|
Log-Analyse und Auswertung: browsermodifier:win32 suptab!blnk Win 7Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
06.11.2016, 16:32 | #1 |
| browsermodifier:win32 suptab!blnk Win 7 Hi, wie bei einigen anderen hier im Forum sind auch bei mir Probleme mit dem browsermodifier:win32 suptab!blnk aufgetaucht. Windowsdefender meldete auf einmal die bereits erwähnte schädliche Software, allerdings konnten weder ein Scan mit Kaspersky noch Adwcleaner etwas finden. FRST.txt: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2016 durchgeführt von Hamsterkäfig (Administrator) auf HAMSTERKÄFIG-PC (06-11-2016 16:10:51) Gestartet von C:\Users\Hamsterkäfig\Desktop Geladene Profile: Hamsterkäfig (Verfügbare Profile: Hamsterkäfig) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avp.exe (Dassault Systemes) D:\Studium\CATIA V5-R2016\win_b64\code\bin\CATSysDemon.exe (Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe (Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe (Hi-Rez Studios) E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avpui.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Nuance Communications, Inc.) D:\Paperport\Programm\PaperPort\pptd40nt.exe (Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\PdfPro7Hook.exe (Nuance Communications, Inc.) D:\Paperport\Programm\PDFCreate\PdfCreate7Hook.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe () C:\Program Files (x86)\TITANWOLF\GAUNTLET GAMING MOUSE\TTFMon.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Nuance Communications, Inc.) D:\Paperport\Programm\PaperPort\PDFProFiltSrvPP.exe () C:\Windows\System32\PnkBstrA.exe () C:\Program Files (x86)\NETGEAR\A6200\WifiService.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Black Tree Gaming) E:\Nexus Mod Manager\NexusClient.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (VS Revo Group) C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe ==================== Registry (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7632088 2014-06-10] (Realtek Semiconductor) HKLM\...\Run: [GENIE] => C:\Program Files (x86)\NETGEAR\A6200\A6200.exe [348888 2013-02-18] (NETGEAR,Inc.) HKLM\...\Run: [LanuchApp] => C:\Program Files (x86)\NETGEAR\A6200\LanuchApp.exe [15136 2012-07-11] () HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1844280 2016-09-30] (NVIDIA Corporation) HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [324976 2010-05-21] (Flexera Software, Inc.) HKLM-x32\...\Run: [PaperPort PTD] => D:\Paperport\Programm\PaperPort\pptd40nt.exe [38824 2011-10-28] (Nuance Communications, Inc.) HKLM-x32\...\Run: [IndexSearch] => D:\Paperport\Programm\PaperPort\IndexSearch.exe [51120 2011-10-28] (Nuance Communications, Inc.) HKLM-x32\...\Run: [PPort14reminder] => "D:\Paperport\Programm\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\14\Config\Ereg\Ereg.ini" HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro7hook.exe [607592 2011-07-01] (Nuance Communications, Inc.) HKLM-x32\...\Run: [PDFCreHook] => D:\Paperport\Programm\PDFCreate\pdfcreate7hook.exe [605032 2011-06-28] (Nuance Communications, Inc.) HKLM-x32\...\Run: [PDF7 Registry Controller] => D:\Paperport\Programm\PDFCreate\RegistryController.exe [140136 2011-06-28] (Nuance Communications, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation) HKLM-x32\...\Run: [ttwgmmouse-Run] => C:\Program Files (x86)\TITANWOLF\GAUNTLET GAMING MOUSE\ttfmon.exe [3317248 2015-08-10] () HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8721624 2016-05-13] (Piriform Ltd) HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\Policies\Explorer: [] HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\MountPoints2: {25f9b9bd-3b7a-11e5-bffa-806e6f6e6963} - F:\AUTORUN.exe HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2015-08-06] (Microsoft Corporation) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 149.205.5.81 149.205.5.82 Tcpip\..\Interfaces\{DD4A37AB-73AE-445C-AA17-68F4D1BAC14D}: [DhcpNameServer] 149.205.5.81 149.205.5.82 Tcpip\..\Interfaces\{F57C8397-C0C8-4262-974A-BE6328DAF6F7}: [DhcpNameServer] 149.205.5.81 149.205.5.82 Internet Explorer: ================== BHO: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab) BHO-x32: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab) BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-10-11] (Oracle Corporation) BHO-x32: ZeonIEEventHelper Class -> {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} -> D:\Paperport\Programm\PDFCreate\Bin\ZeonIEFavClient.dll [2011-03-25] (Zeon Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-10-11] (Oracle Corporation) Toolbar: HKLM - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab) Toolbar: HKLM-x32 - DocuCom PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - D:\Paperport\Programm\PDFCreate\Bin\ZeonIEFavClient.dll [2011-03-25] (Zeon Corporation) Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab) FireFox: ======== FF DefaultProfile: i1mpk6is.default FF ProfilePath: C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default [2016-11-06] FF user.js: detected! => C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\user.js [2015-08-05] FF DefaultSearchEngine: Mozilla\Firefox\Profiles\i1mpk6is.default -> Startpage HTTPS - Deutsch FF Homepage: Mozilla\Firefox\Profiles\i1mpk6is.default -> hxxp://fallout.wikia.com/wiki/The_Lost_Patrol hxxp://fallout.wikia.com/wiki/Steadfast_BOS_combat_armor_chest_piece hxxp://warframe.wikia.com/wiki/Frost/Prime hxxps://warframe.market/ hxxp://www.nexusmods.com/fallout4/mods/191/?tab=3&selected_game=1151&navtag=http%3A%2F%2Fwww.nexusmods.com%2Ffallout4%2Fajax%2Fmodimages%2F%3Fid%3D191%26user%3D1%26gid%3D1151&pUp=1 hxxp://www.nexusmods.com/fallout4/mods/9253/?tab=3&selected_game=1151&navtag=http%3A%2F%2Fwww.nexusmods.com%2Ffallout4%2Fajax%2Fmodimages%2F%3Fid%3D9253%26user%3D1%26gid%3D1151&pUp=1 hxxps://help.libreoffice.org/Impress/Changing_the_Slide_Background_Fill/de hxxp://web.hs-merseburg.de/~merkling/projektmechatronikbeispiele.php hxxps://www.kaercher.com/de/professional/waschanlagen/pkw-waschanlagen.html hxxps://www.startpage.com/do/search hxxps://ixquick-proxy.com/do/spg/show_picture.pl?l=deutsch&rais=1&oiu=http%3A%2F%2Fautomotiva.com.ar%2Fwp-content%2Fuploads%2F2014%2F07%2FVolkswagen-Passat-2015-4.jpg&sp=5238237d3518c12a5872cf5c7ffad28b hxxps://ixquick-proxy.com/do/spg/show_picture.pl?l=deutsch&rais=1&oiu=https%3A%2F%2Fs-media-cache-ak0.pinimg.com%2F736x%2F81%2Fbd%2Faa%2F81bdaaa47525869ef55b2c261b0e13f1.jpg&sp=4b4b2d273a161c54f6411cb15143c457 hxxps://ixquick-proxy.com/do/spg/show_picture.pl?l=deutsch&rais=1&oiu=http%3A%2F%2Fgtspirit.com%2Fwp-content%2Fuploads%2F2015%2F08%2FLUMMA_Design_CLR_G800_4_01.jpg&sp=7f63169bd46a14873e9497f2c4f7342b hxxp://battlelog.battlefield.com/bf4/soldier/asgahrn/weapons/1253661174/1/#acw-r FF Extension: (Firefox Hotfix) - C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-30] FF Extension: (Ghostery) - C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\Extensions\firefox@ghostery.com.xpi [2016-09-21] FF Extension: (AdBlocker for YouTube™) - C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2016-09-18] FF Extension: (Adblock Plus) - C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-29] FF SearchPlugin: C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\searchplugins\startpage-https---deutsch.xml [2016-03-20] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\FFExt\light_plugin_firefox\addon.xpi FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\FFExt\light_plugin_firefox\addon.xpi [2016-08-16] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2016-10-26] () FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2016-10-26] () FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> D:\FoxitReader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> D:\FoxitReader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> D:\FoxitReader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> D:\FoxitReader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-10-11] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-10-11] (Oracle Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-18] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-18] (NVIDIA Corporation) FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\bin\nppdf.dll [2011-02-16] (Zeon Corporation) Chrome: ======= CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi ==================== Dienste (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AVP16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avp.exe [236928 2015-12-22] (AO Kaspersky Lab) R2 BBDemon; D:\Studium\CATIA V5-R2016\win_b64\code\bin\CATSysDemon.exe [53520 2015-09-18] (Dassault Systemes) R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-08-29] (Chip Digital GmbH) [Datei ist nicht signiert] R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2016-03-28] (Digital Wave Ltd.) R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2015-11-24] () [Datei ist nicht signiert] U2 HiPatchService; E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Datei ist nicht signiert] S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\vssbridge64.exe [152488 2015-12-22] (AO Kaspersky Lab) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-10-18] (NVIDIA Corporation) R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-09-30] (NVIDIA Corporation) S3 Origin Client Service; E:\Origin\OriginClientService.exe [2142728 2016-10-25] (Electronic Arts) S2 Origin Web Helper Service; E:\Origin\OriginWebHelperService.exe [2209296 2016-10-25] (Electronic Arts) R2 PDFProFiltSrvPP; D:\Paperport\Programm\PaperPort\PDFProFiltSrvPP.exe [219496 2011-10-28] (Nuance Communications, Inc.) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-08-06] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-08-06] () R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 WNDA6200; C:\Program Files (x86)\NETGEAR\A6200\WifiService.exe [29984 2012-09-24] () ===================== Treiber (Nicht auf der Ausnahmeliste) ====================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 A6200; C:\Windows\System32\DRIVERS\bcmwlhigh664.sys [2567984 2013-02-28] (Broadcom Corporation) R3 atmelwindrvr; C:\Windows\System32\drivers\atmelwindrvr.sys [300488 2015-08-12] (Jungo Connectivity) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-05] (Kaspersky Lab ZAO) R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [487704 2014-03-14] (Intel Corporation) S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO) R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [79240 2015-12-01] (AO Kaspersky Lab) R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78200 2015-12-01] (AO Kaspersky Lab) R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [182152 2015-12-11] (AO Kaspersky Lab) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [236888 2016-08-16] (AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1001304 2016-08-16] (AO Kaspersky Lab) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [50776 2016-04-29] (AO Kaspersky Lab) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52608 2015-11-11] (AO Kaspersky Lab) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45960 2015-12-07] (AO Kaspersky Lab) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-11] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [110424 2016-08-16] (AO Kaspersky Lab) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [194440 2015-12-02] (AO Kaspersky Lab) S4 LMIRfsClientNP; kein ImagePath R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation) R1 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-26] (CACE Technologies, Inc.) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-09-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2016-09-30] (NVIDIA Corporation) R3 WinDriver6; C:\Windows\System32\drivers\windrvr6.sys [268800 2014-01-28] (Jungo Connectivity) S3 BCM42RLY; system32\drivers\BCM42RLY.sys [X] S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-11-06 16:10 - 2016-11-06 16:11 - 00019083 _____ C:\Users\Hamsterkäfig\Desktop\FRST.txt 2016-11-06 16:10 - 2016-11-06 16:10 - 00000000 ____D C:\FRST 2016-11-06 16:09 - 2016-11-06 16:09 - 02410496 _____ (Farbar) C:\Users\Hamsterkäfig\Downloads\FRST64.exe 2016-11-06 16:09 - 2016-11-06 16:09 - 02410496 _____ (Farbar) C:\Users\Hamsterkäfig\Desktop\FRST64.exe 2016-11-06 15:20 - 2016-11-06 16:03 - 00000000 ____D C:\AdwCleaner 2016-11-06 15:20 - 2016-11-06 15:20 - 03910208 _____ C:\Users\Hamsterkäfig\Downloads\adwcleaner_6.030.exe 2016-11-06 12:31 - 2016-11-06 12:31 - 00732864 _____ C:\Windows\Minidump\110616-11216-01.dmp 2016-11-06 11:45 - 2016-11-06 11:46 - 00000000 ____D C:\Users\Hamsterkäfig\Desktop\Skriptmerger 2016-11-06 10:35 - 2016-11-06 10:35 - 01514932 _____ C:\Users\Hamsterkäfig\Desktop\MSproject.pdf 2016-11-06 10:31 - 2016-11-06 10:31 - 05588788 _____ C:\Users\Hamsterkäfig\Downloads\VDI_Lastenheft_fein.pdf 2016-11-06 10:05 - 2016-11-06 15:22 - 00000022 _____ C:\Windows\S.dirmngr 2016-11-05 18:05 - 2016-11-06 10:45 - 00043185 _____ C:\Users\Hamsterkäfig\Documents\project1.pod 2016-11-04 17:52 - 2016-11-04 17:52 - 00000201 _____ C:\Users\Hamsterkäfig\Desktop\Borderlands 2.url 2016-11-03 20:49 - 2016-11-03 20:49 - 12892255 _____ C:\Users\Hamsterkäfig\Downloads\Grundlagen S7 Graph.pdf 2016-11-03 20:49 - 2016-11-03 20:49 - 04787779 _____ C:\Users\Hamsterkäfig\Downloads\Test und Online.pdf 2016-11-03 20:49 - 2016-11-03 20:49 - 04332613 _____ C:\Users\Hamsterkäfig\Downloads\Fehlersuche Diagnose.pdf 2016-11-03 20:49 - 2016-11-03 20:49 - 01789024 _____ C:\Users\Hamsterkäfig\Downloads\Speichern.pdf 2016-11-03 20:49 - 2016-11-03 20:49 - 01542109 _____ C:\Users\Hamsterkäfig\Downloads\CPU 314c-DP.pdf 2016-11-03 20:49 - 2016-11-03 20:49 - 01412591 _____ C:\Users\Hamsterkäfig\Downloads\Grundlagen S7 SCL.pdf 2016-11-03 20:49 - 2016-11-03 20:49 - 01222967 _____ C:\Users\Hamsterkäfig\Downloads\Hardwaresimulation mit PlcSim.pdf 2016-11-03 20:49 - 2016-11-03 20:49 - 01154676 _____ C:\Users\Hamsterkäfig\Downloads\Strukturierte Programmierung.pdf 2016-11-03 20:49 - 2016-11-03 20:49 - 00689517 _____ C:\Users\Hamsterkäfig\Downloads\Analogwerte.pdf 2016-11-02 20:41 - 2016-11-02 20:41 - 00000202 _____ C:\Users\Hamsterkäfig\Desktop\SMITE.url 2016-11-01 13:51 - 2016-11-02 13:21 - 02796994 _____ C:\Users\Hamsterkäfig\Desktop\Aufgabenstellung.odp 2016-10-31 21:09 - 2016-10-31 21:09 - 17252915 _____ C:\Users\Hamsterkäfig\Downloads\Elektrische Energieversorung dry.pdf 2016-10-31 13:37 - 2016-10-31 13:37 - 00362812 _____ C:\Users\Hamsterkäfig\Downloads\skse_1_07_03_installer.exe 2016-10-31 13:37 - 2016-10-31 13:37 - 00000958 _____ C:\Users\Hamsterkäfig\Desktop\Skyrim (SKSE).lnk 2016-10-31 12:41 - 2016-10-31 12:49 - 00381258 _____ C:\Users\Hamsterkäfig\Desktop\passat.odg 2016-10-31 12:20 - 2016-11-01 13:42 - 00458216 _____ C:\Users\Hamsterkäfig\Desktop\simca1000.odg 2016-10-28 14:03 - 2016-10-28 14:03 - 00000905 _____ C:\Users\Public\Desktop\Octave-4.0.3 (GUI).lnk 2016-10-28 14:03 - 2016-10-28 14:03 - 00000899 _____ C:\Users\Public\Desktop\Octave-4.0.3 (CLI).lnk 2016-10-28 14:03 - 2016-10-28 14:03 - 00000078 _____ C:\Users\Hamsterkäfig\.octave_hist 2016-10-28 14:03 - 2016-10-28 14:03 - 00000000 ____D C:\Users\Hamsterkäfig\.config 2016-10-28 14:03 - 2016-10-28 14:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Octave-4.0.3 2016-10-28 13:56 - 2016-10-28 13:58 - 159117969 _____ (GNU Project) C:\Users\Hamsterkäfig\Downloads\octave-4.0.3-installer.exe 2016-10-27 08:31 - 2016-10-27 08:32 - 221679616 _____ C:\Users\Hamsterkäfig\Downloads\LibreOffice_5.1.5_Win_x86.msi 2016-10-26 12:37 - 2016-11-06 14:30 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\The Witcher 3 2016-10-26 11:00 - 2016-10-26 11:00 - 00000202 _____ C:\Users\Hamsterkäfig\Desktop\The Witcher 3 Wild Hunt.url 2016-10-23 15:27 - 2016-10-23 15:27 - 00264229 _____ C:\Users\Hamsterkäfig\Downloads\Immatrikulationsbescheinigung WS1617.pdf 2016-10-23 09:49 - 2016-11-03 08:20 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\HirezLauncherUI 2016-10-23 09:48 - 2016-10-23 10:15 - 00000000 ____D C:\ProgramData\Hi-Rez Studios 2016-10-23 09:48 - 2016-10-23 09:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios 2016-10-23 09:37 - 2016-10-23 09:37 - 00000202 _____ C:\Users\Hamsterkäfig\Desktop\Paladins.url 2016-10-22 13:59 - 2016-10-22 13:59 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2016-10-22 13:59 - 2016-10-18 20:31 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2016-10-22 13:59 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll 2016-10-22 13:59 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll 2016-10-22 13:59 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2016-10-22 13:59 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe 2016-10-22 13:58 - 2016-10-19 23:48 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2016-10-22 13:58 - 2016-10-19 23:48 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 40125496 _____ C:\Windows\system32\nvcompiler.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 35222464 _____ C:\Windows\SysWOW64\nvcompiler.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 34699712 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 28167616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 17426520 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 14018496 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2016-10-22 13:58 - 2016-10-18 22:23 - 10910184 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 10754624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 10295048 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 09099400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 08912488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 08692872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 03629624 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 03191744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 01951680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437557.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437557.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00973760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00942528 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00894400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00520912 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00492560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00436088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2016-10-22 13:58 - 2016-10-18 22:23 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json 2016-10-22 13:58 - 2016-10-18 22:23 - 00000669 _____ C:\Windows\system32\nv-vk64.json 2016-10-22 13:57 - 2016-10-29 13:17 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\VisualAssistAtmel 2016-10-22 13:57 - 2016-10-29 13:17 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\VisualAssistAtmel 2016-10-22 13:57 - 2016-10-22 13:57 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\Atmel Studio 2016-10-22 13:57 - 2016-10-22 13:57 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\IsolatedStorage 2016-10-22 13:04 - 2016-10-22 14:10 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\Visual Studio 2015 2016-10-22 13:04 - 2016-10-22 13:04 - 00000795 _____ C:\Users\Public\Desktop\Atmel Studio 7.0.lnk 2016-10-22 13:04 - 2016-10-22 13:04 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\SEGGER 2016-10-22 13:04 - 2016-10-22 13:04 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Atmel 2016-10-22 13:04 - 2016-10-22 13:04 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Atmel 2016-10-22 13:04 - 2016-10-22 13:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atmel Studio 7.0 2016-10-22 13:02 - 2015-08-12 09:04 - 00162816 _____ (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1200_x64.dll 2016-10-22 13:02 - 2015-08-12 09:04 - 00151552 _____ (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1200.dll 2016-10-22 13:02 - 2014-01-28 06:59 - 00151552 _____ (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1150.dll 2016-10-22 13:02 - 2013-11-11 07:42 - 00151552 _____ (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1140.dll 2016-10-22 13:02 - 2013-11-11 07:42 - 00147456 _____ (Jungo) C:\Windows\SysWOW64\wdapi1021.dll 2016-10-22 13:02 - 2013-11-11 07:42 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1010.dll 2016-10-22 13:02 - 2013-11-11 07:42 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1100.dll 2016-10-22 13:02 - 2013-11-11 07:42 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi102.dll 2016-10-22 13:02 - 2013-11-11 07:42 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1011.dll 2016-10-22 13:01 - 2016-10-22 13:01 - 00000000 ____D C:\Windows\SysWOW64\1033 2016-10-22 13:00 - 2016-10-22 13:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0 2016-10-22 13:00 - 2016-10-22 13:00 - 00000000 ____D C:\Windows\system32\1033 2016-10-22 13:00 - 2016-10-22 13:00 - 00000000 ____D C:\Program Files (x86)\Windows Kits 2016-10-22 13:00 - 2016-10-22 13:00 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2016-10-22 13:00 - 2016-10-22 13:00 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2016-10-22 13:00 - 2016-10-22 13:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer 2016-10-22 12:59 - 2016-10-22 12:59 - 00000000 ____D C:\ProgramData\VsTelemetry 2016-10-22 12:25 - 2016-10-22 12:25 - 02514576 _____ (Atmel) C:\Users\Hamsterkäfig\Downloads\as-installer-7.0.1188-web.exe 2016-10-22 12:25 - 2016-10-22 12:25 - 00000000 ____D C:\Users\Hamsterkäfig\Desktop\Neuer Ordner 2016-10-21 14:03 - 2016-10-21 14:03 - 06779249 _____ C:\Users\Hamsterkäfig\Downloads\Selbstgedrehte Stromkreise.pdf 2016-10-21 12:29 - 2016-10-23 08:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-10-19 06:37 - 2016-10-19 06:39 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\NVIDIA 2016-10-18 19:37 - 2016-10-18 20:45 - 00001951 _____ C:\Windows\NvContainerRecovery.bat 2016-10-18 19:37 - 2016-10-18 19:37 - 00003860 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-10-18 19:37 - 2016-10-18 19:37 - 00003860 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-10-18 19:37 - 2016-10-18 19:37 - 00003810 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-10-18 19:37 - 2016-10-18 19:37 - 00003798 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-10-18 19:37 - 2016-10-18 19:37 - 00003622 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-10-18 19:37 - 2016-10-18 19:37 - 00003562 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-10-18 06:21 - 2016-10-18 22:23 - 01035712 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2016-10-18 06:21 - 2016-10-18 20:52 - 00546752 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2016-10-18 06:21 - 2016-10-18 20:52 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2016-10-18 06:21 - 2016-10-01 22:15 - 01935808 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437306.dll 2016-10-18 06:21 - 2016-10-01 22:15 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437306.dll 2016-10-18 06:21 - 2016-10-01 22:15 - 00215608 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2016-10-18 06:21 - 2016-10-01 22:15 - 00201664 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2016-10-18 06:18 - 2016-10-18 20:52 - 07471705 _____ C:\Windows\system32\nvcoproc.bin 2016-10-18 06:18 - 2016-10-18 20:52 - 06386232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2016-10-18 06:18 - 2016-10-18 20:52 - 02477624 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2016-10-18 06:18 - 2016-10-18 20:52 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2016-10-18 06:18 - 2016-10-18 20:52 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2016-10-18 06:18 - 2016-10-18 20:52 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2016-10-18 06:15 - 2016-10-18 06:15 - 00000000 ____D C:\NVIDIA 2016-10-18 06:14 - 2016-10-18 06:15 - 352622016 _____ (NVIDIA Corporation) C:\Users\Hamsterkäfig\Downloads\373.06-desktop-win8-win7-64bit-international-whql.exe 2016-10-18 06:03 - 2016-10-18 06:03 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\ElevatedDiagnostics 2016-10-18 05:59 - 2016-11-06 12:31 - 920407749 _____ C:\Windows\MEMORY.DMP 2016-10-18 05:59 - 2016-10-18 05:59 - 00729816 _____ C:\Windows\Minidump\101816-9672-01.dmp 2016-10-17 19:57 - 2016-10-17 19:58 - 04743508 _____ C:\Users\Hamsterkäfig\Desktop\ABL_CATIA_2016.pdf 2016-10-16 19:34 - 2016-10-29 22:27 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\CrashDumps 2016-10-16 15:07 - 2016-10-16 15:07 - 00002161 _____ C:\Users\Hamsterkäfig\Desktop\ProjectLibre.lnk 2016-10-16 15:06 - 2016-10-16 15:06 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ProjectLibre 2016-10-16 15:06 - 2016-10-16 15:06 - 00000000 ____D C:\Program Files (x86)\ProjectLibre 2016-10-16 15:02 - 2016-10-16 15:02 - 16126976 _____ C:\Users\Hamsterkäfig\Downloads\projectlibre-1.6.2.msi 2016-10-16 14:52 - 2016-10-16 14:52 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\3dmouse 2016-10-16 14:51 - 2016-10-16 14:51 - 00001199 _____ C:\Users\Public\Desktop\CATIA STUDENT V5-6R2016.lnk 2016-10-16 14:51 - 2016-10-16 14:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CATIA STUDENT 2016-10-16 14:44 - 2016-10-16 14:55 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\DassaultSystemes 2016-10-16 14:44 - 2016-10-16 14:55 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\DassaultSystemes 2016-10-16 14:41 - 2016-10-16 14:49 - 00000000 ____D C:\ProgramData\DassaultSystemes 2016-10-16 14:27 - 2016-10-16 14:38 - 1032468755 _____ C:\Users\Hamsterkäfig\Downloads\V5-6R2016.CATIA_STUDENT.win_b64.1-1.zip 2016-10-16 14:27 - 2016-10-16 14:27 - 00703022 _____ C:\Users\Hamsterkäfig\Downloads\TARGET-ID generator.zip 2016-10-16 08:59 - 2016-10-18 19:37 - 00001416 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2016-10-16 08:54 - 2016-09-30 05:25 - 00121912 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2016-10-16 08:52 - 2016-09-30 05:25 - 00106040 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2016-10-16 08:52 - 2016-09-30 05:25 - 00095800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2016-10-16 08:52 - 2016-09-30 05:25 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2016-10-15 18:10 - 2016-10-23 13:54 - 00000000 ____D C:\ProgramData\boost_interprocess 2016-10-15 18:09 - 2016-10-15 18:09 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\PreEmptive Solutions 2016-10-15 18:09 - 2016-10-15 18:09 - 00000000 ____D C:\ProgramData\PreEmptive Solutions 2016-10-15 18:06 - 2016-10-15 18:06 - 00001361 _____ C:\Users\Hamsterkäfig\Desktop\ANSYS Workbench 17.2.lnk 2016-10-15 17:54 - 2016-10-15 17:54 - 00000545 _____ C:\Users\Hamsterkäfig\Downloads\ansys_student.zip 2016-10-15 17:46 - 2016-10-15 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ANSYS 17.2 2016-10-15 17:46 - 2016-10-15 17:46 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Ansys 2016-10-15 17:38 - 2016-10-23 13:57 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Ansys 2016-10-15 10:36 - 2016-10-15 10:38 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\TITANWOLF GAUNTLET GAMING MOUSE 2016-10-15 10:36 - 2016-10-15 10:36 - 00001228 _____ C:\Users\Public\Desktop\TITANWOLF GAUNTLET GAMING MOUSE.lnk 2016-10-15 10:36 - 2016-10-15 10:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TITANWOLF GAUNTLET GAMING MOUSE 2016-10-15 10:36 - 2016-10-15 10:36 - 00000000 ____D C:\Program Files (x86)\TITANWOLF 2016-10-15 10:05 - 2016-10-15 10:05 - 00000000 ____D C:\ProgramData\redistpart 2016-10-15 10:04 - 2016-10-15 10:04 - 00000000 ____D C:\ProgramData\launcher 2016-10-15 10:04 - 2016-10-15 10:04 - 00000000 ____D C:\ProgramData\explauncher 2016-10-15 09:54 - 2016-10-15 09:54 - 00002399 _____ C:\Users\Public\Desktop\Paragon Partition Manager™ 2014 Free.lnk 2016-10-15 09:54 - 2016-10-15 09:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paragon Partition Manager™ 2014 Free 2016-10-15 09:54 - 2016-10-15 09:54 - 00000000 ____D C:\Program Files (x86)\Paragon Software 2016-10-15 09:53 - 2016-10-15 09:53 - 00000000 ____D C:\Program Files (x86)\Chip Digital GmbH 2016-10-13 14:18 - 2016-10-16 11:34 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\CCleaner Registry backup 2016-10-12 07:34 - 2016-09-30 21:13 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-10-12 07:34 - 2016-09-30 20:28 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-10-12 07:34 - 2016-09-30 16:37 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-10-12 07:34 - 2016-09-30 16:20 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2016-10-12 07:34 - 2016-09-30 16:20 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2016-10-12 07:34 - 2016-09-30 08:55 - 25765376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-10-12 07:34 - 2016-09-30 07:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-10-12 07:34 - 2016-09-30 07:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-10-12 07:34 - 2016-09-30 07:26 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-10-12 07:34 - 2016-09-30 07:25 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-10-12 07:34 - 2016-09-30 07:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-10-12 07:34 - 2016-09-30 07:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-10-12 07:34 - 2016-09-30 07:25 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-10-12 07:34 - 2016-09-30 07:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-10-12 07:34 - 2016-09-30 07:18 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-10-12 07:34 - 2016-09-30 07:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-10-12 07:34 - 2016-09-30 07:14 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-10-12 07:34 - 2016-09-30 07:13 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-10-12 07:34 - 2016-09-30 07:13 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-10-12 07:34 - 2016-09-30 07:12 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-10-12 07:34 - 2016-09-30 07:12 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-10-12 07:34 - 2016-09-30 07:09 - 06048256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-10-12 07:34 - 2016-09-30 07:05 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-10-12 07:34 - 2016-09-30 07:02 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-10-12 07:34 - 2016-09-30 06:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-10-12 07:34 - 2016-09-30 06:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-10-12 07:34 - 2016-09-30 06:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-10-12 07:34 - 2016-09-30 06:51 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-10-12 07:34 - 2016-09-30 06:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-10-12 07:34 - 2016-09-30 06:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-10-12 07:34 - 2016-09-30 06:47 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-10-12 07:34 - 2016-09-30 06:46 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-10-12 07:34 - 2016-09-30 06:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-10-12 07:34 - 2016-09-30 06:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-10-12 07:34 - 2016-09-30 06:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-10-12 07:34 - 2016-09-30 06:42 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-10-12 07:34 - 2016-09-30 06:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-10-12 07:34 - 2016-09-30 06:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-10-12 07:34 - 2016-09-30 06:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-10-12 07:34 - 2016-09-30 06:35 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-10-12 07:34 - 2016-09-30 06:35 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-10-12 07:34 - 2016-09-30 06:33 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-10-12 07:34 - 2016-09-30 06:33 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-10-12 07:34 - 2016-09-30 06:32 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-10-12 07:34 - 2016-09-30 06:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-10-12 07:34 - 2016-09-30 06:32 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-10-12 07:34 - 2016-09-30 06:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-10-12 07:34 - 2016-09-30 06:31 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-10-12 07:34 - 2016-09-30 06:31 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-10-12 07:34 - 2016-09-30 06:24 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-10-12 07:34 - 2016-09-30 06:21 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-10-12 07:34 - 2016-09-30 06:19 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2016-10-12 07:34 - 2016-09-30 06:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-10-12 07:34 - 2016-09-30 06:17 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-10-12 07:34 - 2016-09-30 06:17 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-10-12 07:34 - 2016-09-30 06:15 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-10-12 07:34 - 2016-09-30 06:14 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-10-12 07:34 - 2016-09-30 06:13 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-10-12 07:34 - 2016-09-30 06:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-10-12 07:34 - 2016-09-30 06:07 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-10-12 07:34 - 2016-09-30 06:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-10-12 07:34 - 2016-09-30 06:05 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-10-12 07:34 - 2016-09-30 06:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-10-12 07:34 - 2016-09-30 06:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-10-12 07:34 - 2016-09-30 06:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-10-12 07:34 - 2016-09-30 05:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-10-12 07:34 - 2016-09-30 05:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-10-12 07:34 - 2016-09-30 05:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-10-12 07:34 - 2016-09-30 05:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-10-12 07:34 - 2016-09-15 16:30 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2016-10-12 07:34 - 2016-09-15 16:30 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll 2016-10-12 07:34 - 2016-09-15 16:15 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2016-10-12 07:34 - 2016-09-15 16:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll 2016-10-12 07:34 - 2016-09-12 22:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-10-12 07:34 - 2016-09-12 22:13 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-10-12 07:34 - 2016-09-12 22:13 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-10-12 07:34 - 2016-09-12 22:08 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-10-12 07:34 - 2016-09-12 22:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-10-12 07:34 - 2016-09-12 21:49 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-10-12 07:34 - 2016-09-12 21:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-10-12 07:34 - 2016-09-12 21:37 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-10-12 07:34 - 2016-09-12 21:32 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-10-12 07:34 - 2016-09-12 21:32 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-10-12 07:34 - 2016-09-12 21:32 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-10-12 07:34 - 2016-09-12 21:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-10-12 07:34 - 2016-09-12 21:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-10-12 07:34 - 2016-09-12 21:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-10-12 07:34 - 2016-09-12 20:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2016-10-12 07:34 - 2016-09-12 19:43 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2016-10-12 07:34 - 2016-09-12 19:43 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2016-10-12 07:34 - 2016-09-10 17:19 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll 2016-10-12 07:34 - 2016-09-10 16:53 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll 2016-10-12 07:34 - 2016-09-09 19:29 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2016-10-12 07:34 - 2016-09-09 19:26 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2016-10-12 07:34 - 2016-09-09 19:23 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 19:01 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-10-12 07:34 - 2016-09-09 19:00 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2016-10-12 07:34 - 2016-09-09 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-10-12 07:34 - 2016-09-09 19:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2016-10-12 07:34 - 2016-09-09 19:00 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:51 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2016-10-12 07:34 - 2016-09-09 18:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2016-10-12 07:34 - 2016-09-09 18:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2016-10-12 07:34 - 2016-09-09 18:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2016-10-12 07:34 - 2016-09-09 18:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2016-10-12 07:34 - 2016-09-09 18:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2016-10-12 07:34 - 2016-09-09 18:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2016-10-12 07:34 - 2016-09-09 18:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2016-10-12 07:34 - 2016-09-09 18:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2016-10-12 07:34 - 2016-09-09 18:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2016-10-12 07:34 - 2016-09-09 18:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 18:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2016-10-12 07:34 - 2016-09-09 16:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-10-12 07:34 - 2016-09-09 16:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-10-12 07:34 - 2016-09-09 16:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-10-12 07:34 - 2016-09-09 16:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-10-12 07:34 - 2016-09-09 16:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2016-10-12 07:34 - 2016-09-09 16:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2016-10-12 07:34 - 2016-09-09 16:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-10-12 07:34 - 2016-09-08 21:34 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2016-10-12 07:34 - 2016-09-08 21:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2016-10-12 07:34 - 2016-09-08 21:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll 2016-10-12 07:34 - 2016-09-08 21:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll 2016-10-12 07:34 - 2016-09-08 15:55 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2016-10-12 07:34 - 2016-09-08 15:55 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys 2016-10-12 07:34 - 2016-08-29 16:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-10-12 07:34 - 2016-08-29 16:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2016-10-12 07:34 - 2016-08-29 16:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2016-10-12 07:34 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2016-10-12 07:34 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2016-10-12 07:34 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2016-10-12 07:34 - 2016-08-29 16:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2016-10-12 07:34 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2016-10-12 07:34 - 2016-08-16 21:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2016-10-12 07:34 - 2016-08-16 21:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2016-10-12 07:34 - 2016-08-16 21:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2016-10-12 07:34 - 2016-08-16 21:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2016-10-12 07:34 - 2016-08-16 21:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2016-10-12 07:34 - 2016-08-16 21:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2016-10-12 07:34 - 2016-08-16 21:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2016-10-12 07:34 - 2016-08-12 18:02 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-10-12 07:34 - 2016-08-12 18:02 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2016-10-12 07:34 - 2016-08-12 18:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2016-10-12 07:34 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2016-10-12 07:34 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2016-10-12 07:34 - 2016-08-12 17:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2016-10-12 07:34 - 2016-08-12 17:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2016-10-12 07:34 - 2016-08-12 17:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2016-10-12 07:34 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2016-10-12 07:34 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2016-10-12 07:34 - 2016-08-12 17:26 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll 2016-10-12 07:34 - 2016-08-06 16:31 - 02023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll 2016-10-12 07:34 - 2016-08-06 16:31 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll 2016-10-12 07:34 - 2016-08-06 16:31 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll 2016-10-12 07:34 - 2016-08-06 16:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll 2016-10-12 07:34 - 2016-08-06 16:31 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll 2016-10-12 07:34 - 2016-08-06 16:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll 2016-10-12 07:34 - 2016-08-06 16:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll 2016-10-12 07:34 - 2016-08-06 16:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll 2016-10-12 07:34 - 2016-08-06 16:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll 2016-10-12 07:34 - 2016-08-06 16:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll 2016-10-12 07:34 - 2016-08-06 16:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll 2016-10-12 07:34 - 2016-08-06 16:01 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe 2016-10-12 07:34 - 2016-08-06 16:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe 2016-10-12 07:34 - 2016-08-06 15:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe 2016-10-12 07:34 - 2016-08-06 15:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe 2016-10-12 07:34 - 2016-08-06 15:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll 2016-10-12 07:34 - 2016-07-22 15:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2016-10-12 07:34 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2016-10-12 07:34 - 2016-06-14 18:21 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2016-10-12 07:34 - 2016-06-14 18:16 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll 2016-10-12 07:34 - 2016-06-14 18:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2016-10-12 07:34 - 2016-06-14 18:11 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2016-10-12 07:34 - 2016-06-14 16:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll 2016-10-12 07:34 - 2016-06-14 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2016-10-12 07:34 - 2016-06-14 16:15 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2016-10-12 07:34 - 2016-06-14 16:15 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2016-10-12 07:34 - 2016-06-14 16:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2016-10-12 07:34 - 2016-06-14 16:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2016-10-12 07:34 - 2016-06-14 16:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2016-10-12 07:34 - 2016-06-14 16:00 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe 2016-10-12 07:34 - 2016-06-14 16:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2016-10-11 18:23 - 2016-10-11 18:33 - 4276726900 _____ C:\Users\Hamsterkäfig\Downloads\Ansys.zip 2016-10-11 18:19 - 2016-10-11 18:19 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Sun 2016-10-11 18:19 - 2016-10-11 18:19 - 00000000 ____D C:\Users\Hamsterkäfig\.oracle_jre_usage ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-11-06 16:10 - 2015-10-19 13:35 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\NetSpeedMonitor 2016-11-06 15:30 - 2009-07-14 05:45 - 00014576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-11-06 15:30 - 2009-07-14 05:45 - 00014576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-11-06 15:28 - 2009-07-14 18:58 - 00699416 _____ C:\Windows\system32\perfh007.dat 2016-11-06 15:28 - 2009-07-14 18:58 - 00149556 _____ C:\Windows\system32\perfc007.dat 2016-11-06 15:28 - 2009-07-14 06:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI 2016-11-06 15:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2016-11-06 15:22 - 2015-08-05 15:39 - 00000000 ____D C:\ProgramData\NVIDIA 2016-11-06 15:22 - 2015-08-05 15:29 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2016-11-06 15:22 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-11-06 15:20 - 2015-10-09 12:23 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-11-06 14:47 - 2016-06-14 09:51 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Notepad++ 2016-11-06 12:31 - 2015-08-06 07:57 - 00000000 ____D C:\Windows\Minidump 2016-11-06 11:53 - 2015-08-05 15:45 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Skype 2016-11-06 11:27 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2016-11-06 10:54 - 2016-06-14 09:55 - 00000598 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk 2016-11-06 10:54 - 2016-06-14 09:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager 2016-11-06 01:27 - 2015-08-05 16:35 - 00000000 ____D C:\ProgramData\Origin 2016-11-06 01:25 - 2015-08-05 16:37 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Origin 2016-11-05 14:34 - 2015-08-05 18:45 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2016-11-05 10:30 - 2015-08-05 18:45 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2016-11-05 00:15 - 2016-09-04 11:28 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Battle.net 2016-11-04 23:45 - 2016-09-04 11:29 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm 2016-11-04 17:46 - 2015-08-08 16:52 - 00000000 ____D C:\ProgramData\TEMP 2016-11-03 08:20 - 2015-08-05 16:57 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\My Games 2016-10-30 09:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF 2016-10-29 22:53 - 2016-06-14 18:57 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\LOOT 2016-10-28 14:03 - 2015-08-05 15:04 - 00000000 ____D C:\Users\Hamsterkäfig 2016-10-26 16:29 - 2015-08-05 15:21 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2016-10-26 13:20 - 2015-10-09 12:23 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-10-26 13:20 - 2015-10-09 12:23 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-10-26 13:20 - 2015-10-09 12:23 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-10-26 13:20 - 2015-10-09 12:23 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2016-10-26 13:20 - 2015-10-09 12:23 - 00000000 ____D C:\Windows\system32\Macromed 2016-10-24 18:45 - 2015-08-05 15:44 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-10-24 06:41 - 2016-04-17 19:15 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Factorio 2016-10-23 09:48 - 2015-08-05 16:12 - 00000000 ____D C:\ProgramData\Package Cache 2016-10-23 09:47 - 2015-08-05 15:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-10-23 08:36 - 2015-08-05 15:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-10-22 14:00 - 2015-08-05 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-10-22 14:00 - 2015-08-05 15:52 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-10-22 13:59 - 2015-08-05 15:57 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\NVIDIA Corporation 2016-10-22 13:59 - 2015-08-05 15:54 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2016-10-22 13:59 - 2015-08-05 15:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-10-22 13:00 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-10-22 13:00 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2016-10-22 07:37 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-10-21 12:02 - 2016-06-14 09:55 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\Nexus Mod Manager 2016-10-19 23:48 - 2015-08-05 15:52 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2016-10-19 12:26 - 2015-09-30 12:15 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\TS3Client 2016-10-18 22:23 - 2015-08-05 15:52 - 19917400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2016-10-18 22:23 - 2015-08-05 15:52 - 17338792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2016-10-18 22:23 - 2015-08-05 15:52 - 14394528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2016-10-18 22:23 - 2015-08-05 15:52 - 03930688 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2016-10-18 22:23 - 2015-08-05 15:52 - 03469408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2016-10-18 22:23 - 2015-08-05 15:52 - 00041344 _____ C:\Windows\system32\nvinfo.pb 2016-10-18 19:37 - 2015-08-05 15:55 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\NVIDIA 2016-10-18 15:25 - 2015-08-05 15:44 - 00000000 ____D C:\ProgramData\Skype 2016-10-18 06:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help 2016-10-18 06:15 - 2015-08-06 07:46 - 00000000 ____D C:\Users\Hamsterkäfig\Desktop\OpenHardwareMonitor 2016-10-17 07:28 - 2009-07-14 05:45 - 00377688 _____ C:\Windows\system32\FNTCACHE.DAT 2016-10-16 15:34 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2016-10-16 14:56 - 2015-08-05 15:31 - 00078720 _____ C:\Users\Hamsterkäfig\AppData\Local\GDIPFONTCACHEV1.DAT 2016-10-16 14:51 - 2009-07-14 03:34 - 00017710 _____ C:\Windows\system32\Drivers\etc\services 2016-10-16 09:37 - 2015-10-16 18:13 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Warframe 2016-10-15 09:53 - 2016-06-03 17:38 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Downloaded Installations 2016-10-14 14:53 - 2015-11-22 00:25 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Fallout4 2016-10-12 10:08 - 2015-08-08 10:45 - 00000000 ___SD C:\Windows\system32\CompatTel 2016-10-12 10:08 - 2015-08-08 10:45 - 00000000 ____D C:\Windows\system32\appraiser 2016-10-12 10:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism 2016-10-12 10:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism 2016-10-12 08:06 - 2015-08-05 15:56 - 00000000 ____D C:\Windows\system32\MRT 2016-10-12 08:04 - 2015-08-05 15:56 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-10-11 18:21 - 2015-08-05 15:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-10-11 18:21 - 2015-08-05 15:37 - 00000000 ____D C:\ProgramData\Oracle 2016-10-11 18:21 - 2015-08-05 15:37 - 00000000 ____D C:\Program Files (x86)\Java 2016-10-11 18:18 - 2015-08-05 15:38 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2016-10-07 11:00 - 2016-10-04 19:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-12-13 22:06 - 2015-12-15 21:30 - 0000272 _____ () C:\Users\Hamsterkäfig\AppData\Roaming\gnuplot_history 2015-08-05 16:23 - 2016-04-13 16:51 - 0007602 _____ () C:\Users\Hamsterkäfig\AppData\Local\Resmon.ResmonCfg 2015-08-05 16:17 - 2015-08-05 16:17 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-04-21 12:09 - 2016-04-21 12:09 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc Einige Dateien in TEMP: ==================== C:\Users\Hamsterkäfig\AppData\Local\Temp\Nexus Mod Manager-0.63.1.exe C:\Users\Hamsterkäfig\AppData\Local\Temp\Nexus Mod Manager-0.63.6.exe C:\Users\Hamsterkäfig\AppData\Local\Temp\npp.7.1.Installer.exe C:\Users\Hamsterkäfig\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Hamsterkäfig\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ====================== (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-11-04 16:39 ==================== Ende von FRST.txt ============================ Ein Bild der Windowsdefendermeldung ist im Anhang. |
06.11.2016, 16:33 | #2 |
| browsermodifier:win32 suptab!blnk Win 7 Addition.txt:
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 04-11-2016 durchgeführt von Hamsterkäfig (06-11-2016 16:11:11) Gestartet von C:\Users\Hamsterkäfig\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2015-08-05 14:04:47) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-3941584184-2741482839-2338500445-500 - Administrator - Disabled) Gast (S-1-5-21-3941584184-2741482839-2338500445-501 - Limited - Disabled) Hamsterkäfig (S-1-5-21-3941584184-2741482839-2338500445-1000 - Administrator - Enabled) => C:\Users\Hamsterkäfig ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Kaspersky Anti-Virus (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98} AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated) Ansel (Version: 375.57 - NVIDIA Corporation) Hidden ARM Toolchain (x32 Version: 7.0.1004 - Atmel) Hidden Atmel Driver Files (HKLM-x32\...\{6F7D7F68-DBBF-45E2-ADE8-B78E72C2D1C1}) (Version: 7.1.16 - Atmel Corporation) Atmel LibUSB0 Driver (x64) (HKLM\...\{C1F86585-CDAC-4ABE-B163-161DDBCC4332}) (Version: 7.0.125 - Atmel) Atmel Segger USB Drivers (501e) (HKLM-x32\...\{156C0C95-4DDE-4F88-97A0-5EEE22269CE3}) (Version: 7.0.417 - Atmel) Atmel Software Framework (x32 Version: 7.0.1186 - Atmel) Hidden Atmel Studio 7.0 (HKLM-x32\...\{9b226216-cf50-48b3-a6e2-3dd5a9b3406d}) (Version: 7.0.1188 - Atmel) Atmel Studio Development Environment (x32 Version: 7.0.1188 - Atmel) Hidden Atmel WinDriver (HKLM-x32\...\{FAF2A9D1-33C8-48FF-8FD5-20075A53AB9C}) (Version: 7.0.23 - Atmel) Atmel WinUSB (HKLM-x32\...\{22D3C72E-42F9-4B0F-B331-E0AA134ADF76}) (Version: 6.2.32 - Atmel) AVR32 Device Support (x32 Version: 7.0.1183 - Atmel) Hidden AVR32 Toolchain 7.0 (x32 Version: 7.0.536 - Atmel) Hidden AVR8 Device Support (x32 Version: 7.0.1188 - Atmel) Hidden AVR8 Toolchain (x32 Version: 7.0.1185 - Atmel) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts) Borderlands (HKLM\...\Steam App 8980) (Version: - Gearbox Software) Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version: - Gearbox Software) Borderlands: The Pre-Sequel (HKLM\...\Steam App 261640) (Version: - 2K Australia) Canon MG5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform) chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH) Command and Conquer 3: Kane's Wrath (HKLM-x32\...\Steam App 24810) (Version: - EA Los Angeles) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) Dassault Systèmes - VBA 7.1 (HKLM-x32\...\{f5d19b89-fbc9-4c55-a62b-c20bca6c2e18}) (Version: 1.0.0.0 - Dassault Systèmes) Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes) Dassault Systemes Software VC10 Prerequisites x86-x64 (HKLM\...\{7C534131-6431-4ECB-9069-525CB5F75CC8}) (Version: 10.1.1 - Dassault Systemes) Dassault Systemes Software VC11 Prerequisites x86-x64 (HKLM\...\{C857169D-3F1A-4530-99A0-CAE966CE267E}) (Version: 11.0.1 - Dassault Systemes) Dassault Systemes Software VC9 Prerequisites x86-x64 (HKLM\...\{F2F2DEA7-36AB-4E13-907C-D8BDE775EF97}) (Version: 9.1.2 - Dassault Systemes) Dassault Systemes Software Version 5-6 Release 2016 (B26) (HKLM\...\Dassault Systemes B26_0) (Version: - ) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks) Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version: - Klei Entertainment) Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve) Dragon's Dogma: Dark Arisen (HKLM-x32\...\Steam App 367500) (Version: - Capcom) Factorio (HKLM\...\Steam App 427520) (Version: - Wube Software LTD.) Fallout 4 (HKLM-x32\...\Steam App 377160) (Version: - Bethesda Game Studios) Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.7.139.918 - Foxit Software Inc.) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.2.0.722 - Foxit Software Inc.) Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.6.328 - DVDVideoSoft Ltd.) gnuplot 5.0 patchlevel 1 (HKLM\...\{AB419AC3-9BC1-4EC5-A75B-4D8870DD651F}_is1) (Version: 5.0 patchlevel 1 - gnuplot development team) Gpg4win (2.3.0) (HKLM-x32\...\GPG4Win) (Version: 2.3.0 - The Gpg4win Project) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab) Kaspersky Anti-Virus (x32 Version: 16.0.1.445 - Kaspersky Lab) Hidden League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games) League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve) LEGO Racers 2 (HKLM-x32\...\{3DD2E9EA-0544-4162-B8BE-E21E994E9F3B}) (Version: - ) LibreOffice 4.4.5.2 (HKLM-x32\...\{406EECCC-AF98-4F2C-A99F-FED788F7580C}) (Version: 4.4.5.2 - The Document Foundation) LOOT Version 0.9.0 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.9.0 - LOOT Team) Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{B941AFB4-8851-33A1-9E72-0C33D463C41C}) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4048 (HKLM\...\{91415F19-4C22-3609-A105-92ED3522D83C}) (Version: 9.0.30729.4048 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM-x32\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio 2015 Shell (Isolated) (HKLM-x32\...\{d2981c27-a434-4c9a-96c7-0209e97c4eac}) (Version: 14.0.23107.10 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Minimum (HKLM-x32\...\Steam App 214190) (Version: - Human Head Studios) Mozilla Firefox 49.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 49.0.2 (x86 de)) (Version: 49.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.2.6136 - Mozilla) Mozilla Thunderbird 45.4.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.4.0 (x86 de)) (Version: 45.4.0 - Mozilla) NETGEAR A6200 Genie (HKLM-x32\...\{48E61F3E-61D4-42A3-9D29-D0CF40838779}) (Version: 26.0.0.0 - NETGEAR) NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles) Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.6 - Black Tree Gaming) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.1 - Notepad++ Team) Nuance PaperPort 14 (HKLM-x32\...\{35524018-624B-4596-8CD3-059AD2C770B2}) (Version: 14.1.0000 - Nuance Communications, Inc.) Nuance PDF Create 7 (HKLM\...\{CD7A262C-287E-41DD-A0F7-733856252C6B}) (Version: 7.10.2364 - Nuance Communications, Inc) Nuance PDF Create 7 (HKLM-x32\...\{CD7A262C-287E-41DD-A0F7-733856252C6B}) (Version: 7.10.2364 - Nuance Communications, Inc) Nuance PDF Viewer Plus (HKLM-x32\...\{042A6F10-F770-4886-A502-B795DCF2D3B5}) (Version: 7.10.3211 - Nuance Communications, Inc) NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA 3D Vision Treiber 375.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.57 - NVIDIA Corporation) NVIDIA GeForce Experience 3.0.7.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.7.34 - NVIDIA Corporation) NVIDIA Grafiktreiber 375.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.57 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NvNodejs (Version: 3.0.7.34 - NVIDIA Corporation) Hidden NvTelemetry (Version: 1.0.0.0 - NVIDIA Corporation) Hidden Octave 4.0.3 (HKLM-x32\...\Octave-4.0.3) (Version: 4.0.3 - GNU Octave) Origin (HKLM-x32\...\Origin) (Version: 10.2.1.38915 - Electronic Arts, Inc.) ORION: Prelude (HKLM-x32\...\Steam App 104900) (Version: - Spiral Game Studios) Paladins (HKLM\...\Steam App 444090) (Version: - Hi-Rez Studios) PaperPort Anywhere 1.1.4310.24706 powered by OfficeDrop (HKLM\...\{52357C6C-FE7F-4E8C-B045-EDE5146A1F9C}) (Version: 1.1.4310.24706 - OfficeDrop) PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0001 - Nuance Communications, Inc.) Paragon Partition Manager™ 2014 Free (HKLM-x32\...\{47E5588F-C3A0-11DE-9857-005056C00008}) (Version: 90.00.0003 - Paragon Software) PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.) PAYDAY: The Heist (HKLM\...\Steam App 24240) (Version: - OVERKILL Software) Pixel Dungeon (HKLM\...\Steam App 365900) (Version: - Retronic Games) PlanetSide 2 (HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\SOE-PlanetSide 2) (Version: 1.0.3.183 - Sony Online Entertainment) ProjectLibre (HKLM-x32\...\{8E2A530F-ABE9-45B4-B4EA-B9DF56698376}) (Version: 1.6.2.0 - ProjectLibre) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7266 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.0 - VS Revo Group, Ltd.) SAM Device Support (x32 Version: 7.0.1186 - Atmel) Hidden Scansoft PDF Create (x32 Version: - ) Hidden SHIELD Streaming (Version: 7.1.0320 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.0.7.34 - NVIDIA Corporation) Hidden Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.) SketchUp-Import 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.) SlimDX Runtime .NET 2.0 (January 2012) (HKLM-x32\...\{014A2868-BE56-4888-A16C-693989B8F153}) (Version: 2.0.13.43 - SlimDX Group) SMITE (HKLM\...\Steam App 386360) (Version: - Hi-Rez Studios) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Styx: Master of Shadows (HKLM-x32\...\Steam App 242640) (Version: - Cyanide Studio) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic) The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios) The Elder Scrolls Online: Tamriel Unlimited (HKLM-x32\...\Steam App 306130) (Version: - Zenimax Online Studios) The Witcher 3: Wild Hunt (HKLM\...\Steam App 292030) (Version: - CD PROJEKT RED) TITANWOLF GAUNTLET GAMING MOUSE (HKLM-x32\...\{F84C90F5-47CD-4354-8C4F-243CB74F3A7E}_is1) (Version: 1.0 - TITANWOLF) Tom Clancy's Ghost Recon Phantoms - EU (HKLM-x32\...\Steam App 272350) (Version: - Ubisoft Singapore) Torchlight II (HKLM\...\Steam App 200710) (Version: - Runic Games) Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Warframe (HKLM-x32\...\Steam App 230410) (Version: - Digital Extremes) Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org) Zombie Army Trilogy (HKLM-x32\...\Steam App 301640) (Version: - Rebellion) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {0C264AD2-7F07-402A-89D9-269E4F099856} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-30] (NVIDIA Corporation) Task: {0CEDA7CE-E474-4775-AC0A-1F24315EDC6F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-09-30] (NVIDIA Corporation) Task: {255ADE3E-DB47-4DE5-A3AC-341587558D10} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-26] (Adobe Systems Incorporated) Task: {2F615811-0A90-481F-87AE-3256F88D5EF0} - System32\Tasks\automatisch aus => C:\Windows\System32\shutdown.exe [2009-07-14] (Microsoft Corporation) Task: {355CA036-2DAB-452B-AE11-E92BA9720BEA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-30] (NVIDIA Corporation) Task: {5167B7D4-CD14-4F87-912C-C34D269D41B6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-30] (NVIDIA Corporation) Task: {7CAB3194-41AD-449B-9527-19E19F093801} - System32\Tasks\{52F1F289-0C77-4332-AC57-B0472F18AB24} => pcalua.exe -a "E:\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "E:\Steam\steamapps\common\Left 4 Dead 2" -c /register Task: {829BC014-165E-45B6-8000-4169ADCC3556} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-05-13] (Piriform Ltd) Task: {8B0EE932-BDC0-444E-9815-B7D6D49055E0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-30] (NVIDIA Corporation) Task: {9D2D16A7-AE9A-4D77-A0B4-09C8A75C0011} - System32\Tasks\{3D9E4A3D-40DE-449E-821E-ADEFF5330C45} => Firefox.exe hxxp://ui.skype.com/ui/0/7.25.0.106/de/abandoninstall?page=tsProgressBar Task: {EA4C4675-E435-4307-9219-085120E080FF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-09-30] (NVIDIA Corporation) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-11-24 19:32 - 2015-11-24 19:32 - 00216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe 2016-10-18 19:37 - 2016-09-30 05:25 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-10-18 19:37 - 2016-09-30 05:25 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-10-18 19:37 - 2016-09-30 05:25 - 00419896 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll 2016-10-18 06:18 - 2016-10-18 20:52 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-10-15 10:36 - 2015-08-10 17:21 - 03317248 _____ () C:\Program Files (x86)\TITANWOLF\GAUNTLET GAMING MOUSE\TTFMon.exe 2015-08-06 20:28 - 2015-08-06 20:28 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe 2015-08-06 08:08 - 2012-09-24 16:28 - 00029984 _____ () C:\Program Files (x86)\NETGEAR\A6200\WifiService.exe 2015-12-22 01:47 - 2015-12-22 01:47 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\kpcengine.2.3.dll 2016-04-09 17:32 - 2016-03-28 23:06 - 00110952 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll 2016-04-09 17:32 - 2016-03-28 23:06 - 00253800 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll 2016-04-09 17:32 - 2016-03-28 23:06 - 00295272 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll 2016-04-09 17:32 - 2016-03-28 23:06 - 00104296 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll 2016-04-09 17:32 - 2016-03-28 23:06 - 00020328 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll 2016-04-09 17:32 - 2016-03-28 23:06 - 00044392 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll 2015-11-24 19:20 - 2015-11-24 19:20 - 00221696 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll 2015-11-24 19:14 - 2015-11-24 19:14 - 00087552 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll 2015-11-24 19:09 - 2015-11-24 19:09 - 00050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll 2015-11-24 19:20 - 2015-11-24 19:20 - 00073728 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll 2015-11-24 19:22 - 2015-11-24 19:22 - 00751104 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll 2016-10-18 19:37 - 2016-09-30 05:25 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-10-15 10:36 - 2014-05-19 18:10 - 00028160 _____ () C:\Program Files (x86)\TITANWOLF\GAUNTLET GAMING MOUSE\uiHook.dll 2016-10-18 19:37 - 2016-09-30 05:25 - 60819000 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2016-10-18 19:37 - 2016-09-29 18:20 - 00500792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2016-10-18 19:37 - 2016-09-29 18:20 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2016-10-18 19:37 - 2016-09-29 18:20 - 02801208 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2016-10-18 19:37 - 2016-09-29 18:20 - 00244672 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2016-10-18 19:37 - 2016-09-29 18:20 - 00430648 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2016-10-18 19:37 - 2016-09-29 18:20 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2016-10-18 19:37 - 2016-09-29 18:20 - 00373696 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\ProgramData\TEMP:FD9CE1F3 [136] ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\sony.com -> sony.com ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Hamsterkäfig\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 149.205.5.81 - 149.205.5.82 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Steam => "E:\Steam\steam.exe" -silent ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{91150D98-A9FF-4DCE-97AE-0DCF8E921684}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{5A6000E2-A218-4582-BE6F-05D14D05463A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{4C5CB490-709D-4123-A4EB-866F0F2A1B12}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{30FEB7DD-1D52-4AB0-B713-32C746B91223}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{60C06911-7433-41FD-A6F7-B4A688025712}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{1DC99595-93D2-4EF4-8B8C-830A297C9CFC}] => (Allow) E:\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{F3788DAC-1CD9-4AD3-BDE1-07CF35445425}] => (Allow) E:\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [TCP Query User{F7711BB6-3A0E-423C-9D9A-800BFA45BDF8}E:\planetside 2\planetside2_x64.exe] => (Allow) E:\planetside 2\planetside2_x64.exe FirewallRules: [UDP Query User{BF12B9FB-F89B-4123-8542-22D98917900C}E:\planetside 2\planetside2_x64.exe] => (Allow) E:\planetside 2\planetside2_x64.exe FirewallRules: [{43AAD8F7-A43C-4CFF-A1B2-DD78CAE9A55E}] => (Allow) E:\Origin\Origin Spiele\Battlefield 3\bf3.exe FirewallRules: [{1BF4CBD0-3EE9-4A70-BED1-106111ACE668}] => (Allow) E:\Origin\Origin Spiele\Battlefield 3\bf3.exe FirewallRules: [{B4A648A2-33AE-467B-8B31-AB9A6D299FC5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{D30495AB-C9A4-4EBF-B406-91D6EA27C5BF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{CAB64D02-0802-4D72-B58C-D9BD9A07854B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{5BFEF73D-28CB-4B36-A8F6-260559F93B08}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{C58D3350-802D-4D39-9ED4-B31FF97BDA47}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\bf4_x86.exe FirewallRules: [{9B5BD1FC-BF71-4D4F-B3A3-9B4568C31745}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\bf4_x86.exe FirewallRules: [{99052ADC-78C6-480D-B902-E4DF50F49682}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\bf4.exe FirewallRules: [{0CEE27A8-2A7A-43CE-8F1F-62AB8BDA8B6C}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\bf4.exe FirewallRules: [{73CFE37E-CF60-4038-963F-2AB311C52DC2}] => (Allow) E:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{09F44E3A-9F30-4D14-8AFF-2057B06D202B}] => (Allow) E:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{60A76685-04D3-4E38-B91D-C72AB00370D8}] => (Allow) E:\Steam\steamapps\common\Command and Conquer 3 - Kane's Wrath\CNC3EP1.exe FirewallRules: [{FF5A74D8-1FDF-492E-8090-3AD800820BEA}] => (Allow) E:\Steam\steamapps\common\Command and Conquer 3 - Kane's Wrath\CNC3EP1.exe FirewallRules: [{EED482E8-A4BA-4274-83C5-FE5FF3A8D188}] => (Allow) E:\Steam\steamapps\common\Command and Conquer 3 - Kane's Wrath\RetailExe\1.2\cnc3ep1.dat FirewallRules: [{3667F5E0-B981-4C02-928E-3ED476B2062A}] => (Allow) E:\Steam\steamapps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe FirewallRules: [{7885B024-EF52-441A-BC84-92F67FA39364}] => (Allow) E:\Steam\steamapps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe FirewallRules: [{CA3B7836-539B-4B23-AF2D-86BED05A55C3}] => (Allow) E:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{CC64CD4E-EF9D-4FE7-845C-92DCD98C6818}] => (Allow) E:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{D36EA140-83D2-4A3F-9CCA-A7DC972A9E20}] => (Allow) E:\Steam\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe FirewallRules: [{83840B40-3CD4-42B3-91CB-302D63657652}] => (Allow) E:\Steam\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe FirewallRules: [TCP Query User{529E4CB8-4D89-47AB-8DC3-7878E2EE38D5}E:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe] => (Allow) E:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe FirewallRules: [UDP Query User{A727FFFD-94CD-4898-BD44-9D10BD8C25C4}E:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe] => (Allow) E:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe FirewallRules: [{F090ACB0-F8A7-4DEB-8771-213C0584DE5C}] => (Allow) E:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{2F655520-0846-4A57-9135-977BB9100691}] => (Allow) E:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [TCP Query User{1DF004A4-689C-41DD-93FF-D2EACAB89779}E:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) E:\steam\steamapps\common\terraria\terrariaserver.exe FirewallRules: [UDP Query User{E4EF52C6-2411-4A66-9600-047AF596F77B}E:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) E:\steam\steamapps\common\terraria\terrariaserver.exe FirewallRules: [{9BE1C19A-16E6-405F-89FE-C493E15383D7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{11379773-0BB6-48BE-8779-14FD1436AC03}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{0637BF6A-B9D4-464D-B3AC-B56E6A52D159}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{41BCFC81-03EF-4B78-9F8E-9C5905F1DCEE}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E5D87D78-43F4-44D5-BC5B-DD9B4ACDE140}] => (Allow) E:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe FirewallRules: [{D4D505FF-9ED5-42AA-AF7B-A3D557DF3E6D}] => (Allow) E:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe FirewallRules: [{5544F210-0AAF-4E63-ABF2-5895E14B1A16}] => (Allow) E:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe FirewallRules: [{B3AD0B1C-3CBB-4BDA-AC98-A5FCDE510FAE}] => (Allow) E:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe FirewallRules: [{5EB0CE64-3335-4492-86E4-43C2B2574FE0}] => (Allow) E:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe FirewallRules: [{428540D2-5C04-4F1E-AF47-DFC8CEC1E483}] => (Allow) E:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe FirewallRules: [{481358C4-A4B2-4C12-BBBB-C40CFCC3760D}] => (Allow) E:\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe FirewallRules: [{0A21C582-6A0F-4602-BC73-5774E458DDE2}] => (Allow) E:\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe FirewallRules: [{87657D93-555F-427C-BDC1-97D11BB4809C}] => (Allow) E:\Steam\steamapps\common\Styx\Binaries\Win64\StyxGame.exe FirewallRules: [{8B5244A2-1AF6-4FC8-878D-7254E8D80904}] => (Allow) E:\Steam\steamapps\common\Styx\Binaries\Win64\StyxGame.exe FirewallRules: [{61A9311F-CB7D-471B-AFBF-ABD1E7B891BC}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\BF4WebHelper.exe FirewallRules: [{AEA29E45-0222-4BD0-AED9-B971B6F4656D}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\BF4WebHelper.exe FirewallRules: [{EE9C6F17-149C-4463-A9A9-311691C2BB12}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{8BCBE71A-807D-4D7E-B341-079C8E440C02}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{E2689BFA-0382-4DD7-9217-C531103DAC37}] => (Allow) E:\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe FirewallRules: [{46FF2DAC-B2C7-4257-9537-1F1ABF75ADD1}] => (Allow) E:\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe FirewallRules: [{658D6615-B5EA-41AF-A59D-1A0DCF45B6D1}] => (Allow) E:\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe FirewallRules: [{C377195B-2028-4BA0-8AC2-A4C8893C444B}] => (Allow) E:\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe FirewallRules: [{857D827D-EFD9-44BF-BFFA-4F9081D31CC7}] => (Allow) E:\Steam\steamapps\common\DDDA\DDDA.exe FirewallRules: [{FFF676EE-6D3C-4AD8-8780-A646DE731FC6}] => (Allow) E:\Steam\steamapps\common\DDDA\DDDA.exe FirewallRules: [{0005F634-DD02-4027-A51E-214256D88848}] => (Allow) E:\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe FirewallRules: [{F935944F-068D-4467-8E0D-FF4BE1CA42BE}] => (Allow) E:\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe FirewallRules: [TCP Query User{EFD8F0B8-000E-4971-BEA2-1D4D3A4C4A53}E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe FirewallRules: [UDP Query User{3548F980-5338-4A56-B460-03BEB3BF53E4}E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe FirewallRules: [{354DBE83-6944-44D2-A334-234FCC802119}] => (Allow) E:\Steam\steamapps\common\Torchlight II\ModLauncher.exe FirewallRules: [{21289153-9134-42B0-AB73-2BF39134CAF4}] => (Allow) E:\Steam\steamapps\common\Torchlight II\ModLauncher.exe FirewallRules: [{4C9B14FC-251C-43DE-8FCD-69B0382BC0C8}] => (Allow) E:\Steam\steamapps\common\Borderlands\Binaries\Borderlands.exe FirewallRules: [{70BD89A8-2B37-4BE8-97B0-8AAD489AC66C}] => (Allow) E:\Steam\steamapps\common\Borderlands\Binaries\Borderlands.exe FirewallRules: [{F741EA7B-1DCD-4C64-AA12-37D9CB7A024A}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{5649502A-A60B-416F-9C96-701F27F43372}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{7A088D9B-9B30-4CED-8BB6-BE46DBB664B9}E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe FirewallRules: [UDP Query User{A1EE6276-D777-45B4-8F7E-E5CFDCDA9E0C}E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe FirewallRules: [{E35C0FDD-56FC-4C21-A10A-5B3E087D7B3F}] => (Block) E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe FirewallRules: [{11915212-838F-47D5-BDFE-E42BFD818C8E}] => (Block) E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe FirewallRules: [{15535043-50C0-4E99-B31B-35A436F6C677}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{AC9F9CCD-F633-418C-909E-C8622B63CB03}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{E0563C24-C421-466D-9AA2-584D0DD69236}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{0648857C-FBC8-49F9-A492-F23E01E84745}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{1F36950A-0E17-44CE-8AC1-1A4590988015}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{B5B434D8-E0A7-4128-9F1A-68A2FDEA9C12}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe FirewallRules: [{DF2EE27B-D9BA-4BA1-A8C5-6A4AF959145F}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{394AADC6-B009-41B4-9AAC-0EE135D0F410}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{F00846EF-676C-4E77-83D4-8991FBAE026A}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{000DAD5E-B658-4353-95CF-F9114A16EBF8}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{F06FF5A6-96E3-4B02-A7D6-BB145B320EF3}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{6CA7059C-C6FD-4E46-B2A8-AEC712E71D1C}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe FirewallRules: [TCP Query User{18578A5A-C5A7-466A-BEB3-09F29F89B458}E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe FirewallRules: [UDP Query User{E1695B2A-43C0-4E2A-8F6A-8ECE50BF51B1}E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe FirewallRules: [{5FF1E666-A2CE-446C-A392-C4CCD5CAA17D}] => (Allow) E:\Steam\steamapps\common\PAYDAY The Heist\payday_win32_release.exe FirewallRules: [{388A349B-AC0B-4A76-A048-E1AECB32E450}] => (Allow) E:\Steam\steamapps\common\PAYDAY The Heist\payday_win32_release.exe FirewallRules: [{AA338F33-CD03-41A3-9301-5AFEE6FBD9E8}] => (Allow) E:\Steam\steamapps\common\Minimum\Binaries\Win32\Minimum.exe FirewallRules: [{F632585E-8D75-4252-ADBB-7085716DB5BD}] => (Allow) E:\Steam\steamapps\common\Minimum\Binaries\Win32\Minimum.exe FirewallRules: [TCP Query User{B1C360F3-B2C7-4BFA-8C83-B13BFCEE8A7C}E:\diablo\diablo iii\diablo iii.exe] => (Allow) E:\diablo\diablo iii\diablo iii.exe FirewallRules: [UDP Query User{28837865-29F9-440B-B586-1343BC2EE2EB}E:\diablo\diablo iii\diablo iii.exe] => (Allow) E:\diablo\diablo iii\diablo iii.exe FirewallRules: [{9255E412-A659-4D53-B01F-6BC00663B830}] => (Block) E:\diablo\diablo iii\diablo iii.exe FirewallRules: [{733729B0-D370-4AC0-9DB3-64AB149A26F7}] => (Block) E:\diablo\diablo iii\diablo iii.exe FirewallRules: [{A4BC28F0-7990-486C-80B6-745680E4A078}] => (Allow) E:\Steam\steamapps\common\Pixel Dungeon\PD.exe FirewallRules: [{A87196D2-4E6D-42EC-AF03-3EAF6BEF068F}] => (Allow) E:\Steam\steamapps\common\Pixel Dungeon\PD.exe FirewallRules: [TCP Query User{FF36509D-0462-4454-A406-643C2C11F1F1}C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{E06644D0-F3FD-432E-9143-311EEFF501C4}C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe FirewallRules: [{DA037008-6792-48E8-A4AC-8277E610C6AE}] => (Block) C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe FirewallRules: [{EAC6654C-D1F5-4274-A834-8FA562852056}] => (Block) C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{C24525A2-DBE0-4231-9BF1-65BB8173027D}D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe] => (Allow) D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe FirewallRules: [UDP Query User{F32E807D-252E-4ECE-896A-01CCB2ECE4EA}D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe] => (Allow) D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe FirewallRules: [TCP Query User{DAE1E096-D489-455A-801F-576CC595D7D1}D:\ansys inc\v172\framework\bin\win64\ansysfww.exe] => (Allow) D:\ansys inc\v172\framework\bin\win64\ansysfww.exe FirewallRules: [UDP Query User{D4638E42-E237-4239-AC9E-F5840F45727D}D:\ansys inc\v172\framework\bin\win64\ansysfww.exe] => (Allow) D:\ansys inc\v172\framework\bin\win64\ansysfww.exe FirewallRules: [{244B1CF8-9A86-4745-9D4F-B3EDE9AC53C2}] => (Block) D:\ansys inc\v172\framework\bin\win64\ansysfww.exe FirewallRules: [{D991A3ED-F07B-41FD-BA97-36146D4BF614}] => (Block) D:\ansys inc\v172\framework\bin\win64\ansysfww.exe FirewallRules: [{0CD66402-53D5-41A0-9FBE-2CD198C43D8D}] => (Block) D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe FirewallRules: [{AFAF217D-AA3F-461E-9D62-E56430584844}] => (Block) D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe FirewallRules: [TCP Query User{5AAC69D8-B94A-4A98-B833-7AC2B405CA1B}D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe] => (Allow) D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe FirewallRules: [UDP Query User{442432A1-4E0E-45B5-A4D6-7EC2F3224633}D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe] => (Allow) D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe FirewallRules: [{5E0D3433-CE20-483F-B20D-FB8956999BBB}] => (Block) D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe FirewallRules: [{C16EC0D9-3EE5-423C-994D-BB6EF3E0CD25}] => (Block) D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe FirewallRules: [TCP Query User{41C3FDA7-5718-46D3-B665-068FC18D9D13}D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe] => (Allow) D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe FirewallRules: [UDP Query User{B3673729-C46F-49B5-96D8-2B45102F729D}D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe] => (Allow) D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe FirewallRules: [{337CC8ED-BEBF-4675-BAEB-B407CA2DE761}] => (Block) D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe FirewallRules: [{3AE6DB00-9B34-4F1C-B7B1-8AE6BD9CAB73}] => (Block) D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe FirewallRules: [TCP Query User{49CD5948-3DCC-475C-A625-5191111CD2CF}D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe] => (Allow) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe FirewallRules: [UDP Query User{A7DEA58B-DF3E-42DC-ACCA-F1451A48E9F4}D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe] => (Allow) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe FirewallRules: [TCP Query User{2BC61405-EA72-4EAF-AA27-42C036A71E6B}D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe] => (Allow) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe FirewallRules: [UDP Query User{41C6381B-4CCF-4E53-AB60-4DF4F7243360}D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe] => (Allow) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe FirewallRules: [{C375169C-A2E1-4E39-A06A-8F647C95713C}] => (Block) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe FirewallRules: [{CCDB5EF6-5424-44D8-827F-1F7A13249BE1}] => (Block) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe FirewallRules: [{2F9FD911-3758-4493-BFDA-58185C963174}] => (Block) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe FirewallRules: [{7C28F07B-B292-45B6-A423-F6493F639408}] => (Block) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe FirewallRules: [{4183173B-0A10-4C4D-B999-4EF2BA6EE6C4}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{ECFAB8EA-5659-4271-A907-75BE515DDDAE}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{2A3DD070-EF85-4BBC-A4DD-96E208E0A9D8}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{89E86F87-35F3-4CDB-BCEE-1A1AC8DDF2EF}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [TCP Query User{4C76E020-B796-4032-9284-EA125623D675}D:\studium\catia v5-r2016\win_b64\code\bin\orbixd.exe] => (Allow) D:\studium\catia v5-r2016\win_b64\code\bin\orbixd.exe FirewallRules: [UDP Query User{70F4C6E0-5AB0-4111-A05C-592F56073D17}D:\studium\catia v5-r2016\win_b64\code\bin\orbixd.exe] => (Allow) D:\studium\catia v5-r2016\win_b64\code\bin\orbixd.exe FirewallRules: [TCP Query User{5EBBCF33-E796-4211-B06A-EE130F25165C}D:\studium\catia v5-r2016\win_b64\code\bin\cnext.exe] => (Allow) D:\studium\catia v5-r2016\win_b64\code\bin\cnext.exe FirewallRules: [UDP Query User{8F093FA1-05C6-4403-BC6D-F0DCB90959A1}D:\studium\catia v5-r2016\win_b64\code\bin\cnext.exe] => (Allow) D:\studium\catia v5-r2016\win_b64\code\bin\cnext.exe FirewallRules: [{1E714A6A-16E9-466F-9B1B-20EC205673E4}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E05C0623-4CF5-4938-AAE2-744091A7E438}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7E34126C-562F-45F5-BB82-C4A505EA415E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{FA28B599-36E4-4278-B420-8A4B64829744}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{505AF9E7-F6C5-40E1-8603-6EEE4A87334F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{95C92A15-2F3E-460C-B326-9555BB5D0727}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{4461C59E-55B3-41C3-9488-AF1697EA7505}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{04BCB44A-3DE6-48E2-BE1F-D8ACEA24E0BC}C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{FCAAF7D9-049C-483E-9C13-7490DA9EC9CE}C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe FirewallRules: [{899B18EE-E3E2-4023-97D0-6E25D1CCC799}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{91682AC0-9CCE-43D7-A9F6-AFC47DF14977}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [TCP Query User{09986757-86D9-4DAC-B1FC-CE150E11577E}E:\heroes of the storm\battle.net\battle.net.8098\battle.net.exe] => (Allow) E:\heroes of the storm\battle.net\battle.net.8098\battle.net.exe FirewallRules: [UDP Query User{A261645E-3858-4A39-ABA0-7C57FA835F83}E:\heroes of the storm\battle.net\battle.net.8098\battle.net.exe] => (Allow) E:\heroes of the storm\battle.net\battle.net.8098\battle.net.exe FirewallRules: [{C60FB0B0-3EA4-4D40-BD9F-562F21441F75}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A62BD035-7EC6-43AE-85E9-59A17D4C8942}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{09008307-2886-4BFE-BD0E-7BD36996D984}] => (Allow) D:\Studium\Atmel Studio\7.0\atbackend\atbackend.exe FirewallRules: [{C6F126DE-1E32-4F8A-97AE-D604E3B2D171}] => (Allow) D:\Studium\Atmel Studio\7.0\AtmelStudio.exe FirewallRules: [{49A50C6E-10CC-4339-85DE-2796B93D0760}] => (Allow) E:\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{8357A6C9-0C88-4995-B8ED-02D1C9E3CDCA}] => (Allow) E:\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [TCP Query User{6CFBD6B2-2DA1-41E2-ADC4-85C953010BC0}E:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) E:\steam\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [UDP Query User{B9952F95-2616-4F6F-9D97-86D743B7CED6}E:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) E:\steam\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [{C6BC6E21-852F-4098-A8FD-EB210E952244}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{2BED398E-D2DE-4B20-940C-095F79E53D92}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{D5D4DA72-4874-4E99-9028-E61B9349995E}] => (Allow) E:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [{DBBC672A-92A5-4529-9566-A26BDFE45BED}] => (Allow) E:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [{E83E2B17-C0CF-42CD-A1D9-3BB6B099569A}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C4E9EF6D-AAD9-45C3-AC1B-D5F6A82BEB1F}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{ECAEC88D-FF4F-4BC5-9C05-015EA71FE282}] => (Allow) E:\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe FirewallRules: [{E971BD9C-E06E-489C-AE49-31D75171C172}] => (Allow) E:\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe FirewallRules: [{E447D1C2-6651-44DD-9FBB-B9B775B0F1A9}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3377BB54-93CE-432D-94F5-FAC1AA4AF444}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [TCP Query User{784E1DB7-D122-4E5F-80EA-5CBF15490655}C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{63CCDAC8-2A4F-481B-ABE9-21A76DDE7F1C}C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe FirewallRules: [{F237E86E-B692-48BC-8CC4-0AFB86643E57}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{170631C9-F623-49D9-A381-F5D458201DE3}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7FE2E184-54FF-4B43-BBD5-63CD75CA745E}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C0F21356-9795-44EE-90F1-443E08F5B2EE}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{36DA419F-60B1-476B-B625-3AE4F87A5D2F}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{567F81A9-CBB1-4A77-B1D2-760224CDE6E1}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{69C37BC1-973A-4025-8915-26E5FEF0ED63}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8BDDFD9A-C52B-4B08-9562-951D216892A2}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{001D78C6-5E92-4681-89D7-261AD21A273F}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{03A64E09-6252-460D-BB74-CF91C8E20F7B}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{19AF523C-C541-462D-9405-69833BCFE21F}] => (Allow) E:\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe FirewallRules: [{E5605C52-58BC-4300-BF69-4BFCCBF6EDBD}] => (Allow) E:\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe FirewallRules: [TCP Query User{0B7FCD59-8AE9-464D-BF16-4A8E8F87AB2D}E:\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) E:\steam\steamapps\common\smite\binaries\win32\smite.exe FirewallRules: [UDP Query User{C9BA5ED8-D346-44A0-AB19-E99E0615222A}E:\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) E:\steam\steamapps\common\smite\binaries\win32\smite.exe FirewallRules: [{BDC4A0D5-06B8-4DC1-8AD3-5A5FC032F1C1}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{72057A90-BB16-4326-8E2B-8A97A88BA633}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{BDB414F6-E723-460D-8C58-60A4172B708E}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{D215BEE4-C48F-46A2-90E9-DF13C2C04874}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{00F8C51C-9789-4E65-A7F0-7886916CB52F}] => (Allow) E:\Steam\steamapps\common\Factorio\bin\x64\factorio.exe FirewallRules: [{91D60BBD-B978-4D29-9359-830284A9F5F9}] => (Allow) E:\Steam\steamapps\common\Factorio\bin\x64\factorio.exe ==================== Wiederherstellungspunkte ========================= 23-10-2016 09:47:54 Installed Hi-Rez Studios Games 23-10-2016 09:48:38 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 23-10-2016 09:48:41 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 23-10-2016 09:48:46 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 23-10-2016 09:48:51 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 23-10-2016 09:48:56 DirectX wurde installiert 25-10-2016 05:59:55 Windows Update 31-10-2016 13:03:13 Revo Uninstaller's restore point - The Elder Scrolls V: Skyrim 31-10-2016 13:03:48 Revo Uninstaller's restore point - The Elder Scrolls V: Skyrim 01-11-2016 07:02:42 Windows Update 06-11-2016 11:27:28 Revo Uninstaller's restore point - The Elder Scrolls V: Skyrim 06-11-2016 15:06:47 Windows Defender Checkpoint ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: LogMeIn Kernel Information Provider Description: LogMeIn Kernel Information Provider Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: LMIInfo Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Unknown Device Description: Unknown Device Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard-USB-Hostcontroller) Service: Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (11/06/2016 02:26:47 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe Error: (11/06/2016 11:27:28 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert . Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess. Vorgang: Generatordaten werden gesammelt Kontext: Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220} Generatorname: System Writer Generatorinstanz-ID: {58cd42e9-3263-4b1f-b9cf-ad57fb562f8a} Error: (11/06/2016 11:24:24 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe Error: (11/05/2016 06:16:00 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm CNEXT.exe, Version 5.26.0.15261 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 4dfc Startzeit: 01d237881f747bb0 Endzeit: 8 Anwendungspfad: D:\Studium\CATIA V5-R2016\win_b64\code\bin\CNEXT.exe Berichts-ID: 83cacf07-a37b-11e6-bb2e-fcaa1473408c Error: (11/05/2016 09:34:16 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe Error: (11/04/2016 03:28:46 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe Error: (11/04/2016 07:04:39 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe Error: (11/03/2016 05:40:06 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe Error: (11/03/2016 12:49:17 PM) (Source: chip 1-click download service) (EventID: 0) (User: ) Description: |ERORRS=;(380) error at getOrdersForVersion:Der Remotename konnte nicht aufgelöst werden: 'service.chip-secured-download.de' ;(180) error at GetHttpWebRequest: 1Der Remotename konnte nicht aufgelöst werden: 'api.chip-secured-download.de' ;(480) Could not load new Downlaoder Error: (11/03/2016 07:14:14 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe Systemfehler: ============= Error: (11/06/2016 03:22:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung. Error: (11/06/2016 03:22:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht. Error: (11/06/2016 03:22:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "LogMeIn Kernel Information Provider" wurde aufgrund folgenden Fehlers nicht gestartet: Das System kann den angegebenen Pfad nicht finden. Error: (11/06/2016 03:22:17 PM) (Source: Service Control Manager) (EventID: 7016) (User: ) Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0 Error: (11/06/2016 03:22:17 PM) (Source: Service Control Manager) (EventID: 7016) (User: ) Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0 Error: (11/06/2016 03:21:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (11/06/2016 03:21:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts. Error: (11/06/2016 03:21:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "NETGEAR A6200 Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (11/06/2016 03:21:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "PnkBstrA" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (11/06/2016 03:21:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "PDFProFiltSrvPP" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i7-5820K CPU @ 3.30GHz Prozentuale Nutzung des RAM: 24% Installierter physikalischer RAM: 16210.08 MB Verfügbarer physikalischer RAM: 12228.96 MB Summe virtueller Speicher: 32418.34 MB Verfügbarer virtueller Speicher: 28685.26 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:232.76 GB) (Free:125.1 GB) NTFS Drive d: () (Fixed) (Total:29.3 GB) (Free:8.67 GB) NTFS Drive e: () (Fixed) (Total:1833.5 GB) (Free:1332.82 GB) NTFS Drive f: () (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS Drive g: () (Removable) (Total:14.81 GB) (Free:7.63 GB) FAT32 Drive i: (**** USB) (Fixed) (Total:3.73 GB) (Free:3.55 GB) FAT32 ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 232.9 GB) (Disk ID: 3341EB89) Partition: GPT. ======================================================== Disk: 1 (Size: 1863 GB) (Disk ID: 3341EBE1) Partition: GPT. ======================================================== Disk: 2 (MBR Code: Windows XP) (Size: 3.7 GB) (Disk ID: 1C507D5B) Partition 1: (Active) - (Size=3.7 GB) - (Type=0C) ======================================================== Disk: 3 (Size: 14.8 GB) (Disk ID: 01B89370) Partition 1: (Not Active) - (Size=14.8 GB) - (Type=0C) ==================== Ende von Addition.txt ============================ |
07.11.2016, 22:19 | #3 |
| browsermodifier:win32 suptab!blnk Win 7 Mir fiel gerade auf, dass ich in meinem Originalpost folgendes vergessen habe zu erwähnen^^. Da ich kein Experte mit Viren und deren Beseitigung bin würde ich es begrüßen, wenn jemand mit mehr Ahnung als ich durch die geposteten logs sehen könnte und mir sagt ob es was Ernstes ist.
__________________ |
08.11.2016, 00:55 | #4 |
/// Winkelfunktion /// TB-Süch-Tiger™ | browsermodifier:win32 suptab!blnk Win 7
__________________ Logfiles bitte immer in CODE-Tags posten |
08.11.2016, 21:53 | #5 |
| browsermodifier:win32 suptab!blnk Win 7 Danke , das ist sehr beruhigend. |
Themen zu browsermodifier:win32 suptab!blnk Win 7 |
.dll, administrator, cpu, explorer, firefox, flash player, geforce, home, homepage, installation, kaspersky, mozilla, netgear, node.js, nvcontainer, nvidia, pdf, programm, prozesse, realtek, registry, revo uninstaller, scan, secur, services.exe, software, svchost.exe, winlogon.exe |