Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Windows 7: Diverse Funde diverser Scanner. z.B. Funmoods (https://www.trojaner-board.de/186607-windows-7-diverse-funde-diverser-scanner-z-b-funmoods.html)

TattooPanda 27.08.2017 04:46
Windows 7: Diverse Funde diverser Scanner. z.B. Funmoods
 
Hallo TB-Team.

Vorneweg : Ja, ich habe aktuell -noch- Avast installiert.
Ich habe vor auf Emsisoft umzusteigen.

Ich habe mal mit diversen Tools gescannt und das eine oder andere gefunden.
Ich fände es toll, wenn mal gecheckt wird, ob da was übles dabei ist.
Weiterhin startete ich eben den Internetexplorer mit der Startseite :
hxxp://www.msn.com/de-de/?pc=UE07&ocid=UE07DHP
Wechselte auf Google.de und bekam durch Avast eine Meldung dass
Bedrohungen blockiert worden seien.
Diese füge ich als Log an.

Desweiteren habe ich vorgestern mit einem Tool gescannt, an welches ich mich nicht
mehr erinnere und hatte einen Fund "simplitech". Und diesen entfernt, ohne ein Logfile...:pfeiff:
Es kann sein, dass dies unter einer älteren Malwarebytes Version passierte und da ich letzte Nacht die aktuellste installierte, wurde die alte offensichtlich deinstalliert.


ESET letzte Nacht laufen lassen : Ohne Fund (Lasse es aber aktuell nochmal laufen)
Malwarebytes eben laufen lassen: Ohne Fund

Hier nun die Logs in folgender Reihenfolge:

FRST
Addition
TDSSKiller
Hitman Pro
Avast

Ich bedanke mich schonmal im Voraus für die aufgewendete Zeit und Mühe,
sich die Logs anzuschauen.

FRST
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2017
durchgeführt von Ash (Administrator) auf ASH-PC (27-08-2017 05:09:40)
Gestartet von C:\Users\Ash\Desktop
Geladene Profile: Ash (Verfügbare Profile: Ash)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(www.counter-strike.de - MUff[99]) C:\Users\Ash\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Gammacontrol.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(E.W.E.-Software) C:\Users\Ash\AppData\Roaming\TV Movie\TV Movie Clickfinder\tvtip.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar Core\DIPAwayMode\DipAwayMode.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.03\AsusFanControlService.exe
(AVerMedia) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
() C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
() C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.106.226.0\OverwolfBrowser.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
(Samsung Electronics Co. Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.106.226.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.106.226.0\OverwolfHelper64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7202520 2013-08-19] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-07] (AVAST Software)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318128 2016-11-16] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\...\Run: [TVTip] => C:\Users\Ash\AppData\Roaming\TV Movie\TV Movie Clickfinder\tvstart.exe [102400 2012-01-24] (E.W.E.-Software)
HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\...\Run: [Kies3PDLR.exe] => C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe [1023664 2016-03-25] (Samsung)
HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1052488 2017-08-20] ()
HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\...\MountPoints2: I - I:\READER.EXE
HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\...\MountPoints2: {7e02617d-8931-11e5-a937-ac220bc62429} - J:\setup.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2015-01-06] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2015-01-06]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
Startup: C:\Users\Ash\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Gammacontrol.exe [2012-03-17] (www.counter-strike.de - MUff[99])
BootExecute: autocheck autochk * PCloudBroom64.exe \systemroot\system32\BroomData.bit

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{1218B61D-299B-4A32-8A6D-1269755EA676}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3066379646-2778961134-1701944576-1000 -> {AF9E7A08-A3C8-4B80-B49E-10916F10D858} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-25] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-03-31] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-08-25] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-03-31] (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-25] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: fuf6qhfb.default
FF ProfilePath: C:\Users\Ash\AppData\Roaming\TomTom\HOME\Profiles\lywk577j.default [2016-08-10]
FF Extension: (Kein Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [nicht gefunden]
FF ProfilePath: C:\Users\Ash\AppData\Roaming\Mozilla\Firefox\Profiles\fuf6qhfb.default [2017-08-24]
FF Extension: (HDS Link Detector) - C:\Users\Ash\AppData\Roaming\Mozilla\Firefox\Profiles\fuf6qhfb.default\Extensions\jid0-HFFmJoceGjTSKDBEWPpzfX9By7I@jetpack.xpi [2016-08-06]
FF Extension: (Avast SafePrice) - C:\Users\Ash\AppData\Roaming\Mozilla\Firefox\Profiles\fuf6qhfb.default\Extensions\sp@avast.com.xpi [2017-08-24]
FF Extension: (Avast Online Security) - C:\Users\Ash\AppData\Roaming\Mozilla\Firefox\Profiles\fuf6qhfb.default\Extensions\wrc@avast.com.xpi [2017-08-23]
FF Extension: (Session Manager) - C:\Users\Ash\AppData\Roaming\Mozilla\Firefox\Profiles\fuf6qhfb.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-02-01]
FF Extension: (NoScript) - C:\Users\Ash\AppData\Roaming\Mozilla\Firefox\Profiles\fuf6qhfb.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2017-08-24]
FF Extension: (Video DownloadHelper) - C:\Users\Ash\AppData\Roaming\Mozilla\Firefox\Profiles\fuf6qhfb.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-05-16]
FF Extension: (Adblock Plus) - C:\Users\Ash\AppData\Roaming\Mozilla\Firefox\Profiles\fuf6qhfb.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-13]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-14] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-25] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-14] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-06-29] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-25] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> session
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Ash\AppData\Local\Google\Chrome\User Data\Default [2017-08-27]
CHR Extension: (Adblock Plus) - C:\Users\Ash\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-07-13]
CHR Extension: (ZenMate VPN - Top Internet Security & Unblock) - C:\Users\Ash\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2017-08-02]
CHR Extension: (AdBlock) - C:\Users\Ash\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-08-03]
CHR Extension: (Session Manager) - C:\Users\Ash\AppData\Local\Google\Chrome\User Data\Default\Extensions\mghenlmbmjcpehccoangkdpagbcbkdpc [2016-10-14]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Ash\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (TunnelBear VPN) - C:\Users\Ash\AppData\Local\Google\Chrome\User Data\Default\Extensions\omdakjcmkglenbhjadbccaookpfjihpa [2017-08-01]
CHR Extension: (Chrome Media Router) - C:\Users\Ash\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-07] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2013-08-01] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2013-09-18] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.03\AsusFanControlService.exe [1690424 2013-09-18] (ASUSTeK Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-07] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-07] (AVAST Software)
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [368640 2013-06-26] (AVerMedia) [Datei ist nicht signiert]
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-01] () [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1536520 2017-06-24] ()
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [382504 2017-05-20] (EasyAntiCheat Ltd)
U2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-06-09] (Hi-Rez Studios) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3535512 2015-11-29] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-07-26] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-07-26] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [464440 2017-01-20] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-07-26] (NVIDIA Corporation)
S3 Origin Client Service; E:\Origin\OriginClientService.exe [2124296 2017-03-07] (Electronic Arts)
S2 Origin Web Helper Service; E:\Origin\OriginWebHelperService.exe [2185232 2017-03-07] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1450824 2017-08-20] (Overwolf LTD)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-09-06] (DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2017-07-26] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe [437392 2016-10-10] (Wondershare)
S3 WsDrvInst; "C:\Program Files (x86)\Wondershare\Dr.Fone for Android\DriverInstall.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2012-05-17] (AnvSoft Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [311808 2017-05-07] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [190256 2017-05-07] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334576 2017-05-07] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [49016 2017-05-07] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-05-07] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-05-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [128648 2017-05-07] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-05-07] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-05-07] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1007160 2017-05-07] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [569192 2017-05-07] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [167592 2017-07-11] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-05-07] (AVAST Software)
S3 AVerAF35; C:\Windows\System32\Drivers\AVerAF35.sys [804992 2013-06-05] (AVerMedia TECHNOLOGIES, Inc.)
R3 azvusb; C:\Windows\System32\DRIVERS\azvusb.sys [54784 2009-08-24] (AzureWave Technologies, Inc.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131712 2016-09-06] (Samsung Electronics Co., Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2015-01-11] (Disc Soft Ltd)
S3 DxVGrb; C:\Windows\System32\drivers\DxVGrb.sys [235384 2016-02-03] (Dexetek )
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [495376 2013-05-31] (Intel Corporation)
R1 Eve; C:\Windows\System32\DRIVERS\eve.sys [41304 2015-01-21] ()
R0 fsbts; C:\Windows\System32\Drivers\fsbts.sys [55336 2015-05-24] ()
S3 GigasetGenericUSB_x64; C:\Windows\System32\DRIVERS\GigasetGenericUSB_x64.sys [54272 2016-08-12] (Siemens Home and Office Communication Devices GmbH & Co. KG)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-01] (Intel Corporation)
S3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
S3 LGSUsbFilt; C:\Windows\System32\DRIVERS\LGSUsbFilt.Sys [41752 2013-05-30] (Logitech Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2014-04-18] (Riverbed Technology, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-07-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48064 2017-07-26] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57976 2017-05-03] (NVIDIA Corporation)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [50320 2015-01-29] (Panda Security, S.L.)
R3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [926824 2014-04-08] (Realtek Semiconductor Corporation )
S3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [23552 2014-06-30] (Windows (R) Win 7 DDK provider)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [12400 2016-09-25] (Macrovision Europe Ltd) [Datei ist nicht signiert]
S3 splitcam_hd_driver; C:\Windows\System32\DRIVERS\splitcam_hd_driver.sys [37496 2014-06-30] (Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [165504 2016-09-06] (Samsung Electronics Co., Ltd.)
S3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] ()
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2039-01-10 04:41 - 2015-04-10 03:41 - 000000000 _____ C:\Users\Ash\AppData\Local\{86B65B10-9008-48B5-8480-F7F2990BB5CA}
2017-08-27 05:09 - 2017-08-27 05:09 - 000024315 _____ C:\Users\Ash\Desktop\FRST.txt
2017-08-27 05:08 - 2017-08-27 05:09 - 000000000 ____D C:\FRST
2017-08-27 05:02 - 2017-08-27 05:02 - 000002132 _____ C:\Users\Ash\Desktop\mbar-log-2017-08-27 (04-47-34).txt
2017-08-27 04:45 - 2017-08-27 04:43 - 000228748 _____ C:\Users\Ash\Desktop\TDSSKiller.3.1.0.15_27.08.2017_04.41.35_log.txt
2017-08-27 04:41 - 2017-08-27 04:43 - 000228748 _____ C:\TDSSKiller.3.1.0.15_27.08.2017_04.41.35_log.txt
2017-08-26 02:48 - 2017-08-26 02:48 - 002395648 _____ (Farbar) C:\Users\Ash\Desktop\FRST64.exe
2017-08-26 01:55 - 2017-08-26 01:55 - 000000000 _____ C:\Users\Ash\Desktop\Neues Textdokument (7).txt
2017-08-25 20:49 - 2017-08-25 20:49 - 000000000 _____ C:\Users\Ash\Desktop\simplitech.txt
2017-08-25 20:36 - 2017-08-25 20:36 - 000000000 ____D C:\ProgramData\MB2Migration
2017-08-25 20:11 - 2017-08-25 20:11 - 000000000 ____D C:\Users\Ash\AppData\Local\ESET
2017-08-25 20:10 - 2017-08-25 20:10 - 006760064 _____ (ESET spol. s r.o.) C:\Users\Ash\Desktop\esetonlinescanner_deu.exe
2017-08-25 19:58 - 2017-08-25 19:58 - 011584088 _____ (SurfRight B.V.) C:\Users\Ash\Desktop\HitmanPro_x64.exe
2017-08-25 04:14 - 2017-05-24 23:45 - 003808529 _____ C:\Users\Ash\Desktop\1495207533197.webm
2017-08-25 04:14 - 2017-05-24 23:44 - 003222037 _____ C:\Users\Ash\Desktop\1495016671454.webm
2017-08-25 03:44 - 2017-08-25 03:44 - 000097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2017-08-25 03:32 - 2017-08-25 03:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-08-25 03:32 - 2017-08-25 03:31 - 000110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2017-08-25 03:32 - 2017-08-25 03:31 - 000110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2017-08-25 03:31 - 2017-08-25 03:31 - 000000000 ____D C:\Program Files\Java
2017-08-25 03:24 - 2017-08-25 03:24 - 000000000 ____D C:\ProgramData\Emsisoft
2017-08-25 03:23 - 2017-08-25 03:37 - 000000000 ____D C:\EEK
2017-08-25 03:00 - 2017-08-27 05:02 - 000000000 ____D C:\Users\Ash\Desktop\mbar
2017-08-25 02:23 - 2017-08-25 02:23 - 000000000 ____D C:\KVRT_Data
2017-08-24 22:46 - 2017-08-24 23:12 - 000000022 _____ C:\Users\Ash\Desktop\Neues Textdokument (9).txt
2017-08-24 22:39 - 2017-08-24 23:07 - 000000000 ____D C:\Users\Ash\Desktop\f m
2017-08-13 22:09 - 2017-08-15 14:24 - 000000084 _____ C:\Users\Ash\Desktop\Neues Textdokument (8).txt
2017-08-09 12:42 - 2017-07-29 16:56 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-08-09 12:42 - 2017-07-21 16:26 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
2017-08-09 12:42 - 2017-07-21 16:26 - 000409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexch40.dll
2017-08-09 12:42 - 2017-07-21 16:26 - 000290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjtes40.dll
2017-08-09 12:42 - 2017-07-21 16:26 - 000282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext40.dll
2017-08-09 12:42 - 2017-07-15 20:35 - 000394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-08-09 12:42 - 2017-07-15 19:52 - 000346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 002058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2017-08-09 12:42 - 2017-07-14 17:29 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-08-09 12:42 - 2017-07-14 17:12 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-08-09 12:42 - 2017-07-14 17:12 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-08-09 12:42 - 2017-07-14 17:11 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-08-09 12:42 - 2017-07-14 17:10 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-08-09 12:42 - 2017-07-14 17:10 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-08-09 12:42 - 2017-07-14 17:10 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2017-08-09 12:42 - 2017-07-14 17:10 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-08-09 12:42 - 2017-07-14 17:10 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-08-09 12:42 - 2017-07-14 17:10 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-08-09 12:42 - 2017-07-14 17:10 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-08-09 12:42 - 2017-07-14 17:10 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-08-09 12:42 - 2017-07-14 17:10 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2017-08-09 12:42 - 2017-07-14 17:10 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2017-08-09 12:42 - 2017-07-14 17:00 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-08-09 12:42 - 2017-07-14 17:00 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-08-09 12:42 - 2017-07-14 16:59 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-08-09 12:42 - 2017-07-14 16:59 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2017-08-09 12:42 - 2017-07-14 16:57 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2017-08-09 12:42 - 2017-07-14 16:50 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2017-08-09 12:42 - 2017-07-14 16:50 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2017-08-09 12:42 - 2017-07-14 09:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-08-09 12:42 - 2017-07-14 09:15 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-08-09 12:42 - 2017-07-14 08:49 - 025733632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-08-09 12:42 - 2017-07-14 08:47 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-08-09 12:42 - 2017-07-14 08:45 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-08-09 12:42 - 2017-07-14 08:45 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-08-09 12:42 - 2017-07-14 08:44 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-08-09 12:42 - 2017-07-14 08:44 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-08-09 12:42 - 2017-07-14 08:38 - 002899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-08-09 12:42 - 2017-07-14 08:29 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-08-09 12:42 - 2017-07-14 08:28 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-08-09 12:42 - 2017-07-14 08:22 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-08-09 12:42 - 2017-07-14 08:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-08-09 12:42 - 2017-07-14 08:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-08-09 12:42 - 2017-07-14 08:19 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-08-09 12:42 - 2017-07-14 08:19 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-08-09 12:42 - 2017-07-14 08:08 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-08-09 12:42 - 2017-07-14 08:02 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-08-09 12:42 - 2017-07-14 07:49 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-08-09 12:42 - 2017-07-14 07:48 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-08-09 12:42 - 2017-07-14 07:47 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-08-09 12:42 - 2017-07-14 07:42 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-08-09 12:42 - 2017-07-14 07:40 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-08-09 12:42 - 2017-07-14 07:35 - 005981184 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-08-09 12:42 - 2017-07-14 07:35 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-08-09 12:42 - 2017-07-14 07:33 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-08-09 12:42 - 2017-07-14 07:16 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-08-09 12:42 - 2017-07-14 07:11 - 000725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-08-09 12:42 - 2017-07-14 07:10 - 000806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-08-09 12:42 - 2017-07-14 07:09 - 002132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-08-09 12:42 - 2017-07-14 07:09 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-08-09 12:42 - 2017-07-14 06:40 - 015254016 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-08-09 12:42 - 2017-07-14 06:23 - 003240960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-08-09 12:42 - 2017-07-14 06:07 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-08-09 12:42 - 2017-07-14 05:58 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-08-09 12:42 - 2017-07-14 05:01 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-08-09 12:42 - 2017-07-14 04:54 - 020270080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-08-09 12:42 - 2017-07-14 04:48 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-08-09 12:42 - 2017-07-14 04:48 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-08-09 12:42 - 2017-07-14 04:48 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-08-09 12:42 - 2017-07-14 04:48 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-08-09 12:42 - 2017-07-14 04:47 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-08-09 12:42 - 2017-07-14 04:44 - 002290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-08-09 12:42 - 2017-07-14 04:42 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-08-09 12:42 - 2017-07-14 04:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-08-09 12:42 - 2017-07-14 04:39 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-08-09 12:42 - 2017-07-14 04:38 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-08-09 12:42 - 2017-07-14 04:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-08-09 12:42 - 2017-07-14 04:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-08-09 12:42 - 2017-07-14 04:30 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-08-09 12:42 - 2017-07-14 04:26 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-08-09 12:42 - 2017-07-14 04:25 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-08-09 12:42 - 2017-07-14 04:25 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-08-09 12:42 - 2017-07-14 04:23 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-08-09 12:42 - 2017-07-14 04:22 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-08-09 12:42 - 2017-07-14 04:21 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-08-09 12:42 - 2017-07-14 04:20 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-08-09 12:42 - 2017-07-14 04:17 - 004546048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-08-09 12:42 - 2017-07-14 04:13 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-08-09 12:42 - 2017-07-14 04:12 - 000693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-08-09 12:42 - 2017-07-14 04:11 - 002057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-08-09 12:42 - 2017-07-14 04:11 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-08-09 12:42 - 2017-07-14 04:09 - 013663744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-08-09 12:42 - 2017-07-14 03:53 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-08-09 12:42 - 2017-07-14 03:50 - 001314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-08-09 12:42 - 2017-07-14 03:48 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-08-09 12:42 - 2017-07-08 17:34 - 000370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2017-08-09 12:42 - 2017-07-08 17:00 - 003224064 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-08-09 12:42 - 2017-07-07 17:37 - 000631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-08-09 12:42 - 2017-07-07 17:33 - 005547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-08-09 12:42 - 2017-07-07 17:33 - 000706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-08-09 12:42 - 2017-07-07 17:33 - 000363752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2017-08-09 12:42 - 2017-07-07 17:33 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-08-09 12:42 - 2017-07-07 17:33 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-08-09 12:42 - 2017-07-07 17:31 - 001732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:15 - 004001000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-08-09 12:42 - 2017-07-07 17:15 - 003945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-08-09 12:42 - 2017-07-07 17:13 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-08-09 12:42 - 2017-07-07 17:11 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 17:02 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-08-09 12:42 - 2017-07-07 17:01 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-08-09 12:42 - 2017-07-07 17:01 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-08-09 12:42 - 2017-07-07 17:01 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-08-09 12:42 - 2017-07-07 16:58 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-08-09 12:42 - 2017-07-07 16:57 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-08-09 12:42 - 2017-07-07 16:54 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-08-09 12:42 - 2017-07-07 16:54 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-08-09 12:42 - 2017-07-07 16:54 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-08-09 12:42 - 2017-07-07 16:53 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-08-09 12:42 - 2017-07-07 16:53 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-08-09 12:42 - 2017-07-07 16:51 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-08-09 12:42 - 2017-07-07 16:48 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-08-09 12:42 - 2017-07-07 16:48 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-08-09 12:42 - 2017-07-07 16:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-08-09 12:42 - 2017-07-07 16:48 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-08-09 12:42 - 2017-07-07 16:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-08-09 12:42 - 2017-07-07 16:47 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 16:47 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 16:47 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-08-09 12:42 - 2017-07-07 16:47 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswdat10.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000616448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrepl40.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-08-09 12:42 - 2017-07-01 15:05 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjter40.dll
2017-08-09 02:00 - 2017-07-26 19:09 - 000048064 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-08-08 03:13 - 2017-08-08 03:13 - 000000000 ____D C:\Users\Ash\AppData\Roaming\3909
2017-08-08 02:34 - 2017-08-27 04:35 - 000000000 ____D C:\AdwCleaner
2017-08-06 02:39 - 2017-08-06 02:39 - 007273891 _____ C:\Users\Ash\Desktop\1 (3).mp4
2017-08-04 03:40 - 2017-08-04 03:40 - 000000000 ____D C:\ProgramData\Foxit Software
2017-07-29 23:14 - 2017-07-29 23:14 - 000002071 _____ C:\Users\Ash\Desktop\alt.txt
2017-07-29 23:05 - 2017-07-29 23:05 - 000002040 _____ C:\Users\Ash\Desktop\neu.txt
2017-07-29 22:56 - 2017-07-29 22:56 - 000000000 _____ C:\Users\Ash\Desktop\Neues Textdokument (6).txt
2017-07-29 22:36 - 2017-07-29 23:16 - 000039705 _____ C:\Users\Ash\Desktop\OpenDocument Text (neu).odt
2017-07-29 21:46 - 2017-07-29 21:46 - 000000000 ____D C:\Users\Public\Foxit Software
2017-07-29 21:46 - 2017-07-29 21:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2017-07-28 21:55 - 2017-07-28 21:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Attribute Changer
2017-07-28 21:55 - 2017-07-28 21:55 - 000000000 ____D C:\Program Files\Attribute Changer
2017-07-28 01:41 - 2017-07-28 01:41 - 000000000 ____D C:\Program Files (x86)\AGEIA Technologies
2017-07-28 01:29 - 2017-07-28 01:29 - 000000000 ___HD C:\$Windows.~WS
2017-07-28 01:29 - 2017-07-28 01:29 - 000000000 ____D C:\$WINDOWS.~BT

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-08-27 05:07 - 2017-07-20 21:36 - 000000000 ____D C:\Users\Ash\AppData\Local\Overwolf
2017-08-27 05:07 - 2017-02-04 02:00 - 000000000 ____D C:\ProgramData\NVIDIA
2017-08-27 05:07 - 2016-03-31 00:03 - 000000000 ____D C:\Program Files\Malwarebytes
2017-08-27 05:07 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-27 05:06 - 2015-01-11 18:21 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-27 05:06 - 2015-01-11 17:38 - 000000000 ____D C:\Users\Ash\AppData\Roaming\TS3Client
2017-08-27 05:02 - 2015-05-22 12:31 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-08-27 03:57 - 2009-07-14 06:45 - 000023152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-08-27 03:57 - 2009-07-14 06:45 - 000023152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-08-26 04:24 - 2015-08-22 00:57 - 000000000 ____D C:\Users\Ash\Documents\SavedGames
2017-08-26 04:18 - 2017-06-19 01:13 - 000000000 ____D C:\Users\Ash\AppData\Roaming\vlc
2017-08-25 20:11 - 2009-07-14 19:58 - 000699416 _____ C:\Windows\system32\perfh007.dat
2017-08-25 20:11 - 2009-07-14 19:58 - 000149556 _____ C:\Windows\system32\perfc007.dat
2017-08-25 20:11 - 2009-07-14 07:13 - 001620612 _____ C:\Windows\system32\PerfStringBackup.INI
2017-08-25 20:11 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2017-08-25 20:08 - 2015-03-22 03:10 - 000000000 ____D C:\Users\Ash\AppData\Local\PunkBuster
2017-08-25 20:03 - 2015-01-06 18:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-08-25 03:45 - 2015-01-11 16:37 - 000000000 ____D C:\ProgramData\Oracle
2017-08-25 03:44 - 2015-01-11 16:37 - 000000000 ____D C:\Program Files (x86)\Java
2017-08-25 03:37 - 2016-10-12 02:04 - 000004496 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-08-25 03:37 - 2015-01-11 16:36 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-08-25 03:37 - 2015-01-11 16:36 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-08-25 03:37 - 2015-01-11 16:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-08-25 03:37 - 2015-01-11 16:36 - 000000000 ____D C:\Windows\system32\Macromed
2017-08-25 03:37 - 2015-01-11 16:35 - 000000000 ____D C:\Users\Ash\AppData\Local\Adobe
2017-08-24 21:25 - 2016-12-02 05:30 - 000000000 ____D C:\Users\Ash\AppData\LocalLow\Mozilla
2017-08-24 00:33 - 2015-02-03 21:59 - 000000000 ____D C:\Users\Ash\AppData\Local\CrashDumps
2017-08-23 14:31 - 2017-03-29 22:42 - 000000000 ____D C:\Users\Ash\AppData\Local\FalloutShelter
2017-08-23 12:31 - 2017-07-20 21:38 - 000000000 ____D C:\Program Files (x86)\Overwolf
2017-08-23 02:01 - 2015-02-03 03:10 - 000000000 ____D C:\Program Files (x86)\Jdownloader
2017-08-22 21:38 - 2017-03-16 23:54 - 000000000 ____D C:\Users\Ash\Knuddels-Stapp
2017-08-17 21:24 - 2015-01-11 17:38 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-08-14 12:35 - 2016-04-28 21:53 - 000003910 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1461873233
2017-08-10 13:50 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2017-08-10 13:13 - 2009-07-14 06:45 - 000344616 _____ C:\Windows\system32\FNTCACHE.DAT
2017-08-10 12:47 - 2015-01-06 19:04 - 000000000 ____D C:\Windows\system32\MRT
2017-08-10 12:45 - 2015-01-06 19:04 - 140394280 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-08-09 02:02 - 2017-06-12 02:34 - 000003814 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-09 02:02 - 2017-02-04 02:01 - 000003852 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-09 02:02 - 2015-01-06 18:34 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-08-09 02:01 - 2017-04-24 23:06 - 000004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-09 02:01 - 2015-01-06 18:34 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-08-09 02:01 - 2015-01-06 18:33 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-08-09 02:00 - 2017-02-04 02:01 - 000003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-09 02:00 - 2017-02-04 02:01 - 000003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-09 02:00 - 2017-02-04 02:01 - 000003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-09 02:00 - 2017-02-04 02:01 - 000003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-09 02:00 - 2017-02-04 02:01 - 000003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-08 02:36 - 2015-11-12 16:17 - 000000008 __RSH C:\ProgramData\ntuser.pol
2017-08-04 03:51 - 2015-01-11 17:31 - 000000000 ____D C:\Users\Ash\AppData\Roaming\Foxit Software
2017-08-03 21:20 - 2015-12-07 20:44 - 000000000 ____D C:\Users\Ash\AppData\Local\Battle.net
2017-08-03 12:52 - 2015-01-11 17:34 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2017-08-03 12:51 - 2016-11-10 22:33 - 000000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-08-03 01:00 - 2017-07-18 22:21 - 000000385 _____ C:\Users\Ash\Desktop\Neues Textdokument (5).txt
2017-07-31 01:19 - 2015-02-02 19:35 - 000000000 ____D C:\Users\Ash\Documents\Eigene PSP-Dateien
2017-07-29 21:46 - 2015-12-01 02:15 - 000000000 ____D C:\ProgramData\Foxit ContentPlatform
2017-07-29 13:40 - 2015-02-02 19:56 - 000000000 ____D C:\Users\Ash\Documents\Telltale Games
2017-07-28 03:00 - 2015-01-06 18:20 - 001593956 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-07-28 02:37 - 2015-01-06 18:06 - 000000000 ____D C:\Windows\Panther
2017-07-28 01:41 - 2015-02-02 19:55 - 000000000 ____D C:\Users\Ash\Documents\My Games

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-04-27 14:22 - 2016-04-27 14:22 - 005082084 _____ (The Public) C:\Users\Ash\AppData\Roaming\Avisynth.exe
2016-04-27 14:22 - 2016-04-27 14:23 - 005243208 _____ (                                                            ) C:\Users\Ash\AppData\Roaming\AvsP.exe
2016-03-02 19:07 - 2016-03-02 19:07 - 000000990 _____ () C:\Users\Ash\AppData\Roaming\DVDSubEdit.ini
2016-03-02 18:56 - 2016-03-02 18:56 - 000334658 _____ () C:\Users\Ash\AppData\Roaming\DVDSubEditLastFile0.txt
2016-04-27 14:22 - 2016-04-27 14:22 - 002169915 _____ (LIGHTNING UK!) C:\Users\Ash\AppData\Roaming\Imgburn.exe
2015-03-09 17:24 - 2017-06-13 14:25 - 000099384 _____ () C:\Users\Ash\AppData\Roaming\inst.exe
2016-04-27 14:22 - 2016-04-27 14:22 - 001357348 _____ () C:\Users\Ash\AppData\Roaming\MatroskaSplitter.exe
2015-03-09 17:24 - 2017-06-13 14:25 - 000007859 _____ () C:\Users\Ash\AppData\Roaming\pcouffin.cat
2015-03-09 17:24 - 2017-06-13 14:25 - 000001167 _____ () C:\Users\Ash\AppData\Roaming\pcouffin.inf
2015-03-09 17:24 - 2017-06-13 14:25 - 000000055 _____ () C:\Users\Ash\AppData\Roaming\pcouffin.log
2015-03-09 17:24 - 2017-06-13 14:25 - 000082816 _____ (VSO Software) C:\Users\Ash\AppData\Roaming\pcouffin.sys
2016-04-27 14:23 - 2016-04-27 14:23 - 007760687 _____ (Boraxsoft) C:\Users\Ash\AppData\Roaming\SetupGFD.exe
2017-03-19 02:16 - 2017-03-19 02:16 - 000000096 _____ () C:\Users\Ash\AppData\Roaming\version2.xml
2016-04-27 14:22 - 2016-04-27 14:22 - 000117723 _____ () C:\Users\Ash\AppData\Roaming\yuvcodecs-1.3.exe
2015-03-14 01:10 - 2015-03-14 01:10 - 000119839 _____ () C:\Users\Ash\AppData\Local\242322F9_stp.CIS
2015-03-14 01:10 - 2015-03-14 01:10 - 000000306 _____ () C:\Users\Ash\AppData\Local\242322F9_stp.CIS.part
2015-03-14 01:10 - 2015-03-14 01:10 - 000120135 _____ () C:\Users\Ash\AppData\Local\48FD097A_stp.CIS
2015-03-14 01:10 - 2015-03-14 01:10 - 000000290 _____ () C:\Users\Ash\AppData\Local\48FD097A_stp.CIS.part
2015-03-14 01:10 - 2015-03-14 01:10 - 000385602 _____ () C:\Users\Ash\AppData\Local\5D515C96_stp.CIS
2015-03-14 01:10 - 2015-03-14 01:10 - 000000220 _____ () C:\Users\Ash\AppData\Local\5D515C96_stp.CIS.part
2016-10-31 00:48 - 2016-11-08 15:53 - 000004608 _____ () C:\Users\Ash\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-04-04 23:04 - 2017-03-15 16:47 - 002612224 _____ () C:\Users\Ash\AppData\Local\file__0.localstorage
2016-10-20 14:37 - 2016-10-20 14:37 - 000002088 _____ () C:\Users\Ash\AppData\Local\recently-used.xbel
2016-02-27 23:52 - 2016-03-09 22:50 - 000007605 _____ () C:\Users\Ash\AppData\Local\Resmon.ResmonCfg
2039-01-10 04:41 - 2015-04-10 03:41 - 000000000 _____ () C:\Users\Ash\AppData\Local\{86B65B10-9008-48B5-8480-F7F2990BB5CA}
2016-04-20 14:11 - 2016-05-06 03:23 - 000000125 ___SH () C:\ProgramData\.zreglib
2015-01-06 18:20 - 2015-01-06 18:20 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
2017-07-25 12:01 - 2016-12-09 10:03 - 000568832 _____ (Microsoft Corporation) C:\Users\Ash\AppData\Local\Temp\msvcp90.dll
2017-07-25 12:01 - 2016-12-09 10:03 - 000655872 _____ (Microsoft Corporation) C:\Users\Ash\AppData\Local\Temp\msvcr90.dll
2017-08-23 01:52 - 2017-08-23 01:52 - 000043520 ____N () C:\Users\Ash\AppData\Local\Temp\proxy_vole1404211892300303537.dll

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-08-21 12:59

==================== Ende von FRST.txt ============================

TattooPanda 27.08.2017 04:51
Addition Teil 1
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-08-2017
durchgeführt von Ash (27-08-2017 05:10:02)
Gestartet von C:\Users\Ash\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-01-06 16:09:02)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3066379646-2778961134-1701944576-500 - Administrator - Disabled)
Ash (S-1-5-21-3066379646-2778961134-1701944576-1000 - Administrator - Enabled) => C:\Users\Ash
Gast (S-1-5-21-3066379646-2778961134-1701944576-501 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

9 Clues 2: The Ward (HKLM\...\Steam App 369420) (Version:  - Tap It Games)
A Bird Story (HKLM-x32\...\Steam App 327410) (Version:  - Freebird Games)
A Story About My Uncle (HKLM\...\Steam App 278360) (Version:  - Gone North Games)
Absconding Zatwor (HKLM\...\Steam App 385200) (Version:  - Zonitron Productions)
ACDSee Pro 5 (HKLM-x32\...\{35E0BA9D-3AFE-402A-99CA-D94FE1E73D18}) (Version: 5.3.168 - ACD Systems International Inc.)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Adobe Flash Player 26 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM\...\Steam App 346900) (Version:  - Hyper Hippo Games)
AI Suite 3 (HKLM-x32\...\{D46DA5F0-25AD-4B77-98DA-6DD6AF39FBD9}) (Version: 1.00.56 - ASUSTeK Computer Inc.)
Air Missions: HIND (HKLM\...\Steam App 423490) (Version:  - 3Division)
Alice: Madness Returns (HKLM-x32\...\Steam App 19680) (Version:  - Spicy Horse Games)
Allied Intent Xtended 2.0 (HKLM-x32\...\Allied Intent Xtended) (Version: 2.0 - AIX Community)
Anomaly Warzone Earth (HKLM-x32\...\Steam App 91200) (Version:  - 11 bit studios)
Another World (HKLM\...\Steam App 233550) (Version:  - Eric Chahi)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 378.49 - NVIDIA Corporation) Hidden
ARCADE GAME SERIES: GALAGA (HKLM\...\Steam App 403430) (Version:  - BANDAI NAMCO Studios Inc.)
ARK: Survival Evolved (HKLM\...\Steam App 346110) (Version:  - Studio Wildcard)
Attribute Changer 8.60 (HKLM\...\{27263813-8BDE-4CD2-84D3-02536743428A}_is1) (Version: 8.60 - Romain Petges)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
AVerMedia A835 USB DVB-T 2.3.64.28 (HKLM-x32\...\AVerMedia A835 USB DVB-T) (Version: 2.3.64.28 - AVerMedia TECHNOLOGIES, Inc.)
AVerTV 3D (HKLM-x32\...\{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.26 - AVerMedia Technologies, Inc.) Hidden
AVerTV 3D (HKLM-x32\...\InstallShield_{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.26 - AVerMedia Technologies, Inc.)
Avidemux 2.6 - 64 bits (HKLM-x32\...\Avidemux 2.6 - 64 bits (64-bit)) (Version: 2.6.11.160129 - )
AviSynth 2.6 (HKLM-x32\...\AviSynth) (Version: 2.6.0.2 - GPL Public release.)
Batman - The Telltale Series - Episode 1 (HKLM\...\Steam App 543830) (Version:  - Telltale Games)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 2(TM) (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version:  - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield Vietnam(TM) (HKLM-x32\...\{E35B3C63-E958-4E31-A178-95D22024109A}) (Version:  - )
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
BF2SP64 (HKLM-x32\...\BF2SP64) (Version:  - )
BIT.TRIP RUNNER (HKLM-x32\...\Steam App 63710) (Version:  - Gaijin Games)
Bloody Walls (HKLM\...\Steam App 531960) (Version:  - L. Stotch)
Blue Estate (HKLM\...\Steam App 305380) (Version:  - HE SAW)
Brother MFL-Pro Suite DCP-375CW (HKLM-x32\...\{6BF66AED-3EA4-4106-B240-5CE96C9B76B0}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
Bully: Scholarship Edition (HKLM-x32\...\Steam App 12200) (Version:  - Rockstar New England)
Burnout Paradise: The Ultimate Box (HKLM-x32\...\Steam App 24740) (Version:  - Criterion Games)
Carnage Racing (HKLM-x32\...\Steam App 228940) (Version:  - )
Carnivores: Dinosaur Hunter Reborn (HKLM\...\Steam App 293520) (Version:  - Digital Dreams Entertainment LLC)
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6623 - CDBurnerXP)
Coffin Dodgers (HKLM\...\Steam App 320540) (Version:  - Milky Tea Studios)
Colin McRae Rally (HKLM-x32\...\Steam App 287340) (Version:  - Codemasters Digital)
Conexant Polaris Unused CIR Function (HKLM\...\VID_1D19&PID_6109&MI_00) (Version: 1.0.0.0 - Conexant Systems)
Core Temp 1.5.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.5.1 - ALCPU)
Counter-Strike (HKLM\...\Steam App 10) (Version:  - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
Crash Drive 2 (HKLM-x32\...\Steam App 343440) (Version:  - )
CrystalDiskInfo 6.3.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.3.0 - Crystal Dew World)
CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.5025.0 - Ihr Firmenname) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.5025.0 - CyberLink Corp.)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dark Arcana: The Carnival (HKLM-x32\...\Steam App 284730) (Version:  - Artifex Mundi sp. z o.o.)
Dark Messiah of Might & Magic Single Player (HKLM-x32\...\Steam App 2100) (Version:  - Arkane Studios)
Darksaber's Ultimate Craft Pack (HKLM-x32\...\Darksaber's Ultimate Craft Pack) (Version: 2.2.1.4 - Darksaber's X-Wing Station)
DaVinci Resolve (HKLM\...\{5BE8D9B2-D7B5-4059-B9F3-BA984FD2E552}) (Version: 12.5.0052 - Blackmagic Design)
Day of the Tentacle Remastered (HKLM\...\Steam App 388210) (Version:  - Double Fine Productions)
Debut Videorekorder (HKLM-x32\...\Debut) (Version: 2.17 - NCH Software)
Deep Dungeons of Doom (HKLM\...\Steam App 325090) (Version:  - Bossa Studios)
Dex (HKLM\...\Steam App 269650) (Version:  - Dreadlocks Ltd.)
DHTML Editing Component (HKLM-x32\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation)
DiRT Showdown (HKLM-x32\...\Steam App 201700) (Version:  - Codemasters Racing Studio)
DogFighter_Launcher version 1.0 (HKLM-x32\...\{1D67C0F6-F3DD-477F-842F-133D3B679626}_is1) (Version: 1.0 - Dark Water Studios)
Dota 2 (HKLM\...\Steam App 570) (Version:  - Valve)
DuckTales Remastered (HKLM-x32\...\Steam App 237630) (Version:  - WayForward)
Dungeon Keeper Gold (HKLM-x32\...\GOGPACKDUNGEONKEEPER_is1) (Version: 2.0.0.4 - GOG.com)
Dungeons 2 (HKLM\...\Steam App 262280) (Version:  - Realmforge Studios)
Elizabeth Find M.D. - Diagnosis Mystery - Season 2 (HKLM\...\Steam App 33790) (Version:  - Gunnar Games, Inc.)
Enemy Mind (HKLM-x32\...\Steam App 285840) (Version:  - Schell Games)
Enigmatis 2: The Mists of Ravenwood (HKLM-x32\...\Steam App 284770) (Version:  - Artifex Mundi sp. z o.o.)
Enigmatis: The Ghosts of Maple Creek (HKLM-x32\...\Steam App 284750) (Version:  - Artifex Mundi sp. z o.o.)
Fallout Shelter (HKLM\...\Steam App 588430) (Version:  - Bethesda Game Studios)
FlatOut (HKLM\...\Steam App 6220) (Version:  - Bugbear Entertainment)
FlatOut 2 (HKLM-x32\...\Steam App 2990) (Version:  - Bugbear Entertainment)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.3.1.21155 - Foxit Software Inc.)
Fractured Space (HKLM\...\Steam App 310380) (Version:  - Edge Case Games Ltd.)
Friday the 13th: The Game BETA (HKLM\...\Steam App 569300) (Version:  - )
Gameforge Live 2.0.13 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.13 - Gameforge)
Garfield Kart (HKLM\...\Steam App 362930) (Version:  - Artefacts Studios)
Geeks3D FurMark 1.17.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version:  - Geeks3D)
Gemini Rue (HKLM-x32\...\Steam App 80310) (Version:  - Joshua Neurnberger)
Gigaset QuickSync (HKLM\...\{192f673d-d310-4488-96da-4a4bfcd6ab2b}) (Version: 8.6.0875.1 - Gigaset Communications GmbH)
GIMP 2.8.18 (HKLM\...\GIMP-2_is1) (Version: 2.8.18 - The GIMP Team)
Gods Will Be Watching (HKLM\...\Steam App 274290) (Version:  - Deconstructeam)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.101 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Goosebumps (HKLM\...\Steam App 361360) (Version:  - WayForward)
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version:  - Rockstar Games)
Grand Theft Auto: Vice City (HKLM-x32\...\Steam App 12110) (Version:  - Rockstar Games)
Grim Legends: The Forsaken Bride (HKLM-x32\...\Steam App 284850) (Version:  - Artifex Mundi sp. z o.o.)
Gunpoint (HKLM-x32\...\Steam App 206190) (Version:  - Suspicious Developments)
Hacker Evolution Duality (HKLM-x32\...\Steam App 70120) (Version:  - exosyphen studios)
Half dead (HKLM\...\Steam App 434730) (Version:  - Room710Games)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
Hatred (HKLM-x32\...\Steam App 341940) (Version:  - Destructive Creations)
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version:  - EFD Software)
Hello Neighbor Demo (HKLM\...\Steam App 562080) (Version:  - Dynamic Pixels)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Heroine's Quest: The Herald of Ragnarok (HKLM-x32\...\Steam App 283880) (Version:  - Crystal Shard)
High Profits (HKLM\...\Steam App 545650) (Version:  - Double Coconut)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version:  - IO Interactive)
Homefront (HKLM\...\Steam App 55100) (Version:  - Kaos Studios)
HxD Hex Editor Version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
InstantMask Ultimate 1.2 (HKLM\...\{F84659CA-1144-4699-BD42-2EB22AE40258}_is1) (Version:  - clipping-path-studio.com)
Insurgency (HKLM-x32\...\Steam App 222880) (Version:  - New World Interactive)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Jamestown (HKLM-x32\...\Steam App 94200) (Version:  - Final Form Games)
Jasc Paint Shop Pro 9 (HKLM-x32\...\{F843C6A3-224D-4615-94F8-3C461BD9AEA0}) (Version: 9.00.0000 - Jasc Software Inc)
Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Jedi Knight: Dark Forces II (HKLM\...\{2c4b52b6-7c52-4c74-89e1-7009ef16d36a}.sdb) (Version:  - )
Jet Set Radio (HKLM\...\Steam App 205950) (Version:  - Blit Software)
Knights of Pen and Paper +1 (HKLM-x32\...\Steam App 231740) (Version:  - Behold Studios)
Knuddels Standalone App (HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\...\Knuddels App ) (Version: "2015.12.6.0" - "Knuddels App")
LEGO Harry Potter: Years 5-7 (HKLM\...\Steam App 204120) (Version:  - Traveller's Tales)
Life is Hard (HKLM\...\Steam App 414080) (Version:  - Pirozhok Studio)
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.)
Lucius (HKLM-x32\...\Steam App 218640) (Version:  - Shiver Games)
Lucius II (HKLM\...\Steam App 296830) (Version:  - Shiver Games)
Mafia II (HKLM-x32\...\Steam App 50130) (Version:  - 2K Czech)
MediaInfo 0.7.88 (HKLM\...\MediaInfo) (Version: 0.7.88 - MediaArea.net)
Microsoft .NET Framework 4.7 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM-x32\...\{35b83883-40fa-423c-ae73-2aff7e1ea820}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mind Snares: Alice's Journey (HKLM-x32\...\Steam App 363330) (Version:  - World-Loom)
Missing Translation (HKLM-x32\...\Steam App 395520) (Version:  - AlPixel Games)
MKVToolNix 9.4.2 (64bit) (HKLM-x32\...\MKVToolNix) (Version: 9.4.2 - Moritz Bunkus)
Monkey Island 2: Special Edition (HKLM-x32\...\Steam App 32460) (Version:  - LucasArts)
Mozilla Firefox 54.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 54.0.1 (x86 de)) (Version: 54.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.1.6388 - Mozilla)
Mozilla Thunderbird 45.8.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.8.0 (x86 de)) (Version: 45.8.0 - Mozilla)
MSI Afterburner 4.3.0 Beta 14 (HKLM-x32\...\Afterburner) (Version: 4.3.0 Beta 14 - MSI Co., LTD)
My Game Long Name (HKLM\...\UDK-284375aa-24c9-4a72-8f25-e4081eb9ebeb) (Version:  - Epic Games, Inc.)
NaissanceE (HKLM-x32\...\Steam App 265690) (Version:  - Limasse Five)
Narcissu 1st & 2nd (HKLM-x32\...\Steam App 264380) (Version:  - stage-nana)
Neighbours from Hell (HKLM-x32\...\Steam App 260750) (Version:  - JoWooD Vienna)
Neighbours from Hell 2 (HKLM-x32\...\Steam App 260770) (Version:  - )
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.53.7 - Black Tree Gaming)
Nightmares from the Deep: The Cursed Heart (HKLM-x32\...\Steam App 259740) (Version:  - Artifex Mundi sp. z o.o.)
NVIDIA GeForce Experience 3.8.0.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.8.0.89 - NVIDIA Corporation)
NVIDIA Grafiktreiber 378.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.49 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.21 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Oil Rush (HKLM-x32\...\Steam App 200390) (Version:  - Unigine Corp.)
One Finger Death Punch (HKLM\...\Steam App 264200) (Version:  - Silver Dollar Games)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Operation Flashpoint: Red River (HKLM\...\Steam App 44340) (Version:  - Codemasters Action Studio)
Origin (HKLM-x32\...\Origin) (Version: 10.4.5.25153 - Electronic Arts, Inc.)
Overlord (HKLM-x32\...\Steam App 11450) (Version:  - Triumph Studios)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.106.226.0 - Overwolf Ltd.)
Panda USB Vaccine 1.0.1.16 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
Pang Adventures (HKLM\...\Steam App 415150) (Version:  - DotEmu)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version:  - 3909)
Party Hard (HKLM\...\Steam App 356570) (Version:  - Pinokl Games)
Penguins Arena: Sedna's World (HKLM-x32\...\Steam App 11280) (Version:  - Frogames)
Pinnacle Instant DVD Recorder (HKLM-x32\...\{C1212AE3-DBB9-4365-8473-F8ABC7B06BBB}) (Version: 2.6.1.127 - Pinnacle Systems)
Pinnacle Video Treiber (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.029 - Pinnacle Systems)
Pizza Express (HKLM-x32\...\Steam App 375250) (Version:  - Onni Interactive)
Poker Night 2 (HKLM-x32\...\Steam App 234710) (Version:  - Telltale Games)
Poker Night at the Inventory (HKLM-x32\...\Steam App 31280) (Version:  - Telltale Games)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
POSTAL (HKLM-x32\...\Steam App 232770) (Version:  - Running With Scissors)
POSTAL 2 (HKLM-x32\...\Steam App 223470) (Version:  - Running With Scissors)
Prominence Poker (HKLM\...\Steam App 384180) (Version:  - Pipeworks Studio)
Punch Club (HKLM\...\Steam App 394310) (Version:  - Lazy Bear Games)
Quick Slick Deadly (HKLM\...\Steam App 399270) (Version:  - Adventurous Productions)
RACE 07 (HKLM-x32\...\Steam App 8600) (Version:  - SimBin)
Race The Sun (HKLM-x32\...\Steam App 253030) (Version:  - Flippfly LLC)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version:  - Wild Shadow Studios)
Realms of Arkania 1 - Blade of Destiny Classic (HKLM\...\Steam App 267670) (Version:  - attic Entertainment Software GmbH)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7023 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Reload (HKLM-x32\...\Steam App 330370) (Version:  - Top3Line s.r.o.)
Retro City Rampage™ DX (HKLM-x32\...\Steam App 204630) (Version:  - Vblank Entertainment, Inc.)
Reus (HKLM\...\Steam App 222730) (Version:  - Abbey Games)
rFactor (HKLM-x32\...\Steam App 339790) (Version:  - Image Space Incorporated)
Rise of Nations: Extended Edition (HKLM-x32\...\Steam App 287450) (Version:  - SkyBox Labs)
Rochard (HKLM-x32\...\Steam App 107800) (Version:  - Recoil Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.6 - Rockstar Games)
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.0.0.790 - Samsung Electronics)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
Savage Lands (HKLM\...\Steam App 307880) (Version:  - Signal Studios)
SCARFACE: THE WORLD IS YOURS (HKLM-x32\...\{50A1E01F-21A4-4FB9-B0BA-76CEB5D8D5F5}) (Version: 1.00.0000 - Sierra Entertainment) Hidden
SCARFACE: THE WORLD IS YOURS (HKLM-x32\...\InstallShield_{50A1E01F-21A4-4FB9-B0BA-76CEB5D8D5F5}) (Version: 1.00.0000 - Sierra Entertainment)
Scarface: The World is Yours Patch (HKLM-x32\...\{9BA745ED-5748-4303-AE0C-78991809DD68}) (Version: 1.02.00 - Sierra Entertainment) Hidden
Scarface: The World is Yours Patch (HKLM-x32\...\InstallShield_{9BA745ED-5748-4303-AE0C-78991809DD68}) (Version: 1.02.00 - Sierra Entertainment)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Shadow Warrior (HKLM\...\Steam App 233130) (Version:  - Flying Wild Hog)
Shatter (HKLM-x32\...\Steam App 20820) (Version:  - Sidhe)
Shower With Your Dad Simulator 2015: Do You Still Shower With Your Dad (HKLM-x32\...\Steam App 359050) (Version:  - marbenx)
Sid Meier's Covert Action (Classic) (HKLM\...\Steam App 327390) (Version:  - MicroProse Software, Inc)
Sid Meier's Pirates! (HKLM-x32\...\Steam App 3920) (Version:  - Firaxis Games)
Sky Mercenaries (HKLM\...\Steam App 336090) (Version:  - PolarityFlow)
Sleeping Dogs™ (HKLM\...\Steam App 202170) (Version:  - United Front Games)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.)
SmartDVB (HKLM-x32\...\{B3A552DB-CD70-4C0E-BA00-79C3C42116AA}) (Version: 1.3.125 - SmartWARE)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Solar 2 (HKLM-x32\...\Steam App 97000) (Version:  - Murudai)
Space Pirates and Zombies (HKLM-x32\...\Steam App 107200) (Version:  - MinMax Games Ltd.)
Speedball 2 HD (HKLM-x32\...\Steam App 251690) (Version:  - Vivid Games)
SSD Fresh 2016 (HKLM-x32\...\{71149886-0AA3-4F31-81F9-CC90EA0D55EF}_is1) (Version: 5.0 - Abelssoft)
SSDlife Free (HKLM-x32\...\{18302BF2-AA3C-46E3-B039-996FD0DB5639}) (Version: 2.5.82 - BinarySense Inc.)
Star Wars Rebellion Compatability (HKLM\...\{70f8e27a-b749-4f9a-a67e-937b9a54e30d}.sdb) (Version:  - )
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 8.0.0.28 - Bioware/EA)
Star Wars X-Wing 95 Compatibility Fix (HKLM\...\{43b2876b-3e34-4e6e-ac3f-4da816b782e0}.sdb) (Version:  - )
Star Wars X-Wing Alliance DE (HKLM-x32\...\{7AD8FE70-1A35-492C-9AA8-E9F9C1833040}) (Version: 1.0.0.0 - LucasArts, Totally Games)
Star Wars: Knights of the Old Republic (HKLM-x32\...\Steam App 32370) (Version:  - BioWare)
STAR WARS™ Galactic Battlegrounds Saga (HKLM-x32\...\Steam App 356500) (Version:  - Ensemble Studios)
STAR WARS™: X-Wing Special Edition (HKLM\...\Steam App 354430) (Version:  - Lucasfim)
Starpoint Gemini 2 (HKLM\...\Steam App 236150) (Version:  - Little Green Men Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellarium 0.13.3 (HKLM\...\Stellarium_is1) (Version: 0.13.3 - Stellarium team)
Strife: Veteran Edition (HKLM-x32\...\Steam App 317040) (Version:  - Rogue Entertainment)
StuntMANIA Reloaded (HKLM-x32\...\Steam App 324750) (Version:  - Sector3 Games)
Styx: Master of Shadows (HKLM\...\Steam App 242640) (Version:  - Cyanide Studio)
Subtitle Edit 3.4.4 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.4.4.0 - Nikse)
SUPER DISTRO (HKLM\...\Steam App 364690) (Version:  - KITATUS STUDIOS)
Superfrog HD (HKLM-x32\...\Steam App 234000) (Version:  - Team17 Digital Ltd)
Surgeon Simulator (HKLM-x32\...\Steam App 233720) (Version:  - Bossa Studios)
Survivalist (HKLM-x32\...\Steam App 340050) (Version:  - Bob the Game Development Bot)
Swords and Soldiers HD (HKLM-x32\...\Steam App 63500) (Version:  - Ronimo Games)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.81460 - TeamViewer)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
Tesla Effect (HKLM-x32\...\Steam App 261510) (Version:  - Big Finish Games)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Four Kings Casino and Slots (HKLM\...\Steam App 260430) (Version:  - Digital Leisure Inc.)
The Howler (HKLM-x32\...\Steam App 306040) (Version:  - Antanas Marcelionis)
The Lion's Song (HKLM\...\Steam App 437160) (Version:  - Mi'pu'mi Games)
The Mean Greens - Plastic Warfare (HKLM\...\Steam App 360940) (Version:  - Virtual Basement LLC)
This War of Mine (HKLM\...\Steam App 282070) (Version:  - 11 bit studios)
Thunder Wolves (HKLM-x32\...\Steam App 232970) (Version:  - Most Wanted Entertainment)
Time Mysteries: Inheritance - Remastered (HKLM\...\Steam App 350010) (Version:  - Artifex Mundi)
Torchlight (HKLM-x32\...\Steam App 41500) (Version:  - Runic Games)
Toy Soldiers: Complete (HKLM\...\Steam App 262120) (Version:  - Signal Studios)
Toybox Turbos (HKLM-x32\...\Steam App 287260) (Version:  - Codemasters)
TP-LINK TL-WN821N(C)_TL-WN822N_TL-WN823N Driver (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Trine 2 (HKLM-x32\...\Steam App 35720) (Version:  - Frozenbyte)
Tron 2.0 (HKLM-x32\...\Steam App 327740) (Version:  - Monolith Productions, Inc.)
TRON 2.0 v1.042 Update (HKLM-x32\...\TRON 2.0 v1.042 Update) (Version:  - )
TRON 2.0: Killer App Mod (HKLM-x32\...\Killer App Mod) (Version: v1.1a - LDSO and Killer App Mod Team)
TSDoctor2 (HKLM-x32\...\{8486B0AE-D96B-4182-AFDB-4914311FA677}) (Version: 2.0.50 - Cypheros)
Turbo Lister 2 (HKLM-x32\...\{8927E07C-97F7-4A54-88FB-D976F50DD46E}) (Version: 2.00.0000 - eBay Inc.)
TV Movie ClickFinder (HKLM-x32\...\{A1A2ACDC-0C22-4EB1-B958-1898A93DAF28}) (Version: 1.00.0000 - TV Movie)
TVCenter (HKLM\...\{B32267A7-4B02-4C03-A69C-61247B3A3A2C}) (Version: 6.4.9.1033 - PCTV Systems)
UE3Redist (HKLM-x32\...\{6530FDAA-5B1F-4830-95BB-650E9804D239}) (Version: 1.00.0000 - Epic Games) Hidden
UE3Redist (HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\...\InstallShield_{6530FDAA-5B1F-4830-95BB-650E9804D239}) (Version: 1.00.0000 - Epic Games)
Uncanny Valley (HKLM-x32\...\Steam App 359580) (Version:  - Cowardly Creations)
Universe Sandbox (HKLM-x32\...\Steam App 72200) (Version:  - Giant Army)
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
Uplink (HKLM\...\Steam App 1510) (Version:  - Introversion Software)
USB Game Controller (HKLM-x32\...\USB Game Controller) (Version:  - )
Vanity Pack Version 2.0.0b10 (HKLM-x32\...\VanityPack_is1) (Version: 2.0.0b10 - )
VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden
Vertiginous Golf (HKLM-x32\...\Steam App 272890) (Version:  - Kinelco &amp; Lone Elk Creative)
Vessel (HKLM-x32\...\Steam App 108500) (Version:  - Strange Loop Games)
Video Grabber (HKLM\...\VID_1D19&PID_6109&MI_01) (Version: 1.0.0.0 - Conexant Systems)
VideoReDo TVSuite Version 5.3.4.748 (HKLM-x32\...\VideoReDo5_is1) (Version:  - DRD Systems, Inc.)
Viscera Cleanup Detail (HKLM-x32\...\Steam App 246900) (Version:  - RuneStorm)
Viscera Cleanup Detail: alpha v0.25
 (HKLM\...\UDK-32dac49c-f0b5-4444-8b4e-b3325eda5fa7) (Version:  - RuneStorm
)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VSDC Free Video Editor Version 5.5.0.601 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 5.5.0.601 - Flash-Integro LLC)
VSO ConvertXToDVD 6 (HKLM-x32\...\{8FC36FA6-C508-44FB-B137-1CB46D8258B2}_is1) (Version: 6.0.0.90 - VSO Software)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.40 - VSO Software)
VSO ConvertXtoVideo Ultimate 2 (HKLM-x32\...\{{3852A371-F5ED-491A-86C3-998CD0688D4A}_is1) (Version: 2.0.0.57 - VSO Software)
VSO Downloader 5.0.1.46 (HKLM-x32\...\{3C5CD638-CAD0-4F6C-81FD-B37D47B411F7}_is1) (Version: 5.0.1.46 - VSO Software)
VSO EVE Network Driver version 1.0.0.27 (HKLM-x32\...\{AC0AFDC9-4FB1-44FE-B3E1-82300BF3D756}_is1) (Version: 1.0.0.27 - VSO Software)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
Watch_Dogs (HKLM-x32\...\Steam App 243470) (Version:  - Ubisoft)
What's under your blanket !? (HKLM\...\Steam App 432020) (Version:  - 5Wolf)
Who's Your Daddy (HKLM\...\Steam App 427730) (Version:  - Evil Tortilla Games)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
WinAVI Video Capture 2.0 (HKLM-x32\...\WinAVI Video Capture_is1) (Version:  - ZJ Computing, Inc.)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies)
WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wizorb (HKLM\...\Steam App 207420) (Version:  - Tribute Games Inc.)
Woodle Tree Adventures (HKLM\...\Steam App 299460) (Version:  - Fabio Ferrara)
Worms Crazy Golf (HKLM\...\Steam App 70620) (Version:  - Team17 Digital Ltd)
Worms Ultimate Mayhem (HKLM\...\Steam App 70600) (Version:  - Team17 Digital Ltd)
XMedia Recode Version 3.3.4.8 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.3.4.8 - XMedia Recode)
Your Doodles Are Bugged! (HKLM\...\Steam App 95500) (Version:  - Spyn Doctor Games)
Ziggurat (HKLM\...\Steam App 308420) (Version:  - Milkstone Studios)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\...\ChromeHTML: ->  <==== ACHTUNG
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-07] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-07] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-07] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [ACShell] -> {D3F9A525-8824-497A-BE36-B23E22F141FC} => C:\Program Files\Attribute Changer\acshell.dll [2016-12-30] (Romain Petges)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-07] (AVAST Software)
ContextMenuHandlers3: [ACShell] -> {D3F9A525-8824-497A-BE36-B23E22F141FC} => C:\Program Files\Attribute Changer\acshell.dll [2016-12-30] (Romain Petges)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-01-20] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-07] (AVAST Software)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {2D6273E0-ECF5-4D30-9D32-6A1576C730C1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-07-26] (NVIDIA Corporation)
Task: {2EFD6852-84BF-4370-BD36-E0EB44251254} - System32\Tasks\Abelssoft\StartBackgroundguardWithWindows => C:\Program Files (x86)\CheckDrive\CheckDrive.exe
Task: {490AEBC7-0393-4EF3-A238-A46B3071DDBD} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar Core\DipAwayMode\DipAwayMode.exe [2013-09-18] ()
Task: {4B87D5B4-7443-46D8-9871-3917C52E33A1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {51640F3C-3BF9-41DA-9E2B-E002CBC93E23} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-07-26] (NVIDIA Corporation)
Task: {54F7257B-879B-4A5A-B6D7-8920F736D1A3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {67B55842-72A9-47A4-BF83-196B8B433666} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)
Task: {7043FAD5-92E5-448B-A1EA-6E59253149E3} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [2016-11-23] (Samsung Electronics Co. Ltd.)
Task: {71E08877-8FEB-46E0-B90B-213F050DCD74} - System32\Tasks\SafeZone scheduled Autoupdate 1461873233 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {75BFDAF2-8E27-4C9B-95F8-138BDCA32848} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-07-26] (NVIDIA Corporation)
Task: {81EEC11F-3E07-47C9-8721-33FF65EC90BF} - System32\Tasks\elbyExecuteWithUAC => C:\Program Files (x86)\SlySoft\AnyDVD\ExecuteWithUAC.exe
Task: {8D06D029-1AF3-44C6-9DFC-88142BD050B1} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-07-26] (NVIDIA Corporation)
Task: {971C8AAF-06E2-409E-A3FE-552DAF023954} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-07-26] (NVIDIA Corporation)
Task: {9AD63577-9AE2-4366-8260-F3BB493A3A72} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_26_0_0_151_pepper.exe [2017-08-25] (Adobe Systems Incorporated)
Task: {9F44242F-E0E3-4EF3-9F14-CE6943C84842} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-07-26] (NVIDIA Corporation)
Task: {A92B3532-F32F-407A-8DC8-9B4964877F80} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-07-16] (AVAST Software)
Task: {AD7034A8-F535-4180-8C30-45E3D041163F} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-08-20] (Overwolf LTD)
Task: {BC9B649B-F7AC-4264-8D95-18902644C657} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-07] (AVAST Software)
Task: {C2401E87-5B4E-4E6D-8130-F45317E35BA5} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [2010-06-01] ()
Task: {ECDCAD36-F944-4D5B-B9E5-04B928273B87} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-07-26] (NVIDIA Corporation)
Task: {F1F1533A-C471-4BEC-B072-472D70C2E644} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)
Task: {F41012FE-5E8E-44EA-ADDF-AADB4974ECA4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-07-26] (NVIDIA Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


Shortcut: C:\Users\Ash\Favorites\Downloadseite von NCH Software.lnk -> hxxp://www.nchsoftware.com/de/index.htm
Shortcut: C:\Users\Ash\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\BF2SP64\Arn354 Copymaps.lnk -> E:\Battlefield 2\mods\bf2sp64\arn354_copymaps.bat ()
Shortcut: C:\Users\Ash\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\BF2SP64\BF2SP64 Botchanger.lnk -> E:\Battlefield 2\mods\bf2sp64\botchanger.bat ()

ShortcutWithArgument: C:\Users\Ash\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5ab281fb3bb55f68\Chrome IG Story.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=bojgejgifofondahckoaahkilneffhmf

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2017-02-04 02:00 - 2017-01-20 17:13 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 000866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-03-12 20:23 - 2015-03-12 20:23 - 001050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 000059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-03-12 20:23 - 2015-03-12 20:23 - 000242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-01-06 18:21 - 2013-05-07 16:45 - 000936728 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2015-01-06 18:45 - 2014-04-08 10:43 - 000847360 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
2015-01-06 20:48 - 2013-09-18 11:18 - 001225528 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar Core\DipAwayMode\DipAwayMode.exe
2015-01-11 15:50 - 2011-04-01 15:52 - 000403456 _____ () C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
2015-01-11 15:50 - 2013-01-09 17:05 - 000163840 _____ () C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
2017-02-04 02:01 - 2017-07-26 19:09 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-02 18:11 - 2014-04-14 19:59 - 000389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-01-11 15:56 - 2005-04-22 14:36 - 000143360 ____N () C:\Windows\system32\BrSNMP64.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 000162024 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 000825960 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 000275776 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 000170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 000176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 000223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-08-26 08:51 - 2017-08-26 08:51 - 005895544 _____ () C:\Program Files\AVAST Software\Avast\defs\17082600\algo.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 000684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 000230632 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 000997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 067717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-07 21:45 - 2017-05-07 21:45 - 000291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2015-01-06 18:21 - 2017-08-27 05:07 - 000035984 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2015-01-06 18:21 - 2013-05-07 16:45 - 000104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2015-01-06 18:45 - 2014-04-08 10:42 - 001411072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2015-01-06 18:45 - 2014-04-08 10:42 - 000193024 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2015-01-06 18:45 - 2014-04-08 10:42 - 000298496 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJRtl.dll
2015-01-06 20:48 - 2013-09-18 11:18 - 000685056 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar Core\DipAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2015-01-06 20:48 - 2013-09-18 11:18 - 000825344 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar Core\DipAwayMode\DIPDLL\DIP4EpuAction.dll
2015-01-06 20:48 - 2013-09-18 11:18 - 000765952 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar Core\DipAwayMode\DIPDLL\DIP4FanAction.dll
2015-01-06 20:48 - 2013-09-18 11:18 - 000776704 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar Core\DipAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2015-01-06 20:48 - 2013-09-18 11:18 - 000904704 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar Core\DipAwayMode\DIPDLL\UsbPowerManager.dll
2015-01-06 20:47 - 2013-08-07 20:11 - 000147456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2015-01-06 20:48 - 2013-09-18 11:27 - 002371584 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Thermal Radar Core\tufx.dll
2015-01-06 20:47 - 2013-06-04 18:41 - 000662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMLib.dll
2015-01-06 20:47 - 2013-08-07 20:11 - 000053248 _____ () C:\Program Files (x86)\ASUS\AI Suite III\cpuutil.dll
2017-08-20 09:32 - 2017-08-20 09:32 - 069770056 _____ () C:\Program Files (x86)\Overwolf\0.106.226.0\libcef.DLL
2017-02-04 02:01 - 2017-07-26 19:08 - 069820864 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-02-04 02:01 - 2017-07-26 19:09 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-01-06 18:25 - 2013-09-03 17:52 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [412]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [162]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [135]
AlternateDataStreams: C:\ProgramData\TEMP:93433455 [273]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MB3Service => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MB3Service => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)

HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\Software\Classes\.exe:  =>  <==== ACHTUNG

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2015-05-04 14:19 - 000000903 ____R C:\Windows\system32\Drivers\etc\hosts

65.112.87.186 tron20.master.gamespy.com
65.112.87.186 tron20.ms9.gamespy.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Ash\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AVer HID Receiver.lnk => C:\Windows\pss\AVer HID Receiver.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AVerQuick.lnk => C:\Windows\pss\AVerQuick.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Nach Updates suchen.lnk => C:\Windows\pss\Nach Updates suchen.lnk.CommonStartup
MSCONFIG\startupreg: ACPW05DE => "C:\Program Files (x86)\ACD Systems\ACDSee Pro\5.0\ACDSeeProInTouch2.exe" /pid ACPW05DE
MSCONFIG\startupreg: Acronis Scheduler2 Service => "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
MSCONFIG\startupreg: AcronisTibMounterMonitor => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
MSCONFIG\startupreg: BrMfcWnd => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: ControlCenter3 => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: GoogleChromeAutoLaunch_8252431206705CA8C92C144971B8E8EF => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: MouseDriver => TiltWheelMouse.exe
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" -s
MSCONFIG\startupreg: TrueImageMonitor.exe => "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
MSCONFIG\startupreg: w-lanTV => C:\Program Files (x86)\Common Files\PCTV Systems\w-lanTV\w-lanTV.exe

TattooPanda 27.08.2017 04:52
Addition Teil 2
Code:
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{5DE6EB3A-5C2C-4582-B609-AE14F1A55912}] => (Allow) LPort=54925
FirewallRules: [{E463A16D-F718-4BE6-95E4-FFBE9D90765F}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{18DDA827-8247-475C-8D8F-009A3DDFE349}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{0D29C7BD-3577-4D59-863A-2E5E9756E856}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{827120C0-2E79-40B0-BF25-94CE74D0765E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5728EAF8-F301-4E8F-A263-15452B3C9B3D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{D84DC50B-7A1B-4715-9489-7260EED99F0A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{92532BB9-E538-4720-88EB-B6E7137B6326}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{E9642276-E030-4597-BD0C-D30E43405555}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{82A84747-C208-468D-BDE3-DE4C95223D86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{54580992-E792-4980-89BC-0216ACD7D68C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{9E3E5FC7-535A-4682-91DB-CF6B6BA66D0E}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C47FBEC3-8D8B-4175-9982-C7F76A911D8B}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{CA437B6F-2D15-43E7-92DD-7640055A9B28}] => (Allow) C:\Program Files (x86)\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{39F60726-A7C8-423D-B9F5-CB3B231FF027}] => (Allow) C:\Program Files (x86)\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{CA9DF019-7736-4DE1-8C22-B4863C585E37}] => (Allow) D:\Steam\steamapps\common\BIT.TRIP RUNNER\RUNNER.exe
FirewallRules: [{969BB6AD-B731-4B19-A705-752A4A18AF77}] => (Allow) D:\Steam\steamapps\common\BIT.TRIP RUNNER\RUNNER.exe
FirewallRules: [{1606584A-B90B-4CE1-87C4-401E1B37050D}] => (Allow) D:\Steam\steamapps\common\Alice Madness Returns\Binaries\Win32\AliceMadnessReturns.exe
FirewallRules: [{38C199EE-2386-4045-A3AB-E5FC77024D77}] => (Allow) D:\Steam\steamapps\common\Alice Madness Returns\Binaries\Win32\AliceMadnessReturns.exe
FirewallRules: [{1B4F5DFA-0460-4F11-A188-69F48FDFD63D}] => (Allow) D:\Steam\steamapps\common\Bully Scholarship Edition\Bully.exe
FirewallRules: [{7BA4FDB7-2D32-4D19-8736-2A2C5EB3358C}] => (Allow) D:\Steam\steamapps\common\Bully Scholarship Edition\Bully.exe
FirewallRules: [{035D9139-A8EB-4048-BCD0-D86C9A00D440}] => (Allow) D:\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{DB5C89EE-7685-4CF4-9484-0E9344E23D20}] => (Allow) D:\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{F9E1B088-9FF7-4CA5-A8D3-7283A46551CA}] => (Allow) D:\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{CF115ACB-663B-4089-BD65-9549658E3B2F}] => (Allow) D:\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{11C60D03-85CB-4B57-AB62-096C6B72038F}] => (Allow) D:\Steam\steamapps\common\Carnage Racing\CarnageRacing.exe
FirewallRules: [{F6412942-7600-4629-BFF3-CCF81C8B1C1B}] => (Allow) D:\Steam\steamapps\common\Carnage Racing\CarnageRacing.exe
FirewallRules: [{B123A1A5-32C4-49AE-828B-09586EF52395}] => (Allow) D:\Steam\steamapps\common\FlatOut2\FlatOut2.exe
FirewallRules: [{D4DDAE3C-C1A6-4605-9A23-87A0379CF720}] => (Allow) D:\Steam\steamapps\common\FlatOut2\FlatOut2.exe
FirewallRules: [{6F967B18-44A3-4105-8620-8AE7A7C9547A}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto Vice City\gta-vc.exe
FirewallRules: [{C03BF2B7-8D79-43A8-A8E6-551C3402AE56}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto Vice City\gta-vc.exe
FirewallRules: [{9EDF1D26-A082-409F-ACC4-0B3F1038925F}] => (Allow) D:\Steam\steamapps\common\Hacker Evolution Duality\Hacker Evolution Duality.exe
FirewallRules: [{09385B85-1128-4D15-A67E-58C20CC781A1}] => (Allow) D:\Steam\steamapps\common\Hacker Evolution Duality\Hacker Evolution Duality.exe
FirewallRules: [{145F6741-9A2C-481E-9D4F-F497F9B726FB}] => (Allow) D:\Steam\steamapps\common\Heroine's Quest\Heroine's Quest.exe
FirewallRules: [{062339BC-B000-433F-98CB-632B291799D8}] => (Allow) D:\Steam\steamapps\common\Heroine's Quest\Heroine's Quest.exe
FirewallRules: [{AB04C751-4D98-4172-922B-8987BCEBD610}] => (Allow) D:\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{583D4CF3-777C-4FA1-AC57-D44335901D53}] => (Allow) D:\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{4C06B129-88AB-4A81-9C79-8614F5E8433B}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{DB439122-8973-4959-8018-C3299ED42358}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{388405C4-24FB-4B72-BD23-9F625C320180}] => (Allow) D:\Steam\steamapps\common\Jamestown\Jamestown.exe
FirewallRules: [{422C5072-C368-4554-837F-44880A78CA6A}] => (Allow) D:\Steam\steamapps\common\Jamestown\Jamestown.exe
FirewallRules: [{A80275E1-7E4F-472A-9863-54F39F993535}] => (Allow) D:\Steam\steamapps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{B6FC15A5-6879-4BF3-A5CF-ECB5757ABCDE}] => (Allow) D:\Steam\steamapps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{9F2ADF69-4ADA-41DA-8988-C4AA9C80ED40}] => (Allow) D:\Steam\steamapps\common\Monkey2\Monkey2.exe
FirewallRules: [{D9AA0677-62CD-451D-BB8B-D32F2CB0480A}] => (Allow) D:\Steam\steamapps\common\Monkey2\Monkey2.exe
FirewallRules: [{1C83D5EE-95EB-4644-A31F-2F19291BD538}] => (Allow) D:\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{1ECD8D5F-F4CD-4D60-B815-8486F4F88190}] => (Allow) D:\Steam\steamapps\common\PapersPlease\PapersPlease.exe
FirewallRules: [{62531339-0114-494C-8B70-29D147B03FE7}] => (Allow) D:\Steam\steamapps\common\Poker Night at the Inventory\CelebrityPoker.exe
FirewallRules: [{E454CE02-58E3-4682-A22D-F6A53DA07798}] => (Allow) D:\Steam\steamapps\common\Poker Night at the Inventory\CelebrityPoker.exe
FirewallRules: [{CA3B47F0-C860-41D5-9302-817366D754F6}] => (Allow) D:\Steam\steamapps\common\Poker Night 2\PokerNight2.exe
FirewallRules: [{58D6FEE3-3108-4666-8719-EEFA4075B050}] => (Allow) D:\Steam\steamapps\common\Poker Night 2\PokerNight2.exe
FirewallRules: [{7F19CE73-E824-4193-8DA2-B8EFDBB6F49A}] => (Allow) D:\Steam\steamapps\common\Portal\hl2.exe
FirewallRules: [{3865DF64-7E9C-4E9B-88F6-602FD6CF4269}] => (Allow) D:\Steam\steamapps\common\Portal\hl2.exe
FirewallRules: [{4DC5AAED-E6AB-4E7F-83E2-4FC207954A94}] => (Allow) D:\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{1D337C0B-12FA-476E-98FE-A0791E918160}] => (Allow) D:\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{F8E6384F-DA4B-46CC-9D15-A0E9F76E342B}] => (Allow) D:\Steam\steamapps\common\race 07\SteamProxy.exe
FirewallRules: [{71FF48B9-5938-4247-BCBA-256AB243E217}] => (Allow) D:\Steam\steamapps\common\race 07\SteamProxy.exe
FirewallRules: [{D6AD5F1B-A390-48E0-8457-307FF58F4354}] => (Allow) D:\Steam\steamapps\common\race 07\Config.exe
FirewallRules: [{36FC5232-203A-4562-8EAD-87B229EF4CAC}] => (Allow) D:\Steam\steamapps\common\race 07\Config.exe
FirewallRules: [{2388F58E-90A3-4A48-B707-A236DFE2EFF8}] => (Allow) D:\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{6B2F7F39-BD24-4097-9CCA-6B0638FF70A9}] => (Allow) D:\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{A434F7C6-4CE8-4B71-AEE8-6FD95B6793C3}] => (Allow) D:\Steam\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{15950D8A-B586-4D55-81A4-8BD794664C8A}] => (Allow) D:\Steam\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{776A2B5A-27B3-48DA-BAF9-78F440717E34}] => (Allow) D:\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{136FD2FE-2D5D-4737-8908-D12EA4A7364E}] => (Allow) D:\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{01BEDF31-CB1B-4DEA-920C-BC35727A5968}] => (Allow) D:\Steam\steamapps\common\Shatter\Shatter.exe
FirewallRules: [{A9A19804-9223-416E-ADE9-1710E36A3F9F}] => (Allow) D:\Steam\steamapps\common\Shatter\Shatter.exe
FirewallRules: [{A5361F8A-A565-454B-8E4E-61D87CBAC1BD}] => (Allow) D:\Steam\steamapps\common\Shatter\ShatterSettingsEditor.exe
FirewallRules: [{2CF03505-FF96-47D0-AD00-5AA9189AF875}] => (Allow) D:\Steam\steamapps\common\Shatter\ShatterSettingsEditor.exe
FirewallRules: [{1976482E-5A13-45C0-83E8-49498D985CD8}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Pirates!\Pirates!.exe
FirewallRules: [{57938199-DABF-4F24-8D32-C6CC92221E0B}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Pirates!\Pirates!.exe
FirewallRules: [{8A667BF6-03AC-49E6-899D-8794D1190384}] => (Allow) D:\Steam\steamapps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{6CED203B-582B-44FC-A847-08873DA7DFCD}] => (Allow) D:\Steam\steamapps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{26365C04-B90D-4F6D-877A-A10E6CE96273}] => (Allow) D:\Steam\steamapps\common\Space Pirates and Zombies\SpazGame.exe
FirewallRules: [{FC462A89-FA40-4BE7-A54B-84FABCDB75C7}] => (Allow) D:\Steam\steamapps\common\Space Pirates and Zombies\SpazGame.exe
FirewallRules: [{63DF48F0-7755-4BE6-A2AF-C4C79FB30C9F}] => (Allow) D:\Steam\steamapps\common\Superfrog\Superfrog.exe
FirewallRules: [{7EF7AF67-5634-4CBB-B0C0-B1D6DF024AD1}] => (Allow) D:\Steam\steamapps\common\Superfrog\Superfrog.exe
FirewallRules: [{B9B2C040-9BBB-4966-84A1-34A3928AEF92}] => (Allow) D:\Steam\steamapps\common\swkotor\swkotor.exe
FirewallRules: [{75B391A3-4FB5-41CD-B839-760029E77CD1}] => (Allow) D:\Steam\steamapps\common\swkotor\swkotor.exe
FirewallRules: [{D04EEC4F-085E-425C-A6A5-819B0B86DFF7}] => (Allow) D:\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{560FA1A2-F440-4EBC-B0A4-EFB0D5EE2D60}] => (Allow) D:\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{68D4C2F9-6EA4-4AF2-B8E4-0336D2F75CFA}] => (Allow) D:\Steam\steamapps\common\Tesla Effect\TeslaEffect.exe
FirewallRules: [{03CCB984-6F75-4A2F-A0DE-1CD92AAF1143}] => (Allow) D:\Steam\steamapps\common\Tesla Effect\TeslaEffect.exe
FirewallRules: [{1D5B157E-4C2A-4E3C-B994-AEAC21A399D3}] => (Allow) D:\Steam\steamapps\common\Thunder Wolves\ThunderWolves.exe
FirewallRules: [{1A7956E3-7384-41AF-B133-C8225A0B2D69}] => (Allow) D:\Steam\steamapps\common\Thunder Wolves\ThunderWolves.exe
FirewallRules: [{A3C3CD27-FCA5-4E70-B90B-9818838F182F}] => (Allow) D:\Steam\steamapps\common\Tron 2.0\TronLauncher.exe
FirewallRules: [{2751EBFE-FC08-4705-A6D6-A34EB48AFEA9}] => (Allow) D:\Steam\steamapps\common\Tron 2.0\TronLauncher.exe
FirewallRules: [{96FC7842-5943-4E7F-ADED-8926D0D171FB}] => (Allow) D:\Steam\steamapps\common\Vessel\Vessel.exe
FirewallRules: [{050C142F-58AC-4BBB-A6A5-0EEF491F8D64}] => (Allow) D:\Steam\steamapps\common\Vessel\Vessel.exe
FirewallRules: [{E87A55C7-6F95-404A-8B98-DB3303AE395D}] => (Allow) D:\Steam\steamapps\common\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{9DEA38F4-B328-468C-A016-DEE8D2AED9B7}] => (Allow) D:\Steam\steamapps\common\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{E8D1DBEB-8FEE-45E8-AB32-0214BC5B9BA4}] => (Allow) D:\Steam\steamapps\common\DiRT Showdown\showdown.exe
FirewallRules: [{2FB3A701-762E-410D-8318-8B6F4D7BF1A8}] => (Allow) D:\Steam\steamapps\common\DiRT Showdown\showdown.exe
FirewallRules: [TCP Query User{2CD4EEEC-6BF5-4383-8B79-787A41DDEDF6}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{20512F62-7B56-49DD-99AC-6A64D1222BFA}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{D79B07F4-3BCE-4339-A291-0A991119911C}C:\program files (x86)\java\jre1.8.0_25\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\java.exe
FirewallRules: [UDP Query User{BF1CBDF1-6948-401C-946C-53D1E388798B}C:\program files (x86)\java\jre1.8.0_25\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\java.exe
FirewallRules: [{7DAE186E-702F-43A4-928E-F070A302865E}] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\java.exe
FirewallRules: [{DA36085B-AA5B-4EBE-9D00-B0A69A7FFEF0}] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\java.exe
FirewallRules: [TCP Query User{95AB1095-46EB-402C-A316-52FA7E36BA5F}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [UDP Query User{761183F4-A811-48EF-B6EF-8F8E3A446955}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [{CB552256-A066-4D28-818D-BD4B9E587193}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{55C52B8E-4810-4A88-88B5-F4CED649B6A7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4309019E-E1BA-4461-9191-BD6F2ADD7798}] => (Allow) D:\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe
FirewallRules: [{60FB1935-12A1-4ADE-8128-294ECAB7F6E6}] => (Allow) D:\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe
FirewallRules: [{6BF4839A-6BF3-4D82-8CC1-680F1C1E5650}] => (Allow) D:\Steam\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{C2A5D8EB-10DE-49CC-8E71-E68D880B7201}] => (Allow) D:\Steam\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [TCP Query User{16E471F1-63A3-4794-BCAC-B1FA43EB0349}C:\program files (x86)\java\jre1.8.0_31\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\java.exe
FirewallRules: [UDP Query User{E8A8C826-7613-48DD-A78B-CA7A5A5A8859}C:\program files (x86)\java\jre1.8.0_31\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\java.exe
FirewallRules: [TCP Query User{4EF32B40-B82A-4A69-A005-0F3BC83E300F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{5E3B1F9B-9C92-41E5-A813-2511E5B3FA20}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{5AFC942C-DEDA-4E85-B25B-ED8AEBEBE1A1}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{71A36913-18A1-4BBC-92AD-BD13D5BAAA39}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{5F65A3A2-600B-45C2-BC5F-173ABD2E552E}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{9B7E1A1D-5289-4FF6-B8AA-A5AE008B3100}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{DC8889A6-CC31-4737-BD83-285AF9867E43}] => (Allow) D:\Steam\steamapps\common\Penguins Arena\PenguinsArena.exe
FirewallRules: [{6B3C2E41-8E72-49C2-A60B-5CCC7A4480AB}] => (Allow) D:\Steam\steamapps\common\Penguins Arena\PenguinsArena.exe
FirewallRules: [{8FA0BBDA-8D99-45AC-85D0-6A7D342C2975}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{77D9DF24-26AE-4987-9012-70D79F848E25}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{C56AE735-BA77-4B28-BEEF-C58C3EC7746F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{90A7399F-60ED-43FA-8EE9-F1CB3C0CA2DA}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1F09E696-2160-4F41-AF5B-890BD7A3FB4D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{855A16B9-627F-4BB7-8570-4D9802901842}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{CB9ADAB6-DF10-4D07-AA8F-97E22048864E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{7CE5DE79-EF60-4CE8-81BD-87B6675AF00F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{8404396D-6CEF-4D9C-BAA6-B8E51995265C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{9F851E8A-55F8-48AD-8DDB-4AEA13471974}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{318AFF9B-75F5-4BE4-AD24-438471494270}] => (Allow) D:\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{D7A1B34D-B7D7-4536-9038-A60D328D0FBF}] => (Allow) D:\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [TCP Query User{278ED6EC-CCD5-4833-B667-988F019C8386}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{D055F1C7-2E00-4658-8C72-DAA42DC45186}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{17095B6F-45CD-422B-B81B-BA4DF366A74E}] => (Allow) D:\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe
FirewallRules: [{6E2CECCF-0A29-4C02-9DA0-903CF24B8668}] => (Allow) D:\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe
FirewallRules: [{BCB949B6-DBF6-433A-99C3-C35DDC33246E}] => (Allow) E:\Battlefield 2\BF2.exe
FirewallRules: [{9209A254-DEC8-4939-85A4-9832C7083049}] => (Allow) E:\Battlefield 2\BF2.exe
FirewallRules: [TCP Query User{F9C2B955-D2CA-4CC6-9CB1-04BEAABE85DC}E:\frags\srcds.exe] => (Allow) E:\frags\srcds.exe
FirewallRules: [UDP Query User{1B6285DC-E166-4EEC-8C98-A60CDA7195D3}E:\frags\srcds.exe] => (Allow) E:\frags\srcds.exe
FirewallRules: [{7401CDCD-9A39-4D7F-A43A-0A3996B200CE}] => (Block) E:\frags\srcds.exe
FirewallRules: [{E49F6730-8E28-49DC-89CD-E0A31798F84B}] => (Block) E:\frags\srcds.exe
FirewallRules: [{F537EA28-5D05-4D88-B079-335729A20190}] => (Allow) D:\Steam\steamapps\common\SwordsAndSoldiersHD\Swords and Soldiers Launcher.exe
FirewallRules: [{6E32BD8B-6E02-40F8-A693-BA1A9EDAEBDB}] => (Allow) D:\Steam\steamapps\common\SwordsAndSoldiersHD\Swords and Soldiers Launcher.exe
FirewallRules: [{76F83AF8-CC89-4DCB-88A0-283A6F670D72}] => (Allow) D:\Steam\steamapps\common\Solar 2\Solar2.exe
FirewallRules: [{DF8B7903-8F49-4E3C-8E49-EEC981B09E88}] => (Allow) D:\Steam\steamapps\common\Solar 2\Solar2.exe
FirewallRules: [{E11B3D34-CB73-4C1B-A30E-8B7D73E5210A}] => (Allow) D:\Steam\steamapps\common\Trine 2\trine2_launcher.exe
FirewallRules: [{9E8517D0-8886-47CA-BF1F-1C4D5D1309A3}] => (Allow) D:\Steam\steamapps\common\Trine 2\trine2_launcher.exe
FirewallRules: [{F3531A55-2AC7-40A5-B303-7E6ADC9FF985}] => (Allow) D:\Steam\steamapps\common\Rochard\Rochard.exe
FirewallRules: [{5961D8B0-10B1-4970-BA8E-F32D12016533}] => (Allow) D:\Steam\steamapps\common\Rochard\Rochard.exe
FirewallRules: [{D2CA697A-453E-4D47-B903-953ACD94B8D7}] => (Allow) D:\Steam\steamapps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{4BDA4CA7-A07C-43F0-B75F-9AEE76DA7B3F}] => (Allow) D:\Steam\steamapps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{70FDECD6-CC4D-48F7-B2F8-CBDBE88F95DE}] => (Allow) D:\Steam\steamapps\common\POSTAL2Complete\ShareThePain\System\Postal2MP.exe
FirewallRules: [{436A118B-F77B-44F0-B754-B30125CB1FB8}] => (Allow) D:\Steam\steamapps\common\POSTAL2Complete\ShareThePain\System\Postal2MP.exe
FirewallRules: [TCP Query User{D8CCD002-72BC-4DBC-9F4E-1D05B4A24D26}C:\users\ash\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\ash\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{86D0C743-5A3D-4C09-816C-1C5848D4E5E1}C:\users\ash\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\ash\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{371FA2BD-B3F6-4538-A0A5-A5854617EFBA}] => (Allow) D:\Steam\steamapps\common\Space\spacegame\Binaries\Win64\spacegame-Win64-Shipping.exe
FirewallRules: [{8D91996F-1D76-4D70-B2DD-4CB54429D889}] => (Allow) D:\Steam\steamapps\common\Space\spacegame\Binaries\Win64\spacegame-Win64-Shipping.exe
FirewallRules: [{BA7785A7-D575-49AE-AE25-43C9C6F24CEC}] => (Allow) D:\Steam\steamapps\common\narcissu2\narci2.exe
FirewallRules: [{DDF5D9A1-5DDF-46E4-9F06-390248DF76B1}] => (Allow) D:\Steam\steamapps\common\narcissu2\narci2.exe
FirewallRules: [{43ABFA35-86CE-463D-8380-F741A7EE15F1}] => (Allow) D:\Steam\steamapps\common\Speedball 2 HD\Speedball2_steam.exe
FirewallRules: [{956516E0-C0BA-4F2D-ACB8-241676353036}] => (Allow) D:\Steam\steamapps\common\Speedball 2 HD\Speedball2_steam.exe
FirewallRules: [{FF8755F8-3621-4340-B8A7-84C3F0D50A7B}] => (Allow) D:\Steam\steamapps\common\POSTAL1\Postal Plus.exe
FirewallRules: [{2F5DA145-55EE-4DE4-94B4-7D8624F5D1D8}] => (Allow) D:\Steam\steamapps\common\POSTAL1\Postal Plus.exe
FirewallRules: [{872BE437-8ABC-4B56-A64F-D5F3ADE073F9}] => (Allow) D:\Steam\steamapps\common\Dark Messiah Might and Magic Single Player\mm.exe
FirewallRules: [{4DE6F54E-1C16-433C-A64D-0EBB19719E61}] => (Allow) D:\Steam\steamapps\common\Dark Messiah Might and Magic Single Player\mm.exe
FirewallRules: [{E95A1889-0D8D-4B2A-BD94-849649ADB707}] => (Allow) D:\Steam\steamapps\common\strife\bin\strife.exe
FirewallRules: [{3512E594-C272-40EF-80E9-94EA45419302}] => (Allow) D:\Steam\steamapps\common\strife\bin\strife.exe
FirewallRules: [{40D6C44E-2CA5-44F7-86CD-D5A6C8068DED}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{8385E264-3145-4997-B1A0-E768F06306A9}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [TCP Query User{8759FB4C-9889-4259-B9AC-876D10F83F52}E:\tera\games\deu_deu\tera\tera-launcher.exe] => (Allow) E:\tera\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [UDP Query User{C66A5963-259A-4DC6-AD81-493DE3AB7DC4}E:\tera\games\deu_deu\tera\tera-launcher.exe] => (Allow) E:\tera\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{94EC1524-DFB1-4AC4-9DD5-94CF24AD6CAE}] => (Block) E:\tera\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{14B57559-4C07-4853-BE36-639D666400EF}] => (Block) E:\tera\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{35DB9692-ABBA-4C84-99DC-9D87934E9934}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{2B0D62E0-EFB6-4B80-B067-8C5496E53ABE}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{FADC884E-8DCF-48BB-BA66-01E79A64EDE1}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{0A84CEF0-8797-45EF-AB99-C7441A4A60BE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{FB5C00C7-F948-4548-8837-E1718AB09980}] => (Allow) D:\Steam\steamapps\common\Knights of Pen and Paper\knightspp.exe
FirewallRules: [{BB66C0CA-5F0F-42AE-8C93-D82D7FA13E43}] => (Allow) D:\Steam\steamapps\common\Knights of Pen and Paper\knightspp.exe
FirewallRules: [{8C72D48A-6E0C-41E0-A13C-ADBD7C02FE00}] => (Allow) D:\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{F1C13529-3952-4308-9170-C551BB55FD4E}] => (Allow) D:\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{B11CD40D-9590-4F49-91DB-9CEFD40D0760}] => (Allow) D:\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{59AA5E00-2C01-4BCF-BF95-EC3ACC16D483}] => (Allow) D:\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{96FC3A5E-3199-47BE-99B4-CBFC265DB10D}] => (Allow) D:\Steam\steamapps\common\StuntMANIA Reloaded\StuntMANIA Reloaded.exe
FirewallRules: [{45C4B5A9-4BAD-4CF8-A8B9-29058BBBEEC1}] => (Allow) D:\Steam\steamapps\common\StuntMANIA Reloaded\StuntMANIA Reloaded.exe
FirewallRules: [{4C7125A9-84A1-40B1-8ED3-B52D03430F3B}] => (Allow) D:\Steam\steamapps\common\Crash Drive 2\Crash Drive 2.exe
FirewallRules: [{7F80C50C-D90F-4AD1-A2F1-D3E7FD700212}] => (Allow) D:\Steam\steamapps\common\Crash Drive 2\Crash Drive 2.exe
FirewallRules: [{7B3ABA29-07B5-461A-99B0-377793FFC148}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{EE9AED55-5E53-4A5E-BEB1-295EB571E8DC}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{84364D07-24CB-44C2-90F2-363BEF358FBD}] => (Allow) D:\Steam\steamapps\common\Reload\reload.exe
FirewallRules: [{D09017DD-B8F2-4052-9EE3-93A678A846D3}] => (Allow) D:\Steam\steamapps\common\Reload\reload.exe
FirewallRules: [{B4F76244-CE54-4551-B059-01A4B209A0E8}] => (Allow) D:\Steam\steamapps\common\DuckTales Remastered\executable\DuckTales.exe
FirewallRules: [{34509193-9982-41A2-A8B7-39547222E5FA}] => (Allow) D:\Steam\steamapps\common\DuckTales Remastered\executable\DuckTales.exe
FirewallRules: [{CCC458EE-F679-4673-9D7D-23150E211DE2}] => (Allow) D:\Steam\steamapps\common\Strife\strife-ve.exe
FirewallRules: [{6F99CA29-EA0D-4066-8E31-AFEAE1398BA8}] => (Allow) D:\Steam\steamapps\common\Strife\strife-ve.exe
FirewallRules: [{10F883B8-2B69-4FC1-ABEC-942518CAD4A9}] => (Allow) D:\Steam\steamapps\common\A Bird Story\A Bird Story\A Bird Story.exe
FirewallRules: [{541D7353-88B2-4315-9248-9FFEC4518DB4}] => (Allow) D:\Steam\steamapps\common\A Bird Story\A Bird Story\A Bird Story.exe
FirewallRules: [{6B3A1CAF-D30F-4FDD-A622-F90457B1474E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B89EA73F-BC2A-423E-8235-8B482CC6CC41}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{85120868-79DF-40C4-966F-8D4C0040355E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{1D7F7518-32E1-4FF0-9E52-E85F270331F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3A6ADB22-AF09-44EB-A3D3-71A9ED8FFD34}] => (Allow) D:\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe
FirewallRules: [{1D4CB479-95CB-4D7D-A2CB-F3F673458E45}] => (Allow) D:\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe
FirewallRules: [{1097BB75-3BEA-471A-9DC3-DF7BF7F91A13}] => (Allow) D:\Steam\steamapps\common\SirYouAreBeingHunted\x64\sir.exe
FirewallRules: [{8FC2DB1C-B7F0-44F8-9031-B8FBCE9BFC33}] => (Allow) D:\Steam\steamapps\common\SirYouAreBeingHunted\x64\sir.exe
FirewallRules: [{8E92CB58-A180-4A4B-94EC-6F9A7FCDC9B6}] => (Allow) D:\Steam\steamapps\common\SirYouAreBeingHunted\x86\sir.exe
FirewallRules: [{1E0DC451-9DC3-4640-8F70-26D1B4364199}] => (Allow) D:\Steam\steamapps\common\SirYouAreBeingHunted\x86\sir.exe
FirewallRules: [TCP Query User{DCF6C466-69D5-4819-92FF-FEC3C2C854C2}C:\program files (x86)\steamlibrary\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) C:\program files (x86)\steamlibrary\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe
FirewallRules: [UDP Query User{017F6CD6-0644-4878-B1E4-FDCE0EB5CAA7}C:\program files (x86)\steamlibrary\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) C:\program files (x86)\steamlibrary\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe
FirewallRules: [{B2553398-CB94-4D84-BEED-E0870CB75E4B}] => (Allow) D:\Steam\steamapps\common\RaceTheSun\RaceTheSun.exe
FirewallRules: [{0F6EDA3E-388C-4728-8C91-830D3830630D}] => (Allow) D:\Steam\steamapps\common\RaceTheSun\RaceTheSun.exe
FirewallRules: [{82B5BAF3-5A93-47E9-8C9D-76E701EE433F}] => (Allow) C:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe
FirewallRules: [{429A4550-0770-4E28-851F-8EE69B82D60F}] => (Allow) C:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe
FirewallRules: [{309F90D1-8F67-440E-8BC9-9A10830366CD}] => (Allow) D:\Steam\steamapps\common\Neighbours from Hell\bin\game.exe
FirewallRules: [{EB5ED2B2-A713-4408-8CBE-E9257B766F8F}] => (Allow) D:\Steam\steamapps\common\Neighbours from Hell\bin\game.exe
FirewallRules: [{02E13179-942C-4AB4-A8B8-B9CA7DA7B59A}] => (Allow) D:\Steam\steamapps\common\Dark Arcana The Carnival\DarkArcana_TheCarnival.exe
FirewallRules: [{E7BC9E2B-5B04-4589-B1B7-BD2D40B4CAFA}] => (Allow) D:\Steam\steamapps\common\Dark Arcana The Carnival\DarkArcana_TheCarnival.exe
FirewallRules: [{F9229168-CECB-49A7-B5B8-C77B596C84BF}] => (Allow) D:\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{30F94A7B-A0BB-46F5-9F51-E343C9FECA58}] => (Allow) D:\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{FD9CCDCC-3BD2-4CEE-A7FF-401B68830D99}] => (Allow) D:\Steam\steamapps\common\Survivalist\Survivalist.exe
FirewallRules: [{2771F5B1-2DDC-4FD5-A5F9-C8B25A731B2F}] => (Allow) D:\Steam\steamapps\common\Survivalist\Survivalist.exe
FirewallRules: [{B48A9071-452F-4FE9-B16C-75A5ED2E7634}] => (Allow) D:\Steam\steamapps\common\Lucius\Lucius.exe
FirewallRules: [{7ECBCF40-5DAB-426E-BDA4-DEAAA988C77D}] => (Allow) D:\Steam\steamapps\common\Lucius\Lucius.exe
FirewallRules: [{97C08E63-A718-484A-97CB-09B96766ACD6}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{508868FD-53A6-4CE2-8EA4-F03FB635726E}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe
FirewallRules: [TCP Query User{C6035252-C1BF-48CC-B7CE-9AB42A809238}C:\users\ash\desktop\rtmpdump-2.3\rtmpgw.exe] => (Block) C:\users\ash\desktop\rtmpdump-2.3\rtmpgw.exe
FirewallRules: [UDP Query User{D6B122E8-420E-4C79-9111-B68A53FF4AB8}C:\users\ash\desktop\rtmpdump-2.3\rtmpgw.exe] => (Block) C:\users\ash\desktop\rtmpdump-2.3\rtmpgw.exe
FirewallRules: [{86ED79BF-1693-4540-B867-7C6DC138E0E0}] => (Allow) C:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{0FC25BB8-6B94-464C-B6AA-7F0E4E070849}] => (Allow) C:\Program Files (x86)\SteamLibrary\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{25F0F3D6-2B16-4162-8D36-B340312F2C56}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{F20DA68A-49FB-4C9F-AE5F-040E93E3F665}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{E2A9589B-EAF7-460E-B8E5-92E82D7C2D22}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{69B28CFD-E247-4DF8-89F6-37F32F772871}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{A6787E1A-2273-4323-A1E6-EDED94B24CFA}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{6ABE5B5F-B143-4D82-9DBC-1C53C98F8FAC}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{6A82008E-C4B5-4F55-9BF3-402E3FA49E9B}] => (Allow) D:\Steam\steamapps\common\rFactor\rFactor.exe
FirewallRules: [{4F694182-D503-4DA7-9BE8-119C46D87CC9}] => (Allow) D:\Steam\steamapps\common\rFactor\rFactor.exe
FirewallRules: [{FBE287EE-F818-418E-9414-1729B72633FF}] => (Allow) D:\Steam\steamapps\common\rFactor\rF Config.exe
FirewallRules: [{C4B609E0-C5A2-4CC5-9CF5-E36016A6C383}] => (Allow) D:\Steam\steamapps\common\rFactor\rF Config.exe
FirewallRules: [{240DCCBE-65B0-4ABD-811F-538256A78EE5}] => (Allow) D:\Steam\steamapps\common\rFactor\rFactor Dedicated.exe
FirewallRules: [{6198DB56-D9F1-4BB6-9BA9-B147B6CA064B}] => (Allow) D:\Steam\steamapps\common\rFactor\rFactor Dedicated.exe
FirewallRules: [{80CD2C47-6568-4E0D-9237-02C27F7CA364}] => (Allow) D:\Steam\steamapps\common\Neighbours from Hell 2\bin\game.exe
FirewallRules: [{0160DE55-7225-48F9-84C4-C17B6249814E}] => (Allow) D:\Steam\steamapps\common\Neighbours from Hell 2\bin\game.exe
FirewallRules: [{39BA98CF-BE12-49F0-A603-B52C5ACEFAF4}] => (Allow) D:\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe
FirewallRules: [{082C9721-0DEA-4658-ACE8-83D52B3F290C}] => (Allow) D:\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe
FirewallRules: [{A9B897BA-7F43-4A2B-A7DF-96261E75A675}] => (Allow) D:\Steam\steamapps\common\ToyboxTurbos\ToyboxTurbos.exe
FirewallRules: [{58CF6D74-0BD4-410E-BE6E-FFBAE37CBD62}] => (Allow) D:\Steam\steamapps\common\ToyboxTurbos\ToyboxTurbos.exe
FirewallRules: [{E33F5CB3-30C6-4977-8D52-BD08980A38F8}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{8E5513A4-71E0-4711-8F80-EAFCC92C595C}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{B788B52B-87D8-4CE4-8DDF-8A5F3F16AB74}] => (Allow) D:\Steam\steamapps\common\Hatred\Hatred\Binaries\HatredConfig.exe
FirewallRules: [{2290225F-E10A-449C-B254-CE93E7F85AE5}] => (Allow) D:\Steam\steamapps\common\Hatred\Hatred\Binaries\HatredConfig.exe
FirewallRules: [TCP Query User{E35ACB40-CFF8-47E5-A6FC-34302ECFA894}D:\steam\steamapps\common\race 07\race_steam.exe] => (Allow) D:\steam\steamapps\common\race 07\race_steam.exe
FirewallRules: [UDP Query User{28938FEA-46B5-4D13-B1BE-0EAECDEF66EB}D:\steam\steamapps\common\race 07\race_steam.exe] => (Allow) D:\steam\steamapps\common\race 07\race_steam.exe
FirewallRules: [{FD92DFD3-D4A3-4DAD-9FF5-E28039A182CA}] => (Allow) D:\Steam\steamapps\common\Showerdad\SHOWERDAD.exe
FirewallRules: [{686DB44E-D425-4868-AD1B-751742C006B4}] => (Allow) D:\Steam\steamapps\common\Showerdad\SHOWERDAD.exe
FirewallRules: [{F9009A4A-EDF5-44DE-BB4F-4F8D78062813}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{FD7105A9-FD72-4C21-B93D-B85ACBD076FE}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{52232633-85F3-4224-A89C-4DEAD04342C4}] => (Allow) D:\Steam\steamapps\common\Overlord\Overlord.exe
FirewallRules: [{8951D866-4D62-477D-B121-7F2CF1D88D2B}] => (Allow) D:\Steam\steamapps\common\Overlord\Overlord.exe
FirewallRules: [{0BF72515-8FC5-44C2-BD15-5657C5474ED0}] => (Allow) D:\Steam\steamapps\common\Overlord\Config.exe
FirewallRules: [{B1D51FBD-4DEE-42BC-8DA8-94CD152BDE20}] => (Allow) D:\Steam\steamapps\common\Overlord\Config.exe
FirewallRules: [{2AF35C0F-30BD-4314-9F4B-69C90C2AEEA7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D7C15BAA-679C-4319-B273-CD537F95C33A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E9CFA200-7323-4DFC-BC04-3308DC002C52}] => (Allow) D:\Steam\steamapps\common\Mind Snares Alices Journey\MindSnares.exe
FirewallRules: [{B1FFABCA-A79B-47D5-A06C-F10CCE8B7D9E}] => (Allow) D:\Steam\steamapps\common\Mind Snares Alices Journey\MindSnares.exe
FirewallRules: [{57868ACC-34A7-40A8-B161-042685C71030}] => (Allow) D:\Steam\steamapps\common\Torchlight\Torchlight.exe
FirewallRules: [{3AE2A778-0C3C-4DF6-B140-F062EFC14283}] => (Allow) D:\Steam\steamapps\common\Torchlight\Torchlight.exe
FirewallRules: [{6595ECDB-FF8C-44F0-8F33-75DD065F946C}] => (Allow) D:\Steam\steamapps\common\Hatred\Hatred\Binaries\Win64\Hatred-Win64-Shipping.exe
FirewallRules: [{CF0D06BD-3433-4A62-8DDA-6BF1CE6DC38D}] => (Allow) D:\Steam\steamapps\common\Hatred\Hatred\Binaries\Win64\Hatred-Win64-Shipping.exe
FirewallRules: [{457395EF-5404-486C-917C-C7C9C74F1404}] => (Allow) D:\Steam\steamapps\common\Anomaly Warzone Earth\AnomalyWarzoneEarth.exe
FirewallRules: [{1911B3AF-C683-475D-94C8-4CC2B30DC009}] => (Allow) D:\Steam\steamapps\common\Anomaly Warzone Earth\AnomalyWarzoneEarth.exe
FirewallRules: [TCP Query User{746140FC-D4CC-450B-BCC6-01AA8E8A3F01}C:\program files (x86)\vanity pack\burnout(tm) paradise the ultimate box\burnoutparadise.exe] => (Block) C:\program files (x86)\vanity pack\burnout(tm) paradise the ultimate box\burnoutparadise.exe
FirewallRules: [UDP Query User{9442A455-94FB-4CDE-96A2-D762D1BD3B83}C:\program files (x86)\vanity pack\burnout(tm) paradise the ultimate box\burnoutparadise.exe] => (Block) C:\program files (x86)\vanity pack\burnout(tm) paradise the ultimate box\burnoutparadise.exe
FirewallRules: [{30EB753E-4B5D-4538-A9C8-BAA26F2F4E31}] => (Allow) D:\Steam\steamapps\common\Desert Thunder\System\DT.exe
FirewallRules: [{122EC7DC-C5FF-4F74-9C34-830F6212F238}] => (Allow) D:\Steam\steamapps\common\Desert Thunder\System\DT.exe
FirewallRules: [TCP Query User{791D6DF2-7234-422E-92C1-AB6EDDC0E963}E:\heroes of the storm\versions\base39271\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base39271\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B3F0C253-59F4-4FE9-86F9-F91A517CDEEB}E:\heroes of the storm\versions\base39271\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base39271\heroesofthestorm_x64.exe
FirewallRules: [{A0465DB8-FEFF-4374-8AFA-D122DFDC0C69}] => (Allow) D:\Steam\steamapps\common\Colin McRae Rally\CMR.exe
FirewallRules: [{DEF4723E-C387-44F7-A585-EDA1267135A6}] => (Allow) D:\Steam\steamapps\common\Colin McRae Rally\CMR.exe
FirewallRules: [TCP Query User{2C2F255B-1C88-473C-B86F-9B189BF14187}E:\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe] => (Block) E:\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4EC7042C-C2C5-4B70-8237-EA3899500451}E:\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe] => (Block) E:\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{7A08C5F5-3E09-4E75-8F40-23EE99C57E44}E:\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe] => (Block) E:\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{043D65C1-68B8-47A2-9462-E25CB29416F5}E:\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe] => (Block) E:\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8F4228E5-C1C5-4FC9-AB28-075282CA677C}D:\steam\steamapps\common\star wars empire at war\gamedata\sweaw.exe] => (Block) D:\steam\steamapps\common\star wars empire at war\gamedata\sweaw.exe
FirewallRules: [UDP Query User{1322DB08-E4B2-4E93-91C7-E2CEEA799F3A}D:\steam\steamapps\common\star wars empire at war\gamedata\sweaw.exe] => (Block) D:\steam\steamapps\common\star wars empire at war\gamedata\sweaw.exe
FirewallRules: [{181193C4-7A85-4C38-BB79-9128C5B36E2F}] => (Allow) D:\Steam\steamapps\common\Gemini Rue\reslists\Gemini Rue.exe
FirewallRules: [{C34209A7-D6F2-491A-8AF4-89FC434BE8A7}] => (Allow) D:\Steam\steamapps\common\Gemini Rue\reslists\Gemini Rue.exe
FirewallRules: [{5BCCC9EE-9C4A-40CA-8B94-878AA2F6B3A9}] => (Allow) D:\Steam\steamapps\common\Gemini Rue\reslists\winsetup.exe
FirewallRules: [{F21CC167-3B0F-4EF2-992A-6EA247828CCE}] => (Allow) D:\Steam\steamapps\common\Gemini Rue\reslists\winsetup.exe
FirewallRules: [{B60CEFE5-03BC-48D1-8D6C-BA1F4B6FEB01}] => (Allow) D:\Steam\steamapps\common\Howler\Howler.exe
FirewallRules: [{6B5349BF-255C-4E07-84DF-5D1EB2AFA019}] => (Allow) D:\Steam\steamapps\common\Howler\Howler.exe
FirewallRules: [TCP Query User{39D9D7AF-B58E-4DED-931B-9F3736BCE9B6}D:\steam\steamapps\common\siryouarebeinghunted\x64\multiplayer\sir.exe] => (Allow) D:\steam\steamapps\common\siryouarebeinghunted\x64\multiplayer\sir.exe
FirewallRules: [UDP Query User{593ECD56-1D74-42B4-9C10-C3CCB1038AA6}D:\steam\steamapps\common\siryouarebeinghunted\x64\multiplayer\sir.exe] => (Allow) D:\steam\steamapps\common\siryouarebeinghunted\x64\multiplayer\sir.exe
FirewallRules: [{0407DD08-5452-4EAC-85A6-73F5CB094F00}] => (Allow) D:\Steam\steamapps\common\EnemyMind\EnemyMind.exe
FirewallRules: [{EFC95DA4-F90D-45D0-8F8F-F6CB75116BD6}] => (Allow) D:\Steam\steamapps\common\EnemyMind\EnemyMind.exe
FirewallRules: [TCP Query User{226BB560-D357-4656-A3EC-31746CC5E6DC}E:\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{37D5E56D-3717-4EAA-9B6D-98AAF439B0D4}E:\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe
FirewallRules: [{39BA6BA8-CA3B-404B-9F4A-12F13BB8DA7F}] => (Allow) D:\Steam\steamapps\common\Uncanny Valley\PPA2IP.exe
FirewallRules: [{4618A927-D0D8-4091-A8CA-DF0CBA4ECF90}] => (Allow) D:\Steam\steamapps\common\Uncanny Valley\PPA2IP.exe
FirewallRules: [{E02EF774-0816-4479-B876-A438EF8AADCF}] => (Allow) D:\Steam\steamapps\common\PizzaExpress\PizzaExpress.exe
FirewallRules: [{92B5AEFA-AFF4-4CDB-834D-7135305483EB}] => (Allow) D:\Steam\steamapps\common\PizzaExpress\PizzaExpress.exe
FirewallRules: [{979CE66C-DCD0-44BB-AA9D-5EA49987DC87}] => (Allow) D:\Steam\steamapps\common\NaissanceE\Binaries\Win32\UDK.exe
FirewallRules: [{452F5CE4-D155-4731-A532-6DD0A2D3809C}] => (Allow) D:\Steam\steamapps\common\NaissanceE\Binaries\Win32\UDK.exe
FirewallRules: [{48FD8EDC-1F9F-42F7-BB33-78BC70632AB4}] => (Allow) D:\Steam\steamapps\common\Gunpoint\Gunpoint.exe
FirewallRules: [{FD348711-F2B8-43E0-B55C-9C5FD5BAB8D6}] => (Allow) D:\Steam\steamapps\common\Gunpoint\Gunpoint.exe
FirewallRules: [{51BB4394-F2C5-49C5-83FE-4050F1565EF4}] => (Allow) D:\Steam\steamapps\common\Missing Translation\nw.exe
FirewallRules: [{854824F1-22D5-46DA-BF3C-FB020C9A8948}] => (Allow) D:\Steam\steamapps\common\Missing Translation\nw.exe
FirewallRules: [{D6944C3B-74C8-4264-8C40-1A9120158AA2}] => (Allow) D:\Steam\steamapps\common\Universe Sandbox\Universe Sandbox.exe
FirewallRules: [{35A71018-0D34-44E7-82FF-0432896549C5}] => (Allow) D:\Steam\steamapps\common\Universe Sandbox\Universe Sandbox.exe
FirewallRules: [TCP Query User{2687CFFC-CA53-4C79-989F-33C1B5C2249B}E:\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{1073D6E7-072B-4E09-AE41-C079D14CF112}E:\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe
FirewallRules: [{9632DF91-34CE-4271-B63A-1A48E7FBE75B}] => (Allow) D:\Steam\steamapps\common\Retro City Rampage\retrocityrampage.exe
FirewallRules: [{415469C8-01DF-4E2F-840E-311EA1A59BCF}] => (Allow) D:\Steam\steamapps\common\Retro City Rampage\retrocityrampage.exe
FirewallRules: [{25A275A2-1402-4B7C-9244-7921713F64BC}] => (Allow) D:\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{12450080-3BD8-4665-B037-317C2932F358}] => (Allow) D:\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{2463EDD3-BFA4-46A9-A024-DEF918B7A900}] => (Allow) D:\Steam\steamapps\common\Vertiginous Golf\vgolf.exe
FirewallRules: [{1EBCB5EF-4FB1-4313-919D-B4EC9A73F2C6}] => (Allow) D:\Steam\steamapps\common\Vertiginous Golf\vgolf.exe
FirewallRules: [TCP Query User{DFBD923F-DC73-4EAB-BB62-89A05761B0FF}E:\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E8E71334-3BA2-45E6-81DF-F4B5084FB867}E:\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [{DDCC17AC-9AD2-4D04-B732-5BD597619AF5}] => (Allow) D:\Steam\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{6F8EB7E6-5B36-4E83-8090-E1C72963D4CC}] => (Allow) D:\Steam\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{DDD2083C-E708-45E2-85D8-4B146E2BD0CD}] => (Allow) D:\Steam\steamapps\common\Star Wars Jedi Knight\JK.EXE
FirewallRules: [{F507EB89-B2D6-424A-97D4-98B42E41B72A}] => (Allow) D:\Steam\steamapps\common\Star Wars Jedi Knight\JK.EXE
FirewallRules: [{8E645A63-6F91-4739-BA78-63E43BADFDC0}] => (Allow) D:\Steam\steamapps\common\Dark Forces\DosBox\dosbox.exe
FirewallRules: [{68283490-E422-49C0-8F3F-FDA2F1BD55FF}] => (Allow) D:\Steam\steamapps\common\Dark Forces\DosBox\dosbox.exe
FirewallRules: [TCP Query User{AA8C9ACE-2F58-4BE0-8CCE-7C3F6BAD9408}D:\steam\steamapps\common\rise of nations\rise.exe] => (Allow) D:\steam\steamapps\common\rise of nations\rise.exe
FirewallRules: [UDP Query User{8BC21A03-BF07-494C-918C-6E87631ADF9D}D:\steam\steamapps\common\rise of nations\rise.exe] => (Allow) D:\steam\steamapps\common\rise of nations\rise.exe
FirewallRules: [{5C2AB1EA-F144-43CB-81B3-2DB8E0C1230A}] => (Allow) D:\Steam\steamapps\common\SUPER DISTRO\SUPERDITROXXL.exe
FirewallRules: [{B85B20DF-9A58-4824-B873-B03E4F78F32B}] => (Allow) D:\Steam\steamapps\common\SUPER DISTRO\SUPERDITROXXL.exe
FirewallRules: [{6F4EDF54-BC0D-49B6-B6F7-E66D3239CB9E}] => (Allow) D:\Steam\steamapps\common\Jet Set Radio\jsrsetup.exe
FirewallRules: [{E178C7F8-AAAB-4EBF-A3CD-7C1436CD942A}] => (Allow) D:\Steam\steamapps\common\Jet Set Radio\jsrsetup.exe
FirewallRules: [{C5F5302A-2B2B-4608-9C27-2AF3CA040DF4}] => (Allow) D:\Steam\steamapps\common\Life is Hard\LifeIsHard.exe
FirewallRules: [{609AA3BF-D5D2-4FFC-8269-8BA0025E958D}] => (Allow) D:\Steam\steamapps\common\Life is Hard\LifeIsHard.exe
FirewallRules: [TCP Query User{2947FFD1-7A06-4572-BCF9-69F4C15E85A3}E:\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{90E35FA4-F181-443C-B9A7-018A922E0894}E:\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{0A423927-32DE-43DC-9DD0-C5EFB421C71F}D:\steam\steamapps\common\super distro\engine\binaries\win32\ue4game-win32-shipping.exe] => (Block) D:\steam\steamapps\common\super distro\engine\binaries\win32\ue4game-win32-shipping.exe
FirewallRules: [UDP Query User{99E5686F-D9CF-44BD-95C9-41B7B72D903E}D:\steam\steamapps\common\super distro\engine\binaries\win32\ue4game-win32-shipping.exe] => (Block) D:\steam\steamapps\common\super distro\engine\binaries\win32\ue4game-win32-shipping.exe
FirewallRules: [TCP Query User{233D346A-1283-427C-8ADD-D0E5A2AD0CB9}C:\program files (x86)\vso\vso downloader\4\vsodownloader.exe] => (Block) C:\program files (x86)\vso\vso downloader\4\vsodownloader.exe
FirewallRules: [UDP Query User{E4B2523B-87B9-4C6B-8277-AFA5EF8A536A}C:\program files (x86)\vso\vso downloader\4\vsodownloader.exe] => (Block) C:\program files (x86)\vso\vso downloader\4\vsodownloader.exe
FirewallRules: [{DCE9DC28-89B9-4E77-A160-9B90BB5E3DC2}] => (Allow) D:\Steam\steamapps\common\WormsGolf2010\WormsCrazyGolf.exe
FirewallRules: [{88484208-DF46-4C9A-A1F9-D549892F40B6}] => (Allow) D:\Steam\steamapps\common\WormsGolf2010\WormsCrazyGolf.exe
FirewallRules: [{8DCD56E6-B0AB-42B6-83CA-B9ECC1B496B2}] => (Allow) D:\Steam\steamapps\common\Toy Soldiers Complete\Game.exe
FirewallRules: [{C0A0D4EB-3B8C-4DB4-8A03-370345B8A1A9}] => (Allow) D:\Steam\steamapps\common\Toy Soldiers Complete\Game.exe
FirewallRules: [TCP Query User{A51F34E8-E769-4FCD-9E58-CF9DA520A6F4}E:\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B8BDCBE3-8F70-49F8-B2B7-94499431606F}E:\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe
FirewallRules: [{CF6EEBB1-64D9-43C5-A083-969A1D7F556E}] => (Allow) D:\Steam\steamapps\common\Gods Will Be Watching\gwbw.exe
FirewallRules: [{E1EBF6F5-DEDA-4461-8658-344CFF193C80}] => (Allow) D:\Steam\steamapps\common\Gods Will Be Watching\gwbw.exe
FirewallRules: [{2A025EF1-08E2-45C2-808B-3953EDFDC57F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{44761ABC-F1CF-4D3D-A363-F94E88304D5D}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{B7BEB34B-81A6-4454-80BE-F2AB4A22DDFA}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{C8A120E5-2883-417E-AB36-F085E4F94DFB}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [TCP Query User{DD92E2E2-C1ED-4D2B-B829-1AB770FBC9BC}J:\rar$exa0.374\rtmpdump-2.3\rtmpgw.exe] => (Block) J:\rar$exa0.374\rtmpdump-2.3\rtmpgw.exe
FirewallRules: [UDP Query User{AEC602DC-C8AC-4A30-8069-D74FF76EB4AB}J:\rar$exa0.374\rtmpdump-2.3\rtmpgw.exe] => (Block) J:\rar$exa0.374\rtmpdump-2.3\rtmpgw.exe
FirewallRules: [{2520C710-8133-4910-98BF-E8C218B3F67F}] => (Allow) D:\Steam\steamapps\common\Prominence Poker\Prominence\Binaries\Win64\Prominence-Win64-Shipping.exe
FirewallRules: [{65D9C353-DF6C-44CC-9A8F-091AE3F376F8}] => (Allow) D:\Steam\steamapps\common\Prominence Poker\Prominence\Binaries\Win64\Prominence-Win64-Shipping.exe
FirewallRules: [TCP Query User{114D3555-EE0F-4CDB-B5DC-94078F24D7E1}E:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) E:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [UDP Query User{2B1EBB8E-02FC-4B79-BCCD-AD2A5302B722}E:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) E:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [TCP Query User{93733322-6993-46B5-B26E-C5A541FAF5B4}E:\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B132D93E-FFF3-4C33-96B2-F8E08110CFB5}E:\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{01511E7E-4AD8-407F-A7B6-A3A5A401D873}D:\steam\steamapps\common\a story about my uncle\binaries\win32\asamu-win32-shipping.exe] => (Block) D:\steam\steamapps\common\a story about my uncle\binaries\win32\asamu-win32-shipping.exe
FirewallRules: [UDP Query User{2817C026-282A-4225-A20B-0DE5A08C557B}D:\steam\steamapps\common\a story about my uncle\binaries\win32\asamu-win32-shipping.exe] => (Block) D:\steam\steamapps\common\a story about my uncle\binaries\win32\asamu-win32-shipping.exe
FirewallRules: [{7CCAC8E1-18D8-47F7-A059-51DA864E2820}] => (Allow) D:\Steam\steamapps\common\Elizabeth Find M.D. - Diagnosis Mystery - Season 2\Elizabeth Find Season 2.exe
FirewallRules: [{B18F4908-2DBF-4A42-97CD-0109852EE592}] => (Allow) D:\Steam\steamapps\common\Elizabeth Find M.D. - Diagnosis Mystery - Season 2\Elizabeth Find Season 2.exe
FirewallRules: [{EF8D022E-921F-44DF-9D5D-E5879E53BFB8}] => (Allow) D:\Steam\steamapps\common\Whos Your Daddy\WhosYourDaddy.exe
FirewallRules: [{2CFC7BC1-76C0-48AC-A74B-AD1604CE9D8F}] => (Allow) D:\Steam\steamapps\common\Whos Your Daddy\WhosYourDaddy.exe
FirewallRules: [{89D78504-AB0C-45CE-880D-6B525AA004CA}] => (Allow) D:\Steam\steamapps\common\Coffin Dodgers\CoffinDodgers.exe
FirewallRules: [{55D96F4F-2FE7-4021-9220-66F282957867}] => (Allow) D:\Steam\steamapps\common\Coffin Dodgers\CoffinDodgers.exe
FirewallRules: [{6B3D426C-8AEC-48E6-9F8B-55F89263932D}] => (Allow) D:\Steam\steamapps\common\Operation Flashpoint Red River\RedRiverLauncher.exe
FirewallRules: [{542D40F2-4956-40BB-932C-FA8C548AFC6D}] => (Allow) D:\Steam\steamapps\common\Operation Flashpoint Red River\RedRiverLauncher.exe
FirewallRules: [TCP Query User{3113502B-1381-49C0-872B-18FF1ECB0CCF}D:\steam\steamapps\common\operation flashpoint red river\redriver.exe] => (Allow) D:\steam\steamapps\common\operation flashpoint red river\redriver.exe
FirewallRules: [UDP Query User{81FCE500-74B1-4525-A939-D4BEAB6E7983}D:\steam\steamapps\common\operation flashpoint red river\redriver.exe] => (Allow) D:\steam\steamapps\common\operation flashpoint red river\redriver.exe
FirewallRules: [{F40936FC-12BE-42D7-963A-0AFD1E2DF04C}] => (Allow) D:\Steam\steamapps\common\Time Mysteries Inheritance Remastered\TimeMysteries_Inheritance.exe
FirewallRules: [{800B2CD3-C522-4452-B839-BBCE35F8F4B9}] => (Allow) D:\Steam\steamapps\common\Time Mysteries Inheritance Remastered\TimeMysteries_Inheritance.exe
FirewallRules: [{C666E552-4D18-4585-AC6C-469191497666}] => (Allow) D:\Steam\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{BAFC8A41-1BFC-40E4-8539-C10169D3C11E}] => (Allow) D:\Steam\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [TCP Query User{CBB7B683-3261-42D9-B94B-9EC9EF75C216}C:\program files (x86)\trinusvr\tgserver.exe] => (Allow) C:\program files (x86)\trinusvr\tgserver.exe
FirewallRules: [UDP Query User{9ED67E5A-46E0-4EB4-ADE7-7E4B4D907E8B}C:\program files (x86)\trinusvr\tgserver.exe] => (Allow) C:\program files (x86)\trinusvr\tgserver.exe
FirewallRules: [{38C84002-6B6A-42ED-A16F-A11EFAD0E84F}] => (Block) C:\program files (x86)\trinusvr\tgserver.exe
FirewallRules: [{CC59A308-66BE-40DB-89E1-A6AF1B454F21}] => (Block) C:\program files (x86)\trinusvr\tgserver.exe
FirewallRules: [TCP Query User{807F439C-6B7F-45DC-A7CD-9D2691987225}D:\steam\steamapps\common\astrokill\astrokill\binaries\win32\astrokill-win32-shipping.exe] => (Block) D:\steam\steamapps\common\astrokill\astrokill\binaries\win32\astrokill-win32-shipping.exe
FirewallRules: [UDP Query User{3852833D-50B4-4C6F-9729-73F92932E49D}D:\steam\steamapps\common\astrokill\astrokill\binaries\win32\astrokill-win32-shipping.exe] => (Block) D:\steam\steamapps\common\astrokill\astrokill\binaries\win32\astrokill-win32-shipping.exe
FirewallRules: [{BCA01F17-1528-499F-84D2-5B1024CF71CE}] => (Allow) D:\Steam\steamapps\common\Life is Hard\LifeIsHard_x64.exe
FirewallRules: [{38469625-863C-4447-B3A4-FA2482ACEC40}] => (Allow) D:\Steam\steamapps\common\Life is Hard\LifeIsHard_x64.exe
FirewallRules: [{51C38B89-72A8-4943-B44B-06D9995A2465}] => (Allow) D:\Steam\steamapps\common\WoodleTreeAdventures\WoodleTreeAdventures.exe
FirewallRules: [{E785E4E1-2B17-4DF5-B164-6AE77CD670DC}] => (Allow) D:\Steam\steamapps\common\WoodleTreeAdventures\WoodleTreeAdventures.exe
FirewallRules: [{2C86AA28-1D83-492A-84D6-12D1F2A8DA7F}] => (Allow) D:\Steam\steamapps\common\What'sunderyourblanket!\game.exe
FirewallRules: [{AC2BC334-DA06-45DA-BEBB-71932EFE5BC4}] => (Allow) D:\Steam\steamapps\common\What'sunderyourblanket!\game.exe
FirewallRules: [{D49C2F7E-E1BE-473F-8528-B123A3ACB55E}] => (Allow) D:\Steam\steamapps\common\Punch Club\Punch Club.exe
FirewallRules: [{9E35EEEC-7037-4E7C-9346-B6459EC836D7}] => (Allow) D:\Steam\steamapps\common\Punch Club\Punch Club.exe
FirewallRules: [{FD4EB799-3D20-45FC-AFA1-5BAD34A86F2C}] => (Allow) D:\Steam\steamapps\common\The Lion's Song\TLS.exe
FirewallRules: [{6AF70A72-9A0F-4E12-9715-7AC1E9E5B8BB}] => (Allow) D:\Steam\steamapps\common\The Lion's Song\TLS.exe
FirewallRules: [{3354A319-CC37-48EF-89CE-C1A17E3EA414}] => (Allow) D:\Steam\steamapps\common\Day of the Tentacle Remastered\Dott.exe
FirewallRules: [{A5C035D6-2A30-433B-BC7C-DA5F6F52F064}] => (Allow) D:\Steam\steamapps\common\Day of the Tentacle Remastered\Dott.exe
FirewallRules: [{9A638E2E-3637-4515-AD13-0C2F31B655ED}] => (Allow) D:\Steam\steamapps\common\Another World\anowor.exe
FirewallRules: [{C6FC8AE5-958E-4417-A55C-867DD55094C3}] => (Allow) D:\Steam\steamapps\common\Another World\anowor.exe
FirewallRules: [{9174FB58-D0AB-46CC-A4B8-07D0D0BABF34}] => (Allow) e:\Tera\gfl_client.exe
FirewallRules: [{19475512-9752-43D2-9502-64E9D0601B93}] => (Allow) D:\Steam\steamapps\common\Goosebumps\executable\goosebumps.exe
FirewallRules: [{69D27408-4084-4150-9AB5-04ECD7070056}] => (Allow) D:\Steam\steamapps\common\Goosebumps\executable\goosebumps.exe
FirewallRules: [{75E4ADB9-A48B-4D63-8062-9FEE25A4F687}] => (Allow) D:\Steam\steamapps\common\LEGO Harry Potter Years 5-7\harry2.exe
FirewallRules: [{D4AF4CE5-2FC1-40BB-AA1B-B9396321390C}] => (Allow) D:\Steam\steamapps\common\LEGO Harry Potter Years 5-7\harry2.exe
FirewallRules: [TCP Query User{A9DAE4F0-BB8A-46F5-B2A6-23F375167754}J:\rar$exa0.725\pokemon go live map.exe] => (Allow) J:\rar$exa0.725\pokemon go live map.exe
FirewallRules: [UDP Query User{CA56AF02-AC25-4A7E-8521-EE9AC65BBBD8}J:\rar$exa0.725\pokemon go live map.exe] => (Allow) J:\rar$exa0.725\pokemon go live map.exe
FirewallRules: [TCP Query User{81F64020-72BC-46D0-9617-E63C6F5BA087}J:\rar$exa0.825\pokemon go live map.exe] => (Allow) J:\rar$exa0.825\pokemon go live map.exe
FirewallRules: [UDP Query User{2FBAEAC7-C19F-44C5-BF3F-F41E89221D2C}J:\rar$exa0.825\pokemon go live map.exe] => (Allow) J:\rar$exa0.825\pokemon go live map.exe
FirewallRules: [{FFE56A46-CAC2-4428-9113-2231795A0C77}] => (Block) J:\rar$exa0.825\pokemon go live map.exe
FirewallRules: [{78808DB0-5C35-4BFB-808B-37049093B9E8}] => (Block) J:\rar$exa0.825\pokemon go live map.exe
FirewallRules: [{50B50EBA-6364-457D-98E7-2EA08E74FC51}] => (Allow) J:\memu\MEmu\MEmu.exe
FirewallRules: [{6B065533-E4DC-476B-8049-FA3D14196C92}] => (Allow) J:\memu\MEmu\MEmu.exe
FirewallRules: [{C80E945E-0F6E-4E66-9CDC-C8F9B8FD68CA}] => (Allow) E:\Video\DaVinci Resolve\Resolve.exe
FirewallRules: [{07627347-9678-4AB2-8ED5-F571E114DB48}] => (Allow) E:\Video\DaVinci Resolve\bmdpaneld.exe
FirewallRules: [{70DC0E95-BBF2-48F7-B57C-D7953F52E37A}] => (Allow) E:\Video\DaVinci Resolve\JLCooperPanelDaemon.exe
FirewallRules: [{D4DF1C5E-2D52-4938-BF85-B0624F782983}] => (Allow) E:\Video\DaVinci Resolve\EuphonixPanelDaemon.exe
FirewallRules: [{0BB6D853-2521-48C6-A480-AEB4381C7F3B}] => (Allow) E:\Video\DaVinci Resolve\TangentPanelDaemon.exe
FirewallRules: [{88D99451-AA3E-4A71-9C0C-9D4E485A1D12}] => (Allow) E:\Video\DaVinci Resolve\ElementsPanelDaemon.exe
FirewallRules: [{0EF0E3D1-2D58-4EA2-89DE-900A5144D7C8}] => (Allow) E:\Video\DaVinci Resolve\DPDecoder.exe
FirewallRules: [{37D23961-4F97-42BF-9FD6-BCCFFA1E5C38}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe
FirewallRules: [TCP Query User{A68EB409-22F5-43A8-ADDB-9E365917D9E8}C:\users\ash\desktop\nneu\necrobot.exe] => (Allow) C:\users\ash\desktop\nneu\necrobot.exe
FirewallRules: [UDP Query User{B98EE8E9-7CA3-4461-903C-EA01BDF370A1}C:\users\ash\desktop\nneu\necrobot.exe] => (Allow) C:\users\ash\desktop\nneu\necrobot.exe
FirewallRules: [{FAEBC464-4937-4DF1-8C67-A6EA3349AC4F}] => (Allow) C:\Program Files (x86)\PCTV Systems\TVCenter\TVCenter.exe
FirewallRules: [{0813BB9E-B987-4C98-B4BE-4BB886925F81}] => (Allow) C:\Program Files (x86)\Common Files\PCTV Systems\PVR\VideoControl.exe
FirewallRules: [{09F8BFC4-C7BD-4C65-ABCC-5264F3C50860}] => (Allow) C:\Program Files (x86)\Common Files\PCTV Systems\StreamingServer\StrmServer.exe
FirewallRules: [{593DF81B-AFFB-42C0-9D4A-A615B737762E}] => (Allow) LPort=1900
FirewallRules: [{74B5883E-CA57-4551-9172-C2AF407CECFE}] => (Allow) LPort=2869
FirewallRules: [{10962A7D-78F2-4242-A60B-93EB542CC4CB}] => (Allow) C:\Windows\ehome\ehrecvr.exe
FirewallRules: [TCP Query User{5F7854E3-3766-453B-9EF2-1ED9A629DE39}C:\users\ash\desktop\release\necrobot.exe] => (Allow) C:\users\ash\desktop\release\necrobot.exe
FirewallRules: [UDP Query User{42FCBBEC-D97C-4D5A-A3DD-F01C5066A645}C:\users\ash\desktop\release\necrobot.exe] => (Allow) C:\users\ash\desktop\release\necrobot.exe
FirewallRules: [{53D7202F-323D-40C1-801D-A8C16B6B7327}] => (Allow) D:\Steam\steamapps\common\Half dead\HalfDead.exe
FirewallRules: [{81C4F4FC-20C5-4488-8637-79F43DF0034D}] => (Allow) D:\Steam\steamapps\common\Half dead\HalfDead.exe
FirewallRules: [{D7224793-A942-4BB6-9D0E-A1CCCC9F99EE}] => (Allow) D:\Steam\steamapps\common\Party Hard\PartyHardGame.exe
FirewallRules: [{3F8AA6C6-170C-42B1-B32B-00AE432B15A3}] => (Allow) D:\Steam\steamapps\common\Party Hard\PartyHardGame.exe
FirewallRules: [{5EA28C14-FB58-488C-B3CF-9D7E01504D27}] => (Allow) E:\SteamLibrary\steamapps\common\CarnivoresReborn\Carnivores-master.exe
FirewallRules: [{F6844069-FF75-4C26-A8D9-11C201A53B4F}] => (Allow) E:\SteamLibrary\steamapps\common\CarnivoresReborn\Carnivores-master.exe
FirewallRules: [TCP Query User{BBF4C69A-8878-44F1-8E0E-E2D053407524}E:\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{52D95CCA-30E5-435E-B7A2-FAC9B26E0D7E}E:\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe
FirewallRules: [{C6B5A69E-C8CF-4456-826B-B8CC1C054187}] => (Allow) C:\Program Files (x86)\Cypheros\TSDoctor2\TSDoctor.exe
FirewallRules: [{96EE30A3-4C7B-4960-AE05-717882188749}] => (Allow) E:\SteamLibrary\steamapps\common\Blue Estate\Binaries\Win32\Launch BlueEstate.exe
FirewallRules: [{5B0501D5-EB3B-405A-B814-535C72A7E1B4}] => (Allow) E:\SteamLibrary\steamapps\common\Blue Estate\Binaries\Win32\Launch BlueEstate.exe
FirewallRules: [TCP Query User{FAA93177-19CE-487A-B920-F5235F1330C9}E:\battlefield 2\bf2.exe] => (Block) E:\battlefield 2\bf2.exe
FirewallRules: [UDP Query User{16F1C590-3857-43FE-9233-72EBB7C15BD8}E:\battlefield 2\bf2.exe] => (Block) E:\battlefield 2\bf2.exe
FirewallRules: [{780C9BB6-0A1C-4A7F-942A-A466944D8120}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe
FirewallRules: [{552A450D-92DD-4E53-B570-700DEFB9FF4B}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe
FirewallRules: [{99B97DE7-624D-49B9-ADBC-48B681402B58}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe
FirewallRules: [{D6204CB8-341F-47D1-B74B-69C909E83E36}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe
FirewallRules: [{80DDD101-5A55-47D4-A2A9-129A77BF867C}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\iOS Recorder.exe
FirewallRules: [{AB63EE36-E3D9-4D05-8E81-C381068F2E9C}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\iOS Recorder.exe
FirewallRules: [TCP Query User{91024DBE-7B67-4EDE-92DF-031EF2A7DAC2}F:\me_level\engine\binaries\win64\ue4game-win64-shipping.exe] => (Block) F:\me_level\engine\binaries\win64\ue4game-win64-shipping.exe
FirewallRules: [UDP Query User{EA3A48A1-4589-4A24-B6AB-3FF4C3E0A64E}F:\me_level\engine\binaries\win64\ue4game-win64-shipping.exe] => (Block) F:\me_level\engine\binaries\win64\ue4game-win64-shipping.exe
FirewallRules: [TCP Query User{BE513E95-9D9A-4086-A9BB-5FC0D5CEE6BE}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Block) C:\program files (x86)\samsung\sidesync4\sidesync.exe
FirewallRules: [UDP Query User{A56EEAE2-6B78-4A24-BBCA-8B9E9DCD2CC4}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Block) C:\program files (x86)\samsung\sidesync4\sidesync.exe
FirewallRules: [TCP Query User{FE5A2887-E1B7-4D90-8691-1537AEF99C27}D:\steam\steamapps\common\life is feudal your own\server\cm_yo_server.exe] => (Allow) D:\steam\steamapps\common\life is feudal your own\server\cm_yo_server.exe
FirewallRules: [UDP Query User{2EFE6F83-20E5-44DA-9700-B74A4BE0E9E4}D:\steam\steamapps\common\life is feudal your own\server\cm_yo_server.exe] => (Allow) D:\steam\steamapps\common\life is feudal your own\server\cm_yo_server.exe
FirewallRules: [TCP Query User{78D7BF7D-3D01-484A-B9FF-8E052AF71606}E:\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E6812F45-E7E7-40D9-A03F-D19B37C72383}E:\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2862260F-BC4B-4ADB-BC63-D8175D71C5B4}E:\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{585A2B21-DD99-49E9-AF9E-EA1F79976560}E:\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe
FirewallRules: [{977D78F1-B2EF-4593-A3B3-A76E732F1E9B}] => (Allow) F:\Downloads\bin\BlackDesert32.exe
FirewallRules: [{504D9DCD-1500-4C59-A1F5-8236870E4AC6}] => (Allow) F:\Downloads\bin64\BlackDesert64.exe
FirewallRules: [{0882EF0C-41A6-4C72-BF96-6F205396AB70}] => (Allow) F:\Downloads\BlackDesert_Launcher.exe
FirewallRules: [{DA709511-BE8E-4F15-94BB-C8E7AC3514E5}] => (Allow) F:\Downloads\BlackDesert_Downloader.exe
FirewallRules: [TCP Query User{F969D6CC-E7CE-4ED8-9738-ADDD92DD497C}F:\battlefield vietnam\bfvietnam.exe] => (Block) F:\battlefield vietnam\bfvietnam.exe
FirewallRules: [UDP Query User{642B3685-6801-490C-A9B5-746652AA6403}F:\battlefield vietnam\bfvietnam.exe] => (Block) F:\battlefield vietnam\bfvietnam.exe
FirewallRules: [{C32C0336-20FD-4528-B669-D5AE8E4B42C3}] => (Allow) E:\SteamLibrary\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{781C93CB-BFF5-44D2-9697-DBE1E49521D6}] => (Allow) E:\SteamLibrary\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{3EF26796-2F41-4D8B-96A7-77638BDA7CCF}] => (Allow) E:\SteamLibrary\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{697D04E5-AA40-4437-9308-252240A3242F}] => (Allow) E:\SteamLibrary\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [TCP Query User{FBBFBC24-F5E9-4C56-B361-46AF87331B79}C:\program files (x86)\vso\vso downloader\5\vsodownloader.exe] => (Allow) C:\program files (x86)\vso\vso downloader\5\vsodownloader.exe
FirewallRules: [UDP Query User{AF4CA363-28A8-46CC-938D-84E775230098}C:\program files (x86)\vso\vso downloader\5\vsodownloader.exe] => (Allow) C:\program files (x86)\vso\vso downloader\5\vsodownloader.exe
FirewallRules: [{D3466193-E54E-4185-B0D0-6F07928EFBD9}] => (Allow) D:\Steam\steamapps\common\Savage Lands\SavageLands.exe
FirewallRules: [{5A954AB0-096F-4302-910F-00391B7C0B0D}] => (Allow) D:\Steam\steamapps\common\Savage Lands\SavageLands.exe
FirewallRules: [{6C552136-2371-46EF-BDA1-96C76D30686C}] => (Allow) D:\Steam\steamapps\common\Bloody Walls\game.exe
FirewallRules: [{917C4353-EE4A-4CB3-8B05-E3C0448AF737}] => (Allow) D:\Steam\steamapps\common\Bloody Walls\game.exe
FirewallRules: [TCP Query User{445FF8EE-3311-423A-8F67-0CBCF759C56D}E:\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{617A695D-DD50-40EE-AC76-8940DCCD2910}E:\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe
FirewallRules: [{E307E6BE-98F2-4486-AC5E-8A3C426DD425}] => (Allow) E:\SteamLibrary\steamapps\common\Your Doodles Are Bugged!\YourDoodlesAreBugged.exe
FirewallRules: [{3B9B9339-D50B-4CE7-BE18-7FA05A38A432}] => (Allow) E:\SteamLibrary\steamapps\common\Your Doodles Are Bugged!\YourDoodlesAreBugged.exe
FirewallRules: [{F12F1039-CD58-4AF6-B21B-17F51F2FDDE6}] => (Allow) E:\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{BBDA6837-1806-4BBD-80C4-128FDA5F387E}] => (Allow) E:\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{E5AEC1C1-CA8E-411C-ADF9-B4B48391C78B}] => (Allow) E:\SteamLibrary\steamapps\common\WormsXHD\Launcher.exe
FirewallRules: [{E8CD763D-DAF6-4B98-989A-9771DFF259C7}] => (Allow) E:\SteamLibrary\steamapps\common\WormsXHD\Launcher.exe
FirewallRules: [TCP Query User{3F52B624-E444-46DF-B1AF-436083E59568}E:\battle.net\battle.net.8098\battle.net.exe] => (Allow) E:\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [UDP Query User{F2230C38-7F51-4655-BD66-FABE88016E75}E:\battle.net\battle.net.8098\battle.net.exe] => (Allow) E:\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [TCP Query User{FBC96B76-EAC6-4FF8-9658-D3D8919980D2}E:\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{EAC36D3C-A925-4E69-A4CA-C79B45E11126}E:\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{EA2EA8E4-2A82-4917-8F6B-A66A11366E74}E:\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D9127DB9-1AAD-4294-A9A4-4A8A14EC7E4D}E:\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe
FirewallRules: [{B896C005-6C48-4753-BC6A-F562E4C0C56C}] => (Allow) D:\Steam\steamapps\common\POSTAL2Complete\Paradise Lost\System\ParadiseLost.exe
FirewallRules: [{5897F49D-7819-4209-89F9-973E08AC2700}] => (Allow) D:\Steam\steamapps\common\POSTAL2Complete\Paradise Lost\System\ParadiseLost.exe
FirewallRules: [{F35B14B5-0DEF-4B5E-AF3B-B5C6871969D5}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe
FirewallRules: [{771AFD80-8554-48D7-8490-8C5A21273C5E}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe
FirewallRules: [{32D8778F-6CF1-444C-9450-60B7EA2289B3}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Activation.exe
FirewallRules: [{14D44DAF-3741-45EE-871A-C2EFFA9102BD}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Activation.exe
FirewallRules: [{CF7794A4-8FCD-4D00-9BFE-7A838B10427C}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe
FirewallRules: [{F49322BA-FFE8-4C6B-8454-EDA9201DAED7}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe
FirewallRules: [TCP Query User{5F6E16C0-58BB-4695-BE92-5B59AF0D909A}E:\steamlibrary\steamapps\common\adr1ft\adr1ft\binaries\win64\adr1ft-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\adr1ft\adr1ft\binaries\win64\adr1ft-win64-shipping.exe
FirewallRules: [UDP Query User{5C91500B-5B4A-40A1-83F3-0E8395929BB5}E:\steamlibrary\steamapps\common\adr1ft\adr1ft\binaries\win64\adr1ft-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\adr1ft\adr1ft\binaries\win64\adr1ft-win64-shipping.exe
FirewallRules: [{7A23F7DA-8BED-4E8D-B95E-22C760F76BDE}] => (Allow) E:\SteamLibrary\steamapps\common\The Mean Greens - Plastic Warfare\TheMeanGreens\Binaries\Win64\TheMeanGreens-Win64-Shipping.exe
FirewallRules: [{AF1A7861-6CDB-4344-B066-80D8319987B9}] => (Allow) E:\SteamLibrary\steamapps\common\The Mean Greens - Plastic Warfare\TheMeanGreens\Binaries\Win64\TheMeanGreens-Win64-Shipping.exe
FirewallRules: [{6C253B4A-683E-4FC9-838F-C3A1904F2B25}] => (Allow) D:\Steam\steamapps\common\Life is Hard\LiH-Configurator.exe
FirewallRules: [{29329FD8-182D-4EE5-A7F6-53C3FBE96B6E}] => (Allow) D:\Steam\steamapps\common\Life is Hard\LiH-Configurator.exe
FirewallRules: [TCP Query User{C042F10B-E45A-49F3-A656-F2EB8D8EF932}E:\steamlibrary\steamapps\common\squad\squad\binaries\win64\squad.exe] => (Allow) E:\steamlibrary\steamapps\common\squad\squad\binaries\win64\squad.exe
FirewallRules: [UDP Query User{43471D64-7A5F-4EDA-9297-3BBCB0C55671}E:\steamlibrary\steamapps\common\squad\squad\binaries\win64\squad.exe] => (Allow) E:\steamlibrary\steamapps\common\squad\squad\binaries\win64\squad.exe
FirewallRules: [{555AB253-2C02-4785-9DEB-BCB2DCA556C4}] => (Allow) D:\Steam\steamapps\common\Styx\Binaries\Win64\StyxGame.exe
FirewallRules: [{D564A564-1E0C-493C-BF56-915F7E8EF807}] => (Allow) D:\Steam\steamapps\common\Styx\Binaries\Win64\StyxGame.exe
FirewallRules: [TCP Query User{116F0DF5-A97B-4536-91D4-9CF1073A52A4}E:\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{0991875A-679D-4083-B658-5188332D8224}E:\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe
FirewallRules: [{51783FB7-9699-4F5A-A3EB-3429634251AF}] => (Allow) D:\Steam\steamapps\common\Zombie_Driver_HD\bin\ZombieDriverHD.exe
FirewallRules: [{95491740-E0FC-40F4-8938-D202A008FF17}] => (Allow) D:\Steam\steamapps\common\Zombie_Driver_HD\bin\ZombieDriverHD.exe
FirewallRules: [{6C217EB8-134C-4235-9EBA-49044E574D75}] => (Allow) D:\Steam\steamapps\common\Dungeons2\Dungeons2.exe
FirewallRules: [{157C0108-A986-4AD9-BB71-D94CE73F7DB9}] => (Allow) D:\Steam\steamapps\common\Dungeons2\Dungeons2.exe
FirewallRules: [{11BED280-7B2C-4A9D-9F0A-276786530271}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{729DE788-045B-449C-8905-37195DC286F2}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{800A7E77-9572-4542-A498-BD309029E6AF}] => (Allow) D:\Steam\steamapps\common\Dungeons2\mono\bin\mono.exe
FirewallRules: [{776242DD-9008-46A0-BA53-4DB5755459AA}] => (Allow) D:\Steam\steamapps\common\Dungeons2\mono\bin\mono.exe
FirewallRules: [{5E4D40B6-15A5-4D9C-B32F-49687DB0464E}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{FEA40785-E0D7-4D41-9C3A-AED6ED98DBF2}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{D92EF2BA-7318-4CB3-A80D-7B610FBFDDDD}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{D4DC213D-04FD-44B3-9693-636E8307D6BB}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{2ECD3CAE-F4A7-46D6-BB9C-26060002DF28}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{45C2A6DE-FFB4-4F0A-AE00-7DF5D35ABC1A}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [TCP Query User{AD1CBE01-8669-4B05-B7B1-CBD2B43E2F78}E:\heroes of the storm\versions\base48760\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base48760\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{29475D8D-E630-4564-AC54-4EFC83A552FB}E:\heroes of the storm\versions\base48760\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base48760\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D866F032-6EFC-4C41-B973-1D93B8D748FD}E:\battle.net\battle.net.8180\battle.net.exe] => (Allow) E:\battle.net\battle.net.8180\battle.net.exe
FirewallRules: [UDP Query User{8E6D95AD-F3C3-46B6-966A-94FF7A8F20D9}E:\battle.net\battle.net.8180\battle.net.exe] => (Allow) E:\battle.net\battle.net.8180\battle.net.exe
FirewallRules: [{44136A36-6D2F-486C-BFE5-7E2BE266459E}] => (Allow) D:\Steam\steamapps\common\FlatOut\flatout.exe
FirewallRules: [{B75F370C-AAEF-441F-8EF7-ED9FD1E9B662}] => (Allow) D:\Steam\steamapps\common\FlatOut\flatout.exe
FirewallRules: [TCP Query User{5B28CCAF-141A-4F76-B01C-599F44DF4C03}E:\heroes of the storm\versions\base49008\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base49008\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{71B608F0-1686-4F2E-AC84-8C28A3D7F57E}E:\heroes of the storm\versions\base49008\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base49008\heroesofthestorm_x64.exe
FirewallRules: [{37C5E5AD-A229-412E-99AD-537BEAED80C2}] => (Allow) D:\Steam\steamapps\common\F13Beta\SummerCamp.exe
FirewallRules: [{4CEA4B07-148C-4D21-B324-7FF380BFB3F0}] => (Allow) D:\Steam\steamapps\common\F13Beta\SummerCamp.exe
FirewallRules: [{E134AC58-D97C-4BB2-8C3E-1CCB86699ED5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D742384A-A131-4A6D-9811-C1E1467E9EE3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{90308EBB-1619-493E-8D63-139E1716B580}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{51BACA78-DCBF-4569-990A-66090A6D7C86}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5A5139E0-B170-4C92-9334-56B906B41EFD}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C8B1502B-FB90-4174-BC01-5C447C5B2C8F}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7642DCA6-1C39-4AD2-AADF-F6D840312099}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E8CD5CA0-D450-4A6E-95EE-8744F696567B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9447ADD5-082A-4BCB-ABEA-39DFCF02ED86}] => (Allow) E:\SteamLibrary\steamapps\common\Reus\Reus.exe
FirewallRules: [{731DE023-C019-45FA-9F19-31EEC941D483}] => (Allow) E:\SteamLibrary\steamapps\common\Reus\Reus.exe
FirewallRules: [{3EE0AD28-6CD5-40DA-8C2B-8C62769779A5}] => (Allow) E:\SteamLibrary\steamapps\common\deepdungeonsofdoom\DDD.exe
FirewallRules: [{148224CA-CFF4-4E8E-B581-90058DDB3AA1}] => (Allow) E:\SteamLibrary\steamapps\common\deepdungeonsofdoom\DDD.exe
FirewallRules: [{75E9E18C-EB0E-4059-B974-7A68A6C55BB2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{417535A9-F800-4983-84D6-902302930AED}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{86CAFBA9-D6AC-4685-AFB0-4F3F88F5CF65}] => (Allow) E:\SteamLibrary\steamapps\common\GALAGA\GALAGA.exe
FirewallRules: [{CFB00C1F-D102-4A2F-BBDF-A94AEB69E5D9}] => (Allow) E:\SteamLibrary\steamapps\common\GALAGA\GALAGA.exe
FirewallRules: [{A4035B60-5877-480C-905C-70A0693C2A22}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FA6C5EEC-442A-404F-B8C4-7442A74690AA}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{2A942FB9-3F81-4AAB-A85E-5B936BD54BEF}E:\steamlibrary\steamapps\common\space\spacegame\binaries\win64\spserver.exe] => (Allow) E:\steamlibrary\steamapps\common\space\spacegame\binaries\win64\spserver.exe
FirewallRules: [UDP Query User{446EE5BC-8E5A-4EFF-BD92-16E0897C39AB}E:\steamlibrary\steamapps\common\space\spacegame\binaries\win64\spserver.exe] => (Allow) E:\steamlibrary\steamapps\common\space\spacegame\binaries\win64\spserver.exe
FirewallRules: [{CF90628B-5D7D-438E-B00E-2F6095B66948}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F0BA5D00-3A11-4C93-9DAE-98C12353E5EC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4E9409D6-3F62-4479-B247-612CA57CF02A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3ABEF5DC-6C32-48F2-91B6-90CA3D29DB79}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{21F78D49-1489-4E21-B285-64F22EBCB0F2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D6604B8A-5FE3-44E6-9E6A-D11363EBAF57}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{68864D4A-0536-4F29-A8F2-E6A7F05D1C63}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{93A7D1DF-973C-4496-BA10-5827DCDAD0FB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{19EC489F-26D8-4D39-92BF-FBE881436379}E:\heroes of the storm\versions\base49278\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base49278\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{EBB22583-B61A-4534-9962-B40080F73D47}E:\heroes of the storm\versions\base49278\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base49278\heroesofthestorm_x64.exe
FirewallRules: [{6DDD743A-A680-43F5-8D9F-5C61CF069B78}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{498437CC-1DBB-4F4E-8A5A-514393E0CA1D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6E2D4B22-5B5C-4F8B-9170-2C9DB5E753D2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0EDEEE82-2469-44A0-9321-6E3016F50CE2}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CD4B9378-998F-4B00-AC4F-1E5AE8AE83C6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5716D0E1-80FA-4277-8A2F-E2505926BFAB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7FBF6D99-CA95-418E-8D4E-8210D6D76494}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C58A6231-146C-454E-AE46-DBDF52E1A251}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8B57B643-337C-45EB-A6A9-3F3260325964}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A7F13468-5E40-4134-979A-49A64CED2AA8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1CBB1E47-F177-487D-8144-B2E7337AD29D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E978B7A8-DE20-4BE7-B8B9-E08F85454F31}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{836EA8B8-92A3-4C6E-8F41-5A2C39D05B29}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2B676180-2BBF-49D5-87AA-C57D8D321DF6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{7CC9DBDE-F4C9-4A0E-98BD-8E012CF36F38}E:\battle.net\battle.net.8265\battle.net.exe] => (Allow) E:\battle.net\battle.net.8265\battle.net.exe
FirewallRules: [UDP Query User{127E4F7C-AB7A-4906-A860-6E7CF32CD641}E:\battle.net\battle.net.8265\battle.net.exe] => (Allow) E:\battle.net\battle.net.8265\battle.net.exe
FirewallRules: [{3D13EC72-86A4-4B27-B8FE-00884D2CFE07}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{090F6D9F-DC99-4371-8449-799F21D5CDE8}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E6F94B8E-CCE5-4B5A-AF08-C1477BE5E738}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8D392DB4-2BB5-4DE6-875B-AF0F90B4AD22}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D350F6A5-E555-4F2A-80FE-64250AF9E9D3}] => (Allow) D:\Steam\steamapps\common\Streamline\hns\Binaries\Win64\Streamline.exe
FirewallRules: [{EDD41BCB-910F-4DD5-A182-E5A37170DCD2}] => (Allow) D:\Steam\steamapps\common\Streamline\hns\Binaries\Win64\Streamline.exe
FirewallRules: [{7E63A7DA-9CFF-4AD1-BE16-677FD6A5A1E3}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0153ABEB-C323-40E3-A7E3-9E26E61749CB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{529B3BDE-C007-443D-865D-53AAB10F7EDE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C52217AE-0A27-4846-B719-8451CA809FE7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{69D4CCDA-7803-4905-8246-07A779D16700}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B36B135C-2B37-4991-A6D9-3DFD490F638C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{DFF363E0-DF3E-4279-85B5-B76DD08DD068}E:\battle.net\battle.net.8293\battle.net.exe] => (Allow) E:\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [UDP Query User{9BBEC33A-B941-4FD3-B45D-165D5BCBF3B8}E:\battle.net\battle.net.8293\battle.net.exe] => (Allow) E:\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [{D7842EC7-2C19-4631-9D53-85FA03631218}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{841F1DDF-26ED-4EB9-ABCD-7717844E653B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{CAE56E81-2EE0-4AEE-8FA3-5F105B185AC2}E:\heroes of the storm\versions\base49747\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base49747\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{24109B5C-B047-44DD-9951-20522766BB18}E:\heroes of the storm\versions\base49747\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base49747\heroesofthestorm_x64.exe
FirewallRules: [{43B5B171-54D7-474A-AAC8-38DB829D7922}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{51B8E1C2-5732-4F70-AC1A-EE9175B5B1E7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B63311AD-DE2E-430A-990A-87A27E0C0AF7}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F4DAF0C0-3315-466B-9AF6-F675CB735752}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3F0461C4-B917-42EA-9682-D7EA1BF95E3C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0C5942D0-28BE-486A-8321-E232ECDAF866}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0E5D7C9B-1AC1-4B34-A72E-F6368890433B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1C5DF9B8-E998-41E8-844C-121CDD1B2F85}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2BE4B747-5E4B-4C7E-85B6-D1D2F11C4A8A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{17343E10-0013-49B8-B683-85240B6805FB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{96277FA0-4BEF-437A-8FF8-A08276F7DFEE}E:\heroes of the storm\versions\base49907\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base49907\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{085B5EF8-8CD1-4CE5-8F5F-372742F6AE51}E:\heroes of the storm\versions\base49907\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base49907\heroesofthestorm_x64.exe
FirewallRules: [{32DA99D6-62FA-4D22-9F98-2708741D48E4}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{948F11F8-DCA3-49F0-BE37-662DFC3684DB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C481AE81-E6EC-480B-A6E4-D7ED635BD74E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{18BFD60E-7EE7-4CFB-ADAB-C9D1F2400F3B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7C77E316-AEF8-4400-91F8-8DEECC1844A9}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{09A09E00-2575-417F-8238-3ED7512FD575}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7067B43E-E538-40D2-8CA2-C431CCCAA909}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{328278F4-5EAE-49F0-B8BE-29BF87E3289A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B19CE5DD-5AB8-489B-8866-BAD52AA5E2B0}] => (Allow) D:\Steam\steamapps\common\High Profits\game.exe
FirewallRules: [{BCCB6B0E-B16C-4F5E-A039-D90A4B8489E7}] => (Allow) D:\Steam\steamapps\common\High Profits\game.exe
FirewallRules: [{2FF15E99-12E5-4A27-8DC9-03B35BC8F83D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0FE02976-930F-409C-ABDD-EE7CA0F17EC1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{128F2C1A-8BBB-4F07-9911-CAD5EAE8E293}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{DDAC87CF-881F-4A25-B2C6-2E1923ADE373}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{E935D770-F13A-436A-BC24-D36B24A01A0E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{DE94485C-CEA8-4181-8A56-DD479A1E8C8F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E787D78E-E016-4F4F-8652-9A9DDFC5EFF9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E44BB0D2-25BE-4015-833C-937A493560F1}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{67D558A2-A0C0-43AE-A561-91C336A45ACE}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{67A92840-8DF5-46DC-83AF-88E2DC4313F6}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{773E9365-5080-4009-8736-F3FFDDEC31E4}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{900D439F-FD31-4347-9B26-723E0956C08A}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency_BE.exe
FirewallRules: [{5F618E08-9C50-4861-B2B0-CAAF1EB265B1}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency_BE.exe
FirewallRules: [{E5A06EA4-ABAF-44A6-AC79-429842B30806}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AEE4356C-DF73-47F9-AA49-A97AFDAAEC5B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8BFB5B95-CD8A-494F-985A-7F3A6913AF60}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D12D970C-6B33-4745-8949-B297430E080E}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A34E13B3-9195-4382-89FC-762688B01397}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A4E74067-FD2B-4BB7-9263-1EFE1590AA2C}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3CA00A75-F325-4752-A6D3-D55BCC8FB957}] => (Allow) E:\SteamLibrary\steamapps\common\Batman The Telltale Series\Batman_win8.exe
FirewallRules: [{4EA90C1D-3130-4EFB-AA87-70DB48AD6F81}] => (Allow) E:\SteamLibrary\steamapps\common\Batman The Telltale Series\Batman_win8.exe
FirewallRules: [{851EC11D-901C-461D-8CB2-670FAE205910}] => (Allow) E:\SteamLibrary\steamapps\common\Batman The Telltale Series\Batman_win7.exe
FirewallRules: [{7E693A69-3476-4968-A380-1FB070CE61AF}] => (Allow) E:\SteamLibrary\steamapps\common\Batman The Telltale Series\Batman_win7.exe
FirewallRules: [{8992BA71-334D-4B1D-85C8-334B051B3273}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8D3451B2-D870-4C40-B7A7-D5AE7B129D16}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AB70D3B2-001B-442B-B22F-44B082A1AB54}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{294D2010-D341-4FBC-98DC-6853D1DC568B}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{39E11783-9491-4DED-BF7C-AE19B2429638}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CBFD34EA-9AEB-4617-AD3E-5DB34B04240A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{55F9A5EB-F5F6-4819-83F0-11138B079758}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F38BA000-0B6D-43DC-91F5-56E42FC0E5A5}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{97EFECF5-7D02-46E0-9F44-53C3B151D9BB}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2F8A206C-4014-4240-91C6-6DE2FBAF7C71}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{F226B5B2-E116-4857-A6BC-A9622BF2DDDA}E:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{92285BF2-12FE-4BFE-82DC-148C1D819FDF}E:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{AE73BFAA-D990-411B-B6DB-06D9D0A79E6C}E:\battle.net\battle.net.8394\battle.net.exe] => (Allow) E:\battle.net\battle.net.8394\battle.net.exe
FirewallRules: [UDP Query User{513FE988-3BD7-4C59-902E-349EB8729F9D}E:\battle.net\battle.net.8394\battle.net.exe] => (Allow) E:\battle.net\battle.net.8394\battle.net.exe
FirewallRules: [{66A9C06E-D039-4660-8C44-1DA52430B6DD}] => (Allow) E:\SteamLibrary\steamapps\common\Air Missions HIND\HIND.exe
FirewallRules: [{71131B56-DE5F-42FA-AC96-6D7A07CBB13A}] => (Allow) E:\SteamLibrary\steamapps\common\Air Missions HIND\HIND.exe
FirewallRules: [{8E9E6BC7-FA08-473B-AD51-64CAA88232CD}] => (Allow) E:\SteamLibrary\steamapps\common\Air Missions HIND\SETUPAPPLICATION.exe
FirewallRules: [{A96FDB4F-1B62-4B91-B928-B4B81376363C}] => (Allow) E:\SteamLibrary\steamapps\common\Air Missions HIND\SETUPAPPLICATION.exe
FirewallRules: [{905AAA8A-263C-4C9F-A632-E095168D1F40}] => (Allow) E:\SteamLibrary\steamapps\common\Air Missions HIND\MISSIONEDITOR2.exe
FirewallRules: [{F32F9F89-3FD5-4ABD-BF76-8C3714885041}] => (Allow) E:\SteamLibrary\steamapps\common\Air Missions HIND\MISSIONEDITOR2.exe
FirewallRules: [{90681890-0E6C-4589-945F-BFA320631977}] => (Allow) C:\Program Files\CyberLink\PowerDirector123\PDR10.EXE
FirewallRules: [{5790A6C2-52F7-4A49-AE5B-6DAEA28FFFEF}] => (Allow) E:\SteamLibrary\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{83E9C5A6-61BA-4777-8EF5-BD7DB0C08345}] => (Allow) E:\SteamLibrary\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{B3E228F8-F697-42B5-9263-A52B4D59657F}] => (Allow) Z:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{85439AF6-069A-4430-8998-2A0BDF739C2A}] => (Allow) Z:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{3B9D9498-3696-4A92-9041-0CF4DBC7F885}] => (Allow) Z:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{275AFF95-9456-4E02-B3C1-C8B5ADC95C72}] => (Allow) Z:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{AAC7E9FF-8D71-4D55-8ADF-9A7EF454CF5A}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{82DD220D-C706-44C2-B92B-22D80447EF3F}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{9A362AC8-24ED-4986-B3EC-AAFDF02A4FE2}] => (Allow) D:\Steam\steamapps\common\Fallout Shelter\FalloutShelter.exe
FirewallRules: [{E8778ADA-F906-4799-BD90-C4A284B5C2E6}] => (Allow) D:\Steam\steamapps\common\Fallout Shelter\FalloutShelter.exe
FirewallRules: [{1D20EE2C-DB24-4B14-8063-66B6B5CFE2D7}] => (Allow) D:\Steam\steamapps\common\Dex\Dex.exe
FirewallRules: [{4031A2CF-9F21-4A35-A6D4-1644CCC81C0E}] => (Allow) D:\Steam\steamapps\common\Dex\Dex.exe
FirewallRules: [{29534B58-9409-4CFB-BC75-69BD8476E30E}] => (Allow) D:\Steam\steamapps\common\Dex\GamepadConfigTool.exe
FirewallRules: [{3EC09B67-7B01-43CD-8199-664505F1302C}] => (Allow) D:\Steam\steamapps\common\Dex\GamepadConfigTool.exe
FirewallRules: [{CEB052B4-74E2-43ED-B647-3E0664C222C5}] => (Allow) D:\Steam\steamapps\common\Gemini Rue\gemini_rue_pc.exe
FirewallRules: [{A36640DC-36C9-4F28-B33D-158C94CE5A3C}] => (Allow) D:\Steam\steamapps\common\Gemini Rue\gemini_rue_pc.exe
FirewallRules: [{012BFD3A-CF1C-463A-A5A7-C624CD43566A}] => (Allow) D:\Steam\steamapps\common\Gemini Rue\winsetup.exe
FirewallRules: [{68A9EF60-0B22-477F-840E-100CCA05CE4B}] => (Allow) D:\Steam\steamapps\common\Gemini Rue\winsetup.exe
FirewallRules: [{B4928569-7B62-41EA-B139-0D6CD0285087}] => (Allow) E:\SteamLibrary\steamapps\common\The Four Kings Casino and Slots\Casino.exe
FirewallRules: [{5076A5BE-005A-4E06-90D1-A0D5540DA38C}] => (Allow) E:\SteamLibrary\steamapps\common\The Four Kings Casino and Slots\Casino.exe
FirewallRules: [{77C4E79C-28D9-4FF4-B368-B5EAE27754D5}] => (Allow) E:\SteamLibrary\steamapps\common\Sky Mercenaries\SkyMercenariesPC1051.exe
FirewallRules: [{0EDB150B-F43A-449E-88BC-F88701F870C1}] => (Allow) E:\SteamLibrary\steamapps\common\Sky Mercenaries\SkyMercenariesPC1051.exe
FirewallRules: [{6EBA005B-3E74-411E-A23D-723F3753905C}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Covert Action\dosbox_windows\dosbox.exe
FirewallRules: [{02EF7ED9-622A-40E1-8D4A-88413A6A2D10}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Covert Action\dosbox_windows\dosbox.exe
FirewallRules: [{8367DE3C-A221-407F-A8E9-C420EA2AE097}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Covert Action\dosbox_windows\daum\dosbox.exe
FirewallRules: [{A4F60B0C-D72B-4654-995F-E6CA918C3C19}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Covert Action\dosbox_windows\daum\dosbox.exe
FirewallRules: [{E3B1376C-2A76-4EF2-B8A2-9DB67F0AF267}] => (Allow) E:\SteamLibrary\steamapps\common\Garfield Kart\GarfieldKartNoMulti.exe
FirewallRules: [{2323312B-886B-451E-8125-316A9CB1AED9}] => (Allow) E:\SteamLibrary\steamapps\common\Garfield Kart\GarfieldKartNoMulti.exe
FirewallRules: [TCP Query User{691A5195-503A-47E1-A708-D57DBAC2682B}E:\heroes of the storm\versions\base52351\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base52351\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4D0E1B83-52BD-4769-8943-81879AD10BAF}E:\heroes of the storm\versions\base52351\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base52351\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{EF2E93C8-2B94-4BA5-B09F-78EA1226F5C9}E:\battle.net\battle.net.8657\battle.net.exe] => (Allow) E:\battle.net\battle.net.8657\battle.net.exe
FirewallRules: [UDP Query User{FFCF2980-2883-414E-BCF2-749189700381}E:\battle.net\battle.net.8657\battle.net.exe] => (Allow) E:\battle.net\battle.net.8657\battle.net.exe
FirewallRules: [{778F4C1E-F68B-44F9-9EDF-445558AEF795}] => (Allow) E:\SteamLibrary\steamapps\common\Quick Slick Deadly\Quick Slick Deadly.exe
FirewallRules: [{0DBF4271-8A4D-4710-B791-F06BCBBDBD77}] => (Allow) E:\SteamLibrary\steamapps\common\Quick Slick Deadly\Quick Slick Deadly.exe
FirewallRules: [TCP Query User{A688DD5B-EFDF-4457-9C61-51E827D4B692}E:\steamlibrary\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) E:\steamlibrary\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [UDP Query User{2E16D017-9347-41D2-A2AE-483E32303A27}E:\steamlibrary\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) E:\steamlibrary\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [TCP Query User{3820E08C-0531-450D-AC04-A4D74A2F66C2}E:\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{436F7E28-21B9-4C1B-86B7-E5A4C2010A0C}E:\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [{7E2B5CD0-2716-4CC5-BAE5-01A91C41C68C}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{51A98910-8F57-453E-AB83-B57BD5437D55}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{D462C2A8-82DA-45C2-B97D-345606994C12}] => (Allow) E:\SteamLibrary\steamapps\common\9 Clues 2 The Ward\Ward.exe
FirewallRules: [{2219BA75-43D9-47B7-922F-C1E3C79D24C4}] => (Allow) E:\SteamLibrary\steamapps\common\9 Clues 2 The Ward\Ward.exe
FirewallRules: [{928D747D-560C-4389-AD1E-94A5C37A1826}] => (Allow) E:\SteamLibrary\steamapps\common\STAR WARS X-Wing\remastered\XWING95.EXE
FirewallRules: [{6B481036-30A8-4FCA-BF02-9D7B78F420D6}] => (Allow) E:\SteamLibrary\steamapps\common\STAR WARS X-Wing\remastered\XWING95.EXE
FirewallRules: [{46BC9196-8FFA-4BFE-8CAF-B561C687AFA7}] => (Allow) E:\SteamLibrary\steamapps\common\STAR WARS X-Wing\classic\DOSBOX\DOSBox.exe
FirewallRules: [{9F94060F-2614-4A34-B0B9-B42C6B1CA0B6}] => (Allow) E:\SteamLibrary\steamapps\common\STAR WARS X-Wing\classic\DOSBOX\DOSBox.exe
FirewallRules: [{6A66623B-A385-4D78-8BA7-0444FE4D49C0}] => (Allow) E:\SteamLibrary\steamapps\common\STAR WARS X-Wing\collectors_cd\DOSBOX\DOSBox.exe
FirewallRules: [{63F618B6-D5B5-49C8-8283-11C8A5827C57}] => (Allow) E:\SteamLibrary\steamapps\common\STAR WARS X-Wing\collectors_cd\DOSBOX\DOSBox.exe
FirewallRules: [TCP Query User{6DC25C7D-B436-4503-B8D8-EFEB3937326E}E:\battle.net\battle.net.8733\battle.net.exe] => (Allow) E:\battle.net\battle.net.8733\battle.net.exe
FirewallRules: [UDP Query User{EAEDCD6D-6EB8-4E25-9FE7-ED6265076022}E:\battle.net\battle.net.8733\battle.net.exe] => (Allow) E:\battle.net\battle.net.8733\battle.net.exe
FirewallRules: [{8F69B047-71A2-4219-ABCB-9D7585E4A03C}] => (Allow) C:\Users\Ash\AppData\Local\MyComGames\MyComGames.exe
FirewallRules: [{D5AD209E-6722-489A-AFBE-3787B6F60423}] => (Allow) C:\Users\Ash\AppData\Local\MyComGames\MyComGames.exe
FirewallRules: [TCP Query User{676D2D37-458F-42F1-B889-CAF5B4A31236}E:\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E43DB844-DA8E-4AE0-A78A-DF27F9461AF2}E:\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) E:\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [{099E17E6-3486-4A47-A666-592F0C61D99B}] => (Allow) D:\Steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe
FirewallRules: [{EFB5AA89-40FE-4015-8B9E-37C426F392A6}] => (Allow) D:\Steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe
FirewallRules: [TCP Query User{E90AAFD0-6DF8-4BED-B67A-E10BE2C0F1D6}E:\steamlibrary\steamapps\common\rising storm 2\binaries\win64\vngame.exe] => (Allow) E:\steamlibrary\steamapps\common\rising storm 2\binaries\win64\vngame.exe
FirewallRules: [UDP Query User{FE1265F3-633B-481D-B976-B20D8D800E85}E:\steamlibrary\steamapps\common\rising storm 2\binaries\win64\vngame.exe] => (Allow) E:\steamlibrary\steamapps\common\rising storm 2\binaries\win64\vngame.exe
FirewallRules: [{14A32CB4-2A86-424F-9F59-C7F2F3200DCB}] => (Allow) E:\SteamLibrary\steamapps\common\Ziggurat\Ziggurat.exe
FirewallRules: [{3234F1A9-4D0C-4CA9-939D-ADA457EF91BD}] => (Allow) E:\SteamLibrary\steamapps\common\Ziggurat\Ziggurat.exe
FirewallRules: [{C40C919A-4A27-443F-A993-6CF9E3922EB5}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.607\SZBrowser.exe
FirewallRules: [{C2D4B57C-AE46-48EE-9930-F27689A6E6CF}] => (Allow) D:\Steam\steamapps\common\Starpoint Gemini 2\StarpointGemini2.exe
FirewallRules: [{DA6CAC9B-38C0-4BE5-8584-639B5BA82AF3}] => (Allow) D:\Steam\steamapps\common\Starpoint Gemini 2\StarpointGemini2.exe
FirewallRules: [{087C479B-B862-4AF9-A473-75A445C0593F}] => (Allow) E:\SteamLibrary\steamapps\common\Uplink\Uplink.exe
FirewallRules: [{923CA0B7-A8F3-4FDC-ADC4-1B413A48965E}] => (Allow) E:\SteamLibrary\steamapps\common\Uplink\Uplink.exe
FirewallRules: [{422C2610-24A3-43FA-8019-E4E5D99912E1}] => (Allow) D:\Steam\steamapps\common\STAR WARS - Galactic Battlegrounds Saga\Game\player.exe
FirewallRules: [{89550A8E-5270-4D9E-BF97-3D990FF5946A}] => (Allow) D:\Steam\steamapps\common\STAR WARS - Galactic Battlegrounds Saga\Game\player.exe
FirewallRules: [TCP Query User{01B19F9C-CE66-4C1F-A95A-221D0C8FB024}D:\steam\steamapps\common\argo\argo_x64.exe] => (Allow) D:\steam\steamapps\common\argo\argo_x64.exe
FirewallRules: [UDP Query User{0EFED1F0-4EE8-439E-AEFC-16164B828910}D:\steam\steamapps\common\argo\argo_x64.exe] => (Allow) D:\steam\steamapps\common\argo\argo_x64.exe
FirewallRules: [TCP Query User{FE711438-4D2B-4362-9B23-37B260F64E9A}D:\steam\steamapps\common\lms\lms.exe] => (Allow) D:\steam\steamapps\common\lms\lms.exe
FirewallRules: [UDP Query User{DCCA1F97-2C0D-4374-8B0D-F9225EA7678A}D:\steam\steamapps\common\lms\lms.exe] => (Allow) D:\steam\steamapps\common\lms\lms.exe
FirewallRules: [{89745277-114B-4050-A42B-EA92BEE2D01D}] => (Allow) D:\Steam\steamapps\common\Absconding Zatwor\Absconding Zatwor.exe
FirewallRules: [{EA339B4E-F4FC-46D0-B846-ABC50412BED9}] => (Allow) D:\Steam\steamapps\common\Absconding Zatwor\Absconding Zatwor.exe
FirewallRules: [{CAD72266-AC7C-4C93-B332-51997EB972CE}] => (Allow) D:\Steam\steamapps\common\Hello Neighbor Demo\HelloNeighbour.exe
FirewallRules: [{7B2D2C2D-7290-4EE0-A281-333CCFD90FC4}] => (Allow) D:\Steam\steamapps\common\Hello Neighbor Demo\HelloNeighbour.exe
FirewallRules: [TCP Query User{77624521-154C-48EB-B234-E93635223993}D:\steam\steamapps\common\hello neighbor demo\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\hello neighbor demo\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe
FirewallRules: [UDP Query User{A34C45F2-AAD8-4F13-9D3D-439D83BDC2E5}D:\steam\steamapps\common\hello neighbor demo\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\hello neighbor demo\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe
FirewallRules: [{4764A537-87EF-411C-8A06-B7369C418AA4}] => (Allow) E:\SteamLibrary\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{AC69253D-38BD-460A-A50C-B79FFCF79898}] => (Allow) E:\SteamLibrary\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{29A8C875-655F-4A15-B17C-DF666887B99E}] => (Allow) D:\Steam\steamapps\common\Pang Adventures\Pang.exe
FirewallRules: [{13F0DFEC-A7FF-4F2F-8AB0-D9D1DCA8AD8C}] => (Allow) D:\Steam\steamapps\common\Pang Adventures\Pang.exe
FirewallRules: [{1F959973-7C6E-421B-868A-90819D504F07}] => (Allow) D:\Steam\steamapps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{A30A8177-7461-410F-865F-D7638A2F0307}] => (Allow) D:\Steam\steamapps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{0C80DAB6-AE92-4E02-9EAF-08E79B24DAF1}] => (Allow) D:\Steam\steamapps\common\Shadow Warrior\sw.exe
FirewallRules: [{0C9C83E8-668B-4C58-A51E-8C8C6155AF84}] => (Allow) D:\Steam\steamapps\common\Shadow Warrior\sw.exe
FirewallRules: [{961B7BC9-D669-4791-8A54-54B8BB2BFC93}] => (Allow) D:\Steam\steamapps\common\HOMEFRONT\Binaries\HOMEFRONT.exe
FirewallRules: [{9168883F-81ED-4CBC-95A0-DC1410636111}] => (Allow) D:\Steam\steamapps\common\HOMEFRONT\Binaries\HOMEFRONT.exe
FirewallRules: [{EB2C4504-B876-4302-9BA2-45138BA20B01}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{CBFC67DC-0D62-47E4-9629-0F4C58436A92}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{4917C5A4-524A-413F-942F-AE240009B4A9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C7F27235-1CB4-404A-9573-B4ABD8B75E9C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{359C810A-4E5A-4231-8F5B-F3C3B718B00D}] => (Allow) D:\Steam\steamapps\common\Wizorb\Wizorb.exe
FirewallRules: [{71257B32-FA6F-450D-8F49-79E775FD191D}] => (Allow) D:\Steam\steamapps\common\Wizorb\Wizorb.exe
FirewallRules: [{E7F1B391-3A53-4733-9CA6-4F70EAC4D1B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{7887891E-07D0-4ABA-BF62-94E190432CFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{2149FB6C-E558-467B-88A4-5FA28648C1F1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{E95020B2-8EAF-4EC9-BD67-0E98C73D0F52}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E1A53666-48E3-42EB-B643-5E4E88058189}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4FC9823F-EAC5-44FC-ABDF-B523F802C382}] => (Allow) E:\SteamLibrary\steamapps\common\Batman The Telltale Series\BatmanEp1.exe
FirewallRules: [{F475CAFF-2F83-4A1C-9111-D4466D75D97A}] => (Allow) E:\SteamLibrary\steamapps\common\Batman The Telltale Series\BatmanEp1.exe
FirewallRules: [{8E9A6972-45C7-4BA6-8932-E688AB2AC23F}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [{D21D3E57-1314-43A7-BB6D-9BD8431183C3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{5A496790-A4F3-43C5-BF41-3569B2A64752}] => (Allow) E:\SteamLibrary\steamapps\common\Space\launcher\launcher.exe
FirewallRules: [{2EFAB6C5-B842-4EAB-AA48-B40291A989E4}] => (Allow) E:\SteamLibrary\steamapps\common\Space\launcher\launcher.exe
FirewallRules: [{1503CFB3-FA4C-4D03-A51A-4908B0FA3CF6}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D26086A5-0842-4491-908C-11BAE2F0FCD2}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe

==================== Wiederherstellungspunkte =========================

26-08-2017 07:32:54 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: memudrv
Description: memudrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: memudrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/27/2017 05:07:28 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (08/26/2017 04:51:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbamservice.exe, Version: 3.1.0.556, Zeitstempel: 0x5988c3f1
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.23864, Zeitstempel: 0x595fa942
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000048f24
ID des fehlerhaften Prozesses: 0x28a8
Startzeit der fehlerhaften Anwendung: 0x01d31dd1229f4b6a
Pfad der fehlerhaften Anwendung: C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
Pfad des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll
Berichtskennung: 79a83a5b-8a09-11e7-ac1b-ac220bc62429

Error: (08/25/2017 08:05:12 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (08/25/2017 12:28:24 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (08/25/2017 03:38:56 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (08/24/2017 12:43:29 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (08/24/2017 12:32:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DuckTales.exe, Version: 0.0.0.0, Zeitstempel: 0x57fc02b3
Name des fehlerhaften Moduls: DuckTales.exe, Version: 0.0.0.0, Zeitstempel: 0x57fc02b3
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00196853
ID des fehlerhaften Prozesses: 0x39e4
Startzeit der fehlerhaften Anwendung: 0x01d31c5fc5031a47
Pfad der fehlerhaften Anwendung: D:\Steam\steamapps\common\DuckTales Remastered\executable\DuckTales.exe
Pfad des fehlerhaften Moduls: D:\Steam\steamapps\common\DuckTales Remastered\executable\DuckTales.exe
Berichtskennung: 031fdd65-8853-11e7-8f18-ac220bc62429

Error: (08/20/2017 10:43:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm csgo.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 36bc

Startzeit: 01d319f4af50cdf3

Endzeit: 36

Anwendungspfad: C:\Program Files (x86)\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe

Berichts-ID: 2a857fd3-85e8-11e7-bd0c-ac220bc62429

Error: (08/09/2017 12:34:53 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (08/09/2017 02:06:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm csgo.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 2bd8

Startzeit: 01d310a343fe5ff9

Endzeit: 32

Anwendungspfad: C:\Program Files (x86)\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe

Berichts-ID: a62f8156-7c96-11e7-a309-ac220bc62429


Systemfehler:
=============
Error: (08/27/2017 05:09:22 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.

Error: (08/27/2017 05:07:57 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen (Computerstandard) wird der SID (S-1-5-19) für Benutzer NT-AUTORITÄT\LOKALER DIENST von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
 und APPID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
 gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden.

Error: (08/27/2017 05:07:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (08/27/2017 05:07:50 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.

Error: (08/27/2017 05:07:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "memudrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann den angegebenen Pfad nicht finden.

Error: (08/27/2017 05:07:18 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (08/26/2017 04:58:46 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.

Error: (08/26/2017 04:58:46 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Ash\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (08/26/2017 04:58:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.

Error: (08/26/2017 04:58:45 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Ash\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 17%
Installierter physikalischer RAM: 16290.04 MB
Verfügbarer physikalischer RAM: 13468.38 MB
Summe virtueller Speicher: 32578.27 MB
Verfügbarer virtueller Speicher: 29763.26 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:111.69 GB) (Free:14.98 GB) NTFS
Drive d: (Volume) (Fixed) (Total:500 GB) (Free:72.29 GB) NTFS
Drive e: (Volume) (Fixed) (Total:215.75 GB) (Free:74.06 GB) NTFS
Drive f: (Volume) (Fixed) (Total:215.75 GB) (Free:23.72 GB) NTFS
Drive g: (Volume) (Fixed) (Total:232.88 GB) (Free:21.75 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: CD339713)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0CF63428)
Partition 1: (Not Active) - (Size=500 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=215.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=215.8 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 232.9 GB) (Disk ID: 698A5CBD)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

TattooPanda 27.08.2017 04:54
TDSSKiller
Code:
04:41:35.0265 0x43fc  TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
04:41:40.0984 0x43fc  ============================================================
04:41:40.0984 0x43fc  Current date / time: 2017/08/27 04:41:40.0984
04:41:40.0984 0x43fc  SystemInfo:
04:41:40.0984 0x43fc 
04:41:40.0984 0x43fc  OS Version: 6.1.7601 ServicePack: 1.0
04:41:40.0984 0x43fc  Product type: Workstation
04:41:40.0984 0x43fc  ComputerName: ASH-PC
04:41:40.0984 0x43fc  UserName: Ash
04:41:40.0984 0x43fc  Windows directory: C:\Windows
04:41:40.0984 0x43fc  System windows directory: C:\Windows
04:41:40.0984 0x43fc  Running under WOW64
04:41:40.0984 0x43fc  Processor architecture: Intel x64
04:41:40.0984 0x43fc  Number of processors: 4
04:41:40.0984 0x43fc  Page size: 0x1000
04:41:40.0984 0x43fc  Boot type: Normal boot
04:41:40.0984 0x43fc  CodeIntegrityOptions = 0x00000001
04:41:40.0984 0x43fc  ============================================================
04:41:41.0132 0x43fc  KLMD registered as C:\Windows\system32\drivers\63266866.sys
04:41:41.0132 0x43fc  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23864, osProperties = 0x1
04:41:41.0196 0x43fc  System UUID: {DEEEEE00-86C4-78B0-F587-4E451E967D92}
04:41:41.0478 0x43fc  Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:41:41.0503 0x43fc  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:41:41.0524 0x43fc  Drive \Device\Harddisk2\DR2 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:41:41.0528 0x43fc  ============================================================
04:41:41.0528 0x43fc  \Device\Harddisk0\DR0:
04:41:41.0528 0x43fc  MBR partitions:
04:41:41.0528 0x43fc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
04:41:41.0528 0x43fc  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF62000
04:41:41.0528 0x43fc  \Device\Harddisk1\DR1:
04:41:41.0528 0x43fc  MBR partitions:
04:41:41.0528 0x43fc  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3E800000
04:41:41.0528 0x43fc  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x3E800800, BlocksNum 0x1AF82800
04:41:41.0528 0x43fc  \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x59783000, BlocksNum 0x1AF82800
04:41:41.0528 0x43fc  \Device\Harddisk2\DR2:
04:41:41.0528 0x43fc  MBR partitions:
04:41:41.0528 0x43fc  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C4800
04:41:41.0528 0x43fc  ============================================================
04:41:41.0529 0x43fc  C: <-> \Device\Harddisk0\DR0\Partition2
04:41:41.0607 0x43fc  D: <-> \Device\Harddisk1\DR1\Partition1
04:41:41.0663 0x43fc  E: <-> \Device\Harddisk1\DR1\Partition2
04:41:41.0708 0x43fc  F: <-> \Device\Harddisk1\DR1\Partition3
04:41:41.0797 0x43fc  G: <-> \Device\Harddisk2\DR2\Partition1
04:41:41.0797 0x43fc  ============================================================
04:41:41.0797 0x43fc  Initialize success
04:41:41.0797 0x43fc  ============================================================
04:42:04.0363 0x103c  ============================================================
04:42:04.0363 0x103c  Scan started
04:42:04.0363 0x103c  Mode: Manual; SigCheck; TDLFS;
04:42:04.0363 0x103c  ============================================================
04:42:04.0363 0x103c  KSN ping started
04:42:04.0474 0x103c  KSN ping finished: true
04:42:06.0080 0x103c  ================ Scan system memory ========================
04:42:06.0080 0x103c  System memory - ok
04:42:06.0080 0x103c  ================ Scan services =============================
04:42:06.0104 0x103c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
04:42:06.0169 0x103c  1394ohci - ok
04:42:06.0180 0x103c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
04:42:06.0206 0x103c  ACPI - ok
04:42:06.0208 0x103c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi        C:\Windows\system32\drivers\acpipmi.sys
04:42:06.0236 0x103c  AcpiPmi - ok
04:42:06.0246 0x103c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx        C:\Windows\system32\DRIVERS\adp94xx.sys
04:42:06.0275 0x103c  adp94xx - ok
04:42:06.0283 0x103c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci        C:\Windows\system32\DRIVERS\adpahci.sys
04:42:06.0308 0x103c  adpahci - ok
04:42:06.0314 0x103c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320        C:\Windows\system32\DRIVERS\adpu320.sys
04:42:06.0336 0x103c  adpu320 - ok
04:42:06.0340 0x103c  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc    C:\Windows\System32\aelupsvc.dll
04:42:06.0352 0x103c  AeLookupSvc - ok
04:42:06.0361 0x103c  [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD            C:\Windows\system32\drivers\afd.sys
04:42:06.0399 0x103c  AFD - ok
04:42:06.0402 0x103c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
04:42:06.0422 0x103c  agp440 - ok
04:42:06.0425 0x103c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG            C:\Windows\System32\alg.exe
04:42:06.0438 0x103c  ALG - ok
04:42:06.0440 0x103c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
04:42:06.0458 0x103c  aliide - ok
04:42:06.0468 0x103c  ALSysIO - ok
04:42:06.0470 0x103c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
04:42:06.0488 0x103c  amdide - ok
04:42:06.0491 0x103c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8          C:\Windows\system32\DRIVERS\amdk8.sys
04:42:06.0514 0x103c  AmdK8 - ok
04:42:06.0517 0x103c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
04:42:06.0538 0x103c  AmdPPM - ok
04:42:06.0542 0x103c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata        C:\Windows\system32\drivers\amdsata.sys
04:42:06.0564 0x103c  amdsata - ok
04:42:06.0569 0x103c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
04:42:06.0591 0x103c  amdsbs - ok
04:42:06.0594 0x103c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata        C:\Windows\system32\drivers\amdxata.sys
04:42:06.0612 0x103c  amdxata - ok
04:42:06.0616 0x103c  [ E71711D37C48AC40FD3E2866A5ABBA51, C85DB75741B17A0A84B045DC461B5A6C5EA2A34BCD661107D355CE8DF4A29E03 ] anvsnddrv      C:\Windows\system32\drivers\anvsnddrv.sys
04:42:06.0637 0x103c  anvsnddrv - ok
04:42:06.0640 0x103c  [ F5206C19AAD6BA60360888E9A20396C7, CB4D257F463DCAB6F79605AFA1A1850561447D11B2219C19302129F8FE7E3B71 ] AppID          C:\Windows\system32\drivers\appid.sys
04:42:06.0661 0x103c  AppID - ok
04:42:06.0663 0x103c  [ 56CDF84E681464371CF7385E97406113, 95B80252D1534A1E25F4FA4EC08C80A39E233E0F599DF037B954D1898FA6B787 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
04:42:06.0675 0x103c  AppIDSvc - ok
04:42:06.0678 0x103c  [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo        C:\Windows\System32\appinfo.dll
04:42:06.0691 0x103c  Appinfo - ok
04:42:06.0695 0x103c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc            C:\Windows\system32\DRIVERS\arc.sys
04:42:06.0718 0x103c  arc - ok
04:42:06.0721 0x103c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
04:42:06.0741 0x103c  arcsas - ok
04:42:06.0758 0x103c  [ BBF8F831C7720DD5135D8C4C8325187A, 2630C68200D7BD49A5772830D6B369C0EC337C2558A9562DD564DF042249ECC0 ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
04:42:06.0783 0x103c  asComSvc - ok
04:42:06.0800 0x103c  [ 5F1091FA113607C9C9B2ECF4FBC76F37, F4406635C555A942242F40CACEC7EFD2FED47103C191CB3C2EDF21EE78C8122E ] asHmComSvc      C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
04:42:06.0824 0x103c  asHmComSvc - ok
04:42:06.0836 0x103c  [ 798DE15F187C1F013095BBBEB6FB6197, 436CCAB6F62FA2D29827916E054ADE7ACAE485B3DE1D3E5C6C62D3DEBF1480E7 ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
04:42:06.0853 0x103c  AsIO - ok
04:42:06.0863 0x103c  [ 8637F3119057178364D200F2462E625C, 40CAE47AA6C6B23FEB95961FD06BB3EB075CA63BB91B54CB26215A368371B343 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
04:42:06.0875 0x103c  aspnet_state - ok
04:42:06.0879 0x103c  [ AD8947D621FDCA48F1F39F4624B60AA1, D685CD1A378FA411EA11C18615A1EC5D66CEC2F990DB0D4181EE3140B9DF3E8B ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
04:42:06.0889 0x103c  AsSysCtrlService - ok
04:42:06.0918 0x103c  [ F0AE6B03CF6F46D57993EFFB209DD758, E311E380B0A618DE7F1D0D0C184C5C8BCC9B92A235E0C5CCC4BE532E34B1027D ] AsusFanControlService C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.03\AsusFanControlService.exe
04:42:06.0955 0x103c  AsusFanControlService - ok
04:42:07.0065 0x103c  [ A760C2AFBA1A71E0F7310A6E900CB0E4, 3827C8D4DFC3FC850E9BD049E1B127BD1076DDEFDA19BBA9445FF201F6AE99F8 ] aswbIDSAgent    C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
04:42:07.0208 0x103c  aswbIDSAgent - ok
04:42:07.0223 0x103c  [ 0C19C91ED99964925FF8B05C23743AB1, BF513CCC0E5D2D2CE7D06F17ABC34CD3A55B59588267A5868ADFB723454AF6EB ] aswbidsdriver  C:\Windows\system32\drivers\aswbidsdrivera.sys
04:42:07.0244 0x103c  aswbidsdriver - ok
04:42:07.0250 0x103c  [ 670839F4BA6D82F3035AADFE8274F02E, E4E8B1F3B9138CB2600158CC8507CBA31637E48BBA4D67398E05970B2CECA671 ] aswbidsh        C:\Windows\system32\drivers\aswbidsha.sys
04:42:07.0269 0x103c  aswbidsh - ok
04:42:07.0276 0x103c  [ 5C561968CF601D76A98692DCC8CF74ED, 26D0F34CE4485A813200032CE6889575A13196E79A4B124DD19E4584B0C102DC ] aswblog        C:\Windows\system32\drivers\aswbloga.sys
04:42:07.0298 0x103c  aswblog - ok
04:42:07.0301 0x103c  [ 335E5F19E7397A283B7ED20FE7B369EB, 6A31ABA0BA671EA796E8920EBD64DB28D3D7EB65C4FF68C3EB1DEF4FFC002163 ] aswbuniv        C:\Windows\system32\drivers\aswbuniva.sys
04:42:07.0317 0x103c  aswbuniv - ok
04:42:07.0320 0x103c  [ BA02CA77D989710F79FD662019C4DF94, 2E989847BEE92EB8DE7492DE7AB9B4658CEFC38E678346B7548E6ECB528300D6 ] aswHwid        C:\Windows\system32\drivers\aswHwid.sys
04:42:07.0342 0x103c  aswHwid - ok
04:42:07.0345 0x103c  [ 5E6FD2CB74138C6AF591779D2619BD6C, 7410384AE4280156451EB1EAC5CBA9E44834C49BD5A31049339895D5994AEF4E ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
04:42:07.0365 0x103c  aswKbd - ok
04:42:07.0369 0x103c  [ 2B1490F2F1CC76C9C9B61CE63D6E7973, BFD456C598E74974B81453805ADD0792BD9636BF8213306F40029560B20DE036 ] aswMonFlt      C:\Windows\system32\drivers\aswMonFlt.sys
04:42:07.0391 0x103c  aswMonFlt - ok
04:42:07.0395 0x103c  [ F26D1F761E14789743275FA5D258EAB8, D532AD4DFFC73BE8A889B75BB50D33FFF674B5AB31F05AA75D9E0667363057F1 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
04:42:07.0417 0x103c  aswRdr - ok
04:42:07.0420 0x103c  [ C1007774450CFAB19D784D50C3410FC7, 2752FD77412D54D78A81DED9F05F094E589BCA5E360ECD420E28ECC844D35921 ] aswRvrt        C:\Windows\system32\drivers\aswRvrt.sys
04:42:07.0441 0x103c  aswRvrt - ok
04:42:07.0458 0x103c  [ EB1991686949400C51B8C21CE013621E, 248545BDD5E8D1BD2D752AF7D3B77E8F1EA6453FD3B007851A04E9B634966448 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
04:42:07.0505 0x103c  aswSnx - ok
04:42:07.0517 0x103c  [ 7A17BD26C74F5329CB1DF029AE4DD357, 31F98B74F6BC2D75BDC83E3E2E60C9541D57912B6DF2C8A9241F3CFB17E0ACBB ] aswSP          C:\Windows\system32\drivers\aswSP.sys
04:42:07.0551 0x103c  aswSP - ok
04:42:07.0557 0x103c  [ D43FB180CCF1355E8A11033CD4CAA5F5, 87A7A8BD7B03D5120B3968AD2A3B3E325FAD5D522EAD5F2B2C1B26C4A6CF4273 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
04:42:07.0570 0x103c  aswStm - ok
04:42:07.0577 0x103c  [ E76C21203E29F2DCC489EF585E0B1A38, F64B8F5F2EFA10ADD64DE0574ADDE05DF1DFDEACF0E72879C9DD6DEB037E01A3 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
04:42:07.0606 0x103c  aswVmm - ok
04:42:07.0608 0x103c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
04:42:07.0652 0x103c  AsyncMac - ok
04:42:07.0655 0x103c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi          C:\Windows\system32\drivers\atapi.sys
04:42:07.0673 0x103c  atapi - ok
04:42:07.0685 0x103c  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
04:42:07.0708 0x103c  AudioEndpointBuilder - ok
04:42:07.0720 0x103c  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
04:42:07.0741 0x103c  AudioSrv - ok
04:42:07.0747 0x103c  [ D961A7C05A76302E782B1B0CF6546BA7, DAE7481B4FFC0746944213D10EF59C21BBA9937138D660E72E63F43BCDC1F799 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
04:42:07.0761 0x103c  avast! Antivirus - ok
04:42:07.0775 0x103c  [ 53A2D65393D9F2F9DF8650385F2B9503, DD16F2076F8D1B75441E1B22A4D1E241818DD01C4B0CD7CDCD986A16CA21FC9F ] AVerAF35        C:\Windows\system32\Drivers\AVerAF35.sys
04:42:07.0816 0x103c  AVerAF35 - ok
04:42:07.0824 0x103c  [ 0BA47B92AAC60C9B527AFB7EB6BA9975, A82F1E41469D5171891629CB5BD0DAD403CC90BDAF564359B013F374E44ABD6C ] AVerRemote      C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
04:42:07.0835 0x103c  AVerRemote - detected UnsignedFile.Multi.Generic ( 1 )
04:42:07.0951 0x103c  Detect skipped due to KSN trusted
04:42:07.0951 0x103c  AVerRemote - ok
04:42:07.0961 0x103c  [ 3094F37D17C9F91632689FFE9381FC4B, F60905DEA3168D88CA55F39ABAB46D0EA54CAD924784CB1029AE1BAD0656EAA8 ] AVerScheduleService C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
04:42:07.0973 0x103c  AVerScheduleService - detected UnsignedFile.Multi.Generic ( 1 )
04:42:08.0220 0x103c  Detect skipped due to KSN trusted
04:42:08.0220 0x103c  AVerScheduleService - ok
04:42:08.0224 0x103c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
04:42:08.0240 0x103c  AxInstSV - ok
04:42:08.0243 0x103c  [ 9F4320BA8E7CE2342517B182A2F2C0E6, 10A48AC17D88AA8546BFDC519CFFF86FF71BDDFC2DF7448D94126A5BEABFF17D ] azvusb          C:\Windows\system32\DRIVERS\azvusb.sys
04:42:08.0265 0x103c  azvusb - ok
04:42:08.0274 0x103c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv        C:\Windows\system32\DRIVERS\bxvbda.sys
04:42:08.0307 0x103c  b06bdrv - ok
04:42:08.0314 0x103c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
04:42:08.0343 0x103c  b57nd60a - ok
04:42:08.0348 0x103c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
04:42:08.0361 0x103c  BDESVC - ok
04:42:08.0363 0x103c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
04:42:08.0395 0x103c  Beep - ok
04:42:08.0420 0x103c  [ EB1406A4E3D37733E3F6A500E95DEC44, 524E664565237D44619698A958CA73A5D39DF6852A6045E323D931DE9876CF3E ] BEService      C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
04:42:08.0455 0x103c  BEService - ok
04:42:08.0469 0x103c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE            C:\Windows\System32\bfe.dll
04:42:08.0493 0x103c  BFE - ok
04:42:08.0508 0x103c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
04:42:08.0564 0x103c  BITS - ok
04:42:08.0568 0x103c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
04:42:08.0589 0x103c  blbdrive - ok
04:42:08.0592 0x103c  [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
04:42:08.0617 0x103c  bowser - ok
04:42:08.0620 0x103c  BRDriver64_1_3_3_E02B25FC - ok
04:42:08.0622 0x103c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
04:42:08.0643 0x103c  BrFiltLo - ok
04:42:08.0645 0x103c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
04:42:08.0666 0x103c  BrFiltUp - ok
04:42:08.0670 0x103c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser        C:\Windows\System32\browser.dll
04:42:08.0684 0x103c  Browser - ok
04:42:08.0690 0x103c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid        C:\Windows\System32\Drivers\Brserid.sys
04:42:08.0729 0x103c  Brserid - ok
04:42:08.0732 0x103c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
04:42:08.0754 0x103c  BrSerWdm - ok
04:42:08.0756 0x103c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
04:42:08.0778 0x103c  BrUsbMdm - ok
04:42:08.0780 0x103c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
04:42:08.0801 0x103c  BrUsbSer - ok
04:42:08.0804 0x103c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
04:42:08.0828 0x103c  BTHMODEM - ok
04:42:08.0832 0x103c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv        C:\Windows\system32\bthserv.dll
04:42:08.0858 0x103c  bthserv - ok
04:42:08.0861 0x103c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
04:42:08.0897 0x103c  cdfs - ok
04:42:08.0901 0x103c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom          C:\Windows\system32\DRIVERS\cdrom.sys
04:42:08.0926 0x103c  cdrom - ok
04:42:08.0929 0x103c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc    C:\Windows\System32\certprop.dll
04:42:08.0954 0x103c  CertPropSvc - ok
04:42:08.0957 0x103c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
04:42:08.0981 0x103c  circlass - ok
04:42:08.0989 0x103c  [ 3963FEC1892368DD500E6ED1F5C286CE, A04689CB07AF1C1B4B1032B0ACAD88DA3EB03D89A575C59FE602A65E8C246138 ] CLFS            C:\Windows\system32\CLFS.sys
04:42:09.0015 0x103c  CLFS - ok
04:42:09.0019 0x103c  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
04:42:09.0030 0x103c  clr_optimization_v2.0.50727_32 - ok
04:42:09.0035 0x103c  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
04:42:09.0046 0x103c  clr_optimization_v2.0.50727_64 - ok
04:42:09.0053 0x103c  [ 2BA609641FA64BAB02ACD3C0095672F5, FD1FE403864F0564CA4A2F1D7415649B8FFE16F8ED33C4B44ACB21767118AD5F ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
04:42:09.0067 0x103c  clr_optimization_v4.0.30319_32 - ok
04:42:09.0070 0x103c  [ 7C7502CD2A2CFAB399D0D8DA95DB03E7, 4AE53B468CF597FCFD912A6EEE27E87EE4D9BC73F2A794FB5DF5DA46C1DD1289 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
04:42:09.0083 0x103c  clr_optimization_v4.0.30319_64 - ok
04:42:09.0085 0x103c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
04:42:09.0120 0x103c  CmBatt - ok
04:42:09.0123 0x103c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
04:42:09.0140 0x103c  cmdide - ok
04:42:09.0150 0x103c  [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG            C:\Windows\system32\Drivers\cng.sys
04:42:09.0176 0x103c  CNG - ok
04:42:09.0179 0x103c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
04:42:09.0197 0x103c  Compbatt - ok
04:42:09.0200 0x103c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
04:42:09.0232 0x103c  CompositeBus - ok
04:42:09.0234 0x103c  COMSysApp - ok
04:42:09.0237 0x103c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk        C:\Windows\system32\DRIVERS\crcdisk.sys
04:42:09.0254 0x103c  crcdisk - ok
04:42:09.0260 0x103c  [ 48FEDBE324F1EA9417BA1D62AE863011, 2C3D84F0842237A3BF2838DDB4126807977EB36588FA669B1E6671077584EF18 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
04:42:09.0275 0x103c  CryptSvc - ok
04:42:09.0281 0x103c  [ B1C55A95006D621D04FE4A23F86C0A54, 41AE30A454FC3051AFC316A3BD61D96A27E6E4C3B94955F2026549027C1EA9BE ] DCamUSBEMPIA    C:\Windows\system32\DRIVERS\emDevice64.sys
04:42:09.0296 0x103c  DCamUSBEMPIA - ok
04:42:09.0306 0x103c  [ 5E9F8D029D9B03110D835CBFC058068B, 038FDF99C643C8102026BA26A75899A56E91AD0C239DF71AA5443FD35C718C78 ] DcomLaunch      C:\Windows\system32\rpcss.dll
04:42:09.0332 0x103c  DcomLaunch - ok
04:42:09.0339 0x103c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc      C:\Windows\System32\defragsvc.dll
04:42:09.0376 0x103c  defragsvc - ok
04:42:09.0380 0x103c  [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
04:42:09.0405 0x103c  DfsC - ok
04:42:09.0409 0x103c  [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
04:42:09.0432 0x103c  dg_ssudbus - ok
04:42:09.0438 0x103c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
04:42:09.0455 0x103c  Dhcp - ok
04:42:09.0478 0x103c  [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack      C:\Windows\system32\diagtrack.dll
04:42:09.0515 0x103c  DiagTrack - ok
04:42:09.0518 0x103c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
04:42:09.0552 0x103c  discache - ok
04:42:09.0555 0x103c  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys
04:42:09.0575 0x103c  Disk - ok
04:42:09.0579 0x103c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
04:42:09.0594 0x103c  Dnscache - ok
04:42:09.0600 0x103c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc        C:\Windows\System32\dot3svc.dll
04:42:09.0628 0x103c  dot3svc - ok
04:42:09.0632 0x103c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS            C:\Windows\system32\dps.dll
04:42:09.0658 0x103c  DPS - ok
04:42:09.0660 0x103c  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud        C:\Windows\system32\drivers\drmkaud.sys
04:42:09.0681 0x103c  drmkaud - ok
04:42:09.0688 0x103c  [ 33F90B202E9DD9B7D489EB59310FDC34, 6ECF6669433E090E9CF6B1875AF18D2C06F8CDB3901D58BF89C3E2202574ABBD ] dtsoftbus01    C:\Windows\system32\DRIVERS\dtsoftbus01.sys
04:42:09.0713 0x103c  dtsoftbus01 - ok
04:42:09.0731 0x103c  [ 5CEF80AE869336376F550ECAE91E424A, 49152AC35556A5629AE7A4A762FDB2112FAD1C9CDB91E6196172809F74A3149A ] DXGKrnl        C:\Windows\System32\drivers\dxgkrnl.sys
04:42:09.0773 0x103c  DXGKrnl - ok
04:42:09.0779 0x103c  [ 10E85B0D2FC31ACDAFE3A41C8CCFF227, 70D77F1A04A0F889CB493220EC817C6D4C3E46D5E25852B0683D82374F540029 ] DxVGrb          C:\Windows\system32\drivers\DxVGrb.sys
04:42:09.0803 0x103c  DxVGrb - ok
04:42:09.0813 0x103c  [ 73F8DE25B04A66CE3BE5D09A10DE56E6, ABA5AA50D936897CC71D710BBCF9A1B1CCCAC290FCD10A710E4471C1CDDE1093 ] e1dexpress      C:\Windows\system32\DRIVERS\e1d62x64.sys
04:42:09.0844 0x103c  e1dexpress - ok
04:42:09.0848 0x103c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost        C:\Windows\System32\eapsvc.dll
04:42:09.0874 0x103c  EapHost - ok
04:42:09.0876 0x103c  EasyAntiCheat - ok
04:42:09.0925 0x103c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv          C:\Windows\system32\DRIVERS\evbda.sys
04:42:09.0991 0x103c  ebdrv - ok
04:42:09.0996 0x103c  [ 61FF4456A65C5CF4CFF918F5C484F0A0, F9B6DDF62B4175093DD38C00520C7F0D52FBAB0077A8ED1391DD5188E400F481 ] EFS            C:\Windows\System32\lsass.exe
04:42:10.0009 0x103c  EFS - ok
04:42:10.0022 0x103c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr        C:\Windows\ehome\ehRecvr.exe
04:42:10.0047 0x103c  ehRecvr - ok
04:42:10.0051 0x103c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched        C:\Windows\ehome\ehsched.exe
04:42:10.0064 0x103c  ehSched - ok
04:42:10.0074 0x103c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor        C:\Windows\system32\DRIVERS\elxstor.sys
04:42:10.0106 0x103c  elxstor - ok
04:42:10.0109 0x103c  [ 8543BB84CD5872CD1619183F5CBBE3F9, 72009227CCFA644360217A40C9AE4C8860808026EF2BD3A76FB908FB3A35093A ] emAudio        C:\Windows\system32\drivers\emAudio64.sys
04:42:10.0132 0x103c  emAudio - ok
04:42:10.0134 0x103c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
04:42:10.0155 0x103c  ErrDev - ok
04:42:10.0159 0x103c  [ 5C3BF188F182C26974646A13B0CA4715, 5115BDA0CEEF830DDF14AC9B95E328218EFEA35AED337DD936A2D8F275ADBFAF ] Eve            C:\Windows\system32\DRIVERS\eve.sys
04:42:10.0176 0x103c  Eve - ok
04:42:10.0184 0x103c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem    C:\Windows\system32\es.dll
04:42:10.0216 0x103c  EventSystem - ok
04:42:10.0222 0x103c  [ 7E45F8B117419ABA3BB26579F6E70324, 03FE86519860153E1BE571F10ACC9BA58FFB5A661C5C3EBDF3B77973BCD96C84 ] exfat          C:\Windows\system32\drivers\exfat.sys
04:42:10.0248 0x103c  exfat - ok
04:42:10.0253 0x103c  [ 6EDFA237D25433C03F42FBFDB16BDD24, A30F89A40F7AFC475D3C2D3591FB9AFC06AE3FEBC915FDCB24ED77946FBA4E2C ] fastfat        C:\Windows\system32\drivers\fastfat.sys
04:42:10.0279 0x103c  fastfat - ok
04:42:10.0292 0x103c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax            C:\Windows\system32\fxssvc.exe
04:42:10.0317 0x103c  Fax - ok
04:42:10.0320 0x103c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc            C:\Windows\system32\DRIVERS\fdc.sys
04:42:10.0352 0x103c  fdc - ok
04:42:10.0355 0x103c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost        C:\Windows\system32\fdPHost.dll
04:42:10.0379 0x103c  fdPHost - ok
04:42:10.0382 0x103c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
04:42:10.0406 0x103c  FDResPub - ok
04:42:10.0408 0x103c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
04:42:10.0428 0x103c  FileInfo - ok
04:42:10.0430 0x103c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace      C:\Windows\system32\drivers\filetrace.sys
04:42:10.0464 0x103c  Filetrace - ok
04:42:10.0467 0x103c  [ 73FBB50C4D92ADC30A9D57A269489A0B, 10DBC65126EEA820B829521C882A4AFE3BCD86ED53C703703DF2149A0220E10F ] FiltUSBEMPIA    C:\Windows\system32\DRIVERS\emFilter64.sys
04:42:10.0477 0x103c  FiltUSBEMPIA - ok
04:42:10.0480 0x103c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
04:42:10.0499 0x103c  flpydisk - ok
04:42:10.0505 0x103c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
04:42:10.0525 0x103c  FltMgr - ok
04:42:10.0545 0x103c  [ 785F474FB5E67E448E1931C98E8D0ABC, 911697D580CBF508A6F4A52D4F95A6976CF9A0EC3549076A8D0B5C8BD947C989 ] FontCache      C:\Windows\system32\FntCache.dll
04:42:10.0577 0x103c  FontCache - ok
04:42:10.0581 0x103c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
04:42:10.0590 0x103c  FontCache3.0.0.0 - ok
04:42:10.0593 0x103c  [ DDA886136E50D00BFFD202AAE37A55E5, 257794E68DCEB6DC684C9EDACCC2A23062F2EE1D180683DB20AAD89D9B18402B ] fsbts          C:\Windows\system32\Drivers\fsbts.sys
04:42:10.0603 0x103c  fsbts - ok
04:42:10.0606 0x103c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends      C:\Windows\system32\drivers\FsDepends.sys
04:42:10.0621 0x103c  FsDepends - ok
04:42:10.0623 0x103c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
04:42:10.0642 0x103c  Fs_Rec - ok
04:42:10.0647 0x103c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
04:42:10.0673 0x103c  fvevol - ok
04:42:10.0676 0x103c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
04:42:10.0695 0x103c  gagp30kx - ok
04:42:10.0699 0x103c  [ B93252C4C5A3733ECD5522CAF88DE02D, 382450F0FF238B6077A78F75AC5D4E53AD7D884706B90E7AC4D4DF467C9A2162 ] GigasetGenericUSB_x64 C:\Windows\system32\DRIVERS\GigasetGenericUSB_x64.sys
04:42:10.0724 0x103c  GigasetGenericUSB_x64 - ok
04:42:10.0739 0x103c  [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc          C:\Windows\System32\gpsvc.dll
04:42:10.0764 0x103c  gpsvc - ok
04:42:10.0767 0x103c  [ B9893A68032A6D9ADDB5B98287C630F7, F0280764D7B31F1EA634E91397229B1C064A7C1B3A77A6BBD123CEA74180789F ] grmnusb        C:\Windows\system32\drivers\grmnusb.sys
04:42:10.0785 0x103c  grmnusb - ok
04:42:10.0789 0x103c  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
04:42:10.0799 0x103c  gupdate - ok
04:42:10.0829 0x103c  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
04:42:10.0839 0x103c  gupdatem - ok
04:42:10.0842 0x103c  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi        C:\Windows\system32\DRIVERS\hamachi.sys
04:42:10.0859 0x103c  hamachi - ok
04:42:10.0862 0x103c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
04:42:10.0883 0x103c  hcw85cir - ok
04:42:10.0891 0x103c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
04:42:10.0921 0x103c  HdAudAddService - ok
04:42:10.0925 0x103c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
04:42:10.0950 0x103c  HDAudBus - ok
04:42:10.0953 0x103c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt        C:\Windows\system32\DRIVERS\HidBatt.sys
04:42:10.0975 0x103c  HidBatt - ok
04:42:10.0978 0x103c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
04:42:11.0003 0x103c  HidBth - ok
04:42:11.0006 0x103c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr          C:\Windows\system32\DRIVERS\hidir.sys
04:42:11.0029 0x103c  HidIr - ok
04:42:11.0031 0x103c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv        C:\Windows\system32\hidserv.dll
04:42:11.0056 0x103c  hidserv - ok
04:42:11.0060 0x103c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
04:42:11.0081 0x103c  HidUsb - ok
04:42:11.0125 0x103c  [ 70F8D70C72DFDC2EE340924BE18A4ECA, 655EEAE8D5AC590642D9664A05532D3B6CDFD8B83DAB77609378792776E2B004 ] HiPatchService  D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
04:42:11.0132 0x103c  HiPatchService - detected UnsignedFile.Multi.Generic ( 1 )
04:42:11.0216 0x103c  HiPatchService ( UnsignedFile.Multi.Generic ) - warning
04:42:11.0300 0x103c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
04:42:11.0326 0x103c  hkmsvc - ok
04:42:11.0332 0x103c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
04:42:11.0348 0x103c  HomeGroupListener - ok
04:42:11.0353 0x103c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
04:42:11.0369 0x103c  HomeGroupProvider - ok
04:42:11.0373 0x103c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
04:42:11.0392 0x103c  HpSAMD - ok
04:42:11.0406 0x103c  [ CF5C9BD985120781200D35FD445D0BD5, 91B37F595A196542458CBBCDAD80779721D228A7030A34E55995DDBB06649248 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
04:42:11.0450 0x103c  HTTP - ok
04:42:11.0453 0x103c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
04:42:11.0467 0x103c  hwpolicy - ok
04:42:11.0470 0x103c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
04:42:11.0493 0x103c  i8042prt - ok
04:42:11.0504 0x103c  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA        C:\Windows\system32\DRIVERS\iaStorA.sys
04:42:11.0523 0x103c  iaStorA - ok
04:42:11.0526 0x103c  [ CE5CD8CBE940965867D507AB8EA2795A, 1CC2C23A1436E4C911DD3B942D8F6DABB7249AB04426F9AB6B6045034226DD25 ] iaStorF        C:\Windows\system32\DRIVERS\iaStorF.sys
04:42:11.0544 0x103c  iaStorF - ok
04:42:11.0552 0x103c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV        C:\Windows\system32\drivers\iaStorV.sys
04:42:11.0581 0x103c  iaStorV - ok
04:42:11.0585 0x103c  [ D9A9FFC89F61CAD4AD9EF31FBB17E634, F81184889B30DA8947F22A9C9ED5C542295ED70F0A1C27D1C91BAC21F4BCD987 ] ICCS            C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
04:42:11.0597 0x103c  ICCS - ok
04:42:11.0601 0x103c  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
04:42:11.0609 0x103c  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
04:42:11.0867 0x103c  Detect skipped due to KSN trusted
04:42:11.0867 0x103c  IDriverT - ok
04:42:11.0883 0x103c  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc          C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
04:42:11.0908 0x103c  idsvc - ok
04:42:11.0911 0x103c  IEEtwCollectorService - ok
04:42:11.0913 0x103c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp          C:\Windows\system32\DRIVERS\iirsp.sys
04:42:11.0933 0x103c  iirsp - ok
04:42:11.0947 0x103c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
04:42:11.0976 0x103c  IKEEXT - ok
04:42:12.0034 0x103c  [ 2BEE14AC102CF1259AC99ABF53291A8B, 45FAF81302E7A575D378A67F4EF75C89FDDE3B16AC3155BB2803A54D3A7B0DD3 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
04:42:12.0104 0x103c  IntcAzAudAddService - ok
04:42:12.0120 0x103c  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
04:42:12.0140 0x103c  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
04:42:12.0175 0x103c  Detect skipped due to KSN trusted
04:42:12.0175 0x103c  Intel(R) Capability Licensing Service Interface - ok
04:42:12.0189 0x103c  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
04:42:12.0212 0x103c  Intel(R) Capability Licensing Service TCP IP Interface - ok
04:42:12.0215 0x103c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
04:42:12.0233 0x103c  intelide - ok
04:42:12.0236 0x103c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
04:42:12.0258 0x103c  intelppm - ok
04:42:12.0262 0x103c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum      C:\Windows\system32\ipbusenum.dll
04:42:12.0288 0x103c  IPBusEnum - ok
04:42:12.0291 0x103c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
04:42:12.0326 0x103c  IpFilterDriver - ok
04:42:12.0336 0x103c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
04:42:12.0358 0x103c  iphlpsvc - ok
04:42:12.0361 0x103c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV        C:\Windows\system32\drivers\IPMIDrv.sys
04:42:12.0383 0x103c  IPMIDRV - ok
04:42:12.0386 0x103c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT          C:\Windows\system32\drivers\ipnat.sys
04:42:12.0422 0x103c  IPNAT - ok
04:42:12.0424 0x103c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
04:42:12.0447 0x103c  IRENUM - ok
04:42:12.0450 0x103c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
04:42:12.0469 0x103c  isapnp - ok
04:42:12.0479 0x103c  iscFlash - ok
04:42:12.0485 0x103c  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
04:42:12.0509 0x103c  iScsiPrt - ok
04:42:12.0512 0x103c  [ 78D369F8A81A341109FBA1DB64B4C512, E584F693255CCBF7006E7D35984149CF599BB0849A8F02EFDD6223DF0D606049 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
04:42:12.0529 0x103c  iusb3hcs - ok
04:42:12.0537 0x103c  [ 5B632ABA038CE2E2D5D2D1115C6B26D1, 605A8FFA704E4369CF9D17DF8630DC9E196B8920D47F1CC5151759E60B234C1F ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
04:42:12.0565 0x103c  iusb3hub - ok
04:42:12.0579 0x103c  [ EA841584EF59528D11F20355770E427E, 515737761BB2A0A233F4AD141E28D93E3B9789320A15B7D5FB3DB5AC3CD8E249 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
04:42:12.0617 0x103c  iusb3xhc - ok
04:42:12.0623 0x103c  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
04:42:12.0634 0x103c  jhi_service - ok
04:42:12.0637 0x103c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
04:42:12.0655 0x103c  kbdclass - ok
04:42:12.0658 0x103c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
04:42:12.0678 0x103c  kbdhid - ok
04:42:12.0680 0x103c  [ 61FF4456A65C5CF4CFF918F5C484F0A0, F9B6DDF62B4175093DD38C00520C7F0D52FBAB0077A8ED1391DD5188E400F481 ] KeyIso          C:\Windows\system32\lsass.exe
04:42:12.0692 0x103c  KeyIso - ok
04:42:12.0695 0x103c  [ B6839909DDC1DDA53A5470DA3DE638A4, A127A15D31F9C291DCBAF05BA8513E9CC1084E5799D3E07CF7F6C874F7EB9546 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
04:42:12.0710 0x103c  KSecDD - ok
04:42:12.0714 0x103c  [ EF5F0751E656C74E550E46B047FBEA57, 2784D6ECFFEB2A98DE81BC47052A5BEEE77BBD8395BA89BE1CB82B9EEF50F846 ] KSecPkg        C:\Windows\system32\Drivers\ksecpkg.sys
04:42:12.0733 0x103c  KSecPkg - ok
04:42:12.0736 0x103c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk        C:\Windows\system32\drivers\ksthunk.sys
04:42:12.0770 0x103c  ksthunk - ok
04:42:12.0777 0x103c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm          C:\Windows\system32\msdtckrm.dll
04:42:12.0808 0x103c  KtmRm - ok
04:42:12.0814 0x103c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
04:42:12.0844 0x103c  LanmanServer - ok
04:42:12.0847 0x103c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
04:42:12.0875 0x103c  LanmanWorkstation - ok
04:42:12.0878 0x103c  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum      C:\Windows\system32\drivers\LGBusEnum.sys
04:42:12.0897 0x103c  LGBusEnum - ok
04:42:12.0900 0x103c  [ 94AF1384A67B9FCF5651E70BC9D4C526, 9C025F7BBB5BBE9DAF3DEF2F6385CE77C8F413912C4D16930814F6D19B62B367 ] LGSHidFilt      C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
04:42:12.0909 0x103c  LGSHidFilt - ok
04:42:12.0911 0x103c  [ 8F4DA100274CF85D94FBA8CA76125255, 1ADA7C36C915CB9BD41CF291F8E6990746A83F4D2ABCC5CAF765A3CE388BE5E5 ] LGSUsbFilt      C:\Windows\system32\DRIVERS\LGSUsbFilt.Sys
04:42:12.0920 0x103c  LGSUsbFilt - ok
04:42:12.0923 0x103c  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
04:42:12.0940 0x103c  LGVirHid - ok
04:42:12.0943 0x103c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
04:42:12.0978 0x103c  lltdio - ok
04:42:12.0985 0x103c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc        C:\Windows\System32\lltdsvc.dll
04:42:13.0014 0x103c  lltdsvc - ok
04:42:13.0016 0x103c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts        C:\Windows\System32\lmhsvc.dll
04:42:13.0041 0x103c  lmhosts - ok
04:42:13.0049 0x103c  [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS            C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
04:42:13.0065 0x103c  LMS - ok
04:42:13.0069 0x103c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
04:42:13.0090 0x103c  LSI_FC - ok
04:42:13.0093 0x103c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS        C:\Windows\system32\DRIVERS\lsi_sas.sys
04:42:13.0114 0x103c  LSI_SAS - ok
04:42:13.0117 0x103c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
04:42:13.0137 0x103c  LSI_SAS2 - ok
04:42:13.0141 0x103c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
04:42:13.0162 0x103c  LSI_SCSI - ok
04:42:13.0165 0x103c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv          C:\Windows\system32\drivers\luafv.sys
04:42:13.0203 0x103c  luafv - ok
04:42:13.0210 0x103c  [ 024DA28053D57E9E32BEE52600576BBB, 8EC636DAB90A835DEBA2EC6176F4547EEF557415FF77C6378EF423569702731E ] MarvinBus      C:\Windows\system32\DRIVERS\MarvinBus64.sys
04:42:13.0237 0x103c  MarvinBus - ok
04:42:13.0240 0x103c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc        C:\Windows\system32\Mcx2Svc.dll
04:42:13.0256 0x103c  Mcx2Svc - ok
04:42:13.0258 0x103c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas        C:\Windows\system32\DRIVERS\megasas.sys
04:42:13.0277 0x103c  megasas - ok
04:42:13.0284 0x103c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
04:42:13.0308 0x103c  MegaSR - ok
04:42:13.0312 0x103c  [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
04:42:13.0325 0x103c  MEIx64 - ok
04:42:13.0327 0x103c  memudrv - ok
04:42:13.0331 0x103c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS          C:\Windows\system32\mmcss.dll
04:42:13.0358 0x103c  MMCSS - ok
04:42:13.0361 0x103c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem          C:\Windows\system32\drivers\modem.sys
04:42:13.0397 0x103c  Modem - ok
04:42:13.0399 0x103c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor        C:\Windows\system32\DRIVERS\monitor.sys
04:42:13.0423 0x103c  monitor - ok
04:42:13.0426 0x103c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
04:42:13.0445 0x103c  mouclass - ok
04:42:13.0448 0x103c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
04:42:13.0470 0x103c  mouhid - ok
04:42:13.0474 0x103c  [ 072D8646E23ECF8A3F5F0157017B4DB6, EBFB1459ECC5AF94C94FB49CEBC724542612680F0777E24B5AA6E062C0EE5D94 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
04:42:13.0494 0x103c  mountmgr - ok
04:42:13.0499 0x103c  [ 86C9215967686BB8A6AEE8008D914BF8, 907A156AADC880F06EB7BBBC0C57EC14A205CEE43A2AD509F6BD4040CA4F327D ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
04:42:13.0511 0x103c  MozillaMaintenance - ok
04:42:13.0516 0x103c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
04:42:13.0536 0x103c  mpio - ok
04:42:13.0540 0x103c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
04:42:13.0576 0x103c  mpsdrv - ok
04:42:13.0591 0x103c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
04:42:13.0630 0x103c  MpsSvc - ok
04:42:13.0635 0x103c  [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
04:42:13.0662 0x103c  MRxDAV - ok
04:42:13.0666 0x103c  [ 0CAFC684CABD24D089A53467CAF5C7BB, 0E5B7264CCA845BFE0BF6CC084D75D7039DD5C66D8A38A1F896730A21ADF085E ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
04:42:13.0692 0x103c  mrxsmb - ok
04:42:13.0698 0x103c  [ B9361F539BAAC1D362808157EAE0BA3B, C26E0F7A1B32F2DDE597BB12FC06007372EDF01396BE58CDEB425AED6579FCDE ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
04:42:13.0728 0x103c  mrxsmb10 - ok
04:42:13.0732 0x103c  [ A77260AE4B9E7B6C11675FB907D27AE8, F72BA83B962E1FEF2B6FFB39BDC15D9707F3001FBD91AFE47909FBC7043440D7 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
04:42:13.0759 0x103c  mrxsmb20 - ok
04:42:13.0762 0x103c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
04:42:13.0781 0x103c  msahci - ok
04:42:13.0786 0x103c  [ 41FB1D61DF09C36CCAB0B04EEC66F6D5, C6D0F6B8429656C56A142F95AF0B4A85DD4B78A735664C8775F49C3B04C564B7 ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
04:42:13.0798 0x103c  MSCamSvc - ok
04:42:13.0802 0x103c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm          C:\Windows\system32\drivers\msdsm.sys
04:42:13.0823 0x103c  msdsm - ok
04:42:13.0827 0x103c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC          C:\Windows\System32\msdtc.exe
04:42:13.0843 0x103c  MSDTC - ok
04:42:13.0847 0x103c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
04:42:13.0881 0x103c  Msfs - ok
04:42:13.0884 0x103c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf      C:\Windows\System32\drivers\mshidkmdf.sys
04:42:13.0917 0x103c  mshidkmdf - ok
04:42:13.0920 0x103c  [ BB590070D606AE6F008341FC9A7B2AD7, CF1073A093E679C5BCA19681789FBB85A8286E356F2C0609E0B446DF65A86E29 ] MSHUSBVideo    C:\Windows\system32\Drivers\nx6000.sys
04:42:13.0939 0x103c  MSHUSBVideo - ok
04:42:13.0941 0x103c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
04:42:13.0960 0x103c  msisadrv - ok
04:42:13.0965 0x103c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI        C:\Windows\system32\iscsiexe.dll
04:42:13.0994 0x103c  MSiSCSI - ok
04:42:13.0996 0x103c  msiserver - ok
04:42:13.0998 0x103c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV        C:\Windows\system32\drivers\MSKSSRV.sys
04:42:14.0033 0x103c  MSKSSRV - ok
04:42:14.0035 0x103c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
04:42:14.0069 0x103c  MSPCLOCK - ok
04:42:14.0071 0x103c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM          C:\Windows\system32\drivers\MSPQM.sys
04:42:14.0107 0x103c  MSPQM - ok
04:42:14.0114 0x103c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC          C:\Windows\system32\drivers\MsRPC.sys
04:42:14.0136 0x103c  MsRPC - ok
04:42:14.0139 0x103c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
04:42:14.0160 0x103c  mssmbios - ok
04:42:14.0163 0x103c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE          C:\Windows\system32\drivers\MSTEE.sys
04:42:14.0198 0x103c  MSTEE - ok
04:42:14.0201 0x103c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
04:42:14.0221 0x103c  MTConfig - ok
04:42:14.0225 0x103c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup            C:\Windows\system32\Drivers\mup.sys
04:42:14.0243 0x103c  Mup - ok
04:42:14.0252 0x103c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
04:42:14.0285 0x103c  napagent - ok
04:42:14.0293 0x103c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP    C:\Windows\system32\DRIVERS\nwifi.sys
04:42:14.0328 0x103c  NativeWifiP - ok
04:42:14.0344 0x103c  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
04:42:14.0387 0x103c  NDIS - ok
04:42:14.0390 0x103c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap        C:\Windows\system32\DRIVERS\ndiscap.sys
04:42:14.0425 0x103c  NdisCap - ok
04:42:14.0427 0x103c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
04:42:14.0459 0x103c  NdisTapi - ok
04:42:14.0462 0x103c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio        C:\Windows\system32\DRIVERS\ndisuio.sys
04:42:14.0496 0x103c  Ndisuio - ok
04:42:14.0500 0x103c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan        C:\Windows\system32\DRIVERS\ndiswan.sys
04:42:14.0536 0x103c  NdisWan - ok
04:42:14.0539 0x103c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy        C:\Windows\system32\drivers\NDProxy.sys
04:42:14.0573 0x103c  NDProxy - ok
04:42:14.0576 0x103c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS        C:\Windows\system32\DRIVERS\netbios.sys
04:42:14.0611 0x103c  NetBIOS - ok
04:42:14.0617 0x103c  [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT          C:\Windows\system32\DRIVERS\netbt.sys
04:42:14.0645 0x103c  NetBT - ok
04:42:14.0647 0x103c  [ 61FF4456A65C5CF4CFF918F5C484F0A0, F9B6DDF62B4175093DD38C00520C7F0D52FBAB0077A8ED1391DD5188E400F481 ] Netlogon        C:\Windows\system32\lsass.exe
04:42:14.0659 0x103c  Netlogon - ok
04:42:14.0666 0x103c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
04:42:14.0697 0x103c  Netman - ok
04:42:14.0705 0x103c  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:42:14.0718 0x103c  NetMsmqActivator - ok
04:42:14.0721 0x103c  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:42:14.0733 0x103c  NetPipeActivator - ok
04:42:14.0742 0x103c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
04:42:14.0775 0x103c  netprofm - ok
04:42:14.0779 0x103c  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:42:14.0791 0x103c  NetTcpActivator - ok
04:42:14.0794 0x103c  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:42:14.0806 0x103c  NetTcpPortSharing - ok
04:42:14.0809 0x103c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960        C:\Windows\system32\DRIVERS\nfrd960.sys
04:42:14.0828 0x103c  nfrd960 - ok
04:42:14.0834 0x103c  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
04:42:14.0852 0x103c  NlaSvc - ok
04:42:14.0855 0x103c  [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] npf            C:\Windows\system32\drivers\npf.sys
04:42:14.0874 0x103c  npf - ok
04:42:14.0877 0x103c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
04:42:14.0910 0x103c  Npfs - ok
04:42:14.0913 0x103c  npggsvc - ok
04:42:14.0915 0x103c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi            C:\Windows\system32\nsisvc.dll
04:42:14.0941 0x103c  nsi - ok
04:42:14.0944 0x103c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
04:42:14.0980 0x103c  nsiproxy - ok
04:42:15.0007 0x103c  [ 7FD5A7FB8F55254E9AF5666C653AF3CA, 5EE9805BB4A952AE455D08953FF12E55879776A521B3333F2730AC552DC17C48 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
04:42:15.0069 0x103c  Ntfs - ok
04:42:15.0073 0x103c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
04:42:15.0105 0x103c  Null - ok
04:42:15.0115 0x103c  [ C1F85D44C56DAD7545A1918BF421B30F, 612C59657D9FC548D2287E11032FCFB70F54362B4DD771CF3193C48BCD75A150 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
04:42:15.0133 0x103c  NvContainerLocalSystem - ok
04:42:15.0143 0x103c  [ C1F85D44C56DAD7545A1918BF421B30F, 612C59657D9FC548D2287E11032FCFB70F54362B4DD771CF3193C48BCD75A150 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
04:42:15.0159 0x103c  NvContainerNetworkService - ok
04:42:15.0166 0x103c  [ 207A78939B7BBA0EFE8BFA947A35E71C, BB7DDFED575F81CAB958DDC7CFF2D798EB14DAE633F49FA2229D98BDC489C0EE ] NVHDA          C:\Windows\system32\drivers\nvhda64v.sys
04:42:15.0180 0x103c  NVHDA - ok
04:42:15.0383 0x103c  [ 0FE6196F09595EAD8C5BCA1DC420114B, 1BDE8F6F860FBA1D234081711F4329F04D3B68E4A705BB3F8F3D2C15CA6BA7DA ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
04:42:15.0631 0x103c  nvlddmkm - ok
04:42:15.0648 0x103c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
04:42:15.0670 0x103c  nvraid - ok
04:42:15.0674 0x103c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
04:42:15.0697 0x103c  nvstor - ok
04:42:15.0699 0x103c  [ D80133F0F0E1B01AB401EB8EDDED2401, 33AD733BCC62CF0741272FBA78B9FCCA26B63A80C869D78B1DB27E96C71311FE ] NvStreamKms    C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
04:42:15.0718 0x103c  NvStreamKms - ok
04:42:15.0727 0x103c  [ 9CAD9C932B4F8F8E3B50630C811815F7, 34ECE47CC59C41ECF48DE85D16022B8D03F399D603557B73D990EB01C8E07339 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
04:42:15.0743 0x103c  NvTelemetryContainer - ok
04:42:15.0747 0x103c  [ 3569074FE33A57E74A49E9B71A316714, 12EA5B1BAD6B535B4C8D822557712D13DF5EAD26CB4BC85B9309664BFB20200D ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
04:42:15.0766 0x103c  nvvad_WaveExtensible - ok
04:42:15.0769 0x103c  [ 0E624D8E9B6BFDA269FB1C4456E5DEBE, 9F4E5485B719547F12A27EAFFAB32819AE38086D0933EA1525B5B62684A07477 ] nvvhci          C:\Windows\system32\DRIVERS\nvvhci.sys
04:42:15.0779 0x103c  nvvhci - ok
04:42:15.0783 0x103c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
04:42:15.0804 0x103c  nv_agp - ok
04:42:15.0807 0x103c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
04:42:15.0829 0x103c  ohci1394 - ok
04:42:15.0896 0x103c  [ 241B7F92346973C10195AD7861596709, E0972047D202F539A8367E50DE278AF6103FA72C8E61F6D5B0DC1EA8FD338355 ] Origin Client Service E:\Origin\OriginClientService.exe
04:42:15.0961 0x103c  Origin Client Service - ok
04:42:16.0049 0x103c  [ 685176200A9246175FB8EF95F6FF9EAF, 93A5F307B1DF545CA5334BBB81E5E388A3E7911A9FF6ECBC066A3A5E11300AE4 ] Origin Web Helper Service E:\Origin\OriginWebHelperService.exe
04:42:16.0116 0x103c  Origin Web Helper Service - ok
04:42:16.0144 0x103c  [ 5196E0C49F7F37B3C039D8D054BA83CC, 83C38A576FF62F7214B6541B4C7DA20FA8A942BDEBCB7A32C385C74C87DC3619 ] OverwolfUpdater C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
04:42:16.0184 0x103c  OverwolfUpdater - ok
04:42:16.0193 0x103c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
04:42:16.0212 0x103c  p2pimsvc - ok
04:42:16.0221 0x103c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
04:42:16.0242 0x103c  p2psvc - ok
04:42:16.0246 0x103c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport        C:\Windows\system32\DRIVERS\parport.sys
04:42:16.0271 0x103c  Parport - ok
04:42:16.0282 0x103c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr        C:\Windows\system32\drivers\partmgr.sys
04:42:16.0303 0x103c  partmgr - ok
04:42:16.0308 0x103c  [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc          C:\Windows\System32\pcasvc.dll
04:42:16.0327 0x103c  PcaSvc - ok
04:42:16.0333 0x103c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci            C:\Windows\system32\drivers\pci.sys
04:42:16.0358 0x103c  pci - ok
04:42:16.0360 0x103c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
04:42:16.0380 0x103c  pciide - ok
04:42:16.0386 0x103c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
04:42:16.0410 0x103c  pcmcia - ok
04:42:16.0414 0x103c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw            C:\Windows\system32\drivers\pcw.sys
04:42:16.0433 0x103c  pcw - ok
04:42:16.0445 0x103c  [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
04:42:16.0471 0x103c  PEAUTH - ok
04:42:16.0484 0x103c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
04:42:16.0497 0x103c  PerfHost - ok
04:42:16.0523 0x103c  [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla            C:\Windows\system32\pla.dll
04:42:16.0564 0x103c  pla - ok
04:42:16.0573 0x103c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
04:42:16.0594 0x103c  PlugPlay - ok
04:42:16.0597 0x103c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg    C:\Windows\system32\pnrpauto.dll
04:42:16.0611 0x103c  PNRPAutoReg - ok
04:42:16.0618 0x103c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc        C:\Windows\system32\pnrpsvc.dll
04:42:16.0636 0x103c  PNRPsvc - ok
04:42:16.0646 0x103c  [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent    C:\Windows\System32\ipsecsvc.dll
04:42:16.0668 0x103c  PolicyAgent - ok
04:42:16.0674 0x103c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power          C:\Windows\system32\umpo.dll
04:42:16.0706 0x103c  Power - ok
04:42:16.0710 0x103c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
04:42:16.0749 0x103c  PptpMiniport - ok
04:42:16.0752 0x103c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor      C:\Windows\system32\DRIVERS\processr.sys
04:42:16.0777 0x103c  Processor - ok
04:42:16.0782 0x103c  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc        C:\Windows\system32\profsvc.dll
04:42:16.0801 0x103c  ProfSvc - ok
04:42:16.0803 0x103c  [ 61FF4456A65C5CF4CFF918F5C484F0A0, F9B6DDF62B4175093DD38C00520C7F0D52FBAB0077A8ED1391DD5188E400F481 ] ProtectedStorage C:\Windows\system32\lsass.exe
04:42:16.0817 0x103c  ProtectedStorage - ok
04:42:16.0821 0x103c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
04:42:16.0860 0x103c  Psched - ok
04:42:16.0863 0x103c  [ D271C14EE0EEEA27359CD9E14E49F0DE, C69234841EE8E9A584CABF12CE2FA965F038BD30E78C57702B28EF4B3667BD7C ] PSKMAD          C:\Windows\system32\DRIVERS\PSKMAD.sys
04:42:16.0875 0x103c  PSKMAD - ok
04:42:16.0899 0x103c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
04:42:16.0960 0x103c  ql2300 - ok
04:42:16.0966 0x103c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
04:42:16.0990 0x103c  ql40xx - ok
04:42:16.0995 0x103c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE          C:\Windows\system32\qwave.dll
04:42:17.0016 0x103c  QWAVE - ok
04:42:17.0018 0x103c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
04:42:17.0045 0x103c  QWAVEdrv - ok
04:42:17.0047 0x103c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
04:42:17.0083 0x103c  RasAcd - ok
04:42:17.0086 0x103c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn    C:\Windows\system32\DRIVERS\AgileVpn.sys
04:42:17.0123 0x103c  RasAgileVpn - ok
04:42:17.0127 0x103c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto        C:\Windows\System32\rasauto.dll
04:42:17.0155 0x103c  RasAuto - ok
04:42:17.0159 0x103c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp        C:\Windows\system32\DRIVERS\rasl2tp.sys
04:42:17.0200 0x103c  Rasl2tp - ok
04:42:17.0207 0x103c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
04:42:17.0241 0x103c  RasMan - ok
04:42:17.0245 0x103c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
04:42:17.0284 0x103c  RasPppoe - ok
04:42:17.0287 0x103c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp        C:\Windows\system32\DRIVERS\rassstp.sys
04:42:17.0328 0x103c  RasSstp - ok
04:42:17.0343 0x103c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss          C:\Windows\system32\DRIVERS\rdbss.sys
04:42:17.0395 0x103c  rdbss - ok
04:42:17.0398 0x103c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
04:42:17.0421 0x103c  rdpbus - ok
04:42:17.0424 0x103c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
04:42:17.0458 0x103c  RDPCDD - ok
04:42:17.0462 0x103c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
04:42:17.0496 0x103c  RDPENCDD - ok
04:42:17.0499 0x103c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
04:42:17.0533 0x103c  RDPREFMP - ok
04:42:17.0538 0x103c  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD          C:\Windows\system32\drivers\RDPWD.sys
04:42:17.0565 0x103c  RDPWD - ok
04:42:17.0571 0x103c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
04:42:17.0595 0x103c  rdyboost - ok
04:42:17.0599 0x103c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
04:42:17.0627 0x103c  RemoteAccess - ok
04:42:17.0632 0x103c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
04:42:17.0661 0x103c  RemoteRegistry - ok
04:42:17.0670 0x103c  [ 9E18DF158751CF968E7DF83256D70233, 89385DA5ABD283F289E37D7D9E33358B06216E9B3659B2E70F19FD5BA49C7F90 ] RichVideo64    C:\Program Files\CyberLink\Shared files\RichVideo64.exe
04:42:17.0685 0x103c  RichVideo64 - ok
04:42:17.0689 0x103c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
04:42:17.0717 0x103c  RpcEptMapper - ok
04:42:17.0719 0x103c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
04:42:17.0732 0x103c  RpcLocator - ok
04:42:17.0742 0x103c  [ 5E9F8D029D9B03110D835CBFC058068B, 038FDF99C643C8102026BA26A75899A56E91AD0C239DF71AA5443FD35C718C78 ] RpcSs          C:\Windows\system32\rpcss.dll
04:42:17.0763 0x103c  RpcSs - ok
04:42:17.0768 0x103c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
04:42:17.0805 0x103c  rspndr - ok
04:42:17.0811 0x103c  [ 0BC1F83DC9CD93E233D7A5C0DFAB9A12, CE8C5C31706C57464769A514E69AE5C11F270F7615F1040395F0563F78B7A415 ] RTL2832UBDA    C:\Windows\system32\drivers\RTL2832UBDA.sys
04:42:17.0834 0x103c  RTL2832UBDA - ok
04:42:17.0837 0x103c  [ 06560C03CAC954B02CDDA6AEA1BA530C, 3E321DFD03A1D2447FE22273074744992F7692BAE10C3C879AFC10FE8B967528 ] RTL2832UUSB    C:\Windows\system32\Drivers\RTL2832UUSB.sys
04:42:17.0856 0x103c  RTL2832UUSB - ok
04:42:17.0859 0x103c  [ ED0504E312CA3DB775BEABD47B49C660, 76C7B8D813074A3B1CA25D6D7684FC002B16B10A9D5FC03A20A6706D2345F8D0 ] RTL2832U_IRHID  C:\Windows\system32\DRIVERS\RTL2832U_IRHID.sys
04:42:17.0877 0x103c  RTL2832U_IRHID - ok
04:42:17.0894 0x103c  [ 7461D3DA1AABB5F703504E958455A900, B77D36E095A476A8191C1771539F20529F82CACF3C945BF55D64C39EEF09D0EA ] RTL8192cu      C:\Windows\system32\DRIVERS\RTL8192cu.sys
04:42:17.0935 0x103c  RTL8192cu - ok
04:42:17.0938 0x103c  [ 61FF4456A65C5CF4CFF918F5C484F0A0, F9B6DDF62B4175093DD38C00520C7F0D52FBAB0077A8ED1391DD5188E400F481 ] SamSs          C:\Windows\system32\lsass.exe
04:42:17.0952 0x103c  SamSs - ok
04:42:17.0955 0x103c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
04:42:17.0977 0x103c  sbp2port - ok
04:42:17.0979 0x103c  [ EECBBF7D76300E5558D316983961FFC1, 33E8237C9A39CEB1F0F4FB7D0466959121CF707899F43B17D6DDD92EBA398815 ] ScanUSBEMPIA    C:\Windows\system32\DRIVERS\emScan64.sys
04:42:17.0991 0x103c  ScanUSBEMPIA - ok
04:42:17.0996 0x103c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
04:42:18.0027 0x103c  SCardSvr - ok
04:42:18.0030 0x103c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
04:42:18.0065 0x103c  scfilter - ok
04:42:18.0083 0x103c  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
04:42:18.0116 0x103c  Schedule - ok
04:42:18.0121 0x103c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc    C:\Windows\System32\certprop.dll
04:42:18.0146 0x103c  SCPolicySvc - ok
04:42:18.0149 0x103c  [ 1CA5A783B10EC897FCE91CF220D6C517, DCBCD9E90C73F883B9A55D972CF99F25373049B7684E6738E1E213A20369A5E6 ] scvad_simple    C:\Windows\system32\drivers\SplitCamAudio.sys
04:42:18.0172 0x103c  scvad_simple - ok
04:42:18.0177 0x103c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
04:42:18.0194 0x103c  SDRSVC - ok
04:42:18.0196 0x103c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
04:42:18.0219 0x103c  secdrv - ok
04:42:18.0222 0x103c  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
04:42:18.0237 0x103c  seclogon - ok
04:42:18.0240 0x103c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
04:42:18.0269 0x103c  SENS - ok
04:42:18.0272 0x103c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
04:42:18.0286 0x103c  SensrSvc - ok
04:42:18.0288 0x103c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum        C:\Windows\system32\DRIVERS\serenum.sys
04:42:18.0311 0x103c  Serenum - ok
04:42:18.0315 0x103c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
04:42:18.0349 0x103c  Serial - ok
04:42:18.0352 0x103c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
04:42:18.0377 0x103c  sermouse - ok
04:42:18.0384 0x103c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
04:42:18.0414 0x103c  SessionEnv - ok
04:42:18.0416 0x103c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk        C:\Windows\system32\drivers\sffdisk.sys
04:42:18.0441 0x103c  sffdisk - ok
04:42:18.0443 0x103c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
04:42:18.0468 0x103c  sffp_mmc - ok
04:42:18.0470 0x103c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd        C:\Windows\system32\drivers\sffp_sd.sys
04:42:18.0496 0x103c  sffp_sd - ok
04:42:18.0498 0x103c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy        C:\Windows\system32\DRIVERS\sfloppy.sys
04:42:18.0521 0x103c  sfloppy - ok
04:42:18.0529 0x103c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
04:42:18.0575 0x103c  SharedAccess - ok
04:42:18.0582 0x103c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
04:42:18.0616 0x103c  ShellHWDetection - ok
04:42:18.0619 0x103c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
04:42:18.0639 0x103c  SiSRaid2 - ok
04:42:18.0643 0x103c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
04:42:18.0664 0x103c  SiSRaid4 - ok
04:42:18.0668 0x103c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb            C:\Windows\system32\DRIVERS\smb.sys
04:42:18.0711 0x103c  Smb - ok
04:42:18.0715 0x103c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
04:42:18.0730 0x103c  SNMPTRAP - ok
04:42:18.0732 0x103c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr          C:\Windows\system32\drivers\spldr.sys
04:42:18.0751 0x103c  spldr - ok
04:42:18.0754 0x103c  [ 64065FFE37680ACACE4D2C8F3CF20541, F6D2883509C6B49180385AE850A6A50052C6450B7CC3DAFDEF551895EE37D444 ] splitcam_hd_driver C:\Windows\system32\DRIVERS\splitcam_hd_driver.sys
04:42:18.0775 0x103c  splitcam_hd_driver - ok
04:42:18.0786 0x103c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler        C:\Windows\System32\spoolsv.exe
04:42:18.0811 0x103c  Spooler - ok
04:42:18.0863 0x103c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
04:42:18.0949 0x103c  sppsvc - ok
04:42:18.0955 0x103c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify    C:\Windows\system32\sppuinotify.dll
04:42:18.0984 0x103c  sppuinotify - ok
04:42:18.0994 0x103c  [ 546C81F238F084A393EC54114741A0A8, AA223A2A8E8503CBDB0CE6A70620B372E0591070F9FF7D8532A93B54EF7B7E51 ] srv            C:\Windows\system32\DRIVERS\srv.sys
04:42:19.0029 0x103c  srv - ok
04:42:19.0037 0x103c  [ 431D2B06E8F93EAEC53E8FA37FCFF2F1, 4CB94D250E9D2646FCE7284D4D3CED1BB02E4D79AD33A414D16EF794195868CA ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
04:42:19.0073 0x103c  srv2 - ok
04:42:19.0078 0x103c  [ 42EDAB3E3E8E25C7093674936C2DB4BD, B2D5E006B748F24F0FF2CEFFC3D056F3D50E8A818BDFF4231C87C022A25F44ED ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
04:42:19.0105 0x103c  srvnet - ok
04:42:19.0111 0x103c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV        C:\Windows\System32\ssdpsrv.dll
04:42:19.0141 0x103c  SSDPSRV - ok
04:42:19.0145 0x103c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc        C:\Windows\system32\sstpsvc.dll
04:42:19.0175 0x103c  SstpSvc - ok
04:42:19.0180 0x103c  [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm        C:\Windows\system32\DRIVERS\ssudmdm.sys
04:42:19.0206 0x103c  ssudmdm - ok
04:42:19.0220 0x103c  [ 7DB9E612A2742ACEAB080B882E83141C, FFD1FA36E732F55223F3F4B5F845331DBB3073B023C2C5BF51A0E7680DEE7FA7 ] ss_conn_service C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
04:42:19.0243 0x103c  ss_conn_service - ok
04:42:19.0269 0x103c  [ 03404CCE10E4A207953E954C2AF8D41E, 380841C60C7730E14F81C2E2D011E944BE45CA082997B82A4859C2E49F812D01 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
04:42:19.0305 0x103c  Steam Client Service - ok
04:42:19.0309 0x103c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
04:42:19.0331 0x103c  stexstor - ok
04:42:19.0333 0x103c  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
04:42:19.0358 0x103c  StillCam - ok
04:42:19.0369 0x103c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
04:42:19.0395 0x103c  stisvc - ok
04:42:19.0398 0x103c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
04:42:19.0418 0x103c  swenum - ok
04:42:19.0428 0x103c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv          C:\Windows\System32\swprv.dll
04:42:19.0464 0x103c  swprv - ok
04:42:19.0492 0x103c  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain        C:\Windows\system32\sysmain.dll
04:42:19.0536 0x103c  SysMain - ok
04:42:19.0541 0x103c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
04:42:19.0560 0x103c  TabletInputService - ok
04:42:19.0563 0x103c  [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901        C:\Windows\system32\DRIVERS\tap0901.sys
04:42:19.0583 0x103c  tap0901 - ok
04:42:19.0590 0x103c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv        C:\Windows\System32\tapisrv.dll
04:42:19.0622 0x103c  TapiSrv - ok
04:42:19.0651 0x103c  [ 7FB36A0A036ADDACE0A868E4A43C1C27, AFDCD57C49D06F31C02F37C81B67BA148CDC9B62AD62B771925D31339DDA9012 ] Tcpip          C:\Windows\system32\drivers\tcpip.sys
04:42:19.0720 0x103c  Tcpip - ok
04:42:19.0751 0x103c  [ 7FB36A0A036ADDACE0A868E4A43C1C27, AFDCD57C49D06F31C02F37C81B67BA148CDC9B62AD62B771925D31339DDA9012 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
04:42:19.0811 0x103c  TCPIP6 - ok
04:42:19.0817 0x103c  [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
04:42:19.0843 0x103c  tcpipreg - ok
04:42:19.0846 0x103c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
04:42:19.0870 0x103c  TDPIPE - ok
04:42:19.0873 0x103c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP          C:\Windows\system32\drivers\tdtcp.sys
04:42:19.0896 0x103c  TDTCP - ok
04:42:19.0899 0x103c  [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] tdx            C:\Windows\system32\DRIVERS\tdx.sys
04:42:19.0924 0x103c  tdx - ok
04:42:20.0090 0x103c  [ 9C0B950F93833EC22A5D971AB77F263D, 5A0529791D1432DB33424D846C0A26B62899BAE7A2823EB3CB6EB0CDEF340557 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
04:42:20.0279 0x103c  TeamViewer - ok
04:42:20.0291 0x103c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
04:42:20.0307 0x103c  TermDD - ok
04:42:20.0319 0x103c  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService    C:\Windows\System32\termsrv.dll
04:42:20.0346 0x103c  TermService - ok
04:42:20.0349 0x103c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
04:42:20.0368 0x103c  Themes - ok
04:42:20.0372 0x103c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER    C:\Windows\system32\mmcss.dll
04:42:20.0399 0x103c  THREADORDER - ok
04:42:20.0404 0x103c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
04:42:20.0433 0x103c  TrkWks - ok
04:42:20.0438 0x103c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
04:42:20.0467 0x103c  TrustedInstaller - ok
04:42:20.0471 0x103c  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
04:42:20.0494 0x103c  tssecsrv - ok
04:42:20.0499 0x103c  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
04:42:20.0525 0x103c  TsUsbFlt - ok
04:42:20.0529 0x103c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
04:42:20.0567 0x103c  tunnel - ok
04:42:20.0569 0x103c  [ A070ABB9D85582B2BECADBE6FCD12350, 3EBFA349F87933E20C4EADA2FA2E64206CCAC70DFB8B52C2E41670FFB16D7336 ] t_mouse.sys    C:\Windows\system32\DRIVERS\t_mouse.sys
04:42:20.0591 0x103c  t_mouse.sys - ok
04:42:20.0594 0x103c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
04:42:20.0616 0x103c  uagp35 - ok
04:42:20.0624 0x103c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
04:42:20.0668 0x103c  udfs - ok
04:42:20.0673 0x103c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect      C:\Windows\system32\UI0Detect.exe
04:42:20.0689 0x103c  UI0Detect - ok
04:42:20.0693 0x103c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
04:42:20.0722 0x103c  uliagpkx - ok
04:42:20.0725 0x103c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus          C:\Windows\system32\DRIVERS\umbus.sys
04:42:20.0751 0x103c  umbus - ok
04:42:20.0754 0x103c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
04:42:20.0782 0x103c  UmPass - ok
04:42:20.0791 0x103c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
04:42:20.0825 0x103c  upnphost - ok
04:42:20.0830 0x103c  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
04:42:20.0855 0x103c  usbaudio - ok
04:42:20.0859 0x103c  [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp        C:\Windows\system32\DRIVERS\usbccgp.sys
04:42:20.0886 0x103c  usbccgp - ok
04:42:20.0890 0x103c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
04:42:20.0916 0x103c  usbcir - ok
04:42:20.0919 0x103c  [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci        C:\Windows\system32\drivers\usbehci.sys
04:42:20.0944 0x103c  usbehci - ok
04:42:20.0952 0x103c  [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
04:42:20.0984 0x103c  usbhub - ok
04:42:20.0987 0x103c  [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci        C:\Windows\system32\drivers\usbohci.sys
04:42:21.0053 0x103c  usbohci - ok
04:42:21.0056 0x103c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
04:42:21.0082 0x103c  usbprint - ok
04:42:21.0085 0x103c  [ 2C42E595E7E381596B9A14F88F5AE027, 948C2AD7FA0B01184312D1ABE43F2F3D85A934CF0658A8B2BDF9F0919568377B ] usbrndis6      C:\Windows\system32\DRIVERS\usb80236.sys
04:42:21.0109 0x103c  usbrndis6 - ok
04:42:21.0112 0x103c  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR        C:\Windows\system32\DRIVERS\USBSTOR.SYS
04:42:21.0139 0x103c  USBSTOR - ok
04:42:21.0142 0x103c  [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci        C:\Windows\system32\drivers\usbuhci.sys
04:42:21.0165 0x103c  usbuhci - ok
04:42:21.0170 0x103c  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
04:42:21.0199 0x103c  usbvideo - ok
04:42:21.0202 0x103c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms          C:\Windows\System32\uxsms.dll
04:42:21.0231 0x103c  UxSms - ok
04:42:21.0233 0x103c  [ 61FF4456A65C5CF4CFF918F5C484F0A0, F9B6DDF62B4175093DD38C00520C7F0D52FBAB0077A8ED1391DD5188E400F481 ] VaultSvc        C:\Windows\system32\lsass.exe
04:42:21.0247 0x103c  VaultSvc - ok
04:42:21.0251 0x103c  [ 348A3A2F65CFF137440127A98C307102, 4152AAE06F4A992FBD57F7BB86D5ACFF3FA0A41AB0E68B0A457ECAAF83088D3E ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
04:42:21.0275 0x103c  VBoxNetAdp - ok
04:42:21.0278 0x103c  VBoxNetFlt - ok
04:42:21.0280 0x103c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
04:42:21.0310 0x103c  vdrvroot - ok
04:42:21.0320 0x103c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds            C:\Windows\System32\vds.exe
04:42:21.0359 0x103c  vds - ok
04:42:21.0362 0x103c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga            C:\Windows\system32\DRIVERS\vgapnp.sys
04:42:21.0387 0x103c  vga - ok
04:42:21.0390 0x103c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave        C:\Windows\System32\drivers\vga.sys
04:42:21.0428 0x103c  VgaSave - ok
04:42:21.0433 0x103c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp          C:\Windows\system32\drivers\vhdmp.sys
04:42:21.0460 0x103c  vhdmp - ok
04:42:21.0462 0x103c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
04:42:21.0483 0x103c  viaide - ok
04:42:21.0487 0x103c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
04:42:21.0509 0x103c  volmgr - ok
04:42:21.0517 0x103c  [ 85C5468BC395819AE2A0C747334BA14C, 75EB4751F90F3347229442A5622539383CE0B1834EE7B995260D0D433BA2E25F ] volmgrx        C:\Windows\system32\drivers\volmgrx.sys
04:42:21.0542 0x103c  volmgrx - ok
04:42:21.0549 0x103c  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap        C:\Windows\system32\drivers\volsnap.sys
04:42:21.0577 0x103c  volsnap - ok
04:42:21.0582 0x103c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid        C:\Windows\system32\DRIVERS\vsmraid.sys
04:42:21.0607 0x103c  vsmraid - ok
04:42:21.0632 0x103c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS            C:\Windows\system32\vssvc.exe
04:42:21.0685 0x103c  VSS - ok
04:42:21.0689 0x103c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
04:42:21.0718 0x103c  vwifibus - ok
04:42:21.0722 0x103c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
04:42:21.0749 0x103c  vwififlt - ok
04:42:21.0752 0x103c  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp        C:\Windows\system32\DRIVERS\vwifimp.sys
04:42:21.0778 0x103c  vwifimp - ok
04:42:21.0786 0x103c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time        C:\Windows\system32\w32time.dll
04:42:21.0821 0x103c  W32Time - ok
04:42:21.0825 0x103c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
04:42:21.0848 0x103c  WacomPen - ok
04:42:21.0851 0x103c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
04:42:21.0891 0x103c  WANARP - ok
04:42:21.0894 0x103c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
04:42:21.0927 0x103c  Wanarpv6 - ok
04:42:21.0951 0x103c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
04:42:21.0992 0x103c  wbengine - ok
04:42:21.0999 0x103c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
04:42:22.0020 0x103c  WbioSrvc - ok
04:42:22.0028 0x103c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc        C:\Windows\System32\wcncsvc.dll
04:42:22.0051 0x103c  wcncsvc - ok
04:42:22.0054 0x103c  [ BC00873272B3771CCDA38336AF2B4D4B, 3E412DEC5F172B4C5FD5C227CD790EE56B90A00A8B538704E8F973D230BE2289 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
04:42:22.0071 0x103c  WcsPlugInService - ok
04:42:22.0074 0x103c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
04:42:22.0094 0x103c  Wd - ok
04:42:22.0107 0x103c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
04:42:22.0151 0x103c  Wdf01000 - ok
04:42:22.0155 0x103c  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
04:42:22.0172 0x103c  WdiServiceHost - ok
04:42:22.0175 0x103c  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost  C:\Windows\system32\wdi.dll
04:42:22.0191 0x103c  WdiSystemHost - ok
04:42:22.0197 0x103c  [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient      C:\Windows\System32\webclnt.dll
04:42:22.0219 0x103c  WebClient - ok
04:42:22.0225 0x103c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
04:42:22.0258 0x103c  Wecsvc - ok
04:42:22.0262 0x103c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport  C:\Windows\System32\wercplsupport.dll
04:42:22.0292 0x103c  wercplsupport - ok
04:42:22.0295 0x103c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
04:42:22.0326 0x103c  WerSvc - ok
04:42:22.0329 0x103c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
04:42:22.0366 0x103c  WfpLwf - ok
04:42:22.0370 0x103c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
04:42:22.0389 0x103c  WIMMount - ok
04:42:22.0391 0x103c  WinDefend - ok
04:42:22.0395 0x103c  WinHttpAutoProxySvc - ok
04:42:22.0403 0x103c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt        C:\Windows\system32\wbem\WMIsvc.dll
04:42:22.0435 0x103c  Winmgmt - ok
04:42:22.0466 0x103c  [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM          C:\Windows\system32\WsmSvc.dll
04:42:22.0518 0x103c  WinRM - ok
04:42:22.0525 0x103c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
04:42:22.0551 0x103c  WinUsb - ok
04:42:22.0566 0x103c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc        C:\Windows\System32\wlansvc.dll
04:42:22.0599 0x103c  Wlansvc - ok
04:42:22.0635 0x103c  [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc        C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
04:42:22.0683 0x103c  wlidsvc - ok
04:42:22.0688 0x103c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi        C:\Windows\system32\drivers\wmiacpi.sys
04:42:22.0713 0x103c  WmiAcpi - ok
04:42:22.0719 0x103c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
04:42:22.0737 0x103c  wmiApSrv - ok
04:42:22.0739 0x103c  WMPNetworkSvc - ok
04:42:22.0742 0x103c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
04:42:22.0758 0x103c  WPCSvc - ok
04:42:22.0762 0x103c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
04:42:22.0781 0x103c  WPDBusEnum - ok
04:42:22.0784 0x103c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl        C:\Windows\system32\drivers\ws2ifsl.sys
04:42:22.0820 0x103c  ws2ifsl - ok
04:42:22.0830 0x103c  [ 7F78CEC3A96BEF80E1D20439BDE08A53, F59C53991F0CA399C7DBB1F2D20E278050AC6D6C7B3449053D9176E8AE84F86B ] WsAppService    C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe
04:42:22.0849 0x103c  WsAppService - ok
04:42:22.0853 0x103c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
04:42:22.0873 0x103c  wscsvc - ok
04:42:22.0875 0x103c  WsDrvInst - ok
04:42:22.0878 0x103c  WSearch - ok
04:42:22.0918 0x103c  [ 88009DB9E1166B6B6713A858C176FECD, CBF4C63D3C5D14AF3C3F0D9C48E5AC9E7A4323BFB0363E9948FD801963BE1467 ] wuauserv        C:\Windows\system32\wuaueng.dll
04:42:22.0981 0x103c  wuauserv - ok
04:42:22.0986 0x103c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
04:42:23.0014 0x103c  WudfPf - ok
04:42:23.0020 0x103c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
04:42:23.0049 0x103c  WUDFRd - ok
04:42:23.0053 0x103c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc        C:\Windows\System32\WUDFSvc.dll
04:42:23.0070 0x103c  wudfsvc - ok
04:42:23.0076 0x103c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc        C:\Windows\System32\wwansvc.dll
04:42:23.0096 0x103c  WwanSvc - ok
04:42:23.0098 0x103c  xhunter1 - ok
04:42:23.0104 0x103c  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
04:42:23.0119 0x103c  xusb21 - ok
04:42:23.0123 0x103c  ================ Scan global ===============================
04:42:23.0125 0x103c  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
04:42:23.0131 0x103c  [ 8925F0181AB6A43A4AF6420211FDEC47, E795784FE4C62B463800C712D7E6AD855E22C80261C31DC8F3E3B9B6F2808B2F ] C:\Windows\system32\winsrv.dll
04:42:23.0141 0x103c  [ 8925F0181AB6A43A4AF6420211FDEC47, E795784FE4C62B463800C712D7E6AD855E22C80261C31DC8F3E3B9B6F2808B2F ] C:\Windows\system32\winsrv.dll
04:42:23.0148 0x103c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
04:42:23.0157 0x103c  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
04:42:23.0163 0x103c  [ Global ] - ok
04:42:23.0163 0x103c  ================ Scan MBR ==================================
04:42:23.0164 0x103c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
04:42:23.0198 0x103c  \Device\Harddisk0\DR0 - ok
04:42:23.0218 0x103c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
04:42:23.0301 0x103c  \Device\Harddisk1\DR1 - ok
04:42:23.0323 0x103c  [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk2\DR2
04:42:23.0379 0x103c  \Device\Harddisk2\DR2 - ok
04:42:23.0379 0x103c  ================ Scan VBR ==================================
04:42:23.0381 0x103c  [ 7BBDBEF73560D87FEA5C39E397AFDC46 ] \Device\Harddisk0\DR0\Partition1
04:42:23.0382 0x103c  \Device\Harddisk0\DR0\Partition1 - ok
04:42:23.0383 0x103c  [ 3432EDE2A7B8F3E73D7330E167C9CB32 ] \Device\Harddisk0\DR0\Partition2
04:42:23.0384 0x103c  \Device\Harddisk0\DR0\Partition2 - ok
04:42:23.0385 0x103c  [ 9BEC19E5519D94FE3CDDEA7486B2A91E ] \Device\Harddisk1\DR1\Partition1
04:42:23.0386 0x103c  \Device\Harddisk1\DR1\Partition1 - ok
04:42:23.0387 0x103c  [ 34C06E91BB64442142CA77B7D693AD42 ] \Device\Harddisk1\DR1\Partition2
04:42:23.0388 0x103c  \Device\Harddisk1\DR1\Partition2 - ok
04:42:23.0389 0x103c  [ A97C4610012178888FD8CC4BDE4DAC0E ] \Device\Harddisk1\DR1\Partition3
04:42:23.0390 0x103c  \Device\Harddisk1\DR1\Partition3 - ok
04:42:23.0391 0x103c  [ 8178AD706B39B8E88D7E152D2BA17ECE ] \Device\Harddisk2\DR2\Partition1
04:42:23.0393 0x103c  \Device\Harddisk2\DR2\Partition1 - ok
04:42:23.0393 0x103c  ================ Scan generic autorun ======================
04:42:23.0494 0x103c  [ 5BAD798CBAB39F3A56A9CD495320F67E, 668FB3F30DD99CBF9EBDDF4C079636DFD2C7693B3506AC8A6DD1B3CA4B5BAF11 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
04:42:23.0621 0x103c  RTHDVCPL - ok
04:42:23.0828 0x103c  [ 3F0B5EBDEB180C073E01A4A2DFA28C12, 0ACE6F70260E17284B8307D0DD0ACC9B59B379A99AE43429AB644B421ADAE8A7 ] C:\Program Files\Logitech Gaming Software\LCore.exe
04:42:24.0053 0x103c  Launch LCore - ok
04:42:24.0065 0x103c  [ C36BB659F08F046B139C8D1B980BF1AC, 405F03534BE8B45185695F68DEB47D4DAF04DCD6DF9D351CA6831D3721B1EFC4 ] C:\Windows\system32\rundll32.exe
04:42:24.0086 0x103c  ShadowPlay - ok
04:42:24.0093 0x103c  [ 8DD6F98101EBBA3FC92C8092333A6B32, 80FE7E4433731614B92F8C0256EA5440508C535EBDA45188D1225BFEDA6F0F67 ] C:\Program Files\AVAST Software\Avast\AvLaunch.exe
04:42:24.0108 0x103c  AvastUI.exe - ok
04:42:24.0108 0x103c  Malwarebytes Anti-Exploit - ok
04:42:24.0115 0x103c  [ EE8626BAD390E3F3EBCA5816F133F14A, 2E6331418F6EE99539822E18FCACE74EEEC9A4970BBFB392C89AF32088753525 ] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
04:42:24.0132 0x103c  KiesTrayAgent - ok
04:42:24.0142 0x103c  [ 1ACEE0D94147344AA7FEC959C52CAD87, 6FCCE5669F5A86684C2A15A0E6CD4F084AED74C0FD4FEE0CB382050338A9CE6A ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
04:42:24.0161 0x103c  SunJavaUpdateSched - ok
04:42:24.0180 0x103c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
04:42:24.0216 0x103c  Sidebar - ok
04:42:24.0220 0x103c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
04:42:24.0239 0x103c  mctadmin - ok
04:42:24.0258 0x103c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
04:42:24.0289 0x103c  Sidebar - ok
04:42:24.0293 0x103c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
04:42:24.0312 0x103c  mctadmin - ok
04:42:24.0318 0x103c  [ 3CA879373F4F5A7BC57E5DD0CA4CC282, 6AA3521AC3B4402330AAE5595967C7E9C6A028FB52747ADD5FDC76AF39504FA5 ] C:\Users\Ash\AppData\Roaming\TV Movie\TV Movie Clickfinder\tvstart.exe
04:42:24.0330 0x103c  TVTip - detected UnsignedFile.Multi.Generic ( 1 )
04:42:24.0589 0x103c  Detect skipped due to KSN trusted
04:42:24.0589 0x103c  TVTip - ok
04:42:24.0607 0x103c  [ 3DCC4C062FEF19028E5FCC002781C9BB, CE016713365A64680C6211D66CF3D62929785EF08784D984CB8E29A95C2D78B8 ] C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe
04:42:24.0634 0x103c  Kies3PDLR.exe - ok
04:42:24.0692 0x103c  [ F73154E180105822A5F9B755BA933737, 1CD775B6CE3736A70EC5FC7A6B77A2FEDA70D59B49A66046CC20B341005501D9 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
04:42:24.0764 0x103c  DAEMON Tools Lite - ok
04:42:24.0783 0x103c  [ B26C8C57AE7FF40BAB458C5BE1C0FC66, 91CA61F019CCDAAF201A2B2A8113228DC1453C28E611C043DD13F22742C94FE5 ] C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
04:42:24.0816 0x103c  Overwolf - ok
04:42:24.0817 0x103c  Waiting for KSN requests completion. In queue: 134
04:42:25.0844 0x103c  AV detected via SS2: Avast Antivirus, C:\Program Files\AVAST Software\Avast\wsc_proxy.exe ( 17.4.3482.0 ), 0x41000 ( enabled : updated )
04:42:25.0845 0x103c  AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.143 ), 0x60000 ( disabled : updated )
04:42:25.0849 0x103c  Win FW state via NFP2: enabled ( trusted )
04:42:25.0922 0x103c  ============================================================
04:42:25.0922 0x103c  Scan finished
04:42:25.0922 0x103c  ============================================================
04:42:25.0926 0x2c88  Detected object count: 1
04:42:25.0926 0x2c88  Actual detected object count: 1
04:43:34.0882 0x2c88  HiPatchService ( UnsignedFile.Multi.Generic ) - skipped by user
04:43:34.0882 0x2c88  HiPatchService ( UnsignedFile.Multi.Generic ) - User select action: Skip
04:43:37.0727 0x4434  Deinitialize success
Hitman Pro
Code:
HitmanPro 3.7.20.286
www.hitmanpro.com

  Computer name . . . . : ASH-PC
  Windows . . . . . . . : 6.1.1.7601.X64/4
  User name . . . . . . : Ash-PC\Ash
  UAC . . . . . . . . . : Enabled
  License . . . . . . . : Free

  Scan date . . . . . . : 2017-08-27 05:03:24
  Scan mode . . . . . . : Normal
  Scan duration . . . . : 1m 13s
  Disk access mode  . . : Direct disk access (SRB)
  Cloud . . . . . . . . : Internet
  Reboot  . . . . . . . : No

  Threats . . . . . . . : 1
  Traces  . . . . . . . : 6

  Objects scanned . . . : 2.366.897
  Files scanned . . . . : 137.282
  Remnants scanned  . . : 878.939 files / 1.350.676 keys

Malware _____________________________________________________________________

  C:\Users\Ash\AppData\Local\PunkBuster\HOS\pb\pbcl.dll
      Size . . . . . . . : 951.877 bytes
      Age  . . . . . . . : 839.2 days (2015-05-11 00:58:09)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 833CB80463E9181DBCC24242B392B70E6E80DD72A07B79727AB9936FCADEDD2A
    > HitmanPro  . . . . : App/Punkbust-B
      Fuzzy  . . . . . . : 121.0


Suspicious files ____________________________________________________________

  C:\Users\Ash\Desktop\FRST64.exe
      Size . . . . . . . : 2.395.648 bytes
      Age  . . . . . . . : 1.1 days (2017-08-26 02:48:40)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 3A0DD3CC5A3AF8F77E2DFE27765BFC712CEF4536CCC3C6B27A9C5A790A3CAE0B
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
        Program has no publisher information but prompts the user for permission elevation.
        Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
        Authors name is missing in version info. This is not common to most programs.
        Version control is missing. This file is probably created by an individual. This is not typical for most programs.
        Time indicates that the file appeared recently on this computer.
      References
        HKU\S-1-5-21-3066379646-2778961134-1701944576-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\C:\Users\Ash\Desktop\FRST64.exe

  C:\Windows\SysWOW64\GameMon.des
      Size . . . . . . . : 3.535.512 bytes
      Age  . . . . . . . : 623.5 days (2015-12-12 15:57:43)
      Entropy  . . . . . : 8.0
      SHA-256  . . . . . : D8BAF6F65043BE74DEBE308D836F9BED1304F32BD9E0D6A6D1CC281294F19EA4
      Product  . . . . . : nProtect Game Monitor
      Publisher  . . . . : INCA Internet Co., Ltd.
      Description  . . . : nProtect Game Monitor Rev 2341
      Version  . . . . . : 2015.11.20.1
      RSA Key Size . . . : 2048
      Service  . . . . . : npggsvc
      LanguageID . . . . : 1042
      Authenticode . . . : Valid
      Fuzzy  . . . . . . : 25.0
        The file name extension of this program is not common.
        Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
        The file is located in a folder that contains core operating system files from Windows. This is not typical for most programs and is only common to system tools, drivers and hacking utilities.
        Starts automatically as a service during system bootup.
        Program is code signed with a valid Authenticode certificate.
      Startup
        HKLM\SYSTEM\CurrentControlSet\Services\npggsvc\


Potential Unwanted Programs _________________________________________________

  HKLM\SOFTWARE\Classes\f\ (Funmoods)
Avast in Quarantäne
Code:
ad2[2].js  C:\Users\Ash\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\5TWGJM1J  27.08.2017 03:14:32  JS:Downloader-DEF[Trj]
ad[1].js  C:\Users\Ash\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X0UXHO82    27.08.2017 03:14:31  JS:Downloader-DEF[Trj]
ad[2].js  C:\Users\Ash\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X0UXHO82    27.08.2017 03:14:31  JS:Downloader-DEF[Trj]

TattooPanda 30.08.2017 03:47
Avast ist deinstalliert und Emsisoft Antimalware installiert.

Ein erneuter Lauf mit ESET hat nichts weiter ergeben.

Emsisoft Log
Code:
Emsisoft Anti-Malware – Version 2017.7.0.7838
Letztes Update: 30.08.2017 02:46:14
Benutzerkonto: Ash-PC\Ash
Computer name: ASH-PC
OS version: Windows 7x64 Service Pack 1

Scan-Einstellungen:

Scan-Methode:
Objekte: Rootkits, Speicher, Traces, C:\, D:\, E:\, F:\, G:\

Erkenne PUPs: An
Archive scannen: An
E-Mail-Archive scannen: Aus
ADS-Scan: An
Dateierweiterungen: Aus
Direkter Festplattenzugriff: Aus

Scan-Beginn:        30.08.2017 02:50:15
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\F          Application.AdReg (A) [271742]

Gescannt        837060
Gefunden        1

Scan-Ende:        30.08.2017 04:42:51
Scan-Zeit:        1:52:36


Alle Zeitangaben in WEZ +1. Es ist jetzt 04:27 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19