Hi,

habe heute meinen USB-Stick in den Rechner meines Lehrers stöpseln müssen. Stellt sich heraus, sein PC war infiziert. Yuppi! Steck ich das Ding also in meinen PC (wohlgemerkt, Windows Autorun ist deaktiviert), GData meldet mir, ich hätte einen Dropped:Worm.Generic.325054 (Engine A). Es wurde versucht eine Datei zu öffnen. Komisch, Autorun ist ja deaktiviert. Muss ich mir nun Sorgen machen?

Ungefähr 30 (Edit: GData meldet 425 ... :O) verschiedene Dateien, also eigtl. der ganze Ordner. U.a. .exe Dateien zu meinen Eclipse-Projekten. Ich arbeite immer mit einem Admin-Konto. Ich weiß, nicht das beste... Betriebssystem Windows 10, habe GData am Laufen.

Wie kann ich vermeiden, dass sowas nochmal passiert? Unser Schulnetzwerk ist nicht besonders gut verwaltet und sowas in der Art ist schon mal vorgekommen. Ich nehme an, das ist nur ein Problem beim Lehrer-PC, da er wahrscheinlich alles mit seinem Admin-Konto macht.

Ach ja, GData wollte die Dateien desinfizieren, ist dabei aber nach Minuten nicht vorangekommen, also habe ich den Prozess abgebrochen. Was soll ich jetzt tun?

Vielen Dank schon mal und Grüße!

Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...

• Bitte arbeite alle Schritte der Reihe nach ab.
• Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
• Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
• Bitte kein Crossposting (posten in mehreren Foren).
• Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
• Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
• Poste die Logfiles direkt in Deinen Thread in Code-Tags.
• Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst.

Los geht's:

Schritt 1


Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

• Starte jetzt FRST.
• Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
• Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
• Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

• Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
• Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
• Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
• Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Vielen Dank für deine schnelle Antwort!

Die Logs waren zu groß, um sie zusammen zu verschicken.

Erstmal also die FRST.txt

Code: Alles auswählenAufklappen

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2016
durchgeführt von Niklas (Administrator) auf j (13-06-2016 23:31:51)
Gestartet von C:\Users\Niklas\Desktop
Geladene Profile: Niklas (Verfügbare Profile: Niklas & Niky & DefaultAppPool)
Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Valve Corporation) C:\Steam\Steam.exe
(Valve Corporation) C:\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVKTray\AVKTray.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(G DATA Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltSur64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Users\Niklas\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [552960 2014-10-19] (ROCCAT GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [G Data ASM] => C:\Program Files (x86)\G DATA\InternetSecurity\DelayLoader\AutorunDelayLoader.exe [434296 2015-02-20] (G Data Software AG)
HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\Run: [Steam] => C:\Steam\steam.exe [2917456 2016-06-10] (Valve Corporation)
ShellIconOverlayIdentifiers: [0_sxBZOverlayIcon] -> {6457FB0A-5C02-4393-909C-2139A5D5571F} =>  Keine Datei
ShellIconOverlayIdentifiers: [0_sxConfidentialOIcon] -> {871FE18B-B68D-4437-BC76-6634996CDB97} =>  Keine Datei
ShellIconOverlayIdentifiers: [0_sxForbiddenOIcon] -> {1F03249C-6AB2-4E31-8C10-86F7E31E3B4E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2014-04-24]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\Niklas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk [2014-04-11]
ShortcutTarget: Samsung Magician.lnk -> C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe (Samsung Electronics.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: 192.168.178.20 HP1312nfi.fritz.box
Tcpip\..\Interfaces\{357ff58e-047f-4b3b-a066-1826d6673dfd}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{9921b642-fedc-4c61-9dde-5c74a3506394}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{d3b8243a-4a8e-4c2b-9e50-c4a69b799ef0}: [NameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-04-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-21] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-21] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-04-12] (Microsoft Corporation)
BHO-x32: Microsoft Web Test Recorder 14.0 Helper -> {b924f0b4-0b3c-49c0-bab2-213fb9ebd1d3} -> C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2015-07-07] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Niklas\AppData\Roaming\Mozilla\Firefox\Profiles\z9sdabr0.default-1459136032353
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-21] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeExManDetect -> D:\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2014-03-10] (Adobe Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Keine Datei]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-03] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-04-11] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect -> D:\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems)
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => nicht gefunden

Chrome: 
=======
CHR StartupUrls: Default -> "hxxps://www.google.de/"
CHR Profile: C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-05-06]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2016-05-27]
CHR Extension: (Adblock Plus) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-01]
CHR Extension: (HTTPS Everywhere) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2016-06-11]
CHR Extension: (Little Alchemy) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2016-04-07]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2790368 2016-02-18] (G Data Software AG)
R2 AVKService; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe [970872 2016-02-11] (G Data Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe [4068592 2016-02-18] (G Data Software AG)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3009264 2016-05-17] (Microsoft Corporation)
S3 DAUpdaterSvc; D:\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [25832 2014-04-20] (BioWare)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [236840 2015-02-11] (EasyAntiCheat Ltd)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [Datei ist nicht signiert]
R3 GDFwSvc; C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe [3219872 2016-03-04] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [791160 2016-02-18] (G Data Software AG)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [187024 2016-02-26] (Sandboxie Holdings, LLC)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56040 2015-11-19] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 Avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [71936 2016-05-04] (AVG Technologies CZ, s.r.o.)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [160768 2016-05-19] (G Data Software AG)
S0 GDElam; C:\Windows\System32\DRIVERS\GDElam.sys [117904 2015-01-08] (G Data Software AG)
R1 GDKBB; C:\WINDOWS\system32\drivers\GDKBB64.sys [37400 2016-05-19] (G Data Software AG)
R1 GDKBFlt; C:\WINDOWS\system32\drivers\GDKBFlt64.sys [29720 2016-05-19] (G Data Software AG)
R1 GDMnIcpt; C:\WINDOWS\system32\drivers\MiniIcpt.sys [246272 2016-05-19] (G Data Software AG)
R3 GDPkIcpt; C:\WINDOWS\system32\drivers\PktIcpt.sys [92160 2016-05-19] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [77848 2016-05-19] (G DATA Software AG)
R1 GRD; C:\WINDOWS\system32\drivers\GRD.sys [106272 2016-05-19] (G Data Software)
R3 Hamachi; C:\Windows\System32\drivers\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R1 HookCentre; C:\WINDOWS\system32\drivers\HookCentre.sys [134656 2016-05-19] (G Data Software AG)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31648 2014-04-11] (REALiX(tm))
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek                                            )
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-06-02] ()
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [204944 2016-02-26] (Sandboxie Holdings, LLC)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
U3 idsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-13 23:31 - 2016-06-13 23:32 - 00020680 _____ C:\Users\Niklas\Desktop\FRST.txt
2016-06-13 23:31 - 2016-06-13 23:31 - 02385920 _____ (Farbar) C:\Users\Niklas\Desktop\FRST64.exe
2016-06-13 22:15 - 2016-06-13 22:32 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\DeepBurner
2016-06-13 22:15 - 2016-06-13 22:15 - 03074362 _____ C:\Users\Niklas\Downloads\DeepBurner19_Portable.zip
2016-06-13 22:15 - 2016-06-13 22:15 - 00000000 ____D C:\Users\Niklas\Downloads\DeepBurner19_Portable
2016-06-13 22:10 - 2016-06-13 22:18 - 00000000 ____D C:\Users\Niklas\Downloads\CDBurnerXP-4.5.7.6139
2016-06-13 22:04 - 2016-06-13 22:04 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\Canneverbe Limited
2016-06-13 22:04 - 2016-06-13 22:04 - 00000000 ____D C:\ProgramData\Canneverbe Limited
2016-06-13 21:58 - 2016-06-13 22:00 - 00000172 _____ C:\Users\Niklas\AppData\Roaming\burnaware.ini
2016-06-13 19:22 - 2016-06-13 19:22 - 05353105 _____ C:\Users\Niklas\Desktop\TreeSize345Free.zip
2016-06-13 19:22 - 2016-06-13 19:22 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\JAM Software
2016-06-13 02:11 - 2016-06-13 02:45 - 00002640 _____ C:\Users\Niklas\Desktop\YT comment.txt
2016-06-11 23:47 - 2016-06-12 19:04 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\vlc
2016-06-11 17:04 - 2016-06-11 17:04 - 00004375 _____ C:\Users\Niklas\Desktop\pcasm Assembly book.pdf - Verknüpfung.lnk
2016-06-11 17:04 - 2016-06-11 17:04 - 00004349 _____ C:\Users\Niklas\Desktop\assembly_tutorial.pdf - Verknüpfung.lnk
2016-06-11 15:41 - 2016-06-11 15:42 - 00001588 _____ C:\Users\Niklas\Desktop\Challenge.txt
2016-06-11 05:38 - 2016-06-11 05:38 - 00150988 _____ C:\Users\Niklas\Desktop\Global memory management in C++ in stack or heap_ - Stack Overflow.html
2016-06-11 05:38 - 2016-06-11 05:38 - 00000000 ____D C:\Users\Niklas\Desktop\Global memory management in C++ in stack or heap_ - Stack Overflow_files
2016-06-07 16:47 - 2016-06-07 16:47 - 00001010 _____ C:\Users\Niklas\Desktop\Open Broadcaster Software.lnk
2016-06-07 16:47 - 2016-06-07 16:47 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2016-06-07 16:47 - 2016-06-07 16:47 - 00000000 ____D C:\Program Files\OBS
2016-06-07 16:47 - 2016-06-07 16:47 - 00000000 ____D C:\Program Files (x86)\OBS
2016-06-07 11:52 - 2016-06-07 11:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
2016-06-07 10:46 - 2016-06-07 11:48 - 00000000 ____D C:\Users\Niklas\Documents\ezvid
2016-06-07 10:46 - 2016-06-07 10:46 - 00000000 ____D C:\Users\Niklas\AppData\Local\ezvid,_inc
2016-06-07 02:39 - 2016-06-11 03:26 - 00005173 _____ C:\Users\Niklas\Desktop\C-Programming-K&R.pdf - Verknüpfung.lnk
2016-06-06 20:28 - 2016-06-06 20:28 - 00004702 _____ C:\Users\Niklas\Desktop\The C++ Programming Language Straustrup4th.pdf - Verknüpfung.lnk
2016-05-30 18:14 - 2016-05-30 18:14 - 00000000 ____D C:\Users\Niklas\Desktop\main
2016-05-27 17:23 - 2016-05-04 04:23 - 00129824 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-05-27 17:23 - 2016-05-04 04:22 - 00130848 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-05-27 17:23 - 2016-05-04 04:22 - 00045344 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-05-27 17:23 - 2016-05-04 04:22 - 00040224 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-05-27 17:22 - 2016-05-27 17:22 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-05-27 17:22 - 2016-05-20 04:08 - 00533560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-05-27 17:22 - 2016-05-20 04:08 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-05-27 17:21 - 2016-05-20 10:03 - 00213952 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 39977920 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 35117112 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 31639096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 25401280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 21802816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 21346520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 18145256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 17740664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 17662432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 17379520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 10642912 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 08733280 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 02791360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 02419768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436822.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 01573432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436822.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00985024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00909760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00772152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00708032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00669952 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00565208 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00549240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00452616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00178136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00155952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00153416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00131768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-05-27 17:20 - 2016-05-20 10:03 - 00000594 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-05-27 17:20 - 2016-05-20 10:03 - 00000594 _____ C:\WINDOWS\system32\nv-vk64.json
2016-05-27 17:17 - 2016-04-14 07:38 - 00113216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-05-27 17:17 - 2016-04-14 07:38 - 00102976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-05-27 17:10 - 2016-05-27 17:10 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2016-05-22 21:53 - 2016-05-23 01:56 - 00000000 ____D C:\Users\Niklas\Documents\Dolphin Emulator
2016-05-20 17:28 - 2016-06-06 22:00 - 00000655 _____ C:\Users\Niklas\Desktop\Eclipse Java Mars.lnk
2016-05-20 17:17 - 2016-05-20 17:17 - 00002816 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-05-20 05:27 - 2016-05-20 05:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-05-20 04:03 - 2016-05-20 04:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.5.1
2016-05-19 23:56 - 2016-05-23 01:28 - 00002546 _____ C:\WINDOWS\Sandboxie.ini
2016-05-19 23:56 - 2016-05-19 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
2016-05-19 23:56 - 2016-05-19 23:56 - 00000000 ____D C:\Program Files\Sandboxie
2016-05-19 22:29 - 2016-05-19 22:29 - 00106272 _____ (G Data Software) C:\WINDOWS\system32\Drivers\GRD.sys
2016-05-19 22:29 - 2016-05-19 22:29 - 00018160 _____ (G Data Software) C:\WINDOWS\system32\Drivers\GdPhyMem.sys
2016-05-19 21:32 - 2016-05-19 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA INTERNET SECURITY
2016-05-19 21:17 - 2016-05-19 21:17 - 00000000 ____D C:\Users\Niklas\AppData\Local\G DATA
2016-05-19 21:16 - 2016-05-19 21:16 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\G Data
2016-05-19 20:55 - 2016-05-19 21:32 - 00092160 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\PktIcpt.sys
2016-05-19 20:54 - 2016-05-19 21:32 - 00246272 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\MiniIcpt.sys
2016-05-19 20:54 - 2016-05-19 21:32 - 00160768 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\GDBehave.sys
2016-05-19 20:54 - 2016-05-19 21:32 - 00134656 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\HookCentre.sys
2016-05-19 20:54 - 2016-05-19 21:32 - 00077848 _____ (G DATA Software AG) C:\WINDOWS\system32\Drivers\gdwfpcd64.sys
2016-05-19 20:54 - 2016-05-19 21:32 - 00037400 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\GDKBB64.sys
2016-05-19 20:54 - 2016-05-19 21:32 - 00029720 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\GDKBFlt64.sys
2016-05-19 20:54 - 2016-05-19 20:54 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_GDKBFlt64_01007.Wdf
2016-05-19 20:54 - 2016-05-19 20:54 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_GDKBB64_01007.Wdf
2016-05-19 20:53 - 2016-05-19 20:53 - 00000000 ____D C:\Program Files (x86)\G DATA
2016-05-19 20:46 - 2016-05-19 21:54 - 00000000 ____D C:\ProgramData\G Data
2016-05-18 03:47 - 2016-05-18 03:54 - 00219896 _____ C:\WINDOWS\system32\EasyAntiCheat.sys
2016-05-17 01:14 - 2016-05-17 01:14 - 00000000 ____D C:\Users\Niklas\Desktop\BS

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-13 23:31 - 2015-02-05 01:34 - 00000000 ____D C:\FRST
2016-06-13 23:31 - 2014-04-11 17:12 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-13 23:26 - 2015-02-10 17:42 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-06-13 23:25 - 2015-02-10 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-06-13 23:25 - 2015-02-10 17:41 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-06-13 23:23 - 2014-04-12 00:04 - 00000000 ____D C:\Users\Niklas\Documents\Outlook-Dateien
2016-06-13 22:57 - 2016-02-05 21:07 - 02113342 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-13 22:57 - 2015-10-30 20:35 - 00898014 _____ C:\WINDOWS\system32\perfh007.dat
2016-06-13 22:57 - 2015-10-30 20:35 - 00201500 _____ C:\WINDOWS\system32\perfc007.dat
2016-06-13 22:57 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-13 22:52 - 2015-12-27 20:35 - 00000000 ____D C:\Users\Niklas\AppData\Local\CrashDumps
2016-06-13 22:52 - 2014-04-11 23:31 - 00001118 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-13 22:52 - 2014-04-11 21:15 - 00000000 ____D C:\Steam
2016-06-13 22:51 - 2016-02-05 21:26 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-13 22:49 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-13 22:47 - 2014-04-11 17:52 - 00003116 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2016-06-13 22:43 - 2009-07-14 05:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-06-13 21:49 - 2014-04-11 23:31 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-13 19:43 - 2016-02-05 21:08 - 00000000 ____D C:\Users\Niklas
2016-06-13 19:38 - 2014-04-11 23:31 - 00000000 ____D C:\Users\Niklas\AppData\Local\Google
2016-06-13 19:35 - 2014-12-30 22:12 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\TS3Client
2016-06-13 19:10 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-13 19:05 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-13 18:39 - 2015-10-30 08:28 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2016-06-12 23:12 - 2014-04-11 22:20 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\Skype
2016-06-12 21:28 - 2015-12-20 07:45 - 00000000 ____D C:\Users\Niklas\.p2
2016-06-12 21:28 - 2014-12-03 21:22 - 00000000 ____D C:\Users\Niklas\AppData\Local\Eclipse
2016-06-09 22:56 - 2015-06-21 13:51 - 00001709 _____ C:\Users\Niklas\Desktop\Skyrim.lnk
2016-06-08 22:52 - 2014-04-11 23:33 - 00002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-08 21:51 - 2014-04-11 17:50 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-06-08 21:50 - 2014-04-11 17:50 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-06-07 22:44 - 2014-10-09 14:56 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\OBS
2016-06-07 19:28 - 2015-12-13 01:17 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-07 19:28 - 2014-04-11 22:20 - 00000000 ____D C:\ProgramData\Skype
2016-06-07 12:16 - 2014-04-14 13:25 - 00004535 _____ C:\Users\Niklas\AppData\Roaming\CamStudio.cfg
2016-06-07 12:16 - 2014-04-14 13:25 - 00000408 _____ C:\Users\Niklas\AppData\Roaming\CamShapes.ini
2016-06-07 12:16 - 2014-04-14 13:25 - 00000408 _____ C:\Users\Niklas\AppData\Roaming\CamLayout.ini
2016-06-07 12:16 - 2014-04-14 13:25 - 00000096 _____ C:\Users\Niklas\AppData\Roaming\CamData.ini
2016-06-07 11:39 - 2014-04-11 23:44 - 00238080 _____ C:\Users\Niklas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-06-04 13:22 - 2015-12-20 07:45 - 00000000 ____D C:\Users\Niklas\.eclipse
2016-06-04 13:21 - 2015-11-10 01:41 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-06-04 01:37 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-06-02 18:06 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-02 01:03 - 2015-08-21 20:55 - 00002372 _____ C:\Users\Niklas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-06-02 01:03 - 2015-08-21 20:55 - 00000000 ___RD C:\Users\Niklas\OneDrive
2016-06-01 23:00 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-06-01 23:00 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-06-01 23:00 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-06-01 23:00 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-06-01 23:00 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2016-06-01 23:00 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-06-01 23:00 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\servicing
2016-05-29 18:08 - 2015-12-20 05:46 - 00000000 ____D C:\Users\Niklas\Documents\Visual Studio 2015
2016-05-27 17:56 - 2016-03-18 18:30 - 00000000 ____D C:\WINDOWS\Minidump
2016-05-27 17:22 - 2016-02-05 21:07 - 00000000 ____D C:\ProgramData\NVIDIA
2016-05-27 17:21 - 2016-02-05 21:06 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-05-27 17:17 - 2014-04-29 13:50 - 00000000 ____D C:\Users\Niklas\AppData\Local\NVIDIA Corporation
2016-05-27 17:17 - 2014-04-11 17:17 - 00000000 ____D C:\Users\Niklas\AppData\Local\NVIDIA
2016-05-27 13:28 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-05-27 13:28 - 2014-04-11 23:14 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-05-22 23:02 - 2015-10-11 21:51 - 13509184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-05-20 21:19 - 2016-02-05 21:06 - 05024192 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-05-20 17:28 - 2015-12-20 08:10 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse
2016-05-20 17:24 - 2015-12-24 17:23 - 00000000 ____D C:\Users\Niklas\.oracle_jre_usage
2016-05-20 10:03 - 2015-10-11 21:51 - 20305768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-05-20 10:03 - 2015-10-11 21:51 - 14410024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-05-20 10:03 - 2015-10-11 21:51 - 03811440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-05-20 10:03 - 2015-10-11 21:51 - 03371648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-05-20 10:03 - 2015-10-11 21:51 - 00040084 _____ C:\WINDOWS\system32\nvinfo.pb
2016-05-20 04:21 - 2015-10-24 16:46 - 00000000 ____D C:\ProgramData\Avg
2016-05-20 04:08 - 2016-02-05 21:07 - 06348344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-05-20 04:08 - 2016-02-05 21:07 - 02454976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-05-20 04:08 - 2016-02-05 21:07 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-05-20 04:08 - 2016-02-05 21:07 - 01352760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-05-20 04:08 - 2016-02-05 21:07 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-05-20 04:08 - 2016-02-05 21:07 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-05-19 22:22 - 2015-04-16 15:56 - 00000000 ____D C:\Program Files (x86)\IObit
2016-05-19 21:31 - 2015-10-30 09:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-05-19 20:37 - 2015-12-30 20:32 - 00000000 ____D C:\Users\Niky\AppData\Roaming\AVG
2016-05-19 20:37 - 2015-10-24 16:49 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\AVG
2016-05-19 20:36 - 2015-05-26 12:05 - 00000000 ____D C:\Users\Niklas\AppData\Local\Avg
2016-05-18 10:37 - 2016-02-05 21:07 - 06448223 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-05-17 01:14 - 2015-12-20 17:51 - 00000000 ____D C:\Users\Niklas\Desktop\Eigentlich Müll
2016-05-16 23:45 - 2015-09-26 00:11 - 00000000 ____D C:\Users\Niklas\Desktop\My pics

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-05-10 15:03 - 2015-05-10 15:03 - 0000132 _____ () C:\Users\Niklas\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2015-12-20 18:07 - 2015-12-20 18:07 - 0000033 _____ () C:\Users\Niklas\AppData\Roaming\AdobeWLCMCache.dat
2016-06-13 21:58 - 2016-06-13 22:00 - 0000172 _____ () C:\Users\Niklas\AppData\Roaming\burnaware.ini
2014-04-14 13:25 - 2016-06-07 12:16 - 0000096 _____ () C:\Users\Niklas\AppData\Roaming\CamData.ini
2014-04-14 13:25 - 2016-06-07 12:16 - 0000408 _____ () C:\Users\Niklas\AppData\Roaming\CamLayout.ini
2014-04-14 13:25 - 2016-06-07 12:16 - 0000408 _____ () C:\Users\Niklas\AppData\Roaming\CamShapes.ini
2014-04-14 13:25 - 2016-06-07 12:16 - 0004535 _____ () C:\Users\Niklas\AppData\Roaming\CamStudio.cfg
2014-08-07 15:28 - 2014-08-07 15:28 - 0002181 _____ () C:\Users\Niklas\AppData\Roaming\FoxitReaderUpdateInfo.txt
2016-05-19 20:54 - 2016-05-19 20:54 - 0000000 _____ () C:\Users\Niklas\AppData\Roaming\gdfw.log
2016-05-19 20:54 - 2016-05-19 20:54 - 0000779 _____ () C:\Users\Niklas\AppData\Roaming\gdscan.log
2014-10-03 20:40 - 2014-10-05 17:09 - 0000098 _____ () C:\Users\Niklas\AppData\Roaming\LauncherSettings_live.cfg
2014-04-14 13:24 - 2014-10-09 14:44 - 0000096 _____ () C:\Users\Niklas\AppData\Roaming\version2.xml
2015-04-07 07:58 - 2015-05-03 22:14 - 0000600 _____ () C:\Users\Niklas\AppData\Roaming\winscp.rnd
2014-04-11 23:44 - 2016-06-07 11:39 - 0238080 _____ () C:\Users\Niklas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-01 00:41 - 2014-11-01 00:41 - 0000891 _____ () C:\Users\Niklas\AppData\Local\recently-used.xbel
2014-05-31 13:57 - 2016-01-25 22:15 - 0007646 _____ () C:\Users\Niklas\AppData\Local\Resmon.ResmonCfg
2014-04-24 17:51 - 2014-04-24 17:54 - 0000850 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-06-09 21:53

==================== Ende von FRST.txt ============================
         

Addition.txt

Code: Alles auswählenAufklappen

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:13-06-2016
durchgeführt von Niklas (2016-06-13 23:32:30)
Gestartet von C:\Users\Niklas\Desktop
Windows 10 Pro Version 1511 (X64) (2016-02-05 19:28:22)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1991814362-3727001073-523396128-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1991814362-3727001073-523396128-503 - Limited - Disabled)
Gast (S-1-5-21-1991814362-3727001073-523396128-501 - Limited - Disabled)
Niklas (S-1-5-21-1991814362-3727001073-523396128-1000 - Administrator - Enabled) => C:\Users\Niklas
Niky (S-1-5-21-1991814362-3727001073-523396128-1003 - Limited - Enabled) => C:\Users\Niky

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: G DATA INTERNET SECURITY (Enabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: G DATA INTERNET SECURITY (Enabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G*DATA Personal Firewall (Enabled) {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

64 Bit HP CIO Components Installer (Version: 4.2.1 - Hewlett-Packard) Hidden
7-Zip 9.38 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0938-000001000000}) (Version: 9.38.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Production Premium (HKLM-x32\...\{045D4EDF-8DC1-43D7-BAFC-7AAEF99C7168}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\{2AF045BC-E8F8-4F17-8095-68E14ECC234F}) (Version: 12.1.0.150 - Adobe Systems, Inc)
AlienFX for KoneXTD (HKLM-x32\...\InstallShield_{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.02 - Roccat GmbH)
AlienFX for KoneXTD (Version: 1.02 - Roccat GmbH) Hidden
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation)
Amnesia: The Dark Descent (HKLM-x32\...\Steam App 57300) (Version:  - Frictional Games)
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version:  - Reloaded Productions)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{903D0F33-D3CF-48D6-967D-84004089428A}) (Version: 4.0.51203.1 - Microsoft Corporation)
Archeblade (HKLM-x32\...\Steam App 207230) (Version:  - CodeBrush Games)
Arena 3.5.1 (HKLM-x32\...\Arena 3.5.1_is1) (Version:  - )
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version:  - The Behemoth)
BIT.TRIP BEAT (HKLM-x32\...\Steam App 63700) (Version:  - Gaijin Games)
BIT.TRIP RUNNER (HKLM-x32\...\Steam App 63710) (Version:  - Gaijin Games)
BIT.TRIP VOID (HKLM-x32\...\Steam App 205070) (Version:  - Gaijin Games)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
BlazBlue: Calamity Trigger (HKLM-x32\...\Steam App 263300) (Version:  - Arc System Works Co., Ltd.)
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blender (HKLM\...\{D593042C-8739-488D-93B8-E6B202013E57}) (Version: 2.76.1 - Blender Foundation)
Blender (HKLM-x32\...\Steam App 365670) (Version:  - Blender Foundation)
Brain Workshop 4.8.4 (HKLM-x32\...\Brain Workshop_is1) (Version: 4.8.4 - Paul Hoskinson & Jonathan Toomim)
Brawlhalla (HKLM-x32\...\Steam App 291550) (Version:  - Blue Mammoth Games)
BufferChm (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Burnout Paradise: The Ultimate Box (HKLM-x32\...\Steam App 24740) (Version:  - Criterion Games)
calibre 64bit (HKLM\...\{B1A4D7FA-D994-4304-8A31-D68ECF2B813D}) (Version: 2.47.0 - Kovid Goyal)
CamStudio 2.7 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7 - CamStudio Open Source)
CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform)
Cheat Engine 6.5.1 (HKLM-x32\...\Cheat Engine 6.5.1_is1) (Version:  - Cheat Engine)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version:  - Playsaurus)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
Creation Kit (HKLM-x32\...\Steam App 202480) (Version:  - bgs.bethsoft.com)
Crysis 2 Maximum Edition (HKLM-x32\...\Steam App 108800) (Version:  - Crytek Studios)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version:  - FromSoftware)
DARK SOULS™ II: Scholar of the First Sin (HKLM-x32\...\Steam App 335300) (Version:  - FromSoftware, Inc)
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version:  - Eidos Montreal)
DeviceDiscovery (x32 Version: 100.0.190.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
DirectX for Managed Code (HKLM\...\{FDF7187F-3960-4BEC-916D-98C9A83E3A68}_is1) (Version: 1.0.0.0 - Sereby Corporation)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dishonored (HKLM-x32\...\Steam App 205100) (Version:  - Arkane Studios)
Divinity II: Developer's Cut (HKLM-x32\...\Steam App 219780) (Version:  - Larian Studios)
Dotfuscator and Analytics Community Edition 5.19.0 (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
Double Action: Boogaloo (HKLM-x32\...\Steam App 317360) (Version:  - Double Action Factory)
Dragon Age: Origins - Ultimate Edition (HKLM-x32\...\Steam App 47810) (Version:  - BioWare)
Dragon Nest Europe (HKLM-x32\...\Steam App 258700) (Version:  - Eyedentity Games)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Entity Framework 6.1.3 Tools  for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Eternal Senia (HKLM-x32\...\Steam App 351640) (Version:  - Holy Priest)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Firefall (HKLM-x32\...\Steam App 227700) (Version:  - Red 5 Studios)
FORCED (HKLM-x32\...\Steam App 249990) (Version:  - BetaDwarf)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FreeStyle2: Street Basketball (HKLM-x32\...\Steam App 339610) (Version:  - Joycity)
G DATA INTERNET SECURITY (HKLM-x32\...\{AC68D2FF-1674-4C16-A536-A69FC11BBD82}) (Version: 25.1.0.12 - G DATA Software AG)
Galacide (HKLM-x32\...\Steam App 356790) (Version:  - Puny Human)
gbrainy 2.06 (HKLM-x32\...\gbrainy) (Version: 2.06 - )
Geometry Dash (HKLM-x32\...\Steam App 322170) (Version:  - RobTop Games)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
GitHub (HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\5f7eb300e2ea4ebf) (Version: 2.13.1.2 - GitHub, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.84 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Gothic 3 (HKLM-x32\...\Steam App 39500) (Version:  - Piranha – Bytes)
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Grand Theft Auto: Episodes from Liberty City (HKLM-x32\...\Steam App 12220) (Version:  - Rockstar North / Toronto)
GunZ 2: The Second Duel (HKLM-x32\...\Steam App 242720) (Version:  - Masangsoft, Inc.)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
Half-Life 2: Episode Two (HKLM-x32\...\Steam App 420) (Version:  - Valve)
Half-Life 2: Lost Coast (HKLM-x32\...\Steam App 340) (Version:  - Valve)
Hitman: Blood Money (HKLM-x32\...\Steam App 6860) (Version:  - IO Interactive)
HotPotatoes v 6.3.0.5 (HKLM-x32\...\hotpot_is1) (Version:  - HalfBaked)
HP Color LaserJet CM1312 MFP Series 5.1 (HKLM\...\{8EEDB90E-6ABC-42bb-AD4C-39DEE05E3EEA}) (Version: 5.1 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
hppCLJCM1312 (x32 Version: 005.001.00142 - Hewlett-Packard) Hidden
hppFaxDrvCM1312 (x32 Version: 005.000.00001 - Hewlett-Packard) Hidden
hppFaxUtilityCM1312 (x32 Version: 005.001.00137 - Ihr Firmenname) Hidden
hppFonts (x32 Version: 001.001.00061 - Hewlett-Packard) Hidden
hppManualsCM1312 (x32 Version: 005.001.00145 - Ihr Firmenname) Hidden
hppQFolderCM1312 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
hppScanToCM1312 (x32 Version: 005.001.00140 - Ihr Firmenname) Hidden
hppSendFaxCM1312 (x32 Version: 005.000.00001 - Ihr Firmenname) Hidden
HWiNFO64 Version 4.36 (HKLM\...\HWiNFO64_is1) (Version: 4.36 - Martin Malík - REALiX)
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
Hyperdimension Neptunia Re;Birth1 (HKLM-x32\...\Steam App 282900) (Version:  - Idea Factory, Inc.)
IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version:  - )
Inno Setup Version 5.5.5 (HKLM-x32\...\Inno Setup 5_is1) (Version: 5.5.5 - jrsoftware.org)
Ionball 2 : Ionstorm (HKLM-x32\...\Steam App 287120) (Version:  - Ironsun Studios)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java SE Development Kit 8 Update 77 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180770}) (Version: 8.0.770.3 - Oracle Corporation)
Killer is Dead (HKLM-x32\...\Steam App 261110) (Version:  - KADOKAWA GAMES / GRASSHOPPER MANUFACTURE)
Kingdoms of Amalur: Reckoning™ (HKLM-x32\...\Steam App 102500) (Version:  - Big Huge Games)
Kingdoms Rise (HKLM-x32\...\Steam App 248630) (Version:  - Flyleap Studios Pty. Ltd.)
Kingdoms Rise Test (HKLM-x32\...\Steam App 267110) (Version:  - )
Krita Desktop (x64) 2.8.3.0 (HKLM\...\{C954F6B7-202B-4811-8A7E-1BFBCD3A09DD}) (Version: 2.8.3.0 - KO GmbH)
Langenscheidt Vokabeltrainer 7.0 Englisch (HKLM-x32\...\{3D06A72A-5D78-4840-B0AE-110008653233}) (Version: 7.0.20 - Langenscheidt)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Lichdom: Battlemage (HKLM-x32\...\Steam App 261760) (Version:  - Xaviant)
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
LOOT (HKLM-x32\...\LOOT) (Version: 0.7.1 - LOOT Development Team)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version:  - Paradox North)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
METAL GEAR RISING: REVENGEANCE (HKLM-x32\...\Steam App 235460) (Version:  - PlatinumGames)
Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version:  - )
Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Help Viewer 2.2 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.2 Sprachpaket - DEU) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 15.0.4823.1004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB  (HKLM\...\{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU  (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (14.0.50616.0) (HKLM-x32\...\{FA604873-01A0-4834-AF87-418534E465BB}) (Version: 14.0.50616.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (14.0.50616.0) (HKLM-x32\...\{58246C80-3941-4B69-AE31-264644E2ADB8}) (Version: 14.0.50616.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{9634d50a-0c4d-4f52-8a9f-894a2baae370}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{307a22b8-8353-4c5e-b67b-2404c5734558}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Enterprise 2015 with Update 1 (HKLM-x32\...\{744ce637-0100-4143-8721-152854cde612}) (Version: 14.0.24720.0 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Missing Translation (HKLM-x32\...\Steam App 395520) (Version:  - AlPixel Games)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Mount Your Friends (HKLM-x32\...\Steam App 296470) (Version:  - Stegersaurus Software Inc.)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 45.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 45.0.1 (x86 de)) (Version: 45.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MTP Porting Kit (HKLM-x32\...\{353B1E6D-7073-4450-8C80-699BD8FCFB49}) (Version: 12.0.0 - Microsoft Corp)
Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
My Game Long Name (HKLM\...\UDK-3b062e57-7df6-497f-9e36-a55150b2aaa9) (Version:  - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-6d17cd2a-33a6-44f1-86c0-d0a1db54d2be) (Version:  - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-7e8a9736-4f23-489f-8f4a-b8473c112fb6) (Version:  - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-82ba49fe-db2d-49e8-9b53-af332ad36c11) (Version:  - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-94d57964-b741-4087-b502-435df84c949d) (Version:  - Epic Games, Inc.)
NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst (HKLM-x32\...\Steam App 234670) (Version:  - CyberConnect 2)
NEOTOKYO° (HKLM-x32\...\Steam App 244630) (Version:  - STUDIO RADI-8)
NetBeans IDE 8.1 (HKLM\...\nbi-nb-base-8.1.0.0.201510222201) (Version: 8.1 - NetBeans.org)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.56.1 - Black Tree Gaming)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Operation Flashpoint: Dragon Rising (HKLM-x32\...\Steam App 12830) (Version:  - Codemasters Studios)
Operation Flashpoint: Red River (HKLM-x32\...\Steam App 44340) (Version:  - Codemasters Action Studio)
Overlord: Raising Hell (HKLM-x32\...\Steam App 12710) (Version:  - Triumph Studios)
paint.net (HKLM\...\{DADC2AF6-DC9F-4BCF-BFCE-DCEC16EF507C}) (Version: 4.0.9 - dotPDN LLC)
Patch testing for Chivalry (HKLM-x32\...\Steam App 232210) (Version:  - )
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Sony Online Entertainment)
Port of Call (HKLM-x32\...\Steam App 356520) (Version:  - Underdog Games)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
POSTAL 2 (HKLM-x32\...\Steam App 223470) (Version:  - Running With Scissors)
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Quake Live (HKLM-x32\...\Steam App 282440) (Version:  - id Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Rise of the Argonauts (HKLM-x32\...\Steam App 12770) (Version:  - Liquid Entertainment)
Risen (HKLM-x32\...\Steam App 40300) (Version:  - Piranha – Bytes)
Rising Storm Beta (HKLM-x32\...\Steam App 224780) (Version:  - )
RivaTuner Statistics Server 6.4.0 (HKLM-x32\...\RTSS) (Version: 6.4.0 - Unwinder)
Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0013 - Roccat GmbH)
Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.24723 - Microsoft Corporation) Hidden
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.3.0 - Samsung Electronics)
Sandboxie 5.10 (64-bit) (HKLM\...\Sandboxie) (Version: 5.10 - Sandboxie Holdings, LLC)
Secrets of Grindea (HKLM-x32\...\Steam App 269770) (Version:  - Pixel Ferrets)
ShareX (HKLM-x32\...\Steam App 400040) (Version:  - ShareX Team)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Source SDK (HKLM-x32\...\Steam App 211) (Version:  - Valve)
Star Wars Jedi Knight: Jedi Academy (HKLM-x32\...\Steam App 6020) (Version:  - Raven Software)
StarUML 5.0.2.1570 (HKLM-x32\...\StarUML_is1) (Version:  - Plastic Software, Inc.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version:  - Terry Cavanagh)
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version:  - Team Meat)
Synergy (HKLM-x32\...\Steam App 17520) (Version:  - Synergy Team)
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.24712 - Microsoft Corporation) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\1207665503_is1) (Version: 2.6.0.8 - GOG.com)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
The Elder Scrolls III: Morrowind (HKLM-x32\...\Steam App 22320) (Version:  - Bethesda Game Studios®)
The Elder Scrolls IV: Oblivion  (HKLM-x32\...\Steam App 22330) (Version:  - Bethesda Game Studios)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Way of Life (HKLM-x32\...\Steam App 310370) (Version:  - Fabio Ferrara)
theHunter (HKLM-x32\...\Steam App 253710) (Version:  - Expansive Worlds)
Toribash (HKLM-x32\...\Steam App 248570) (Version:  - Nabi Studios)
TrayApp (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Trine (HKLM-x32\...\Steam App 35700) (Version:  - Frozenbyte)
TypeScript Power Tool (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.7.4.0 (HKLM-x32\...\{33e2204a-4ec6-4458-895a-47e2a404d990}) (Version: 1.7.24720.0 - Microsoft Corporation)
Ultra Street Fighter IV (HKLM-x32\...\Steam App 45760) (Version:  - Capcom)
Universal CRT Extension SDK (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Redistributable (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Unreal Development Kit: 2012-10 (HKLM\...\UDK-af52a7d6-4101-464c-b6fd-0fdf839d0d3b) (Version:  - Epic Games, Inc.)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vokabeltrainer-Update 7.0.137 (HKLM-x32\...\{8EF577BD-32D3-4FDD-821D-B6A248539639}) (Version: 7.0.137 - Langenscheidt)
VS Update core components (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
VVVVVV (HKLM-x32\...\Steam App 70300) (Version:  - Terry Cavanagh)
War of the Roses (HKLM-x32\...\Steam App 42160) (Version:  - Fatshark)
War of the Roses Balance Beta (HKLM-x32\...\Steam App 206980) (Version:  - )
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Warhammer 40,000: Dawn of War - Game of the Year Edition (HKLM-x32\...\Steam App 4570) (Version:  - Relic Entertainment)
Warhammer® 40,000™: Dawn of War® II (HKLM-x32\...\Steam App 15620) (Version:  - Relic Entertainment)
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WebReg (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinSCP 5.7.1 (HKLM-x32\...\winscp3_is1) (Version: 5.7.1 - Martin Prikryl)
WinUHA 2.0 RC1 (2005.02.27) (HKLM-x32\...\WinUHA_is1) (Version:  - Klaimsoft)
x64 Components v4.5.6 (HKLM\...\Advanced x64Components_is1) (Version: 4.5.6 - Shark007)
Yomi (HKLM-x32\...\Steam App 287960) (Version:  - )

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1991814362-3727001073-523396128-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Niklas\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {053E98FD-C447-4E83-BEC8-739ABC6CE5AC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {0A5439B1-6292-4456-B7C7-EBF695BFF61F} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {119AD33F-BA4E-416B-896C-FCF4D4190D6A} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {15796A4C-06FC-4EA4-8FE7-EB2178463339} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {1CE54359-3883-49B3-B8F7-CFF2AB594B3B} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {264A4DCA-030B-4BDB-9C29-C1E51FB042C6} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {26AB064D-262B-42E9-99F9-ABBC0E3B5722} - System32\Tasks\{2E2AF441-187E-4A28-A6F6-9A0BACF96B3D} => pcalua.exe -a I:\INSTALL.EXE -d I:\
Task: {31E7AFE1-E39B-4450-BF17-73D4E8C07C96} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {3B5B8789-3099-4F2E-A625-A87B5172EFE4} - System32\Tasks\0715avUpdateInfo => C:\ProgramData\Avg_Update_0715av\0715av_AVG-Secure-Search-Update.exe [2015-07-07] ()
Task: {3CC00D3F-957B-4673-8828-FB2193C61B09} - System32\Tasks\SmartDefrag4_Update => C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe
Task: {3FE14628-8C56-48DC-8E57-AEE521FF6AF5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {40648E45-2BCE-488F-B66F-203B2BADD447} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
Task: {42B5A4DE-6967-4C09-B711-EF8A91969BA5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {45B775A2-36D8-4250-AB89-283508C84C9C} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {4928ED5D-8CD7-474C-9CC9-FB167724F138} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {4DD15BDA-AC36-4ED1-8B0F-496B1840ADC1} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {53C4BA89-2002-4233-B70D-C1F475DC0595} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-28] (Microsoft Corporation)
Task: {656F97F7-51EC-4C45-87D3-A42519832DB2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {6A2FB1A7-3773-47A7-B405-CA65F275EC8C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {6F18BA9A-2104-4C65-949C-308ED85F7CF6} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {700FFD3E-447C-4299-B752-446E8A8F523B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {7709C656-3B54-4CEA-BD8F-8B1BAB62DD87} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {83F53A5D-C3B5-4B3A-B823-05AB7C2D1F73} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {885527DE-932E-41EF-A75B-263C19342E25} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-06-02] ()
Task: {889990BF-6D25-4C2A-9462-8600F2DA5842} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {90222C39-BF14-45BB-8225-B5209DA38012} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11] (Adobe Systems Incorporated)
Task: {922A75BF-AE5B-4ED7-8066-7B29722CE810} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {987A25A4-7433-4C60-B98C-809A29286AC1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {9B289798-1D6B-40FD-957C-16438FE6FC0A} - System32\Tasks\CCleanerSkipUAC => D:\CCleaner\CCleaner.exe [2016-04-15] (Piriform Ltd)
Task: {9EA574CC-B94E-438A-B5C5-5778BBF941E1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {A1FA83E8-BAEE-48D9-8E87-18F70BD79AB9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {A6C2A848-951C-4C88-AED7-93C154DCD9CA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {AF091B02-4323-4EBB-9AEA-F2865D708A17} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {B230A630-790F-4469-89DE-88FC249E18BD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {B242ED1E-0C48-4C0C-89B2-24E12F0CAE21} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {B76E8E95-7FF6-46B8-9E07-D060C6772304} - System32\Tasks\1015avUpdateInfo => C:\ProgramData\Avg_Update_1015av\1015av_AVG-Secure-Search-Update.exe [2015-10-11] ()
Task: {B799C48B-86FD-4746-984D-D7C9FA7F36BF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {C5218C51-925A-4FC2-A545-9B43D889CCB3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
Task: {C885A0F2-84E2-4040-BBB2-875FA26003E8} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {CB3B06FB-C004-4430-A8C5-4D8A3E3D1D8C} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {CBF5A797-7FBC-4F53-82F0-3400257CF7A7} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {CC4DF82B-4D06-4B34-8BBE-49EDE05C5CD9} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {D0F81F84-9711-4A7D-9D25-2D3A629A4215} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {E08382DB-B678-4A30-8A47-762301B46BD9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {E8EC30FC-01C9-4527-880C-26DE2A4A4368} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-10] (Microsoft Corporation)
Task: {EC1048B2-76E9-4EE1-AE1F-E6CEA878FBDF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {ECFA08E1-C541-4131-B52E-D184320A9EB6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-28] (Microsoft Corporation)
Task: {EEDFD503-38FA-496E-A393-5E10417BB04D} - System32\Tasks\SmartDefrag4_Startup => C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe
Task: {F53D9CE7-CCE1-45E5-8158-E575CA958544} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\0715avUpdateInfo.job => C:\ProgramData\Avg_Update_0715av\0715av_AVG-Secure-Search-Update.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-02-05 21:07 - 2016-05-20 04:08 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-04-11 23:14 - 2015-10-13 05:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-05-27 17:17 - 2016-05-02 07:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-12-27 05:48 - 2016-05-02 07:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-05-27 17:17 - 2016-05-02 07:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-05-27 17:17 - 2016-05-02 07:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-02-11 05:43 - 2016-02-11 05:43 - 00387704 ____N () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll
2016-05-27 17:17 - 2016-05-02 07:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-05-27 17:17 - 2016-05-02 07:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-05-27 17:17 - 2016-05-02 07:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-05-27 17:01 - 2016-05-02 07:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-05-27 17:17 - 2016-05-02 07:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-05-27 17:17 - 2016-05-02 07:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-04-13 13:41 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2014-11-09 13:37 - 2015-10-21 20:09 - 00403456 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks64.dll
2015-06-02 03:19 - 2015-06-02 03:19 - 00578272 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
2016-04-13 13:41 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-06-02 01:03 - 2016-06-02 01:03 - 00959168 _____ () C:\Users\Niklas\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-04-19 16:41 - 2016-04-19 16:41 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-02-06 16:08 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-10 19:48 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-21 20:33 - 2015-10-21 20:33 - 00205000 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
2015-10-21 20:08 - 2015-10-21 20:08 - 00026112 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
2015-10-21 20:08 - 2015-10-21 20:08 - 00088576 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
2016-06-08 22:52 - 2016-06-04 03:01 - 02334360 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.84\libglesv2.dll
2016-06-08 22:52 - 2016-06-04 03:01 - 00105112 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.84\libegl.dll
2016-05-10 19:49 - 2016-04-23 06:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-10 19:49 - 2016-04-23 05:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-05-10 19:49 - 2016-04-23 05:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-10 19:49 - 2016-04-23 06:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-05-18 13:43 - 2015-05-18 13:43 - 00057856 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2015-05-18 13:43 - 2015-05-18 13:43 - 00218624 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2015-05-18 13:43 - 2015-05-18 13:43 - 00071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2015-05-22 12:56 - 2015-05-22 12:56 - 00357888 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2015-05-22 13:36 - 2015-05-22 13:36 - 00649216 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2014-02-23 17:59 - 2015-10-21 20:08 - 00356352 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks.dll
2016-04-19 16:41 - 2016-04-19 16:41 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 16:41 - 2016-04-19 16:42 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-03-31 00:54 - 2016-05-02 08:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-10-21 20:08 - 2015-10-21 20:08 - 00056832 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2015-10-21 20:08 - 2015-10-21 20:08 - 00353792 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2015-10-21 20:08 - 2015-10-21 20:08 - 00071680 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2014-04-11 21:17 - 2016-04-29 22:10 - 00785920 _____ () C:\Steam\SDL2.dll
2014-12-02 23:48 - 2015-07-03 18:12 - 04962816 _____ () C:\Steam\v8.dll
2014-05-22 17:35 - 2016-06-10 00:24 - 02387024 _____ () C:\Steam\video.dll
2014-08-29 13:36 - 2016-02-09 01:14 - 02549760 _____ () C:\Steam\libavcodec-56.dll
2014-08-29 13:36 - 2016-02-09 01:14 - 00491008 _____ () C:\Steam\libavformat-56.dll
2014-08-29 13:36 - 2016-02-09 01:14 - 00332800 _____ () C:\Steam\libavresample-2.dll
2014-08-29 13:36 - 2016-02-09 01:14 - 00442880 _____ () C:\Steam\libavutil-54.dll
2014-08-29 13:36 - 2016-02-09 01:14 - 00485888 _____ () C:\Steam\libswscale-3.dll
2014-12-02 23:48 - 2015-07-03 18:12 - 01556992 _____ () C:\Steam\icui18n.dll
2014-12-02 23:48 - 2015-07-03 18:12 - 01187840 _____ () C:\Steam\icuuc.dll
2014-04-11 21:17 - 2016-06-10 00:24 - 00829008 _____ () C:\Steam\bin\chromehtml.DLL
2016-03-10 00:08 - 2016-02-18 00:25 - 00281088 _____ () C:\Steam\openvr_api.dll
2014-04-11 21:17 - 2016-06-01 02:21 - 49826080 _____ () C:\Steam\bin\libcef.dll
2015-07-07 15:59 - 2012-06-17 11:20 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\sony.com -> sony.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2014-04-24 17:53 - 00000860 ____A C:\WINDOWS\system32\Drivers\etc\hosts

192.168.178.20 HP1312nfi.fritz.box

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1991814362-3727001073-523396128-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^Users^Niklas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Produktregistrierung.lnk => C:\Windows\pss\Logitech . Produktregistrierung.lnk.Startup
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "Launch LCore"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\StartupApproved\Run: => "SandboxieControl"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{7461670A-DA0D-49E6-BB9E-FEB72E03D16D}] => (Allow) D:\Steam\SteamApps\common\Mount Your Friends\MountYourFriends.exe
FirewallRules: [{39ED4426-CD26-48C6-97BF-37A952CAE925}] => (Allow) D:\Steam\SteamApps\common\Mount Your Friends\MountYourFriends.exe
FirewallRules: [{211B1375-E9CF-4C53-AF57-4322AF419CB7}] => (Block) D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe
FirewallRules: [{0E7A6E83-E9F6-446E-9CDD-228A11444614}] => (Block) D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe
FirewallRules: [UDP Query User{968F56DD-99A3-464A-BEA4-C1708A6E0FC0}D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe] => (Allow) D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe
FirewallRules: [TCP Query User{BF0E3DDA-885F-4868-B719-D1FFD8701CF3}D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe] => (Allow) D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe
FirewallRules: [{F5BFEC71-069B-49A3-84EE-E329C6E880A5}] => (Allow) D:\Steam\SteamApps\common\Double Action\bin\hlmv.exe
FirewallRules: [{49E67145-983D-4970-A05D-8A08F6990406}] => (Allow) D:\Steam\SteamApps\common\Double Action\bin\hlmv.exe
FirewallRules: [{1B999194-991D-4D43-8782-D85B9782FC8F}] => (Allow) D:\Steam\SteamApps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{7DC21612-6CE8-4525-BF14-6A7FADECE84F}] => (Allow) D:\Steam\SteamApps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{94C904D0-5D60-442D-BB9E-60224294CBDF}] => (Allow) D:\Steam\SteamApps\common\Gothic 3\Gothic3.exe
FirewallRules: [{205048E7-6157-49C0-A9F4-466A7AF2CFC0}] => (Allow) D:\Steam\SteamApps\common\Gothic 3\Gothic3.exe
FirewallRules: [{D38A57DA-2070-4213-AB11-27EDF3AB5426}] => (Allow) D:\Steam\SteamApps\common\Hitman Blood Money\configure.exe
FirewallRules: [{F77AC2BC-4747-47C8-BA78-3C542C0FBD48}] => (Allow) D:\Steam\SteamApps\common\Hitman Blood Money\configure.exe
FirewallRules: [{8CAF2F7C-8FAD-4B0C-94FA-32F40C55A108}] => (Allow) D:\Steam\SteamApps\common\Hitman Blood Money\HitmanBloodMoney.exe
FirewallRules: [{1128EF59-59C0-48AB-BDED-4F01F752F488}] => (Allow) D:\Steam\SteamApps\common\Hitman Blood Money\HitmanBloodMoney.exe
FirewallRules: [{EB677C0D-F9CE-46EF-835A-7AA9359853D1}] => (Allow) D:\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{237B8DC4-FA86-44C6-88CE-C6E76D1FA646}] => (Allow) D:\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{C6355E74-4B56-4932-9663-8A3FDDF596F9}] => (Allow) D:\Steam\SteamApps\common\Lichdom Battlemage\Bin64\LichdomBattlemage.exe
FirewallRules: [{143DEA14-8192-4BEA-881E-6B1D1437018C}] => (Allow) D:\Steam\SteamApps\common\Lichdom Battlemage\Bin64\LichdomBattlemage.exe
FirewallRules: [{A3EEE1B6-0EB3-4F13-B6CC-675101874C47}] => (Allow) D:\Steam\SteamApps\common\Trine\_enchanted_edition_\trine1_launcher.exe
FirewallRules: [{E1864CEF-95EE-43BF-B360-35411F40E4B8}] => (Allow) D:\Steam\SteamApps\common\Trine\_enchanted_edition_\trine1_launcher.exe
FirewallRules: [{FF8E1695-099A-4AAA-9FC5-488F8D7577AD}] => (Allow) D:\Steam\SteamApps\common\Neptunia Rebirth1\NeptuniaReBirth1.exe
FirewallRules: [{CE2546F7-4C2B-4A63-8197-C6F182113DD9}] => (Allow) D:\Steam\SteamApps\common\Neptunia Rebirth1\NeptuniaReBirth1.exe
FirewallRules: [UDP Query User{A0C267A7-330A-48E7-B6BD-1CED7DC3A2AE}D:\blade symphony 2013 - 2015 merge patch\blade symphony\berimbau.exe] => (Block) D:\blade symphony 2013 - 2015 merge patch\blade symphony\berimbau.exe
FirewallRules: [TCP Query User{194FCDA0-4394-4DFD-85BD-6CDF592966D5}D:\blade symphony 2013 - 2015 merge patch\blade symphony\berimbau.exe] => (Block) D:\blade symphony 2013 - 2015 merge patch\blade symphony\berimbau.exe
FirewallRules: [UDP Query User{FEE9F9F6-8DB7-4DF4-8FE7-68F190B6BEBD}D:\steam\steamapps\common\galacide\galacide\binaries\win64\galacide-win64-shipping.exe] => (Block) D:\steam\steamapps\common\galacide\galacide\binaries\win64\galacide-win64-shipping.exe
FirewallRules: [TCP Query User{D7BFFDCD-6828-478B-BE7D-6527CCFB8D3F}D:\steam\steamapps\common\galacide\galacide\binaries\win64\galacide-win64-shipping.exe] => (Block) D:\steam\steamapps\common\galacide\galacide\binaries\win64\galacide-win64-shipping.exe
FirewallRules: [{32061EDB-783C-4E67-A5A0-8982A4158E04}] => (Allow) D:\Steam\SteamApps\common\Galacide\Galacide.exe
FirewallRules: [{1CE2AB57-92A0-4F26-8C91-037C55A3107E}] => (Allow) D:\Steam\SteamApps\common\Galacide\Galacide.exe
FirewallRules: [{A0F5207F-8800-49E1-97EF-C5C1E6D597C8}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{7D9968F9-1E47-46E8-9DBF-EC055BB78272}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{9E76AED9-FC2A-4830-B8E4-5081462BEEB7}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{86FECB40-C351-4A21-BA3A-952886F252FC}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{CB46B23D-9E94-4EAE-8178-40D49038BF31}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{6A38F6BF-0464-4120-AF3A-97AA877BC3FE}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{82651717-6575-42F0-AB2C-B1C2638F412D}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{E8C3B4B4-9A00-4DF7-B294-9F5F563D5AB0}] => (Allow) D:\Steam\SteamApps\common\nosgoth\NosgothLauncher.exe
FirewallRules: [{C24DD21D-570D-405D-96D2-51426F0994F7}] => (Allow) D:\Steam\SteamApps\common\nosgoth\NosgothLauncher.exe
FirewallRules: [{4AD67F8C-B8A9-42A0-AD13-0F1E8FDD3CB1}] => (Allow) D:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{B139E647-4D6F-44B9-B445-A1622C514F2A}] => (Allow) D:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{567A3F21-97C8-4AC3-A6ED-A03087A718AE}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{D1ED7D7E-5724-4777-94CD-A9BA5252C9D2}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{31E55B27-1DA5-42D1-B5A2-22CDFF166E58}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{782D54C2-1ED9-4C83-92AE-E166B3B460DA}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{7336DEE8-0C7A-4377-BD68-BFAC4769C18C}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP BEAT\BEAT.exe
FirewallRules: [{B916EDB3-75F5-404E-9B93-A93DE65BB716}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP BEAT\BEAT.exe
FirewallRules: [{CAA38988-F479-452B-A2CF-D1A9A7AF5F5F}] => (Allow) D:\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{97035D4D-7F6B-488A-BBF6-F98F98C49BF8}] => (Allow) D:\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{AED0F4B9-841B-4504-B3D3-B7E94EAEE97C}] => (Allow) D:\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{DF5852EF-9D36-4EA0-A7A2-7389FB891498}] => (Allow) D:\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{97A694FC-9BB9-4E46-A855-8048384970E2}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP VOID\BIT.TRIP VOID.exe
FirewallRules: [{6D96C57A-68ED-4C33-B0C0-0E9F54AC5155}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP VOID\BIT.TRIP VOID.exe
FirewallRules: [{D83ABFDF-F5ED-41A1-9CBE-BC65DD8DFA55}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP RUNNER\RUNNER.exe
FirewallRules: [{8967FD5C-60B2-4C52-9203-CA700C1BD614}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP RUNNER\RUNNER.exe
FirewallRules: [{C2CA28F9-6767-41F6-8E3F-EC92A47235A8}] => (Allow) D:\Steam\SteamApps\common\Geometry Dash\GeometryDash.exe
FirewallRules: [{CC956953-4957-4393-AB82-EB9F0867123C}] => (Allow) D:\Steam\SteamApps\common\Geometry Dash\GeometryDash.exe
FirewallRules: [{29A7B648-1A15-4D29-A8E1-C75CE501FC4E}] => (Allow) D:\Steam\SteamApps\common\ShareX\ShareX_Launcher.exe
FirewallRules: [{2DC9564F-07D7-40E0-82F1-392AD9552D1B}] => (Allow) D:\Steam\SteamApps\common\ShareX\ShareX_Launcher.exe
FirewallRules: [{B4F0B037-7DA9-4EEC-A6CF-B51B1BA16498}] => (Allow) D:\Steam\SteamApps\common\GunZ 2 The Second Duel\Gunz2_Steam.exe
FirewallRules: [{B370D4A7-AF00-400D-9151-E2468A304C0D}] => (Allow) D:\Steam\SteamApps\common\GunZ 2 The Second Duel\Gunz2_Steam.exe
FirewallRules: [{C41C0A91-BA0F-47C9-846A-5896E56460D6}] => (Allow) D:\Steam\SteamApps\common\Missing Translation\nw.exe
FirewallRules: [{375BEB75-8CFE-4F76-B768-AFF49DD3E2FA}] => (Allow) D:\Steam\SteamApps\common\Missing Translation\nw.exe
FirewallRules: [{5FE430D0-D250-4D3B-967F-CAF576619627}] => (Allow) D:\Steam\SteamApps\common\Kingdoms Rise Test\Binaries\Win32\UDK.exe
FirewallRules: [{EF2A3B91-51A1-4DB3-8773-D261D7B2C1AF}] => (Allow) D:\Steam\SteamApps\common\Kingdoms Rise Test\Binaries\Win32\UDK.exe
FirewallRules: [{FB27B6DC-3B9C-4BC6-8D05-0C6FC25056B3}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\ChivLauncher.exe
FirewallRules: [{D16F4B4B-B171-43C3-AE24-F1FC93F27711}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\ChivLauncher.exe
FirewallRules: [{324B5FB8-14CD-4A1A-9373-E0689AE09289}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win32\CMW.exe
FirewallRules: [{D703EBE4-C027-451D-A60F-2BE4F14E72EF}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win32\CMW.exe
FirewallRules: [{97F4F9AB-F4F1-476E-8EED-14BA1D68F0D8}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win64\CMW.exe
FirewallRules: [{0BEE6AB3-8797-471D-AE2A-C9EF26CFF6D5}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win64\CMW.exe
FirewallRules: [{490D790D-284A-4937-B195-6F9F6EA261EB}] => (Allow) D:\Steam\SteamApps\common\War of the Roses Alpha\run_game.exe
FirewallRules: [{D47541CF-B134-4ACA-9AE5-E87131E0C97D}] => (Allow) D:\Steam\SteamApps\common\War of the Roses Alpha\run_game.exe
FirewallRules: [{839C9647-3DAE-4344-82B8-9061603D47DF}] => (Allow) D:\Steam\SteamApps\common\Amnesia The Dark Descent\Launcher.exe
FirewallRules: [{CD62B321-8558-440C-A462-6551C872A2D0}] => (Allow) D:\Steam\SteamApps\common\Amnesia The Dark Descent\Launcher.exe
FirewallRules: [{9B5EE76A-5291-4F83-BB5F-667B46BC7184}] => (Allow) D:\Steam\SteamApps\common\Amnesia The Dark Descent\Amnesia.exe
FirewallRules: [{E23AB1FD-8C77-4C30-A4E2-57735C3C5227}] => (Allow) D:\Steam\SteamApps\common\Amnesia The Dark Descent\Amnesia.exe
FirewallRules: [{E0EECB92-3E13-45F6-A4F7-625BFCA92F49}] => (Allow) D:\Steam\SteamApps\common\Operation Flashpoint Red River\RedRiverLauncher.exe
FirewallRules: [{D06AE6A1-23C2-4922-987F-2DF3C8BE8E03}] => (Allow) D:\Steam\SteamApps\common\Operation Flashpoint Red River\RedRiverLauncher.exe
FirewallRules: [{F3D200DE-33FA-48E8-9E16-3AC0FF88F7D4}] => (Allow) D:\Steam\SteamApps\common\Oblivion\OblivionLauncher.exe
FirewallRules: [{F0EEEE14-A0DB-4723-9EDC-4D7971DF6D37}] => (Allow) D:\Steam\SteamApps\common\Oblivion\OblivionLauncher.exe
FirewallRules: [{3B43A095-5E47-4AE7-BDCA-34675DE89A68}] => (Allow) D:\Steam\SteamApps\common\Operation Flashpoint Dragon Rising\OFDR.exe
FirewallRules: [{11009B2E-2538-4C2A-91F3-4AEDCB8ECEBB}] => (Allow) D:\Steam\SteamApps\common\Operation Flashpoint Dragon Rising\OFDR.exe
FirewallRules: [{1C2F9108-D1FC-4131-AF6F-34B50AC2A615}] => (Allow) D:\Steam\SteamApps\common\Rise of the Argonauts\Binaries\RiseOfTheArgonauts.exe
FirewallRules: [{BB176E86-8740-4C60-A5A3-C257012419A7}] => (Allow) D:\Steam\SteamApps\common\Rise of the Argonauts\Binaries\RiseOfTheArgonauts.exe
FirewallRules: [{DDAD39C1-3CE2-4997-9F00-9DF0A9DEA856}] => (Allow) D:\Steam\SteamApps\common\Morrowind\Morrowind Launcher.exe
FirewallRules: [{9732D972-48B3-42BE-BDCB-F50911578EC8}] => (Allow) D:\Steam\SteamApps\common\Morrowind\Morrowind Launcher.exe
FirewallRules: [{F1DE4620-F602-4615-879E-F7D863F43C05}] => (Allow) D:\Steam\SteamApps\common\Overlord\Config.exe
FirewallRules: [{614908E9-17EF-4C95-85CD-200949C9B444}] => (Allow) D:\Steam\SteamApps\common\Overlord\Config.exe
FirewallRules: [{FE0F066C-1524-411F-8AF2-3CCD0D05FA5F}] => (Allow) D:\Steam\SteamApps\common\Overlord\Overlord.exe
FirewallRules: [{749E3FE5-C7D9-4BEA-B63D-9AA5BA9ACA89}] => (Allow) D:\Steam\SteamApps\common\Overlord\Overlord.exe
FirewallRules: [{373DE971-A647-46D6-A99C-B1743CD7833C}] => (Allow) D:\Steam\SteamApps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{715DC91A-F666-45E8-BE01-35ABE4D8AE5F}] => (Allow) D:\Steam\SteamApps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{FC4610C6-8A60-43D7-830B-A208EF3746D0}] => (Allow) D:\Steam\SteamApps\common\Port of Call\PortOfCall.exe
FirewallRules: [{B6905773-95E3-4032-B691-0AFA8257B4AB}] => (Allow) D:\Steam\SteamApps\common\Port of Call\PortOfCall.exe
FirewallRules: [{F4838ECA-802F-4BC8-9091-7AF019CD9C24}] => (Allow) D:\Steam\SteamApps\common\Blender\blender.exe
FirewallRules: [{D541BBD0-6B1D-45ED-B864-48AC0131E949}] => (Allow) D:\Steam\SteamApps\common\Blender\blender.exe
FirewallRules: [{E39695CA-8DA1-4C15-8ED2-084FCBB5ADFC}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{478CB551-7254-4830-B5D3-B90188C0B420}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{BC8BC729-96B8-4109-A8F3-DA12B01A2932}] => (Allow) C:\Program Files (x86)\SITECOM\11n USB Wireless LAN Utility\RtWLan.exe
FirewallRules: [{9D9C111D-2E60-41A9-BCFB-EF9116784098}] => (Allow) C:\Program Files (x86)\SITECOM\11n USB Wireless LAN Utility\RtWLan.exe
FirewallRules: [{0A8AA8ED-9F21-4540-9C35-9761049656DA}] => (Allow) LPort=1542
FirewallRules: [{953D1690-12CB-45D4-B424-857644A2917E}] => (Allow) LPort=1542
FirewallRules: [{BD4B3236-6CA2-46E1-A2ED-5958299E8CFF}] => (Allow) LPort=53
FirewallRules: [{1D235DB8-D76F-42B7-A382-ECE767EB4149}] => (Allow) C:\Steam\Steam.exe
FirewallRules: [{76D76D94-4142-4656-BFB6-3798CE242B91}] => (Allow) C:\Steam\Steam.exe
FirewallRules: [{7FFAC6F7-4641-40D5-B5C6-EF624CC4A417}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{0539C2C9-D423-4169-87F5-18F677C28E6C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{1CCB9B7D-5D2C-4F84-A8B0-44871AF905CE}] => (Allow) D:\Steam\SteamApps\common\War of the Roses\run_game.exe
FirewallRules: [{04499389-A44B-4929-960F-40098DBC2658}] => (Allow) D:\Steam\SteamApps\common\War of the Roses\run_game.exe
FirewallRules: [{71E351AC-D520-4D91-976B-1A2F53185190}] => (Allow) D:\Steam\SteamApps\common\KingdomsRise\Binaries\Win32\UDK.exe
FirewallRules: [{D1D4D194-717B-49DC-8739-7E041EE3C159}] => (Allow) D:\Steam\SteamApps\common\KingdomsRise\Binaries\Win32\UDK.exe
FirewallRules: [{8FA563EB-39C8-4840-B517-CB617A857CAB}] => (Allow) D:\Steam\SteamApps\common\KOAReckoning\Reckoning.exe
FirewallRules: [{FE422623-355B-46DF-B1A6-E243E34AB545}] => (Allow) D:\Steam\SteamApps\common\KOAReckoning\Reckoning.exe
FirewallRules: [{154787F8-0A0B-4F32-BBDE-3089422EBF95}] => (Allow) D:\Steam\SteamApps\common\Dragon Age Ultimate Edition\DAOriginsLauncher.exe
FirewallRules: [{5F2F8E71-1AD7-4F4F-88A9-5D108D91C4F4}] => (Allow) D:\Steam\SteamApps\common\Dragon Age Ultimate Edition\DAOriginsLauncher.exe
FirewallRules: [{D4A388B6-220F-4EF5-AF05-745C74216729}] => (Allow) D:\Steam\SteamApps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{8781F1DB-7730-4760-BDFB-E1F9CB9FEAC9}] => (Allow) D:\Steam\SteamApps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{2B405A96-79C5-401D-AB2F-529AFF955BA6}] => (Allow) D:\Steam\SteamApps\common\Jedi Academy\GameData\jasp.exe
FirewallRules: [{CE730740-5EF6-48CF-9A50-7CECD9FDFA8A}] => (Allow) D:\Steam\SteamApps\common\Jedi Academy\GameData\jasp.exe
FirewallRules: [{CDA84174-0966-4A03-BD1F-3173EFBE9164}] => (Allow) D:\Steam\SteamApps\common\Jedi Academy\GameData\jamp.exe
FirewallRules: [{C9BBCD0B-78BF-4A4E-B75B-17833C4A3937}] => (Allow) D:\Steam\SteamApps\common\Jedi Academy\GameData\jamp.exe
FirewallRules: [{5B987325-C663-4AE0-9F93-0D7154BB7AA0}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{8A27FA18-0827-4101-B698-0C546B249083}] => (Allow) LPort=2869
FirewallRules: [{A822ECCD-D1FA-460D-970D-9498F4A415C1}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{EB043DDD-C177-4679-BE9B-B64C1CB1C49D}D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
FirewallRules: [UDP Query User{C58674D6-AA3C-4798-9D24-EE495C8D9C5B}D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
FirewallRules: [{DCF013BA-202A-4662-AE49-9AB0DDD819C9}] => (Allow) D:\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{DCD14108-0D4E-400A-9BD7-77982C929E21}] => (Allow) D:\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{859F23DF-571E-4E52-8157-B500447C78A7}] => (Allow) D:\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{C9DB2166-1968-40D2-915E-24461ED43253}] => (Allow) D:\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{A611E0C2-7F89-427E-BD50-7718EF74CCB7}] => (Allow) D:\Steam\SteamApps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
FirewallRules: [{CAAC8F83-AF7A-4EB7-8FFF-F9C98FBAF07B}] => (Allow) D:\Steam\SteamApps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
FirewallRules: [TCP Query User{191DE101-79D9-42B5-A673-EC24B686010A}D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [UDP Query User{AFC3706E-4948-4B66-A239-96D72744DA7A}D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{DE819C4C-42E1-4214-B983-7D5B1C97DFD9}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{21CE4271-C83E-4380-BA68-BACA11A48864}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{57601B4F-6615-4A1B-B0A8-5FBEAB2645C3}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{92ECDE79-686D-4257-B318-7997B554AD83}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{0230AF6E-737F-471E-9E0D-1CC7E520115D}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{ACE84613-59AE-4C5B-94EA-AED11EAC5ED8}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{D0E802A8-3E85-4927-90C1-32037AF3DBA5}] => (Allow) D:\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{889C6C78-2D0E-40A0-83F1-D210BE81D654}] => (Allow) D:\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{05CB63C4-4368-42EC-9889-1F29B319F362}] => (Allow) D:\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{E47BD74C-76E8-4DBF-A7FA-1DCD0E267FB7}] => (Allow) D:\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{2F462649-DAB8-49AE-82D3-FC9A310FAB38}] => (Allow) D:\Steam\SteamApps\common\MagickaWizardWars\WizardWarsLauncher.exe
FirewallRules: [{778554D8-336F-4343-AC8F-F6C8F4976FE0}] => (Allow) D:\Steam\SteamApps\common\MagickaWizardWars\WizardWarsLauncher.exe
FirewallRules: [{3ED76DD3-757B-470D-849E-DD43BADB0BC7}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{5A824E52-755F-4C09-9D12-04286A07282D}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{0A50D340-530D-480D-8B57-005EDECB02BC}D:\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe] => (Allow) D:\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe
FirewallRules: [UDP Query User{570C4AED-EA60-42DC-9FBC-E4B826AEF83D}D:\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe] => (Allow) D:\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe
FirewallRules: [{3D52E9A8-CE11-47F8-8BED-1ED57F5024ED}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{F4873694-E4FE-462B-BE31-5057D433D20B}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [TCP Query User{76ACE5AC-06B6-436B-913D-089643828C99}D:\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\cmw.exe] => (Allow) D:\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\cmw.exe
FirewallRules: [UDP Query User{D32DAFF1-EAB5-4DFF-9578-A8F7A31C5E58}D:\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\cmw.exe] => (Allow) D:\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\cmw.exe
FirewallRules: [{F081D367-DF65-426B-B513-1A04AC7353D6}] => (Allow) D:\Steam\SteamApps\common\NEOTOKYO\hl2.exe
FirewallRules: [{DBEA12AC-6320-432D-9253-5659B47B69E9}] => (Allow) D:\Steam\SteamApps\common\NEOTOKYO\hl2.exe
FirewallRules: [{F7AAC540-2D7E-489A-B92C-49A947550E73}] => (Allow) D:\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{A78D151D-0539-4FEE-9E64-1AFF70111F1B}] => (Allow) D:\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{0CB1A1FE-AC40-482D-A7F4-04838B4ECC14}] => (Allow) D:\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{022D9187-5DA3-4AA1-8E77-13A279BF507F}] => (Allow) D:\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{A9EF7779-852B-461D-B3F8-BD4AA02D8395}] => (Allow) D:\Steam\SteamApps\common\War of the Roses\wotr.exe
FirewallRules: [{49B9B02D-FBE8-4B67-9DC3-C21375614DE5}] => (Allow) D:\Steam\SteamApps\common\War of the Roses\wotr.exe
FirewallRules: [{DA0B00F0-709B-4D29-9581-F3299A17470E}] => (Allow) D:\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe
FirewallRules: [{889F6E85-FAEA-4147-90CA-98D414E87F68}] => (Allow) D:\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe
FirewallRules: [{487EB6D0-8EA6-42C6-A710-AB670D91A1C8}] => (Allow) C:\Steam\bin\steamwebhelper.exe
FirewallRules: [{087D5739-EA71-4380-B3A1-4A83BEA48019}] => (Allow) C:\Steam\bin\steamwebhelper.exe
FirewallRules: [{756C9DFE-3818-4BEE-9669-2693F8EA2AC4}] => (Allow) D:\Steam\SteamApps\common\Ionball 2  Ionstorm\IonStorm_v1.1.exe
FirewallRules: [{A651DDFD-7F22-4F70-A548-FCE585587D7F}] => (Allow) D:\Steam\SteamApps\common\Ionball 2  Ionstorm\IonStorm_v1.1.exe
FirewallRules: [{4F1ED685-C59F-47C8-8147-8CCDEC392D51}] => (Allow) D:\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{97936AEA-2796-4770-B7CE-C389043038F1}] => (Allow) D:\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{403C4409-CC8C-4B98-84C2-1D0B6ECE9563}] => (Allow) D:\Steam\SteamApps\common\ArcheBlade\Binaries\Win32\Archeblade.exe
FirewallRules: [{39DB1D28-781C-40AE-B0B3-68D9428E12FD}] => (Allow) D:\Steam\SteamApps\common\ArcheBlade\Binaries\Win32\Archeblade.exe
FirewallRules: [{98FD65A3-1F99-4DB9-A3D0-C2E9DD49687C}] => (Allow) D:\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{ECFEBCB8-AB8B-4049-B691-24C10A47E1CF}] => (Allow) D:\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{6B403983-F813-42F4-BB51-C4407365F132}] => (Allow) D:\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{467B7FBD-F6AE-4DB8-BE4D-96D3F991EAA0}] => (Allow) D:\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{F47C8399-3FAD-44AE-B3F8-6533165D3034}] => (Allow) D:\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{B0959621-7381-486F-B030-FBA2AF82E473}] => (Allow) D:\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{476A2EA7-17EC-4400-B33A-E97DC1C1C739}] => (Allow) D:\Steam\SteamApps\common\Quake Live\quakelive_steam.exe
FirewallRules: [{1099EFE1-5865-4109-847A-53F9A1F364DF}] => (Allow) D:\Steam\SteamApps\common\Quake Live\quakelive_steam.exe
FirewallRules: [{ECA0B717-34CF-4A59-8596-0C6F3008E8E2}] => (Allow) D:\Steam\SteamApps\common\Risen\bin\Risen.exe
FirewallRules: [{099D7613-B946-438B-AB5B-E0BE84442913}] => (Allow) D:\Steam\SteamApps\common\Risen\bin\Risen.exe
FirewallRules: [{EA21A92A-3089-4BFA-945F-31D183102241}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{3F060256-C126-466C-9F90-6AE08948A4DA}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{D30E584F-9EBE-48D1-83C9-9C372E4E7940}D:\steam\steamapps\common\thehunter\game\thehunter.exe] => (Block) D:\steam\steamapps\common\thehunter\game\thehunter.exe
FirewallRules: [UDP Query User{841A7360-472B-4457-AB35-E1DA5BC92897}D:\steam\steamapps\common\thehunter\game\thehunter.exe] => (Block) D:\steam\steamapps\common\thehunter\game\thehunter.exe
FirewallRules: [{17990B30-9A8C-4641-B469-67F6239284A2}] => (Allow) D:\Steam\SteamApps\common\Super Street Fighter IV - Arcade Edition\SSFIV.exe
FirewallRules: [{7FEC9422-028A-4E25-8DB6-572694032649}] => (Allow) D:\Steam\SteamApps\common\Super Street Fighter IV - Arcade Edition\SSFIV.exe
FirewallRules: [{357B6836-0E3F-4924-9141-1B91C4E24058}] => (Allow) D:\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{9C553780-ABE8-4263-AEE8-6B8A386BFA5D}] => (Allow) D:\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{3FF2247E-7D69-440C-881E-EA8AD3B28785}] => (Allow) D:\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{F2281A1D-D13B-41BD-B5DF-79B348116E28}] => (Allow) D:\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{BFE606F9-470A-40E9-8703-F013BD30ECEB}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{F4ABBF8E-BF5F-468F-A547-5A6C8EFD740A}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{3CE94A95-8C7F-4B7C-9EF7-953A3EB25FA2}] => (Allow) D:\Steam\SteamApps\common\Double Action\hl2.exe
FirewallRules: [{DD155431-81E4-4F1A-A5A3-B96B88094A30}] => (Allow) D:\Steam\SteamApps\common\Double Action\hl2.exe
FirewallRules: [{D61F2CCC-8991-4D0B-AD61-080D581704A8}] => (Allow) D:\Steam\SteamApps\common\vvvvvv\VVVVVV.exe
FirewallRules: [{8BAE635E-442D-4DBE-A231-7160F7269BD0}] => (Allow) D:\Steam\SteamApps\common\vvvvvv\VVVVVV.exe
FirewallRules: [{BC648F94-F84F-4BC2-A535-5C7C059EBC12}] => (Allow) D:\Steam\SteamApps\common\Super Meat Boy\SuperMeatBoy.exe
FirewallRules: [{89DE8514-2036-4C3B-8C7E-897266763079}] => (Allow) D:\Steam\SteamApps\common\Super Meat Boy\SuperMeatBoy.exe
FirewallRules: [{8F54D5CB-ACC7-4C01-9C7D-B9FE62A45A97}] => (Allow) D:\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{2FD9A3D2-94E7-48EB-8A84-D0326CE04CAB}] => (Allow) D:\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{BE6EEA0A-E555-41FE-8A9A-3499B470187F}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{0B4666F5-3135-4992-B0D1-518A30167859}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{8CE9F78E-10CF-4930-8B87-64A951A75801}] => (Allow) D:\Steam\SteamApps\common\Synergy\hl2.exe
FirewallRules: [{EEE09663-2643-486A-9736-D013D65455FC}] => (Allow) D:\Steam\SteamApps\common\Synergy\hl2.exe
FirewallRules: [TCP Query User{683CEE7F-8E1C-49B0-AA7C-924F61A19B51}D:\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe] => (Allow) D:\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe
FirewallRules: [UDP Query User{8951C6DE-53E7-4024-9813-518D71C18E9C}D:\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe] => (Allow) D:\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe
FirewallRules: [{C29B0580-6FC1-4C26-B8BF-1E0E09B4541E}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{BFC254AE-BC96-40A7-8EEF-256FB055260A}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{37B9ADF4-27E4-4B84-A06F-E0123ACF61A7}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{C18D03FF-DDDB-4D6D-9593-51362C0448BE}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{BBE1A928-75DF-4F9D-9C4D-EF4303BF7793}] => (Allow) D:\Steam\SteamApps\common\FORCED\FORCED.exe
FirewallRules: [{140394A7-76AC-4A2B-92DE-C6FC1AAB02D5}] => (Allow) D:\Steam\SteamApps\common\FORCED\FORCED.exe
FirewallRules: [{DACB38BF-AF08-47CC-B548-C860465F9E0C}] => (Allow) D:\Steam\SteamApps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe
FirewallRules: [{1708B4D5-4141-4FC5-978A-541BA23640F7}] => (Allow) D:\Steam\SteamApps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe
FirewallRules: [TCP Query User{3B9CED80-7FCA-48D9-AE1A-DDEA1DC44D0C}D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Block) D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [UDP Query User{B815BD7E-1192-46AD-A6C8-761F5A480923}D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Block) D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{126A770E-AC91-4687-A064-04655CD78B84}] => (Allow) D:\Steam\SteamApps\common\Skyrim\CreationKit.exe
FirewallRules: [{50BE61AC-90FC-490A-9309-DE7EA60E98B2}] => (Allow) D:\Steam\SteamApps\common\Skyrim\CreationKit.exe
FirewallRules: [{98294F72-88FE-42A1-A885-7472ABDCBFD9}] => (Allow) LPort=1542
FirewallRules: [{5A5CE3E4-BCC8-4BA2-AA22-E36038E0B406}] => (Allow) LPort=1542
FirewallRules: [{DFA12FC0-E5E4-450A-9562-624654BE42A3}] => (Allow) LPort=53
FirewallRules: [{30166A53-D3AB-4A94-B934-6DB8C53B6D02}] => (Allow) D:\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{B32F93B4-EF99-4C52-B2C3-AC7435ECC417}] => (Allow) D:\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{F8BB5204-BA31-4508-B695-997D0B968B1B}] => (Allow) D:\Steam\SteamApps\common\divinity2_dev_cut\Autorun.exe
FirewallRules: [{2A449AF6-5356-40FF-B19E-88609A654EB5}] => (Allow) D:\Steam\SteamApps\common\divinity2_dev_cut\Autorun.exe
FirewallRules: [{50097F60-8130-4AAE-8281-D5A77D3295D9}] => (Allow) D:\Steam\SteamApps\common\BlazBlue Calamity Trigger\BBCT.exe
FirewallRules: [{C8AF816B-C73B-46A1-8539-3192AF71B44E}] => (Allow) D:\Steam\SteamApps\common\BlazBlue Calamity Trigger\BBCT.exe
FirewallRules: [{8506DE46-F613-4AF3-A35B-94F95326F8CB}] => (Allow) D:\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{B2535B09-71DF-4DF6-BC6F-DA2EB1C41152}] => (Allow) D:\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{9DEBE8F1-F827-4557-849B-6B07DFBA09DB}] => (Allow) D:\Steam\SteamApps\common\FreeStyle2\LauncherSteam.exe
FirewallRules: [{BC7A2DD6-127B-4BD7-A51C-61809D77B01B}] => (Allow) D:\Steam\SteamApps\common\FreeStyle2\LauncherSteam.exe
FirewallRules: [TCP Query User{430BEB21-9DA6-441A-AB2E-DCDB701BA471}D:\steam\steamapps\common\freestyle2\freestyle2.exe] => (Allow) D:\steam\steamapps\common\freestyle2\freestyle2.exe
FirewallRules: [UDP Query User{FEC95212-0B8A-47A5-8153-2747E45E079C}D:\steam\steamapps\common\freestyle2\freestyle2.exe] => (Allow) D:\steam\steamapps\common\freestyle2\freestyle2.exe
FirewallRules: [{0B4F5331-4D81-446A-802F-38542DD520FF}] => (Allow) D:\Steam\SteamApps\common\Toribash\toribash.exe
FirewallRules: [{22DE4824-85E0-4410-ABA5-C9A0C947E1DF}] => (Allow) D:\Steam\SteamApps\common\Toribash\toribash.exe
FirewallRules: [{7220B436-41D5-4525-8BA8-0864E4FD0E62}] => (Allow) D:\Steam\SteamApps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{469A1F77-082F-4CB0-B582-E17EBFE19163}] => (Allow) D:\Steam\SteamApps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{CFA5D292-FEFF-4EF0-9F52-E00BA578FAFA}] => (Allow) D:\Steam\SteamApps\common\counter-strike source\hl2.exe
FirewallRules: [{64BC2587-55DF-4211-81E8-3F0181C36843}] => (Allow) D:\Steam\SteamApps\common\counter-strike source\hl2.exe
FirewallRules: [{99F2AFCA-CEDC-4921-8EFA-D8451B38CC5A}] => (Allow) D:\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{89DA4FDF-E8BC-4A34-8A0C-1FDBE6266807}] => (Allow) D:\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{3E190033-9FFB-4A19-AEB5-03E5CEEB1109}] => (Allow) D:\Steam\SteamApps\common\Yomi\Yomi.exe
FirewallRules: [{F13E2FA3-DB41-4D51-811E-312ABA7E1AF5}] => (Allow) D:\Steam\SteamApps\common\Yomi\Yomi.exe
FirewallRules: [{BCD19F95-687E-4412-8379-DBD67DECD802}] => (Allow) D:\Steam\SteamApps\common\Dawn of War Gold\W40k.exe
FirewallRules: [{951D3CDF-2BB9-47DA-AF0D-1639398BED48}] => (Allow) D:\Steam\SteamApps\common\Dawn of War Gold\W40k.exe
FirewallRules: [{16DEA29E-C182-452A-9B42-0EFB713EDADB}] => (Allow) D:\Steam\SteamApps\common\Dawn of War 2\DOW2.exe
FirewallRules: [{AE63110B-A2FF-45B0-B842-372207D9830F}] => (Allow) D:\Steam\SteamApps\common\Dawn of War 2\DOW2.exe
FirewallRules: [{D15F6A73-C1CE-4CD9-B45D-63DFCBEF2C52}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{F386B884-F4D3-4C2F-B78E-3722D8FE16D2}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{510F8976-59F4-4463-BC83-BCD43A1C7792}] => (Allow) D:\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{8A4788B4-0A6E-47E7-92EB-C3603B5990A0}] => (Allow) D:\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{F9E2E9D8-8D3C-4D4E-848A-95655D02E953}] => (Allow) D:\Steam\SteamApps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{20B0466C-6CD7-44DA-A099-7759D19AD5C1}] => (Allow) D:\Steam\SteamApps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{E1E25175-CCA5-499C-A879-E438398CEE16}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{3EEA7411-2B92-4C23-A81C-FF873DC3C0A4}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{3B782228-F275-416F-B123-EB03BC3307FF}] => (Allow) D:\Steam\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe
FirewallRules: [{503B436E-01F1-4AC5-8045-4C364E5093FB}] => (Allow) D:\Steam\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe
FirewallRules: [{865BE00D-1216-437B-A509-9C166B47A90C}] => (Allow) D:\Steam\SteamApps\common\The Way of Life\TheWayOfLifeDemoWindows.exe
FirewallRules: [{B9DFC716-247B-4233-82DD-622DF0CC8124}] => (Allow) D:\Steam\SteamApps\common\The Way of Life\TheWayOfLifeDemoWindows.exe
FirewallRules: [{8AE08086-0433-4035-87C6-A37AFE88944B}] => (Allow) D:\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{E96B8D1F-84C6-4B1F-B848-5CEA48A57D92}] => (Allow) D:\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{1A712B8E-AF68-47B5-81D2-9F911CC17AE1}] => (Allow) D:\Steam\SteamApps\common\Rising Storm Beta\Binaries\Win32\ROGame.exe
FirewallRules: [{08CB4E88-A33F-4D77-9309-B758329A0E17}] => (Allow) D:\Steam\SteamApps\common\Rising Storm Beta\Binaries\Win32\ROGame.exe
FirewallRules: [{2ACABA64-DAFC-4488-8D80-851B93048F02}] => (Allow) D:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{D5F7216B-B6F9-4D11-B60E-960CC23FD5B7}] => (Allow) D:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{22D640F8-A7B1-4E9C-9D12-E32E007BBFBC}] => (Allow) D:\Steam\SteamApps\common\Eternal Senia\Game.exe
FirewallRules: [{07955258-11DD-49A8-918D-D9BA49383BE3}] => (Allow) D:\Steam\SteamApps\common\Eternal Senia\Game.exe
FirewallRules: [{0E681D75-B613-4228-80C9-C4ED2DF04700}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{31B4EE3E-64AA-4613-AB1B-DBB14780D3BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B5DFE287-F034-4F8B-8033-33BC901AC77B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{20480890-E812-43DE-B19E-E0C0EEB62DFE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{069EDC5A-065B-4476-B701-CCE96161EDFC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A866E988-210C-49CD-80B4-C590DF01305F}] => (Allow) D:\Steam\SteamApps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst\NS3FB_launcher.exe
FirewallRules: [{F9FD2A4B-FD0B-471F-9A97-6B2EF5A774D4}] => (Allow) D:\Steam\SteamApps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst\NS3FB_launcher.exe
FirewallRules: [{0594FA60-01B5-406E-8F45-340752FBF827}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{042AEA67-2112-43B1-88B6-044E0C9183E7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B234D6CA-E3A3-40A2-84F6-0AE7016581B0}] => (Allow) D:\Steam\SteamApps\common\Double Action\bin\hammer.exe
FirewallRules: [{B2F50091-9E54-4F5B-A916-7B6B36F20F2F}] => (Allow) D:\Steam\SteamApps\common\Double Action\bin\hammer.exe
FirewallRules: [{54F99A40-6195-4787-9F1B-B18E6CB75B5D}] => (Allow) D:\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{3CA3551E-E803-4C18-AE1F-341D4EDB65C7}] => (Allow) D:\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{80CAFA46-F8F3-4D32-AFB3-543757FF3846}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{E80BDE99-6341-4AF5-9702-7299B4B29057}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{8C9E372B-AAA4-484A-A8C8-A3C79A1742A4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B5FE829D-0D08-4315-ADD6-93D86EAF936D}] => (Allow) D:\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{0D43BA8F-135C-45BB-983B-8BF98512D165}] => (Allow) D:\Steam\SteamApps\common\theHunter\launcher\launcher.exe

==================== Wiederherstellungspunkte =========================

24-05-2016 18:43:32 Geplanter Prüfpunkt
01-06-2016 22:50:43 Windows Update
07-06-2016 11:50:43 Revo Uninstaller's restore point - Ezvid
13-06-2016 22:01:36 Revo Uninstaller's restore point - BurnAware Free 9.2

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (06/13/2016 10:52:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AVKTray.exe, Version: 25.1.16042.313, Zeitstempel: 0x56bc0a6c
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x02af002a
ID des fehlerhaften Prozesses: 0x2040
Startzeit der fehlerhaften Anwendung: 0xAVKTray.exe0
Pfad der fehlerhaften Anwendung: AVKTray.exe1
Pfad des fehlerhaften Moduls: AVKTray.exe2
Berichtskennung: AVKTray.exe3
Vollständiger Name des fehlerhaften Pakets: AVKTray.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AVKTray.exe5

Error: (06/13/2016 10:19:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm explorer.exe, Version 10.0.10586.306 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 180c

Startzeit: 01d1c5aa7dea6c68

Beendigungszeit: 0

Anwendungspfad: C:\Windows\explorer.exe

Berichts-ID: 2211ebff-31a4-11e6-9de8-00195b7581d3

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (06/13/2016 10:15:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm cdbxpp.exe, Version 4.5.7.6139 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: c8c

Startzeit: 01d1c5af1851f0eb

Beendigungszeit: 3

Anwendungspfad: D:\CDBurnerXP\cdbxpp.exe

Berichts-ID: 86d06a82-31a3-11e6-9de8-00195b7581d3

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (06/13/2016 10:01:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (06/13/2016 10:00:49 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm BurnImage.exe, Version 9.2.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1868

Startzeit: 01d1c5ae1fbf0371

Beendigungszeit: 4294967295

Anwendungspfad: D:\BurnAware Free\BurnImage.exe

Berichts-ID: 841a16d4-31a1-11e6-9de8-00195b7581d3

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (06/13/2016 09:59:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm MakeISO.exe, Version 9.2.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1e5c

Startzeit: 01d1c5ae01cc4eba

Beendigungszeit: 8757

Anwendungspfad: D:\BurnAware Free\MakeISO.exe

Berichts-ID: 4c4ece4b-31a1-11e6-9de8-00195b7581d3

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (06/13/2016 09:09:38 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1". Fehler in Manifest- oder Richtliniendatei "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2" in Zeile  UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (06/13/2016 07:35:41 PM) (Source: TreeSize Free) (EventID: 0) (User: j)
Description: Exception Class : EFrozen
Exception Message : The application seems to be frozen

Error: (06/13/2016 06:59:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AVKTray.exe, Version: 25.1.16042.313, Zeitstempel: 0x56bc0a6c
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0599002a
ID des fehlerhaften Prozesses: 0x1890
Startzeit der fehlerhaften Anwendung: 0xAVKTray.exe0
Pfad der fehlerhaften Anwendung: AVKTray.exe1
Pfad des fehlerhaften Moduls: AVKTray.exe2
Berichtskennung: AVKTray.exe3
Vollständiger Name des fehlerhaften Pakets: AVKTray.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AVKTray.exe5

Error: (06/12/2016 03:17:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AVKTray.exe, Version: 25.1.16042.313, Zeitstempel: 0x56bc0a6c
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00ed002a
ID des fehlerhaften Prozesses: 0x438
Startzeit der fehlerhaften Anwendung: 0xAVKTray.exe0
Pfad der fehlerhaften Anwendung: AVKTray.exe1
Pfad des fehlerhaften Moduls: AVKTray.exe2
Berichtskennung: AVKTray.exe3
Vollständiger Name des fehlerhaften Pakets: AVKTray.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AVKTray.exe5


Systemfehler:
=============
Error: (06/13/2016 10:51:32 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Error: (06/13/2016 10:49:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Error: (06/13/2016 10:47:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_de8a5" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/13/2016 10:47:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _de8a5" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/13/2016 10:47:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_de8a5" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/13/2016 10:47:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_de8a5" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/13/2016 10:40:23 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (06/13/2016 10:40:14 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (06/13/2016 10:40:05 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (06/13/2016 10:39:57 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.


CodeIntegrity:
===================================
  Date: 2016-06-11 04:31:53.310
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\G Data\AVKProxy\ExploitProtection64.dll that did not meet the Store signing level requirements.

  Date: 2016-06-11 04:31:47.543
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\G Data\AVKProxy\ExploitProtection64.dll that did not meet the Store signing level requirements.

  Date: 2016-06-11 04:31:47.503
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltDll64.dll that did not meet the Store signing level requirements.

  Date: 2016-06-02 21:35:46.453
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-01 23:13:14.172
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-01 22:55:34.314
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-01 22:52:35.222
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-29 14:02:03.499
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\G Data\AVKProxy\ExploitProtection64.dll that did not meet the Store signing level requirements.

  Date: 2016-05-27 17:58:39.046
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\G Data\AVKProxy\ExploitProtection64.dll that did not meet the Store signing level requirements.

  Date: 2016-05-26 22:08:51.758
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltDll64.dll that did not meet the Store signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: AMD Phenom(tm) II X4 970 Processor
Prozentuale Nutzung des RAM: 39%
Installierter physikalischer RAM: 8188.52 MB
Verfügbarer physikalischer RAM: 4990.69 MB
Summe virtueller Speicher: 8900.52 MB
Verfügbarer virtueller Speicher: 5193.77 MB

==================== Laufwerke ================================

Drive c: (Volume) (Fixed) (Total:100.07 GB) (Free:38.83 GB) NTFS
Drive d: (Volume) (Fixed) (Total:931.51 GB) (Free:154.63 GB) NTFS
Drive f: () (Fixed) (Total:117.09 GB) (Free:87.29 GB) NTFS
Drive g: () (Fixed) (Total:348.57 GB) (Free:301.82 GB) NTFS
Drive i: (NIKY'S USB) (Removable) (Total:30.03 GB) (Free:29.28 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: EB0369C3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=100.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 80663413)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 83A81C73)
Partition 1: (Not Active) - (Size=117.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=348.6 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 30 GB) (Disk ID: 290275D7)
Partition 1: (Active) - (Size=30 GB) - (Type=0C)

==================== Ende von Addition.txt ============================
         

Hi,

Schritt 1


Download & Anleitung

• Das Tool auf den Desktop abspeichern und als Administrator starten.
• Option C auswählen und Panda USB-Vaccine installieren.
  
• Impfe Deinen PC
  
• Den infizierten USB-Stick anstecken.
• Option A auswählen.
• Option B auswählen. (Nur den Laufwerks-Buchstaben des USB-Sticks eingeben!)
• Option B mit allen betroffenen Sticks, Platten durchführen.

Schritt 2
Alle "infizierten" Sticks an den PC anstecken und einen ESET-Scan durchführen.
Wichtig: Bitte unter "Computer-Prüfeinstellungen/...zu prüfende Objekte" die checkbox bei Computer setzen.


ESET Online Scanner

• Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
• Lade und starte Eset Online Scanner
• Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
• Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
• Klicke auf Starten.
• Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
• Klicke am Ende des Suchlaufs auf Fertig stellen.
• Schließe das Fenster von ESET.
• Explorer öffnen.
• C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
• Logfile hier posten.
• Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
• Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Habe das mit dem USB-Stick durchgeführt, den Scan konnte ich bis ca. 40% durchführen (ca. 5 Stunden gedauert), bis mein PC abgestürzt ist. Bis dahin hat ESET nichts gefunden. Seitdem kämpfe ich mit Problemen mit meinem Grafik-Treiber (eigtl. der Grund für den Absturz). Systemwiederherstellung, Treiber per Tool entfernen und neu aufsetzen etc. hat nicht geholfen. Ich nehme stark an, dass Windows Update daran Schuld ist, ich hoffe jedenfalls nicht, dass es Malware ist.

Vllt. ist folgendes relevant: Bei jedem Systemstart öffnet sich eine leere errorlog.txt. Könnte aber auch wegen den Bluescreens sein, die ich kriege, wenn der Grafiktreiber mal wieder abschmiert.

Das mit der errorlog.txt ist harmlos und hat eine andere Ursache.

Ok, lag an der Hardware. Die Graka hat schon einiges auf dem Buckel, defekter VRAM. Hab also ne alte eingesetzt, läuft vorerst. Danke für deine Geduld, ich werde morgen mit dem Scan fortfahren.

OK...

Hat nichts gefunden.

Code: Alles auswählenAufklappen

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=1999508fb137de48b82052ca54e2e985
# end=init
# utc_time=2016-06-15 05:55:57
# local_time=2016-06-15 07:55:57 (+0100, Mitteleuropäische Sommerzeit)
# country="United States"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 29806
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=1999508fb137de48b82052ca54e2e985
# end=updated
# utc_time=2016-06-15 06:03:43
# local_time=2016-06-15 08:03:43 (+0100, Mitteleuropäische Sommerzeit)
# country="United States"
# osver=6.2.9200 NT 
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=7505157d27abfe4ea987c049b05b42da
# end=init
# utc_time=2016-06-17 08:49:25
# local_time=2016-06-17 10:49:25 (+0100, Mitteleuropäische Sommerzeit)
# country="United States"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 29832
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=7505157d27abfe4ea987c049b05b42da
# end=updated
# utc_time=2016-06-17 08:50:41
# local_time=2016-06-17 10:50:41 (+0100, Mitteleuropäische Sommerzeit)
# country="United States"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=7505157d27abfe4ea987c049b05b42da
# engine=29832
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-06-18 01:38:00
# local_time=2016-06-18 03:38:00 (+0100, Mitteleuropäische Sommerzeit)
# country="United States"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1='G DATA INTERNET SECURITY'
# compatibility_mode=4112 16777213 100 100 0 41813848 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 19983768 20028023 0 0
# scanned=747022
# found=0
# cleaned=0
# scan_time=17238
         

Das ist gut. Bitte nochmal frische Logs.

Schritt 1



Bitte starte FRST erneut, markiere auch die checkbox und drücke auf Untersuchen.
Bitte poste mir den Inhalt der beiden Logs die erstellt werden.

FRST.txt

Code: Alles auswählenAufklappen

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 19-06-2016
durchgeführt von Niklas (Administrator) auf j (19-06-2016 04:27:44)
Gestartet von C:\Users\Niklas\Desktop
Geladene Profile: Niklas (Verfügbare Profile: Niklas & Niky & DefaultAppPool)
Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe
() C:\Windows\SysWOW64\ASGT.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(G DATA Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Panda Security) D:\Panda USB Vaccine\USBVaccine.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVKTray\AVKTray.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltSur64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2016-01-29] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [552960 2014-10-19] (ROCCAT GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [G Data ASM] => C:\Program Files (x86)\G DATA\InternetSecurity\DelayLoader\AutorunDelayLoader.exe [434296 2015-02-20] (G Data Software AG)
HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [797328 2016-06-15] (Sandboxie Holdings, LLC)
ShellIconOverlayIdentifiers: [0_sxBZOverlayIcon] -> {6457FB0A-5C02-4393-909C-2139A5D5571F} =>  Keine Datei
ShellIconOverlayIdentifiers: [0_sxConfidentialOIcon] -> {871FE18B-B68D-4437-BC76-6634996CDB97} =>  Keine Datei
ShellIconOverlayIdentifiers: [0_sxForbiddenOIcon] -> {1F03249C-6AB2-4E31-8C10-86F7E31E3B4E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2014-04-24]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\Niklas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk [2014-04-11]
ShortcutTarget: Samsung Magician.lnk -> C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe (Samsung Electronics.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: 192.168.178.20 HP1312nfi.fritz.box
Tcpip\..\Interfaces\{357ff58e-047f-4b3b-a066-1826d6673dfd}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{9921b642-fedc-4c61-9dde-5c74a3506394}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{d3b8243a-4a8e-4c2b-9e50-c4a69b799ef0}: [NameServer] 192.168.178.1

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-04-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-21] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-21] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-04-12] (Microsoft Corporation)
BHO-x32: Microsoft Web Test Recorder 14.0 Helper -> {b924f0b4-0b3c-49c0-bab2-213fb9ebd1d3} -> C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2015-07-07] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-12] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Niklas\AppData\Roaming\Mozilla\Firefox\Profiles\z9sdabr0.default-1459136032353
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-21] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeExManDetect -> D:\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2014-03-10] (Adobe Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Keine Datei]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-03] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-04-11] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect -> D:\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems)
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => nicht gefunden

Chrome: 
=======
CHR StartupUrls: Default -> "hxxps://www.google.de/"
CHR Profile: C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-05-06]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2016-05-27]
CHR Extension: (Adblock Plus) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-01]
CHR Extension: (HTTPS Everywhere) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2016-06-16]
CHR Extension: (Little Alchemy) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2016-04-07]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Niklas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2015-05-28] () [Datei ist nicht signiert]
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2790368 2016-02-18] (G Data Software AG)
R2 AVKService; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe [970872 2016-02-11] (G Data Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe [4068592 2016-02-18] (G Data Software AG)
S2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3009264 2016-05-17] (Microsoft Corporation)
S3 DAUpdaterSvc; D:\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [25832 2014-04-20] (BioWare)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [236840 2015-02-11] (EasyAntiCheat Ltd)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [Datei ist nicht signiert]
R3 GDFwSvc; C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe [3219872 2016-03-04] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [791160 2016-02-18] (G Data Software AG)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2016-01-29] (NVIDIA Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2016-01-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2016-01-29] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [197264 2016-06-15] (Sandboxie Holdings, LLC)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56040 2015-11-19] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 Avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [71936 2016-05-04] (AVG Technologies CZ, s.r.o.)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [160768 2016-05-19] (G Data Software AG)
S0 GDElam; C:\Windows\System32\DRIVERS\GDElam.sys [117904 2015-01-08] (G Data Software AG)
R1 GDKBB; C:\WINDOWS\system32\drivers\GDKBB64.sys [37400 2016-05-19] (G Data Software AG)
R1 GDKBFlt; C:\WINDOWS\system32\drivers\GDKBFlt64.sys [29720 2016-05-19] (G Data Software AG)
R1 GDMnIcpt; C:\WINDOWS\system32\drivers\MiniIcpt.sys [246272 2016-05-19] (G Data Software AG)
R3 GDPkIcpt; C:\WINDOWS\system32\drivers\PktIcpt.sys [92160 2016-05-19] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [77848 2016-05-19] (G DATA Software AG)
R1 GRD; C:\WINDOWS\system32\drivers\GRD.sys [106272 2016-05-19] (G Data Software)
R3 Hamachi; C:\Windows\System32\drivers\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R1 HookCentre; C:\WINDOWS\system32\drivers\HookCentre.sys [134656 2016-05-19] (G Data Software AG)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31648 2014-04-11] (REALiX(tm))
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-10-23] (ASUSTeK Computer Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2016-01-29] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2016-01-29] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek                                            )
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-06-02] ()
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [204944 2016-06-15] (Sandboxie Holdings, LLC)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
U3 idsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-19 04:27 - 2016-06-19 04:27 - 00020700 _____ C:\Users\Niklas\Desktop\FRST.txt
2016-06-19 04:27 - 2016-06-19 04:26 - 00000943 _____ C:\Users\Niklas\Desktop\Sandboxed Web Browser.lnk
2016-06-19 04:26 - 2016-06-19 04:26 - 02387456 _____ (Farbar) C:\Users\Niklas\Desktop\FRST64.exe
2016-06-19 04:26 - 2016-06-19 04:26 - 00000000 ____D C:\Users\Niklas\Desktop\Bücher
2016-06-19 04:26 - 2016-06-19 04:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
2016-06-17 22:49 - 2016-06-17 22:49 - 02870984 _____ (ESET) C:\Users\Niklas\Downloads\esetsmartinstaller_deu.exe
2016-06-17 14:49 - 2016-06-17 14:56 - 00000065 _____ C:\WINDOWS\system32\e.cmd
2016-06-16 23:03 - 2016-05-28 06:57 - 01372312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-06-16 23:03 - 2016-05-28 06:29 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-16 23:03 - 2016-05-28 06:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-06-16 23:02 - 2016-05-28 08:13 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-16 23:02 - 2016-05-28 08:13 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-16 23:02 - 2016-05-28 08:13 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-16 23:02 - 2016-05-28 08:13 - 00290496 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-16 23:02 - 2016-05-28 08:13 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-16 23:02 - 2016-05-28 08:13 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-16 23:02 - 2016-05-28 07:25 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2016-06-16 23:02 - 2016-05-28 07:23 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-06-16 23:02 - 2016-05-28 07:23 - 00312160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-06-16 23:02 - 2016-05-28 07:22 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-06-16 23:02 - 2016-05-28 07:22 - 04387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-06-16 23:02 - 2016-05-28 07:22 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-06-16 23:02 - 2016-05-28 07:22 - 00211296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-06-16 23:02 - 2016-05-28 07:22 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-06-16 23:02 - 2016-05-28 07:20 - 00430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-16 23:02 - 2016-05-28 07:18 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-16 23:02 - 2016-05-28 07:16 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-06-16 23:02 - 2016-05-28 07:09 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-06-16 23:02 - 2016-05-28 07:09 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-16 23:02 - 2016-05-28 07:09 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-06-16 23:02 - 2016-05-28 07:08 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-16 23:02 - 2016-05-28 07:08 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-06-16 23:02 - 2016-05-28 07:08 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-06-16 23:02 - 2016-05-28 07:07 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-16 23:02 - 2016-05-28 07:07 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-06-16 23:02 - 2016-05-28 07:07 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-06-16 23:02 - 2016-05-28 07:07 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-06-16 23:02 - 2016-05-28 07:07 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-06-16 23:02 - 2016-05-28 07:07 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-06-16 23:02 - 2016-05-28 07:07 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-06-16 23:02 - 2016-05-28 07:06 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-06-16 23:02 - 2016-05-28 07:06 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-06-16 23:02 - 2016-05-28 07:06 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-16 23:02 - 2016-05-28 07:06 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-06-16 23:02 - 2016-05-28 07:06 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-06-16 23:02 - 2016-05-28 07:05 - 04515264 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-06-16 23:02 - 2016-05-28 07:04 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-16 23:02 - 2016-05-28 07:04 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-16 23:02 - 2016-05-28 07:04 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-06-16 23:02 - 2016-05-28 07:04 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-16 23:02 - 2016-05-28 07:04 - 00111064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-06-16 23:02 - 2016-05-28 07:04 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-06-16 23:02 - 2016-05-28 07:03 - 00131248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-16 23:02 - 2016-05-28 06:58 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-06-16 23:02 - 2016-05-28 06:58 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-16 23:02 - 2016-05-28 06:57 - 02548944 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-06-16 23:02 - 2016-05-28 06:57 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-06-16 23:02 - 2016-05-28 06:57 - 01594416 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-16 23:02 - 2016-05-28 06:57 - 00649792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-06-16 23:02 - 2016-05-28 06:57 - 00636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-06-16 23:02 - 2016-05-28 06:57 - 00577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-06-16 23:02 - 2016-05-28 06:57 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-06-16 23:02 - 2016-05-28 06:57 - 00521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-06-16 23:02 - 2016-05-28 06:57 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-06-16 23:02 - 2016-05-28 06:35 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-06-16 23:02 - 2016-05-28 06:35 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-06-16 23:02 - 2016-05-28 06:35 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsdport.sys
2016-06-16 23:02 - 2016-05-28 06:31 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-06-16 23:02 - 2016-05-28 06:31 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-06-16 23:02 - 2016-05-28 06:31 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-06-16 23:02 - 2016-05-28 06:29 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-06-16 23:02 - 2016-05-28 06:29 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-06-16 23:02 - 2016-05-28 06:29 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-06-16 23:02 - 2016-05-28 06:28 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-06-16 23:02 - 2016-05-28 06:28 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-06-16 23:02 - 2016-05-28 06:28 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-16 23:02 - 2016-05-28 06:27 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-06-16 23:02 - 2016-05-28 06:27 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-16 23:02 - 2016-05-28 06:26 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-06-16 23:02 - 2016-05-28 06:26 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-06-16 23:02 - 2016-05-28 06:26 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-06-16 23:02 - 2016-05-28 06:26 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-16 23:02 - 2016-05-28 06:26 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-06-16 23:02 - 2016-05-28 06:25 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2016-06-16 23:02 - 2016-05-28 06:25 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-06-16 23:02 - 2016-05-28 06:24 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-06-16 23:02 - 2016-05-28 06:24 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2016-06-16 23:02 - 2016-05-28 06:24 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-06-16 23:02 - 2016-05-28 06:24 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-06-16 23:02 - 2016-05-28 06:24 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-06-16 23:02 - 2016-05-28 06:24 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-06-16 23:02 - 2016-05-28 06:24 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-16 23:02 - 2016-05-28 06:24 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-06-16 23:02 - 2016-05-28 06:23 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-06-16 23:02 - 2016-05-28 06:23 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-16 23:02 - 2016-05-28 06:22 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-16 23:02 - 2016-05-28 06:22 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-06-16 23:02 - 2016-05-28 06:22 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-16 23:02 - 2016-05-28 06:22 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-06-16 23:02 - 2016-05-28 06:22 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-06-16 23:02 - 2016-05-28 06:22 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-06-16 23:02 - 2016-05-28 06:22 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-06-16 23:02 - 2016-05-28 06:22 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2016-06-16 23:02 - 2016-05-28 06:22 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-06-16 23:02 - 2016-05-28 06:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-06-16 23:02 - 2016-05-28 06:21 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2016-06-16 23:02 - 2016-05-28 06:21 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-16 23:02 - 2016-05-28 06:21 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-06-16 23:02 - 2016-05-28 06:21 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.dll
2016-06-16 23:02 - 2016-05-28 06:20 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-06-16 23:02 - 2016-05-28 06:20 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-06-16 23:02 - 2016-05-28 06:20 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-16 23:02 - 2016-05-28 06:20 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-06-16 23:02 - 2016-05-28 06:20 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2016-06-16 23:02 - 2016-05-28 06:20 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-16 23:02 - 2016-05-28 06:20 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2016-06-16 23:02 - 2016-05-28 06:19 - 24605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-16 23:02 - 2016-05-28 06:19 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-06-16 23:02 - 2016-05-28 06:19 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-06-16 23:02 - 2016-05-28 06:19 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-06-16 23:02 - 2016-05-28 06:19 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-06-16 23:02 - 2016-05-28 06:19 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2016-06-16 23:02 - 2016-05-28 06:18 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-16 23:02 - 2016-05-28 06:18 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-06-16 23:02 - 2016-05-28 06:18 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2016-06-16 23:02 - 2016-05-28 06:18 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-06-16 23:02 - 2016-05-28 06:18 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-06-16 23:02 - 2016-05-28 06:18 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-06-16 23:02 - 2016-05-28 06:18 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-16 23:02 - 2016-05-28 06:18 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-16 23:02 - 2016-05-28 06:18 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-16 23:02 - 2016-05-28 06:17 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-06-16 23:02 - 2016-05-28 06:17 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-06-16 23:02 - 2016-05-28 06:17 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-16 23:02 - 2016-05-28 06:17 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2016-06-16 23:02 - 2016-05-28 06:17 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-06-16 23:02 - 2016-05-28 06:17 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-16 23:02 - 2016-05-28 06:17 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-16 23:02 - 2016-05-28 06:17 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-06-16 23:02 - 2016-05-28 06:16 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-06-16 23:02 - 2016-05-28 06:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-16 23:02 - 2016-05-28 06:16 - 00684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-16 23:02 - 2016-05-28 06:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-06-16 23:02 - 2016-05-28 06:16 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-06-16 23:02 - 2016-05-28 06:16 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-16 23:02 - 2016-05-28 06:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-06-16 23:02 - 2016-05-28 06:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-06-16 23:02 - 2016-05-28 06:15 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-06-16 23:02 - 2016-05-28 06:15 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-06-16 23:02 - 2016-05-28 06:15 - 00794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-16 23:02 - 2016-05-28 06:15 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2016-06-16 23:02 - 2016-05-28 06:15 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-06-16 23:02 - 2016-05-28 06:15 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-06-16 23:02 - 2016-05-28 06:15 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2016-06-16 23:02 - 2016-05-28 06:15 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-16 23:02 - 2016-05-28 06:14 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-06-16 23:02 - 2016-05-28 06:14 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-06-16 23:02 - 2016-05-28 06:14 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-06-16 23:02 - 2016-05-28 06:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-06-16 23:02 - 2016-05-28 06:14 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-16 23:02 - 2016-05-28 06:14 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-16 23:02 - 2016-05-28 06:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-06-16 23:02 - 2016-05-28 06:14 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-06-16 23:02 - 2016-05-28 06:14 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-06-16 23:02 - 2016-05-28 06:13 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-06-16 23:02 - 2016-05-28 06:13 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-06-16 23:02 - 2016-05-28 06:13 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-06-16 23:02 - 2016-05-28 06:13 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-06-16 23:02 - 2016-05-28 06:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-06-16 23:02 - 2016-05-28 06:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-06-16 23:02 - 2016-05-28 06:12 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-06-16 23:02 - 2016-05-28 06:12 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-06-16 23:02 - 2016-05-28 06:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-06-16 23:02 - 2016-05-28 06:11 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-06-16 23:02 - 2016-05-28 06:11 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-06-16 23:02 - 2016-05-28 06:11 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-06-16 23:02 - 2016-05-28 06:11 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-06-16 23:02 - 2016-05-28 06:11 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-06-16 23:02 - 2016-05-28 06:11 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-06-16 23:02 - 2016-05-28 06:11 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-06-16 23:02 - 2016-05-28 06:09 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-06-16 23:02 - 2016-05-28 06:08 - 13385728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-16 23:02 - 2016-05-28 06:08 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-06-16 23:02 - 2016-05-28 06:06 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-06-16 23:02 - 2016-05-28 06:06 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-06-16 23:02 - 2016-05-28 06:06 - 01339904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-16 23:02 - 2016-05-28 06:05 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-16 23:02 - 2016-05-28 06:05 - 03664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-06-16 23:02 - 2016-05-28 06:05 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-16 23:02 - 2016-05-28 06:05 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-16 23:02 - 2016-05-28 06:04 - 06973952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-16 23:02 - 2016-05-28 06:04 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-06-16 23:02 - 2016-05-28 06:04 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-06-16 23:02 - 2016-05-28 06:03 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-06-16 23:02 - 2016-05-28 06:03 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-06-16 23:02 - 2016-05-28 06:03 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-16 23:02 - 2016-05-28 06:03 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2016-06-16 23:02 - 2016-05-28 06:03 - 00693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2016-06-16 23:02 - 2016-05-28 06:03 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-06-16 23:02 - 2016-05-28 06:02 - 03590144 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-06-16 23:02 - 2016-05-28 06:02 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-06-16 23:02 - 2016-05-28 06:02 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-06-16 23:02 - 2016-05-28 06:02 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-06-16 23:02 - 2016-05-28 06:01 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-06-16 23:02 - 2016-05-28 06:01 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-06-16 23:02 - 2016-05-28 06:01 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-06-16 23:02 - 2016-05-28 06:01 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-06-16 23:02 - 2016-05-28 06:00 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-06-16 23:02 - 2016-05-28 06:00 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-16 23:02 - 2016-05-28 06:00 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-16 23:02 - 2016-05-28 06:00 - 02230272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-06-16 23:02 - 2016-05-28 06:00 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-16 23:02 - 2016-05-28 06:00 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-16 23:02 - 2016-05-28 06:00 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-06-16 23:02 - 2016-05-28 06:00 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-06-16 23:02 - 2016-05-28 06:00 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-06-16 23:02 - 2016-05-28 06:00 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-16 23:02 - 2016-05-28 05:59 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-06-16 23:02 - 2016-05-28 05:58 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-06-16 23:02 - 2016-05-28 05:58 - 04896256 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-16 23:02 - 2016-05-28 05:58 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-16 23:02 - 2016-05-28 05:58 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-16 23:02 - 2016-05-28 05:58 - 01996288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-16 23:02 - 2016-05-28 05:57 - 02281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-06-16 23:02 - 2016-05-28 05:55 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-16 23:02 - 2016-05-28 05:53 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-16 22:07 - 2016-06-17 19:20 - 00000000 ____D C:\Users\Niklas\Desktop\C++ Exercises
2016-06-16 21:14 - 2016-06-18 06:53 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\vlc
2016-06-16 21:03 - 2016-06-16 21:04 - 00000000 ____D C:\Users\Niklas\AppData\Local\NVIDIA Corporation
2016-06-16 21:02 - 2016-06-16 21:03 - 00000000 ____D C:\Users\Niklas\AppData\Local\NVIDIA
2016-06-16 21:02 - 2016-06-16 21:03 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-06-16 21:02 - 2016-06-16 21:02 - 00000000 ____D C:\ProgramData\NVIDIA
2016-06-16 21:02 - 2016-06-16 21:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-06-16 21:02 - 2016-06-16 21:02 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-06-16 21:02 - 2016-06-16 21:02 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2016-06-16 21:02 - 2016-01-29 14:08 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-06-16 21:02 - 2016-01-29 14:08 - 01514528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-06-16 21:02 - 2016-01-29 14:08 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-06-16 21:02 - 2016-01-29 14:08 - 01278920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-06-16 21:02 - 2016-01-29 14:08 - 00082488 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-06-16 21:02 - 2016-01-29 14:08 - 00067520 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-06-16 21:02 - 2016-01-29 12:49 - 06791736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-06-16 21:02 - 2016-01-29 12:49 - 03529152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-06-16 21:02 - 2016-01-29 12:49 - 02558328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-06-16 21:02 - 2016-01-29 12:49 - 00932728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-06-16 21:02 - 2016-01-29 12:49 - 00384888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-06-16 21:02 - 2016-01-29 12:49 - 00062512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-06-16 21:02 - 2016-01-28 18:29 - 06150607 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-06-16 21:01 - 2016-01-29 14:08 - 31523896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 24207296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 23000000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 18634264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 17559240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 16128576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 15302712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 14497568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 13916600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 13828032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 12911160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-06-16 21:01 - 2016-01-29 14:08 - 11272240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 11209376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 04252608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 03996216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 03210784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 02825016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 01908272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6434195.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 01557552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6434195.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 00952256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 00915392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 00911928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 00878648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 00038032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-06-16 21:01 - 2016-01-29 14:08 - 00035472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 00032400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-06-16 21:01 - 2016-01-29 14:08 - 00026157 _____ C:\WINDOWS\system32\nvinfo.pb
2016-06-16 20:50 - 2016-06-16 20:59 - 283505784 _____ (NVIDIA Corporation) C:\Users\Niklas\Downloads\341.95-desktop-win8-win7-winvista-64bit-international.exe
2016-06-16 20:43 - 2016-06-16 21:02 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-06-16 20:43 - 2016-06-16 20:43 - 00000000 ____D C:\Users\Niklas\Downloads\nv301_42WHQL_Vista64_Win7x64
2016-06-16 20:36 - 2016-06-16 20:42 - 230091372 _____ C:\Users\Niklas\Downloads\nv301_42WHQL_Vista64_Win7x64.zip
2016-06-16 20:30 - 2014-10-23 08:57 - 00024824 ____N (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\IOMap64.sys
2016-06-16 20:29 - 2016-06-16 20:29 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2016-06-16 20:29 - 2016-06-16 20:29 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS
2016-06-16 20:29 - 2016-06-16 20:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-06-16 20:29 - 2016-06-16 20:29 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-06-16 20:24 - 2016-06-16 20:25 - 33858467 _____ C:\Users\Niklas\Downloads\GPUTweak2_Ver1057.zip
2016-06-16 05:23 - 2016-06-16 05:23 - 00000000 ____D C:\NVIDIA
2016-06-16 05:14 - 2016-06-16 05:23 - 368099656 _____ (NVIDIA Corporation) C:\Users\Niklas\Downloads\368.39-desktop-win10-64bit-international-whql.exe
2016-06-16 03:43 - 2016-06-16 03:44 - 45000176 _____ (NVIDIA Corporation) C:\Users\Niklas\Downloads\GeForce_Experience_v2.11.3.5.exe
2016-06-16 03:42 - 2016-06-16 03:42 - 00003168 _____ C:\WINDOWS\System32\Tasks\PandaUSBVaccine
2016-06-16 03:42 - 2016-06-16 03:42 - 00000000 ____D C:\ProgramData\Panda Security
2016-06-16 03:35 - 2016-06-16 03:35 - 00000000 ____D C:\Users\Niklas\Downloads\[Guru3D.com]-DDU
2016-06-16 03:34 - 2016-06-16 03:34 - 01221805 _____ C:\Users\Niklas\Downloads\[Guru3D.com]-DDU.zip
2016-06-16 02:47 - 2016-06-16 05:29 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-06-16 02:46 - 2016-06-16 05:30 - 00642726 _____ C:\WINDOWS\ntbtlog.txt
2016-06-16 01:46 - 2016-06-16 01:46 - 00000000 ____D C:\temp
2016-06-15 19:49 - 2016-06-16 02:24 - 00000000 ____D C:\Program Files (x86)\Panda USB Vaccine
2016-06-15 19:44 - 2016-06-15 19:50 - 00000000 ____D C:\Rem-VBSqt
2016-06-14 23:41 - 2016-06-16 02:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
2016-06-14 00:29 - 2016-06-14 00:29 - 00000107 _____ C:\Users\Niklas\.gitconfig
2016-06-14 00:29 - 2016-06-14 00:29 - 00000000 ____D C:\Users\Niklas\AppData\Local\Deployment
2016-06-13 22:15 - 2016-06-16 03:01 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\DeepBurner
2016-06-13 22:04 - 2016-06-13 22:04 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\Canneverbe Limited
2016-06-13 22:04 - 2016-06-13 22:04 - 00000000 ____D C:\ProgramData\Canneverbe Limited
2016-06-13 19:22 - 2016-06-13 19:22 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\JAM Software
2016-06-11 15:41 - 2016-06-16 00:10 - 00001588 _____ C:\Users\Niklas\Desktop\Challenge.txt
2016-06-07 16:47 - 2016-06-16 03:01 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2016-06-07 16:47 - 2016-06-16 03:01 - 00000000 ____D C:\Program Files\OBS
2016-06-07 16:47 - 2016-06-16 03:01 - 00000000 ____D C:\Program Files (x86)\OBS
2016-06-07 11:52 - 2016-06-16 03:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
2016-06-07 10:46 - 2016-06-07 11:48 - 00000000 ____D C:\Users\Niklas\Documents\ezvid
2016-05-27 17:10 - 2016-05-27 17:10 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2016-05-22 21:53 - 2016-05-23 01:56 - 00000000 ____D C:\Users\Niklas\Documents\Dolphin Emulator
2016-05-20 17:28 - 2016-05-20 17:28 - 00000655 _____ C:\Users\Niklas\Desktop\Eclipse Java Mars.lnk
2016-05-20 17:17 - 2016-05-20 17:17 - 00002816 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-05-20 05:27 - 2016-06-16 03:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-05-20 04:03 - 2016-05-20 04:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.5.1

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-19 04:27 - 2016-05-19 23:56 - 00002600 _____ C:\WINDOWS\Sandboxie.ini
2016-06-19 04:27 - 2015-02-05 01:34 - 00000000 ____D C:\FRST
2016-06-19 04:26 - 2016-05-19 23:56 - 00000000 ____D C:\Program Files\Sandboxie
2016-06-19 03:49 - 2014-04-11 23:31 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-19 03:31 - 2014-04-11 17:12 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-19 01:49 - 2014-04-11 23:31 - 00001118 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-19 01:10 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-06-19 00:48 - 2015-10-30 08:28 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2016-06-18 23:05 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-18 20:33 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-18 20:26 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-18 20:24 - 2016-02-05 21:07 - 02113342 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-18 20:24 - 2015-10-30 20:35 - 00898014 _____ C:\WINDOWS\system32\perfh007.dat
2016-06-18 20:24 - 2015-10-30 20:35 - 00201500 _____ C:\WINDOWS\system32\perfc007.dat
2016-06-18 20:24 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-18 20:20 - 2015-12-27 20:35 - 00000000 ____D C:\Users\Niklas\AppData\Local\CrashDumps
2016-06-18 20:18 - 2016-02-05 21:26 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-18 18:52 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-18 18:52 - 2014-04-11 17:52 - 00003116 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2016-06-18 18:45 - 2014-04-12 00:04 - 00000000 ____D C:\Users\Niklas\Documents\Outlook-Dateien
2016-06-18 18:31 - 2015-08-21 20:53 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-18 18:29 - 2016-02-05 21:06 - 05024192 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-18 06:54 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-06-18 06:54 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-06-18 06:54 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-06-18 00:54 - 2014-04-11 23:33 - 00002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-17 14:14 - 2014-04-11 21:15 - 00000000 ____D C:\Steam
2016-06-16 22:16 - 2015-12-20 05:46 - 00000000 ____D C:\Users\Niklas\Documents\Visual Studio 2015
2016-06-16 21:11 - 2014-04-11 22:20 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\Skype
2016-06-16 21:03 - 2014-04-11 23:31 - 00000000 ____D C:\Users\Niklas\AppData\Local\Google
2016-06-16 21:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Help
2016-06-16 20:30 - 2014-04-11 21:04 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-06-16 07:07 - 2016-02-05 21:08 - 00000000 ____D C:\Users\Niklas
2016-06-16 06:44 - 2016-03-18 18:30 - 00000000 ____D C:\WINDOWS\Minidump
2016-06-16 06:44 - 2014-04-11 16:20 - 00257304 ____N C:\WINDOWS\Minidump\061616-8421-01.dmp
2016-06-16 06:16 - 2014-04-11 16:20 - 00256280 ____N C:\WINDOWS\Minidump\061616-10875-01.dmp
2016-06-16 06:00 - 2014-04-11 16:20 - 00258840 ____N C:\WINDOWS\Minidump\061616-8125-01.dmp
2016-06-16 04:41 - 2015-08-03 23:16 - 00000000 ____D C:\Users\Niklas\AppData\Local\LogMeIn Hamachi
2016-06-16 04:11 - 2014-04-11 17:36 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-06-16 04:05 - 2014-04-11 17:36 - 142482544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-06-16 03:02 - 2016-02-05 21:08 - 00000000 ____D C:\Users\Niky
2016-06-16 03:02 - 2016-02-05 21:08 - 00000000 ____D C:\Users\DefaultAppPool
2016-06-16 03:02 - 2015-12-20 17:51 - 00000000 ____D C:\Users\Niklas\Desktop\Eigentlich Müll
2016-06-16 03:02 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-06-16 03:02 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-06-16 03:02 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-06-16 03:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-06-16 03:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-06-16 03:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-06-16 03:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\IME
2016-06-16 03:02 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-06-16 03:02 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\servicing
2016-06-16 03:02 - 2015-01-01 20:40 - 00000000 ____D C:\Users\Niklas\Documents\Arma 3
2016-06-16 03:02 - 2014-10-09 14:56 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\OBS
2016-06-16 03:02 - 2014-04-13 16:16 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\Notepad++
2016-06-16 03:01 - 2015-12-13 01:17 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-16 03:01 - 2015-02-10 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-06-16 03:01 - 2015-02-10 17:41 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-06-16 03:01 - 2009-07-14 05:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-06-16 02:59 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\registration
2016-06-16 02:58 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2016-06-16 02:58 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SystemResources
2016-06-16 02:58 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-06-16 02:58 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-06-16 02:57 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-06-16 02:57 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-06-16 02:57 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Globalization
2016-06-16 02:57 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-06-16 02:55 - 2015-12-20 07:45 - 00000000 ____D C:\Users\Niklas\.p2
2016-06-16 02:55 - 2015-12-20 07:45 - 00000000 ____D C:\Users\Niklas\.eclipse
2016-06-16 02:55 - 2015-04-21 23:32 - 00000000 ____D C:\Users\Niklas\AppData\Local\GitHub
2016-06-16 02:55 - 2014-12-03 21:22 - 00000000 ____D C:\Users\Niklas\AppData\Local\Eclipse
2016-06-16 02:55 - 2014-04-11 22:20 - 00000000 ____D C:\ProgramData\Skype
2016-06-16 02:55 - 2014-04-11 17:50 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-06-16 02:42 - 2014-04-11 16:20 - 00399856 ____N C:\WINDOWS\Minidump\061616-8281-01.dmp
2016-06-16 02:20 - 2015-11-10 01:41 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-06-15 23:10 - 2015-12-29 06:17 - 00000161 _____ C:\Users\Niklas\Desktop\Anime to watch.txt
2016-06-14 22:49 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-06-14 20:33 - 2015-10-30 09:26 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-06-14 20:33 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-14 00:30 - 2015-04-21 23:32 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\GitHub
2016-06-13 19:35 - 2014-12-30 22:12 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\TS3Client
2016-06-02 01:03 - 2015-08-21 20:55 - 00000000 ___RD C:\Users\Niklas\OneDrive
2016-05-28 22:20 - 2014-04-11 17:50 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-05-28 07:55 - 2016-02-05 21:06 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-05-27 13:28 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-05-27 13:28 - 2014-04-11 23:14 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-05-20 17:28 - 2015-12-20 08:10 - 00000000 ____D C:\Users\Niklas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse
2016-05-20 17:24 - 2015-12-24 17:23 - 00000000 ____D C:\Users\Niklas\.oracle_jre_usage
2016-05-20 04:21 - 2015-10-24 16:46 - 00000000 ____D C:\ProgramData\Avg

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-05-10 15:03 - 2015-05-10 15:03 - 0000132 _____ () C:\Users\Niklas\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2015-12-20 18:07 - 2015-12-20 18:07 - 0000033 _____ () C:\Users\Niklas\AppData\Roaming\AdobeWLCMCache.dat
2014-04-14 13:25 - 2014-05-18 15:34 - 0000104 _____ () C:\Users\Niklas\AppData\Roaming\CamData.ini
2014-04-14 13:25 - 2014-05-18 15:34 - 0000408 _____ () C:\Users\Niklas\AppData\Roaming\CamLayout.ini
2014-04-14 13:25 - 2014-05-18 15:34 - 0000408 _____ () C:\Users\Niklas\AppData\Roaming\CamShapes.ini
2014-04-14 13:25 - 2014-05-18 15:34 - 0004535 _____ () C:\Users\Niklas\AppData\Roaming\CamStudio.cfg
2014-08-07 15:28 - 2014-08-07 15:28 - 0002181 _____ () C:\Users\Niklas\AppData\Roaming\FoxitReaderUpdateInfo.txt
2016-05-19 20:54 - 2016-05-19 20:54 - 0000000 _____ () C:\Users\Niklas\AppData\Roaming\gdfw.log
2016-05-19 20:54 - 2016-05-19 20:54 - 0000779 _____ () C:\Users\Niklas\AppData\Roaming\gdscan.log
2014-10-03 20:40 - 2014-10-05 17:09 - 0000098 _____ () C:\Users\Niklas\AppData\Roaming\LauncherSettings_live.cfg
2014-04-14 13:24 - 2014-10-09 14:44 - 0000096 _____ () C:\Users\Niklas\AppData\Roaming\version2.xml
2015-04-07 07:58 - 2015-05-03 22:14 - 0000600 _____ () C:\Users\Niklas\AppData\Roaming\winscp.rnd
2014-04-11 23:44 - 2015-06-03 21:07 - 0236544 _____ () C:\Users\Niklas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-01 00:41 - 2014-11-01 00:41 - 0000891 _____ () C:\Users\Niklas\AppData\Local\recently-used.xbel
2014-05-31 13:57 - 2016-01-25 22:15 - 0007646 _____ () C:\Users\Niklas\AppData\Local\Resmon.ResmonCfg
2014-04-24 17:51 - 2014-04-24 17:54 - 0000850 _____ () C:\ProgramData\hpzinstall.log

Einige Dateien in TEMP:
====================
C:\Users\Niklas\AppData\Local\Temp\SandboxieInstall.exe
C:\Users\Niklas\AppData\Local\Temp\vlc-2.2.4-win32.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-06-16 06:55

==================== Ende von FRST.txt ============================
         

ADDITION.txt

Code: Alles auswählenAufklappen

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 19-06-2016
durchgeführt von Niklas (2016-06-19 04:28:23)
Gestartet von C:\Users\Niklas\Desktop
Windows 10 Pro Version 1511 (X64) (2016-02-05 19:28:22)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1991814362-3727001073-523396128-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1991814362-3727001073-523396128-503 - Limited - Disabled)
Gast (S-1-5-21-1991814362-3727001073-523396128-501 - Limited - Disabled)
Niklas (S-1-5-21-1991814362-3727001073-523396128-1000 - Administrator - Enabled) => C:\Users\Niklas
Niky (S-1-5-21-1991814362-3727001073-523396128-1003 - Limited - Enabled) => C:\Users\Niky

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: G DATA INTERNET SECURITY (Enabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: G DATA INTERNET SECURITY (Enabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G*DATA Personal Firewall (Enabled) {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

64 Bit HP CIO Components Installer (Version: 4.2.1 - Hewlett-Packard) Hidden
7-Zip 9.38 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0938-000001000000}) (Version: 9.38.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Production Premium (HKLM-x32\...\{045D4EDF-8DC1-43D7-BAFC-7AAEF99C7168}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\{2AF045BC-E8F8-4F17-8095-68E14ECC234F}) (Version: 12.1.0.150 - Adobe Systems, Inc)
AlienFX for KoneXTD (HKLM-x32\...\InstallShield_{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.02 - Roccat GmbH)
AlienFX for KoneXTD (Version: 1.02 - Roccat GmbH) Hidden
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation)
Amnesia: The Dark Descent (HKLM-x32\...\Steam App 57300) (Version:  - Frictional Games)
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version:  - Reloaded Productions)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{903D0F33-D3CF-48D6-967D-84004089428A}) (Version: 4.0.51203.1 - Microsoft Corporation)
Archeblade (HKLM-x32\...\Steam App 207230) (Version:  - CodeBrush Games)
Arena 3.5.1 (HKLM-x32\...\Arena 3.5.1_is1) (Version:  - )
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.0.5.7 - ASUSTek COMPUTER INC.)
ASUS GPU TweakII (x32 Version: 1.0.5.7 - ASUSTek COMPUTER INC.) Hidden
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version:  - The Behemoth)
BIT.TRIP BEAT (HKLM-x32\...\Steam App 63700) (Version:  - Gaijin Games)
BIT.TRIP RUNNER (HKLM-x32\...\Steam App 63710) (Version:  - Gaijin Games)
BIT.TRIP VOID (HKLM-x32\...\Steam App 205070) (Version:  - Gaijin Games)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
BlazBlue: Calamity Trigger (HKLM-x32\...\Steam App 263300) (Version:  - Arc System Works Co., Ltd.)
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blender (HKLM\...\{D593042C-8739-488D-93B8-E6B202013E57}) (Version: 2.76.1 - Blender Foundation)
Blender (HKLM-x32\...\Steam App 365670) (Version:  - Blender Foundation)
Brain Workshop 4.8.4 (HKLM-x32\...\Brain Workshop_is1) (Version: 4.8.4 - Paul Hoskinson & Jonathan Toomim)
Brawlhalla (HKLM-x32\...\Steam App 291550) (Version:  - Blue Mammoth Games)
BufferChm (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Burnout Paradise: The Ultimate Box (HKLM-x32\...\Steam App 24740) (Version:  - Criterion Games)
calibre 64bit (HKLM\...\{B1A4D7FA-D994-4304-8A31-D68ECF2B813D}) (Version: 2.47.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform)
Cheat Engine 6.5.1 (HKLM-x32\...\Cheat Engine 6.5.1_is1) (Version:  - Cheat Engine)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version:  - Playsaurus)
Company of Heroes (HKLM-x32\...\Steam App 4560) (Version:  - Relic Entertainment)
Company of Heroes (New Steam Version) (HKLM-x32\...\Steam App 228200) (Version:  - Relic)
Company of Heroes 2 - Beta (HKLM-x32\...\Steam App 317170) (Version:  - )
Company of Heroes 2 (HKLM-x32\...\Steam App 231430) (Version:  - Relic Entertainment)
Company of Heroes: Opposing Fronts (HKLM-x32\...\Steam App 9340) (Version:  - Relic Entertainment)
Company of Heroes: Tales of Valor (HKLM-x32\...\Steam App 20540) (Version:  - Relic Entertainment)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
Creation Kit (HKLM-x32\...\Steam App 202480) (Version:  - bgs.bethsoft.com)
Crysis 2 Maximum Edition (HKLM-x32\...\Steam App 108800) (Version:  - Crytek Studios)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version:  - FromSoftware)
DARK SOULS™ II: Scholar of the First Sin (HKLM-x32\...\Steam App 335300) (Version:  - FromSoftware, Inc)
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version:  - Eidos Montreal)
DeviceDiscovery (x32 Version: 100.0.190.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
DirectX for Managed Code (HKLM\...\{FDF7187F-3960-4BEC-916D-98C9A83E3A68}_is1) (Version: 1.0.0.0 - Sereby Corporation)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dishonored (HKLM-x32\...\Steam App 205100) (Version:  - Arkane Studios)
Divinity II: Developer's Cut (HKLM-x32\...\Steam App 219780) (Version:  - Larian Studios)
Dotfuscator and Analytics Community Edition 5.19.0 (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
Double Action: Boogaloo (HKLM-x32\...\Steam App 317360) (Version:  - Double Action Factory)
Dragon Age: Origins - Ultimate Edition (HKLM-x32\...\Steam App 47810) (Version:  - BioWare)
Dragon Nest Europe (HKLM-x32\...\Steam App 258700) (Version:  - Eyedentity Games)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Entity Framework 6.1.3 Tools  for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Eternal Senia (HKLM-x32\...\Steam App 351640) (Version:  - Holy Priest)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Firefall (HKLM-x32\...\Steam App 227700) (Version:  - Red 5 Studios)
FORCED (HKLM-x32\...\Steam App 249990) (Version:  - BetaDwarf)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FreeStyle2: Street Basketball (HKLM-x32\...\Steam App 339610) (Version:  - Joycity)
G DATA INTERNET SECURITY (HKLM-x32\...\{AC68D2FF-1674-4C16-A536-A69FC11BBD82}) (Version: 25.1.0.12 - G DATA Software AG)
Galacide (HKLM-x32\...\Steam App 356790) (Version:  - Puny Human)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
gbrainy 2.06 (HKLM-x32\...\gbrainy) (Version: 2.06 - )
Geometry Dash (HKLM-x32\...\Steam App 322170) (Version:  - RobTop Games)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
GitHub (HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\5f7eb300e2ea4ebf) (Version: 2.13.1.2 - GitHub, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Gothic 3 (HKLM-x32\...\Steam App 39500) (Version:  - Piranha – Bytes)
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Grand Theft Auto: Episodes from Liberty City (HKLM-x32\...\Steam App 12220) (Version:  - Rockstar North / Toronto)
GunZ 2: The Second Duel (HKLM-x32\...\Steam App 242720) (Version:  - Masangsoft, Inc.)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
Half-Life 2: Episode Two (HKLM-x32\...\Steam App 420) (Version:  - Valve)
Half-Life 2: Lost Coast (HKLM-x32\...\Steam App 340) (Version:  - Valve)
Hitman: Blood Money (HKLM-x32\...\Steam App 6860) (Version:  - IO Interactive)
HotPotatoes v 6.3.0.5 (HKLM-x32\...\hotpot_is1) (Version:  - HalfBaked)
HP Color LaserJet CM1312 MFP Series 5.1 (HKLM\...\{8EEDB90E-6ABC-42bb-AD4C-39DEE05E3EEA}) (Version: 5.1 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
hppCLJCM1312 (x32 Version: 005.001.00142 - Hewlett-Packard) Hidden
hppFaxDrvCM1312 (x32 Version: 005.000.00001 - Hewlett-Packard) Hidden
hppFaxUtilityCM1312 (x32 Version: 005.001.00137 - Ihr Firmenname) Hidden
hppFonts (x32 Version: 001.001.00061 - Hewlett-Packard) Hidden
hppManualsCM1312 (x32 Version: 005.001.00145 - Ihr Firmenname) Hidden
hppQFolderCM1312 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
hppScanToCM1312 (x32 Version: 005.001.00140 - Ihr Firmenname) Hidden
hppSendFaxCM1312 (x32 Version: 005.000.00001 - Ihr Firmenname) Hidden
HWiNFO64 Version 4.36 (HKLM\...\HWiNFO64_is1) (Version: 4.36 - Martin Malík - REALiX)
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
Hyperdimension Neptunia Re;Birth1 (HKLM-x32\...\Steam App 282900) (Version:  - Idea Factory, Inc.)
IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version:  - )
Inno Setup Version 5.5.5 (HKLM-x32\...\Inno Setup 5_is1) (Version: 5.5.5 - jrsoftware.org)
Ionball 2 : Ionstorm (HKLM-x32\...\Steam App 287120) (Version:  - Ironsun Studios)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java SE Development Kit 8 Update 77 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180770}) (Version: 8.0.770.3 - Oracle Corporation)
Killer is Dead (HKLM-x32\...\Steam App 261110) (Version:  - KADOKAWA GAMES / GRASSHOPPER MANUFACTURE)
Kingdoms of Amalur: Reckoning™ (HKLM-x32\...\Steam App 102500) (Version:  - Big Huge Games)
Kingdoms Rise (HKLM-x32\...\Steam App 248630) (Version:  - Flyleap Studios Pty. Ltd.)
Kingdoms Rise Test (HKLM-x32\...\Steam App 267110) (Version:  - )
Krita Desktop (x64) 2.8.3.0 (HKLM\...\{C954F6B7-202B-4811-8A7E-1BFBCD3A09DD}) (Version: 2.8.3.0 - KO GmbH)
Langenscheidt Vokabeltrainer 7.0 Englisch (HKLM-x32\...\{3D06A72A-5D78-4840-B0AE-110008653233}) (Version: 7.0.20 - Langenscheidt)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Lichdom: Battlemage (HKLM-x32\...\Steam App 261760) (Version:  - Xaviant)
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
LOOT (HKLM-x32\...\LOOT) (Version: 0.7.1 - LOOT Development Team)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version:  - Paradox North)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
METAL GEAR RISING: REVENGEANCE (HKLM-x32\...\Steam App 235460) (Version:  - PlatinumGames)
Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version:  - )
Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Help Viewer 2.2 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.2 Sprachpaket - DEU) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 15.0.4823.1004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB  (HKLM\...\{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU  (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (14.0.50616.0) (HKLM-x32\...\{FA604873-01A0-4834-AF87-418534E465BB}) (Version: 14.0.50616.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (14.0.50616.0) (HKLM-x32\...\{58246C80-3941-4B69-AE31-264644E2ADB8}) (Version: 14.0.50616.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{9634d50a-0c4d-4f52-8a9f-894a2baae370}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{307a22b8-8353-4c5e-b67b-2404c5734558}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Enterprise 2015 with Update 1 (HKLM-x32\...\{744ce637-0100-4143-8721-152854cde612}) (Version: 14.0.24720.0 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Missing Translation (HKLM-x32\...\Steam App 395520) (Version:  - AlPixel Games)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Mount Your Friends (HKLM-x32\...\Steam App 296470) (Version:  - Stegersaurus Software Inc.)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 45.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 45.0.1 (x86 de)) (Version: 45.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MTP Porting Kit (HKLM-x32\...\{353B1E6D-7073-4450-8C80-699BD8FCFB49}) (Version: 12.0.0 - Microsoft Corp)
Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
My Game Long Name (HKLM\...\UDK-3b062e57-7df6-497f-9e36-a55150b2aaa9) (Version:  - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-6d17cd2a-33a6-44f1-86c0-d0a1db54d2be) (Version:  - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-7e8a9736-4f23-489f-8f4a-b8473c112fb6) (Version:  - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-82ba49fe-db2d-49e8-9b53-af332ad36c11) (Version:  - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-94d57964-b741-4087-b502-435df84c949d) (Version:  - Epic Games, Inc.)
NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst (HKLM-x32\...\Steam App 234670) (Version:  - CyberConnect 2)
NEOTOKYO° (HKLM-x32\...\Steam App 244630) (Version:  - STUDIO RADI-8)
NetBeans IDE 8.1 (HKLM\...\nbi-nb-base-8.1.0.0.201510222201) (Version: 8.1 - NetBeans.org)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.56.1 - Black Tree Gaming)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.95 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4823.1004 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Operation Flashpoint: Dragon Rising (HKLM-x32\...\Steam App 12830) (Version:  - Codemasters Studios)
Operation Flashpoint: Red River (HKLM-x32\...\Steam App 44340) (Version:  - Codemasters Action Studio)
Overlord: Raising Hell (HKLM-x32\...\Steam App 12710) (Version:  - Triumph Studios)
paint.net (HKLM\...\{DADC2AF6-DC9F-4BCF-BFCE-DCEC16EF507C}) (Version: 4.0.9 - dotPDN LLC)
Panda USB Vaccine 1.0.1.4 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
Patch testing for Chivalry (HKLM-x32\...\Steam App 232210) (Version:  - )
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Sony Online Entertainment)
Port of Call (HKLM-x32\...\Steam App 356520) (Version:  - Underdog Games)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
POSTAL 2 (HKLM-x32\...\Steam App 223470) (Version:  - Running With Scissors)
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Quake Live (HKLM-x32\...\Steam App 282440) (Version:  - id Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Rise of the Argonauts (HKLM-x32\...\Steam App 12770) (Version:  - Liquid Entertainment)
Risen (HKLM-x32\...\Steam App 40300) (Version:  - Piranha – Bytes)
Rising Storm Beta (HKLM-x32\...\Steam App 224780) (Version:  - )
Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version:  - Tripwire Interactive)
RivaTuner Statistics Server 6.4.0 (HKLM-x32\...\RTSS) (Version: 6.4.0 - Unwinder)
ROCCAT Kone XTD Mouse Driver (HKLM-x32\...\{7133137D-DF48-4522-AD88-13C82B7D0A63}) (Version:  - Roccat GmbH)
Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0013 - Roccat GmbH)
Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.24723 - Microsoft Corporation) Hidden
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.3.0 - Samsung Electronics)
Sandboxie 5.12 (64-bit) (HKLM\...\Sandboxie) (Version: 5.12 - Sandboxie Holdings, LLC)
Secrets of Grindea (HKLM-x32\...\Steam App 269770) (Version:  - Pixel Ferrets)
ShareX (HKLM-x32\...\Steam App 400040) (Version:  - ShareX Team)
Shark007 Advanced Codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 4.5.6 - Shark007)
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Source SDK (HKLM-x32\...\Steam App 211) (Version:  - Valve)
Star Wars Jedi Knight: Jedi Academy (HKLM-x32\...\Steam App 6020) (Version:  - Raven Software)
StarUML 5.0.2.1570 (HKLM-x32\...\StarUML_is1) (Version:  - Plastic Software, Inc.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version:  - Terry Cavanagh)
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version:  - Team Meat)
Synergy (HKLM-x32\...\Steam App 17520) (Version:  - Synergy Team)
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.24712 - Microsoft Corporation) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\1207665503_is1) (Version: 2.6.0.8 - GOG.com)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
The Elder Scrolls III: Morrowind (HKLM-x32\...\Steam App 22320) (Version:  - Bethesda Game Studios®)
The Elder Scrolls IV: Oblivion  (HKLM-x32\...\Steam App 22330) (Version:  - Bethesda Game Studios)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Way of Life (HKLM-x32\...\Steam App 310370) (Version:  - Fabio Ferrara)
theHunter (HKLM-x32\...\Steam App 253710) (Version:  - Expansive Worlds)
Toribash (HKLM-x32\...\Steam App 248570) (Version:  - Nabi Studios)
TrayApp (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Trine (HKLM-x32\...\Steam App 35700) (Version:  - Frozenbyte)
TypeScript Power Tool (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.7.4.0 (HKLM-x32\...\{33e2204a-4ec6-4458-895a-47e2a404d990}) (Version: 1.7.24720.0 - Microsoft Corporation)
Ultra Street Fighter IV (HKLM-x32\...\Steam App 45760) (Version:  - Capcom)
Universal CRT Extension SDK (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Redistributable (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Unreal Development Kit: 2012-10 (HKLM\...\UDK-af52a7d6-4101-464c-b6fd-0fdf839d0d3b) (Version:  - Epic Games, Inc.)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.2 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vokabeltrainer-Update 7.0.137 (HKLM-x32\...\{8EF577BD-32D3-4FDD-821D-B6A248539639}) (Version: 7.0.137 - Langenscheidt)
VS Update core components (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
VVVVVV (HKLM-x32\...\Steam App 70300) (Version:  - Terry Cavanagh)
War of the Roses (HKLM-x32\...\Steam App 42160) (Version:  - Fatshark)
War of the Roses Balance Beta (HKLM-x32\...\Steam App 206980) (Version:  - )
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Warhammer 40,000: Dawn of War - Game of the Year Edition (HKLM-x32\...\Steam App 4570) (Version:  - Relic Entertainment)
Warhammer® 40,000™: Dawn of War® II (HKLM-x32\...\Steam App 15620) (Version:  - Relic Entertainment)
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WebReg (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinSCP 5.7.1 (HKLM-x32\...\winscp3_is1) (Version: 5.7.1 - Martin Prikryl)
WinUHA 2.0 RC1 (2005.02.27) (HKLM-x32\...\WinUHA_is1) (Version:  - Klaimsoft)
x64 Components v4.5.6 (HKLM\...\Advanced x64Components_is1) (Version: 4.5.6 - Shark007)
Yomi (HKLM-x32\...\Steam App 287960) (Version:  - )

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1991814362-3727001073-523396128-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Niklas\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {053E98FD-C447-4E83-BEC8-739ABC6CE5AC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {0A5439B1-6292-4456-B7C7-EBF695BFF61F} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {119AD33F-BA4E-416B-896C-FCF4D4190D6A} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {15796A4C-06FC-4EA4-8FE7-EB2178463339} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {1CE54359-3883-49B3-B8F7-CFF2AB594B3B} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {264A4DCA-030B-4BDB-9C29-C1E51FB042C6} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {26AB064D-262B-42E9-99F9-ABBC0E3B5722} - System32\Tasks\{2E2AF441-187E-4A28-A6F6-9A0BACF96B3D} => pcalua.exe -a I:\INSTALL.EXE -d I:\
Task: {31E7AFE1-E39B-4450-BF17-73D4E8C07C96} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {3B5B8789-3099-4F2E-A625-A87B5172EFE4} - System32\Tasks\0715avUpdateInfo => C:\ProgramData\Avg_Update_0715av\0715av_AVG-Secure-Search-Update.exe [2015-07-07] ()
Task: {3CC00D3F-957B-4673-8828-FB2193C61B09} - System32\Tasks\SmartDefrag4_Update => C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe
Task: {3F543441-5EBD-4A75-AAE2-E246BCE18E3E} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-06-02] ()
Task: {3FE14628-8C56-48DC-8E57-AEE521FF6AF5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {40648E45-2BCE-488F-B66F-203B2BADD447} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
Task: {42B5A4DE-6967-4C09-B711-EF8A91969BA5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {45B775A2-36D8-4250-AB89-283508C84C9C} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {4928ED5D-8CD7-474C-9CC9-FB167724F138} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {4DD15BDA-AC36-4ED1-8B0F-496B1840ADC1} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {53C4BA89-2002-4233-B70D-C1F475DC0595} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-28] (Microsoft Corporation)
Task: {656F97F7-51EC-4C45-87D3-A42519832DB2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {6A2FB1A7-3773-47A7-B405-CA65F275EC8C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {6F18BA9A-2104-4C65-949C-308ED85F7CF6} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {700FFD3E-447C-4299-B752-446E8A8F523B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {7709C656-3B54-4CEA-BD8F-8B1BAB62DD87} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {83F53A5D-C3B5-4B3A-B823-05AB7C2D1F73} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {889990BF-6D25-4C2A-9462-8600F2DA5842} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {90222C39-BF14-45BB-8225-B5209DA38012} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11] (Adobe Systems Incorporated)
Task: {922A75BF-AE5B-4ED7-8066-7B29722CE810} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {987A25A4-7433-4C60-B98C-809A29286AC1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {9B289798-1D6B-40FD-957C-16438FE6FC0A} - System32\Tasks\CCleanerSkipUAC => D:\CCleaner\CCleaner.exe [2016-04-15] (Piriform Ltd)
Task: {9EA574CC-B94E-438A-B5C5-5778BBF941E1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {A1FA83E8-BAEE-48D9-8E87-18F70BD79AB9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {A6C2A848-951C-4C88-AED7-93C154DCD9CA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {AF091B02-4323-4EBB-9AEA-F2865D708A17} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {B230A630-790F-4469-89DE-88FC249E18BD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {B242ED1E-0C48-4C0C-89B2-24E12F0CAE21} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {B76E8E95-7FF6-46B8-9E07-D060C6772304} - System32\Tasks\1015avUpdateInfo => C:\ProgramData\Avg_Update_1015av\1015av_AVG-Secure-Search-Update.exe [2015-10-11] ()
Task: {B799C48B-86FD-4746-984D-D7C9FA7F36BF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {C5218C51-925A-4FC2-A545-9B43D889CCB3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation)
Task: {C885A0F2-84E2-4040-BBB2-875FA26003E8} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {CB3B06FB-C004-4430-A8C5-4D8A3E3D1D8C} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {CBF5A797-7FBC-4F53-82F0-3400257CF7A7} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {CC4DF82B-4D06-4B34-8BBE-49EDE05C5CD9} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {D0F81F84-9711-4A7D-9D25-2D3A629A4215} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {E08382DB-B678-4A30-8A47-762301B46BD9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {E8EC30FC-01C9-4527-880C-26DE2A4A4368} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-06-16] (Microsoft Corporation)
Task: {EC1048B2-76E9-4EE1-AE1F-E6CEA878FBDF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {ECFA08E1-C541-4131-B52E-D184320A9EB6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-28] (Microsoft Corporation)
Task: {EEDFD503-38FA-496E-A393-5E10417BB04D} - System32\Tasks\SmartDefrag4_Startup => C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe
Task: {F1FE606B-01A9-4241-9C2E-9BEAD82ECBB4} - System32\Tasks\PandaUSBVaccine => D:\Panda USB Vaccine\RunInteractiveWin.exe [2009-09-23] ()
Task: {F53D9CE7-CCE1-45E5-8158-E575CA958544} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\0715avUpdateInfo.job => C:\ProgramData\Avg_Update_0715av\0715av_AVG-Secure-Search-Update.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-06-16 21:02 - 2016-01-29 12:49 - 00135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-05-28 19:28 - 2015-05-28 19:28 - 00048640 _____ () C:\Windows\SysWOW64\ASGT.exe
2016-02-11 05:43 - 2016-02-11 05:43 - 00387704 ____N () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll
2016-04-13 13:41 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2014-11-09 13:37 - 2015-10-21 20:09 - 00403456 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks64.dll
2015-06-02 03:19 - 2015-06-02 03:19 - 00578272 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
2016-04-13 13:41 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-04-19 16:41 - 2016-04-19 16:41 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-02-06 16:08 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-10 19:48 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-21 20:33 - 2015-10-21 20:33 - 00205000 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
2015-10-21 20:08 - 2015-10-21 20:08 - 00026112 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
2015-10-21 20:08 - 2015-10-21 20:08 - 00088576 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
2016-06-16 02:27 - 2016-06-16 02:28 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-06-16 02:27 - 2016-06-16 02:28 - 13105152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-16 02:27 - 2016-06-16 02:27 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-06-16 02:27 - 2016-06-16 02:28 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-06-18 00:54 - 2016-06-15 10:26 - 02334360 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-18 00:54 - 2016-06-15 10:26 - 00105112 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll
2016-06-16 23:02 - 2016-05-28 05:59 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-06-16 23:02 - 2016-05-28 05:53 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-06-16 23:02 - 2016-05-28 05:54 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-06-16 23:02 - 2016-05-28 05:56 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-05-18 13:43 - 2015-05-18 13:43 - 00071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2015-05-18 13:43 - 2015-05-18 13:43 - 00057856 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2015-05-18 13:43 - 2015-05-18 13:43 - 00218624 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2015-05-22 12:56 - 2015-05-22 12:56 - 00357888 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2015-05-22 13:36 - 2015-05-22 13:36 - 00649216 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2014-02-23 17:59 - 2015-10-21 20:08 - 00356352 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks.dll
2016-04-19 16:41 - 2016-04-19 16:41 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 16:41 - 2016-04-19 16:42 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-07-07 15:59 - 2012-06-17 11:20 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll
2015-10-21 20:08 - 2015-10-21 20:08 - 00353792 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2015-10-21 20:08 - 2015-10-21 20:08 - 00071680 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2015-10-21 20:08 - 2015-10-21 20:08 - 00056832 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\sony.com -> sony.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2014-04-24 17:53 - 00000860 ____A C:\WINDOWS\system32\Drivers\etc\hosts

192.168.178.20 HP1312nfi.fritz.box

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1991814362-3727001073-523396128-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^Users^Niklas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Produktregistrierung.lnk => C:\Windows\pss\Logitech . Produktregistrierung.lnk.Startup
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "Launch LCore"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-1991814362-3727001073-523396128-1000\...\StartupApproved\Run: => "SandboxieControl"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{7461670A-DA0D-49E6-BB9E-FEB72E03D16D}] => (Allow) D:\Steam\SteamApps\common\Mount Your Friends\MountYourFriends.exe
FirewallRules: [{39ED4426-CD26-48C6-97BF-37A952CAE925}] => (Allow) D:\Steam\SteamApps\common\Mount Your Friends\MountYourFriends.exe
FirewallRules: [{211B1375-E9CF-4C53-AF57-4322AF419CB7}] => (Block) D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe
FirewallRules: [{0E7A6E83-E9F6-446E-9CDD-228A11444614}] => (Block) D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe
FirewallRules: [UDP Query User{968F56DD-99A3-464A-BEA4-C1708A6E0FC0}D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe] => (Allow) D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe
FirewallRules: [TCP Query User{BF0E3DDA-885F-4868-B719-D1FFD8701CF3}D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe] => (Allow) D:\steam\steamapps\common\killerisdead\binaries\win32\kidgame.exe
FirewallRules: [{F5BFEC71-069B-49A3-84EE-E329C6E880A5}] => (Allow) D:\Steam\SteamApps\common\Double Action\bin\hlmv.exe
FirewallRules: [{49E67145-983D-4970-A05D-8A08F6990406}] => (Allow) D:\Steam\SteamApps\common\Double Action\bin\hlmv.exe
FirewallRules: [{1B999194-991D-4D43-8782-D85B9782FC8F}] => (Allow) D:\Steam\SteamApps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{7DC21612-6CE8-4525-BF14-6A7FADECE84F}] => (Allow) D:\Steam\SteamApps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{94C904D0-5D60-442D-BB9E-60224294CBDF}] => (Allow) D:\Steam\SteamApps\common\Gothic 3\Gothic3.exe
FirewallRules: [{205048E7-6157-49C0-A9F4-466A7AF2CFC0}] => (Allow) D:\Steam\SteamApps\common\Gothic 3\Gothic3.exe
FirewallRules: [{D38A57DA-2070-4213-AB11-27EDF3AB5426}] => (Allow) D:\Steam\SteamApps\common\Hitman Blood Money\configure.exe
FirewallRules: [{F77AC2BC-4747-47C8-BA78-3C542C0FBD48}] => (Allow) D:\Steam\SteamApps\common\Hitman Blood Money\configure.exe
FirewallRules: [{8CAF2F7C-8FAD-4B0C-94FA-32F40C55A108}] => (Allow) D:\Steam\SteamApps\common\Hitman Blood Money\HitmanBloodMoney.exe
FirewallRules: [{1128EF59-59C0-48AB-BDED-4F01F752F488}] => (Allow) D:\Steam\SteamApps\common\Hitman Blood Money\HitmanBloodMoney.exe
FirewallRules: [{EB677C0D-F9CE-46EF-835A-7AA9359853D1}] => (Allow) D:\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{237B8DC4-FA86-44C6-88CE-C6E76D1FA646}] => (Allow) D:\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{C6355E74-4B56-4932-9663-8A3FDDF596F9}] => (Allow) D:\Steam\SteamApps\common\Lichdom Battlemage\Bin64\LichdomBattlemage.exe
FirewallRules: [{143DEA14-8192-4BEA-881E-6B1D1437018C}] => (Allow) D:\Steam\SteamApps\common\Lichdom Battlemage\Bin64\LichdomBattlemage.exe
FirewallRules: [{A3EEE1B6-0EB3-4F13-B6CC-675101874C47}] => (Allow) D:\Steam\SteamApps\common\Trine\_enchanted_edition_\trine1_launcher.exe
FirewallRules: [{E1864CEF-95EE-43BF-B360-35411F40E4B8}] => (Allow) D:\Steam\SteamApps\common\Trine\_enchanted_edition_\trine1_launcher.exe
FirewallRules: [{FF8E1695-099A-4AAA-9FC5-488F8D7577AD}] => (Allow) D:\Steam\SteamApps\common\Neptunia Rebirth1\NeptuniaReBirth1.exe
FirewallRules: [{CE2546F7-4C2B-4A63-8197-C6F182113DD9}] => (Allow) D:\Steam\SteamApps\common\Neptunia Rebirth1\NeptuniaReBirth1.exe
FirewallRules: [UDP Query User{A0C267A7-330A-48E7-B6BD-1CED7DC3A2AE}D:\blade symphony 2013 - 2015 merge patch\blade symphony\berimbau.exe] => (Block) D:\blade symphony 2013 - 2015 merge patch\blade symphony\berimbau.exe
FirewallRules: [TCP Query User{194FCDA0-4394-4DFD-85BD-6CDF592966D5}D:\blade symphony 2013 - 2015 merge patch\blade symphony\berimbau.exe] => (Block) D:\blade symphony 2013 - 2015 merge patch\blade symphony\berimbau.exe
FirewallRules: [UDP Query User{FEE9F9F6-8DB7-4DF4-8FE7-68F190B6BEBD}D:\steam\steamapps\common\galacide\galacide\binaries\win64\galacide-win64-shipping.exe] => (Block) D:\steam\steamapps\common\galacide\galacide\binaries\win64\galacide-win64-shipping.exe
FirewallRules: [TCP Query User{D7BFFDCD-6828-478B-BE7D-6527CCFB8D3F}D:\steam\steamapps\common\galacide\galacide\binaries\win64\galacide-win64-shipping.exe] => (Block) D:\steam\steamapps\common\galacide\galacide\binaries\win64\galacide-win64-shipping.exe
FirewallRules: [{32061EDB-783C-4E67-A5A0-8982A4158E04}] => (Allow) D:\Steam\SteamApps\common\Galacide\Galacide.exe
FirewallRules: [{1CE2AB57-92A0-4F26-8C91-037C55A3107E}] => (Allow) D:\Steam\SteamApps\common\Galacide\Galacide.exe
FirewallRules: [{A0F5207F-8800-49E1-97EF-C5C1E6D597C8}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{7D9968F9-1E47-46E8-9DBF-EC055BB78272}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{9E76AED9-FC2A-4830-B8E4-5081462BEEB7}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{86FECB40-C351-4A21-BA3A-952886F252FC}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{CB46B23D-9E94-4EAE-8178-40D49038BF31}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{6A38F6BF-0464-4120-AF3A-97AA877BC3FE}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{82651717-6575-42F0-AB2C-B1C2638F412D}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{E8C3B4B4-9A00-4DF7-B294-9F5F563D5AB0}] => (Allow) D:\Steam\SteamApps\common\nosgoth\NosgothLauncher.exe
FirewallRules: [{C24DD21D-570D-405D-96D2-51426F0994F7}] => (Allow) D:\Steam\SteamApps\common\nosgoth\NosgothLauncher.exe
FirewallRules: [{4AD67F8C-B8A9-42A0-AD13-0F1E8FDD3CB1}] => (Allow) D:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{B139E647-4D6F-44B9-B445-A1622C514F2A}] => (Allow) D:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{567A3F21-97C8-4AC3-A6ED-A03087A718AE}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{D1ED7D7E-5724-4777-94CD-A9BA5252C9D2}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{31E55B27-1DA5-42D1-B5A2-22CDFF166E58}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{782D54C2-1ED9-4C83-92AE-E166B3B460DA}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{7336DEE8-0C7A-4377-BD68-BFAC4769C18C}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP BEAT\BEAT.exe
FirewallRules: [{B916EDB3-75F5-404E-9B93-A93DE65BB716}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP BEAT\BEAT.exe
FirewallRules: [{CAA38988-F479-452B-A2CF-D1A9A7AF5F5F}] => (Allow) D:\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{97035D4D-7F6B-488A-BBF6-F98F98C49BF8}] => (Allow) D:\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{AED0F4B9-841B-4504-B3D3-B7E94EAEE97C}] => (Allow) D:\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{DF5852EF-9D36-4EA0-A7A2-7389FB891498}] => (Allow) D:\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{97A694FC-9BB9-4E46-A855-8048384970E2}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP VOID\BIT.TRIP VOID.exe
FirewallRules: [{6D96C57A-68ED-4C33-B0C0-0E9F54AC5155}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP VOID\BIT.TRIP VOID.exe
FirewallRules: [{D83ABFDF-F5ED-41A1-9CBE-BC65DD8DFA55}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP RUNNER\RUNNER.exe
FirewallRules: [{8967FD5C-60B2-4C52-9203-CA700C1BD614}] => (Allow) D:\Steam\SteamApps\common\BIT.TRIP RUNNER\RUNNER.exe
FirewallRules: [{C2CA28F9-6767-41F6-8E3F-EC92A47235A8}] => (Allow) D:\Steam\SteamApps\common\Geometry Dash\GeometryDash.exe
FirewallRules: [{CC956953-4957-4393-AB82-EB9F0867123C}] => (Allow) D:\Steam\SteamApps\common\Geometry Dash\GeometryDash.exe
FirewallRules: [{29A7B648-1A15-4D29-A8E1-C75CE501FC4E}] => (Allow) D:\Steam\SteamApps\common\ShareX\ShareX_Launcher.exe
FirewallRules: [{2DC9564F-07D7-40E0-82F1-392AD9552D1B}] => (Allow) D:\Steam\SteamApps\common\ShareX\ShareX_Launcher.exe
FirewallRules: [{B4F0B037-7DA9-4EEC-A6CF-B51B1BA16498}] => (Allow) D:\Steam\SteamApps\common\GunZ 2 The Second Duel\Gunz2_Steam.exe
FirewallRules: [{B370D4A7-AF00-400D-9151-E2468A304C0D}] => (Allow) D:\Steam\SteamApps\common\GunZ 2 The Second Duel\Gunz2_Steam.exe
FirewallRules: [{C41C0A91-BA0F-47C9-846A-5896E56460D6}] => (Allow) D:\Steam\SteamApps\common\Missing Translation\nw.exe
FirewallRules: [{375BEB75-8CFE-4F76-B768-AFF49DD3E2FA}] => (Allow) D:\Steam\SteamApps\common\Missing Translation\nw.exe
FirewallRules: [{5FE430D0-D250-4D3B-967F-CAF576619627}] => (Allow) D:\Steam\SteamApps\common\Kingdoms Rise Test\Binaries\Win32\UDK.exe
FirewallRules: [{EF2A3B91-51A1-4DB3-8773-D261D7B2C1AF}] => (Allow) D:\Steam\SteamApps\common\Kingdoms Rise Test\Binaries\Win32\UDK.exe
FirewallRules: [{FB27B6DC-3B9C-4BC6-8D05-0C6FC25056B3}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\ChivLauncher.exe
FirewallRules: [{D16F4B4B-B171-43C3-AE24-F1FC93F27711}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\ChivLauncher.exe
FirewallRules: [{324B5FB8-14CD-4A1A-9373-E0689AE09289}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win32\CMW.exe
FirewallRules: [{D703EBE4-C027-451D-A60F-2BE4F14E72EF}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win32\CMW.exe
FirewallRules: [{97F4F9AB-F4F1-476E-8EED-14BA1D68F0D8}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win64\CMW.exe
FirewallRules: [{0BEE6AB3-8797-471D-AE2A-C9EF26CFF6D5}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win64\CMW.exe
FirewallRules: [{490D790D-284A-4937-B195-6F9F6EA261EB}] => (Allow) D:\Steam\SteamApps\common\War of the Roses Alpha\run_game.exe
FirewallRules: [{D47541CF-B134-4ACA-9AE5-E87131E0C97D}] => (Allow) D:\Steam\SteamApps\common\War of the Roses Alpha\run_game.exe
FirewallRules: [{839C9647-3DAE-4344-82B8-9061603D47DF}] => (Allow) D:\Steam\SteamApps\common\Amnesia The Dark Descent\Launcher.exe
FirewallRules: [{CD62B321-8558-440C-A462-6551C872A2D0}] => (Allow) D:\Steam\SteamApps\common\Amnesia The Dark Descent\Launcher.exe
FirewallRules: [{9B5EE76A-5291-4F83-BB5F-667B46BC7184}] => (Allow) D:\Steam\SteamApps\common\Amnesia The Dark Descent\Amnesia.exe
FirewallRules: [{E23AB1FD-8C77-4C30-A4E2-57735C3C5227}] => (Allow) D:\Steam\SteamApps\common\Amnesia The Dark Descent\Amnesia.exe
FirewallRules: [{E0EECB92-3E13-45F6-A4F7-625BFCA92F49}] => (Allow) D:\Steam\SteamApps\common\Operation Flashpoint Red River\RedRiverLauncher.exe
FirewallRules: [{D06AE6A1-23C2-4922-987F-2DF3C8BE8E03}] => (Allow) D:\Steam\SteamApps\common\Operation Flashpoint Red River\RedRiverLauncher.exe
FirewallRules: [{F3D200DE-33FA-48E8-9E16-3AC0FF88F7D4}] => (Allow) D:\Steam\SteamApps\common\Oblivion\OblivionLauncher.exe
FirewallRules: [{F0EEEE14-A0DB-4723-9EDC-4D7971DF6D37}] => (Allow) D:\Steam\SteamApps\common\Oblivion\OblivionLauncher.exe
FirewallRules: [{3B43A095-5E47-4AE7-BDCA-34675DE89A68}] => (Allow) D:\Steam\SteamApps\common\Operation Flashpoint Dragon Rising\OFDR.exe
FirewallRules: [{11009B2E-2538-4C2A-91F3-4AEDCB8ECEBB}] => (Allow) D:\Steam\SteamApps\common\Operation Flashpoint Dragon Rising\OFDR.exe
FirewallRules: [{1C2F9108-D1FC-4131-AF6F-34B50AC2A615}] => (Allow) D:\Steam\SteamApps\common\Rise of the Argonauts\Binaries\RiseOfTheArgonauts.exe
FirewallRules: [{BB176E86-8740-4C60-A5A3-C257012419A7}] => (Allow) D:\Steam\SteamApps\common\Rise of the Argonauts\Binaries\RiseOfTheArgonauts.exe
FirewallRules: [{DDAD39C1-3CE2-4997-9F00-9DF0A9DEA856}] => (Allow) D:\Steam\SteamApps\common\Morrowind\Morrowind Launcher.exe
FirewallRules: [{9732D972-48B3-42BE-BDCB-F50911578EC8}] => (Allow) D:\Steam\SteamApps\common\Morrowind\Morrowind Launcher.exe
FirewallRules: [{F1DE4620-F602-4615-879E-F7D863F43C05}] => (Allow) D:\Steam\SteamApps\common\Overlord\Config.exe
FirewallRules: [{614908E9-17EF-4C95-85CD-200949C9B444}] => (Allow) D:\Steam\SteamApps\common\Overlord\Config.exe
FirewallRules: [{FE0F066C-1524-411F-8AF2-3CCD0D05FA5F}] => (Allow) D:\Steam\SteamApps\common\Overlord\Overlord.exe
FirewallRules: [{749E3FE5-C7D9-4BEA-B63D-9AA5BA9ACA89}] => (Allow) D:\Steam\SteamApps\common\Overlord\Overlord.exe
FirewallRules: [{373DE971-A647-46D6-A99C-B1743CD7833C}] => (Allow) D:\Steam\SteamApps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{715DC91A-F666-45E8-BE01-35ABE4D8AE5F}] => (Allow) D:\Steam\SteamApps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{FC4610C6-8A60-43D7-830B-A208EF3746D0}] => (Allow) D:\Steam\SteamApps\common\Port of Call\PortOfCall.exe
FirewallRules: [{B6905773-95E3-4032-B691-0AFA8257B4AB}] => (Allow) D:\Steam\SteamApps\common\Port of Call\PortOfCall.exe
FirewallRules: [{F4838ECA-802F-4BC8-9091-7AF019CD9C24}] => (Allow) D:\Steam\SteamApps\common\Blender\blender.exe
FirewallRules: [{D541BBD0-6B1D-45ED-B864-48AC0131E949}] => (Allow) D:\Steam\SteamApps\common\Blender\blender.exe
FirewallRules: [{BC8BC729-96B8-4109-A8F3-DA12B01A2932}] => (Allow) C:\Program Files (x86)\SITECOM\11n USB Wireless LAN Utility\RtWLan.exe
FirewallRules: [{9D9C111D-2E60-41A9-BCFB-EF9116784098}] => (Allow) C:\Program Files (x86)\SITECOM\11n USB Wireless LAN Utility\RtWLan.exe
FirewallRules: [{0A8AA8ED-9F21-4540-9C35-9761049656DA}] => (Allow) LPort=1542
FirewallRules: [{953D1690-12CB-45D4-B424-857644A2917E}] => (Allow) LPort=1542
FirewallRules: [{BD4B3236-6CA2-46E1-A2ED-5958299E8CFF}] => (Allow) LPort=53
FirewallRules: [{1D235DB8-D76F-42B7-A382-ECE767EB4149}] => (Allow) C:\Steam\Steam.exe
FirewallRules: [{76D76D94-4142-4656-BFB6-3798CE242B91}] => (Allow) C:\Steam\Steam.exe
FirewallRules: [{7FFAC6F7-4641-40D5-B5C6-EF624CC4A417}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{0539C2C9-D423-4169-87F5-18F677C28E6C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{1CCB9B7D-5D2C-4F84-A8B0-44871AF905CE}] => (Allow) D:\Steam\SteamApps\common\War of the Roses\run_game.exe
FirewallRules: [{04499389-A44B-4929-960F-40098DBC2658}] => (Allow) D:\Steam\SteamApps\common\War of the Roses\run_game.exe
FirewallRules: [{71E351AC-D520-4D91-976B-1A2F53185190}] => (Allow) D:\Steam\SteamApps\common\KingdomsRise\Binaries\Win32\UDK.exe
FirewallRules: [{D1D4D194-717B-49DC-8739-7E041EE3C159}] => (Allow) D:\Steam\SteamApps\common\KingdomsRise\Binaries\Win32\UDK.exe
FirewallRules: [{8FA563EB-39C8-4840-B517-CB617A857CAB}] => (Allow) D:\Steam\SteamApps\common\KOAReckoning\Reckoning.exe
FirewallRules: [{FE422623-355B-46DF-B1A6-E243E34AB545}] => (Allow) D:\Steam\SteamApps\common\KOAReckoning\Reckoning.exe
FirewallRules: [{154787F8-0A0B-4F32-BBDE-3089422EBF95}] => (Allow) D:\Steam\SteamApps\common\Dragon Age Ultimate Edition\DAOriginsLauncher.exe
FirewallRules: [{5F2F8E71-1AD7-4F4F-88A9-5D108D91C4F4}] => (Allow) D:\Steam\SteamApps\common\Dragon Age Ultimate Edition\DAOriginsLauncher.exe
FirewallRules: [{D4A388B6-220F-4EF5-AF05-745C74216729}] => (Allow) D:\Steam\SteamApps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{8781F1DB-7730-4760-BDFB-E1F9CB9FEAC9}] => (Allow) D:\Steam\SteamApps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{2B405A96-79C5-401D-AB2F-529AFF955BA6}] => (Allow) D:\Steam\SteamApps\common\Jedi Academy\GameData\jasp.exe
FirewallRules: [{CE730740-5EF6-48CF-9A50-7CECD9FDFA8A}] => (Allow) D:\Steam\SteamApps\common\Jedi Academy\GameData\jasp.exe
FirewallRules: [{CDA84174-0966-4A03-BD1F-3173EFBE9164}] => (Allow) D:\Steam\SteamApps\common\Jedi Academy\GameData\jamp.exe
FirewallRules: [{C9BBCD0B-78BF-4A4E-B75B-17833C4A3937}] => (Allow) D:\Steam\SteamApps\common\Jedi Academy\GameData\jamp.exe
FirewallRules: [{5B987325-C663-4AE0-9F93-0D7154BB7AA0}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{8A27FA18-0827-4101-B698-0C546B249083}] => (Allow) LPort=2869
FirewallRules: [{A822ECCD-D1FA-460D-970D-9498F4A415C1}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{EB043DDD-C177-4679-BE9B-B64C1CB1C49D}D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
FirewallRules: [UDP Query User{C58674D6-AA3C-4798-9D24-EE495C8D9C5B}D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
FirewallRules: [{DCF013BA-202A-4662-AE49-9AB0DDD819C9}] => (Allow) D:\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{DCD14108-0D4E-400A-9BD7-77982C929E21}] => (Allow) D:\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{859F23DF-571E-4E52-8157-B500447C78A7}] => (Allow) D:\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{C9DB2166-1968-40D2-915E-24461ED43253}] => (Allow) D:\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{A611E0C2-7F89-427E-BD50-7718EF74CCB7}] => (Allow) D:\Steam\SteamApps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
FirewallRules: [{CAAC8F83-AF7A-4EB7-8FFF-F9C98FBAF07B}] => (Allow) D:\Steam\SteamApps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
FirewallRules: [TCP Query User{191DE101-79D9-42B5-A673-EC24B686010A}D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [UDP Query User{AFC3706E-4948-4B66-A239-96D72744DA7A}D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{DE819C4C-42E1-4214-B983-7D5B1C97DFD9}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{21CE4271-C83E-4380-BA68-BACA11A48864}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{57601B4F-6615-4A1B-B0A8-5FBEAB2645C3}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{92ECDE79-686D-4257-B318-7997B554AD83}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{0230AF6E-737F-471E-9E0D-1CC7E520115D}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{ACE84613-59AE-4C5B-94EA-AED11EAC5ED8}] => (Allow) D:\Steam\SteamApps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{D0E802A8-3E85-4927-90C1-32037AF3DBA5}] => (Allow) D:\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{889C6C78-2D0E-40A0-83F1-D210BE81D654}] => (Allow) D:\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{05CB63C4-4368-42EC-9889-1F29B319F362}] => (Allow) D:\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{E47BD74C-76E8-4DBF-A7FA-1DCD0E267FB7}] => (Allow) D:\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{2F462649-DAB8-49AE-82D3-FC9A310FAB38}] => (Allow) D:\Steam\SteamApps\common\MagickaWizardWars\WizardWarsLauncher.exe
FirewallRules: [{778554D8-336F-4343-AC8F-F6C8F4976FE0}] => (Allow) D:\Steam\SteamApps\common\MagickaWizardWars\WizardWarsLauncher.exe
FirewallRules: [{3ED76DD3-757B-470D-849E-DD43BADB0BC7}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{5A824E52-755F-4C09-9D12-04286A07282D}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{D09EE696-06F2-4024-A3AC-E952C2C3FC8A}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{76414215-E47C-47A6-94A1-DBEAB936A34C}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{0A50D340-530D-480D-8B57-005EDECB02BC}D:\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe] => (Allow) D:\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe
FirewallRules: [UDP Query User{570C4AED-EA60-42DC-9FBC-E4B826AEF83D}D:\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe] => (Allow) D:\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe
FirewallRules: [{3D52E9A8-CE11-47F8-8BED-1ED57F5024ED}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{F4873694-E4FE-462B-BE31-5057D433D20B}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [TCP Query User{76ACE5AC-06B6-436B-913D-089643828C99}D:\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\cmw.exe] => (Allow) D:\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\cmw.exe
FirewallRules: [UDP Query User{D32DAFF1-EAB5-4DFF-9578-A8F7A31C5E58}D:\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\cmw.exe] => (Allow) D:\steam\steamapps\common\chivalrymedievalwarfare\binaries\win64\cmw.exe
FirewallRules: [{F081D367-DF65-426B-B513-1A04AC7353D6}] => (Allow) D:\Steam\SteamApps\common\NEOTOKYO\hl2.exe
FirewallRules: [{DBEA12AC-6320-432D-9253-5659B47B69E9}] => (Allow) D:\Steam\SteamApps\common\NEOTOKYO\hl2.exe
FirewallRules: [{F7AAC540-2D7E-489A-B92C-49A947550E73}] => (Allow) D:\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{A78D151D-0539-4FEE-9E64-1AFF70111F1B}] => (Allow) D:\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{0CB1A1FE-AC40-482D-A7F4-04838B4ECC14}] => (Allow) D:\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{022D9187-5DA3-4AA1-8E77-13A279BF507F}] => (Allow) D:\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{A9EF7779-852B-461D-B3F8-BD4AA02D8395}] => (Allow) D:\Steam\SteamApps\common\War of the Roses\wotr.exe
FirewallRules: [{49B9B02D-FBE8-4B67-9DC3-C21375614DE5}] => (Allow) D:\Steam\SteamApps\common\War of the Roses\wotr.exe
FirewallRules: [{DA0B00F0-709B-4D29-9581-F3299A17470E}] => (Allow) D:\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe
FirewallRules: [{889F6E85-FAEA-4147-90CA-98D414E87F68}] => (Allow) D:\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe
FirewallRules: [{487EB6D0-8EA6-42C6-A710-AB670D91A1C8}] => (Allow) C:\Steam\bin\steamwebhelper.exe
FirewallRules: [{087D5739-EA71-4380-B3A1-4A83BEA48019}] => (Allow) C:\Steam\bin\steamwebhelper.exe
FirewallRules: [{756C9DFE-3818-4BEE-9669-2693F8EA2AC4}] => (Allow) D:\Steam\SteamApps\common\Ionball 2  Ionstorm\IonStorm_v1.1.exe
FirewallRules: [{A651DDFD-7F22-4F70-A548-FCE585587D7F}] => (Allow) D:\Steam\SteamApps\common\Ionball 2  Ionstorm\IonStorm_v1.1.exe
FirewallRules: [{4F1ED685-C59F-47C8-8147-8CCDEC392D51}] => (Allow) D:\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{97936AEA-2796-4770-B7CE-C389043038F1}] => (Allow) D:\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{403C4409-CC8C-4B98-84C2-1D0B6ECE9563}] => (Allow) D:\Steam\SteamApps\common\ArcheBlade\Binaries\Win32\Archeblade.exe
FirewallRules: [{39DB1D28-781C-40AE-B0B3-68D9428E12FD}] => (Allow) D:\Steam\SteamApps\common\ArcheBlade\Binaries\Win32\Archeblade.exe
FirewallRules: [{748CA6D2-BB6C-42ED-BC77-725ACEBC8C99}] => (Allow) D:\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{34A43701-671B-45E4-95FA-3B3CF61F0102}] => (Allow) D:\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{8906E936-FA62-4BD9-81F1-2BF6F43303E4}] => (Allow) D:\Steam\SteamApps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{196DE03F-2FBA-4BF9-B365-CEBA1C706E9A}] => (Allow) D:\Steam\SteamApps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{98FD65A3-1F99-4DB9-A3D0-C2E9DD49687C}] => (Allow) D:\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{ECFEBCB8-AB8B-4049-B691-24C10A47E1CF}] => (Allow) D:\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{6B403983-F813-42F4-BB51-C4407365F132}] => (Allow) D:\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{467B7FBD-F6AE-4DB8-BE4D-96D3F991EAA0}] => (Allow) D:\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{F47C8399-3FAD-44AE-B3F8-6533165D3034}] => (Allow) D:\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{B0959621-7381-486F-B030-FBA2AF82E473}] => (Allow) D:\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{476A2EA7-17EC-4400-B33A-E97DC1C1C739}] => (Allow) D:\Steam\SteamApps\common\Quake Live\quakelive_steam.exe
FirewallRules: [{1099EFE1-5865-4109-847A-53F9A1F364DF}] => (Allow) D:\Steam\SteamApps\common\Quake Live\quakelive_steam.exe
FirewallRules: [{ECA0B717-34CF-4A59-8596-0C6F3008E8E2}] => (Allow) D:\Steam\SteamApps\common\Risen\bin\Risen.exe
FirewallRules: [{099D7613-B946-438B-AB5B-E0BE84442913}] => (Allow) D:\Steam\SteamApps\common\Risen\bin\Risen.exe
FirewallRules: [{EA21A92A-3089-4BFA-945F-31D183102241}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{3F060256-C126-466C-9F90-6AE08948A4DA}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{D30E584F-9EBE-48D1-83C9-9C372E4E7940}D:\steam\steamapps\common\thehunter\game\thehunter.exe] => (Block) D:\steam\steamapps\common\thehunter\game\thehunter.exe
FirewallRules: [UDP Query User{841A7360-472B-4457-AB35-E1DA5BC92897}D:\steam\steamapps\common\thehunter\game\thehunter.exe] => (Block) D:\steam\steamapps\common\thehunter\game\thehunter.exe
FirewallRules: [{17990B30-9A8C-4641-B469-67F6239284A2}] => (Allow) D:\Steam\SteamApps\common\Super Street Fighter IV - Arcade Edition\SSFIV.exe
FirewallRules: [{7FEC9422-028A-4E25-8DB6-572694032649}] => (Allow) D:\Steam\SteamApps\common\Super Street Fighter IV - Arcade Edition\SSFIV.exe
FirewallRules: [{357B6836-0E3F-4924-9141-1B91C4E24058}] => (Allow) D:\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{9C553780-ABE8-4263-AEE8-6B8A386BFA5D}] => (Allow) D:\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{3FF2247E-7D69-440C-881E-EA8AD3B28785}] => (Allow) D:\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{F2281A1D-D13B-41BD-B5DF-79B348116E28}] => (Allow) D:\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{BFE606F9-470A-40E9-8703-F013BD30ECEB}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{F4ABBF8E-BF5F-468F-A547-5A6C8EFD740A}] => (Allow) D:\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{3CE94A95-8C7F-4B7C-9EF7-953A3EB25FA2}] => (Allow) D:\Steam\SteamApps\common\Double Action\hl2.exe
FirewallRules: [{DD155431-81E4-4F1A-A5A3-B96B88094A30}] => (Allow) D:\Steam\SteamApps\common\Double Action\hl2.exe
FirewallRules: [{D61F2CCC-8991-4D0B-AD61-080D581704A8}] => (Allow) D:\Steam\SteamApps\common\vvvvvv\VVVVVV.exe
FirewallRules: [{8BAE635E-442D-4DBE-A231-7160F7269BD0}] => (Allow) D:\Steam\SteamApps\common\vvvvvv\VVVVVV.exe
FirewallRules: [{BC648F94-F84F-4BC2-A535-5C7C059EBC12}] => (Allow) D:\Steam\SteamApps\common\Super Meat Boy\SuperMeatBoy.exe
FirewallRules: [{89DE8514-2036-4C3B-8C7E-897266763079}] => (Allow) D:\Steam\SteamApps\common\Super Meat Boy\SuperMeatBoy.exe
FirewallRules: [{8F54D5CB-ACC7-4C01-9C7D-B9FE62A45A97}] => (Allow) D:\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{2FD9A3D2-94E7-48EB-8A84-D0326CE04CAB}] => (Allow) D:\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{BE6EEA0A-E555-41FE-8A9A-3499B470187F}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{0B4666F5-3135-4992-B0D1-518A30167859}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{8CE9F78E-10CF-4930-8B87-64A951A75801}] => (Allow) D:\Steam\SteamApps\common\Synergy\hl2.exe
FirewallRules: [{EEE09663-2643-486A-9736-D013D65455FC}] => (Allow) D:\Steam\SteamApps\common\Synergy\hl2.exe
FirewallRules: [TCP Query User{683CEE7F-8E1C-49B0-AA7C-924F61A19B51}D:\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe] => (Allow) D:\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe
FirewallRules: [UDP Query User{8951C6DE-53E7-4024-9813-518D71C18E9C}D:\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe] => (Allow) D:\steam\steamapps\common\postal2complete\sharethepain\system\postal2mp.exe
FirewallRules: [{C29B0580-6FC1-4C26-B8BF-1E0E09B4541E}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{BFC254AE-BC96-40A7-8EEF-256FB055260A}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{37B9ADF4-27E4-4B84-A06F-E0123ACF61A7}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{C18D03FF-DDDB-4D6D-9593-51362C0448BE}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{BBE1A928-75DF-4F9D-9C4D-EF4303BF7793}] => (Allow) D:\Steam\SteamApps\common\FORCED\FORCED.exe
FirewallRules: [{140394A7-76AC-4A2B-92DE-C6FC1AAB02D5}] => (Allow) D:\Steam\SteamApps\common\FORCED\FORCED.exe
FirewallRules: [{DACB38BF-AF08-47CC-B548-C860465F9E0C}] => (Allow) D:\Steam\SteamApps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe
FirewallRules: [{1708B4D5-4141-4FC5-978A-541BA23640F7}] => (Allow) D:\Steam\SteamApps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe
FirewallRules: [TCP Query User{3B9CED80-7FCA-48D9-AE1A-DDEA1DC44D0C}D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Block) D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [UDP Query User{B815BD7E-1192-46AD-A6C8-761F5A480923}D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Block) D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{126A770E-AC91-4687-A064-04655CD78B84}] => (Allow) D:\Steam\SteamApps\common\Skyrim\CreationKit.exe
FirewallRules: [{50BE61AC-90FC-490A-9309-DE7EA60E98B2}] => (Allow) D:\Steam\SteamApps\common\Skyrim\CreationKit.exe
FirewallRules: [{98294F72-88FE-42A1-A885-7472ABDCBFD9}] => (Allow) LPort=1542
FirewallRules: [{5A5CE3E4-BCC8-4BA2-AA22-E36038E0B406}] => (Allow) LPort=1542
FirewallRules: [{DFA12FC0-E5E4-450A-9562-624654BE42A3}] => (Allow) LPort=53
FirewallRules: [{30166A53-D3AB-4A94-B934-6DB8C53B6D02}] => (Allow) D:\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{B32F93B4-EF99-4C52-B2C3-AC7435ECC417}] => (Allow) D:\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{F8BB5204-BA31-4508-B695-997D0B968B1B}] => (Allow) D:\Steam\SteamApps\common\divinity2_dev_cut\Autorun.exe
FirewallRules: [{2A449AF6-5356-40FF-B19E-88609A654EB5}] => (Allow) D:\Steam\SteamApps\common\divinity2_dev_cut\Autorun.exe
FirewallRules: [{50097F60-8130-4AAE-8281-D5A77D3295D9}] => (Allow) D:\Steam\SteamApps\common\BlazBlue Calamity Trigger\BBCT.exe
FirewallRules: [{C8AF816B-C73B-46A1-8539-3192AF71B44E}] => (Allow) D:\Steam\SteamApps\common\BlazBlue Calamity Trigger\BBCT.exe
FirewallRules: [{8506DE46-F613-4AF3-A35B-94F95326F8CB}] => (Allow) D:\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{B2535B09-71DF-4DF6-BC6F-DA2EB1C41152}] => (Allow) D:\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{9DEBE8F1-F827-4557-849B-6B07DFBA09DB}] => (Allow) D:\Steam\SteamApps\common\FreeStyle2\LauncherSteam.exe
FirewallRules: [{BC7A2DD6-127B-4BD7-A51C-61809D77B01B}] => (Allow) D:\Steam\SteamApps\common\FreeStyle2\LauncherSteam.exe
FirewallRules: [TCP Query User{430BEB21-9DA6-441A-AB2E-DCDB701BA471}D:\steam\steamapps\common\freestyle2\freestyle2.exe] => (Allow) D:\steam\steamapps\common\freestyle2\freestyle2.exe
FirewallRules: [UDP Query User{FEC95212-0B8A-47A5-8153-2747E45E079C}D:\steam\steamapps\common\freestyle2\freestyle2.exe] => (Allow) D:\steam\steamapps\common\freestyle2\freestyle2.exe
FirewallRules: [{0B4F5331-4D81-446A-802F-38542DD520FF}] => (Allow) D:\Steam\SteamApps\common\Toribash\toribash.exe
FirewallRules: [{22DE4824-85E0-4410-ABA5-C9A0C947E1DF}] => (Allow) D:\Steam\SteamApps\common\Toribash\toribash.exe
FirewallRules: [{7220B436-41D5-4525-8BA8-0864E4FD0E62}] => (Allow) D:\Steam\SteamApps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{469A1F77-082F-4CB0-B582-E17EBFE19163}] => (Allow) D:\Steam\SteamApps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{CFA5D292-FEFF-4EF0-9F52-E00BA578FAFA}] => (Allow) D:\Steam\SteamApps\common\counter-strike source\hl2.exe
FirewallRules: [{64BC2587-55DF-4211-81E8-3F0181C36843}] => (Allow) D:\Steam\SteamApps\common\counter-strike source\hl2.exe
FirewallRules: [{99F2AFCA-CEDC-4921-8EFA-D8451B38CC5A}] => (Allow) D:\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{89DA4FDF-E8BC-4A34-8A0C-1FDBE6266807}] => (Allow) D:\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{3E190033-9FFB-4A19-AEB5-03E5CEEB1109}] => (Allow) D:\Steam\SteamApps\common\Yomi\Yomi.exe
FirewallRules: [{F13E2FA3-DB41-4D51-811E-312ABA7E1AF5}] => (Allow) D:\Steam\SteamApps\common\Yomi\Yomi.exe
FirewallRules: [{B91B29D7-5385-41E1-98B4-3C3ED2BAECBE}] => (Allow) D:\Steam\SteamApps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{0D33997C-D68C-405B-BD27-89FE1917921C}] => (Allow) D:\Steam\SteamApps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{EA31FD79-639E-4BA6-BB4F-6EE5BBB5CB89}] => (Allow) D:\Steam\SteamApps\common\Company of Heroes\RelicCOH.exe
FirewallRules: [{769837F8-AB89-416F-8EF2-2068FC8BF7FB}] => (Allow) D:\Steam\SteamApps\common\Company of Heroes\RelicCOH.exe
FirewallRules: [{BCD19F95-687E-4412-8379-DBD67DECD802}] => (Allow) D:\Steam\SteamApps\common\Dawn of War Gold\W40k.exe
FirewallRules: [{951D3CDF-2BB9-47DA-AF0D-1639398BED48}] => (Allow) D:\Steam\SteamApps\common\Dawn of War Gold\W40k.exe
FirewallRules: [{16DEA29E-C182-452A-9B42-0EFB713EDADB}] => (Allow) D:\Steam\SteamApps\common\Dawn of War 2\DOW2.exe
FirewallRules: [{AE63110B-A2FF-45B0-B842-372207D9830F}] => (Allow) D:\Steam\SteamApps\common\Dawn of War 2\DOW2.exe
FirewallRules: [{7A48BE92-9125-4CFA-8860-040744C3D331}] => (Allow) D:\Steam\SteamApps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{EA3481B2-9EDF-4FD2-BE36-0102BF4A1750}] => (Allow) D:\Steam\SteamApps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [TCP Query User{A7D8FD4A-2820-4425-8891-EAC8ECC57293}D:\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe] => (Block) D:\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe
FirewallRules: [UDP Query User{B6B88A4B-F175-48F0-966D-0148EA2E2664}D:\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe] => (Block) D:\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe
FirewallRules: [{0ADC42F1-673B-4AE5-A688-BC99AB137D4A}] => (Allow) D:\Steam\SteamApps\common\Company of Heroes 2 - Beta\RelicCoH2.exe
FirewallRules: [{686B33CC-1662-4960-884C-9FC1CDABDEBD}] => (Allow) D:\Steam\SteamApps\common\Company of Heroes 2 - Beta\RelicCoH2.exe
FirewallRules: [{D15F6A73-C1CE-4CD9-B45D-63DFCBEF2C52}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{F386B884-F4D3-4C2F-B78E-3722D8FE16D2}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{510F8976-59F4-4463-BC83-BCD43A1C7792}] => (Allow) D:\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{8A4788B4-0A6E-47E7-92EB-C3603B5990A0}] => (Allow) D:\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{F9E2E9D8-8D3C-4D4E-848A-95655D02E953}] => (Allow) D:\Steam\SteamApps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{20B0466C-6CD7-44DA-A099-7759D19AD5C1}] => (Allow) D:\Steam\SteamApps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{E1E25175-CCA5-499C-A879-E438398CEE16}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{3EEA7411-2B92-4C23-A81C-FF873DC3C0A4}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{3B782228-F275-416F-B123-EB03BC3307FF}] => (Allow) D:\Steam\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe
FirewallRules: [{503B436E-01F1-4AC5-8045-4C364E5093FB}] => (Allow) D:\Steam\SteamApps\common\BattleBlock Theater\BattleBlockTheater.exe
FirewallRules: [{865BE00D-1216-437B-A509-9C166B47A90C}] => (Allow) D:\Steam\SteamApps\common\The Way of Life\TheWayOfLifeDemoWindows.exe
FirewallRules: [{B9DFC716-247B-4233-82DD-622DF0CC8124}] => (Allow) D:\Steam\SteamApps\common\The Way of Life\TheWayOfLifeDemoWindows.exe
FirewallRules: [{8AE08086-0433-4035-87C6-A37AFE88944B}] => (Allow) D:\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{E96B8D1F-84C6-4B1F-B848-5CEA48A57D92}] => (Allow) D:\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{1A712B8E-AF68-47B5-81D2-9F911CC17AE1}] => (Allow) D:\Steam\SteamApps\common\Rising Storm Beta\Binaries\Win32\ROGame.exe
FirewallRules: [{08CB4E88-A33F-4D77-9309-B758329A0E17}] => (Allow) D:\Steam\SteamApps\common\Rising Storm Beta\Binaries\Win32\ROGame.exe
FirewallRules: [{2ACABA64-DAFC-4488-8D80-851B93048F02}] => (Allow) D:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{D5F7216B-B6F9-4D11-B60E-960CC23FD5B7}] => (Allow) D:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [TCP Query User{081454F9-1181-4D59-966B-C6940C49A925}C:\steam\steamapps\common\blade symphony\berimbau.exe] => (Block) C:\steam\steamapps\common\blade symphony\berimbau.exe
FirewallRules: [UDP Query User{1B0C01B0-10F7-45A2-9B43-71109F41AD84}C:\steam\steamapps\common\blade symphony\berimbau.exe] => (Block) C:\steam\steamapps\common\blade symphony\berimbau.exe
FirewallRules: [{22D640F8-A7B1-4E9C-9D12-E32E007BBFBC}] => (Allow) D:\Steam\SteamApps\common\Eternal Senia\Game.exe
FirewallRules: [{07955258-11DD-49A8-918D-D9BA49383BE3}] => (Allow) D:\Steam\SteamApps\common\Eternal Senia\Game.exe
FirewallRules: [{A866E988-210C-49CD-80B4-C590DF01305F}] => (Allow) D:\Steam\SteamApps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst\NS3FB_launcher.exe
FirewallRules: [{F9FD2A4B-FD0B-471F-9A97-6B2EF5A774D4}] => (Allow) D:\Steam\SteamApps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst\NS3FB_launcher.exe
FirewallRules: [{0594FA60-01B5-406E-8F45-340752FBF827}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{042AEA67-2112-43B1-88B6-044E0C9183E7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B234D6CA-E3A3-40A2-84F6-0AE7016581B0}] => (Allow) D:\Steam\SteamApps\common\Double Action\bin\hammer.exe
FirewallRules: [{B2F50091-9E54-4F5B-A916-7B6B36F20F2F}] => (Allow) D:\Steam\SteamApps\common\Double Action\bin\hammer.exe
FirewallRules: [{54F99A40-6195-4787-9F1B-B18E6CB75B5D}] => (Allow) D:\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{3CA3551E-E803-4C18-AE1F-341D4EDB65C7}] => (Allow) D:\Steam\SteamApps\common\Firefall\system\bin\FirefallClient.exe
FirewallRules: [{80CAFA46-F8F3-4D32-AFB3-543757FF3846}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{E80BDE99-6341-4AF5-9702-7299B4B29057}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{9738752C-0B9B-491E-B56B-0BAFB41D32B3}] => (Allow) D:\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{875568A5-ECDD-4C4A-BE0D-F5924D02CA6C}] => (Allow) D:\Steam\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{2B09E64B-38B1-4F85-B433-BFC9E2A18114}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{76CDFC59-FBE4-4273-9169-261C8C2CEA61}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{30BBD5D8-072A-4D7F-847F-1A65D087C5EC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C8D5BAF1-7D29-42A3-A88D-6137C0F729C9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{6F3A97E7-EB8C-47FB-B024-7385FFCE312A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5F990200-292D-49E3-960B-D6F8DE570381}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3C633760-69A3-4907-B891-F08DF6506EC2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

16-06-2016 03:36:13 DDU Restore Point
16-06-2016 04:14:04 DDU Restore Point
16-06-2016 04:36:15 DDU Restore Point
16-06-2016 06:18:35 DDU Restore Point
16-06-2016 06:30:42 DDU Restore Point
16-06-2016 20:01:51 DDU Restore Point
16-06-2016 20:20:06 DDU Restore Point

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (06/19/2016 12:10:29 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: ASP.NET_1.1.43228

Error: (06/18/2016 08:20:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AVKTray.exe, Version: 25.1.16042.313, Zeitstempel: 0x56bc0a6c
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0345002a
ID des fehlerhaften Prozesses: 0x1124
Startzeit der fehlerhaften Anwendung: 0xAVKTray.exe0
Pfad der fehlerhaften Anwendung: AVKTray.exe1
Pfad des fehlerhaften Moduls: AVKTray.exe2
Berichtskennung: AVKTray.exe3
Vollständiger Name des fehlerhaften Pakets: AVKTray.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AVKTray.exe5

Error: (06/18/2016 08:20:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GPUTweakII.exe, Version: 1.0.5.7, Zeitstempel: 0x558dc671
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10586.306, Zeitstempel: 0x571afb7f
Ausnahmecode: 0xc0000374
Fehleroffset: 0x000dc7c9
ID des fehlerhaften Prozesses: 0x126c
Startzeit der fehlerhaften Anwendung: 0xGPUTweakII.exe0
Pfad der fehlerhaften Anwendung: GPUTweakII.exe1
Pfad des fehlerhaften Moduls: GPUTweakII.exe2
Berichtskennung: GPUTweakII.exe3
Vollständiger Name des fehlerhaften Pakets: GPUTweakII.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GPUTweakII.exe5

Error: (06/18/2016 06:31:56 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Fehler beim Erwerb der Endbenutzerlizenz. hr=0xC004C008
SKU-ID=064383fa-1538-491c-859b-0ecab169a0ab

Error: (06/18/2016 06:31:56 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Lizenzerwerb-Fehlerdetails. 
hr=0xC004C008

Error: (06/18/2016 06:31:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GPUTweakII.exe, Version: 1.0.5.7, Zeitstempel: 0x558dc671
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10586.306, Zeitstempel: 0x571afb7f
Ausnahmecode: 0xc0000374
Fehleroffset: 0x000dc7c9
ID des fehlerhaften Prozesses: 0x186c
Startzeit der fehlerhaften Anwendung: 0xGPUTweakII.exe0
Pfad der fehlerhaften Anwendung: GPUTweakII.exe1
Pfad des fehlerhaften Moduls: GPUTweakII.exe2
Berichtskennung: GPUTweakII.exe3
Vollständiger Name des fehlerhaften Pakets: GPUTweakII.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GPUTweakII.exe5

Error: (06/18/2016 05:13:07 AM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Fehler beim Erwerb der Endbenutzerlizenz. hr=0xC004C008
SKU-ID=064383fa-1538-491c-859b-0ecab169a0ab

Error: (06/18/2016 05:13:07 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Lizenzerwerb-Fehlerdetails. 
hr=0xC004C008

Error: (06/18/2016 03:52:02 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.

Error: (06/18/2016 03:51:27 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.


Systemfehler:
=============
Error: (06/18/2016 08:18:17 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058 = Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Error: (06/18/2016 06:52:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_cc05e" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/18/2016 06:52:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _cc05e" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/18/2016 06:52:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_cc05e" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/18/2016 06:52:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_cc05e" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/18/2016 06:29:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058 = Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Error: (06/18/2016 06:53:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_949ec" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/18/2016 06:53:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _949ec" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/18/2016 06:53:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_949ec" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/18/2016 06:53:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_949ec" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2016-06-19 04:11:56.843
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-18 18:44:18.172
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-18 18:30:33.587
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-16 20:49:38.430
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\winhttp.dll that did not meet the Store signing level requirements.

  Date: 2016-06-16 04:36:31.857
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-16 02:05:27.043
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-15 18:43:32.520
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-15 02:17:01.461
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-11 04:31:53.310
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\G Data\AVKProxy\ExploitProtection64.dll that did not meet the Store signing level requirements.

  Date: 2016-06-11 04:31:47.543
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\G Data\AVKProxy\ExploitProtection64.dll that did not meet the Store signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: AMD Phenom(tm) II X4 970 Processor
Prozentuale Nutzung des RAM: 35%
Installierter physikalischer RAM: 8188.52 MB
Verfügbarer physikalischer RAM: 5244.83 MB
Summe virtueller Speicher: 8900.52 MB
Verfügbarer virtueller Speicher: 5425.62 MB

==================== Laufwerke ================================

Drive c: (Volume) (Fixed) (Total:100.07 GB) (Free:34.49 GB) NTFS
Drive d: (Volume) (Fixed) (Total:931.51 GB) (Free:251.16 GB) NTFS
Drive f: () (Fixed) (Total:117.09 GB) (Free:87.29 GB) NTFS
Drive g: () (Fixed) (Total:348.57 GB) (Free:291.42 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: EB0369C3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=100.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 80663413)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 83A81C73)
Partition 1: (Not Active) - (Size=117.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=348.6 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

Schritt 1



Drücke bitte die + R Taste und schreibe notepad in das Ausführen Fenster.
Klicke auf OK und kopiere nun den Text aus der Codebox in das leere Textdokument:

Code: Alles auswählenAufklappen

ATTFilter

CloseProcesses:
ShellIconOverlayIdentifiers: [0_sxBZOverlayIcon] -> {6457FB0A-5C02-4393-909C-2139A5D5571F} =>  Keine Datei
ShellIconOverlayIdentifiers: [0_sxConfidentialOIcon] -> {871FE18B-B68D-4437-BC76-6634996CDB97} =>  Keine Datei
ShellIconOverlayIdentifiers: [0_sxForbiddenOIcon] -> {1F03249C-6AB2-4E31-8C10-86F7E31E3B4E} =>  Keine Datei
Task: {053E98FD-C447-4E83-BEC8-739ABC6CE5AC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei 
Task: {0A5439B1-6292-4456-B7C7-EBF695BFF61F} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei 
Task: {6A2FB1A7-3773-47A7-B405-CA65F275EC8C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei 
Task: {A1FA83E8-BAEE-48D9-8E87-18F70BD79AB9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei 
Task: {A6C2A848-951C-4C88-AED7-93C154DCD9CA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei 
Task: {AF091B02-4323-4EBB-9AEA-F2865D708A17} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei 
Task: {B230A630-790F-4469-89DE-88FC249E18BD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei 
Task: {CBF5A797-7FBC-4F53-82F0-3400257CF7A7} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei 
Task: {CC4DF82B-4D06-4B34-8BBE-49EDE05C5CD9} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei 
Task: {E08382DB-B678-4A30-8A47-762301B46BD9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei 
Task: {EC1048B2-76E9-4EE1-AE1F-E6CEA878FBDF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei 
EmptyTemp:
         

Speichere dieses bitte als Fixlist.txt in das Verzeichnis ab, in dem sich auch die FRST-Anwendung befindet.

• Starte FRST und drücke auf den Entfernen-Button.
• Das Tool erstellt eine "Fixlog.txt" -Datei.
• Poste mir bitte deren Inhalt.

Flash-Update durchführen, bei Java die alten Versionen deinstallieren. Beim Link weiter unten gibts die aktuelle.

Wir haben es geschafft!
Die Logs sehen für mich im Moment sauber aus.

Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...und/oder das Forum mit einer kleinen Spende unterstützen.
Es bleibt mir nur noch, Dir unbeschwertes und sicheres Surfen zu wünschen und dass wir uns hier so bald nicht wiedersehen.

Cleanup:
(Die Reihenfolge ist hier entscheidend)

Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken.

Falls Combofix verwendet wurde:
Combofix deinstallieren

• Wichtig: Bitte Antivirus-Programm, evtl. vorhandenes Skript-Blocking und Anti-Malware Programme deaktivieren.
  
• Drücke bitte die + R Taste und schreibe Combofix /Uninstall in das Ausführen-Fenster.
• Klicke auf OK.
  Damit wird Combofix komplett entfernt und der Cache der Systemwiederherstellung geleert.
• Nun die eben deaktivierten Programme wieder aktivieren.

Alle Logs gepostet? Dann lade Dir bitte DelFix herunter.

• Schließe alle offenen Programme.
• Starte die delfix.exe mit einem Doppelklick.
• Setze vor jede Funktion ein Häkchen.
• Klicke auf Start.

Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.



Absicherung:
Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen:

Browser
Java
Flash-Player
PDF-Reader

Sicherheitslücken (z.B. hier) in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren.
Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen.

Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig.

Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank.

Meine Kauf-Empfehlung:



Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware scannen.

Optional:
NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen.
Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.


Lade Software von einem sauberen Portal wie .
Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen.
Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner .


Abschließend noch ein paar grundsätzliche Bemerkungen:
Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems.
Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.

Vielen Dank für deine Hilfe. Finde es immer noch bewundernswert, wie ihr so viel Zeit investiert und dann auch noch kostenlos

Code: Alles auswählenAufklappen

ATTFilter

Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 19-06-2016 01
durchgeführt von Niklas (2016-06-19 22:44:57) Run:2
Gestartet von C:\Users\Niklas\Desktop
Geladene Profile: Niklas (Verfügbare Profile: Niklas & Niky & DefaultAppPool)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
CloseProcesses:
ShellIconOverlayIdentifiers: [0_sxBZOverlayIcon] -> {6457FB0A-5C02-4393-909C-2139A5D5571F} =>  Keine Datei
ShellIconOverlayIdentifiers: [0_sxConfidentialOIcon] -> {871FE18B-B68D-4437-BC76-6634996CDB97} =>  Keine Datei
ShellIconOverlayIdentifiers: [0_sxForbiddenOIcon] -> {1F03249C-6AB2-4E31-8C10-86F7E31E3B4E} =>  Keine Datei
Task: {053E98FD-C447-4E83-BEC8-739ABC6CE5AC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei 
Task: {0A5439B1-6292-4456-B7C7-EBF695BFF61F} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei 
Task: {6A2FB1A7-3773-47A7-B405-CA65F275EC8C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei 
Task: {A1FA83E8-BAEE-48D9-8E87-18F70BD79AB9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei 
Task: {A6C2A848-951C-4C88-AED7-93C154DCD9CA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei 
Task: {AF091B02-4323-4EBB-9AEA-F2865D708A17} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei 
Task: {B230A630-790F-4469-89DE-88FC249E18BD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei 
Task: {CBF5A797-7FBC-4F53-82F0-3400257CF7A7} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei 
Task: {CC4DF82B-4D06-4B34-8BBE-49EDE05C5CD9} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei 
Task: {E08382DB-B678-4A30-8A47-762301B46BD9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei 
Task: {EC1048B2-76E9-4EE1-AE1F-E6CEA878FBDF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei 
EmptyTemp:
*****************

Prozess erfolgreich geschlossen.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\0_sxBZOverlayIcon" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{6457FB0A-5C02-4393-909C-2139A5D5571F} => Schlüssel nicht gefunden. 
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\0_sxConfidentialOIcon" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{871FE18B-B68D-4437-BC76-6634996CDB97} => Schlüssel nicht gefunden. 
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\0_sxForbiddenOIcon" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{1F03249C-6AB2-4E31-8C10-86F7E31E3B4E} => Schlüssel nicht gefunden. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{053E98FD-C447-4E83-BEC8-739ABC6CE5AC}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{053E98FD-C447-4E83-BEC8-739ABC6CE5AC}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0A5439B1-6292-4456-B7C7-EBF695BFF61F}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A5439B1-6292-4456-B7C7-EBF695BFF61F}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A2FB1A7-3773-47A7-B405-CA65F275EC8C}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A2FB1A7-3773-47A7-B405-CA65F275EC8C}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A1FA83E8-BAEE-48D9-8E87-18F70BD79AB9}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1FA83E8-BAEE-48D9-8E87-18F70BD79AB9}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A6C2A848-951C-4C88-AED7-93C154DCD9CA}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6C2A848-951C-4C88-AED7-93C154DCD9CA}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF091B02-4323-4EBB-9AEA-F2865D708A17}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF091B02-4323-4EBB-9AEA-F2865D708A17}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B230A630-790F-4469-89DE-88FC249E18BD}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B230A630-790F-4469-89DE-88FC249E18BD}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CBF5A797-7FBC-4F53-82F0-3400257CF7A7}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CBF5A797-7FBC-4F53-82F0-3400257CF7A7}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CC4DF82B-4D06-4B34-8BBE-49EDE05C5CD9}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC4DF82B-4D06-4B34-8BBE-49EDE05C5CD9}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E08382DB-B678-4A30-8A47-762301B46BD9}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E08382DB-B678-4A30-8A47-762301B46BD9}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EC1048B2-76E9-4EE1-AE1F-E6CEA878FBDF}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC1048B2-76E9-4EE1-AE1F-E6CEA878FBDF}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => Schlüssel erfolgreich entfernt

=========== EmptyTemp: ==========

BITS transfer queue => 1409968 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 36047693 B
Java, Flash, Steam htmlcache => 280944836 B
Windows/system/drivers => 6735341 B
Edge => 30208 B
Chrome => 660963430 B
Firefox => 6604417 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6168 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 96526 B
NetworkService => 0 B
Niklas => 497380358 B
Niky => 124376 B
UpdatusUser => 0 B
DefaultAppPool => 6168 B

RecycleBin => 0 B
EmptyTemp: => 1.4 GB temporäre Dateien entfernt.

================================


Das System musste neu gestartet werden.

==== Ende von Fixlog 22:45:19 ====