] () -- G:\WINDOWS\SysWow64\atiapfxx.blb [2016.01.22 11:31:10 | 000,683,968 | ---- | M] () -- G:\WINDOWS\SysNative\atiapfxx.blb [2016.01.22 11:30:42 | 000,843,639 | ---- | M] () -- G:\WINDOWS\SysNative\amdicdxx.dat [2016.01.22 11:30:42 | 000,175,648 | ---- | M] () -- G:\WINDOWS\SysNative\amde31a.dat [2016.01.22 11:30:42 | 000,166,560 | ---- | M] () -- G:\WINDOWS\SysNative\amde34a.dat [2016.01.22 11:30:42 | 000,007,112 | ---- | M] () -- G:\WINDOWS\SysNative\AMDKernelEvents.man [2016.01.16 20:11:27 | 000,012,564 | ---- | M] () -- G:\Users\Desktop\Desktop\HAushalt.ods [2016.01.06 10:25:14 | 000,012,149 | ---- | M] () -- G:\Users\Desktop\Desktop\Gewürze.odt [2 G:\WINDOWS\SysNative\*.tmp files -> G:\WINDOWS\SysNative\*.tmp -> ] [1 G:\WINDOWS\*.tmp files -> G:\WINDOWS\*.tmp -> ] [1 G:\Users\Public\Documents\*.tmp files -> G:\Users\Public\Documents\*.tmp -> ] ========== Files Created - No Company Name ========== [2016.02.04 07:31:16 | 000,016,148 | ---- | C] () -- G:\WINDOWS\SysNative\DESKTOP-PC_Desktop_HistoryPrediction.bin [2016.02.04 07:27:28 | 000,001,250 | ---- | C] () -- G:\Users\Desktop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CNext.lnk [2016.02.04 06:58:01 | 000,000,046 | ---- | C] () -- G:\WINDOWS\wininit.ini [2016.02.03 19:27:08 | 001,196,032 | ---- | C] () -- G:\WINDOWS\SysNative\amdocl_as64.exe [2016.02.03 19:27:08 | 001,070,592 | ---- | C] () -- G:\WINDOWS\SysNative\amdocl_ld64.exe [2016.02.03 19:27:08 | 000,807,424 | ---- | C] () -- G:\WINDOWS\SysWow64\amdocl_ld32.exe [2016.02.03 19:27:07 | 001,004,032 | ---- | C] () -- G:\WINDOWS\SysWow64\amdocl_as32.exe [2016.01.28 19:19:53 | 000,000,000 | -H-- | C] () -- G:\WINDOWS\SysNative\drivers\Msft_Kernel__hid_0738_1713_01009.Wdf [2016.01.24 10:42:35 | 000,012,752 | ---- | C] () -- G:\Users\Desktop\Documents\Unbenannt 1.odt [2016.01.23 10:02:42 | 000,000,957 | ---- | C] () -- G:\Users\Desktop\Desktop\Nvu.lnk [2016.01.23 10:00:02 | 000,000,997 | ---- | C] () -- G:\Users\Desktop\Desktop\HTML Editor.lnk [2016.01.22 13:03:24 | 000,471,352 | ---- | C] () -- G:\WINDOWS\SysNative\amdmiracast.dll [2016.01.22 13:02:52 | 000,203,800 | ---- | C] () -- G:\WINDOWS\SysNative\hsa-thunk64.dll [2016.01.22 13:02:50 | 000,183,312 | ---- | C] () -- G:\WINDOWS\SysWow64\hsa-thunk.dll [2016.01.22 13:02:46 | 000,232,472 | ---- | C] () -- G:\WINDOWS\SysNative\dgtrayicon.exe [2016.01.22 13:02:42 | 000,243,736 | ---- | C] () -- G:\WINDOWS\SysNative\clinfo.exe [2016.01.22 13:00:34 | 000,171,024 | ---- | C] () -- G:\WINDOWS\SysNative\atieah64.exe [2016.01.22 13:00:34 | 000,154,136 | ---- | C] () -- G:\WINDOWS\SysWow64\atieah32.exe [2016.01.22 12:57:18 | 000,143,384 | ---- | C] () -- G:\WINDOWS\SysNative\amdhdl64.dll [2016.01.22 12:57:18 | 000,132,120 | ---- | C] () -- G:\WINDOWS\SysWow64\amdhdl32.dll [2016.01.22 12:57:16 | 000,213,520 | ---- | C] () -- G:\WINDOWS\SysNative\amdgfxinfo64.dll [2016.01.22 12:57:14 | 000,198,672 | ---- | C] () -- G:\WINDOWS\SysWow64\amdgfxinfo32.dll [2016.01.22 11:31:36 | 000,323,588 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_el.dat [2016.01.22 11:31:36 | 000,322,740 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_vi.dat [2016.01.22 11:31:36 | 000,321,072 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_vi_nd.dat [2016.01.22 11:31:36 | 000,320,992 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_el_nd.dat [2016.01.22 11:31:36 | 000,261,920 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_stn_nd.dat [2016.01.22 11:31:36 | 000,258,464 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_cz_nd.dat [2016.01.22 11:31:36 | 000,252,628 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_FJ.dat [2016.01.22 11:31:36 | 000,249,680 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_FJ_nd.dat [2016.01.22 11:31:34 | 003,471,376 | ---- | C] () -- G:\WINDOWS\SysWow64\atiumdva.cap [2016.01.22 11:31:34 | 000,234,292 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_cik.dat [2016.01.22 11:31:34 | 000,232,624 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_cik_nd.dat [2016.01.22 11:31:34 | 000,177,344 | ---- | C] () -- G:\WINDOWS\SysNative\ativce03.dat [2016.01.22 11:31:34 | 000,100,832 | ---- | C] () -- G:\WINDOWS\SysNative\ativce02.dat [2016.01.22 11:31:30 | 003,437,632 | ---- | C] () -- G:\WINDOWS\SysNative\atiumd6a.cap [2016.01.22 11:31:10 | 000,683,968 | ---- | C] () -- G:\WINDOWS\SysWow64\atiapfxx.blb [2016.01.22 11:31:10 | 000,683,968 | ---- | C] () -- G:\WINDOWS\SysNative\atiapfxx.blb [2016.01.22 11:30:42 | 000,843,639 | ---- | C] () -- G:\WINDOWS\SysNative\amdicdxx.dat [2016.01.22 11:30:42 | 000,175,648 | ---- | C] () -- G:\WINDOWS\SysNative\amde31a.dat [2016.01.22 11:30:42 | 000,166,560 | ---- | C] () -- G:\WINDOWS\SysNative\amde34a.dat [2016.01.22 11:30:42 | 000,007,112 | ---- | C] () -- G:\WINDOWS\SysNative\AMDKernelEvents.man [2016.01.15 14:07:04 | 000,012,564 | ---- | C] () -- G:\Users\Desktop\Desktop\HAushalt.ods [2016.01.06 10:25:12 | 000,012,149 | ---- | C] () -- G:\Users\Desktop\Desktop\Gewürze.odt [2016.01.04 10:32:23 | 000,000,000 | ---- | C] () -- G:\WINDOWS\HPMProp.INI [2015.12.22 11:05:56 | 000,009,998 | ---- | C] () -- G:\Users\Desktop\AppData\Local\recently-used.xbel [2015.12.22 11:01:53 | 000,185,795 | ---- | C] () -- G:\Users\Desktop\Unterschrift.jpg [2015.12.18 16:53:16 | 000,000,122 | ---- | C] () -- G:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc [2015.12.17 19:51:09 | 000,001,425 | ---- | C] () -- G:\Users\Desktop\Neues Dokument 3.2015_12_17_19_51_09.1.svg [2015.10.14 12:51:16 | 001,766,952 | ---- | C] () -- G:\WINDOWS\SysWow64\CoreUIComponents.dll [2015.08.23 10:23:23 | 001,823,232 | ---- | C] () -- G:\WINDOWS\SysWow64\InputService.dll [2015.08.23 10:23:23 | 000,200,704 | ---- | C] () -- G:\WINDOWS\SysWow64\TextInputFramework.dll [2015.08.23 09:31:16 | 000,000,000 | ---- | C] () -- G:\WINDOWS\ativpsrm.bin [2015.08.03 18:41:16 | 000,204,952 | ---- | C] () -- G:\WINDOWS\SysWow64\ativvsvl.dat [2015.08.03 18:41:16 | 000,157,144 | ---- | C] () -- G:\WINDOWS\SysWow64\ativvsva.dat [2015.07.10 13:20:52 | 000,067,584 | --S- | C] () -- G:\WINDOWS\bootstat.dat [2015.07.10 12:04:39 | 000,000,741 | ---- | C] () -- G:\WINDOWS\SysWow64\NOISE.DAT [2015.07.10 12:04:38 | 000,215,943 | ---- | C] () -- G:\WINDOWS\SysWow64\dssec.dat [2015.07.10 12:00:35 | 000,161,632 | ---- | C] () -- G:\WINDOWS\SysWow64\weretw.dll [2015.07.10 12:00:33 | 000,673,088 | ---- | C] () -- G:\WINDOWS\SysWow64\mlang.dat [2015.07.10 12:00:32 | 000,047,104 | ---- | C] () -- G:\WINDOWS\SysWow64\BWContextHandler.dll [2015.07.10 12:00:31 | 000,156,672 | ---- | C] () -- G:\WINDOWS\SysWow64\MTF.dll [2015.07.10 12:00:30 | 000,028,672 | ---- | C] () -- G:\WINDOWS\SysWow64\dtdump.exe [2015.07.10 12:00:29 | 000,081,408 | ---- | C] () -- G:\WINDOWS\SysWow64\InputLocaleManager.dll [2015.07.10 12:00:29 | 000,057,344 | ---- | C] () -- G:\WINDOWS\SysWow64\EditBufferTestHook.dll [2015.07.10 12:00:29 | 000,053,760 | ---- | C] () -- G:\WINDOWS\SysWow64\WpKbdLayout.dll [2015.07.10 12:00:29 | 000,022,016 | ---- | C] () -- G:\WINDOWS\SysWow64\WordBreakers.dll [2015.07.10 12:00:28 | 000,270,848 | ---- | C] () -- G:\WINDOWS\SysWow64\HrtfApo.dll [2015.07.10 12:00:27 | 000,364,544 | ---- | C] () -- G:\WINDOWS\SysWow64\msjetoledb40.dll [2015.07.10 12:00:26 | 000,022,528 | ---- | C] () -- G:\WINDOWS\SysWow64\efsext.dll [2015.07.10 12:00:25 | 000,002,269 | ---- | C] () -- G:\WINDOWS\SysWow64\WimBootCompress.ini [2015.07.10 12:00:24 | 000,167,640 | ---- | C] () -- G:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat [2015.07.10 11:59:51 | 000,043,131 | ---- | C] () -- G:\WINDOWS\mib.bin [2015.02.06 19:25:33 | 001,874,522 | ---- | C] () -- G:\WINDOWS\SysWow64\PerfStringBackup.INI [2015.02.06 19:15:59 | 000,072,280 | ---- | C] () -- G:\WINDOWS\SysWow64\XSrvSetup.exe [2015.02.01 07:05:40 | 000,000,306 | RHS- | C] () -- G:\ProgramData\ntuser.pol ========== ZeroAccess Check ========== [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = G:\Windows\SysNative\windows.storage.dll -- [2015.09.17 07:49:11 | 006,487,248 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\windows.storage.dll -- [2015.09.17 07:28:40 | 005,120,056 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = G:\Windows\SysNative\wbem\fastprox.dll -- [2015.07.10 11:59:53 | 000,995,328 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2015.07.10 12:00:23 | 000,754,688 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = G:\Windows\SysNative\wbem\wbemess.dll -- [2015.07.10 11:59:55 | 000,516,096 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Alternate Data Streams ========== @Alternate Data Stream - 16 bytes -> G:\WINDOWS\Temp:$DATA < End of report > |
|
04.02.2016, 17:23
| #2 |
| | Internetverbindung plötzlich sehr langsam OTL Logfile:
__________________Code:
ATTFilter OTL logfile created on: 04.02.2016 07:39:56 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = G:\Users\Desktop\Desktop 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.11.10240.16384) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 12,00 Gb Total Physical Memory | 10,54 Gb Available Physical Memory | 87,89% Memory free 24,00 Gb Paging File | 22,57 Gb Available in Paging File | 94,07% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = G: | %SystemRoot% = G:\WINDOWS | %ProgramFiles% = G:\Program Files (x86) Drive F: | 853,39 Gb Total Space | 517,64 Gb Free Space | 60,66% Space Free | Partition Type: NTFS Drive G: | 78,12 Gb Total Space | 22,60 Gb Free Space | 28,93% Space Free | Partition Type: NTFS Computer Name: DESKTOP-PC | User Name: Desktop | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - File not found -- PRC - [2016.02.04 07:32:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- G:\Users\Desktop\Desktop\OTL.exe PRC - [2016.01.08 10:47:10 | 001,433,216 | ---- | M] (Microsoft Corporation) -- G:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe PRC - [2016.01.08 10:44:00 | 001,773,696 | ---- | M] (Microsoft Corporation) -- G:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe PRC - [2015.12.09 17:36:01 | 000,551,112 | ---- | M] (Microsoft Corporation) -- G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\OneDrive.exe PRC - [2015.11.09 12:51:54 | 000,923,184 | ---- | M] (Oracle Corporation) -- G:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe PRC - [2015.04.24 11:21:12 | 000,740,568 | ---- | M] (pdfforge GmbH) -- G:\Program Files (x86)\PDF Architect 3\creator-ws.exe PRC - [2013.12.06 15:53:36 | 000,389,120 | ---- | M] (AMD) -- G:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe PRC - [2010.09.07 10:46:56 | 000,072,280 | ---- | M] () -- G:\Windows\SysWOW64\XSrvSetup.exe PRC - [2004.12.14 01:12:02 | 000,483,328 | ---- | M] (Adobe Systems Inc.) -- F:\Programme\Distillr\acrotray.exe ========== Modules (No Company Name) ========== ========== Services (SafeList) ========== SRV:64bit: - [2016.01.22 13:00:38 | 000,254,992 | ---- | M] (AMD) [Auto | Running] -- G:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2016.01.05 02:57:28 | 000,712,704 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\usermgr.dll -- (UserManager) SRV:64bit: - [2015.11.25 05:27:26 | 002,180,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc) SRV:64bit: - [2015.11.05 05:03:49 | 001,015,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\RDXService.dll -- (RetailDemo) SRV:64bit: - [2015.11.05 04:59:13 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository) SRV:64bit: - [2015.11.05 04:55:55 | 000,145,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\dssvc.dll -- (DsSvc) SRV:64bit: - [2015.09.25 04:00:50 | 001,423,872 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\UserDataService.dll -- (UserDataSvc) SRV:64bit: - [2015.09.25 03:59:48 | 000,288,256 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc) SRV:64bit: - [2015.09.25 03:59:38 | 001,205,248 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\Unistore.dll -- (UnistoreSvc) SRV:64bit: - [2015.09.17 07:48:41 | 000,809,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar) SRV:64bit: - [2015.09.17 07:06:04 | 000,149,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\tetheringservice.dll -- (icssvc) SRV:64bit: - [2015.09.17 07:03:28 | 000,267,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc) SRV:64bit: - [2015.09.17 06:58:01 | 000,503,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc) SRV:64bit: - [2015.09.17 06:52:31 | 000,591,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:64bit: - [2015.09.17 06:48:26 | 002,093,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:64bit: - [2015.09.17 06:47:56 | 000,513,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\ngcsvc.dll -- (NgcSvc) SRV:64bit: - [2015.09.17 06:44:10 | 000,526,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:64bit: - [2015.09.17 06:44:08 | 001,844,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc) SRV:64bit: - [2015.09.17 06:43:32 | 000,378,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:64bit: - [2015.08.23 10:23:36 | 000,280,064 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:64bit: - [2015.08.23 10:23:29 | 001,169,408 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- G:\Windows\SysNative\dosvc.dll -- (DoSvc) SRV:64bit: - [2015.08.23 10:23:29 | 001,031,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\SensorDataService.exe -- (SensorDataService) SRV:64bit: - [2015.08.23 10:23:29 | 000,343,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\usocore.dll -- (UsoSvc) SRV:64bit: - [2015.08.23 10:23:23 | 000,229,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\SensorService.dll -- (SensorService) SRV:64bit: - [2015.08.23 10:23:22 | 001,643,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\diagtrack.dll -- (DiagTrack) SRV:64bit: - [2015.08.23 10:23:22 | 000,658,568 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\ClipSVC.dll -- (ClipSVC) SRV:64bit: - [2015.08.18 07:58:25 | 000,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc) SRV:64bit: - [2015.08.18 07:54:03 | 000,322,048 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:64bit: - [2015.07.10 12:01:10 | 000,621,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\AppReadiness.dll -- (AppReadiness) SRV:64bit: - [2015.07.10 12:01:10 | 000,504,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\WalletService.dll -- (WalletService) SRV:64bit: - [2015.07.10 12:01:10 | 000,074,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:64bit: - [2015.07.10 12:00:41 | 000,167,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:64bit: - [2015.07.10 12:00:36 | 000,115,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService) SRV:64bit: - [2015.07.10 12:00:20 | 000,749,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\lsm.dll -- (LSM) SRV:64bit: - [2015.07.10 12:00:16 | 000,075,264 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:64bit: - [2015.07.10 12:00:09 | 000,337,408 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\ncbservice.dll -- (NcbService) SRV:64bit: - [2015.07.10 12:00:09 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\wpnservice.dll -- (WpnService) SRV:64bit: - [2015.07.10 12:00:09 | 000,033,280 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker) SRV:64bit: - [2015.07.10 12:00:09 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\lfsvc.dll -- (lfsvc) SRV:64bit: - [2015.07.10 12:00:07 | 001,149,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\XblGameSave.dll -- (XblGameSave) SRV:64bit: - [2015.07.10 12:00:07 | 001,019,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc) SRV:64bit: - [2015.07.10 12:00:07 | 000,268,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc) SRV:64bit: - [2015.07.10 12:00:07 | 000,062,464 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- G:\Windows\SysNative\moshost.dll -- (MapsBroker) SRV:64bit: - [2015.07.10 12:00:07 | 000,023,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\AJRouter.dll -- (AJRouter) SRV:64bit: - [2015.07.10 12:00:07 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager) SRV:64bit: - [2015.07.10 12:00:06 | 000,134,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\cdpsvc.dll -- (CDPSvc) SRV:64bit: - [2015.07.10 12:00:06 | 000,087,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode) SRV:64bit: - [2015.07.10 12:00:03 | 003,467,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\WSService.dll -- (WSService) SRV:64bit: - [2015.07.10 12:00:02 | 000,918,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager) SRV:64bit: - [2015.07.10 12:00:02 | 000,836,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:64bit: - [2015.07.10 12:00:02 | 000,055,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\efssvc.dll -- (EFS) SRV:64bit: - [2015.07.10 12:00:01 | 000,096,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:64bit: - [2015.07.10 12:00:01 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC) SRV:64bit: - [2015.07.10 12:00:00 | 000,181,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum) SRV:64bit: - [2015.07.10 11:59:59 | 000,296,960 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- G:\Windows\SysNative\APHostService.dll -- (OneSyncSvc) SRV:64bit: - [2015.07.10 11:59:59 | 000,196,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\dcpsvc.dll -- (DcpSvc) SRV:64bit: - [2015.07.10 11:59:59 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service) SRV:64bit: - [2015.07.10 11:59:58 | 000,039,856 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\svchost.exe -- (UserDataSvc_Session1) SRV:64bit: - [2015.07.10 11:59:58 | 000,039,856 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\svchost.exe -- (UnistoreSvc_Session1) SRV:64bit: - [2015.07.10 11:59:58 | 000,039,856 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_Session1) SRV:64bit: - [2015.07.10 11:59:58 | 000,039,856 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- G:\Windows\SysNative\svchost.exe -- (OneSyncSvc_Session1) SRV:64bit: - [2015.07.10 11:59:57 | 000,405,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:64bit: - [2015.07.10 11:59:57 | 000,237,568 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:64bit: - [2015.07.10 11:59:56 | 000,019,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\smphost.dll -- (smphost) SRV:64bit: - [2015.07.10 11:59:55 | 000,118,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:64bit: - [2015.07.10 11:59:55 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:64bit: - [2015.07.10 11:59:54 | 000,275,456 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc) SRV:64bit: - [2015.07.10 11:59:53 | 000,063,488 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- G:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice) SRV:64bit: - [2015.07.10 11:59:51 | 000,583,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter) SRV:64bit: - [2015.07.10 11:59:50 | 000,550,400 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:64bit: - [2015.07.10 11:59:50 | 000,167,936 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicvss) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicvmsession) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicrdv) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV:64bit: - [2015.07.10 11:59:48 | 000,506,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\icsvc.dll -- (vmicguestinterface) SRV:64bit: - [2015.07.10 11:59:37 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:64bit: - [2015.07.10 11:59:36 | 000,326,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv) SRV - [2016.01.20 19:37:23 | 000,269,504 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- G:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2016.01.17 10:16:31 | 000,147,624 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- G:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2016.01.08 10:47:10 | 001,433,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc) SRV - [2016.01.08 10:44:00 | 001,773,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc) SRV - [2015.12.14 21:01:12 | 000,836,176 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- G:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2015.11.19 20:02:30 | 000,056,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe -- (VSStandardCollectorService140) SRV - [2015.11.05 04:27:12 | 002,049,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository) SRV - [2015.09.25 03:34:00 | 000,928,256 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- G:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc) SRV - [2015.09.17 06:45:35 | 000,193,024 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc) SRV - [2015.09.17 06:16:16 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- G:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar) SRV - [2015.07.10 12:00:30 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- G:\Windows\SysWOW64\lfsvc.dll -- (lfsvc) SRV - [2015.07.10 12:00:24 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\Windows\SysWOW64\smphost.dll -- (smphost) SRV - [2015.07.10 11:59:37 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- G:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2015.07.09 12:14:04 | 000,327,296 | R--- | M] (Skype Technologies) [Auto | Stopped] -- G:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2015.04.24 11:21:22 | 002,244,312 | ---- | M] (pdfforge GmbH) [On_Demand | Stopped] -- G:\Program Files (x86)\PDF Architect 3\ws.exe -- (PDF Architect 3) SRV - [2015.04.24 11:21:12 | 000,740,568 | ---- | M] (pdfforge GmbH) [Auto | Running] -- G:\Program Files (x86)\PDF Architect 3\creator-ws.exe -- (PDF Architect 3 Creator) SRV - [2015.04.24 11:21:06 | 000,901,336 | ---- | M] (pdfforge GmbH) [On_Demand | Stopped] -- G:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe -- (PDF Architect 3 CrashHandler) SRV - [2010.09.07 10:46:56 | 000,072,280 | ---- | M] () [Auto | Running] -- G:\Windows\SysWOW64\XSrvSetup.exe -- (JMB36X) ========== Driver Services (SafeList) ========== DRV:64bit: - [2016.01.22 13:01:02 | 000,679,952 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:64bit: - [2016.01.22 13:00:56 | 023,969,808 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:64bit: - [2015.12.09 12:44:42 | 000,051,488 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\SaiBus.sys -- (SaiNtBus) DRV:64bit: - [2015.12.09 12:44:38 | 000,180,928 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\_hid_0738_1713.sys -- (_hid_0738_1713) DRV:64bit: - [2015.12.09 12:44:38 | 000,046,528 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\_usb_0738_1713.sys -- (_usb_0738_1713) DRV:64bit: - [2015.12.01 07:03:10 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- G:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv) DRV:64bit: - [2015.11.25 06:40:09 | 000,516,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3) DRV:64bit: - [2015.10.01 14:24:24 | 000,023,968 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\SaiMini.sys -- (SaiMini) DRV:64bit: - [2015.10.01 14:24:22 | 000,180,928 | ---- | M] (Saitek) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\_hid_0738_1708.sys -- (_hid_0738_1708) DRV:64bit: - [2015.10.01 14:24:22 | 000,046,528 | ---- | M] (Saitek) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\_usb_0738_1708.sys -- (_usb_0738_1708) DRV:64bit: - [2015.09.18 01:38:22 | 000,102,912 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\AtihdWT6.sys -- (AtiHDAudioService) DRV:64bit: - [2015.09.17 07:50:17 | 000,099,664 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\pdc.sys -- (pdc) DRV:64bit: - [2015.09.17 07:48:41 | 000,278,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:64bit: - [2015.09.17 06:50:08 | 000,036,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter) DRV:64bit: - [2015.09.03 21:56:26 | 000,206,080 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm) DRV:64bit: - [2015.09.03 21:56:04 | 000,108,800 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus) DRV:64bit: - [2015.08.23 10:23:36 | 000,052,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr) DRV:64bit: - [2015.08.23 10:23:29 | 000,934,752 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- G:\WINDOWS\SysNative\drivers\refsv1.sys -- (ReFSv1) DRV:64bit: - [2015.08.23 10:23:29 | 000,685,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi) DRV:64bit: - [2015.08.23 10:23:29 | 000,200,528 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- G:\WINDOWS\SysNative\drivers\wof.sys -- (Wof) DRV:64bit: - [2015.08.23 10:23:29 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- G:\Windows\SysNative\drivers\dam.sys -- (dam) DRV:64bit: - [2015.08.23 10:23:22 | 000,080,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\stornvme.sys -- (stornvme) DRV:64bit: - [2015.08.23 10:23:22 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\usbser.sys -- (usbser) DRV:64bit: - [2015.08.23 10:23:22 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum) DRV:64bit: - [2015.08.23 10:23:22 | 000,046,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32) DRV:64bit: - [2015.08.23 10:23:22 | 000,046,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi) DRV:64bit: - [2015.08.18 08:55:45 | 000,373,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI) DRV:64bit: - [2015.07.28 18:45:36 | 000,040,720 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\amdkmafd.sys -- (amdkmafd) DRV:64bit: - [2015.07.10 17:45:52 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\terminpt.sys -- (terminpt) DRV:64bit: - [2015.07.10 17:45:29 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2015.07.10 12:01:20 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr) DRV:64bit: - [2015.07.10 12:00:14 | 000,380,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\clfs.sys -- (CLFS) DRV:64bit: - [2015.07.10 12:00:14 | 000,215,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- G:\Windows\SysNative\drivers\ahcache.sys -- (ahcache) DRV:64bit: - [2015.07.10 12:00:10 | 000,106,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT) DRV:64bit: - [2015.07.10 12:00:10 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101) DRV:64bit: - [2015.07.10 12:00:10 | 000,031,072 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- G:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2015.07.10 12:00:09 | 000,200,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt) DRV:64bit: - [2015.07.10 12:00:09 | 000,153,440 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS) DRV:64bit: - [2015.07.10 12:00:09 | 000,061,952 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- G:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt) DRV:64bit: - [2015.07.10 12:00:09 | 000,041,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\condrv.sys -- (condrv) DRV:64bit: - [2015.07.10 12:00:09 | 000,026,624 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ioqos.sys -- (IoQos) DRV:64bit: - [2015.07.10 12:00:04 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- G:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS) DRV:64bit: - [2015.07.10 12:00:00 | 000,245,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000) DRV:64bit: - [2015.07.10 12:00:00 | 000,159,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101) DRV:64bit: - [2015.07.10 12:00:00 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx) DRV:64bit: - [2015.07.10 12:00:00 | 000,074,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\SerCx.sys -- (SerCx) DRV:64bit: - [2015.07.10 12:00:00 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000) DRV:64bit: - [2015.07.10 12:00:00 | 000,039,264 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- G:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist) DRV:64bit: - [2015.07.10 11:59:59 | 000,155,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2) DRV:64bit: - [2015.07.10 11:59:59 | 000,088,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass) DRV:64bit: - [2015.07.10 11:59:59 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf) DRV:64bit: - [2015.07.10 11:59:53 | 000,129,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform) DRV:64bit: - [2015.07.10 11:59:53 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- G:\Windows\SysNative\drivers\Ndu.sys -- (Ndu) DRV:64bit: - [2015.07.10 11:59:52 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus) DRV:64bit: - [2015.07.10 11:59:50 | 000,119,648 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- G:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv) DRV:64bit: - [2015.07.10 11:59:50 | 000,082,432 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- G:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp) DRV:64bit: - [2015.07.10 11:59:48 | 000,291,680 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- G:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter) DRV:64bit: - [2015.07.10 11:59:48 | 000,209,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000) DRV:64bit: - [2015.07.10 11:59:48 | 000,127,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\acpiex.sys -- (acpiex) DRV:64bit: - [2015.07.10 11:59:48 | 000,083,968 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- G:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt) DRV:64bit: - [2015.07.10 11:59:48 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2015.07.10 11:59:48 | 000,044,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot) DRV:64bit: - [2015.07.10 11:59:48 | 000,044,032 | ---- | M] () [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx) DRV:64bit: - [2015.07.10 11:59:48 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\vhf.sys -- (vhf) DRV:64bit: - [2015.07.10 11:59:40 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2015.07.10 11:59:40 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea) DRV:64bit: - [2015.07.10 11:59:40 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys) DRV:64bit: - [2015.07.10 11:59:40 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- G:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig) DRV:64bit: - [2015.07.10 11:59:40 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy) DRV:64bit: - [2015.07.10 11:59:39 | 000,705,376 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus) DRV:64bit: - [2015.07.10 11:59:39 | 000,587,264 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64) DRV:64bit: - [2015.07.10 11:59:39 | 000,474,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\spaceport.sys -- (spaceport) DRV:64bit: - [2015.07.10 11:59:39 | 000,424,800 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ibbus.sys -- (ibbus) DRV:64bit: - [2015.07.10 11:59:39 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID) DRV:64bit: - [2015.07.10 11:59:39 | 000,133,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\storahci.sys -- (storahci) DRV:64bit: - [2015.07.10 11:59:39 | 000,127,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys) DRV:64bit: - [2015.07.10 11:59:39 | 000,094,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea) DRV:64bit: - [2015.07.10 11:59:39 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor) DRV:64bit: - [2015.07.10 11:59:39 | 000,076,128 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr) DRV:64bit: - [2015.07.10 11:59:39 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\mvumis.sys -- (mvumis) DRV:64bit: - [2015.07.10 11:59:39 | 000,059,232 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs) DRV:64bit: - [2015.07.10 11:59:39 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i) DRV:64bit: - [2015.07.10 11:59:39 | 000,058,208 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i) DRV:64bit: - [2015.07.10 11:59:39 | 000,055,296 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- G:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay) DRV:64bit: - [2015.07.10 11:59:39 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- G:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender) DRV:64bit: - [2015.07.10 11:59:39 | 000,040,288 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\storufs.sys -- (storufs) DRV:64bit: - [2015.07.10 11:59:39 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2015.07.10 11:59:39 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\uefi.sys -- (UEFI) DRV:64bit: - [2015.07.10 11:59:39 | 000,026,976 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\winmad.sys -- (WinMad) DRV:64bit: - [2015.07.10 11:59:39 | 000,017,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys -- (swenum) DRV:64bit: - [2015.07.10 11:59:38 | 003,436,896 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2015.07.10 11:59:38 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX) DRV:64bit: - [2015.07.10 11:59:38 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV) DRV:64bit: - [2015.07.10 11:59:38 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2015.07.10 11:59:38 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2015.07.10 11:59:38 | 000,222,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip) DRV:64bit: - [2015.07.10 11:59:38 | 000,207,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\tpm.sys -- (TPM) DRV:64bit: - [2015.07.10 11:59:38 | 000,116,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\capimg.sys -- (CapImg) DRV:64bit: - [2015.07.10 11:59:38 | 000,107,360 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\3ware.sys -- (3ware) DRV:64bit: - [2015.07.10 11:59:38 | 000,104,800 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i) DRV:64bit: - [2015.07.10 11:59:38 | 000,099,168 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i) DRV:64bit: - [2015.07.10 11:59:38 | 000,083,296 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2015.07.10 11:59:38 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS) DRV:64bit: - [2015.07.10 11:59:38 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2015.07.10 11:59:38 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt) DRV:64bit: - [2015.07.10 11:59:38 | 000,026,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2015.07.10 11:59:38 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid) DRV:64bit: - [2015.07.10 11:59:38 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\kdnic.sys -- (kdnic) DRV:64bit: - [2015.07.10 11:59:38 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn) DRV:64bit: - [2015.07.10 11:59:38 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2) DRV:64bit: - [2015.07.10 11:59:38 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\acpitime.sys -- (acpitime) DRV:64bit: - [2015.07.10 11:59:38 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr) DRV:64bit: - [2015.07.10 11:59:36 | 000,122,608 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C) DRV:64bit: - [2015.07.10 11:59:36 | 000,116,576 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv) DRV:64bit: - [2015.07.10 11:59:36 | 000,094,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\netvsc.sys -- (netvsc) DRV:64bit: - [2015.07.10 11:59:36 | 000,092,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\sdstor.sys -- (sdstor) DRV:64bit: - [2015.07.10 11:59:36 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\vpci.sys -- (vpci) DRV:64bit: - [2015.07.10 11:59:36 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc) DRV:64bit: - [2015.07.10 11:59:36 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c) DRV:64bit: - [2015.07.10 11:59:36 | 000,043,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- G:\Windows\SysNative\drivers\intelpep.sys -- (intelpep) DRV:64bit: - [2015.07.10 11:59:36 | 000,042,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg) DRV:64bit: - [2015.07.10 11:59:36 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys -- (CompositeBus) DRV:64bit: - [2015.07.10 11:59:36 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO) DRV:64bit: - [2015.07.10 11:59:36 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2015.07.10 11:59:36 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\fcvsc.sys -- (fcvsc) DRV:64bit: - [2015.07.10 11:59:36 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid) DRV:64bit: - [2015.07.10 11:59:36 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo) DRV:64bit: - [2015.07.10 11:59:36 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd) DRV:64bit: - [2015.07.10 11:59:36 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- G:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter) DRV:64bit: - [2010.09.07 03:37:28 | 000,121,432 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- G:\Windows\SysNative\drivers\jraid.sys -- (JRAID) DRV:64bit: - [2010.04.07 12:14:50 | 000,446,304 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- G:\Windows\SysNative\drivers\netr6164.sys -- (rt61x64) DRV - [2015.07.10 11:59:39 | 000,017,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys -- (swenum) DRV - [2015.07.10 11:59:36 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- G:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys -- (CompositeBus) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=de&pid=NIS&pvid=21.7.0.11 IE:64bit: - HKLM\..\SearchScopes,DefaultScope = IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = G:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=de&pid=NIS&pvid=21.7.0.11 IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=de&pid=NIS&pvid=21.7.0.11 IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=de-de IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EB C2 82 FA 80 3D D0 01 [binary data] IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}: "URL" = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=ima&utm_campaign=install_ie&utm_content=ds&from=ima&uid=TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS&ts=1422729603&type=default&q={searchTerms} IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}: "URL" = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NIS&chn=retail&geo=DE&ver=21&locale=de_DE&gct=sb&qsrc=2869 IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}: "URL" = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=ima&utm_campaign=install_ie&utm_content=ds&from=ima&uid=TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS&ts=1422729603&type=default&q={searchTerms} IE - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "mystartsearch" FF - prefs.js..browser.search.isUS: false FF - prefs.js..browser.search.searchengine.alias: "mystartsearch" FF - prefs.js..browser.search.searchengine.desc: "this is my first firefox searchEngine" FF - prefs.js..browser.search.searchengine.iconURL: "hxxp://www.mystartsearch.com/favicon.ico" FF - prefs.js..browser.search.searchengine.name: "mystartsearch" FF - prefs.js..browser.search.searchengine.ptid: "ima" FF - prefs.js..browser.search.searchengine.uid: "TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS" FF - prefs.js..browser.search.searchengine.url: "hxxp://www.mystartsearch.com/web/?type=ds&ts=1422729545&from=ima&uid=TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS&q={searchTerms}" FF - prefs.js..browser.search.selectedEngine: "mystartsearch" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "hxxp://www.mystartsearch.com/?type=hppp&ts=1422729585&from=ima&uid=TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS" FF - prefs.js..extensions.enabledAddons: 8hffxtbr%40Allin1Convert_8h.com:6.85.6.1415 FF - prefs.js..extensions.enabledAddons: %7B91f3cb70-65fb-4c07-71d7-0cb547f8816f%7D:1.1 FF - prefs.js..extensions.enabledAddons: veggy%40veggyAddon.com:2.107529 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:35.0.1 FF - prefs.js..browser.startup.homepage: "hxxp://www.mystartsearch.com/?type=hp&ts=1422729545&from=ima&uid=TOSHIBAXMK5076GSX_12RKSDBZSXX12RKSDBZS" FF - prefs.js..browser.startup.homepage: "true" FF - prefs.js..browser.startup.homepage: "hxxp://home.tb.ask.com/index.jhtml?ptb=47F2DEF6-F5FA-4C68-81D6-58A3921DD928&n=781aa8f3&p2=^AYY^xdm070^LADEDE^de&si=flvrunner" FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: G:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.65.2: G:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2: G:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: G:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: G:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll () FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: F:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: F:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp: F:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf: F:\Programme\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.66.2: F:\Programme\Java\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2: F:\Programme\Java\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: G:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: G:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: G:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\PDF Architect 3: G:\Program Files (x86)\PDF Architect 3\np-previewer.dll (pdfforge GmbH) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fftoolbar2014@etech.com: G:\Users\Desktop\AppData\Roaming\Mozilla\Firefox\Profiles\8dgxr61q.default\extensions\fftoolbar2014@etech.com FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\faststartff@gmail.com: G:\Users\Desktop\AppData\Roaming\Mozilla\Firefox\Profiles\8dgxr61q.default\extensions\faststartff@gmail.com FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\pdf_architect_3_conv@pdfarchitect.org: G:\Program Files (x86)\PDF Architect 3\resources\pdfarchitect3firefoxextension\ [2015.08.20 20:35:36 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Components: G:\Program Files (x86)\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Plugins: G:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 38.5.0\extensions\\Components: G:\Program Files (x86)\Mozilla Thunderbird\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 38.5.0\extensions\\Plugins: G:\Program Files (x86)\Mozilla Thunderbird\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 38.5.0\extensions\\Components: G:\Program Files (x86)\Mozilla Thunderbird\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 38.5.0\extensions\\Plugins: G:\Program Files (x86)\Mozilla Thunderbird\plugins [2015.01.31 19:26:08 | 000,000,000 | ---D | M] (No name found) -- G:\Users\Desktop\AppData\Roaming\mozilla\Extensions [2015.12.22 10:14:05 | 000,000,000 | ---D | M] (No name found) -- G:\Users\Desktop\AppData\Roaming\mozilla\Firefox\Profiles\8dgxr61q.default\extensions [2015.08.25 09:27:03 | 000,000,000 | ---D | M] ("Zoom It") -- G:\Users\Desktop\AppData\Roaming\mozilla\Firefox\Profiles\8dgxr61q.default\extensions\{91f3cb70-65fb-4c07-71d7-0cb547f8816f} [2015.02.05 18:21:24 | 000,000,000 | ---D | M] (Allin1Convert) -- G:\Users\Desktop\AppData\Roaming\mozilla\Firefox\Profiles\8dgxr61q.default\extensions\8hffxtbr@Allin1Convert_8h.com [2015.12.22 10:14:05 | 000,000,000 | ---D | M] ("Mozilla Firefox Hotfixer") -- G:\Users\Desktop\AppData\Roaming\mozilla\Firefox\Profiles\8dgxr61q.default\extensions\veggy@veggyAddon.com [2015.01.31 19:28:34 | 000,002,598 | ---- | M] () -- G:\Users\Desktop\AppData\Roaming\mozilla\firefox\profiles\8dgxr61q.default\searchplugins\ask-web-search.xml [2015.02.01 07:14:01 | 000,002,083 | ---- | M] () -- G:\Users\Desktop\AppData\Roaming\mozilla\firefox\profiles\8dgxr61q.default\searchplugins\mystartsearch.xml [2016.01.22 18:33:24 | 000,000,000 | ---D | M] (No name found) -- G:\Program Files (x86)\mozilla firefox\browser\extensions [2015.02.01 07:32:33 | 000,000,000 | ---D | M] (Default) -- G:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ========== Chrome ========== CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\8.0.0.9098_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\ CHR - Extension: No name found = G:\Users\Desktop\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\ O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - G:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - G:\Programme\Java\jre1.8.0_65\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - G:\Programme\Java\jre1.8.0_65\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Programme\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (PDF Architect 3 Helper) - {06E08260-0695-4EC1-A74B-1310D8899D93} - G:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll (pdfforge GmbH) O2 - BHO: (IETabPage Class) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - G:\Program Files (x86)\XTab\SupTab.dll File not found O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - G:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL File not found O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Programme\Java\bin\ssv.dll (Oracle Corporation) O2 - BHO: (AcroIEToolbarHelper Class) - {AE7CD045-E861-484f-8273-0445EE161910} - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Programme\Java\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (PDF Architect 3 Toolbar) - {2DFF3579-5AA7-45B9-9328-1D38EA230861} - G:\Program Files (x86)\PDF Architect 3\creator-ie-plugin.dll (pdfforge GmbH) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O4:64bit: - HKLM..\Run: [ProfilerU] G:\Programme\SmartTechnology\Software\ProfilerU.exe (Saitek) O4:64bit: - HKLM..\Run: [RtHDVCpl] G:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [SaiMfd] G:\Programme\SmartTechnology\Software\SaiMfd.exe (Saitek) O4:64bit: - HKLM..\Run: [StartCN] G:\Program Files\AMD\CNext\CNext\cnext.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Acrobat Assistant 7.0] F:\Programme\Distillr\Acrotray.exe (Adobe Systems Inc.) O4 - HKLM..\Run: [StartCCC] "G:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun File not found O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] G:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] G:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\Run: [HydraVisionDesktopManager] G:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe (AMD) O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\Run: [OneDrive] G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\Run: [Steam] G:\Program Files (x86)\Steam\steam.exe (Valve Corporation) O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\RunOnce: [Uninstall G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] G:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" File not found O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\RunOnce: [Uninstall G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] G:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" File not found O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\RunOnce: [Uninstall G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] G:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64" File not found O4 - HKU\S-1-5-21-2116903744-1973149705-759598665-1001..\RunOnce: [Uninstall G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] G:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "G:\Users\Desktop\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64" File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O8:64bit: - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Auswahl in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: In Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: In vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:64bit: - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: In Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: In vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - F:\Programme\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O9:64bit: - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0292df2a-529d-4de4-9189-8c51c2a42ba8}: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{21636d14-864c-473d-bb3c-620d4e78bd00}: DhcpNameServer = 192.168.178.1 O18:64bit: - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - G:\Windows\SysNative\tbauth.dll (Microsoft Corporation) O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - G:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - G:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - G:\WINDOWS\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (G:\Windows\system32\userinit.exe) - G:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - G:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - U ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - G:\Windows\System32\ie4uinit.exe -UserConfig ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - G:\Windows\System32\Rundll32.exe G:\Windows\System32\mscories.dll,Install ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX:64bit: {BD6F5371-DAC1-30F0-9DDE-CAC6791E28C3} - .NET Framework ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\inf\unregmp2.exe /ShowWMP ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework ActiveX: {30500C7C-2206-3DC6-9792-96E95A04669D} - .NET Framework ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - G:\Windows\SysWOW64\Rundll32.exe G:\Windows\SysWOW64\mscories.dll,Install ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "G:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2016.02.04 07:31:53 | 000,000,000 | -H-D | C] -- G:\OneDriveTemp [2016.02.04 07:29:01 | 000,602,112 | ---- | C] (OldTimer Tools) -- G:\Users\Desktop\Desktop\OTL.exe [2016.02.04 07:22:23 | 000,000,000 | ---D | C] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings [2016.02.04 07:22:18 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\AMD [2016.02.03 19:29:00 | 000,000,000 | -H-D | C] -- G:\$WINDOWS.~BT [2016.02.03 18:53:37 | 000,000,000 | ---D | C] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo [2016.02.03 18:52:23 | 000,000,000 | ---D | C] -- G:\ProgramData\Comodo [2016.01.23 10:02:49 | 000,000,000 | ---D | C] -- G:\Users\Desktop\AppData\Roaming\Nvu [2016.01.23 10:02:42 | 000,000,000 | ---D | C] -- G:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nvu [2016.01.23 10:02:40 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\Nvu [2016.01.23 10:00:01 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\phase5 [2016.01.23 10:00:01 | 000,000,000 | ---D | C] -- G:\Users\Desktop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Phase 5 HTML-Editor [2016.01.22 13:05:16 | 000,143,080 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiuxpag.dll [2016.01.22 13:05:14 | 008,168,856 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiumdva.dll [2016.01.22 13:05:04 | 009,158,496 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiumdag.dll [2016.01.22 13:04:52 | 009,105,552 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiumd6a.dll [2016.01.22 13:04:38 | 010,919,104 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiumd64.dll [2016.01.22 13:04:26 | 000,130,616 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiu9p64.dll [2016.01.22 13:04:26 | 000,112,392 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiu9pag.dll [2016.01.22 13:04:26 | 000,088,032 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atimpc64.dll [2016.01.22 13:04:24 | 000,081,200 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atimpc32.dll [2016.01.22 13:04:08 | 011,011,560 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atidxx32.dll [2016.01.22 13:03:54 | 001,249,664 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\aticfx32.dll [2016.01.22 13:03:46 | 010,339,016 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdxc64.dll [2016.01.22 13:03:38 | 008,426,376 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdxc32.dll [2016.01.22 13:03:26 | 000,088,032 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdpcom64.dll [2016.01.22 13:03:24 | 000,081,192 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdpcom32.dll [2016.01.22 13:03:22 | 000,151,968 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\amdhcp64.dll [2016.01.22 13:03:20 | 000,138,416 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\amdhcp32.dll [2016.01.22 13:03:14 | 000,128,568 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdave64.dll [2016.01.22 13:03:12 | 000,120,192 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdave32.dll [2016.01.22 13:02:54 | 000,136,216 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\mantle64.dll [2016.01.22 13:02:54 | 000,104,976 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\mantleaxl64.dll [2016.01.22 13:02:54 | 000,097,808 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\mantleaxl32.dll [2016.01.22 13:02:52 | 000,122,384 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\mantle32.dll [2016.01.22 13:02:46 | 000,012,816 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\detoured.dll [2016.01.22 13:02:44 | 000,874,008 | ---- | C] (AMD) -- G:\WINDOWS\SysNative\coinst_15.30.dll [2016.01.22 13:02:44 | 000,012,816 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\detoured.dll [2016.01.22 13:01:42 | 000,199,696 | ---- | C] (AMD) -- G:\WINDOWS\SysNative\atitmm64.dll [2016.01.22 13:01:42 | 000,097,816 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atisamu64.dll [2016.01.22 13:01:42 | 000,089,624 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atisamu32.dll [2016.01.22 13:01:38 | 025,848,848 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atioglxx.dll [2016.01.22 13:01:24 | 000,341,528 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\ATIODE.exe [2016.01.22 13:01:22 | 000,059,928 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\ATIODCLI.exe [2016.01.22 13:01:20 | 031,385,616 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atio6axx.dll [2016.01.22 13:01:02 | 000,040,472 | ---- | C] (AMD) -- G:\WINDOWS\SysNative\atimuixx.dll [2016.01.22 13:00:40 | 000,151,056 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atigktxx.dll [2016.01.22 13:00:40 | 000,078,872 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiglpxx.dll [2016.01.22 13:00:40 | 000,078,872 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiglpxx.dll [2016.01.22 13:00:38 | 000,254,992 | ---- | C] (AMD) -- G:\WINDOWS\SysNative\atiesrxx.exe [2016.01.22 13:00:38 | 000,166,416 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atig6txx.dll [2016.01.22 13:00:38 | 000,084,504 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atig6pxx.dll [2016.01.22 13:00:36 | 000,561,176 | ---- | C] (AMD) -- G:\WINDOWS\SysNative\atieclxx.exe [2016.01.22 13:00:34 | 000,451,088 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atidemgy.dll [2016.01.22 13:00:30 | 000,071,192 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticalrt64.dll [2016.01.22 13:00:30 | 000,060,944 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticalrt.dll [2016.01.22 13:00:28 | 015,720,464 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticaldd64.dll [2016.01.22 13:00:08 | 014,310,936 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticaldd.dll [2016.01.22 12:59:56 | 000,064,528 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticalcl64.dll [2016.01.22 12:59:56 | 000,057,872 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticalcl.dll [2016.01.22 12:59:54 | 000,950,288 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atiadlxy.dll [2016.01.22 12:59:54 | 000,950,288 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atiadlxx.dll [2016.01.22 12:59:54 | 000,375,824 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atiapfxx.exe [2016.01.22 12:59:50 | 001,281,552 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atiadlxx.dll [2016.01.22 12:59:48 | 000,052,248 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\drivers\ati2erec.dll [2016.01.22 12:59:34 | 049,992,720 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\amdocl64.dll [2016.01.22 12:59:02 | 027,605,008 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\amdocl12cl64.dll [2016.01.22 12:58:44 | 022,357,008 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\amdocl12cl.dll [2016.01.22 12:58:20 | 041,519,120 | ---- | C] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\amdocl.dll [2016.01.22 12:57:52 | 000,059,408 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdmmcl6.dll [2016.01.22 12:57:52 | 000,048,144 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdmmcl.dll [2016.01.22 12:57:46 | 006,651,928 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdmantle64.dll [2016.01.22 12:57:38 | 005,232,664 | ---- | C] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdmantle32.dll [2016.01.22 12:57:30 | 000,686,608 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\amdlvr64.dll [2016.01.22 12:57:28 | 000,571,408 | ---- | C] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\amdlvr32.dll [2016.01.22 12:57:12 | 000,305,392 | ---- | C] (Advanced Micro Devices) -- G:\WINDOWS\SysNative\drivers\amdacpksd.sys [2016.01.22 12:57:10 | 000,073,752 | ---- | C] (Khronos Group) -- G:\WINDOWS\SysNative\OpenCL.dll [2016.01.22 12:57:10 | 000,068,112 | ---- | C] (Khronos Group) -- G:\WINDOWS\SysWow64\OpenCL.dll [2016.01.17 10:16:27 | 000,000,000 | ---D | C] -- G:\Program Files (x86)\Mozilla Thunderbird [2016.01.12 21:43:07 | 021,873,152 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\edgehtml.dll [2016.01.12 21:43:05 | 018,802,176 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\edgehtml.dll [2016.01.12 21:43:03 | 002,459,096 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMVDECOD.DLL [2016.01.12 21:43:03 | 000,787,720 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMADMOD.DLL [2016.01.12 21:43:03 | 000,695,752 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMADMOD.DLL [2016.01.12 21:43:03 | 000,377,592 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MP4SDECD.DLL [2016.01.12 21:43:03 | 000,368,776 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MP4SDECD.DLL [2016.01.12 21:43:03 | 000,345,080 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMVSDECD.DLL [2016.01.12 21:43:03 | 000,305,776 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMVSDECD.DLL [2016.01.12 21:43:03 | 000,205,072 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\COLORCNV.DLL [2016.01.12 21:43:03 | 000,188,032 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\COLORCNV.DLL [2016.01.12 21:43:03 | 000,083,704 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfvdsp.dll [2016.01.12 21:43:02 | 002,641,928 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMVDECOD.DLL [2016.01.12 21:43:02 | 002,162,064 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMVENCOD.DLL [2016.01.12 21:43:02 | 001,991,120 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMVENCOD.DLL [2016.01.12 21:43:02 | 001,672,192 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\quartz.dll [2016.01.12 21:43:02 | 001,541,632 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\quartz.dll [2016.01.12 21:43:02 | 001,270,104 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfnetsrc.dll [2016.01.12 21:43:02 | 001,255,936 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMSPDMOE.DLL [2016.01.12 21:43:02 | 001,150,816 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\aeinv.dll [2016.01.12 21:43:02 | 001,070,080 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMSPDMOE.DLL [2016.01.12 21:43:02 | 001,063,504 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\msmpeg2adec.dll [2016.01.12 21:43:02 | 000,882,208 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\msmpeg2adec.dll [2016.01.12 21:43:02 | 000,862,056 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfnetcore.dll [2016.01.12 21:43:02 | 000,751,992 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMADMOE.DLL [2016.01.12 21:43:02 | 000,747,008 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMVXENCD.DLL [2016.01.12 21:43:02 | 000,696,192 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMADMOE.DLL [2016.01.12 21:43:02 | 000,634,368 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMVXENCD.DLL [2016.01.12 21:43:02 | 000,563,200 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\qdvd.dll [2016.01.12 21:43:02 | 000,447,488 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMVSENCD.DLL [2016.01.12 21:43:02 | 000,409,088 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMVSENCD.DLL [2016.01.12 21:43:02 | 000,205,312 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\aepic.dll [2016.01.12 21:43:02 | 000,115,704 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\VIDRESZR.DLL [2016.01.12 21:43:02 | 000,107,952 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\VIDRESZR.DLL [2016.01.12 21:43:02 | 000,072,808 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfvdsp.dll [2016.01.12 21:43:01 | 008,022,368 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\ntoskrnl.exe [2016.01.12 21:43:01 | 002,824,248 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\msmpeg2vdec.dll [2016.01.12 21:43:01 | 001,106,872 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfnetsrc.dll [2016.01.12 21:43:01 | 001,009,664 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMSPDMOD.DLL [2016.01.12 21:43:01 | 000,931,328 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MSMPEG2ENC.DLL [2016.01.12 21:43:01 | 000,890,880 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\WMSPDMOD.DLL [2016.01.12 21:43:01 | 000,871,936 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MSMPEG2ENC.DLL [2016.01.12 21:43:01 | 000,779,928 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\evr.dll [2016.01.12 21:43:01 | 000,714,808 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfnetcore.dll [2016.01.12 21:43:01 | 000,678,912 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\qedit.dll [2016.01.12 21:43:01 | 000,667,856 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\advapi32.dll [2016.01.12 21:43:01 | 000,573,440 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\qedit.dll [2016.01.12 21:43:01 | 000,463,872 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MFWMAAEC.DLL [2016.01.12 21:43:01 | 000,404,992 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MFWMAAEC.DLL [2016.01.12 21:43:01 | 000,090,912 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\devenum.dll [2016.01.12 21:43:01 | 000,082,096 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\devenum.dll [2016.01.12 21:43:00 | 007,523,840 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\Chakra.dll [2016.01.12 21:43:00 | 005,454,848 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\Chakra.dll [2016.01.12 21:43:00 | 002,463,704 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfcore.dll [2016.01.12 21:43:00 | 002,152,744 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfcore.dll [2016.01.12 21:43:00 | 000,772,448 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\invagent.dll [2016.01.12 21:43:00 | 000,723,648 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\generaltel.dll [2016.01.12 21:43:00 | 000,635,312 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\evr.dll [2016.01.12 21:43:00 | 000,556,032 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfh264enc.dll [2016.01.12 21:43:00 | 000,539,136 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfh264enc.dll [2016.01.12 21:43:00 | 000,441,696 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\devinv.dll [2016.01.12 21:43:00 | 000,379,392 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\qdvd.dll [2016.01.12 21:43:00 | 000,305,664 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\ksproxy.ax [2016.01.12 21:43:00 | 000,249,464 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\RESAMPLEDMO.DLL [2016.01.12 21:43:00 | 000,233,992 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mftranscode.dll [2016.01.12 21:43:00 | 000,232,896 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\RESAMPLEDMO.DLL [2016.01.12 21:43:00 | 000,208,688 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mftranscode.dll [2016.01.12 21:42:59 | 002,445,128 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\msmpeg2vdec.dll [2016.01.12 21:42:59 | 001,591,848 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\gdi32.dll [2016.01.12 21:42:59 | 000,784,136 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfsvr.dll [2016.01.12 21:42:59 | 000,781,976 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfds.dll [2016.01.12 21:42:59 | 000,712,704 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\usermgr.dll [2016.01.12 21:42:59 | 000,658,528 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfds.dll [2016.01.12 21:42:59 | 000,645,144 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfsvr.dll [2016.01.12 21:42:59 | 000,578,560 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\winlogon.exe [2016.01.12 21:42:59 | 000,278,424 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MP43DECD.DLL [2016.01.12 21:42:59 | 000,277,400 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MPG4DECD.DLL [2016.01.12 21:42:59 | 000,251,544 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MP43DECD.DLL [2016.01.12 21:42:59 | 000,250,520 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MPG4DECD.DLL [2016.01.12 21:42:59 | 000,235,008 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\ksproxy.ax [2016.01.12 21:42:59 | 000,119,800 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\MP3DMOD.DLL [2016.01.12 21:42:59 | 000,100,712 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\MP3DMOD.DLL [2016.01.12 21:42:59 | 000,042,496 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\usermgrcli.dll [2016.01.12 21:42:58 | 001,817,064 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\WMALFXGFXDSP.dll [2016.01.12 21:42:58 | 000,572,928 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\vbscript.dll [2016.01.12 21:42:58 | 000,243,248 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\mfps.dll [2016.01.12 21:42:58 | 000,033,280 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\usermgrcli.dll [2016.01.12 21:42:57 | 001,234,944 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\aitstatic.exe [2016.01.12 21:42:57 | 001,083,072 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\appraiser.dll [2016.01.12 21:42:57 | 000,826,880 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\jscript.dll [2016.01.12 21:42:57 | 000,771,072 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\Chakradiag.dll [2016.01.12 21:42:57 | 000,650,240 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\jscript.dll [2016.01.12 21:42:57 | 000,235,008 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysNative\UserMgrProxy.dll [2016.01.12 21:42:57 | 000,159,744 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\UserMgrProxy.dll [2016.01.12 21:42:57 | 000,116,728 | ---- | C] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\mfps.dll [2 G:\WINDOWS\SysNative\*.tmp files -> G:\WINDOWS\SysNative\*.tmp -> ] [1 G:\WINDOWS\*.tmp files -> G:\WINDOWS\*.tmp -> ] [1 G:\Users\Public\Documents\*.tmp files -> G:\Users\Public\Documents\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2016.02.04 07:37:03 | 000,000,884 | ---- | M] () -- G:\WINDOWS\tasks\Adobe Flash Player Updater.job [2016.02.04 07:35:09 | 002,351,844 | ---- | M] () -- G:\WINDOWS\SysNative\PerfStringBackup.INI [2016.02.04 07:35:09 | 001,111,574 | ---- | M] () -- G:\WINDOWS\SysNative\perfh007.dat [2016.02.04 07:35:09 | 000,796,508 | ---- | M] () -- G:\WINDOWS\SysNative\perfh009.dat [2016.02.04 07:35:09 | 000,274,732 | ---- | M] () -- G:\WINDOWS\SysNative\perfc007.dat [2016.02.04 07:35:09 | 000,163,922 | ---- | M] () -- G:\WINDOWS\SysNative\perfc009.dat [2016.02.04 07:32:51 | 000,067,584 | --S- | M] () -- G:\WINDOWS\bootstat.dat [2016.02.04 07:32:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- G:\Users\Desktop\Desktop\OTL.exe [2016.02.04 07:32:00 | 000,001,136 | ---- | M] () -- G:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2016.02.04 07:31:16 | 000,016,148 | ---- | M] () -- G:\WINDOWS\SysNative\DESKTOP-PC_Desktop_HistoryPrediction.bin [2016.02.04 07:30:47 | 268,435,456 | -HS- | M] () -- G:\swapfile.sys [2016.02.04 07:30:44 | 1070,186,494 | -HS- | M] () -- G:\hiberfil.sys [2016.02.04 07:09:00 | 000,001,140 | ---- | M] () -- G:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2016.02.04 06:58:01 | 000,000,046 | ---- | M] () -- G:\WINDOWS\wininit.ini [2016.02.03 19:27:12 | 000,874,480 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\coinst_15.20.dll [2016.02.03 19:27:08 | 001,196,032 | ---- | M] () -- G:\WINDOWS\SysNative\amdocl_as64.exe [2016.02.03 19:27:08 | 001,070,592 | ---- | M] () -- G:\WINDOWS\SysNative\amdocl_ld64.exe [2016.02.03 19:27:08 | 001,004,032 | ---- | M] () -- G:\WINDOWS\SysWow64\amdocl_as32.exe [2016.02.03 19:27:08 | 000,807,424 | ---- | M] () -- G:\WINDOWS\SysWow64\amdocl_ld32.exe [2016.01.30 14:13:00 | 000,000,946 | ---- | M] () -- G:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job [2016.01.29 17:05:23 | 000,002,259 | ---- | M] () -- G:\Users\Public\Desktop\Google Chrome.lnk [2016.01.28 19:19:53 | 000,000,000 | -H-- | M] () -- G:\WINDOWS\SysNative\drivers\Msft_Kernel__hid_0738_1713_01009.Wdf [2016.01.24 10:42:37 | 000,012,752 | ---- | M] () -- G:\Users\Desktop\Documents\Unbenannt 1.odt [2016.01.23 10:02:42 | 000,000,957 | ---- | M] () -- G:\Users\Desktop\Desktop\Nvu.lnk [2016.01.23 10:00:02 | 000,000,997 | ---- | M] () -- G:\Users\Desktop\Desktop\HTML Editor.lnk [2016.01.22 13:05:16 | 000,143,080 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiuxpag.dll [2016.01.22 13:05:14 | 008,168,856 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiumdva.dll [2016.01.22 13:05:14 | 000,162,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiuxp64.dll [2016.01.22 13:05:04 | 009,158,496 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiumdag.dll [2016.01.22 13:04:52 | 009,105,552 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiumd6a.dll [2016.01.22 13:04:38 | 010,919,104 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiumd64.dll [2016.01.22 13:04:26 | 000,130,616 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiu9p64.dll [2016.01.22 13:04:26 | 000,112,392 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiu9pag.dll [2016.01.22 13:04:26 | 000,088,032 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atimpc64.dll [2016.01.22 13:04:24 | 000,081,200 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atimpc32.dll [2016.01.22 13:04:22 | 013,313,544 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atidxx64.dll [2016.01.22 13:04:08 | 011,011,560 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atidxx32.dll [2016.01.22 13:03:56 | 001,519,232 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\aticfx64.dll [2016.01.22 13:03:54 | 001,249,664 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\aticfx32.dll [2016.01.22 13:03:46 | 010,339,016 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdxc64.dll [2016.01.22 13:03:38 | 008,426,376 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdxc32.dll [2016.01.22 13:03:26 | 000,088,032 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdpcom64.dll [2016.01.22 13:03:24 | 000,471,352 | ---- | M] () -- G:\WINDOWS\SysNative\amdmiracast.dll [2016.01.22 13:03:24 | 000,081,192 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdpcom32.dll [2016.01.22 13:03:22 | 000,151,968 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\amdhcp64.dll [2016.01.22 13:03:20 | 000,138,416 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\amdhcp32.dll [2016.01.22 13:03:14 | 000,128,568 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdave64.dll [2016.01.22 13:03:12 | 000,120,192 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdave32.dll [2016.01.22 13:02:54 | 000,136,216 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\mantle64.dll [2016.01.22 13:02:54 | 000,104,976 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\mantleaxl64.dll [2016.01.22 13:02:54 | 000,097,808 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\mantleaxl32.dll [2016.01.22 13:02:52 | 000,203,800 | ---- | M] () -- G:\WINDOWS\SysNative\hsa-thunk64.dll [2016.01.22 13:02:52 | 000,122,384 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\mantle32.dll [2016.01.22 13:02:50 | 000,183,312 | ---- | M] () -- G:\WINDOWS\SysWow64\hsa-thunk.dll [2016.01.22 13:02:46 | 000,232,472 | ---- | M] () -- G:\WINDOWS\SysNative\dgtrayicon.exe [2016.01.22 13:02:46 | 000,012,816 | ---- | M] (Microsoft Corporation) -- G:\WINDOWS\SysNative\detoured.dll [2016.01.22 13:02:44 | 000,874,008 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\coinst_15.30.dll [2016.01.22 13:02:44 | 000,012,816 | ---- | M] (Microsoft Corporation) -- G:\WINDOWS\SysWow64\detoured.dll [2016.01.22 13:02:42 | 000,243,736 | ---- | M] () -- G:\WINDOWS\SysNative\clinfo.exe [2016.01.22 13:01:42 | 000,199,696 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\atitmm64.dll [2016.01.22 13:01:42 | 000,097,816 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atisamu64.dll [2016.01.22 13:01:42 | 000,089,624 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atisamu32.dll [2016.01.22 13:01:38 | 025,848,848 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atioglxx.dll [2016.01.22 13:01:24 | 000,341,528 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\ATIODE.exe [2016.01.22 13:01:22 | 000,059,928 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\ATIODCLI.exe [2016.01.22 13:01:20 | 031,385,616 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atio6axx.dll [2016.01.22 13:01:02 | 000,679,952 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\drivers\atikmpag.sys [2016.01.22 13:01:02 | 000,040,472 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\atimuixx.dll [2016.01.22 13:00:56 | 023,969,808 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\drivers\atikmdag.sys [2016.01.22 13:00:40 | 000,151,056 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atigktxx.dll [2016.01.22 13:00:40 | 000,078,872 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\atiglpxx.dll [2016.01.22 13:00:40 | 000,078,872 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atiglpxx.dll [2016.01.22 13:00:38 | 000,254,992 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\atiesrxx.exe [2016.01.22 13:00:38 | 000,166,416 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atig6txx.dll [2016.01.22 13:00:38 | 000,084,504 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\atig6pxx.dll [2016.01.22 13:00:36 | 000,561,176 | ---- | M] (AMD) -- G:\WINDOWS\SysNative\atieclxx.exe [2016.01.22 13:00:34 | 000,451,088 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atidemgy.dll [2016.01.22 13:00:34 | 000,171,024 | ---- | M] () -- G:\WINDOWS\SysNative\atieah64.exe [2016.01.22 13:00:34 | 000,154,136 | ---- | M] () -- G:\WINDOWS\SysWow64\atieah32.exe [2016.01.22 13:00:30 | 000,071,192 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticalrt64.dll [2016.01.22 13:00:30 | 000,060,944 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticalrt.dll [2016.01.22 13:00:28 | 015,720,464 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticaldd64.dll [2016.01.22 13:00:08 | 014,310,936 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticaldd.dll [2016.01.22 12:59:56 | 000,064,528 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\aticalcl64.dll [2016.01.22 12:59:56 | 000,057,872 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\aticalcl.dll [2016.01.22 12:59:54 | 000,950,288 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atiadlxy.dll [2016.01.22 12:59:54 | 000,950,288 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\atiadlxx.dll [2016.01.22 12:59:54 | 000,375,824 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atiapfxx.exe [2016.01.22 12:59:50 | 001,281,552 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\atiadlxx.dll [2016.01.22 12:59:48 | 000,052,248 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\drivers\ati2erec.dll [2016.01.22 12:59:34 | 049,992,720 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\amdocl64.dll [2016.01.22 12:59:02 | 027,605,008 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysNative\amdocl12cl64.dll [2016.01.22 12:58:44 | 022,357,008 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\amdocl12cl.dll [2016.01.22 12:58:20 | 041,519,120 | ---- | M] (Advanced Micro Devices Inc.) -- G:\WINDOWS\SysWow64\amdocl.dll [2016.01.22 12:57:52 | 000,059,408 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdmmcl6.dll [2016.01.22 12:57:52 | 000,048,144 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdmmcl.dll [2016.01.22 12:57:46 | 006,651,928 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysNative\amdmantle64.dll [2016.01.22 12:57:38 | 005,232,664 | ---- | M] (Advanced Micro Devices, Inc. ) -- G:\WINDOWS\SysWow64\amdmantle32.dll [2016.01.22 12:57:30 | 000,686,608 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysNative\amdlvr64.dll [2016.01.22 12:57:28 | 000,571,408 | ---- | M] (Advanced Micro Devices, Inc.) -- G:\WINDOWS\SysWow64\amdlvr32.dll [2016.01.22 12:57:18 | 000,143,384 | ---- | M] () -- G:\WINDOWS\SysNative\amdhdl64.dll [2016.01.22 12:57:18 | 000,132,120 | ---- | M] () -- G:\WINDOWS\SysWow64\amdhdl32.dll [2016.01.22 12:57:16 | 000,213,520 | ---- | M] () -- G:\WINDOWS\SysNative\amdgfxinfo64.dll [2016.01.22 12:57:14 | 000,198,672 | ---- | M] () -- G:\WINDOWS\SysWow64\amdgfxinfo32.dll [2016.01.22 12:57:12 | 000,305,392 | ---- | M] (Advanced Micro Devices) -- G:\WINDOWS\SysNative\drivers\amdacpksd.sys [2016.01.22 12:57:10 | 000,073,752 | ---- | M] (Khronos Group) -- G:\WINDOWS\SysNative\OpenCL.dll [2016.01.22 12:57:10 | 000,068,112 | ---- | M] (Khronos Group) -- G:\WINDOWS\SysWow64\OpenCL.dll [2016.01.22 11:31:36 | 000,323,588 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_el.dat [2016.01.22 11:31:36 | 000,322,740 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_vi.dat [2016.01.22 11:31:36 | 000,321,072 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_vi_nd.dat [2016.01.22 11:31:36 | 000,320,992 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_el_nd.dat [2016.01.22 11:31:36 | 000,261,920 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_stn_nd.dat [2016.01.22 11:31:36 | 000,258,464 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_cz_nd.dat [2016.01.22 11:31:36 | 000,252,628 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_FJ.dat [2016.01.22 11:31:36 | 000,249,680 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_FJ_nd.dat [2016.01.22 11:31:34 | 003,471,376 | ---- | M] () -- G:\WINDOWS\SysWow64\atiumdva.cap [2016.01.22 11:31:34 | 000,234,292 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_cik.dat [2016.01.22 11:31:34 | 000,232,624 | ---- | M] () -- G:\WINDOWS\SysNative\ativvaxy_cik_nd.dat [2016.01.22 11:31:34 | 000,177,344 | ---- | M] () -- G:\WINDOWS\SysNative\ativce03.dat [2016.01.22 11:31:34 | 000,100,832 | ---- | M] () -- G:\WINDOWS\SysNative\ativce02.dat [2016.01.22 11:31:30 | 003,437,632 | ---- | M] () -- G:\WINDOWS\SysNative\atiumd6a.cap [2016.01.22 11:31:10 | 000,683,968 | ---- | M] () -- G:\WINDOWS\SysWow64\atiapfxx.blb [2016.01.22 11:31:10 | 000,683,968 | ---- | M] () -- G:\WINDOWS\SysNative\atiapfxx.blb [2016.01.22 11:30:42 | 000,843,639 | ---- | M] () -- G:\WINDOWS\SysNative\amdicdxx.dat [2016.01.22 11:30:42 | 000,175,648 | ---- | M] () -- G:\WINDOWS\SysNative\amde31a.dat [2016.01.22 11:30:42 | 000,166,560 | ---- | M] () -- G:\WINDOWS\SysNative\amde34a.dat [2016.01.22 11:30:42 | 000,007,112 | ---- | M] () -- G:\WINDOWS\SysNative\AMDKernelEvents.man [2016.01.16 20:11:27 | 000,012,564 | ---- | M] () -- G:\Users\Desktop\Desktop\HAushalt.ods [2016.01.06 10:25:14 | 000,012,149 | ---- | M] () -- G:\Users\Desktop\Desktop\Gewürze.odt [2 G:\WINDOWS\SysNative\*.tmp files -> G:\WINDOWS\SysNative\*.tmp -> ] [1 G:\WINDOWS\*.tmp files -> G:\WINDOWS\*.tmp -> ] [1 G:\Users\Public\Documents\*.tmp files -> G:\Users\Public\Documents\*.tmp -> ] ========== Files Created - No Company Name ========== [2016.02.04 07:31:16 | 000,016,148 | ---- | C] () -- G:\WINDOWS\SysNative\DESKTOP-PC_Desktop_HistoryPrediction.bin [2016.02.04 07:27:28 | 000,001,250 | ---- | C] () -- G:\Users\Desktop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CNext.lnk [2016.02.04 06:58:01 | 000,000,046 | ---- | C] () -- G:\WINDOWS\wininit.ini [2016.02.03 19:27:08 | 001,196,032 | ---- | C] () -- G:\WINDOWS\SysNative\amdocl_as64.exe [2016.02.03 19:27:08 | 001,070,592 | ---- | C] () -- G:\WINDOWS\SysNative\amdocl_ld64.exe [2016.02.03 19:27:08 | 000,807,424 | ---- | C] () -- G:\WINDOWS\SysWow64\amdocl_ld32.exe [2016.02.03 19:27:07 | 001,004,032 | ---- | C] () -- G:\WINDOWS\SysWow64\amdocl_as32.exe [2016.01.28 19:19:53 | 000,000,000 | -H-- | C] () -- G:\WINDOWS\SysNative\drivers\Msft_Kernel__hid_0738_1713_01009.Wdf [2016.01.24 10:42:35 | 000,012,752 | ---- | C] () -- G:\Users\Desktop\Documents\Unbenannt 1.odt [2016.01.23 10:02:42 | 000,000,957 | ---- | C] () -- G:\Users\Desktop\Desktop\Nvu.lnk [2016.01.23 10:00:02 | 000,000,997 | ---- | C] () -- G:\Users\Desktop\Desktop\HTML Editor.lnk [2016.01.22 13:03:24 | 000,471,352 | ---- | C] () -- G:\WINDOWS\SysNative\amdmiracast.dll [2016.01.22 13:02:52 | 000,203,800 | ---- | C] () -- G:\WINDOWS\SysNative\hsa-thunk64.dll [2016.01.22 13:02:50 | 000,183,312 | ---- | C] () -- G:\WINDOWS\SysWow64\hsa-thunk.dll [2016.01.22 13:02:46 | 000,232,472 | ---- | C] () -- G:\WINDOWS\SysNative\dgtrayicon.exe [2016.01.22 13:02:42 | 000,243,736 | ---- | C] () -- G:\WINDOWS\SysNative\clinfo.exe [2016.01.22 13:00:34 | 000,171,024 | ---- | C] () -- G:\WINDOWS\SysNative\atieah64.exe [2016.01.22 13:00:34 | 000,154,136 | ---- | C] () -- G:\WINDOWS\SysWow64\atieah32.exe [2016.01.22 12:57:18 | 000,143,384 | ---- | C] () -- G:\WINDOWS\SysNative\amdhdl64.dll [2016.01.22 12:57:18 | 000,132,120 | ---- | C] () -- G:\WINDOWS\SysWow64\amdhdl32.dll [2016.01.22 12:57:16 | 000,213,520 | ---- | C] () -- G:\WINDOWS\SysNative\amdgfxinfo64.dll [2016.01.22 12:57:14 | 000,198,672 | ---- | C] () -- G:\WINDOWS\SysWow64\amdgfxinfo32.dll [2016.01.22 11:31:36 | 000,323,588 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_el.dat [2016.01.22 11:31:36 | 000,322,740 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_vi.dat [2016.01.22 11:31:36 | 000,321,072 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_vi_nd.dat [2016.01.22 11:31:36 | 000,320,992 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_el_nd.dat [2016.01.22 11:31:36 | 000,261,920 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_stn_nd.dat [2016.01.22 11:31:36 | 000,258,464 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_cz_nd.dat [2016.01.22 11:31:36 | 000,252,628 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_FJ.dat [2016.01.22 11:31:36 | 000,249,680 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_FJ_nd.dat [2016.01.22 11:31:34 | 003,471,376 | ---- | C] () -- G:\WINDOWS\SysWow64\atiumdva.cap [2016.01.22 11:31:34 | 000,234,292 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_cik.dat [2016.01.22 11:31:34 | 000,232,624 | ---- | C] () -- G:\WINDOWS\SysNative\ativvaxy_cik_nd.dat [2016.01.22 11:31:34 | 000,177,344 | ---- | C] () -- G:\WINDOWS\SysNative\ativce03.dat [2016.01.22 11:31:34 | 000,100,832 | ---- | C] () -- G:\WINDOWS\SysNative\ativce02.dat [2016.01.22 11:31:30 | 003,437,632 | ---- | C] () -- G:\WINDOWS\SysNative\atiumd6a.cap [2016.01.22 11:31:10 | 000,683,968 | ---- | C] () -- G:\WINDOWS\SysWow64\atiapfxx.blb [2016.01.22 11:31:10 | 000,683,968 | ---- | C] () -- G:\WINDOWS\SysNative\atiapfxx.blb [2016.01.22 11:30:42 | 000,843,639 | ---- | C] () -- G:\WINDOWS\SysNative\amdicdxx.dat [2016.01.22 11:30:42 | 000,175,648 | ---- | C] () -- G:\WINDOWS\SysNative\amde31a.dat [2016.01.22 11:30:42 | 000,166,560 | ---- | C] () -- G:\WINDOWS\SysNative\amde34a.dat [2016.01.22 11:30:42 | 000,007,112 | ---- | C] () -- G:\WINDOWS\SysNative\AMDKernelEvents.man [2016.01.15 14:07:04 | 000,012,564 | ---- | C] () -- G:\Users\Desktop\Desktop\HAushalt.ods [2016.01.06 10:25:12 | 000,012,149 | ---- | C] () -- G:\Users\Desktop\Desktop\Gewürze.odt [2016.01.04 10:32:23 | 000,000,000 | ---- | C] () -- G:\WINDOWS\HPMProp.INI [2015.12.22 11:05:56 | 000,009,998 | ---- | C] () -- G:\Users\Desktop\AppData\Local\recently-used.xbel [2015.12.22 11:01:53 | 000,185,795 | ---- | C] () -- G:\Users\Desktop\Unterschrift.jpg [2015.12.18 16:53:16 | 000,000,122 | ---- | C] () -- G:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc [2015.12.17 19:51:09 | 000,001,425 | ---- | C] () -- G:\Users\Desktop\Neues Dokument 3.2015_12_17_19_51_09.1.svg [2015.10.14 12:51:16 | 001,766,952 | ---- | C] () -- G:\WINDOWS\SysWow64\CoreUIComponents.dll [2015.08.23 10:23:23 | 001,823,232 | ---- | C] () -- G:\WINDOWS\SysWow64\InputService.dll [2015.08.23 10:23:23 | 000,200,704 | ---- | C] () -- G:\WINDOWS\SysWow64\TextInputFramework.dll [2015.08.23 09:31:16 | 000,000,000 | ---- | C] () -- G:\WINDOWS\ativpsrm.bin [2015.08.03 18:41:16 | 000,204,952 | ---- | C] () -- G:\WINDOWS\SysWow64\ativvsvl.dat [2015.08.03 18:41:16 | 000,157,144 | ---- | C] () -- G:\WINDOWS\SysWow64\ativvsva.dat [2015.07.10 13:20:52 | 000,067,584 | --S- | C] () -- G:\WINDOWS\bootstat.dat [2015.07.10 12:04:39 | 000,000,741 | ---- | C] () -- G:\WINDOWS\SysWow64\NOISE.DAT [2015.07.10 12:04:38 | 000,215,943 | ---- | C] () -- G:\WINDOWS\SysWow64\dssec.dat [2015.07.10 12:00:35 | 000,161,632 | ---- | C] () -- G:\WINDOWS\SysWow64\weretw.dll [2015.07.10 12:00:33 | 000,673,088 | ---- | C] () -- G:\WINDOWS\SysWow64\mlang.dat [2015.07.10 12:00:32 | 000,047,104 | ---- | C] () -- G:\WINDOWS\SysWow64\BWContextHandler.dll [2015.07.10 12:00:31 | 000,156,672 | ---- | C] () -- G:\WINDOWS\SysWow64\MTF.dll [2015.07.10 12:00:30 | 000,028,672 | ---- | C] () -- G:\WINDOWS\SysWow64\dtdump.exe [2015.07.10 12:00:29 | 000,081,408 | ---- | C] () -- G:\WINDOWS\SysWow64\InputLocaleManager.dll [2015.07.10 12:00:29 | 000,057,344 | ---- | C] () -- G:\WINDOWS\SysWow64\EditBufferTestHook.dll [2015.07.10 12:00:29 | 000,053,760 | ---- | C] () -- G:\WINDOWS\SysWow64\WpKbdLayout.dll [2015.07.10 12:00:29 | 000,022,016 | ---- | C] () -- G:\WINDOWS\SysWow64\WordBreakers.dll [2015.07.10 12:00:28 | 000,270,848 | ---- | C] () -- G:\WINDOWS\SysWow64\HrtfApo.dll [2015.07.10 12:00:27 | 000,364,544 | ---- | C] () -- G:\WINDOWS\SysWow64\msjetoledb40.dll [2015.07.10 12:00:26 | 000,022,528 | ---- | C] () -- G:\WINDOWS\SysWow64\efsext.dll [2015.07.10 12:00:25 | 000,002,269 | ---- | C] () -- G:\WINDOWS\SysWow64\WimBootCompress.ini [2015.07.10 12:00:24 | 000,167,640 | ---- | C] () -- G:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat [2015.07.10 11:59:51 | 000,043,131 | ---- | C] () -- G:\WINDOWS\mib.bin [2015.02.06 19:25:33 | 001,874,522 | ---- | C] () -- G:\WINDOWS\SysWow64\PerfStringBackup.INI [2015.02.06 19:15:59 | 000,072,280 | ---- | C] () -- G:\WINDOWS\SysWow64\XSrvSetup.exe [2015.02.01 07:05:40 | 000,000,306 | RHS- | C] () -- G:\ProgramData\ntuser.pol ========== ZeroAccess Check ========== [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = G:\Windows\SysNative\windows.storage.dll -- [2015.09.17 07:49:11 | 006,487,248 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\windows.storage.dll -- [2015.09.17 07:28:40 | 005,120,056 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = G:\Windows\SysNative\wbem\fastprox.dll -- [2015.07.10 11:59:53 | 000,995,328 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2015.07.10 12:00:23 | 000,754,688 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = G:\Windows\SysNative\wbem\wbemess.dll -- [2015.07.10 11:59:55 | 000,516,096 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Alternate Data Streams ========== @Alternate Data Stream - 16 bytes -> G:\WINDOWS\Temp:$DATA < End of report > |
|
04.02.2016, 19:11
| #3 |
| | Internetverbindung plötzlich sehr langsam OTL EXTRAS Logfile:
__________________Code:
ATTFilter OTL Extras logfile created on: 04.02.2016 07:39:56 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = G:\Users\Desktop\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10240.16384)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
12,00 Gb Total Physical Memory | 10,54 Gb Available Physical Memory | 87,89% Memory free
24,00 Gb Paging File | 22,57 Gb Available in Paging File | 94,07% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = G: | %SystemRoot% = G:\WINDOWS | %ProgramFiles% = G:\Program Files (x86)
Drive F: | 853,39 Gb Total Space | 517,64 Gb Free Space | 60,66% Space Free | Partition Type: NTFS
Drive G: | 78,12 Gb Total Space | 22,60 Gb Free Space | 28,93% Space Free | Partition Type: NTFS
Computer Name: DESKTOP-PC | User Name: Desktop | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- G:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- G:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- G:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- G:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
[HKEY_USERS\S-1-5-21-2116903744-1973149705-759598665-1001\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "G:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "G:\WINDOWS\system32\rundll32.exe" "G:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "G:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "G:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "G:\WINDOWS\system32\rundll32.exe" "G:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "G:\Windows\System32\rundll32.exe" "G:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "G:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "G:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "G:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
http [open] -- "G:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "G:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "G:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = C8 F2 96 02 80 DD D0 01 [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{06FD5257-83D4-437E-A104-551F5094AFD8}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{1CC02547-C935-49C7-B999-9CD8A7E25102}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2E3C93E1-08B1-4D4D-A714-E1FD57824A7B}" = lport=3702 | protocol=17 | dir=in | app=%systemroot%\system32\dashost.exe |
"{2F9AD44C-0C34-45A0-9DE7-77C721B7EC82}" = lport=5353 | protocol=17 | dir=in | app=g:\program files (x86)\google\chrome\application\chrome.exe |
"{39BE7FC3-E7FA-4AA7-8FB9-2D3D5F9A0FE8}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5251D0A5-BCFA-41E0-B422-37D39C4D2B39}" = lport=3702 | protocol=17 | dir=in | app=g:\program files (x86)\microsoft visual studio 14.0\common7\ide\devenv.exe |
"{6C4FDF71-2ADD-450B-96D5-C686599E574C}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{7E08D873-2DD1-4444-96FF-AC1D1446F373}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{83028578-46EB-41FE-AF10-450B5F2E367A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C410B083-A877-4863-9B0E-DB8E25EC50A0}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{D7D1D299-0D01-46B4-95DA-8DA83B0AE338}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{E355EFD4-D5D3-4E68-B03E-C58B73E57983}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EC2F7BBD-3F3C-40E7-9FCA-E250C0B419F5}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F59B62BD-CF64-4518-A8C7-CEEE45836FFE}" = rport=2869 | protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01714D10-9EF6-477F-988F-6199089B82BC}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{0178BAF0-3F23-4154-BF53-8BDF9D18B09E}" = dir=out | name=xbox |
"{02278339-765C-426D-8BC1-588EF46CCE3C}" = protocol=17 | dir=in | app=f:\spiele\steamapps\common\aion\nclauncher.exe |
"{025A8DE9-D162-481F-A9F9-AB191552E9F7}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{02DD73A5-482D-4CC5-B7BB-11274B96D264}" = protocol=6 | dir=in | app=g:\programdata\battle.net\agent\agent.3715\agent.exe |
"{038C7700-7FD0-486F-AA1C-29426663E2AC}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.6525.42271.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{064A31FE-D8B7-4C8B-8533-3C1BB31F5F19}" = protocol=6 | dir=in | app=f:\spiele\steamapps\common\fallout new vegas\falloutnvlauncher.exe |
"{06664AB5-6EE6-48CB-B48E-36366B1A6E17}" = protocol=17 | dir=in | app=g:\programdata\battle.net\agent\agent.3715\agent.exe |
"{06D1AC84-706C-4446-B261-69227FDBF96B}" = dir=out | name=@{microsoft.zunevideo_3.6.16941.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{10A52B3B-520B-4A79-943A-C7B507E4EAF2}" = dir=in | name=@{microsoft.bingnews_4.8.239.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{125645F4-87EF-4C7A-A912-867149EC0451}" = protocol=17 | dir=in | app=f:\spiele\steamapps\common\warhammer end times vermintide\launcher\launcher.exe |
"{13789483-857F-4599-8EA4-8CE107FFA00B}" = protocol=6 | dir=in | app=g:\program files (x86)\steam\bin\steamwebhelper.exe |
"{13BD0E31-A351-4B94-8412-9190E75764FD}" = dir=in | name=@{microsoft.windowsstore_2015.25.24.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{1420B654-284D-4DFE-B710-F195B64EC78B}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{15135ED0-C97C-41D2-9148-88A8DEB32222}" = dir=out | name=@{microsoft.windows.photos_16.122.14020.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{1E053C28-8BAE-4D7A-8FC2-0E58016D374A}" = protocol=17 | dir=in | app=g:\program files (x86)\mozilla firefox\firefox.exe |
"{238BA425-367F-4E33-A812-A66A4975B61D}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{24360BC8-50D3-4C3D-B063-1596A2A84ABD}" = dir=in | app=g:\program files (x86)\skype\phone\skype.exe |
"{29818D85-A703-48D2-8609-2D1C5E1DFE37}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{2F188EA5-8D1D-4403-92C7-574ABD4B2D78}" = dir=out | name=candy crush saga |
"{36DDFC5A-BE4E-4637-B9A7-A0BE57864DA0}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10240.16393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{36E4CAC1-7955-4BA2-A326-49EF3B84D77E}" = protocol=17 | dir=in | app=g:\program files (x86)\steam\steam.exe |
"{38070A81-6D3A-4EB4-AB28-9D99279BB80F}" = protocol=17 | dir=in | app=f:\spiele\steamapps\common\fallout 4\fallout4launcher.exe |
"{394DC979-3B1F-4DE8-940D-36CA9D0CACCA}" = dir=out | name=twitter |
"{397D72E7-B518-456F-9442-8E4FFCC00A18}" = dir=in | name=@{microsoft.microsoftofficehub_17.6628.23511.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{3DBD4EBE-5914-4B54-A392-5CFAB9BCA5C6}" = dir=out | name=@{microsoft.microsoftofficehub_17.6628.23511.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{535591C7-DF96-45E9-8172-B2F68ACA67AA}" = protocol=17 | dir=in | app=f:\spiele\steamapps\common\fallout new vegas\falloutnvlauncher.exe |
"{59E11944-9904-42EE-BA47-29FB8D2AB2DB}" = dir=in | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{5DC6E2E8-5C81-4221-823D-6766956153C5}" = protocol=6 | dir=in | app=g:\program files (x86)\battle.net\battle.net.exe |
"{6070D1CD-27D0-4733-8913-8832A7621F04}" = protocol=6 | dir=in | app=f:\spiele\steamapps\common\aion\nclauncher.exe |
"{607B1C48-DCA6-437B-ADBD-5EF8856731A9}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{60801FF3-35E4-4FA5-8FA2-3836C5BFCB98}" = protocol=6 | dir=in | app=f:\spiele\steamapps\common\the walking dead\walkingdead101.exe |
"{6090C182-1015-4C27-A300-B95CF902553C}" = dir=out | name=@{microsoft.windowsstore_2015.25.24.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{61FC74CC-33C0-4B59-BD6A-117E9AF39593}" = protocol=6 | dir=in | app=g:\program files (x86)\mozilla firefox\firefox.exe |
"{6C9C9C7E-3F52-49BA-BAEB-ACF50123A6D6}" = dir=out | name=@{microsoft.bingweather_4.8.239.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{6D2A58B1-7335-4C88-84FF-57399F3D0CBF}" = protocol=6 | dir=in | app=f:\starcraft ii\starcraft ii.exe |
"{6D2BE284-8741-43F8-B7EB-929F6A2FC082}" = dir=in | name=@{microsoft.bingsports_4.8.239.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{6DE8DD70-5130-4974-B68E-F48115774A38}" = dir=out | name=@{microsoft.bingnews_4.8.239.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{751EDD25-3E0C-475A-AC9A-1FE5255BBE4B}" = protocol=17 | dir=in | app=f:\spiele\steamapps\common\skyrim\skyrimlauncher.exe |
"{782FB096-36D3-48B6-8474-0C178BBC61A1}" = protocol=17 | dir=in | app=f:\spiele\steamapps\common\savage lands\savagelands.exe |
"{78871CDA-83F2-4C02-818E-0F422E9E1970}" = dir=out | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{78E758EB-5D0F-431A-AD1F-61851C2C847E}" = dir=out | name=@{microsoft.xboxcompanion_1.4.3.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxcompanion/resources/33279} |
"{792F8E8D-0269-4DE8-8407-18E6239E76E9}" = protocol=6 | dir=in | app=f:\spiele\steamapps\common\warhammer end times vermintide\launcher\launcher.exe |
"{793FF599-262C-4A66-B193-713A5EB4174B}" = dir=in | name=onenote |
"{7E1EDEA6-FC26-4DAC-B180-7FE9668247A4}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{8962A4EB-08C9-4B7A-A6F1-5D381BD3F76C}" = protocol=6 | dir=in | app=f:\spiele\steamapps\common\warhammer end times vermintide\binaries\vermintide.exe |
"{8A82FD35-4F20-4AE8-B4DF-C6BB5993CD41}" = protocol=6 | dir=in | app=f:\spiele\steamapps\common\skyrim\skyrimlauncher.exe |
"{8DC996B3-66A7-44B4-A200-71EF73E9DCEB}" = dir=in | name=@{microsoft.bingweather_4.8.239.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{90915D46-E03E-4A25-A882-6001CC93DD87}" = dir=out | name=onenote |
"{9346E2A5-5886-467D-B744-FAFE9D21D05D}" = protocol=6 | dir=in | app=f:\spiele\steamapps\common\call of duty black ops iii\blackops3.exe |
"{949ABCFE-2CEE-4296-9908-7D0132A19BF3}" = dir=out | name=@{microsoft.3dbuilder_10.9.6.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} |
"{9E4DE4E1-1C32-4848-8D1B-0D99727548D0}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{9FB0A121-8D21-4511-9365-21CFDBFFBA8B}" = protocol=6 | dir=in | app=f:\spiele\steamapps\common\fallout 4\fallout4launcher.exe |
"{A3788A02-4C73-428C-B481-6F9F1CACF8CB}" = protocol=17 | dir=in | app=f:\spiele\steamapps\common\the walking dead\walkingdead101.exe |
"{A45C30AD-1252-4CFD-B82E-63024ED61446}" = dir=out | name=windows_ie_ac_001 |
"{A4D2AFCC-3325-42EA-9D07-D655CBB6025E}" = protocol=17 | dir=in | app=g:\program files (x86)\battle.net\battle.net.exe |
"{A6E83355-D9C1-4F59-AB15-D99CA260FB2D}" = protocol=6 | dir=in | app=f:\spiele\steamapps\common\savage lands\savagelands.exe |
"{A8760DD8-2BE6-435F-A1FD-A49FFD059D4D}" = dir=out | name=@{microsoft.bingsports_4.8.239.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{A899D22B-10D3-4C04-8CC2-45C934B2FE57}" = protocol=17 | dir=in | app=f:\starcraft ii\starcraft ii.exe |
"{AA3D23AB-67D1-4397-A949-C788D5CADD39}" = dir=out | name=microsoft solitaire collection |
"{AACD06B7-4F6D-4C1F-AD6A-EF4F8907DC7C}" = dir=out | name=@{microsoft.lockapp_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{ABC47CA7-92EE-4CAB-825C-38A95C009CA8}" = protocol=17 | dir=in | app=f:\spiele\steamapps\common\call of duty black ops iii\blackops3.exe |
"{AC4E3782-0412-4175-8CCE-BD861D2075D8}" = dir=in | name=microsoft solitaire collection |
"{AD2C35E4-468C-4D0D-BD96-9B361D3CC678}" = dir=out | name=@{microsoft.getstarted_2.6.12.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{B30C6CFB-4B83-4428-9440-E47CA6021D71}" = dir=out | name=@{microsoft.accountscontrol_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{B9E1FB91-3BDD-42F3-B38C-CCFD2E8FA6CA}" = dir=in | name=@{microsoft.bingfinance_4.8.239.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{BA66558D-E5F2-40DE-ABA6-5B9853CED703}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{BEC0E3F0-E8F5-4560-9C0A-2F9114E63953}" = dir=out | name=@{microsoft.bingfinance_4.8.239.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{BFF16D00-6825-443B-8790-EE42A81AC9A2}" = dir=out | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{C15CD4E7-D844-4FA4-BDC0-74DD26C7F4FC}" = dir=in | name=@{microsoft.xboxcompanion_1.4.3.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxcompanion/resources/33279} |
"{C31E802F-6D49-4E39-9716-748E24101781}" = dir=in | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{C789FAFD-9E83-413D-A128-64D58F30EF13}" = dir=out | name=@{microsoft.zunemusic_3.6.15131.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{CD8355F2-C619-47C8-BCD5-3D60DDD2D9FB}" = dir=out | name=@{microsoft.windowsmaps_4.1601.10150.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{D125222D-F4F6-45B5-A912-62FC2274AE6A}" = dir=in | name=xbox |
"{D213709C-DEDE-4387-B7BC-C1E30B3E6DE5}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} |
"{D86AC858-E4E9-468C-93B7-0026FA3D7761}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{DAD2C663-25E3-4D4B-8FD8-36AEB9868C5A}" = dir=out | name=@{microsoft.people_10.0.3450.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{EFA183F2-F57A-4C71-B062-F5295CF146E3}" = protocol=17 | dir=in | app=g:\program files (x86)\steam\bin\steamwebhelper.exe |
"{F06EC599-6AC2-4B54-BC96-D0C2296B9B49}" = dir=out | name=windowsdvdplayer |
"{F83D7C05-2795-4E3C-9F35-C6F70B652FA0}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.6525.42271.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{FAE27281-4219-48A1-BD0E-B6D96EBD38DC}" = protocol=6 | dir=in | app=g:\program files (x86)\steam\steam.exe |
"{FBDDC845-0362-4340-B9BC-F903A9B3655E}" = dir=in | name=@{microsoft.windows.photos_16.122.14020.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{FDC2CE82-55C2-4A7E-8521-E56C97105DC1}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{FF43340A-9D39-400D-94A4-374BDD46C4A3}" = dir=out | name=@{microsoft.windowsphone_10.1511.18010.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} |
"{FF8E8A24-A1D6-4D48-8221-0A09129067BD}" = dir=in | name=@{microsoft.zunevideo_3.6.16941.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{FFE73BA0-76D6-4E0C-8FEE-440D1F48B15C}" = protocol=17 | dir=in | app=f:\spiele\steamapps\common\warhammer end times vermintide\binaries\vermintide.exe |
"TCP Query User{217E767B-A1D1-42D1-A1A9-AEDF4B42B83D}G:\program files (x86)\diablo iii\diablo iii.exe" = protocol=6 | dir=in | app=g:\program files (x86)\diablo iii\diablo iii.exe |
"UDP Query User{169570B4-A5A3-4436-AE06-BCD76C7E8171}G:\program files (x86)\diablo iii\diablo iii.exe" = protocol=17 | dir=in | app=g:\program files (x86)\diablo iii\diablo iii.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{031277F7-4C47-C86A-1E19-3D3E0A911501}" = Catalyst Control Center Next Localization EL
"{03CB711D-679E-46ED-851B-C568418CF914}" = Microsoft SQL Server*2014 Management Objects (x64)
"{04B5C251-079F-31FE-B114-603665EC76C7}" = Microsoft Visual Studio Team Foundation Server 2015 Update 1 Office Integration Sprachpaket (x64) – DEU
"{08274920-8908-45c2-9258-8ad67ff77b09}.sdb" = IIS Express Application Compatibility Database for x64
"{0EBC740B-4363-489B-8C27-98CE0740BA19}" = 64 Bit HP CIO Components Installer
"{17D267EE-4BCF-F3BF-88AC-072A0A8BCADC}" = AMD Wireless Display v3.0
"{17E049B8-66E3-8C46-B08F-0472FBFAAD2C}" = Catalyst Control Center Next Localization TR
"{17F4B9AB-554B-0304-63E4-DF3B43564C6A}" = Catalyst Control Center Next Localization SV
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{25E80DAA-FD87-DCE5-202C-CC02F6673002}" = Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64)
"{26A24AE4-039D-4CA4-87B4-2F86418065F0}" = Java 8 Update 65 (64-bit)
"{28FAF547-6644-4788-C123-52868D5937EE}" = Catalyst Control Center Next Localization IT
"{2C2FBDF9-9E60-E31C-E8B0-A270397EC1B9}" = Catalyst Control Center Next Localization DA
"{31FFFC1B-494E-4FF9-9D49-53ACCACB80FD}" = Microsoft Build Tools 14.0 (amd64)
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{3BD1D01C-ECB9-A2F2-2B7E-46DB18D3F163}" = Catalyst Control Center Next Localization BR
"{447A06BC-E1AC-4DA0-B99A-2453D5038D41}" = Visual Studio 2015 Prerequisites - DEU Language Pack
"{4646A4CF-BEA5-475D-96D7-70E19E481603}" = Smart Technology Programming Software 7.0.45.2
"{4B71A700-8880-7218-1BF2-EB30413169D3}" = AMD Settings
"{4E7E2BBE-41EA-8805-D74F-4AEC9B350407}" = Catalyst Control Center Next Localization DE
"{4E7F7C0A-4DE9-791C-61D4-9A5952DF5801}" = AMD Drag and Drop Transcoding
"{4F4AD505-AAA6-400D-A79A-76E27ABAAAEF}" = Microsoft Visual Studio 2015-Leistungserfassungstools - DEU
"{5247E16E-BCF8-95AB-1653-B3F8FBF8B3F1}" = Windows Software Development Kit DirectX x64 Remote
"{53ED03FC-4263-AEF4-AF38-FA8B39D4EB50}" = Catalyst Control Center Next Localization JA
"{599702AA-91EB-38C1-B994-CDE35C57E007}" = Microsoft Visual Studio 2015 VsGraphics Helper Dependencies
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{62D2E847-606F-49FB-A38B-F9D5AA936331}" = Microsoft Visual Studio 2015 Diagnostic Tools - amd64
"{64A3A4F4-B792-11D6-A78A-00B0D0180650}" = Java SE Development Kit 8 Update 65 (64-bit)
"{65956D81-BDC2-4402-90F3-8BE8A8FD042B}" = Microsoft Visual Studio 2015-Leistungserfassungstools
"{65A0C615-FF11-596D-E9D7-20660DD251E9}" = Catalyst Control Center Next Localization RU
"{6A8B4ED1-2D9E-857F-903B-E0C27428767D}" = Catalyst Control Center Next Localization FR
"{6BEE779E-55DF-D8FF-0B53-887B4D2B916C}" = Catalyst Control Center Next Localization PL
"{6C2F8AC4-E9EE-3880-933F-544B80491CC7}" = Visual C++ IDE x64 Package
"{70E4C4BF-875B-AD68-71F6-EDCB3AA6D358}" = Catalyst Control Center Next Localization HU
"{73505232-CD13-3F22-971A-408910F665DD}" = Microsoft Visual Studio Team Foundation Server 2015 Update 1 Storyboarding (x64)
"{78ACE60E-0CB7-4935-BCD4-F33422105607}" = AMD Settings - Branding
"{79487460-954C-0685-3100-972F30ECB2B1}" = Catalyst Control Center Next Localization CHT
"{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}" = IIS 10.0 Express
"{7F239378-C766-CBA9-34B0-DBAC6BD2A3FC}" = Catalyst Control Center Next Localization ES
"{7F6DCED8-6A2B-4436-AF20-8F659D04E388}" = Microsoft-System-CLR-Typen für SQL Server 2014
"{7FC59BAE-DD7C-86F2-CBD7-2A8A468F1D65}" = Catalyst Control Center Next Localization FI
"{8392879F-C1FC-F086-589E-AEBD203D9E86}" = AMD Accelerated Video Transcoding
"{846922D5-8303-AC31-2514-CF98DE7AC01D}" = Catalyst Control Center Next Localization CS
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E4BA1E5-54E8-41F0-919B-CD875B83CFCE}" = Microsoft SQL Server 2012 Native Client
"{91A6A9A1-CFC8-BC5D-2E47-46C0FDB75C78}" = Catalyst Control Center Next Localization KO
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{935B7AB6-8D50-D4C9-2C99-29F42A200868}" = AMD Media Foundation Decoders
"{96F4525A-470D-F15C-796E-58D9988C3E5F}" = Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
"{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}" = Microsoft SQL Server Compact 4.0 SP1 x64 DEU
"{99BF4B74-C9C7-3F1A-897B-8D63D8228E2C}" = Microsoft Visual C++ 2015 x64 Debug Runtime - 14.0.23506
"{9A44423E-6728-3B29-AC63-1A3882C1B367}" = Microsoft Visual Studio Team Foundation Server 2015 Update 1 Storyboarding Sprachpaket (x64) – DEU
"{A09C85EB-7558-3727-F5AD-6B1562D8EACE}" = ccc-utility64
"{A1C31BA5-5438-3A07-9EEE-A5FB2D0FDE36}" = Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23506
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{A332A81F-FFC4-A9DB-B82C-B441CCC07DF2}" = Catalyst Control Center Next Localization NO
"{A50F4EF7-CD73-91CD-AB34-6ACDB3A62369}" = Catalyst Control Center Next Localization TH
"{A6A04D70-ADF1-3FE6-3A79-577C284AC9D4}" = AMD Wireless Display v3.0
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb" = IIS Express Application Compatibility Database for x86
"{B0B194F8-E0CE-33FE-AA11-636428A4B73D}" = Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23506
"{C01C2C4C-9950-4791-9D96-F3BAF4B5A1BA}" = Microsoft Build Tools Language Resources 14.0 (amd64)
"{C437D239-B9BD-1228-E219-BC040D772D02}" = Catalyst Control Center Next Localization NL
"{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}" = Microsoft .NET Version Manager (x64) 1.0.0-beta5
"{CBE9B669-0A40-FBAF-3A0C-AECC0013D56D}" = Catalyst Control Center Next Localization CHS
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{CF36E8B6-3175-4D96-9C90-B7918639C54F}" = Microsoft Visual Studio 2015 Update 1 Diagnostic Tools - amd64
"{D41798CE-A60A-FBE4-87E4-36D9748D4A8B}" = AMD Install Manager
"{DF32E41C-24AD-4A87-B43A-B38553B1806E}" = Visual Studio 2015 Prerequisites
"{E70808B9-78FE-3081-9658-A3C9DBC9A798}" = Microsoft .NET Framework 4.5.1 RC
"{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}" = Microsoft Web Deploy 3.6
"{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}" = Microsoft SQL Server 2012 Command Line Utilities
"{F25A38EC-3604-397F-802A-C6E000D92D76}" = Microsoft Visual Studio Team Foundation Server 2015 Update 1 Office Integration (x64)
"{F2A2DB39-2C5A-4764-AA0F-5AB112663FFA}" = Microsoft SQL Server*2014 Transact-SQL ScriptDom
"{F476CC23-5247-411A-A163-196066968E2A}" = Microsoft Visual Studio 2015 Update 1 Diagnostic Tools - amd64
"AMD Catalyst Install Manager" = AMD Install Manager
"GIMP-2_is1" = GIMP 2.8.14
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{013c11fd-b596-4e15-a6e6-8373b77f0b5e}" = Microsoft Visual Studio Community 2015 mit Update 1
"{030A6785-C3A9-37DA-8530-444C320629FA}" = Microsoft Visual Studio 2015 Shell (Minimum)
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{0536BCDF-7EF6-48F6-8765-A3C065A065A5}" = Microsoft Expression Blend SDK for .NET 4
"{06BE8B71-46C6-434B-869E-85C58EF3120A}" = Microsoft SQL Server*2014 T-SQL Language Service
"{06C8CA92-588B-3144-8A70-C80CF060E2B0}" = Visual C++ MSBuild X64 Package
"{08A73E96-1340-3A49-B502-87C42205380F}" = Microsoft Visual Studio 2015 Shell (Minimum) Interop Assemblies
"{09B023DE-53B7-89F7-987C-0C1797AA72A9}" = CCC Help Thai
"{0A3B508E-5638-4471-BCC9-954E1868CB86}" = WCF Data Services Tools for Microsoft Visual Studio 2015
"{0B6537FF-BA3E-8219-32D1-C79A704BAECC}" = CCC Help Chinese Standard
"{1045AB6F-6151-3634-8C2C-EE308AA1A6A7}" = Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23506
"{10F97A69-C876-48BA-9EE4-CC5DB98C96AD}" = Microsoft Visual Studio 2015-Vorbereitung
"{118E863A-F6E9-4A5B-8C61-56B8B752A200}" = Microsoft Build Tools 14.0 (x86)
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{13AB5388-77C1-3DE1-8EFD-93E3B8C62DC2}" = Microsoft Blend for Visual Studio 2015
"{13BD574A-7F41-420A-B486-7A2D4CEB7F3B}" = Tools for .Net 3.5 - DEU Lang Pack
"{1419A0D7-3C9B-6A57-2F30-3051CE4B7994}" = CCC Help Russian
"{1459D07D-55E8-7024-0061-303B04FDDA69}" = CCC Help German
"{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{1690CE56-2231-4E59-9006-A0876D949EA8}" = Tools for .Net 3.5
"{19A5926D-66E1-46FC-854D-163AA10A52D3}" = Microsoft .NET Framework 4.5.1 SDK
"{19E8AE59-4D4A-3534-B567-6CC08FA4102E}" = Microsoft .NET Framework 4.5.2 Multi-Targeting Pack
"{1BFB577E-4EA5-4F28-A252-4DBBB987FD1E}" = Microsoft Visual Studio 2015 Windows Diagnostic Tools - ENU
"{1CEB89DA-0AA2-48E8-9F63-822854C3F0E0}" = Microsoft Visual Studio 2015 XAML Visual Diagnostics - ENU
"{1D3D2D3F-BFC9-3433-854F-773AA25743CB}" = Microsoft Blend für Visual Studio 2015 – DEU
"{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}" = AzureTools.Notifications
"{209A55D1-E963-0B66-9A30-7872F3054504}" = CCC Help Portuguese
"{20B1B020-DEAE-48D1-9960-D4C3185D758B}" = Phase 5 HTML-Editor
"{216094CE-EC45-4372-B6C6-0F2B8DE52679}" = Microsoft Azure Shared Components for Visual Studio 2015 - v1.5
"{21B8DBC0-B5B3-42D1-8645-910ACCE81596}" = Microsoft Visual Studio 2015-Vorbereitung
"{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{23daf363-3020-4059-b3ae-dc4ad39fed19}" = Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506
"{2466E484-9D86-416B-9C88-AA533F15AF1C}" = Erforderliche Komponenten für SSDT
"{258AD9AC-A8B0-316B-9046-4567ECFF5CA6}" = Visual C++ IDE Base Package
"{26A24AE4-039D-4CA4-87B4-2F83218066F0}" = Java 8 Update 66
"{2734D723-18F0-9FE0-7F0B-71CB6348DEBB}" = CCC Help French
"{28710201-3AE1-DED1-EC2C-890DB13176B1}" = CCC Help Danish
"{2885B3CC-A83E-4582-B472-F11049A14D35}" = Microsoft Visual Studio 2015 Profiling Tools
"{2A56910C-69C8-495D-8ED8-9080F0A14E58}" = Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1
"{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}" = Microsoft .NET Framework 4.6 Targeting Pack
"{2D333157-0EEE-337D-AD50-996026BE1235}" = Microsoft Visual Studio 2015 SDK Sprachpaket - DEU
"{2E8C464E-EC1F-3984-9DBA-0E8164BCED5D}" = Visual C++ IDE Core Professional Plus Resource Package
"{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}" = Microsoft .NET Framework 4.6.1 SDK
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{307a22b8-8353-4c5e-b67b-2404c5734558}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
"{3196EC29-B75D-4EE3-8AB0-46418BC31483}" = Microsoft.VisualStudio.Office365
"{31D08B7C-B05B-365C-9D35-71DBDCD3DF13}" = Visual C++ IDE Debugger Resource Package
"{33AAB2BF-0A02-38CF-81A3-A12884C21C43}" = Visual C++ MSBuild ARM Package
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{33e2204a-4ec6-4458-895a-47e2a404d990}" = TypeScript Tools for Microsoft Visual Studio 2015 1.7.4.0
"{354A5C2B-3DD5-418B-AE0A-AD44C9698EE4}" = Microsoft VisualStudio JavaScript Language Service
"{37E53780-3944-4A6A-842F-727128E8616E}" = Blend for Visual Studio SDK for .NET 4.5
"{38BA288B-C4F4-4C62-9237-4BFAB374F966}" = PDF Architect 3 Create Module
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = Gigabyte Raid Configurer
"{3CAAD1CA-A110-3817-9056-482E5A0C8715}" = Visual C++ MSBuild X86 Package
"{3DC403C9-DE82-DD45-4197-EA1628722E45}" = AMD Catalyst Control Center
"{3E275667-C19E-1AC0-A9EC-6D37AE67469C}" = Catalyst Control Center InstallProxy
"{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}" = Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
"{3F514FDC-F0F2-3B99-86D6-F7B3A2679B39}" = Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.2 (Deutsch)
"{3FEAC561-1CF6-41D6-B0F3-BECDD9C88A1B}" = Azure AD Authentication Connected Service
"{4002A594-C093-44E1-AAB8-E805FBEC3EBB}" = Microsoft Visual Studio 2015-Vorbereitung
"{42AF2A8C-6EBB-3D2E-9BF1-6135379FBABC}" = Windows Espc Package
"{42F91172-21DC-4582-9DB6-7D62F1FECE2F}" = Microsoft Build Tools Language Resources 14.0 (x86)
"{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}" = PreEmptive Analytics Visual Studio Components
"{44A100D0-C1AE-4BB7-A0CC-AA60B7566681}" = Microsoft ASP.NET MVC 4 - Visual Studio 2015 - ENU
"{459F37E3-8C9F-3E0D-ADCD-C23EFBCC4C2A}" = Visual F# 4.0 SDK Language Pack - DEU
"{4860C1E5-CE58-4D32-89DE-37951333B4C9}" = Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6.1 (Deutsch)
"{48992F68-BEE6-35D8-89AC-6A81406F1096}" = Team Explorer for Microsoft Visual Studio 2015
"{48BF289B-F3FA-4023-9251-80ABF7B726F9}" = Microsoft-System-CLR-Typen für SQL Server 2014
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BE72B6B-1E33-3D51-82CE-AE9702AA2664}" = Microsoft NuGet - Visual Studio 2015
"{4C5B1DD0-7E8E-4972-9247-818E6D030552}" = Dotfuscator and Analytics Community Edition 5.19.0
"{4D1AB460-EBA5-3612-BCEC-F0BD1510A715}" = Visual C++ IDE Core Professional Plus Resource Package
"{4F4CB3E2-9D2F-465A-854B-8276B02F4E7D}" = Microsoft SQL Server*2014 Management Objects
"{4fcf070a-daac-45e9-a8b0-6850941f7ed8}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{5183F03D-90FA-493B-A074-F0F78B8486AD}" = PDF Architect 3 Edit Module
"{520971D4-B56E-3C75-AADD-36B19D60CD6E}" = Visual C++ IDE Core Professional Plus Resource Package
"{529EFF09-750D-48B9-A47A-34A3B6248C3F}" = Microsoft .NET Framework 4.6.1 SDK (Deutsch)
"{5333AF5C-6CAC-3185-B647-97E2873F53D1}" = Visual C++ IDE Base Resource Package
"{5536AAD4-740A-4577-843D-4281D3F30726}" = Microsoft Azure Mobile Services Tools for Visual Studio - v1.4
"{55EF7059-ADEC-9FDB-3896-BD33FEA9B34F}" = HydraVision
"{56AD3004-0B49-967F-F682-B05650B61A78}" = Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
"{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}" = Microsoft .NET Framework 4.5 Multi-Targeting Pack
"{57A86E3B-C7FC-394E-A693-4CDD02549B5D}" = Microsoft Visual Studio Community 2015 – DEU
"{5AA4892D-4E46-3856-A217-D49B1F73356A}" = Visual C++ Compiler/Tools X86 Base Resource Package
"{5B2DEF3A-AE1A-3029-A5B9-3FFFE79658A3}" = Visual C++ IDE Core Professional Plus Resource Package
"{5CD96030-DA11-3D1F-9C1B-41E1534000CE}" = Visual C++ MSBuild Base Package
"{5F7870A1-0586-313E-A9FF-3249DCE9F63A}" = VS Update core components
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{61A70737-1FE8-E16A-8791-5C8D54990F5B}" = Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2015 - ENU
"{62B8DE1A-F2A7-3984-9FBC-BD12E8281F07}" = Microsoft ASP.NET and Web Tools 2015.1 (Beta8) - Visual Studio 2015 - deu
"{63045916-32E7-31D6-BD8E-C13406E137B5}" = Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 RC für Windows Store-Apps (Deutsch)
"{6492567F-6B51-3890-BA07-484C26440F61}" = Visual C++ IDE Core Professional Plus Resource Package
"{64A7DDA4-8729-E339-0A8A-C426C510DF0D}" = CCC Help Hungarian
"{65A12DD3-9992-47D2-8BA2-510CA59F893F}" = Microsoft ASP.NET Web Pages 2 - Visual Studio 2015 - ENU
"{65AD78AD-D23D-3A1E-9305-3AE65CD522C2}" = Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23506
"{66C8AAA2-D0FA-4F70-8A0F-5A0738F5679B}" = Microsoft Visual Studio 2015 XAML Application Timeline
"{67A74EC1-A89D-3553-B38D-D17D4991CD2F}" = Microsoft Visual Studio 2015 SDK - ENU
"{6A0549A9-1B96-498C-ACBC-3943001FEB19}" = Skype™ 7.8
"{6A0C6700-EA93-372C-8871-DCCF13D160A4}" = Microsoft .NET Framework 4.5.1 Multi-Targeting Pack
"{6A536541-565A-33A0-B50E-8ACF7849D000}" = Visual F# 4.0 VS Language Pack - DEU
"{6B29EC62-7F86-3643-CA05-4E5F65BCFD14}" = CCC Help Turkish
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{706B5CDD-1C39-3677-B3F9-AF8D06A17E11}" = Visual C++ IDE Core Professional Plus Resource Package
"{732E279B-BF8C-4A55-B704-EACF783D6B37}" = Microsoft Visual Studio 2015 XAML Application Timeline - ENU
"{7498BA51-A725-4293-A5E4-AB28BDE1C18A}" = WCF Data Services Tools for Microsoft Visual Studio 2015 DEU Language Pack
"{7B418C7C-DDE4-4CED-913D-AEE46F13B317}" = Microsoft Visual Studio 2015 Update 1-Diagnosetools – DEU
"{7BF895D8-8378-4970-8906-8AB7AB7E2CB4}" = Microsoft Azure Storage Connected Service
"{7E0DDE7A-9EC6-3672-AC92-08DA2C292DB7}" = Roslyn Language Services - x86
"{7FBEE165-A653-4B2A-A93A-4643794E22A8}" = TypeScript Power Tool
"{7FFF6251-8242-F288-5DEB-E64299ED7FC4}" = CCC Help Swedish
"{8060EFE3-FADB-4FBE-9081-E73326067305}" = Microsoft ASP.NET Web Pages 2 - Visual Studio 2015 - DEU
"{8180F038-C440-343A-BEEE-83D2EB4668BC}" = Visual C++ IDE Common Package
"{870004B4-B265-47D0-A5A2-5F76A9CD3007}" = Microsoft Visual Studio 2015 Update 1 Diagnostic Tools - x86
"{87063F32-D9C9-3D44-AA35-7366CB2ACD81}" = Visual C++ IDE Core Professional Plus Resource Package
"{87268D8E-63AF-7869-5562-906F3BA03F54}" = Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2015 - DEU
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8985706E-7C12-354B-BAEA-E765A3005F76}" = Microsoft Agents für Visual Studio 2015-Vorschau - DEU
"{8AD0C8F9-D528-375B-987F-477BC3F7BFDD}" = Visual C++ Compiler/Tools X86 Base Package
"{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}" = Microsoft .NET Framework 4.6.1 Targeting Pack
"{8EEB28EE-5141-411C-9CF0-9952264FE4AF}" = Microsoft .NET Framework 4.6.1 Targeting Pack (ENU)
"{8FFFCA88-299D-335F-A22A-C4DA403B4320}" = Visual C++ IDE Core Professional Plus Resource Package
"{903D0F33-D3CF-48D6-967D-84004089428A}" = Application Insights Tools for Visual Studio 2015
"{90BCBE05-EE52-3558-8E10-9CDF85BD1EFB}" = Microsoft Visual Studio 2015 Team Explorer Sprachpaket - DEU
"{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
"{976C3D92-0DEC-37A6-A870-FF4FC18CD029}" = Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps
"{9834A559-CF5C-4461-8F51-6E66235C2D2B}" = Microsoft Visual Studio 2015 Update 1 Performance Debugger Web Views
"{9AF6476A-C906-376C-9158-0B36F5E37E18}" = Microsoft Visual Studio 2015 Shell-(Mindest)-Ressourcen
"{9B3C41A4-DE08-3A76-A8D9-CA953CAC18E0}" = Visual C++ MSBuild Base Resource Package
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}" = Test Tools for Microsoft Visual Studio 2015
"{9F075566-9D2D-AE93-3577-9D6A882161C4}" = CCC Help Italian
"{A00EC54A-CE16-4CF6-A14A-5CF81A1FE03F}" = Microsoft Azure Mobile Services SDK V2.0
"{A03D40AB-8625-6B2D-1617-82A08FA6AE28}" = CCC Help Chinese Traditional
"{A0F1E5BA-EDF3-44A6-B7E1-01136E8092B0}" = Gemeinsam genutzte Microsoft Azure-Komponenten für Visual Studio 2015 Sprachpaket (DEU) - v1.5
"{A18C9DC6-4DE8-4C3C-9CE7-8CCC33BFAB3A}" = WCF Data Services 5.6.4 DEU Language Pack
"{A1CB8286-CFB3-A985-D799-721A0F2A27F3}" = Windows Software Development Kit DirectX x86 Remote
"{A4495E4F-5218-48FB-8AD2-F3076011B9E1}" = Microsoft Azure Mobile Services Connected Service
"{A4F4EC88-2B7C-43E7-A8FB-54FDA0E8B731}" = Microsoft Visual Studio 2015 Update 1 Diagnostic Tools - x86
"{A5B2BD71-4E41-3093-BC79-06545D862D76}" = Visual C++ IDE Common Resource Package
"{AC76BA86-1033-F400-BA7E-100000000002}" = Adobe Acrobat 7.0 Standard - English, Français, Deutsch
"{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}" = OpenOffice 4.1.1
"{AD11FCAB-4B38-3815-818A-CF08413C2089}" = Microsoft Portable Library Multi-Targeting Pack
"{B01F4A6F-189B-D79A-B5EC-63C21D90047E}" = CCC Help English
"{B1205D63-FA76-B3E2-E000-BF9171FF3302}" = CCC Help Spanish
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B1E244FE-C1CB-0C58-9944-EEC4CD928B0C}" = CCC Help Polish
"{B39246A3-BC5C-44E4-A9C6-E3CAC8D8D616}" = Microsoft Visual Studio 2015 XAML Visual Diagnostics
"{B5915D37-0637-4A26-A3AA-C5DC9F856370}" = Microsoft .NET Framework 4.6 SDK
"{B9EE1E60-4884-4B2F-9187-92F532437D60}" = PreEmptive Analytics Client German Language Pack
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{BDE22CDF-A138-1CAF-CE94-22E40F0B8D1D}" = CCC Help Czech
"{BFC7ED5C-03D7-366C-A768-CFF97F0A4170}" = Microsoft Help Viewer 2.2
"{C28E8D4A-C424-71CF-DFBE-597810641712}" = Catalyst Control Center InstallProxy
"{C2F6ABBD-B313-4A49-B657-7C80C031EC87}" = Microsoft Visual Studio Connected Services
"{C3F3006F-05C7-BFE2-27D7-2265425519F6}" = Catalyst Control Center Graphics Previews Common
"{C4A53446-13B0-3562-8D86-D05E36710260}" = Visual C++ IDE Professional Core Package
"{C59E3B05-B6CD-2630-044A-B83B4F3964A7}" = CCC Help Japanese
"{C65EC843-21F4-3955-83FD-8BAAC2F841EA}" = Visual C++ IDE Core Professional Plus Resource Package
"{C6ABF51B-7C6D-3047-A974-F2A804793E3E}" = Roslyn Language Services - x86
"{C77FB699-F3B1-39A3-BC54-7445363521B4}" = Visual C++ IDE Core Professional Plus Resource Package
"{C81E59A8-9D2E-3CC0-911C-7BA4C8A24A9A}" = Visual C++ IDE Base Resource Package
"{C8AC11BB-B680-44A2-ACE4-2D88D6A711CE}" = Microsoft .NET Core 5.0 SDK
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{CA678284-2142-59F8-73F0-53B120D660C5}" = Catalyst Control Center Localization All
"{cb2c12b3-4bbd-487c-8a02-2af811a76cba}" = Microsoft .NET Framework 4.6.1 Developer Pack
"{CB79256B-C0E0-40C6-8EB7-BDD796203581}" = Catalyst Control Center - Branding
"{cba532d0-1425-41b1-85eb-4221ac2d63e7}" = Microsoft .NET Framework 4.6.1 Developer Pack (DEU)
"{CBD7095F-7211-43FD-9FE7-FB08D753AF79}" = Microsoft .NET Framework 4.5.1 SDK (Deutsch)
"{CCE0CA57-815B-3B8E-8C4B-F230D7E3769C}" = Visual C++ IDE Core Package
"{CD1128AD-16DD-3B00-8B83-721FA79B19DB}" = Microsoft Portable Library Multi-Targeting Pack Language Pack - deu
"{CE37CE67-2660-30EE-805B-78829CC3554B}" = Microsoft Agents for Visual Studio 2015 Preview
"{CE4CB50E-5A69-373F-B023-26A31E6A3B28}" = Microsoft Visual C++ 2015 x86 Debug Runtime - 14.0.23506
"{CF251A1B-AAF3-6F6D-B79E-67D0C12B423F}" = AMD Settings
"{CFD05662-AA7B-586B-7451-2DDF1E6B3718}" = CCC Help Finnish
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D2194770-9749-4C21-84F2-DC2DC737A72E}" = Microsoft Visual Studio 2015 Windows Diagnostic Tools
"{D2988336-54F8-4619-9F88-6216BD7492F9}" = Microsoft ASP.NET MVC 4 - Visual Studio 2015 - DEU
"{D5409B11-EF28-37A1-AE7A-6051A5BAD923}" = Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch)
"{D609CE75-6A3E-4FDC-8EBE-87E71F50819F}" = Microsoft Visual Studio 2015 Update 1-Diagnosetools – DEU
"{D7C8A95B-B1EE-43B1-837D-C73D1321FEBA}" = TypeScript Tools for Microsoft Visual Studio 2015
"{D7D20EB4-BD89-05C0-05C6-33E5B762989E}" = Catalyst Control Center InstallProxy
"{D8C7583D-0F18-332D-9DC9-26492A63967F}" = Visual C++ Compiler/Tools X86 Base Resource Package
"{D9480A2D-4125-3880-B334-300730A8B85A}" = Visual C++ IDE Core Professional Plus Resource Package
"{DB0321D3-7161-4CC5-9DDA-E2D6C4DB1CCE}" = Microsoft Visual Studio Services Hub
"{DB29B05C-71ED-71F5-8934-95E4C07B9481}" = CCC Help Korean
"{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}" = WCF Data Services 5.6.4 Runtime
"{DC473BC9-B675-373E-9EEF-25C9F4057381}" = Microsoft Visual Studio 2015 XAML Designer - DEU
"{DCEE8005-CC6B-3EEA-BA0E-018858F86B91}" = Visual C++ IDE Core Professional Plus Resource Package
"{DE064F60-6522-3310-9665-B5E3E78B3638}" = Microsoft Visual Studio Community 2015
"{DE1EB612-3BAD-4F68-A6D7-3FE29F784203}" = Microsoft Azure Mobile Services Tools für Visual Studio Sprachpaket - v1.4
"{DF547C28-FFD9-38EF-B937-5CFA2376EC79}" = Microsoft Visual Studio 2015 XAML Designer
"{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1" = MSI GamingApp
"{E1B108D3-4DA4-4915-B809-0563A3A980E9}" = Microsoft Visual Studio 2015 Testtools Sprachpaket – DEU
"{E7C41168-FF8F-62A9-E55F-536BA08DFD96}" = CCC Help Greek
"{E90FA148-5D32-382A-8AE5-543B56C34221}" = Visual C++ Library PGO X86 Package
"{EABA0F3C-287E-3339-9D88-BC86C2A53C1B}" = Visual C++ IDE Core Professional Plus Resource Package
"{EB24E9E7-4BC1-4FD7-BF86-BDE07A7A03D7}" = PDF Architect 3 View Module
"{EBF3D1E4-8B2E-34BA-BDA8-76883CFEFA6C}" = Visual C++ Compiler/Tools X86 Base Package
"{EC7A395B-1A91-33AD-8443-E922BC874C5D}" = Microsoft Help Viewer 2.2 Sprachpaket - DEU
"{EE8BD24B-75E1-4BBF-86B9-91FE16ADE71C}" = Microsoft .NET Framework 4.6 SDK (Deutsch)
"{EEF206F7-D52A-67E4-C71E-5415DFF5A753}" = CCC Help Norwegian
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F22366EF-1698-4615-B240-34911E1E17F1}" = Microsoft Visual Studio 2015 Update 1 Diagnostic Tools - x86
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F6A3F154-2010-4013-B88A-4CC052FDE375}" = Dotfuscator and Analytics Community Edition Language Pack 5.19.0 de-DE
"{F6C04806-5A52-31D1-ACF7-A010F8315E7A}" = Mit C# erstellte geräteübergreifende Hybrid-Apps - Vorlagen - DEU
"{F7BBF232-D4A1-3C5C-B131-69933F5F2D6B}" = Microsoft ASP.NET and Web Tools 2015.1 (Beta8) - Visual Studio 2015
"{F7E40ABA-991D-4884-98BD-EC8CAF9D9777}" = Microsoft VisualStudio JavaScript Project System
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{F8FAB397-1D65-3EB1-A56C-F96D524B0C02}" = Visual C++ IDE Core Professional Plus Resource Package
"{F9AE875B-DDE8-4F51-9CFD-96A2134F750B}" = Microsoft Visual Studio 2015 Update 1 Diagnostic Tools - ENU
"{F9D8905A-3DDF-3413-AF44-5D90E29C2525}" = Visual C++ IDE Debugger Package
"{FA0599C5-C083-41BE-8AEA-E8EB9070D128}" = MSBuild/NuGet Integration 14.0 (x86)
"{FA276781-1444-D7A2-411B-50257626DF70}" = CCC Help Dutch
"{FA604873-01A0-4834-AF87-418534E465BB}" = Microsoft SQL Server Data Tools - DEU (14.0.50616.0)
"{FACF2669-E25A-428A-9167-5EEDE741F3B9}" = Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6 (Deutsch)
"{FB44808B-AC6F-301D-806D-77815A51E242}" = Devenv-Ressourcen für Microsoft Visual Studio 2015
"{FC1F3422-0C94-3178-AD95-3EA889DF55AF}" = Microsoft Visual Studio 2015 Devenv
"{FC94D188-1E08-3707-9D23-F41178D44664}" = Windows Espc Resource Package
"{FCFE9641-42C3-3475-97CB-B6430984D831}" = Windows Phone SDK 8.0 Assemblys für Visual Studio 2015 – DEU
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FF353AFB-0AF5-4537-9624-F3DEFE047A50}" = Microsoft Visual Studio 2015 Update 1 Performance Debugger-Webansichten – Ressourcen DEU
"Adobe Acrobat 7.0 Standard - EFG - V" = Adobe Acrobat 7.0 Standard - English, Français, Deutsch
"Adobe Flash Player NPAPI" = Adobe Flash Player 20 NPAPI
"Adobe Flash Player PPAPI" = Adobe Flash Player 20 PPAPI
"Battle.net" = Battle.net
"Foxit Reader_is1" = Foxit Reader
"Google Chrome" = Google Chrome
"Heroes of the Storm" = Heroes of the Storm
"Microsoft Help Viewer 2.2" = Microsoft Help Viewer 2.2
"Microsoft Help Viewer 2.2 Sprachpaket - DEU" = Microsoft Help Viewer 2.2 Sprachpaket - DEU
"Mozilla Firefox 35.0.1 (x86 de)" = Mozilla Firefox 35.0.1 (x86 de)
"Mozilla Thunderbird 38.5.0 (x86 de)" = Mozilla Thunderbird 38.5.0 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Nvu_is1" = Nvu 1.0
"Opera 35.0.2066.37" = Opera Stable 35.0.2066.37
"PDF Architect 3" = PDF Architect 3
"StarCraft II" = StarCraft II
"Steam" = Steam
"Steam App 207610" = The Walking Dead
"Steam App 22380" = Fallout: New Vegas
"Steam App 235540" = Warhammer: End Times - Vermintide
"Steam App 261430" = AION Free-to-Play
"Steam App 307880" = Savage Lands
"Steam App 311210" = Call of Duty: Black Ops III
"Steam App 377160" = Fallout 4
"Steam App 72850" = The Elder Scrolls V: Skyrim
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 03.02.2016 13:54:43 | Computer Name = Desktop-PC | Source = Microsoft-Windows-WMI | ID = 24
Description = Vom Ereignisanbieter "CisWmi" wurde versucht, die Abfrage "SELECT
* FROM CisFileRatingChange" zu registrieren, deren Zielklasse "CisFileRatingChange"
im Namespace "//./root/cis" nicht vorhanden ist. Die Abfrage wird ignoriert.
Error - 03.02.2016 14:00:13 | Computer Name = Desktop-PC | Source = .NET Runtime | ID = 1026
Description =
Error - 03.02.2016 14:00:15 | Computer Name = Desktop-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: MOM.exe, Version: 4.5.0.0, Zeitstempel:
0x53ad0e3f Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.10240.16384,
Zeitstempel: 0x559f38c3 Ausnahmecode: 0xe0434352 Fehleroffset: 0x000000000002a1c8
ID
des fehlerhaften Prozesses: 0x1528 Startzeit der fehlerhaften Anwendung: 0x01d15eacb92d6f82
Pfad
der fehlerhaften Anwendung: G:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
Pfad
des fehlerhaften Moduls: G:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 1bddf974-7037-4229-a4cb-071f7c3cef2e
Vollständiger
Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket
ist:
Error - 03.02.2016 14:14:27 | Computer Name = Desktop-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Bei der Aktivierung der App „Microsoft.WindowsStore_8wekyb3d8bbwe!App“
ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie
im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error - 03.02.2016 14:28:33 | Computer Name = Desktop-PC | Source = .NET Runtime | ID = 1026
Description =
Error - 03.02.2016 14:28:33 | Computer Name = Desktop-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: CLI.exe, Version: 4.5.0.0, Zeitstempel:
0x54dca1de Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.10240.16384,
Zeitstempel: 0x559f38c3 Ausnahmecode: 0xe0434352 Fehleroffset: 0x000000000002a1c8
ID
des fehlerhaften Prozesses: 0x1b8 Startzeit der fehlerhaften Anwendung: 0x01d15eb0afd2f731
Pfad
der fehlerhaften Anwendung: G:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe
Pfad
des fehlerhaften Moduls: G:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 3b3c87b8-78cd-4b98-8d54-0bfd912963f7
Vollständiger
Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket
ist:
Error - 03.02.2016 14:30:49 | Computer Name = Desktop-PC | Source = .NET Runtime | ID = 1026
Description =
Error - 03.02.2016 14:30:49 | Computer Name = Desktop-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: CLI.exe, Version: 4.5.0.0, Zeitstempel:
0x54dca1de Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.10240.16384,
Zeitstempel: 0x559f38c3 Ausnahmecode: 0xe0434352 Fehleroffset: 0x000000000002a1c8
ID
des fehlerhaften Prozesses: 0x1224 Startzeit der fehlerhaften Anwendung: 0x01d15eb10123dff1
Pfad
der fehlerhaften Anwendung: G:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe
Pfad
des fehlerhaften Moduls: G:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 4a97b1a4-e7fc-4ea3-ba09-25cf9c66df4b
Vollständiger
Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket
ist:
Error - 04.02.2016 01:58:21 | Computer Name = Desktop-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: SystemSettings.exe, Version: 10.0.10240.16384,
Zeitstempel: 0x559f39ae Name des fehlerhaften Moduls: SettingsHandlers_StorageSense.dll,
Version: 10.0.10240.16384, Zeitstempel: 0x559f3d87 Ausnahmecode: 0xc0000005 Fehleroffset:
0x00000000000174b9 ID des fehlerhaften Prozesses: 0x18a4 Startzeit der fehlerhaften
Anwendung: 0x01d15f10caed9f17 Pfad der fehlerhaften Anwendung: G:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
Pfad
des fehlerhaften Moduls: G:\Windows\System32\SettingsHandlers_StorageSense.dll Berichtskennung:
32cddfad-d653-4d6f-8bd5-7ed7407aa4c8 Vollständiger Name des fehlerhaften Pakets:
windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy Anwendungs-ID,
die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel
Error - 04.02.2016 02:41:42 | Computer Name = Desktop-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts
"System Writer". Details: AddLegacyDriverFiles: Unable to back up image of binary
Microsoft-Verbindungsschichterkennungsprotokoll. System Error: Zugriff verweigert
.
[ System Events ]
Error - 03.02.2016 14:14:35 | Computer Name = Desktop-PC | Source = DCOM | ID = 10010
Description =
Error - 03.02.2016 14:14:36 | Computer Name = Desktop-PC | Source = DCOM | ID = 10010
Description =
Error - 03.02.2016 14:15:12 | Computer Name = Desktop-PC | Source = Service Control Manager | ID = 7043
Description = Der Dienst Gruppenrichtlinienclient konnte nach dem Empfang eines
Preshutdown-Steuerelements nicht richtig heruntergefahren werden.
Error - 03.02.2016 14:31:17 | Computer Name = Desktop-PC | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler
beendet: %%1
Error - 03.02.2016 14:31:37 | Computer Name = Desktop-PC | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler
beendet: %%1
Error - 03.02.2016 14:35:04 | Computer Name = Desktop-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x8024200d fehlgeschlagen: Upgrade auf Windows 10 Home, Version 1511, 10586
Error - 04.02.2016 02:29:56 | Computer Name = Desktop-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 04.02.2016 02:29:56 | Computer Name = Desktop-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Kontaktdaten_Session1" wurde unerwartet beendet. Dies
ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden
durchgeführt: Neustart des Diensts.
Error - 04.02.2016 02:29:56 | Computer Name = Desktop-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Benutzerdatenspeicher _Session1" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
Error - 04.02.2016 02:29:56 | Computer Name = Desktop-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Benutzerdatenzugriff_Session1" wurde unerwartet beendet.
Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000
Millisekunden durchgeführt: Neustart des Diensts.
< End of report >
defogger_disable by jpshortstuff (23.02.10.1) Log created at 07:59 on 04/02/2016 (Desktop) Checking for autostart values... HKCU\~\Run values retrieved. HKLM\~\Run values retrieved. Checking for services/drivers... -=E.O.F=- GMER 2.1.19357 - hxxp://www.gmer.net Rootkit scan 2016-02-04 08:28:28 Windows 6.2.9200 x64 Running: Gmer-19357.exe; Driver: G:\Users\Desktop\AppData\Local\Temp\fwldifow.sys ---- Threads - GMER 2.1 ---- Thread G:\WINDOWS\system32\csrss.exe [576:728] fffff961bbc07300 ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0172D401-7DEF-5D2E-DAB7-9F9CC55A8AE8} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0172D401-7DEF-5D2E-DAB7-9F9CC55A8AE8}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0172D401-7DEF-5D2E-DAB7-9F9CC55A8AE8}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0172D401-7DEF-5D2E-DAB7-9F9CC55A8AE8}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0050 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0172D401-7DEF-5D2E-DAB7-9F9CC55A8AE8}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0050@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{092F77A5-07DA-4DD8-C816-D61F61F9D7E0} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{092F77A5-07DA-4DD8-C816-D61F61F9D7E0}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{092F77A5-07DA-4DD8-C816-D61F61F9D7E0}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{092F77A5-07DA-4DD8-C816-D61F61F9D7E0}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0050 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{092F77A5-07DA-4DD8-C816-D61F61F9D7E0}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0050@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0BAB00D0-C8C5-01C0-C8D9-F817148E53E2} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0BAB00D0-C8C5-01C0-C8D9-F817148E53E2}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0BAB00D0-C8C5-01C0-C8D9-F817148E53E2}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0BAB00D0-C8C5-01C0-C8D9-F817148E53E2}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0050 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0BAB00D0-C8C5-01C0-C8D9-F817148E53E2}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0050@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0D11AEFC-83F4-9147-C9FA-8E843820E9E4} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0D11AEFC-83F4-9147-C9FA-8E843820E9E4}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0D11AEFC-83F4-9147-C9FA-8E843820E9E4}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0D11AEFC-83F4-9147-C9FA-8E843820E9E4}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0050 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{0D11AEFC-83F4-9147-C9FA-8E843820E9E4}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0050@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{A2238C7D-85AE-4028-CA16-C540A832A07F} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{A2238C7D-85AE-4028-CA16-C540A832A07F}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{A2238C7D-85AE-4028-CA16-C540A832A07F}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{A2238C7D-85AE-4028-CA16-C540A832A07F}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{A2238C7D-85AE-4028-CA16-C540A832A07F}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{A7C09FF1-58EB-12C4-D9EB-B05A2421437A} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{A7C09FF1-58EB-12C4-D9EB-B05A2421437A}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{A7C09FF1-58EB-12C4-D9EB-B05A2421437A}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{A7C09FF1-58EB-12C4-D9EB-B05A2421437A}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{A7C09FF1-58EB-12C4-D9EB-B05A2421437A}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AA04C7E2-A298-C92E-C756-7C4C37798777} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AA04C7E2-A298-C92E-C756-7C4C37798777}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AA04C7E2-A298-C92E-C756-7C4C37798777}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AA04C7E2-A298-C92E-C756-7C4C37798777}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AA04C7E2-A298-C92E-C756-7C4C37798777}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AB5D278B-2EBF-580E-DCF8-F0665E99DE76} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AB5D278B-2EBF-580E-DCF8-F0665E99DE76}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AB5D278B-2EBF-580E-DCF8-F0665E99DE76}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AB5D278B-2EBF-580E-DCF8-F0665E99DE76}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AB5D278B-2EBF-580E-DCF8-F0665E99DE76}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AD194B20-EDC1-4E2A-CB85-D7D1F5F59A70} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AD194B20-EDC1-4E2A-CB85-D7D1F5F59A70}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AD194B20-EDC1-4E2A-CB85-D7D1F5F59A70}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AD194B20-EDC1-4E2A-CB85-D7D1F5F59A70}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{AD194B20-EDC1-4E2A-CB85-D7D1F5F59A70}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{F6EA72C8-CC2A-4249-D682-A5461DCC692B} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{F6EA72C8-CC2A-4249-D682-A5461DCC692B}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{F6EA72C8-CC2A-4249-D682-A5461DCC692B}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{F6EA72C8-CC2A-4249-D682-A5461DCC692B}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{F6EA72C8-CC2A-4249-D682-A5461DCC692B}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{F7B392A1-400D-D369-CD2C-296C742C302A} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{F7B392A1-400D-D369-CD2C-296C742C302A}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{F7B392A1-400D-D369-CD2C-296C742C302A}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{F7B392A1-400D-D369-CD2C-296C742C302A}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{F7B392A1-400D-D369-CD2C-296C742C302A}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FC6514A8-FF02-8256-D80D-64797DAAE621} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FC6514A8-FF02-8256-D80D-64797DAAE621}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FC6514A8-FF02-8256-D80D-64797DAAE621}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FC6514A8-FF02-8256-D80D-64797DAAE621}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FC6514A8-FF02-8256-D80D-64797DAAE621}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FECD3957-EB1C-CB4F-DBC2-1C4A82874E23} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FECD3957-EB1C-CB4F-DBC2-1C4A82874E23}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FECD3957-EB1C-CB4F-DBC2-1C4A82874E23}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FECD3957-EB1C-CB4F-DBC2-1C4A82874E23}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FECD3957-EB1C-CB4F-DBC2-1C4A82874E23}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FF912430-F535-90F1-D803-80F8E59A1222} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FF912430-F535-90F1-D803-80F8E59A1222}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FF912430-F535-90F1-D803-80F8E59A1222}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FF912430-F535-90F1-D803-80F8E59A1222}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindPaths\{FF912430-F535-90F1-D803-80F8E59A1222}\Properties\{a111f1f2-5923-47c0-9a68-d0bafb577901}\0054@ 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x04 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f208-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f208-5923-47c0-9a68-d0bafb577901}\0032 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f208-5923-47c0-9a68-d0bafb577901}\0032@ 0x02 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f20e-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f20e-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f20e-5923-47c0-9a68-d0bafb577901}\0002@ 0x01 0x10 0x08 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f20e-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{67BBC562-394E-43D5-A2E4-53DF5B6ADE20}\Properties\{a111f20e-5923-47c0-9a68-d0bafb577901}\0014@ 0x00 0x00 0x00 0xB0 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x04 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f208-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f208-5923-47c0-9a68-d0bafb577901}\0032 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f208-5923-47c0-9a68-d0bafb577901}\0032@ 0x02 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f20e-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f20e-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f20e-5923-47c0-9a68-d0bafb577901}\0002@ 0x01 0x10 0x08 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f20e-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\BindRules\{E533965D-F525-4953-931E-5DA6B2217A58}\Properties\{a111f20e-5923-47c0-9a68-d0bafb577901}\0014@ 0x00 0x00 0x00 0xB0 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\Lookup Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\Lookup@LanmanWorkstation 0x4E 0x4F 0x49 0x54 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0004@ 0x4C 0x00 0x61 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a@ 0x4C 0x00 0x61 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0002@ 0x77 0x00 0x69 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0004@ 0x6E 0x00 0x65 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x4E 0x00 0x65 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x4D 0x00 0x53 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006@ 0x80 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Clients\{54494F4E-5441-4B53-CCB9-061A6EC4BF6E}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x07 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Kernel Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Kernel@FilterClass ms_implatform Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a@ 0x4D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000c Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000c@ 0x4D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000e Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000e@ 0x4D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0014@ 0x00 0x00 0x00 0x40 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002@ 0x16 0x50 0x1C 0x17 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f8-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f8-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f1f8-5923-47c0-9a68-d0bafb577901}\0014@ 0x42 0x00 0x72 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x6E 0x00 0x65 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x49 0x00 0x6E 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{171C5016-3D19-4CB2-9556-63E586EE5010}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x07 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Kernel Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Kernel@UnbindOnAttach 1 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Kernel@FilterClass ms_medium_converter_bottom Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a@ 0x57 0x00 0x66 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0016 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0016@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\001e Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\001e@ 0x01 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006@ 0x65 0x00 0x74 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002@ 0x20 0x78 0xFD 0x3B ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f8-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f8-5923-47c0-9a68-d0bafb577901}\0020 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f1f8-5923-47c0-9a68-d0bafb577901}\0020@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x77 0x00 0x66 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x57 0x00 0x66 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006@ 0x28 0x00 0x04 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{3BFD7820-D65C-4C1B-9FEA-983A019639EA}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x07 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Kernel Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Kernel@Optional 1 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Kernel@FilterClass ms_medium_converter_128 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0016 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0016@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006@ 0x76 0x00 0x77 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002@ 0xBF 0x81 0xBF 0x5C ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0006@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x6E 0x00 0x65 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x49 0x00 0x6E 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006@ 0x28 0x00 0x04 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x07 0x00 ... |
|
04.02.2016, 19:12
| #4 |
| | Internetverbindung plötzlich sehr langsam Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Kernel Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Kernel@Optional 1 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Kernel@FilterClass scheduler Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a@ 0x50 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006@ 0x63 0x00 0x70 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002@ 0x59 0xD6 0xF4 0xB5 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004@ 0x73 0x00 0x63 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0006@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x6E 0x00 0x65 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x49 0x00 0x6E 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006@ 0x00 0x00 0x04 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B5F4D659-7DAA-4565-8E41-BE220ED60542}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x07 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Kernel Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Kernel@UnbindOnAttach 1 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Kernel@FilterClass ms_firewall_upper Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a@ 0x57 0x00 0x66 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0016 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0016@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006@ 0x65 0x00 0x74 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002@ 0x60 0x64 0x0D 0xB7 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x77 0x00 0x66 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x57 0x00 0x66 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006@ 0x28 0x00 0x04 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{B70D6460-3635-4D42-B866-B8AB1A24454C}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x07 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Kernel Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Kernel@UnbindOnAttach 1 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Kernel@UnbindOnDetach 1 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Kernel@FilterClass ms_medium_converter_top Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a@ 0x4E 0x00 0x61 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000c Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000c@ 0x77 0x00 0x6C 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000e Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000e@ 0x77 0x00 0x6C 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0016 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0016@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\001e Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\001e@ 0x02 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0050 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0050@ 0x57 0x00 0x69 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0052 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0052@ 0xAD 0x74 0xDE 0xE1 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006@ 0x77 0x00 0x6C 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002@ 0x9A 0xCF 0x75 0xE4 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0016 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0016@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f8-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f8-5923-47c0-9a68-d0bafb577901}\0020 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f1f8-5923-47c0-9a68-d0bafb577901}\0020@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x6E 0x00 0x65 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x4D 0x00 0x53 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006@ 0x28 0x00 0x04 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x07 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Kernel Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Kernel@Optional 1 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Kernel@FilterClass ms_switch_filter Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a@ 0x57 0x00 0x66 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006@ 0x76 0x00 0x6D 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002@ 0xF0 0xB2 0xC3 0xE7 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0006@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x77 0x00 0x66 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x57 0x00 0x66 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006@ 0x00 0x00 0x04 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{E7C3B2F0-F3C5-48DF-AF2B-10FED6D72E7A}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x07 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Kernel Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Kernel@Optional 1 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Kernel@Monitoring 1 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Kernel@NoStartAtBoot 1 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Kernel@FilterClass ms_switch_capture Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0006@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0008@ 0x40 0x00 0x25 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\000a@ 0x4E 0x00 0x64 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0014@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0016 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0016@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0006@ 0x65 0x00 0x74 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0002@ 0x6C 0xCD 0x24 0xEA ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0004@ 0x6D 0x00 0x73 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0006@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0008 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0008@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0018 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f1f7-5923-47c0-9a68-d0bafb577901}\0018@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x6E 0x00 0x64 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x49 0x00 0x6E 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006@ 0x38 0x00 0x04 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Filters\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x07 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@IfType 71 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@MediaType 16 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@PhysicalMediaType 9 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@IfAlias Drahtlosnetzwerkverbindung Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@IfDescr D-Link AirPlus G DWL-G510 Wireless PCI Adapter(rev.C) Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@NetLuidIndex 0 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@IsolationNetwork 0x41 0xE3 0x6E 0x84 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@Characteristics 132 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@ProtocolList Ndisuio?RDMANDK?Tcpip?lltdio?MsLldp?Tcpip6?rspndr?RasPppoe? Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@FilterList 0x20 0x78 0xFD 0x3B ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@CurrentAddress 0x00 0x26 0x5A 0x05 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Kernel@PermanentAddress 0x00 0x26 0x5A 0x05 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0002@ 0x2A 0xDF 0x92 0x02 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x04 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x7B 0x00 0x30 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0002@ 0x6E 0x00 0x64 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0004@ 0x77 0x00 0x6C 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0004@ 0x00 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000a Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000a@ 0x47 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000c Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000c@ 0x10 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000e Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000e@ 0x09 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0010 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0010@ 0x44 0x00 0x72 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0012 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0012@ 0x44 0x00 0x2D 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\001e Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\001e@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0032 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0032@ 0x50 0x00 0x43 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0034 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0034@ 0x70 0x00 0x63 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0046 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0046@ 0x41 0xE3 0x6E 0x84 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\008c Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\008c@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0090 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0090@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x6F 0x00 0x65 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x4F 0x00 0x53 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006@ 0x84 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0014@ 0x05 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{0292DF2A-529D-4DE4-9189-8C51C2A42BA8}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x02 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@IfType 6 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@MediaType 0 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@PhysicalMediaType 14 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@IfAlias LAN-Verbindung Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@IfDescr Realtek PCIe GBE Family Controller Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@NetLuidIndex 6 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@IsolationNetwork 0x41 0xE3 0x6E 0x84 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@Characteristics 132 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@ProtocolList Ndisuio?RDMANDK?Tcpip?lltdio?MsLldp?Tcpip6?rspndr?RasPppoe? Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@FilterList 0x20 0x78 0xFD 0x3B ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@CurrentAddress 0x00 0x24 0x1D 0xDC ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Kernel@PermanentAddress 0x00 0x24 0x1D 0xDC ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0002@ 0x14 0x6D 0x63 0x21 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1ef-5923-47c0-9a68-d0bafb577901}\0014@ 0x04 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f0-5923-47c0-9a68-d0bafb577901}\0002@ 0x7B 0x00 0x32 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0002@ 0x6E 0x00 0x64 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f1-5923-47c0-9a68-d0bafb577901}\0004@ 0x65 0x00 0x74 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0004@ 0x00 0x00 0x00 0x06 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000a Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000a@ 0x06 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000c Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000c@ 0x00 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000e Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\000e@ 0x0E 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0010 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0010@ 0x4C 0x00 0x41 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0012 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0012@ 0x52 0x00 0x65 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\001e Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\001e@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0032 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0032@ 0x50 0x00 0x43 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0034 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0034@ 0x50 0x00 0x43 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0046 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0046@ 0x41 0xE3 0x6E 0x84 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\008c Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\008c@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0090 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f1f4-5923-47c0-9a68-d0bafb577901}\0090@ 0x01 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901} Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0002@ 0x6F 0x00 0x65 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0004@ 0x52 0x00 0x54 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0006@ 0x84 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0014 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0014@ 0x05 0x00 0x00 0x00 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028 Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{21636D14-864C-473D-BB3C-620D4E78BD00}\Properties\{a111f200-5923-47c0-9a68-d0bafb577901}\0028@ 0xDF 0x07 0x02 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Control\NetworkSetup2\Interfaces\{4F0723EB-FCB1-4B5E-A0C2-0BC1027BC876} |
|
12.02.2016, 10:28
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Internetverbindung plötzlich sehr langsam Hallo und  Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
| Themen zu Internetverbindung plötzlich sehr langsam |
| inter, interne, internetverbindung, kurzer, langsam, onedrive, plötzlich, problem, sehr langsam, verbindung |
Linear-Darstellung
