Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   DNSUnlocker in Chrome (https://www.trojaner-board.de/170689-dnsunlocker-chrome.html)

CLamantius 04.09.2015 20:17
DNSUnlocker in Chrome
 
Hi,

In meinem Browser tauchen in letzter Zeit seltsame Werbetexte auf und zufällig ausgewählte Wörter werden blau hinterlegt und dienen dann als links zu Werbeseiten. Bei manchen steht unter in der Ecke in hellgrau "Unterstützt von DNSUnlocker". Manchmal öffnen sich auch Werbefenster wenn ich auf reguläre Links oder Schaltflächen klicke. Ich bin mir ziemlich sicher das ich mir da Malware eingefangen habe.

Ich hatte nämlich schon mal so etwas ähnliches aber Avira hat das nach einem Scan sofort behoben gehabt. Diesmal nicht. Ich habe mich schon ein bisschen durch das Forum gelesen und habe nichts gefunden was mir weiterhelfen könnte. Ich sitze jetzt schon eine Weile vor diesem Problem und ich weiß jetzt einfach nicht mehr weiter.

Bitte helft mir. Danke jetzt schon mal :-).

CLamantius

cosinus 04.09.2015 21:45
Hallo und :hallo:

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!



Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

CLamantius 05.09.2015 09:25
Hier sind einmal die FRST-Scans und die Ereignisse aus Antivirus. Ich hoffe das passt. Nochmals danke. :dankeschoen:

Adition.txt

Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:04-09-2015
durchgeführt von Ismael (2015-09-05 10:09:01)
Gestartet von C:\Users\Ismael\Downloads
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-831993325-2952530161-2944430335-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-831993325-2952530161-2944430335-503 - Limited - Disabled)
Gast (S-1-5-21-831993325-2952530161-2944430335-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-831993325-2952530161-2944430335-1002 - Limited - Enabled)
Ismael (S-1-5-21-831993325-2952530161-2944430335-1000 - Administrator - Enabled) => C:\Users\Ismael

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

µTorrent (HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\uTorrent) (Version: 3.4.4.40911 - BitTorrent Inc.)
10,000,000 (HKLM-x32\...\Steam App 227580) (Version:  - EightyEightGames)
3DMark (HKLM-x32\...\Steam App 223850) (Version:  - Futuremark)
A Bastard's Tale Demo (HKLM-x32\...\Steam App 372730) (Version:  - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Dreamweaver CS6 (HKLM-x32\...\{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}) (Version: 12 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Age of Empires® III: Complete Collection (HKLM-x32\...\Steam App 105450) (Version:  - Ensemble Studios)
Ampu-Tea (HKLM-x32\...\Steam App 289090) (Version:  - ProjectorGames)
ANNO 2070 (HKLM-x32\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)
APB Reloaded (HKLM-x32\...\APB Reloaded) (Version: 1.6.7.672769 - )
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version:  - Reloaded Productions)
ArcheAge (HKLM-x32\...\Steam App 304030) (Version:  - XLGAMES)
Assassin's Creed IV Black Flag (HKLM-x32\...\Steam App 242050) (Version:  - Ubisoft Montreal)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.12.420 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Launcher (HKLM-x32\...\{b76c0d12-422c-44e3-9daa-9363451e24cd}) (Version: 1.1.44.15481 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.44.15481 - Avira Operations GmbH & Co. KG) Hidden
Banished (HKLM-x32\...\Steam App 242920) (Version:  - Shining Rock Software LLC)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield Heroes (HKLM-x32\...\{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}) (Version:  - EA Digital illusions)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Blade Symphony (HKLM-x32\...\Steam App 225600) (Version:  - Puny Human)
Borderlands: The Pre-Sequel (HKLM-x32\...\Steam App 261640) (Version:  - 2K Australia)
Call of Juarez Gunslinger (HKLM-x32\...\Steam App 204450) (Version:  - Techland)
Camtasia Studio 8 (HKLM-x32\...\{474DFABF-E55B-4905-ABAA-40791A6AC77F}) (Version: 8.4.4.1859 - TechSmith Corporation)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
Cloud Chamber (HKLM-x32\...\Steam App 290710) (Version:  - Investigate North)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version:  - Paradox Development Studio)
Curse Client (HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
DARK SOULS™ II: Scholar of the First Sin (HKLM-x32\...\Steam App 335300) (Version:  - FromSoftware, Inc)
Darkest Dungeon (HKLM-x32\...\Steam App 262060) (Version:  - Red Hook Studios)
DeadCore (HKLM-x32\...\Steam App 284460) (Version:  - 5 Bits Games)
Deus Ex: Game of the Year Edition (HKLM-x32\...\Steam App 6910) (Version:  - Ion Storm)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.7 - Electronic Arts)
Drakonia Configurator (HKLM-x32\...\{A7B243AA-6D4C-4575-A873-6F01A1EFC5E2}}_is1) (Version:  - )
Dropbox (HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
Dungeon of the Endless (HKLM-x32\...\Steam App 249050) (Version:  - AMPLITUDE Studios)
Enclave (HKLM-x32\...\Steam App 253980) (Version:  - Topware)
Fallout 3 - Game of the Year Edition (HKLM-x32\...\Steam App 22370) (Version:  - Bethesda Game Studios)
Free YouTube Download version 3.2.60.713 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.60.713 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.56.301 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.56.301 - DVDVideoSoft Ltd.)
Gameforge Live 2.0.6 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.6 - Gameforge)
GamersFirst LIVE! (HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\GamersFirst LIVE!) (Version:  - GamersFirst)
Gods Will Be Watching (HKLM-x32\...\Steam App 274290) (Version:  - Deconstructeam)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
GOG.com Downloader version 3.6.0 (HKLM-x32\...\{456A5815-604D-4D72-94DF-346D2B978A59}_is1) (Version: 3.6.0 - GOG.com)
Gone Home (HKLM-x32\...\Steam App 232430) (Version:  - The Fullbright Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
Gothic 3 (HKLM-x32\...\{17BADF87-3597-46FE-8D74-69C4FA78883E}) (Version: 1.0.0 - JoWood)
Guns of Icarus Online (HKLM-x32\...\Steam App 209080) (Version:  - Muse Games)
Hacknet (HKLM-x32\...\Steam App 365450) (Version:  - Team Fractal Alligator)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version:  - Reto-Moto)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version:  - IO Interactive)
Hitman: Sniper Challenge (HKLM-x32\...\Steam App 205930) (Version:  - IO Interactive)
HP Deskjet 2050 J510 series - Grundlegende Software für das Gerät (HKLM\...\{DF37555F-0259-43DA-B60C-47106FA14AA3}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
In Verbis Virtus (HKLM-x32\...\Steam App 242840) (Version:  - Indomitus Games)
Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1168 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{9A37ADB3-3D8D-4EDF-8F6D-B8A66F18087B}) (Version: 5.0.10.2793 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche Studios)
Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version:  - Avalanche Studios)
Knights of Pen and Paper +1 (HKLM-x32\...\Steam App 231740) (Version:  - Behold Studios)
Legend of Grimrock (HKLM-x32\...\Steam App 207170) (Version:  - Almost Human Games)
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
Mad Max (HKLM-x32\...\Steam App 234140) (Version:  - Avalanche Studios)
Magic 2014  (HKLM-x32\...\Steam App 213850) (Version:  - Stainless Games)
Magicka (HKLM-x32\...\Steam App 42910) (Version:  - Arrowhead Game Studios)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 15.0.4745.1002 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mind: Path to Thalamus (HKLM-x32\...\Steam App 296070) (Version:  - Carlos Coronado)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Mount&Blade With Fire and Sword (HKLM-x32\...\Mount&Blade With Fire and Sword) (Version:  - )
Mozilla Thunderbird 31.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.6.0 (x86 de)) (Version: 31.6.0 - Mozilla)
MURDERED: SOUL SUSPECT™ (HKLM-x32\...\Steam App 233290) (Version:  - Airtight Games)
My Game Long Name (HKLM\...\UDK-de36c1cb-c70b-4c82-98b9-ca49f3d5934b) (Version:  - Epic Games, Inc.)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.52.3 - Black Tree Gaming)
Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 150724.114470 - Square Enix Ltd)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Performance (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 6.5 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA System Monitor (HKLM-x32\...\InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}) (Version: 6.5 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Ori and the Blind Forest (HKLM-x32\...\Steam App 261570) (Version:  - Moon Studios GmbH)
Origin (HKLM-x32\...\Origin) (Version: 9.5.2.2829 - Electronic Arts, Inc.)
Out There: Ω Edition (HKLM-x32\...\Steam App 334420) (Version:  - Mi-Clos Studio)
PAC-MAN Championship Edition DX+ (HKLM-x32\...\Steam App 236450) (Version:  - Mine Loader Software Co., Ltd.)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version:  - Grinding Gear Games)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version:  - OVERKILL Software)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Pillars of Eternity (HKLM-x32\...\Steam App 291650) (Version:  - Obsidian Entertainment)
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Daybreak Games)
PlanetSide 2 (HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\SOE-PlanetSide 2) (Version:  - Sony Online Entertainment)
Platformines (HKLM-x32\...\Steam App 264540) (Version:  - Magiko Gaming)
Port of Call (HKLM-x32\...\Steam App 356520) (Version:  - Underdog Games)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.77.1126.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Reign Of Kings (HKLM-x32\...\Steam App 344760) (Version:  - Code}{atch)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rhythmustrainer 3.0 (HKLM-x32\...\Rhythmustrainer_is1) (Version:  - Midimaster)
Risk of Rain (HKLM-x32\...\Steam App 248820) (Version:  - )
ROCCAT Isku Keyboard Driver (HKLM-x32\...\{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}) (Version:  - Roccat GmbH)
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.7 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.1.0 - Samsung Electronics)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 1.0.2533.0 - Hi-Rez Studios)
Star Conflict (HKLM-x32\...\Steam App 212070) (Version:  - Star Gem Inc.)
Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version:  - Carbon)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Styx: Master of Shadows (HKLM-x32\...\Steam App 242640) (Version:  - Cyanide Studio)
Swipecart (HKLM-x32\...\Steam App 295930) (Version:  - Micro Factory Games)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Tele2 Internet (HKLM-x32\...\Tele2 Internet) (Version: 5.0.0.14 - Tele2 Telecommunication GmbH)
Tele2 Internet (x32 Version: 5.0.0.14 - Tele2 Telecommunication GmbH) Hidden
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - )
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Escapists (HKLM-x32\...\1423221839_is1) (Version: 2.0.0.1 - GOG.com)
The Fall (HKLM-x32\...\Steam App 290770) (Version:  - Over The Moon)
The Night of the Rabbit (HKLM-x32\...\Steam App 230820) (Version:  - Daedalic Entertainment)
The Talos Principle (HKLM-x32\...\Steam App 257510) (Version:  - Croteam)
The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\GOGPACKTHEWITCHER2EE_is1) (Version: 3.4.0.25 - GOG.com)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.8.4 - GOG.com)
The Witcher 3: Wild Hunt - Alternative Look for Ciri (HKLM-x32\...\Alternative Look for Ciri_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Alternative Look for Triss (HKLM-x32\...\Alternative Look for Triss_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Alternative Look for Yennefer (HKLM-x32\...\Alternative Look for Yennefer_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Ballad Heroes - Neutral Gwent Card Set (HKLM-x32\...\Ballad Heroes - Neutral Gwent Card Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Beard and Hairstyle Set (HKLM-x32\...\Beard and Hairstyle Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Elite Crossbow Set (HKLM-x32\...\Elite Crossbow Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Finisher Animations (HKLM-x32\...\New Finisher Animations_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Contract - Skellige's Most Wanted (HKLM-x32\...\New Quest - Contract: Skellige's Most Wanted_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Contract Missing Miners (HKLM-x32\...\New Quest - Contract Missing Miners_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Fool's Gold (HKLM-x32\...\New Quest - Fool's Gold_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Scavenger Hunt - Wolf School Gear (HKLM-x32\...\New Quest - Scavenger Hunt: Wolf School Gear_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Where the Cat and Wolf Play... (HKLM-x32\...\New Quest - Where the Cat and Wolf Play..._is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Nilfgaardian Armor Set (HKLM-x32\...\Nilfgaardian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Skellige Armor Set (HKLM-x32\...\Skellige Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Temerian Armor Set (HKLM-x32\...\Temerian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.10.1 - Electronic Arts)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 7.3 - Ubisoft)
VGA Boost (HKLM-x32\...\{809ACFAE-9A4D-4C60-9223-D8B615CD8CBA}}_is1) (Version: 1.0.0.7 - MSI)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Desktop Gadgets (HKLM\...\Windows Desktop Gadgets_is1) (Version: 2.0 - hxxp://gadgetsrevived.com)
WinRAR 5.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
XAMPP (HKLM-x32\...\xampp) (Version: 5.6.8-0 - Bitnami)
Year Walk (HKLM-x32\...\Steam App 269050) (Version:  - Simogo)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1B}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{ea5bdbaa-ef59-4d9c-ad47-9d33a60c0e99}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

==================== Wiederherstellungspunkte =========================

04-09-2015 12:39:56 DirectX wurde installiert

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {0134CA48-4F85-4C1A-8A54-0CD36554AF0A} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {13429E5A-D392-4222-99EC-2D4D52E6D39E} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {141AED40-C8D5-4DA0-95D6-8863F3A2FAB4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-14] (Microsoft Corporation)
Task: {18AE2DE8-75F0-4FE9-94EC-A5DD3FECD124} - System32\Tasks\{D37590F8-3DD1-4721-B1DA-D567A6D71455} => pcalua.exe -a D:\battlenet\Battle.net\Battle.net.6075\Battle.net.exe -d D:\battlenet\Battle.net\Battle.net.6075
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {1FFBAA05-EC9F-4DED-9FE2-619F2B1EABDC} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-14] (Microsoft Corporation)
Task: {226865E0-B17A-481A-A447-9FF78ECB31F6} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {27D22B7E-C3C5-443B-BF84-0E895DDA48AF} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {3054CE97-A92E-4F9A-A239-AE924D9FF716} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {33BABF43-C45F-4446-B192-ED64B9D804F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-13] (Google Inc.)
Task: {35FF3C12-D3AD-4C00-B71A-00EA49A3F3D4} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {3661E786-AA82-4F65-A664-5762A6D6973F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {3BCE1CB4-EA55-4A6A-A2FF-DB8665A74B2E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {432B96D2-2A63-4FF1-BB2D-9946AB4B25CB} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {46B99875-0479-4947-B3E4-EE815C5E9222} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {4AD117ED-280D-4034-A620-A3A82274A59B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {4ADDB448-7616-47B8-A671-A8192D266B6A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {56754A26-515A-408D-A9D2-631DFCC34676} - System32\Tasks\SkypeUpdate => C:\Users\Ismael\AppData\Roaming\Skype\downloader.exe [2015-09-02] (Skype Technologies S.A.)
Task: {58691AA0-93FB-456C-8D34-E110197ECA49} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {59E12B16-6968-4B87-8E52-39AA49371F27} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {5A781652-662F-4EB1-965F-487681A35562} - System32\Tasks\SkypeAutoUpdater => C:\Users\Ismael\AppData\Roaming\Skype\downloader.exe [2015-09-02] (Skype Technologies S.A.)
Task: {5AD41C01-2408-4711-8495-662892503F96} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {649F6CA4-EDBF-41A6-96B7-69A83AE4BA8B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {6ACD892D-07D2-4B43-A1D2-356D0236915B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {6F3C3168-C374-4AB7-A3F0-027C37F43638} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-05-12] (Microsoft Corporation)
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {7593B7BD-95C5-49CC-B9D4-9BA0E0878E01} - System32\Tasks\BoxyFX => c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}\544915693522649780b.exe <==== ACHTUNG
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {7CDA133D-FC93-40C1-B0CA-04BFE8C994DF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {81523A9D-712B-4C2B-B698-4BB9BD98B0D3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {81629C2B-E6D8-43F3-900A-B0420153FBB9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {87D266D3-1BBB-45C2-B14F-CE0B0B0A7608} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {89284FC3-DBDB-4444-BD44-266B63C4CB6A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-13] (Microsoft Corporation)
Task: {8E449293-77C7-4D7C-A24B-C03E3E42D982} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000Core => C:\Users\Ismael\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-22] (Dropbox, Inc.)
Task: {991A211D-49F6-4874-9ABE-62CC33305313} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {A1F996AC-06C7-4B04-B5BF-4829CF413596} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {A23450D8-A59C-444A-8399-DE547DD1263E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {A840C392-E401-4CF2-AEB2-E0707971017F} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A8E18E51-4386-40A6-A9CF-B5ADDC2760E0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11] (Adobe Systems Incorporated)
Task: {AD3253AE-2FAA-4D0B-9966-CB99CFA19439} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {B7D27F71-0FAB-494E-8F01-7C5E335D593D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-07-14] (Microsoft Corporation)
Task: {BCBB8500-02F4-49C1-BBB1-58FBDB1A1C8E} - System32\Tasks\FatBurn => c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}\9000599011852156690b.exe <==== ACHTUNG
Task: {BD793107-B28F-4748-98A9-8BE0D468F20F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-13] (Google Inc.)
Task: {BDE0500E-01EA-4E00-8F8A-57F12DB22F36} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {BE8F7579-843A-48EA-A40C-ABE917C65DFF} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CC7BB016-06B0-42DE-8FB0-8F1CDA6C96DF} - System32\Tasks\Avira Browser Safety Updater Task => C:\Program Files (x86)\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [2015-03-11] (Avira Operations GmbH & Co. KG)
Task: {D84505F8-297E-4781-A8EE-0E7A6E9D8342} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {DC8FD9F2-6513-49DA-89FA-C0C3D91F5AD4} - System32\Tasks\AdobeAAMUpdater-1.0-Ismael-PC-Ismael => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {DDB4D29F-07AB-49CB-B1AD-7E58C83AB27D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {DE322182-B179-44F8-BB67-16EBFA26C7B4} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {E30B7AEC-B87F-438D-9001-EA16E14B6125} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000UA => C:\Users\Ismael\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-22] (Dropbox, Inc.)
Task: {E61AE0D1-F4FF-4779-BD36-F71538ED0A9A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-05-12] (Microsoft Corporation)
Task: {EDD67556-119D-4090-B5E1-AD5B214C2F10} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {F23A6A72-E271-4DA3-8F71-746CB614EEAD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {F47C5156-D456-455D-9F1E-2761D2F4AA44} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\BoxyFX.job => c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}\544915693522649780b.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000Core.job => C:\Users\Ismael\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000UA.job => C:\Users\Ismael\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\FatBurn.job => c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}\9000599011852156690b.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-13 17:11 - 2015-08-13 17:11 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-13 16:13 - 2015-08-25 17:57 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-19 01:34 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2014-02-21 10:47 - 2014-02-21 10:47 - 00209712 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2014-02-21 10:47 - 2014-02-21 10:47 - 00057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2014-02-21 10:47 - 2014-02-21 10:47 - 00057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTEncryptionCheck.dll
2014-02-21 10:47 - 2014-02-21 10:47 - 00037168 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll
2014-12-02 15:30 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2015-08-29 04:24 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 04:24 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-02-10 15:53 - 2015-08-27 02:37 - 00087160 _____ () C:\Program Files (x86)\NVIDIA Corporation\LED Visualizer\NvLedServiceHost.exe
2014-11-28 07:48 - 2012-06-07 11:24 - 00246784 _____ () C:\Program Files (x86)\Drakonia Configurator\hid.exe
2015-08-15 13:43 - 2015-08-15 13:43 - 00016384 _____ () C:\Users\Ismael\AppData\Local\Apps\2.0\3Q09C3X7.67N\Z5HJG209.A0E\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.CurseClient.WowDb.dll
2015-08-15 13:43 - 2015-08-15 13:43 - 00035840 _____ () C:\Users\Ismael\AppData\Local\Apps\2.0\3Q09C3X7.67N\Z5HJG209.A0E\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.Advertising.dll
2015-08-15 13:43 - 2015-08-15 13:43 - 00099840 _____ () C:\Users\Ismael\AppData\Local\Apps\2.0\3Q09C3X7.67N\Z5HJG209.A0E\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.CurseClient.CMOD2.dll
2014-11-28 07:48 - 2012-03-05 14:46 - 00240640 _____ () C:\Program Files (x86)\Drakonia Configurator\trayicon.exe
2015-08-26 12:26 - 2015-08-26 12:26 - 03637248 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1508.14010.0_x64__8wekyb3d8bbwe\Calculator.exe
2015-08-29 04:12 - 2015-08-29 04:12 - 00007168 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-08-29 04:12 - 2015-08-29 04:12 - 11606528 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-07-10 18:53 - 2015-07-10 18:53 - 07897088 _____ () C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.0_1.0.22929.0_x64__8wekyb3d8bbwe\SharedLibrary.dll
2014-09-22 12:57 - 2014-06-06 15:41 - 00718336 _____ () F:\NetWorx\sqlite.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 01:34 - 2015-08-11 10:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-03-30 18:52 - 2015-08-27 02:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-02-10 15:53 - 2015-08-27 02:37 - 00621360 _____ () C:\Program Files (x86)\NVIDIA Corporation\LED Visualizer\NvGpuInterface.dll
2014-11-21 15:35 - 2015-07-03 18:12 - 00778240 _____ () D:\steam\SDL2.dll
2015-01-24 18:18 - 2015-07-03 18:12 - 04962816 _____ () D:\steam\v8.dll
2015-08-21 11:00 - 2015-08-19 22:39 - 02413248 _____ () D:\steam\video.dll
2015-01-24 18:18 - 2015-07-03 18:12 - 01556992 _____ () D:\steam\icui18n.dll
2015-01-24 18:18 - 2015-07-03 18:12 - 01187840 _____ () D:\steam\icuuc.dll
2014-11-21 15:35 - 2014-12-01 23:31 - 02396672 _____ () D:\steam\libavcodec-56.dll
2014-11-21 15:35 - 2014-12-01 23:31 - 00479744 _____ () D:\steam\libavformat-56.dll
2014-11-21 15:35 - 2014-12-01 23:31 - 00332800 _____ () D:\steam\libavresample-2.dll
2014-11-21 15:35 - 2014-12-01 23:31 - 00442880 _____ () D:\steam\libavutil-54.dll
2014-11-21 15:35 - 2014-12-01 23:31 - 00485888 _____ () D:\steam\libswscale-3.dll
2015-08-21 11:00 - 2015-08-19 22:39 - 00704192 _____ () D:\steam\bin\chromehtml.DLL
2015-07-22 10:18 - 2015-07-27 03:13 - 00171008 _____ () D:\steam\bin\openvr_api.dll
2014-11-28 07:47 - 2010-11-04 12:48 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Isku Keyboard\hiddriver.dll
2015-09-02 11:34 - 2015-09-02 11:34 - 00071168 _____ () c:\users\ismael\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp180tsh.dll
2015-03-04 23:45 - 2015-08-05 07:26 - 00012800 _____ () C:\Users\Ismael\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-03-04 23:45 - 2015-08-05 07:26 - 00779776 _____ () C:\Users\Ismael\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-07-31 02:02 - 2015-08-05 07:26 - 00056320 _____ () C:\Users\Ismael\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-03-04 23:45 - 2015-08-05 07:26 - 00012288 _____ () C:\Users\Ismael\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2014-11-28 07:48 - 2011-11-22 15:18 - 00061440 _____ () C:\Program Files (x86)\Drakonia Configurator\HidDevice.dll
2014-11-21 15:35 - 2015-07-03 18:12 - 39553928 _____ () D:\steam\bin\libcef.dll
2014-11-28 07:48 - 2011-11-22 15:18 - 00249856 _____ () C:\Program Files (x86)\Drakonia Configurator\language.dll
2015-08-21 21:02 - 2015-08-18 07:23 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.157\libglesv2.dll
2015-08-21 21:02 - 2015-08-18 07:23 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.157\libegl.dll
2015-08-21 21:02 - 2015-08-18 07:23 - 16393032 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.157\PepperFlash\pepflashplayer.dll
2014-02-19 19:51 - 2014-02-19 19:51 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\sony.com -> sony.com


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-831993325-2952530161-2944430335-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{416D5774-DBAA-4B3A-8BBF-8093F195D64C}] => (Allow) D:\steam\steamapps\common\PAC-MAN Championship Edition DX+\PAC-MAN.exe
FirewallRules: [{F0D0BFC1-D6D5-4172-9FEC-B3FA9FEA3B68}] => (Allow) D:\steam\steamapps\common\PAC-MAN Championship Edition DX+\PAC-MAN.exe
FirewallRules: [{07C71891-9293-4365-9692-1E305FA2FBE6}] => (Allow) D:\steam\steamapps\common\Platformines\Platformines.exe
FirewallRules: [{D2713FCE-ECCF-48A6-B275-014B9B1563DF}] => (Allow) D:\steam\steamapps\common\Platformines\Platformines.exe
FirewallRules: [{152241FB-8F3F-48F0-AEAB-8E285F7DF3EE}] => (Allow) D:\steam\steamapps\common\DeadCore\DeadCore.exe
FirewallRules: [{1332C4A5-DC62-4AD3-A2F0-1B328E0C116A}] => (Allow) D:\steam\steamapps\common\DeadCore\DeadCore.exe
FirewallRules: [{4BBCE445-07DE-46E7-94C6-3B6D27087A85}] => (Allow) D:\steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{9E57048D-4FE1-487D-B3C0-DD9137A214D2}] => (Allow) D:\steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{B38165DF-F42B-4346-AB13-7169740862D7}] => (Allow) D:\steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{096B0D0E-B2FA-43B8-950A-50A843989A77}] => (Allow) D:\steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{871952C7-4607-46B1-9255-C3910F894EE8}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{8A041057-107F-443E-B781-9491EA4B2D50}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{C9E662C4-6E2C-4F39-B0BE-B4981E39EAC1}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos.exe
FirewallRules: [{88084D2A-D170-4DAA-9524-16C6BCF56E79}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos.exe
FirewallRules: [UDP Query User{F6F00F58-D10E-4362-A14F-39663DEA57F5}C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno5.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno5.exe
FirewallRules: [TCP Query User{D1E0B527-AE1D-4B65-982D-DC191A3C5FD1}C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno5.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno5.exe
FirewallRules: [{4CE85DDD-3898-4CB3-A55F-3E8B80EEBE7B}] => (Allow) D:\steam\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{92C0D578-7E04-4D07-8D48-3BA5A3D9FC71}] => (Allow) D:\steam\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{CC4E58C3-8FBF-4FFE-B844-983EF9986ACA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E86B01AD-815C-42C2-A99D-FA56B746060F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CDAE449F-5251-4BD9-949E-E1AF922AC807}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{CD9EAAD5-62C1-4540-B664-964FD9700177}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6E611C66-ED02-4674-864A-52C765AAC9BB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [UDP Query User{1F028E6F-64D7-44C3-B558-1C164C81396C}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{4FCDE864-1191-4D4D-B3D5-DE7361E7771A}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{2868BEE3-4662-409A-B4C7-24C460C7D1AD}] => (Allow) C:\Users\Ismael\AppData\Local\Temp\Rar$EXa0.404\NetworkTrafficView.exe
FirewallRules: [{85AA591B-E57C-4292-8888-E5E17CB8B644}] => (Allow) C:\Users\Ismael\AppData\Local\Temp\Rar$EXa0.404\NetworkTrafficView.exe
FirewallRules: [{93D75233-E2AD-4518-9169-7784870EAEC9}] => (Allow) D:\steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{232E53FE-6198-44CC-BD57-D3691729143E}] => (Allow) D:\steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{9EE8F96C-8045-4DA5-BE01-3C80A3504DD1}] => (Allow) D:\steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{09F432B4-5F7E-4D5B-81FE-06C2EF491DBE}] => (Allow) D:\steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{7433F619-CACD-483C-B0D5-2A2F4CDE7971}] => (Allow) C:\Program Files (x86)\Tele2\SupportCenter\SupportCenter.exe
FirewallRules: [{1F076701-A36A-4451-B1BD-019E7D2A1318}] => (Allow) C:\Program Files (x86)\Tele2\SupportCenter\SupportCenter.exe
FirewallRules: [{17EAC8A2-2CD1-4BFD-BF28-27B3DFDF8A70}] => (Allow) D:\steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{8268CF62-4AF2-482B-BD3C-CC21B164789B}] => (Allow) D:\steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [UDP Query User{189FA185-A760-44D0-8574-0F70DF5F3A06}D:\alien isolation\alien isolation\ai.exe] => (Block) D:\alien isolation\alien isolation\ai.exe
FirewallRules: [TCP Query User{D1182ADE-C004-49D8-BDA5-024B72A69196}D:\alien isolation\alien isolation\ai.exe] => (Block) D:\alien isolation\alien isolation\ai.exe
FirewallRules: [{782D58AD-333D-4F7D-89C1-0F4AAA339299}] => (Allow) C:\Users\Ismael\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C1F2E188-9450-49EF-A7B8-6D876F8AC6D6}] => (Allow) C:\Users\Ismael\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{035D28DB-608C-410F-B833-4E7F90D5C1E4}] => (Allow) D:\steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{8C16D1EE-C284-463C-877B-8E1F32805740}] => (Allow) D:\steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{7AFC27E9-0811-4372-B1C7-CDE06CAC16F8}] => (Allow) D:\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{E5B7E40F-30D1-45E5-9BAC-DC59EC394A70}] => (Allow) D:\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{30E7B1E1-F197-466B-AD8B-206D28635F69}] => (Allow) D:\steam\steamapps\common\Gods Will Be Watching\gwbw.exe
FirewallRules: [{1BF6FAB0-F0A2-4B0C-B228-E7947AA829F9}] => (Allow) D:\steam\steamapps\common\Gods Will Be Watching\gwbw.exe
FirewallRules: [{5300D42B-708D-4E71-B041-EDC48DEECA84}] => (Allow) D:\steam\steamapps\common\Risk of Rain\Risk of Rain.exe
FirewallRules: [{9521EF12-E380-4A45-9E05-AFE6CA460F15}] => (Allow) D:\steam\steamapps\common\Risk of Rain\Risk of Rain.exe
FirewallRules: [{F0C9BC95-8985-414C-946E-643856A9AE31}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{ED628E64-D320-4B80-9F8E-90A8A50D6ABD}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{D46D111A-A069-4C50-835A-640A14386A5B}] => (Allow) C:\_STEAM_\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{5024DD35-0740-4D3A-B459-65020AFBCAAB}] => (Allow) C:\_STEAM_\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{487A1C3A-D715-483C-82F5-4E2910335566}] => (Allow) C:\_STEAM_\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{8C24E87E-42AD-4E50-9031-400EFF6AA87C}] => (Allow) C:\_STEAM_\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{9960D66F-AF05-4B19-AA63-58A7A4B19B88}] => (Allow) F:\Steam\SteamApps\common\Windforge\Bin\Game.exe
FirewallRules: [{8F0FC67D-BE60-4002-BF52-BC9B0B3E567C}] => (Allow) F:\Steam\SteamApps\common\Windforge\Bin\Game.exe
FirewallRules: [{A6D5822B-4ACE-4048-A031-4BE7D6008596}] => (Allow) F:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{1C590AD7-EED4-48EE-A463-7F821DD687E4}] => (Allow) F:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [UDP Query User{54B8764F-FF4E-4F87-8665-CC2EF588E958}F:\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) F:\steam\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{99C3621C-9135-475C-A667-65D0E2DFB1E8}F:\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) F:\steam\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [{D1F13457-15D9-4007-A301-9E3A01D2BB12}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{C7A879CD-B773-45D4-A3CC-0B053E73D801}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{84BF6172-7196-4E20-BAE2-EE2E73DDD2FE}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{CE0896C2-FEB3-49A7-9A8B-BA8522B55896}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{F5A943AF-F46D-407F-BA1F-6F4EFE66A07C}] => (Allow) D:\steam\steamapps\common\A Bastard's Tale Demo\a_bastards_tale_demo.exe
FirewallRules: [{FC932273-96B7-4AC5-8D31-EAFC481B0D1B}] => (Allow) D:\steam\steamapps\common\A Bastard's Tale Demo\a_bastards_tale_demo.exe
FirewallRules: [{FC5F507C-4469-4C37-AA41-0EEB46FFCCE9}] => (Allow) D:\steam\steamapps\common\ArcheAge\GlyphClient.exe
FirewallRules: [{F1D6CE79-7E93-4B48-8C9C-C6A385F5C5FB}] => (Allow) D:\steam\steamapps\common\ArcheAge\GlyphClient.exe
FirewallRules: [{46A7DCB9-8E6D-4228-9D0C-F8778D69608E}] => (Allow) D:\steam\steamapps\common\star conflict\game.exe
FirewallRules: [{4603E049-9186-4D88-9091-1083E966DAEB}] => (Allow) D:\steam\steamapps\common\star conflict\game.exe
FirewallRules: [{3FC5C3C3-9790-4FF7-B4E5-DD0D6C2E221B}] => (Allow) D:\steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{EC3A98D1-303E-4A06-884D-0D313ED2637D}] => (Allow) D:\steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{75FEA397-7722-4485-A3E6-FF8EEBB8A4BD}] => (Allow) D:\steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{9D1E62F5-57FE-4024-BC2E-5BB9CCCEDE4B}] => (Allow) D:\steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [UDP Query User{D6A4B953-1CA5-4E51-9479-3AC1243C2C4F}C:\program files (x86)\java\jre1.8.0_31\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\java.exe
FirewallRules: [TCP Query User{15289BE4-7663-44D7-B096-262E85C83054}C:\program files (x86)\java\jre1.8.0_31\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\java.exe
FirewallRules: [UDP Query User{9AABC589-169C-4E57-A365-59D017B02475}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe
FirewallRules: [TCP Query User{6DFC9E51-057C-4110-9298-4D032277A00E}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe
FirewallRules: [UDP Query User{80264794-C364-4112-AD3B-E560EFC9DDD0}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{F5EE8F31-908B-4633-8E4D-97983BE0E28D}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{E9DAFC01-9530-4C5A-923E-879A04089FB2}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{51C81B76-A63B-4EFB-B2B0-6A9B56577DAD}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{1F1246A1-A383-4A12-8BCA-BB6B364C9861}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{A641E7B3-FE1D-437D-BD3E-484D272F5026}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [{B90AF8F2-E057-43BD-8719-C73A335CB629}] => (Allow) F:\Steam\SteamApps\common\Gunpoint\Gunpoint.exe
FirewallRules: [{D3B7EC67-8CE0-4E1D-B967-3E553D8E42BA}] => (Allow) F:\Steam\SteamApps\common\Gunpoint\Gunpoint.exe
FirewallRules: [UDP Query User{CADEAD3D-1C90-468E-A4C5-BCC74386613A}D:\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [TCP Query User{0A1D28F6-4C30-4AE6-A282-E784D9ADF114}D:\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [{810DD6D4-475B-4BCD-A6FB-C51279CFF0CF}] => (Allow) D:\steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{B0DC4CED-9C8E-4EEE-920E-C12E8396C550}] => (Allow) D:\steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{106875AF-293C-4D08-874E-FDEF7DAC9BCF}] => (Allow) D:\steam\steamapps\common\Swipecart\game.exe
FirewallRules: [{9B6BB337-4CC4-464A-B915-7D0A5EEAD26A}] => (Allow) D:\steam\steamapps\common\Swipecart\game.exe
FirewallRules: [{2C37904A-BCAE-4626-AF23-5062D350BF61}] => (Allow) D:\steam\steamapps\common\Enclave\Enclave.exe
FirewallRules: [{9D19AFFE-7574-4749-AE20-419D2E769229}] => (Allow) D:\steam\steamapps\common\Enclave\Enclave.exe
FirewallRules: [{106E9D61-A497-4E35-9704-9320AEE11C78}] => (Allow) D:\steam\steamapps\common\Magicka\Magicka.exe
FirewallRules: [{1725C78E-EA46-4294-921A-01FBD201BC2A}] => (Allow) D:\steam\steamapps\common\Magicka\Magicka.exe
FirewallRules: [{AD450285-929D-41C0-BB69-03CAE2C269F1}] => (Allow) D:\steam\steamapps\common\TheFall\TheFall.exe
FirewallRules: [{C617BBA9-7DB5-4D5E-8CFB-131FBEC32C75}] => (Allow) D:\steam\steamapps\common\TheFall\TheFall.exe
FirewallRules: [{BFD6C29F-2456-4D01-8321-73AE6C3CD240}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{591CA1A0-5CF6-4854-91C5-5CA84E201181}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{2D83702A-A5F4-499B-BEF4-26AD0B723260}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{539A0E42-CA07-485B-9286-AA83F0324E97}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{AA546906-CD31-4B2A-A648-F01A83A06DC4}] => (Allow) D:\steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{36E57706-EDA5-4DA7-8F4A-478D213DE45B}] => (Allow) D:\steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{2A11D03B-529D-4E58-B954-97E4DD63AA49}] => (Allow) D:\steam\steamapps\common\CoJ Gunslinger\CoJGunslinger.exe
FirewallRules: [{E4904EC7-DB99-477E-B0D6-04FF3A278BD2}] => (Allow) D:\steam\steamapps\common\CoJ Gunslinger\CoJGunslinger.exe
FirewallRules: [{016F112E-9F79-4EEF-B4C3-0AA1B4A6F666}] => (Allow) D:\steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{8A314EE5-788C-42D7-9BF4-095AD04FE92D}] => (Allow) D:\steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{B538E0AA-1090-4EDD-8C4E-9A696DBB2735}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{676CE17D-FC13-470E-9915-70D6A9907137}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{0984169D-4A95-4E36-ADC8-7F9127C8F55D}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{3B1016F6-D1DB-4FFD-B0BE-8A36F1E1450E}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{EBEC0F30-11EC-48EC-A080-662792700FE6}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{438FBA28-B29E-4120-B94D-C9917BE048B6}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{CFFA7722-038A-4A8E-B232-51F792BFD55D}] => (Allow) D:\steam\steamapps\common\Dungeon of the Endless\DungeonoftheEndless.exe
FirewallRules: [{3F369AE9-5135-44B0-B84C-8CA8034F8E63}] => (Allow) D:\steam\steamapps\common\Dungeon of the Endless\DungeonoftheEndless.exe
FirewallRules: [{DC0F93AD-758A-41EE-940E-597279042F0E}] => (Allow) D:\steam\steamapps\common\CloudChamber\CloudChamber.exe
FirewallRules: [{538839A1-0137-4DC6-90DB-7F92FAD213B1}] => (Allow) D:\steam\steamapps\common\CloudChamber\CloudChamber.exe
FirewallRules: [{4CD5369F-9AAE-480B-9A41-997BEA9F443A}] => (Allow) D:\steam\steamapps\common\Blade Symphony\berimbau.exe
FirewallRules: [{B26E06C2-FC2E-4172-A765-128CBFC88E99}] => (Allow) D:\steam\steamapps\common\Blade Symphony\berimbau.exe
FirewallRules: [{C813216F-24AA-4D88-9EA7-97D2D8367739}] => (Allow) F:\Steam\SteamApps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{4708E423-0ABB-4EB4-A32B-A343B00A611D}] => (Allow) F:\Steam\SteamApps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{9F2E7092-56B3-494E-9EDE-E1584E0398C8}] => (Allow) F:\Steam\SteamApps\common\Hammerwatch\Hammerwatch.exe
FirewallRules: [{58C94454-C4B6-48BE-90C7-C0712D0DFFC5}] => (Allow) F:\Steam\SteamApps\common\Hammerwatch\Hammerwatch.exe
FirewallRules: [{098F5FDF-7576-4D62-A721-0E5A348EDC6A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{627A9B9A-72D7-4D75-9EE9-63982A028E60}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{80D01D3C-574C-4AC2-BABC-703C47703CC3}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{775274A4-0FC4-4717-B39F-41007FE795F6}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D661BF32-EA62-4722-B19C-1A4E845A818A}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{3F2B7E1A-2004-4371-8A3D-661A66BB7A67}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{A58618D8-9B0C-4D15-A676-623223ABE175}] => (Allow) D:\aPB\APB\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{278A6054-AB09-46E7-A13F-4A79DA7C576A}] => (Allow) D:\aPB\APB\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{119C5183-2A54-4EDB-B5E0-BD6C95C3DEE6}] => (Allow) D:\aPB\APB\APB Reloaded\Binaries\APB.exe
FirewallRules: [{38D985ED-9F76-426D-945D-F9784161A385}] => (Allow) D:\aPB\APB\APB Reloaded\Binaries\APB.exe
FirewallRules: [{D5CF25FC-F22A-4F8C-8B17-299164787FFF}] => (Allow) C:\Program Files (x86)\Tele2\Installer_COMPLETE\Installer_Complete.exe
FirewallRules: [{C0297A3A-CCD8-4D81-8CF9-2A248CAE47DE}] => (Allow) C:\Program Files (x86)\Tele2\Installer_COMPLETE\Installer_Complete.exe
FirewallRules: [{5BF30AEB-A70A-413A-A598-6CA0644DFC38}] => (Allow) C:\_STEAM_\steamapps\common\Reign Of Kings\Reign of Kings.exe
FirewallRules: [{93668018-24D8-42B1-A4F2-47F45FC67845}] => (Allow) C:\_STEAM_\steamapps\common\Reign Of Kings\Reign of Kings.exe
FirewallRules: [{A09FFE26-E6BF-4F9C-88EF-BB72CFC02862}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{2B43CC22-F4C6-4385-988C-80569EBE737A}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{6A71E36E-5531-4C17-AE04-D92CACAC3376}] => (Allow) D:\steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{526C1EC8-042C-42BA-9C7D-013BED524D8B}] => (Allow) D:\steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{01DD2AD3-00CA-44CC-92AE-104982B67A06}] => (Allow) C:\_STEAM_\steamapps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{2E240048-6DFA-466D-B401-883565B97172}] => (Allow) C:\_STEAM_\steamapps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{45ADF016-A2BE-475A-B71F-AF716E5C8B24}] => (Allow) C:\_STEAM_\steamapps\common\Reign Of Kings\ROK.exe
FirewallRules: [{3DA4F1A8-2348-4841-B219-8A7639F2FF1D}] => (Allow) C:\_STEAM_\steamapps\common\Reign Of Kings\ROK.exe
FirewallRules: [{304F293E-0401-4D79-85EF-A9655B8C8F79}] => (Allow) C:\_STEAM_\steamapps\common\In Verbis Virtus\Binaries\Win32\IVV.exe
FirewallRules: [{B2FF8DE9-BDEA-4186-BC15-6F06C3D6F607}] => (Allow) C:\_STEAM_\steamapps\common\In Verbis Virtus\Binaries\Win32\IVV.exe
FirewallRules: [UDP Query User{5EC90810-3B7E-4FEB-B69F-B614488D2056}C:\users\ismael\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ismael\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{85166EB3-AC06-45CA-9C0B-1219ADED916F}C:\users\ismael\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ismael\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{C817C891-A921-451C-A964-4C81108B0353}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{999BD285-E61D-47D2-AE0B-24C856AF1EDC}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{1FF8AF3C-12B1-4CF5-92BB-99AAD9D8C6DF}] => (Allow) D:\steam\steamapps\common\Hitman Sniper Challenge\HMSC.exe
FirewallRules: [{8ADF46A1-1F24-4632-832A-0AA9FAAF3730}] => (Allow) D:\steam\steamapps\common\Hitman Sniper Challenge\HMSC.exe
FirewallRules: [{A0C347ED-1EE7-4850-B567-E5D56D13A9DA}] => (Allow) D:\steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{D4CED8F4-CE6C-4297-84C1-439915337F27}] => (Allow) D:\steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{FF13A85E-AC5D-4C86-860B-ED055D943095}] => (Allow) C:\Program Files (x86)\Tele2\Installer_COMPLETE\Installer_Complete.exe
FirewallRules: [{68747C78-C16D-4474-B901-D1750156F1A7}] => (Allow) C:\Program Files (x86)\Tele2\Installer_COMPLETE\Installer_Complete.exe
FirewallRules: [{890275CD-F035-4E3E-AC26-6262A295B702}] => (Allow) C:\Program Files (x86)\Tele2\SupportCenter\SupportCenter.exe
FirewallRules: [{AC22E318-3638-4A9A-BCC1-A0E8CEFF5A4C}] => (Allow) C:\Program Files (x86)\Tele2\SupportCenter\SupportCenter.exe
FirewallRules: [{858AAC8E-95D6-434F-B75B-E3F3D2B5B5EC}] => (Allow) D:\steam\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{A3985C50-2C43-4B0C-AEA5-A0A28D4B02B7}] => (Allow) D:\steam\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [UDP Query User{EDFF844B-4BC3-47ED-B7F8-79D3AD8E9B15}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{E65FD010-4178-4E3D-A39E-BA240BB9C9C4}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [{642F32FB-47F3-423C-8912-5B18D1469FEC}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{72CC8E0C-2DA5-45DC-B301-255AFF695E5A}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [UDP Query User{335AA2E0-6D68-4FF3-BDC4-B06594D4F0A4}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{84025B79-8DEF-41DB-B93A-9FC48B31C7B4}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [{6688BA6B-469B-48CB-ACAC-BACEA1B28CF1}] => (Allow) D:\steam\steamapps\common\Ori\ori.exe
FirewallRules: [{5BEF85CA-73C9-4C9E-847B-83653704F62D}] => (Allow) D:\steam\steamapps\common\Ori\ori.exe
FirewallRules: [{B089FB84-10B4-4D67-85AD-F37A3D1BF46C}] => (Allow) F:\Steam\SteamApps\common\Cloudbuilt\CommunityLevelEditor.exe
FirewallRules: [{4383000A-2EBF-4088-AB0A-B195399149B0}] => (Allow) F:\Steam\SteamApps\common\Cloudbuilt\CommunityLevelEditor.exe
FirewallRules: [UDP Query User{43EFF0E8-AFAF-448C-B8EE-7EF7E9B0F704}C:\users\ismael\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\ismael\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{C95B1D00-0721-4F9A-A97E-435E6F276230}C:\users\ismael\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\ismael\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{79EC6E5A-9CD7-4E24-8CB7-F0A640EA25B7}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{564A701F-6C4C-4A80-B4EF-F62DD4B9CB00}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{E0469095-54D5-43A3-8E8B-5DB697479167}] => (Allow) C:\_STEAM_\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{9A175F8D-42FE-4746-A8F1-B4AAFA57021E}] => (Allow) C:\_STEAM_\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [UDP Query User{ACC457C2-C454-4D51-9833-9E29A47EB21C}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe] => (Allow) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe
FirewallRules: [TCP Query User{77465A37-F00A-4C6A-B351-63A53204A6DA}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe] => (Allow) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe
FirewallRules: [{8975BF57-AC70-47BE-AB51-3A51264CD543}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3F3FEEA1-FA2E-45EB-BFB1-ECB529802CC4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{C47E63A7-B714-47BF-84A2-067C26E9ADAB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D445D4D2-123E-46E8-97AA-674C24C80F63}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{1C9BB955-292C-4A79-B1B4-EC72F7838B5A}] => (Allow) C:\_STEAM_\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{673E77FF-27E8-4FF1-AF65-995CDEE15E63}] => (Allow) C:\_STEAM_\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [UDP Query User{1A09CAF7-9402-4A6D-8DE5-85A0E5F3BF24}D:\gameforge\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) D:\gameforge\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [TCP Query User{B9F97050-BD8A-4063-BB69-D37647E2799E}D:\gameforge\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) D:\gameforge\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{053B8444-F3C2-4330-8BA5-56932ECFB7F5}] => (Allow) D:\gameforge\GameforgeLive\gfl_client.exe
FirewallRules: [UDP Query User{07FE56F1-2348-4868-B462-7BB0272AD6DC}F:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) F:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [TCP Query User{EB1E5DF9-01BD-44A6-B170-7C3F06C4C724}F:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) F:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [{CD670746-7C37-4629-9B68-CD4925B7EC7C}] => (Allow) D:\steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{6577E18B-00EB-41AB-B9F0-30DE8B1EB2DB}] => (Allow) D:\steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [UDP Query User{34521A6D-E56B-4499-8BE3-DA3BAED513BE}C:\_steam_\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\_steam_\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [TCP Query User{C3495698-9B60-40FB-A193-AD6493ED8E11}C:\_steam_\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\_steam_\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [{0E61759A-FC76-4508-92F0-8F9E544D2F96}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{CFB79BF6-7815-4A66-82F3-596DBDB9A69B}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{C6EE5105-6AD8-4DD6-BB8D-3782E633287B}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos.exe
FirewallRules: [{8DCEAC6B-5FCC-4C7A-9885-EDBE5D52B19D}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos.exe
FirewallRules: [{24F7B161-2EF6-4312-A217-57D709B28206}] => (Allow) C:\_STEAM_\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{66B72BC4-CCC9-4ABC-BAA8-4AB220D86E88}] => (Allow) C:\_STEAM_\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{7416EA8A-0390-4D62-9C83-E669145A33ED}] => (Allow) LPort=8317
FirewallRules: [{11E2365F-A3F0-40FA-ADFB-6852D8F39A54}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{78BDC3B9-C944-4F6F-A05E-8F14872E85AF}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{4C3D41B9-BF5F-4BAE-9223-CA5D30D74F21}] => (Allow) C:\_STEAM_\steamapps\common\Murdered Soul Suspect\Binaries\Win64\Murdered.exe
FirewallRules: [{92BBD539-F060-4DE6-BE7A-81CC25F0A000}] => (Allow) C:\_STEAM_\steamapps\common\Murdered Soul Suspect\Binaries\Win64\Murdered.exe
FirewallRules: [{AC6C17C9-111C-4079-8CCB-B4441D7D6466}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E5358C99-DD7A-4184-B5CA-42CD339E8AB1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{141F16D6-FF78-4464-A19F-D5A2746B131F}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{3570478F-70E4-48BF-91D8-6090CD979602}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [{443498D4-ED25-411E-A27A-5DBE861C9BB0}] => (Allow) F:\Steam\SteamApps\common\The Incredible Adventures of Van Helsing II\VanHelsing.exe
FirewallRules: [{972C1B42-E70D-4DB0-BB7A-CEBC38CC6F44}] => (Allow) F:\Steam\SteamApps\common\The Incredible Adventures of Van Helsing II\VanHelsing.exe
FirewallRules: [{59A4B240-FB04-4938-8D45-EA48FCFC61C0}] => (Allow) C:\_STEAM_\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{736D159B-EDF0-46F8-87BF-078DDEC32436}] => (Allow) C:\_STEAM_\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [UDP Query User{017E4516-8604-4AE5-9D7C-A842CDCD56C7}D:\teso\launcher\bethesda.net_launcher.exe] => (Allow) D:\teso\launcher\bethesda.net_launcher.exe
FirewallRules: [TCP Query User{8FE06C4E-12B0-4A0C-BA59-048172171055}D:\teso\launcher\bethesda.net_launcher.exe] => (Allow) D:\teso\launcher\bethesda.net_launcher.exe
FirewallRules: [{05A8F9BD-E1F1-48C9-B72F-C5F02B839295}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{0FF96908-7C81-4CC8-83E0-F4F61298F250}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [UDP Query User{0C27B5AD-1808-4BF1-A65A-D446E949FA17}D:\battlenet\hearthstone\hearthstone\hearthstone.exe] => (Allow) D:\battlenet\hearthstone\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{1CA14154-2A53-4556-94AD-3B0C0DF93C46}D:\battlenet\hearthstone\hearthstone\hearthstone.exe] => (Allow) D:\battlenet\hearthstone\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{DCED1011-F215-4293-9513-24178E54B2D7}D:\battlenet\d3\diii\diablo iii\diablo iii.exe] => (Allow) D:\battlenet\d3\diii\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{A9826FFA-5FB2-4FCF-96F7-A0E56B76EFB4}D:\battlenet\d3\diii\diablo iii\diablo iii.exe] => (Allow) D:\battlenet\d3\diii\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{AC54A972-9D41-41DE-ADD1-D9AA951CF127}D:\battlenet\starcraft ii\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\battlenet\starcraft ii\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [TCP Query User{82475B4D-57A3-47DC-9D85-82D72256B750}D:\battlenet\starcraft ii\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\battlenet\starcraft ii\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{F6FB7F3A-6CC6-4CDC-BDB5-4D35C5DA1356}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{40F13119-B5B3-43F8-8932-99D08CFF00C4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{DEC45A98-D3A0-4905-B5EE-8D780053E8AD}] => (Allow) F:\Steam\SteamApps\common\audiosurf\engine\QuestViewer.exe
FirewallRules: [{7F94ABB3-DDEA-49A4-8404-19EB967946A9}] => (Allow) F:\Steam\SteamApps\common\audiosurf\engine\QuestViewer.exe
FirewallRules: [{22ECCCEC-A640-4630-B2AB-DA437A39872E}] => (Allow) C:\_STEAM_\steamapps\common\Styx\Binaries\Win64\StyxGame.exe
FirewallRules: [{D03A2004-EEBF-433B-823C-716DBC573AFF}] => (Allow) C:\_STEAM_\steamapps\common\Styx\Binaries\Win64\StyxGame.exe
FirewallRules: [{A7E0D237-659C-41AF-B71E-6B23AF946278}] => (Allow) D:\steam\steamapps\common\Legend of Grimrock\grimrock.exe
FirewallRules: [{E03AC328-3D22-4DD0-8C3D-4A1A7217DBD7}] => (Allow) D:\steam\steamapps\common\Legend of Grimrock\grimrock.exe
FirewallRules: [{AFBD6885-A2DC-44C6-A1C7-C8CC3871DF24}] => (Allow) F:\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{A87DA547-6371-444B-8302-D8160352CBA3}] => (Allow) F:\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{5C257D5B-492E-4E28-B54F-2AF7F0DE05BA}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{6B7ED683-D96E-4AA0-9E59-BD99C85F13D7}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [UDP Query User{4CB20C89-5ACF-49C8-ABD1-0984E8D6E6E7}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{F94B05AB-8DD8-4367-8E75-428402B468A9}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{E0509A5B-EC37-4992-82FC-D1153AD4FCD0}] => (Allow) D:\steam\steamapps\common\Gone Home\GoneHome.exe
FirewallRules: [{85F76C19-87E5-4B35-8DA7-C4BAEB354B8D}] => (Allow) D:\steam\steamapps\common\Gone Home\GoneHome.exe
FirewallRules: [{D07726BE-7FA4-48BC-B296-9672FA78F6FF}] => (Allow) D:\steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{9AB938E3-1C15-4E61-897A-6233FBE558E9}] => (Allow) D:\steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{12088605-738F-4CEC-8B27-FD8404625F36}] => (Allow) D:\steam\steamapps\common\YearWalk\yearwalk.exe
FirewallRules: [{5173723F-3303-4EAC-A491-04EC5A55FEB2}] => (Allow) D:\steam\steamapps\common\YearWalk\yearwalk.exe
FirewallRules: [{B1F06989-D13D-4212-83C8-20E664E1D2C8}] => (Allow) D:\steam\steamapps\common\Mind_Path_to_Thalamus\Binaries\Win32\Mind.exe
FirewallRules: [{7EF08759-33FA-4C2B-9F95-CAE6F77242BB}] => (Allow) D:\steam\steamapps\common\Mind_Path_to_Thalamus\Binaries\Win32\Mind.exe
FirewallRules: [{1E3BC641-047B-4C40-BB50-2BC17F858C66}] => (Allow) C:\_STEAM_\steamapps\common\Knights of Pen and Paper\knightspp.exe
FirewallRules: [{3B0F8096-FD90-4D08-8C01-9BF8A5C278DB}] => (Allow) C:\_STEAM_\steamapps\common\Knights of Pen and Paper\knightspp.exe
FirewallRules: [{B86240C0-C032-4FBF-9F64-D56BE131B76D}] => (Allow) F:\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{F4E4DCE3-0603-41E1-B6AD-8891BEC403AC}] => (Allow) F:\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [UDP Query User{E403CE7A-BD32-428D-82CA-2EB46D9A1FC2}C:\users\ismael\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ismael\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{147E3ADE-3F5A-4BE8-86CB-FE983590B819}C:\users\ismael\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ismael\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{417FA7D5-8DEA-4169-83A1-DBBD5F0D8562}] => (Allow) F:\Steam\SteamApps\common\Tropico 5\Tropico5Steam.exe
FirewallRules: [{1C76C335-2126-47C5-8CD9-B638D7319C73}] => (Allow) F:\Steam\SteamApps\common\Tropico 5\Tropico5Steam.exe
FirewallRules: [{73EC5450-440D-45F7-B25E-4AE8DC2920F0}] => (Allow) F:\Steam\SteamApps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe
FirewallRules: [{DD44A12F-2E3B-4FC5-B0D8-D8A86B207743}] => (Allow) F:\Steam\SteamApps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe
FirewallRules: [UDP Query User{AEC0B4D4-7D10-4DD2-9940-88E52FD58F8F}F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [TCP Query User{742742B3-B7C2-4E01-AB63-5107F7FA583A}F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{F4D05547-5888-428A-843A-02B80120C0D2}F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{C4488B72-AC3E-47A6-BF6A-81836CAB2930}F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [{A3806247-2D59-4DD1-9303-3F21B11A118E}] => (Allow) F:\Steam\SteamApps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{773B5E96-77AA-4F8B-A460-6210A9DDB737}] => (Allow) F:\Steam\SteamApps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{300AEE93-8133-4BA4-A79F-F50974E9CD3D}] => (Allow) F:\Steam\SteamApps\common\Tower Wars\TW.exe
FirewallRules: [{807F9C32-74A8-4ADE-9247-71858624C70E}] => (Allow) F:\Steam\SteamApps\common\Tower Wars\TW.exe
FirewallRules: [{5894782B-2D62-41C7-9D35-8B11EDDB360A}] => (Allow) C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe
FirewallRules: [{B46C21A0-B1A4-4351-92DF-7983D0E0158D}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{590DB5F6-267F-4FCF-ABD0-936B9C13085C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{8307A5B6-40EE-4BCC-8983-022FC02C5059}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{5387BAF1-038D-4181-81F4-3D5872AEE944}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [{C65765E9-6A64-4094-A6B5-856B9E68FF81}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [{43C53822-A734-41BB-B5E0-E5C0A0856E4B}] => (Allow) F:\Steam\SteamApps\common\Crypt of the NecroDancer\NecroDancer.exe
FirewallRules: [{AECC3DEB-0A67-4361-891C-2C545402933D}] => (Allow) F:\Steam\SteamApps\common\Crypt of the NecroDancer\NecroDancer.exe
FirewallRules: [{D25888CC-7CE8-4A92-A14B-22E00ECCEBED}] => (Allow) F:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{C64BF902-0F72-4F6B-BD9A-B5FD9F245937}] => (Allow) F:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{A854AF77-1DA6-4559-82D1-BF39304624D9}] => (Allow) F:\Steam\SteamApps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{941738BD-EAA0-4E19-B423-F1C35AD57F7D}] => (Allow) F:\Steam\SteamApps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{F6A2E040-06EB-4567-A999-D71B29009737}] => (Allow) D:\battlenet\Battle.net\Battle.net.exe
FirewallRules: [{BD45E96E-AB14-4535-813E-F3B9596548F7}] => (Allow) D:\battlenet\Battle.net\Battle.net.exe
FirewallRules: [{31F99FE5-A81D-4B36-A9A3-AA4158991C0B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{AFE02FF8-A3E3-4A3D-966B-75210EA1FF45}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{2C7399C0-A265-48B8-858F-781822CDF743}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\InitEngine.exe
FirewallRules: [{FB9C57F7-D579-4949-B6D6-A53A5DB191B3}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\InitEngine.exe
FirewallRules: [{CB1759CB-2CD8-4330-9D01-7A16A37E5F90}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\AutoPatcher.exe
FirewallRules: [{9B5DD2CE-FA56-4422-AF43-E1101F4D5676}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\AutoPatcher.exe
FirewallRules: [{22718752-216E-4377-AA0C-7C6E14637E08}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno5.exe
FirewallRules: [{7A9439E5-FF73-469F-9055-7C81BC105BB8}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno5.exe
FirewallRules: [UDP Query User{7703334A-6851-44F8-9349-04B6F70A58C0}C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno2070\initengine.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno2070\initengine.exe
FirewallRules: [TCP Query User{BFEE0FF8-E6F3-4A09-8DD6-937D1E5C4ED3}C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno2070\initengine.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno2070\initengine.exe
FirewallRules: [{A2D839A0-DE6B-4646-AA9B-C52376EACD2A}] => (Allow) F:\Steam\SteamApps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{2B42684F-77E8-41DE-ADBD-646E7CF9F233}] => (Allow) F:\Steam\SteamApps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [UDP Query User{F74C35F5-2957-4B10-AA89-A20578FC77FC}C:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) C:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [TCP Query User{81532378-754F-4FA4-B915-A2F851A091D0}C:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) C:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [{0145311C-87F1-469B-BE40-E2BFD190ACA5}] => (Allow) F:\Steam\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{57AE5C09-7D47-435A-9CD4-B0ED9A763AB3}] => (Allow) F:\Steam\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{DA234AFA-572B-45A1-8DEE-264C857D44A0}] => (Allow) F:\Steam\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{228C7A9C-08D7-4951-AE91-02AD3C9F37F0}] => (Allow) F:\Steam\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{499E730D-7F85-48E6-B331-BEF7ADF75D56}] => (Allow) F:\Steam\SteamApps\common\Cloudbuilt\CloudBuilt.exe
FirewallRules: [{94773C03-0F72-4018-AFD7-37C0940D1DDD}] => (Allow) F:\Steam\SteamApps\common\Cloudbuilt\CloudBuilt.exe
FirewallRules: [UDP Query User{077485A2-6D98-4885-A07C-7EAC60FBDE2D}F:\dragonsprophet\dragon's prophet\dp_x64.exe] => (Allow) F:\dragonsprophet\dragon's prophet\dp_x64.exe
FirewallRules: [TCP Query User{B17A6E8C-BFAB-43FB-B0B2-C1833B8D091A}F:\dragonsprophet\dragon's prophet\dp_x64.exe] => (Allow) F:\dragonsprophet\dragon's prophet\dp_x64.exe
FirewallRules: [{9F68DFFB-266B-4B79-831F-2C98E9174684}] => (Allow) C:\Users\Ismael\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{3C0E1C3F-4A39-4A55-84B3-AACAE46C4E96}] => (Allow) C:\Users\Ismael\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{1FDA609E-2D4F-4C78-BC53-3179DBD9A86B}] => (Block) F:\dragonsprophet\dragon's prophet\launcher.exe
FirewallRules: [{8DE3A0D1-D3FD-407A-9957-F359F1295EE8}] => (Block) F:\dragonsprophet\dragon's prophet\launcher.exe
FirewallRules: [UDP Query User{50FF52ED-EBDF-40F4-80C9-9D5677B44EA8}F:\dragonsprophet\dragon's prophet\launcher.exe] => (Allow) F:\dragonsprophet\dragon's prophet\launcher.exe
FirewallRules: [TCP Query User{E2251AB3-2122-4BA4-BD3D-A6D6E58691E9}F:\dragonsprophet\dragon's prophet\launcher.exe] => (Allow) F:\dragonsprophet\dragon's prophet\launcher.exe
FirewallRules: [{8E318DE8-6B9E-412D-8078-985D3D407DEA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{054935E2-519A-49EA-AA0B-4F9BCBEAA8D1}] => (Allow) F:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{D1CD68A3-B59D-40FC-B6A6-0C25248FA9B5}] => (Allow) F:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{F37F3894-51B5-4226-A126-1C426F28E66F}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [{E3CF1B2E-23A3-47E9-85A8-C32B33DE549E}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [{624945EF-75BA-4D53-B12D-95ABAC23890C}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{B5A38A1D-0D64-4B87-84F2-34B04D4FA9CD}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{C94D32A7-06B5-4B32-B031-048362ED8917}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{271501C2-4454-467E-A0D8-A0F7DED24CAD}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{B2A4BE11-AE05-4087-A069-5F192334EF17}] => (Allow) F:\Steam\SteamApps\common\10000000\10000000.exe
FirewallRules: [{01D5EC04-3D69-48BD-ADAB-45C0BF76A083}] => (Allow) F:\Steam\SteamApps\common\10000000\10000000.exe
FirewallRules: [{E494F373-70C0-4759-9D18-70BB018DA638}] => (Allow) F:\Steam\SteamApps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{601189C5-1EC6-4734-95B7-48E92FFF0CCF}] => (Allow) F:\Steam\SteamApps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{F9EAF699-C27D-48C4-AC55-ACC80941990E}] => (Allow) D:\steam\bin\steamwebhelper.exe
FirewallRules: [{C2391B96-DEE9-49AD-8579-4FFED63546E5}] => (Allow) D:\steam\bin\steamwebhelper.exe
FirewallRules: [{D08E5E4C-6B71-4531-9AAA-6598C3E6D3CB}] => (Allow) D:\steam\Steam.exe
FirewallRules: [{2588315F-D47B-4043-B76E-2AA809F45F69}] => (Allow) D:\steam\Steam.exe
FirewallRules: [{17F7F6AC-92E4-4F0B-8632-879065B99E18}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{BA545030-F767-4758-8195-6A94C62EE14F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{3D275E81-1970-4C18-AF64-8DE39F05A64F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{379DC712-4D10-4023-8A3D-10F0292943AC}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{D3102383-004A-4471-A503-AE4927515ACD}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{AB612FFF-33E3-462E-940E-A414AE6616B3}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{4960FED2-6CAA-4A14-8DDB-F1AA07BF0969}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{01E91BF6-FF38-4623-9537-2E5D09156D7E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{AE22A33F-FE87-4A10-B1D7-4386D9DDE1A6}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{515629A9-4DCA-4DE2-AD00-A6777C17BB89}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{2DDF3FCD-E5AC-4A53-B3EB-BA5905B8E411}] => (Allow) D:\steam\steamapps\common\Hacknet\Hacknet.exe
FirewallRules: [{D66338B1-9CF5-47A5-83D2-820E7B9B3EEF}] => (Allow) D:\steam\steamapps\common\Hacknet\Hacknet.exe
FirewallRules: [{69D1D155-FD15-41F8-9341-676BEF699BD8}] => (Allow) D:\steam\steamapps\common\Magic 2014\DotP_D14.exe
FirewallRules: [{322299E2-0AF7-4F88-AC87-CEF3E9F6E4C3}] => (Allow) D:\steam\steamapps\common\Magic 2014\DotP_D14.exe
FirewallRules: [{C29C9FD9-F392-4E3D-9FB1-C98FEC9E17A8}] => (Allow) D:\steam\steamapps\common\Ampu-Tea\AmpuTea.exe
FirewallRules: [{F26D7FF8-16DA-4851-BC0C-07980792401C}] => (Allow) D:\steam\steamapps\common\Ampu-Tea\AmpuTea.exe
FirewallRules: [{B647C8D8-B3EE-4500-9374-FEEEE408B5F1}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{6AEF2F82-170C-4EC3-9F06-712CDC1E75C9}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{D8E1D238-0E0C-467B-B116-72FBD9C596BA}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{7ABA49EA-28AA-4C67-810C-7FD1FDC0A23C}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{909CFD06-4DE4-434B-8ECE-570F52840D97}] => (Allow) C:\_STEAM_\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{9C4D9B60-ED01-43B8-8AD8-16DE71B3D0E2}] => (Allow) C:\_STEAM_\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{46CC17D0-B742-4583-86CD-45F114B5EB8C}] => (Allow) D:\steam\steamapps\common\OutThereOmega\OutThereOmega.exe
FirewallRules: [{6B3DA6DC-39E3-491D-ADAA-F28263DC60AA}] => (Allow) D:\steam\steamapps\common\OutThereOmega\OutThereOmega.exe
FirewallRules: [{6642D315-DB39-447F-A084-A0D156D0CEF2}] => (Allow) D:\steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{07967037-9B07-458F-8F1C-176B4A7940E1}] => (Allow) D:\steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{A9C93D79-80A7-4212-B152-00CFD33E63CB}] => (Allow) D:\steam\steamapps\common\Port of Call\PortOfCall.exe
FirewallRules: [{48C94D1B-931D-4887-BF24-BCB42AA99C09}] => (Allow) D:\steam\steamapps\common\Port of Call\PortOfCall.exe
FirewallRules: [{E55312AF-433D-4FE2-80E3-7EDBFDC3E26D}] => (Allow) D:\steam\steamapps\common\Mad Max\MadMax.exe
FirewallRules: [{5C323A19-1E36-4479-A661-34AB3CFA1FEA}] => (Allow) D:\steam\steamapps\common\Mad Max\MadMax.exe
FirewallRules: [{7D107D45-D575-403C-A0CA-791A0747980D}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{E3EDBE26-F05C-44F1-94B8-F21CC9E5935D}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{13662E1F-286C-435F-8138-B3B4D74709A6}] => (Allow) C:\_STEAM_\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{159357E9-98A6-4D74-BDF5-CE1D8F4A7B9A}] => (Allow) C:\_STEAM_\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{CAE7DB9B-DEF0-493F-9F21-D0C4D31E4A4A}] => (Allow) C:\Users\Ismael\AppData\Roaming\Skype\downloader.exe
FirewallRules: [{BF710D63-A85A-438D-A19A-44E488D9C616}] => (Allow) C:\Users\Ismael\AppData\Roaming\Skype\downloader.exe
FirewallRules: [{023A2AE5-00C4-497B-82D1-896D9C9C9B1A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/05/2015 09:46:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ISMAEL-PC)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/05/2015 03:00:01 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ISMAEL-PC)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/04/2015 11:58:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: gothic3.exe, Version: 1.75.20108.14, Zeitstempel: 0x4f959f4f
Name des fehlerhaften Moduls: GUI.dll, Version: 1.75.20108.14, Zeitstempel: 0x4f959b49
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x00006c33
ID des fehlerhaften Prozesses: 0x7a4
Startzeit der fehlerhaften Anwendung: 0xgothic3.exe0
Pfad der fehlerhaften Anwendung: gothic3.exe1
Pfad des fehlerhaften Moduls: gothic3.exe2
Berichtskennung: gothic3.exe3
Vollständiger Name des fehlerhaften Pakets: gothic3.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: gothic3.exe5

Error: (09/04/2015 11:22:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x28b8
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5

Error: (09/04/2015 11:17:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x2e88
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5

Error: (09/04/2015 11:10:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x30c8
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5

Error: (09/04/2015 05:27:03 PM) (Source: ESENT) (EventID: 439) (User: )
Description: SearchIndexer (5892) Windows: Die Shadowkopfzeile für Datei "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.chk" konnte nicht geschrieben werden. Fehler -1032.

Error: (09/04/2015 05:27:03 PM) (Source: ESENT) (EventID: 490) (User: )
Description: SearchIndexer (5892) Windows: Der Versuch, die Datei "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.chk" für den Lese-/Schreibzugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.

Error: (09/04/2015 05:26:37 PM) (Source: ESENT) (EventID: 439) (User: )
Description: SearchIndexer (5892) Windows: Die Shadowkopfzeile für Datei "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.chk" konnte nicht geschrieben werden. Fehler -1032.

Error: (09/04/2015 05:26:37 PM) (Source: ESENT) (EventID: 490) (User: )
Description: SearchIndexer (5892) Windows: Der Versuch, die Datei "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.chk" für den Lese-/Schreibzugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.


Systemfehler:
=============
Error: (09/04/2015 12:50:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/04/2015 12:50:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Net.Pipe-Listeneradapter" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/04/2015 12:50:51 PM) (Source: WAS) (EventID: 5175) (User: )
Description: Der Listeneradapter für Protokoll "net.pipe" hat unerwartet die Verbindung getrennt.

Error: (09/04/2015 12:50:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Net.Msmq-Listeneradapter" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/04/2015 12:50:48 PM) (Source: WAS) (EventID: 5175) (User: )
Description: Der Listeneradapter für Protokoll "msmq.formatname" hat unerwartet die Verbindung getrennt.

Error: (09/04/2015 12:50:48 PM) (Source: WAS) (EventID: 5175) (User: )
Description: Der Listeneradapter für Protokoll "net.msmq" hat unerwartet die Verbindung getrennt.

Error: (09/04/2015 12:50:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Adobe Acrobat Update Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/03/2015 10:05:36 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070020 fehlgeschlagen: Microsoft .Net Native Runtime Package 1.1.23101.0

Error: (09/03/2015 10:05:13 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070020 fehlgeschlagen: VCLibs 12

Error: (09/02/2015 11:46:49 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BFE18E9C-6D87-4450-B37C-E02F0B373803}


Microsoft Office:
=========================
Error: (09/05/2015 09:46:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ISMAEL-PC)
Description: Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp-2144927148

Error: (09/05/2015 03:00:01 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ISMAEL-PC)
Description: Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp-2144927148

Error: (09/04/2015 11:58:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: gothic3.exe1.75.20108.144f959f4fGUI.dll1.75.20108.144f959b49c00000fd00006c337a401d0e7561b109b41D:\Gothic 3\gothic3.exeD:\Gothic 3\GUI.dll5a958be0-ff84-4140-b67f-9a1fa610ee12

Error: (09/04/2015 11:22:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: dwm.exe10.0.10240.16384559f3907dwmcore.dll10.0.10240.1646155d2d629c000060200000000000aca7728b801d0e75724147b98C:\WINDOWS\system32\dwm.exeC:\WINDOWS\system32\dwmcore.dllfd7b73f5-bd8b-4b54-ae98-4fc12a2ae86b

Error: (09/04/2015 11:17:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: dwm.exe10.0.10240.16384559f3907dwmcore.dll10.0.10240.1646155d2d629c000060200000000000aca772e8801d0e756241fbfdfC:\WINDOWS\system32\dwm.exeC:\WINDOWS\system32\dwmcore.dlla973c57b-6dee-42a8-8d7e-4e35519a251a

Error: (09/04/2015 11:10:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: dwm.exe10.0.10240.16384559f3907dwmcore.dll10.0.10240.1646155d2d629c000060200000000000aca7730c801d0e6fe2c224103C:\WINDOWS\system32\dwm.exeC:\WINDOWS\system32\dwmcore.dll36aadc76-f79f-42c5-b554-ec93adbc7284

Error: (09/04/2015 05:27:03 PM) (Source: ESENT) (EventID: 439) (User: )
Description: SearchIndexer5892Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.chk-1032

Error: (09/04/2015 05:27:03 PM) (Source: ESENT) (EventID: 490) (User: )
Description: SearchIndexer5892Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.chk-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.

Error: (09/04/2015 05:26:37 PM) (Source: ESENT) (EventID: 439) (User: )
Description: SearchIndexer5892Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.chk-1032

Error: (09/04/2015 05:26:37 PM) (Source: ESENT) (EventID: 490) (User: )
Description: SearchIndexer5892Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.chk-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.


CodeIntegrity:
===================================
  Date: 2015-08-24 10:37:13.212
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:13.189
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:13.161
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:13.126
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:13.111
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:13.095
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:12.446
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:12.366
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-19 17:44:39.727
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-19 17:44:39.703
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 39%
Installierter physikalischer RAM: 16328.23 MB
Verfügbarer physikalischer RAM: 9889.32 MB
Summe virtueller Speicher: 32712.23 MB
Verfügbarer virtueller Speicher: 23001.42 MB

==================== Laufwerke ================================

Drive c: (System) (Fixed) (Total:232.88 GB) (Free:38.79 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: (Data1) (Fixed) (Total:931.51 GB) (Free:373.85 GB) NTFS
Drive e: (Gothic 3) (CDROM) (Total:3.04 GB) (Free:0 GB) CDFS
Drive f: () (Fixed) (Total:465.76 GB) (Free:133.21 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 2989E734)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: F369F369)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2989E72F)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

CLamantius 05.09.2015 09:27
FRST.txt Teil 1
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:04-09-2015
durchgeführt von Ismael (Administrator) auf ISMAEL-PC (05-09-2015 10:08:45)
Gestartet von C:\Users\Ismael\Downloads
Geladene Profile: Ismael (Verfügbare Profile: Ismael)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
() C:\Program Files (x86)\NVIDIA Corporation\LED Visualizer\NvLedServiceHost.exe
(Valve Corporation) D:\steam\Steam.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
(Dropbox, Inc.) C:\Users\Ismael\AppData\Roaming\Dropbox\bin\Dropbox.exe
() C:\Program Files (x86)\Drakonia Configurator\hid.exe
(Curse) C:\Users\Ismael\AppData\Local\Apps\2.0\3Q09C3X7.67N\Z5HJG209.A0E\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\CurseClient.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Valve Corporation) D:\steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files (x86)\Drakonia Configurator\trayicon.exe
(Valve Corporation) D:\steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1508.14010.0_x64__8wekyb3d8bbwe\Calculator.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.827.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(SoftPerfect Research) F:\NetWorx\networx.exe
(Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.12711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avcenter.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-02-21] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [RoccatIsku] => C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE [536576 2013-10-30] (ROCCAT GmbH)
HKLM-x32\...\Run: [GamingMouse] => C:\Program Files (x86)\Drakonia Configurator\hid.exe [246784 2012-06-07] ()
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782008 2015-08-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66936 2015-08-03] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Run: [NvLedServiceHost] => C:\Program Files (x86)\NVIDIA Corporation\LED Visualizer\NvLedServiceHost.exe [87160 2015-08-27] ()
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Run: [Steam] => D:\steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7249976 2015-08-10] (GOG.com)
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Run: [Dropbox Update] => C:\Users\Ismael\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-22] (Dropbox, Inc.)
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Run: [OneDrive] => C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\OneDrive.exe [404064 2015-08-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2015-08-15] ()
Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-11-21]
ShortcutTarget: Dropbox.lnk -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk [2015-04-10]
ShortcutTarget: GamersFirst LIVE!.lnk -> C:\Users\Ismael\AppData\Local\GamersFirst\LIVE!\Live.exe (GamersFirst)
Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk [2014-11-21]
ShortcutTarget: Samsung Magician.lnk -> C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe (Samsung Electronics.)
Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 2050 J510 series.lnk [2014-12-03]
ShortcutTarget: Tintenwarnungen überwachen - HP Deskjet 2050 J510 series.lnk -> C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
CHR HKLM\SOFTWARE\Policies\Google: Richtlinienbeschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2148e83d-7292-4934-90e5-8a62b6ebabb7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{99ed74d9-4b10-45ba-a72d-ed9de63612f1}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com
SearchScopes: HKU\S-1-5-21-831993325-2952530161-2944430335-1000 -> DefaultScope {2C7B6F72-58C2-4A6D-89A3-EAAFC8D0922B} URL =
SearchScopes: HKU\S-1-5-21-831993325-2952530161-2944430335-1000 -> {2C7B6F72-58C2-4A6D-89A3-EAAFC8D0922B} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-07-14] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-07-14] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-07-14] (Microsoft Corporation)
BHO-x32: AviraBrowserSafety.BrowserSafety -> {c3c77255-42c0-499f-b664-6e981a0b1647} -> C:\Windows\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - C:\Windows\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-10] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-02] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [Keine Datei]

Chrome:
=======
CHR Plugin: (APP) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.6.703\_platform_specific\win_x86\widevinecdmadapter.dll Keine Datei
CHR Plugin: (Shockwave Flash) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.157\internal-nacl-plugin Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.157\pdf.dll Keine Datei
CHR Plugin: (EA Battlefield Heroes Updater) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh\5.0.203.0_0\npBFHUpdater.dll (EA Digital Illusions CE AB)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Battlelog Game Launcher) - C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll Keine Datei
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java Deployment Toolkit 8.0.310.13) - C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 8 U31) - C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Microsoft Office 2013) - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2013) - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll Keine Datei
CHR Profile: C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Easy Auto Refresh) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2015-08-28]
CHR Extension: (BetterTTV) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-08-13]
CHR Extension: (Battlefield Heroes) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh [2015-03-13]
CHR Extension: (Adblock Plus) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-08-13]
CHR Extension: (WIKI 2 Wikipedia Republished) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfdljglikamcdljmffmhfionigapkf [2015-07-14]
CHR Extension: (FrankerFaceZ) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2015-08-13]
CHR Extension: (RaesPectSale) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\helbdicochoikmmbkbmnkhdbbojaaicp [2015-07-14]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-13]
CHR Extension: (Bing Ban) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\lojpoaiocmhpagpedbodjlkhncgaacie [2015-08-13]
CHR Extension: (Flashcontrol) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidmkgnfgnkihnjeklbekckimkipmoe [2015-08-28]
CHR Extension: (Google Wallet) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-21]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [887128 2015-07-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-08-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-08-26] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1213072 2015-08-26] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [227592 2015-08-03] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2765496 2015-07-14] (Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1720888 2015-08-10] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6920248 2015-08-29] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2015-01-12] (Hi-Rez Studios) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-02-21] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-02-19] (Intel Corporation)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-13] (Microsoft Corporation)
R2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [278336 2011-09-19] (NVIDIA)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 Origin Client Service; D:\origin\OriginClientService.exe [1931632 2015-04-10] (Electronic Arts)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-13] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-13] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137288 2015-08-13] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-08-13] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-06-16] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-08-13] (Avira Operations GmbH & Co. KG)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-02-03] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-02-03] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [23936 2014-02-03] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD.sys [44744 2014-02-03] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-13] (Microsoft Corporation)
R3 nvoclk64; C:\Windows\system32\DRIVERS\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [22016 2015-07-10] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-05 10:07 - 2015-09-05 10:07 - 00016148 _____ C:\WINDOWS\system32\ISMAEL-PC_Ismael_HistoryPrediction.bin
2015-09-05 09:50 - 2015-09-05 09:51 - 02188800 _____ (Farbar) C:\Users\Ismael\Downloads\FRST64 (1).exe
2015-09-04 20:54 - 2015-09-04 20:54 - 00001343 _____ C:\Users\Ismael\Desktop\Revo Uninstaller.lnk
2015-09-04 20:54 - 2015-09-04 20:54 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-09-04 20:52 - 2015-09-04 20:53 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Ismael\Downloads\revosetup95.exe
2015-09-04 20:49 - 2015-09-05 10:08 - 00029998 _____ C:\Users\Ismael\Downloads\FRST.txt
2015-09-04 20:49 - 2015-09-05 10:08 - 00000000 ____D C:\FRST
2015-09-04 20:49 - 2015-09-04 20:50 - 00115670 _____ C:\Users\Ismael\Downloads\Addition.txt
2015-09-04 20:48 - 2015-09-04 20:48 - 02188800 _____ (Farbar) C:\Users\Ismael\Downloads\FRST64.exe
2015-09-03 23:48 - 2015-09-03 23:48 - 00109038 _____ C:\Users\Ismael\Downloads\Schhule_Jahresbericht_2.xlsx
2015-09-03 00:24 - 2015-09-05 00:24 - 00003604 _____ C:\WINDOWS\System32\Tasks\SkypeUpdate
2015-09-03 00:24 - 2015-09-03 00:24 - 00003428 _____ C:\WINDOWS\System32\Tasks\SkypeAutoUpdater
2015-09-02 13:26 - 2015-09-02 13:26 - 00000000 ____D C:\Users\Ismael\Documents\BNE
2015-09-02 11:44 - 2015-09-02 11:44 - 00001217 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-09-01 17:17 - 2015-09-01 17:17 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-01 08:34 - 2015-09-01 08:34 - 00000000 ____D C:\Users\Ismael\Documents\WB Games
2015-09-01 07:40 - 2015-09-01 07:40 - 730611248 ____N C:\WINDOWS\MEMORY.DMP
2015-09-01 07:40 - 2015-09-01 07:40 - 00930232 _____ C:\WINDOWS\Minidump\090115-11265-01.dmp
2015-09-01 07:40 - 2015-09-01 07:40 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-31 23:53 - 2015-08-31 23:53 - 00002212 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-08-31 23:53 - 2015-08-25 16:18 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-08-31 23:52 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00785152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00631312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00601240 _____ C:\WINDOWS\system32\nvmcumd.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00387536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00339576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-08-29 13:41 - 2015-08-29 13:41 - 00000000 ____D C:\Users\Ismael\AppData\Local\CrashRpt
2015-08-29 13:37 - 2015-08-29 13:37 - 00000000 ____D C:\Users\Ismael\AppData\Local\Curve Digital
2015-08-29 04:24 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-29 04:24 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-29 04:24 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-29 04:24 - 2015-08-20 07:57 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-08-29 04:24 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-29 04:24 - 2015-08-20 07:21 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-29 04:24 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-29 04:24 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-29 04:24 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-29 04:24 - 2015-08-20 06:31 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-29 04:24 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 04:24 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-29 04:24 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-29 04:24 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-29 04:24 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-29 04:24 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-29 04:24 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-29 04:24 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-29 04:24 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-29 04:24 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-29 04:24 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-29 04:24 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-29 04:24 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-29 04:24 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-29 04:24 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-29 04:24 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-29 04:24 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-29 04:24 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-29 04:24 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-29 04:24 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-29 04:24 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-29 04:24 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-29 04:24 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-29 04:24 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-29 04:24 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-29 04:24 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-29 04:24 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-29 04:24 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-29 04:24 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-29 04:24 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-29 04:24 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-29 04:24 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-29 04:24 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-29 04:24 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-28 22:29 - 2015-08-28 22:29 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-08-26 19:32 - 2015-08-11 06:52 - 00072504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-08-26 19:32 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-08-25 14:31 - 2015-08-25 14:31 - 00000000 ____D C:\Users\Ismael\AppData\Local\MiClos Studio
2015-08-24 12:45 - 2015-08-24 12:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2015-08-19 01:34 - 2015-08-13 06:33 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-19 01:34 - 2015-08-13 06:22 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 01:34 - 2015-08-13 06:20 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 01:34 - 2015-08-13 06:07 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-19 01:34 - 2015-08-13 05:53 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-08-19 01:34 - 2015-08-11 12:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-19 01:34 - 2015-08-11 12:04 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-19 01:34 - 2015-08-11 12:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-19 01:34 - 2015-08-11 12:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-08-19 01:34 - 2015-08-11 12:02 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 01:34 - 2015-08-11 12:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 01:34 - 2015-08-11 12:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-08-19 01:34 - 2015-08-11 11:57 - 03622256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-19 01:34 - 2015-08-11 11:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-19 01:34 - 2015-08-11 11:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-19 01:34 - 2015-08-11 11:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-19 01:34 - 2015-08-11 11:40 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-19 01:34 - 2015-08-11 11:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-19 01:34 - 2015-08-11 11:38 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-08-19 01:34 - 2015-08-11 11:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-19 01:34 - 2015-08-11 11:31 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-19 01:34 - 2015-08-11 11:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-19 01:34 - 2015-08-11 11:23 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 01:34 - 2015-08-11 11:21 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 01:34 - 2015-08-11 11:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 01:34 - 2015-08-11 11:20 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 01:34 - 2015-08-11 11:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 01:34 - 2015-08-11 11:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 01:34 - 2015-08-11 11:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 01:34 - 2015-08-11 11:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 01:34 - 2015-08-11 11:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 01:34 - 2015-08-11 11:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-19 01:34 - 2015-08-11 11:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-19 01:34 - 2015-08-11 11:10 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 01:34 - 2015-08-11 11:10 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 01:34 - 2015-08-11 11:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 01:34 - 2015-08-11 11:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 01:34 - 2015-08-11 11:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 01:34 - 2015-08-11 11:08 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 01:34 - 2015-08-11 11:07 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-19 01:34 - 2015-08-11 11:07 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 01:34 - 2015-08-11 11:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 01:34 - 2015-08-11 11:06 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-19 01:34 - 2015-08-11 11:06 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 01:34 - 2015-08-11 11:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-19 01:34 - 2015-08-11 11:02 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-19 01:34 - 2015-08-11 11:02 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 01:34 - 2015-08-11 11:02 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-19 01:34 - 2015-08-11 11:01 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 01:34 - 2015-08-11 11:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 01:34 - 2015-08-11 11:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-08-19 01:34 - 2015-08-11 10:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-19 01:34 - 2015-08-11 10:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-19 01:34 - 2015-08-11 10:59 - 00123392 _____ (Microsoft Corporation)
============================

CLamantius 05.09.2015 09:29
FRST.txt Teil 2

Code:
C:\WINDOWS\system32\mssprxy.dll
2015-08-19 01:34 - 2015-08-11 10:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-08-19 01:34 - 2015-08-11 10:58 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 01:34 - 2015-08-11 10:57 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-19 01:34 - 2015-08-11 10:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-08-19 01:34 - 2015-08-11 10:51 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-19 01:34 - 2015-08-11 10:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-19 01:34 - 2015-08-11 10:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-19 01:34 - 2015-08-11 10:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-19 01:34 - 2015-08-11 10:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 01:34 - 2015-08-11 10:49 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 01:34 - 2015-08-11 10:49 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 01:34 - 2015-08-11 10:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-08-19 01:34 - 2015-08-11 10:47 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-19 01:34 - 2015-08-11 10:45 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-19 01:34 - 2015-08-11 10:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-08-19 01:34 - 2015-08-11 10:42 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-19 01:34 - 2015-08-11 10:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-19 01:34 - 2015-08-11 10:40 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-19 01:34 - 2015-08-11 10:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-08-19 01:34 - 2015-08-11 10:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-17 12:10 - 2015-08-17 12:10 - 00000000 ____D C:\Users\Ismael\Documents\Wizards of the Coast
2015-08-15 23:36 - 2015-08-15 23:36 - 00003254 _____ C:\WINDOWS\System32\Tasks\SidebarExecute
2015-08-15 13:45 - 2015-08-15 13:45 - 00000000 ____D C:\Users\Ismael\Documents\My Curse
2015-08-15 13:43 - 2015-09-03 01:40 - 00000000 ____D C:\Users\Ismael\AppData\Local\Deployment
2015-08-15 13:43 - 2015-08-15 13:45 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Curse Advertising
2015-08-15 13:43 - 2015-08-15 13:43 - 00000318 _____ C:\Users\Ismael\Desktop\Curse Client.appref-ms
2015-08-15 13:43 - 2015-08-15 13:43 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
2015-08-15 13:43 - 2015-08-15 13:43 - 00000000 ____D C:\Users\Ismael\AppData\Local\Apps\2.0
2015-08-15 13:41 - 2015-08-15 13:41 - 00004148 _____ C:\Users\Ismael\Downloads\BlizzMove-v1.4.zip
2015-08-14 19:10 - 2015-08-14 19:10 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-14 01:39 - 2015-08-14 01:39 - 00000000 ___RD C:\Users\Ismael\3D Objects
2015-08-13 22:50 - 2015-08-13 22:50 - 00003344 _____ C:\WINDOWS\System32\Tasks\{D37590F8-3DD1-4721-B1DA-D567A6D71455}
2015-08-13 20:57 - 2015-09-03 10:06 - 00002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-13 20:57 - 2015-08-13 20:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-13 20:56 - 2015-09-05 10:06 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-13 20:56 - 2015-09-05 10:06 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-13 20:56 - 2015-09-05 09:49 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{02EF6015-06D8-4232-B524-5BCBD970FFEE}
2015-08-13 20:56 - 2015-08-29 10:01 - 00004196 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-13 20:56 - 2015-08-29 10:01 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-13 17:31 - 2015-08-07 13:07 - 01898288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435560.dll
2015-08-13 17:31 - 2015-08-07 13:07 - 01558832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435560.dll
2015-08-13 17:31 - 2015-08-07 13:07 - 00040280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-08-13 17:28 - 2015-08-13 17:29 - 04952065 _____ C:\Users\Ismael\Downloads\DesktopGadgetsInstaller.zip
2015-08-13 17:27 - 2015-08-13 17:27 - 00039711 _____ C:\Users\Ismael\Downloads\559_simples_clock_gadgetsrevived.com.gadget
2015-08-13 17:13 - 2015-08-13 16:36 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-13 17:12 - 2015-08-13 16:14 - 00000000 __SHD C:\Recovery
2015-08-13 17:11 - 2015-08-13 17:11 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-13 17:11 - 2015-08-13 17:11 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-13 17:11 - 2015-08-13 17:11 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-13 17:11 - 2015-08-13 17:11 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-13 17:11 - 2015-08-13 17:11 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00000000 ____D C:\Windows.old
2015-08-13 17:09 - 2015-08-13 17:09 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\Program Files\MSBuild
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\inetpub
2015-08-13 17:08 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-13 17:08 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 17:08 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-13 17:08 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-13 17:08 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 17:08 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-13 17:04 - 2015-08-13 18:21 - 00000000 ____D C:\Users\Ismael\AppData\Local\Comms
2015-08-13 17:01 - 2015-08-13 17:02 - 00931408 _____ (Google Inc.) C:\Users\Ismael\Downloads\ChromeSetup (1).exe
2015-08-13 16:47 - 2015-08-13 16:47 - 00000000 ____D C:\Users\Ismael\AppData\Local\MicrosoftEdge
2015-08-13 16:38 - 2015-08-20 17:09 - 00002404 _____ C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-13 16:38 - 2015-08-20 17:09 - 00000000 ___RD C:\Users\Ismael\OneDrive
2015-08-13 16:38 - 2015-08-13 16:38 - 00001053 _____ C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2015-08-13 16:38 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-08-13 16:38 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-08-13 16:38 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-08-13 16:38 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-08-13 16:38 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-08-13 16:37 - 2015-08-13 16:37 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-08-13 16:36 - 2015-09-03 23:48 - 00000000 ____D C:\Users\Ismael\AppData\Local\Packages
2015-08-13 16:36 - 2015-08-13 16:36 - 00000020 ___SH C:\Users\Ismael\ntuser.ini
2015-08-13 16:36 - 2015-08-13 16:36 - 00000000 ____D C:\Users\Ismael\AppData\Local\TileDataLayer
2015-08-13 16:36 - 2015-08-13 16:36 - 00000000 ____D C:\Users\Ismael\AppData\Local\Publishers
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-08-13 16:19 - 2015-08-13 16:19 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-13 16:16 - 2015-08-13 16:16 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-13 16:16 - 2015-08-13 16:16 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-13 16:16 - 2015-08-13 16:16 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-13 16:15 - 2015-08-13 16:15 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-08-13 16:15 - 2015-07-10 12:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-13 16:14 - 2015-09-02 22:28 - 00000000 ____D C:\Users\Ismael
2015-08-13 16:14 - 2015-09-02 11:40 - 02077062 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-13 16:14 - 2015-08-13 16:36 - 00000000 ___RD C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-13 16:14 - 2015-08-13 16:14 - 01980268 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-08-13 16:14 - 2015-08-13 16:14 - 00021209 _____ C:\WINDOWS\iis.log
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Vorlagen
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Startmenü
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Netzwerkumgebung
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Lokale Einstellungen
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Eigene Dateien
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Druckumgebung
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Documents\Eigene Musik
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Documents\Eigene Bilder
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\AppData\Local\Verlauf
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\AppData\Local\Anwendungsdaten
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Anwendungsdaten
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-08-13 16:14 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-13 16:14 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-13 16:14 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-13 16:14 - 2015-07-10 13:04 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-13 16:13 - 2015-09-02 11:33 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-13 16:13 - 2015-08-31 23:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-13 16:13 - 2015-08-29 04:16 - 00008184 _____ C:\WINDOWS\PFRO.log
2015-08-13 16:13 - 2015-08-25 17:57 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-13 16:13 - 2015-08-25 17:57 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-13 16:13 - 2015-08-25 17:57 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-13 16:13 - 2015-08-25 17:57 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-13 16:13 - 2015-08-25 17:57 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-13 16:13 - 2015-08-25 17:57 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-13 16:13 - 2015-08-25 15:02 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-08-13 16:13 - 2015-08-13 16:15 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-13 16:13 - 2015-08-13 16:15 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-08-13 16:13 - 2015-08-13 16:13 - 00033327 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-13 16:13 - 2015-08-13 16:13 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-08-13 16:13 - 2015-08-13 16:13 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-13 16:13 - 2015-08-13 16:13 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-08-13 16:13 - 2015-08-13 16:13 - 00000000 ____D C:\Program Files\Realtek
2015-08-13 12:15 - 2015-08-13 12:15 - 00000000 ___HD C:\$Windows.~WS
2015-08-13 12:14 - 2015-08-13 12:15 - 19648448 _____ (Microsoft Corporation) C:\Users\Ismael\Downloads\MediaCreationToolx64.exe
2015-08-13 11:56 - 2015-07-10 13:00 - 00000001 ___SH C:\BOOTNXT
2015-08-13 11:55 - 2015-08-13 16:19 - 00013275 _____ C:\WINDOWS\diagerr.xml
2015-08-13 11:55 - 2015-08-13 16:19 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2015-08-13 11:55 - 2015-08-13 16:19 - 00008197 _____ C:\WINDOWS\comsetup.log
2015-08-13 10:58 - 2015-08-13 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2015-08-13 10:58 - 2015-08-13 10:58 - 00000968 _____ C:\Users\Public\Desktop\Diablo III.lnk
2015-08-12 09:00 - 2015-07-16 22:12 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-08-12 09:00 - 2015-07-16 21:33 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-08-12 09:00 - 2015-07-16 21:05 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2015-08-12 08:58 - 2015-07-20 20:12 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-08-12 00:18 - 2015-08-12 00:18 - 00000749 _____ C:\Users\Ismael\Desktop\Start Tor Browser.lnk
2015-08-12 00:18 - 2015-08-12 00:18 - 00000749 _____ C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2015-08-11 23:48 - 2015-08-12 00:12 - 44190224 _____ C:\Users\Ismael\Downloads\torbrowser-install-5.0_de.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-05 09:59 - 2015-06-22 12:48 - 00001228 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000UA.job
2015-09-05 09:50 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-05 09:46 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-05 09:46 - 2014-11-22 11:42 - 00000000 ____D C:\Users\Ismael\AppData\Local\Adobe
2015-09-05 09:46 - 2014-11-21 14:41 - 00033118 _____ C:\WINDOWS\SysWOW64\Gms.log
2015-09-05 02:59 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-05 00:59 - 2015-06-22 12:48 - 00001176 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000Core.job
2015-09-05 00:35 - 2015-07-16 10:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-04 23:58 - 2015-07-14 17:58 - 00000356 _____ C:\WINDOWS\Tasks\FatBurn.job
2015-09-04 23:58 - 2015-06-08 11:58 - 00000354 _____ C:\WINDOWS\Tasks\BoxyFX.job
2015-09-04 23:57 - 2015-07-02 16:45 - 00000000 ____D C:\Users\Ismael\Documents\Gothic3
2015-09-04 13:15 - 2014-11-21 16:06 - 00612157 _____ C:\WINDOWS\DirectX.log
2015-09-04 13:00 - 2014-11-21 16:45 - 00007595 _____ C:\Users\Ismael\AppData\Local\Resmon.ResmonCfg
2015-09-04 03:31 - 2014-11-26 22:21 - 00000000 ____D C:\Users\Ismael\AppData\Local\Battle.net
2015-09-04 00:24 - 2014-11-21 16:50 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Skype
2015-09-02 13:16 - 2014-12-25 00:55 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\uTorrent
2015-09-02 12:16 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-02 11:44 - 2015-07-16 10:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-09-02 11:44 - 2014-11-21 14:33 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-02 11:40 - 2015-07-10 18:34 - 00883584 _____ C:\WINDOWS\system32\perfh007.dat
2015-09-02 11:40 - 2015-07-10 18:34 - 00195718 _____ C:\WINDOWS\system32\perfc007.dat
2015-09-02 11:34 - 2015-07-10 14:20 - 00023430 _____ C:\WINDOWS\setupact.log
2015-09-02 11:34 - 2014-11-21 19:25 - 00000000 ___RD C:\Users\Ismael\Dropbox
2015-09-02 11:34 - 2014-11-21 19:05 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Dropbox
2015-09-02 11:33 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-01 07:34 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-09-01 07:34 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-01 07:34 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-31 23:53 - 2014-11-21 14:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-31 21:55 - 2015-02-10 15:53 - 00001456 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-08-31 00:47 - 2015-08-05 03:40 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-29 15:46 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-27 02:37 - 2015-02-10 15:53 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-08-27 02:37 - 2015-02-10 15:53 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-08-27 02:36 - 2015-02-10 15:53 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-08-27 02:36 - 2015-02-10 15:53 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-08-26 17:21 - 2015-02-01 10:35 - 00000000 ____D C:\Users\Ismael\Documents\StarCraft II
2015-08-25 20:38 - 2015-08-05 03:40 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-08-25 20:38 - 2015-08-05 03:40 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-08-25 20:38 - 2015-08-05 03:40 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-08-25 20:38 - 2015-08-05 03:40 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-08-25 20:38 - 2015-08-05 03:40 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-25 20:38 - 2015-08-05 03:40 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-25 20:38 - 2015-07-23 04:02 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-08-25 20:38 - 2015-02-10 15:53 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-08-25 20:38 - 2015-02-10 15:53 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-08-23 04:10 - 2014-12-02 15:30 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-08-19 03:30 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-14 15:13 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-08-14 13:01 - 2014-11-22 09:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-08-14 04:11 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-13 20:57 - 2014-11-21 14:35 - 00000000 ____D C:\Program Files (x86)\Google
2015-08-13 19:11 - 2015-07-16 10:38 - 00148632 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-08-13 19:11 - 2015-07-16 10:38 - 00137288 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-08-13 19:11 - 2015-07-16 10:38 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-08-13 17:29 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Sidebar
2015-08-13 17:29 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2015-08-13 17:22 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-08-13 17:13 - 2015-07-10 13:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-13 17:11 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-13 17:11 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-13 17:11 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-13 17:11 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-13 17:11 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-13 17:08 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-08-13 17:08 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-08-13 17:08 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-08-13 17:08 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-08-13 17:08 - 2015-07-10 13:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-08-13 17:08 - 2015-07-10 13:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-08-13 17:08 - 2015-07-10 13:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-08-13 17:08 - 2015-07-10 13:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-08-13 17:08 - 2015-07-10 13:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-08-13 17:08 - 2015-07-10 13:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-08-13 17:08 - 2015-07-10 13:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-08-13 17:08 - 2015-07-10 13:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-08-13 17:08 - 2015-07-10 13:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-08-13 17:08 - 2015-07-10 13:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-08-13 17:08 - 2015-07-10 13:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-08-13 17:08 - 2015-07-10 13:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-08-13 17:08 - 2015-07-10 13:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-08-13 17:08 - 2015-07-10 13:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-08-13 17:08 - 2015-07-10 13:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-08-13 16:59 - 2015-07-10 14:20 - 04964328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-13 16:38 - 2015-07-10 18:35 - 00000000 ____D C:\WINDOWS\OCR
2015-08-13 16:36 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-13 16:36 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-13 16:36 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-13 16:36 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-13 16:20 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows NT
2015-08-13 16:20 - 2015-07-10 11:05 - 00000000 __RHD C:\Users\Default
2015-08-13 16:19 - 2015-07-16 10:38 - 00003542 _____ C:\WINDOWS\System32\Tasks\Avira Browser Safety Updater Task
2015-08-13 16:19 - 2015-07-16 10:00 - 00003932 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-13 16:19 - 2015-07-14 17:58 - 00003380 _____ C:\WINDOWS\System32\Tasks\FatBurn
2015-08-13 16:19 - 2015-07-10 13:04 - 00000000 __RSD C:\WINDOWS\Media
2015-08-13 16:19 - 2015-07-10 13:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-13 16:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-13 16:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Registration
2015-08-13 16:19 - 2015-06-22 12:48 - 00004310 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000UA
2015-08-13 16:19 - 2015-06-22 12:48 - 00003914 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000Core
2015-08-13 16:19 - 2015-06-08 11:58 - 00003378 _____ C:\WINDOWS\System32\Tasks\BoxyFX
2015-08-13 16:19 - 2015-01-06 22:07 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-08-13 16:19 - 2014-12-30 01:24 - 00003616 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-Ismael-PC-Ismael
2015-08-13 16:17 - 2015-07-10 13:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-13 16:17 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-13 16:17 - 2015-06-02 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-13 16:17 - 2015-05-23 13:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2015-08-13 16:17 - 2015-05-13 23:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2015-08-13 16:17 - 2015-04-19 19:41 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Fantasy Grounds
2015-08-13 16:17 - 2015-04-01 11:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tele2
2015-08-13 16:17 - 2015-03-23 14:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2015-08-13 16:17 - 2015-03-13 15:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-08-13 16:17 - 2015-03-10 08:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2015-08-13 16:17 - 2015-03-06 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2015-08-13 16:17 - 2015-03-01 18:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount&Blade With Fire and Sword
2015-08-13 16:17 - 2015-02-25 22:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2015-08-13 16:17 - 2015-02-22 17:37 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-08-13 16:17 - 2015-01-28 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-08-13 16:17 - 2015-01-25 12:37 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Midimaster
2015-08-13 16:17 - 2015-01-25 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Midimaster
2015-08-13 16:17 - 2015-01-07 00:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2015-08-13 16:17 - 2014-12-21 22:22 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-13 16:17 - 2014-12-21 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-13 16:17 - 2014-12-10 22:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2015-08-13 16:17 - 2014-12-02 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-08-13 16:17 - 2014-11-28 07:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHARKOON Drakonia
2015-08-13 16:17 - 2014-11-26 22:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-08-13 16:17 - 2014-11-21 17:46 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2015-08-13 16:17 - 2014-11-21 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-13 16:17 - 2014-11-21 15:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft LifeCam
2015-08-13 16:17 - 2014-11-21 14:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-13 16:17 - 2014-11-21 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2015-08-13 16:17 - 2014-11-21 14:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-08-13 16:17 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-13 16:16 - 2015-07-10 13:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-13 16:16 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-13 16:16 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-13 16:16 - 2009-07-14 05:20 - 00000000 ____D C:\Users\Default.migrated
2015-08-13 16:15 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-08-13 16:15 - 2015-07-10 15:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\schemas
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-13 16:15 - 2015-07-02 16:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JoWood
2015-08-13 16:15 - 2015-04-10 15:28 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GamersFirst
2015-08-13 16:15 - 2015-03-13 19:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2015-08-13 16:15 - 2014-12-03 09:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-08-13 16:15 - 2014-11-28 07:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT
2015-08-13 16:15 - 2014-11-22 15:45 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-08-13 16:15 - 2014-11-21 16:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-13 16:15 - 2014-11-21 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2015-08-13 16:15 - 2011-04-12 09:54 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-08-13 16:15 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-08-13 16:15 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-13 16:14 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-13 16:13 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-13 16:04 - 2014-11-21 14:27 - 01629197 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-13 16:04 - 2009-07-14 06:45 - 00028944 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-13 16:04 - 2009-07-14 06:45 - 00028944 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-13 15:58 - 2014-11-21 14:22 - 00008192 __RSH C:\BOOTSECT.BAK
2015-08-13 15:57 - 2015-07-10 19:28 - 00000000 ___HD C:\$Windows.~BT
2015-08-13 14:33 - 2015-05-19 06:58 - 00000000 ____D C:\Users\Ismael\Documents\The Witcher 3
2015-08-13 11:21 - 2014-11-22 10:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-13 11:19 - 2014-11-22 10:28 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-13 11:17 - 2015-02-02 15:13 - 00000000 ____D C:\Users\Ismael\Documents\Diablo III
2015-08-13 09:14 - 2015-03-02 22:23 - 00000000 ____D C:\Users\Ismael\AppData\Local\CrashDumps
2015-08-11 06:52 - 2015-07-17 21:34 - 00050472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-08-10 10:41 - 2015-03-06 23:19 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-08-09 19:19 - 2015-03-23 13:51 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2015-08-08 17:38 - 2015-07-10 13:06 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-08 17:38 - 2015-07-10 13:06 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-07 13:07 - 2015-08-05 03:40 - 01567576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-08-07 13:07 - 2015-08-05 03:40 - 00204648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-06-08 12:03 - 2015-07-14 17:43 - 0000024 _____ () C:\Users\Ismael\AppData\Roaming\appdataFr25.bin
2015-04-12 14:33 - 2015-04-12 14:33 - 0003584 _____ () C:\Users\Ismael\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-21 16:45 - 2015-09-04 13:00 - 0007595 _____ () C:\Users\Ismael\AppData\Local\Resmon.ResmonCfg
2015-07-02 07:25 - 2015-07-02 07:25 - 0000000 _____ () C:\Users\Ismael\AppData\Local\Temp.dat
2014-12-03 09:13 - 2014-12-03 09:13 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-08-13 16:13 - 2015-08-13 16:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Ismael\AppData\Local\Temp\avgnt.exe
C:\Users\Ismael\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp180tsh.dll
C:\Users\Ismael\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Ismael\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Ismael\AppData\Local\Temp\nvStInst.exe

==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-09-01 07:31

==================== Ende von FRST.txt
Antivirus Ereignisse seit 1.9.:

Code:
Exportierte Ereignisse:

03.09.2015 18:50 [System-Scanner] Malware gefunden
      Die Datei
      'D:\$RECYCLE.BIN\S-1-5-21-831993325-2952530161-2944430335-1000\$RE7NXT6\One
      Piece Pirate Warriors 3 - GOLD Edition\setup.exe'
      enthielt einen Virus oder unerwünschtes Programm 'TR/Dldr.Adload.7294967'
      [trojan].
      Durchgeführte Aktion(en):
      Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '5022d928.qua'
      verschoben!

03.09.2015 00:24 [Echtzeit-Scanner] Malware gefunden
      In der Datei 'C:\Program Files (x86)\DNS Unlocker\dnsyakima.exe'
      wurde ein Virus oder unerwünschtes Programm 'ADWARE/CloudGuard.582656.2'
      [adware] gefunden.
      Ausgeführte Aktion: Übergeben an Scanner

03.09.2015 00:24 [Echtzeit-Scanner] Malware gefunden
      In der Datei 'C:\Program Files (x86)\DNS Unlocker\dnsyakima.exe'
      wurde ein Virus oder unerwünschtes Programm 'ADWARE/CloudGuard.582656.2'
      [adware] gefunden.
      Ausgeführte Aktion: Zugriff verweigern

02.09.2015 02:13 [Echtzeit-Scanner] Malware gefunden
      In der Datei 'C:\Users\Ismael\AppData\Local\Temp\nsoEF7.tmp\Zd6QswWsbH.exe'
      wurde ein Virus oder unerwünschtes Programm 'ADWARE/Adware.Gen7' [adware]
      gefunden.
      Ausgeführte Aktion: Zugriff verweigern

02.09.2015 02:10 [Echtzeit-Scanner] Malware gefunden
      In der Datei 'C:\Users\Ismael\AppData\Local\Temp\nsxE878.tmp\Zd6QswWsbH.exe'
      wurde ein Virus oder unerwünschtes Programm 'ADWARE/Adware.Gen7' [adware]
      gefunden.
      Ausgeführte Aktion: Zugriff verweigern

cosinus 05.09.2015 18:23
Adware/Junkware/Toolbars entfernen

1. Schritt: Malwarebytes

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.




(alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!)

2. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).



3. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.




4. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


CLamantius 05.09.2015 19:22
mbam.txt

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 05.09.2015
Suchlaufzeit: 19:50
Protokolldatei: mbam.txt
Administrator: Ja

Version: 2.1.8.1057
Malware-Datenbank: v2015.09.05.05
Rootkit-Datenbank: v2015.08.16.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: Ismael

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 394662
Abgelaufene Zeit: 5 Min., 52 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 48
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\CLASSES\TYPELIB\{A336F17E-321F-43FA-9BE6-873BBDFF418E}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\CLASSES\INTERFACE\{2704C5CE-6D55-4E23-9B0F-CFE24AA97234}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\CLASSES\INTERFACE\{970836ED-AE00-478D-BDF1-90D17713D3A2}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\CLASSES\INTERFACE\{B3321940-9C27-4ABD-9AEF-F93D0B6E1238}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\CLASSES\INTERFACE\{B985E3F1-6AB3-49C6-B4BE-DB354176C4DF}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{2704C5CE-6D55-4E23-9B0F-CFE24AA97234}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{970836ED-AE00-478D-BDF1-90D17713D3A2}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B3321940-9C27-4ABD-9AEF-F93D0B6E1238}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B985E3F1-6AB3-49C6-B4BE-DB354176C4DF}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{2704C5CE-6D55-4E23-9B0F-CFE24AA97234}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{970836ED-AE00-478D-BDF1-90D17713D3A2}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B3321940-9C27-4ABD-9AEF-F93D0B6E1238}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B985E3F1-6AB3-49C6-B4BE-DB354176C4DF}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A336F17E-321F-43FA-9BE6-873BBDFF418E}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{A336F17E-321F-43FA-9BE6-873BBDFF418E}, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\CLASSES\TYPELIB\{330ED369-73D2-49BC-AC43-1E21602F742D}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\CLASSES\INTERFACE\{0B079ECD-60E4-40B9-9FAC-4ECC98AB8786}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\CLASSES\INTERFACE\{3967CDA8-3EAB-4115-84F1-C29A9C5FB484}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\CLASSES\INTERFACE\{9F5974D4-08A9-4422-9F36-76103BEE67A1}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\CLASSES\INTERFACE\{B0030E0C-349C-4EB5-AD5E-847B43C0D844}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0B079ECD-60E4-40B9-9FAC-4ECC98AB8786}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3967CDA8-3EAB-4115-84F1-C29A9C5FB484}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9F5974D4-08A9-4422-9F36-76103BEE67A1}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B0030E0C-349C-4EB5-AD5E-847B43C0D844}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{0B079ECD-60E4-40B9-9FAC-4ECC98AB8786}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{3967CDA8-3EAB-4115-84F1-C29A9C5FB484}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9F5974D4-08A9-4422-9F36-76103BEE67A1}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B0030E0C-349C-4EB5-AD5E-847B43C0D844}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{330ED369-73D2-49BC-AC43-1E21602F742D}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{330ED369-73D2-49BC-AC43-1E21602F742D}, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\CLASSES\TYPELIB\{A1965763-A486-4E1E-B574-19E44B3842E8}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\CLASSES\INTERFACE\{9CABED0D-99E4-457C-A192-D528B389F53C}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\CLASSES\INTERFACE\{CED50656-D422-418C-8A20-A0F455842FA5}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\CLASSES\INTERFACE\{D8B5D394-6974-40D4-9DFB-DAAD64E422D6}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\CLASSES\INTERFACE\{ED2A17AC-87A9-4640-9DE9-07AB5B63E902}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9CABED0D-99E4-457C-A192-D528B389F53C}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{CED50656-D422-418C-8A20-A0F455842FA5}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D8B5D394-6974-40D4-9DFB-DAAD64E422D6}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{ED2A17AC-87A9-4640-9DE9-07AB5B63E902}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9CABED0D-99E4-457C-A192-D528B389F53C}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{CED50656-D422-418C-8A20-A0F455842FA5}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D8B5D394-6974-40D4-9DFB-DAAD64E422D6}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{ED2A17AC-87A9-4640-9DE9-07AB5B63E902}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A1965763-A486-4E1E-B574-19E44B3842E8}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{A1965763-A486-4E1E-B574-19E44B3842E8}, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, In Quarantäne, [d9704fdd7d0e44f29120323c7c88ae52],
PUP.Optional.InstallBrain, HKLM\SOFTWARE\WOW6432NODE\InstallIQ, In Quarantäne, [9eabb874860561d5d708bbdaf4107a86],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, In Quarantäne, [83c6c6667c0f5cda8b26ed8116ee629e],

Registrierungswerte: 2
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, In Quarantäne, [d9704fdd7d0e44f29120323c7c88ae52]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, In Quarantäne, [83c6c6667c0f5cda8b26ed8116ee629e]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 16
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.CheapMe, C:\Program Files (x86)\CheaPMee, In Quarantäne, [ac9d6dbf95f6b4828690a5dbe61e2dd3],
PUP.Optional.DownSave, C:\Program Files (x86)\DownSavoe, In Quarantäne, [ec5d83a92962ab8b3c2e06840400df21],
PUP.Optional.DownSave, C:\Program Files (x86)\DownSavvE, In Quarantäne, [63e616168605b38386e496f4778dab55],
PUP.Optional.GreatSave4U, C:\Program Files (x86)\GreaetSAve4Ua, In Quarantäne, [1336e844404b999d1a7bbed3ac58738d],
PUP.Optional.GreatSave4U, C:\Program Files (x86)\GreiatSavie4U, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.Happy2Save, C:\Program Files (x86)\Hoappey2Suave, In Quarantäne, [56f33cf04f3c0036b833b4dda460ad53],
PUP.Optional.Happy2Save, C:\Program Files (x86)\Huaappy22Save, In Quarantäne, [8fba31fb16754cea6e7d5e3352b26c94],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfdljglikamcdljmffmhfionigapkf\110, In Quarantäne, [fe4b98948cff3cfa5956f8a7877d46ba],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfdljglikamcdljmffmhfionigapkf, In Quarantäne, [fe4b98948cff3cfa5956f8a7877d46ba],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\helbdicochoikmmbkbmnkhdbbojaaicp\1.1, In Quarantäne, [bf8af5378dfef3439b140699f70da25e],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\helbdicochoikmmbkbmnkhdbbojaaicp, In Quarantäne, [bf8af5378dfef3439b140699f70da25e],
PUP.Optional.ShopDrop, C:\Program Files (x86)\ShhopDrOp, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, C:\Program Files (x86)\SHopDreOp, In Quarantäne, [60e99498fb906dc9d9ecaa0314f0847c],
PUP.Optional.WhiteCoupon, C:\Program Files (x86)\WhiteCouppoN, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.APNToolBar.Gen, C:\ProgramData\APN\APN-Stub, In Quarantäne, [1a2f3bf1ccbfda5c7da60bec52b039c7],

Dateien: 63
Worm.Zhelatin, C:\Windows\System32\fsvk.exe.exe, In Quarantäne, [1c2d4ddf721976c066ed4c3ab84b946c],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\24e65afa53034dc8bcdb3599597de8b3.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\5ba3ff2d19c3f782649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\77e15c34faa6fcadbcdb3599597de8b3.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\24e88a37d2d9c836649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\25f68afcfdcc762a649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\28ffb307da9e37a9649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\35555c15a234937f649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\4775d99c57b1799e649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\4feba7a46853ce31bcdb3599597de8b3.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\509988526bee90c2649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\8299aeb44b557f91649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\9056980660156c5c649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\954accd1ef18255b649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\963a03e3172e9e7a649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\a4be4e28c0601c05649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\af0c9ff59bf040b6649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\bba61a27e9bcb9d0649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\c5dda88116364677649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\c964044650c9e4ef649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\d1b823d8a4cc4149649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\dd632212936319c2649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\eddc3f6e3bd42cbebcdb3599597de8b3.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\f7610c3afe2bbcd1649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\fe9396fa739170eb649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\610c92036204ce19649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\6757e794ec36f69e649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\67bb49a1cb4906ed649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\67c9553d6b57f65c649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\6d731089f6835f77649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\720f743a776772be649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\724359274a36321c649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\10180179805306874962\725ccee15bdf5c66649092430e78973d.ini, In Quarantäne, [222757d5cdbeb97de7a9512035cfde22],
PUP.Optional.CheapMe, C:\Program Files (x86)\CheaPMee\m0fOqRLslIobCq.tlb, In Quarantäne, [ac9d6dbf95f6b4828690a5dbe61e2dd3],
PUP.Optional.CheapMe, C:\Program Files (x86)\CheaPMee\m0fOqRLslIobCq.dat, In Quarantäne, [ac9d6dbf95f6b4828690a5dbe61e2dd3],
PUP.Optional.DownSave, C:\Program Files (x86)\DownSavoe\kLXRZed6mvALBd.tlb, In Quarantäne, [ec5d83a92962ab8b3c2e06840400df21],
PUP.Optional.DownSave, C:\Program Files (x86)\DownSavoe\kLXRZed6mvALBd.dat, In Quarantäne, [ec5d83a92962ab8b3c2e06840400df21],
PUP.Optional.DownSave, C:\Program Files (x86)\DownSavvE\wdO6Oi3pxm0U6G.tlb, In Quarantäne, [63e616168605b38386e496f4778dab55],
PUP.Optional.DownSave, C:\Program Files (x86)\DownSavvE\wdO6Oi3pxm0U6G.dat, In Quarantäne, [63e616168605b38386e496f4778dab55],
PUP.Optional.GreatSave4U, C:\Program Files (x86)\GreaetSAve4Ua\XJ9uFghmK9eDNq.tlb, In Quarantäne, [1336e844404b999d1a7bbed3ac58738d],
PUP.Optional.GreatSave4U, C:\Program Files (x86)\GreaetSAve4Ua\XJ9uFghmK9eDNq.dat, In Quarantäne, [1336e844404b999d1a7bbed3ac58738d],
PUP.Optional.GreatSave4U, C:\Program Files (x86)\GreiatSavie4U\t7jOHgBOlAICcQ.tlb, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.GreatSave4U, C:\Program Files (x86)\GreiatSavie4U\t7jOHgBOlAICcQ.dat, In Quarantäne, [0b3eb07c711a73c3a6f0bad7e321cd33],
PUP.Optional.Happy2Save, C:\Program Files (x86)\Hoappey2Suave\9GCRJzwwuFDWWC.tlb, In Quarantäne, [56f33cf04f3c0036b833b4dda460ad53],
PUP.Optional.Happy2Save, C:\Program Files (x86)\Hoappey2Suave\9GCRJzwwuFDWWC.dat, In Quarantäne, [56f33cf04f3c0036b833b4dda460ad53],
PUP.Optional.Happy2Save, C:\Program Files (x86)\Huaappy22Save\rqCXXj6b5G9Psg.tlb, In Quarantäne, [8fba31fb16754cea6e7d5e3352b26c94],
PUP.Optional.Happy2Save, C:\Program Files (x86)\Huaappy22Save\rqCXXj6b5G9Psg.dat, In Quarantäne, [8fba31fb16754cea6e7d5e3352b26c94],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfdljglikamcdljmffmhfionigapkf\110\lsdb.js, In Quarantäne, [fe4b98948cff3cfa5956f8a7877d46ba],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfdljglikamcdljmffmhfionigapkf\110\background.html, In Quarantäne, [fe4b98948cff3cfa5956f8a7877d46ba],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfdljglikamcdljmffmhfionigapkf\110\content.js, In Quarantäne, [fe4b98948cff3cfa5956f8a7877d46ba],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfdljglikamcdljmffmhfionigapkf\110\jmuhi7tlN.js, In Quarantäne, [fe4b98948cff3cfa5956f8a7877d46ba],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfdljglikamcdljmffmhfionigapkf\110\manifest.json, In Quarantäne, [fe4b98948cff3cfa5956f8a7877d46ba],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\helbdicochoikmmbkbmnkhdbbojaaicp\1.1\lsdb.js, In Quarantäne, [bf8af5378dfef3439b140699f70da25e],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\helbdicochoikmmbkbmnkhdbbojaaicp\1.1\background.html, In Quarantäne, [bf8af5378dfef3439b140699f70da25e],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\helbdicochoikmmbkbmnkhdbbojaaicp\1.1\content.js, In Quarantäne, [bf8af5378dfef3439b140699f70da25e],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\helbdicochoikmmbkbmnkhdbbojaaicp\1.1\manifest.json, In Quarantäne, [bf8af5378dfef3439b140699f70da25e],
PUP.Optional.MultiPlug, C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\helbdicochoikmmbkbmnkhdbbojaaicp\1.1\x.js, In Quarantäne, [bf8af5378dfef3439b140699f70da25e],
PUP.Optional.ShopDrop, C:\Program Files (x86)\ShhopDrOp\yRFXhKJ3VElcAy.tlb, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, C:\Program Files (x86)\ShhopDrOp\yRFXhKJ3VElcAy.dat, In Quarantäne, [4900200c117ac76fe4e15e4f0afae719],
PUP.Optional.ShopDrop, C:\Program Files (x86)\SHopDreOp\iZ6gP1LDH6RI2r.tlb, In Quarantäne, [60e99498fb906dc9d9ecaa0314f0847c],
PUP.Optional.ShopDrop, C:\Program Files (x86)\SHopDreOp\iZ6gP1LDH6RI2r.dat, In Quarantäne, [60e99498fb906dc9d9ecaa0314f0847c],
PUP.Optional.WhiteCoupon, C:\Program Files (x86)\WhiteCouppoN\J5C0wb2eFULd5X.tlb, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],
PUP.Optional.WhiteCoupon, C:\Program Files (x86)\WhiteCouppoN\J5C0wb2eFULd5X.dat, In Quarantäne, [d277a5875f2cdd5941d0b209fd075fa1],

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
AdwCleaner[C1].txt

Code:
# AdwCleaner v5.005 - Bericht erstellt am 05/09/2015 um 20:05:27
# Aktualisiert am 31/08/2015 von Xplode
# Datenbank : 2015-09-04.4 [Server]
# Betriebssystem : Windows 10 Home  (x64)
# Benutzername : Ismael - ISMAEL-PC
# Gestartet von : C:\Users\Ismael\Downloads\AdwCleaner_5.005.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Program Files (x86)\SustainerPlus
[-] Ordner Gelöscht : C:\Program Files (x86)\CheaapME
[-] Ordner Gelöscht : C:\Program Files (x86)\GreatSuaveu4eU
[-] Ordner Gelöscht : C:\Program Files (x86)\ShoppDroPP
[-] Ordner Gelöscht : C:\Program Files (x86)\HowToSimplified
[-] Ordner Gelöscht : C:\ProgramData\apn
[-] Ordner Gelöscht : C:\ProgramData\738a36e400001d53
[-] Ordner Gelöscht : C:\ProgramData\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}
[-] Ordner Gelöscht : C:\ProgramData\{9f4261e0-2bb2-cd6c-9f42-261e02bb8780}
[-] Ordner Gelöscht : C:\ProgramData\{d2bac945-acb4-2153-d2ba-ac945acb2516}
[-] Ordner Gelöscht : C:\ProgramData\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}

***** [ Dateien ] *****

[-] Datei Gelöscht : C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
[-] Datei Gelöscht : C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
[-] Datei Gelöscht : C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.movshare.net_0.localstorage
[-] Datei Gelöscht : C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.movshare.net_0.localstorage-journal
[-] Datei Gelöscht : C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.reimageplus.com_0.localstorage
[-] Datei Gelöscht : C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.reimageplus.com_0.localstorage-journal
[-] Datei Gelöscht : C:\WINDOWS\Reimage.ini

***** [ Verknüpfungen ] *****


***** [ Geplante Tasks ] *****


***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\85068159-e7b8-1da9-cb09-fbc018da270d
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\ea494277-2f11-c0d1-a50d-18b431ff26e9
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{92B989D7-D747-4BA3-A01E-B4D46EA6F5C1}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{BD601133-B03F-4C73-B593-DB2322CBD22E}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\Reimage
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E957849A-94AC-6F46-4623-C31474E3C170}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C206CC20-60D6-8D02-746E-4465CC40B2F6}
[!] Schlüssel Nicht Gelöscht : [x64] HKCU\Software\OCS
[!] Schlüssel Nicht Gelöscht : [x64] HKCU\Software\Reimage
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Reimage

***** [ Internetbrowser ] *****


*************************

:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Chrome Richtlinien gelöscht

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4370 Bytes] ##########
JRT.txt

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.0 (08.31.2015:1)
OS: Windows 10 Home x64
Ran by Ismael on 05.09.2015 at 20:12:47,84
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Ismael\Appdata\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped

[C:\Users\Ismael\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\Ismael\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
ajopnjidmegmdimjlfnijceegpefgped

[C:\Users\Ismael\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\Ismael\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
  ajopnjidmegmdimjlfnijceegpefgped
]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 05.09.2015 at 20:13:53,50
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

CLamantius 05.09.2015 19:23
FRST.txt Teil 1

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:04-09-2015
durchgeführt von Ismael (Administrator) auf ISMAEL-PC (05-09-2015 20:17:07)
Gestartet von C:\Users\Ismael\Downloads
Geladene Profile: Ismael (Verfügbare Profile: Ismael)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Ismael\Downloads\FRST64 (1).exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-02-21] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [RoccatIsku] => C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE [536576 2013-10-30] (ROCCAT GmbH)
HKLM-x32\...\Run: [GamingMouse] => C:\Program Files (x86)\Drakonia Configurator\hid.exe [246784 2012-06-07] ()
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782008 2015-08-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66936 2015-08-03] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Run: [NvLedServiceHost] => C:\Program Files (x86)\NVIDIA Corporation\LED Visualizer\NvLedServiceHost.exe [87160 2015-08-27] ()
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Run: [Steam] => D:\steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7249976 2015-08-10] (GOG.com)
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Run: [Dropbox Update] => C:\Users\Ismael\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-22] (Dropbox, Inc.)
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Run: [OneDrive] => C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\OneDrive.exe [404064 2015-08-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2015-08-15] ()
Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-11-21]
ShortcutTarget: Dropbox.lnk -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk [2015-04-10]
ShortcutTarget: GamersFirst LIVE!.lnk -> C:\Users\Ismael\AppData\Local\GamersFirst\LIVE!\Live.exe (GamersFirst)
Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk [2014-11-21]
ShortcutTarget: Samsung Magician.lnk -> C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe (Samsung Electronics.)
Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 2050 J510 series.lnk [2014-12-03]
ShortcutTarget: Tintenwarnungen überwachen - HP Deskjet 2050 J510 series.lnk -> C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2148e83d-7292-4934-90e5-8a62b6ebabb7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{99ed74d9-4b10-45ba-a72d-ed9de63612f1}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE
HKU\S-1-5-21-831993325-2952530161-2944430335-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com
SearchScopes: HKU\S-1-5-21-831993325-2952530161-2944430335-1000 -> DefaultScope {2C7B6F72-58C2-4A6D-89A3-EAAFC8D0922B} URL =
SearchScopes: HKU\S-1-5-21-831993325-2952530161-2944430335-1000 -> {2C7B6F72-58C2-4A6D-89A3-EAAFC8D0922B} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-07-14] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-07-14] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-07-14] (Microsoft Corporation)
BHO-x32: AviraBrowserSafety.BrowserSafety -> {c3c77255-42c0-499f-b664-6e981a0b1647} -> C:\Windows\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - C:\Windows\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-10] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-02] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [Keine Datei]

Chrome:
=======
CHR DefaultSearchURL: Default -> "url":"{google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}{google:contextualSearchVersion}ie={inputEncoding}"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (APP) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.6.703\_platform_specific\win_x86\widevinecdmadapter.dll Keine Datei
CHR Plugin: (Shockwave Flash) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\internal-nacl-plugin Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\pdf.dll Keine Datei
CHR Plugin: (EA Battlefield Heroes Updater) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh\5.0.203.0_0\npBFHUpdater.dll (EA Digital Illusions CE AB)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Battlelog Game Launcher) - C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll Keine Datei
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java Deployment Toolkit 8.0.310.13) - C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 8 U31) - C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Microsoft Office 2013) - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2013) - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll Keine Datei
CHR Profile: C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Easy Auto Refresh) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2015-08-28]
CHR Extension: (BetterTTV) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-09-05]
CHR Extension: (Battlefield Heroes) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh [2015-03-13]
CHR Extension: (Adblock Plus) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-08-13]
CHR Extension: (FrankerFaceZ) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2015-08-13]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-13]
CHR Extension: (Bing Ban) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\lojpoaiocmhpagpedbodjlkhncgaacie [2015-08-13]
CHR Extension: (Flashcontrol) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidmkgnfgnkihnjeklbekckimkipmoe [2015-08-28]
CHR Extension: (Google Wallet) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-21]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [887128 2015-07-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-08-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-08-26] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1213072 2015-08-26] (Avira Operations GmbH & Co. KG)
S2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [227592 2015-08-03] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2765496 2015-07-14] (Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1720888 2015-08-10] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6920248 2015-08-29] (GOG.com)
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
S2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2015-01-12] (Hi-Rez Studios) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-02-21] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-02-19] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-13] (Microsoft Corporation)
S2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [278336 2011-09-19] (NVIDIA)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 Origin Client Service; D:\origin\OriginClientService.exe [1931632 2015-04-10] (Electronic Arts)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-13] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-13] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137288 2015-08-13] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-08-13] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-06-16] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-08-13] (Avira Operations GmbH & Co. KG)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-02-03] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-02-03] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [23936 2014-02-03] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD.sys [44744 2014-02-03] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-13] (Microsoft Corporation)
R3 nvoclk64; C:\Windows\system32\DRIVERS\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [22016 2015-07-10] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-05 20:14 - 2015-09-05 20:14 - 00001271 _____ C:\Users\Ismael\Desktop\JRT1.txt
2015-09-05 20:13 - 2015-09-05 20:13 - 00001271 _____ C:\Users\Ismael\Desktop\JRT.txt
2015-09-05 20:06 - 2015-09-05 20:06 - 00016148 _____ C:\WINDOWS\system32\ISMAEL-PC_Ismael_HistoryPrediction.bin
2015-09-05 20:06 - 2015-09-05 20:06 - 00004477 _____ C:\Users\Ismael\Desktop\AdwCleaner[C1].txt
2015-09-05 20:03 - 2015-09-05 20:05 - 00000000 ____D C:\AdwCleaner
2015-09-05 20:01 - 2015-09-05 20:01 - 00020693 _____ C:\Users\Ismael\Desktop\mbam.txt
2015-09-05 20:00 - 2015-09-05 20:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2015-09-05 19:49 - 2015-09-05 20:00 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-05 19:49 - 2015-09-05 19:49 - 00001177 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-09-05 19:49 - 2015-09-05 19:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-05 19:49 - 2015-09-05 19:49 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-05 19:49 - 2015-09-05 19:49 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-05 19:49 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-09-05 19:49 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-09-05 19:49 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-09-05 19:28 - 2015-09-05 20:11 - 01799392 _____ (Malwarebytes Corporation) C:\Users\Ismael\Downloads\JRT_7600.exe
2015-09-05 19:28 - 2015-09-05 20:02 - 01654272 _____ C:\Users\Ismael\Downloads\AdwCleaner_5.005.exe
2015-09-05 19:28 - 2015-09-05 19:49 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Ismael\Downloads\mbam-setup-2.1.8.1057.exe
2015-09-05 10:20 - 2015-09-05 10:20 - 00003212 _____ C:\Users\Ismael\Desktop\Ereignisse.txt
2015-09-05 09:50 - 2015-09-05 20:16 - 02188800 _____ (Farbar) C:\Users\Ismael\Downloads\FRST64 (1).exe
2015-09-04 20:54 - 2015-09-04 20:54 - 00001343 _____ C:\Users\Ismael\Desktop\Revo Uninstaller.lnk
2015-09-04 20:54 - 2015-09-04 20:54 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-09-04 20:52 - 2015-09-04 20:53 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Ismael\Downloads\revosetup95.exe
2015-09-04 20:49 - 2015-09-05 20:17 - 00027492 _____ C:\Users\Ismael\Downloads\FRST.txt
2015-09-04 20:49 - 2015-09-05 20:17 - 00000000 ____D C:\FRST
2015-09-04 20:49 - 2015-09-05 10:09 - 00116438 _____ C:\Users\Ismael\Downloads\Addition.txt
2015-09-04 20:48 - 2015-09-04 20:48 - 02188800 _____ (Farbar) C:\Users\Ismael\Downloads\FRST64.exe
2015-09-03 23:48 - 2015-09-03 23:48 - 00109038 _____ C:\Users\Ismael\Downloads\Schhule_Jahresbericht_2.xlsx
2015-09-03 00:24 - 2015-09-05 20:06 - 00003604 _____ C:\WINDOWS\System32\Tasks\SkypeUpdate
2015-09-02 13:26 - 2015-09-02 13:26 - 00000000 ____D C:\Users\Ismael\Documents\BNE
2015-09-02 11:44 - 2015-09-02 11:44 - 00001217 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-09-01 17:17 - 2015-09-01 17:17 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-01 08:34 - 2015-09-01 08:34 - 00000000 ____D C:\Users\Ismael\Documents\WB Games
2015-09-01 07:40 - 2015-09-01 07:40 - 730611248 ____N C:\WINDOWS\MEMORY.DMP
2015-09-01 07:40 - 2015-09-01 07:40 - 00930232 _____ C:\WINDOWS\Minidump\090115-11265-01.dmp
2015-09-01 07:40 - 2015-09-01 07:40 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-31 23:53 - 2015-08-31 23:53 - 00002212 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-08-31 23:53 - 2015-08-25 16:18 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-08-31 23:52 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00785152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00631312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00601240 _____ C:\WINDOWS\system32\nvmcumd.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00387536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00339576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-08-31 23:52 - 2015-08-25 20:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-08-29 13:37 - 2015-08-29 13:37 - 00000000 ____D C:\Users\Ismael\AppData\Local\Curve Digital
2015-08-29 04:24 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-29 04:24 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-29 04:24 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-29 04:24 - 2015-08-20 07:57 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-08-29 04:24 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-29 04:24 - 2015-08-20 07:21 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-29 04:24 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-29 04:24 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-29 04:24 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-29 04:24 - 2015-08-20 06:31 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-29 04:24 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 04:24 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-29 04:24 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-29 04:24 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-29 04:24 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-29 04:24 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-29 04:24 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-29 04:24 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-29 04:24 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-29 04:24 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-29 04:24 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-29 04:24 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-29 04:24 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-29 04:24 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-29 04:24 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-29 04:24 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-29 04:24 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-29 04:24 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-29 04:24 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-29 04:24 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-29 04:24 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-29 04:24 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-29 04:24 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-29 04:24 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-29 04:24 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-29 04:24 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-29 04:24 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-29 04:24 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-29 04:24 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-29 04:24 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-29 04:24 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-29 04:24 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-29 04:24 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-29 04:24 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-28 22:29 - 2015-08-28 22:29 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-08-26 19:32 - 2015-08-11 06:52 - 00072504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-08-26 19:32 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-08-25 14:31 - 2015-08-25 14:31 - 00000000 ____D C:\Users\Ismael\AppData\Local\MiClos Studio
2015-08-19 01:34 - 2015-08-13 06:33 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-19 01:34 - 2015-08-13 06:22 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 01:34 - 2015-08-13 06:20 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 01:34 - 2015-08-13 06:07 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-19 01:34 - 2015-08-13 05:53 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-08-19 01:34 - 2015-08-11 12:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-19 01:34 - 2015-08-11 12:04 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-19 01:34 - 2015-08-11 12:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-19 01:34 - 2015-08-11 12:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-08-19 01:34 - 2015-08-11 12:02 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 01:34 - 2015-08-11 12:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 01:34 - 2015-08-11 12:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-08-19 01:34 - 2015-08-11 11:57 - 03622256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-19 01:34 - 2015-08-11 11:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-19 01:34 - 2015-08-11 11:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-19 01:34 - 2015-08-11 11:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-19 01:34 - 2015-08-11 11:40 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-19 01:34 - 2015-08-11 11:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-19 01:34 - 2015-08-11 11:38 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-08-19 01:34 - 2015-08-11 11:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-19 01:34 - 2015-08-11 11:31 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-19 01:34 - 2015-08-11 11:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-19 01:34 - 2015-08-11 11:23 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 01:34 - 2015-08-11 11:21 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 01:34 - 2015-08-11 11:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 01:34 - 2015-08-11 11:20 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 01:34 - 2015-08-11 11:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 01:34 - 2015-08-11 11:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 01:34 - 2015-08-11 11:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 01:34 - 2015-08-11 11:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 01:34 - 2015-08-11 11:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 01:34 - 2015-08-11 11:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-19 01:34 - 2015-08-11 11:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-19 01:34 - 2015-08-11 11:10 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 01:34 - 2015-08-11 11:10 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 01:34 - 2015-08-11 11:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 01:34 - 2015-08-11 11:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 01:34 - 2015-08-11 11:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 01:34 - 2015-08-11 11:08 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 01:34 - 2015-08-11 11:07 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-19 01:34 - 2015-08-11 11:07 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 01:34 - 2015-08-11 11:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 01:34 - 2015-08-11 11:06 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-19 01:34 - 2015-08-11 11:06 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 01:34 - 2015-08-11 11:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 01:34 - 2015-08-11 11:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-19 01:34 - 2015-08-11 11:02 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-19 01:34 - 2015-08-11 11:02 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 01:34 - 2015-08-11 11:02 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-19 01:34 - 2015-08-11 11:01 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 01:34 - 2015-08-11 11:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 01:34 - 2015-08-11 11:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-08-19 01:34 - 2015-08-11 10:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-19 01:34 - 2015-08-11 10:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-19 01:34 - 2015-08-11 10:59 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-19 01:34 - 2015-08-11 10:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-08-19 01:34 - 2015-08-11 10:58 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 01:34 - 2015-08-11 10:57 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-19 01:34 - 2015-08-11 10:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-08-19 01:34 - 2015-08-11 10:51 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-19 01:34 - 2015-08-11 10:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-19 01:34 - 2015-08-11 10:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-19 01:34 - 2015-08-11 10:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-19 01:34 - 2015-08-11 10:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 01:34 - 2015-08-11 10:49 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 01:34 - 2015-08-11 10:49 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 01:34 - 2015-08-11 10:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-08-19 01:34 - 2015-08-11 10:47 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-19 01:34 - 2015-08-11 10:45 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-19 01:34 - 2015-08-11 10:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-08-19 01:34 - 2015-08-11 10:42 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-19 01:34 - 2015-08-11 10:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-19 01:34 - 2015-08-11 10:40 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-19 01:34 - 2015-08-11 10:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-08-19 01:34 - 2015-08-11 10:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-17 12:10 - 2015-08-17 12:10 - 00000000 ____D C:\Users\Ismael\Documents\Wizards of the Coast
2015-08-15 23:36 - 2015-08-15 23:36 - 00003254 _____ C:\WINDOWS\System32\Tasks\SidebarExecute
2015-08-15 13:45 - 2015-08-15 13:45 - 00000000 ____D C:\Users\Ismael\Documents\My Curse
2015-08-15 13:43 - 2015-09-05 20:06 - 00000000 ____D C:\Users\Ismael\AppData\Local\Deployment
2015-08-15 13:43 - 2015-08-15 13:45 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Curse Advertising
2015-08-15 13:43 - 2015-08-15 13:43 - 00000318 _____ C:\Users\Ismael\Desktop\Curse Client.appref-ms
2015-08-15 13:43 - 2015-08-15 13:43 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
2015-08-15 13:43 - 2015-08-15 13:43 - 00000000 ____D C:\Users\Ismael\AppData\Local\Apps\2.0
2015-08-15 13:41 - 2015-08-15 13:41 - 00004148 _____ C:\Users\Ismael\Downloads\BlizzMove-v1.4.zip
2015-08-14 19:10 - 2015-08-14 19:10 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-14 01:39 - 2015-08-14 01:39 - 00000000 ___RD C:\Users\Ismael\3D Objects
2015-08-13 22:50 - 2015-08-13 22:50 - 00003344 _____ C:\WINDOWS\System32\Tasks\{D37590F8-3DD1-4721-B1DA-D567A6D71455}
2015-08-13 20:57 - 2015-09-03 10:06 - 00002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-13 20:57 - 2015-08-13 20:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-13 20:56 - 2015-09-05 20:06 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-13 20:56 - 2015-09-05 19:06 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-13 20:56 - 2015-09-05 17:07 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{02EF6015-06D8-4232-B524-5BCBD970FFEE}
2015-08-13 20:56 - 2015-08-29 10:01 - 00004196 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-13 20:56 - 2015-08-29 10:01 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-13 17:31 - 2015-08-07 13:07 - 01898288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435560.dll
2015-08-13 17:31 - 2015-08-07 13:07 - 01558832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435560.dll
2015-08-13 17:31 - 2015-08-07 13:07 - 00040280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-08-13 17:28 - 2015-08-13 17:29 - 04952065 _____ C:\Users\Ismael\Downloads\DesktopGadgetsInstaller.zip
2015-08-13 17:27 - 2015-08-13 17:27 - 00039711 _____ C:\Users\Ismael\Downloads\559_simples_clock_gadgetsrevived.com.gadget
2015-08-13 17:13 - 2015-08-13 16:36 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-13 17:12 - 2015-08-13 16:14 - 00000000 __SHD C:\Recovery
2015-08-13 17:11 - 2015-08-13 17:11 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-13 17:11 - 2015-08-13 17:11 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-13 17:11 - 2015-08-13 17:11 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-13 17:11 - 2015-08-13 17:11 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-13 17:11 - 2015-08-13 17:11 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-13 17:11 - 2015-08-13 17:11 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-13 17:11 - 2015-08-13 17:11 - 00000000 ____D C:\Windows.old
2015-08-13 17:09 - 2015-08-13 17:09 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\Program Files\MSBuild
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-13 17:08 - 2015-08-13 17:08 - 00000000 ____D C:\inetpub
2015-08-13 17:08 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-13 17:08 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 17:08 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-13 17:08 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-13 17:08 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 17:08 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-13 17:04 - 2015-08-13 18:21 - 00000000 ____D C:\Users\Ismael\AppData\Local\Comms
2015-08-13 17:01 - 2015-08-13 17:02 - 00931408 _____ (Google Inc.) C:\Users\Ismael\Downloads\ChromeSetup (1).exe
2015-08-13 16:47 - 2015-08-13 16:47 - 00000000 ____D C:\Users\Ismael\AppData\Local\MicrosoftEdge
2015-08-13 16:38 - 2015-08-20 17:09 - 00002404 _____ C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-13 16:38 - 2015-08-20 17:09 - 00000000 ___RD C:\Users\Ismael\OneDrive
2015-08-13 16:38 - 2015-08-13 16:38 - 00001053 _____ C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2015-08-13 16:38 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-08-13 16:38 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-08-13 16:38 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-08-13 16:38 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-08-13 16:38 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-08-13 16:37 - 2015-08-13 16:37 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-08-13 16:36 - 2015-09-03 23:48 - 00000000 ____D C:\Users\Ismael\AppData\Local\Packages
2015-08-13 16:36 - 2015-08-13 16:36 - 00000020 ___SH C:\Users\Ismael\ntuser.ini
2015-08-13 16:36 - 2015-08-13 16:36 - 00000000 ____D C:\Users\Ismael\AppData\Local\TileDataLayer
2015-08-13 16:36 - 2015-08-13 16:36 - 00000000 ____D C:\Users\Ismael\AppData\Local\Publishers
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-08-13 16:20 - 2015-08-13 16:20 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-08-13 16:19 - 2015-08-13 16:19 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-13 16:16 - 2015-08-13 16:16 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-13 16:16 - 2015-08-13 16:16 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-13 16:16 - 2015-08-13 16:16 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-13 16:15 - 2015-08-13 16:15 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-08-13 16:15 - 2015-07-10 12:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-13 16:14 - 2015-09-05 20:05 - 02077062 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-13 16:14 - 2015-09-05 20:05 - 00000000 ____D C:\Users\Ismael
2015-08-13 16:14 - 2015-08-13 16:36 - 00000000 ___RD C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-13 16:14 - 2015-08-13 16:14 - 01980268 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-08-13 16:14 - 2015-08-13 16:14 - 00021209 _____ C:\WINDOWS\iis.log
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Vorlagen
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Startmenü
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Netzwerkumgebung
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Lokale Einstellungen
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Eigene Dateien
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Druckumgebung
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Documents\Eigene Musik
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Documents\Eigene Bilder
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\AppData\Local\Verlauf
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\AppData\Local\Anwendungsdaten
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 _SHDL C:\Users\Ismael\Anwendungsdaten
2015-08-13 16:14 - 2015-08-13 16:14 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-08-13 16:14 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-13 16:14 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-13 16:14 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-13 16:14 - 2015-07-10 13:04 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-13 16:13 - 2015-09-05 20:06 - 00031236 _____ C:\WINDOWS\PFRO.log
2015-08-13 16:13 - 2015-09-05 20:06 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-13 16:13 - 2015-08-31 23:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-13 16:13 - 2015-08-25 17:57 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-13 16:13 - 2015-08-25 17:57 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-13 16:13 - 2015-08-25 17:57 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-13 16:13 - 2015-08-25 17:57 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-13 16:13 - 2015-08-25 17:57 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-13 16:13 - 2015-08-25 17:57 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-13 16:13 - 2015-08-25 15:02 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-08-13 16:13 - 2015-08-13 16:15 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-13 16:13 - 2015-08-13 16:15 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-08-13 16:13 - 2015-08-13 16:13 - 00033327 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-13 16:13 - 2015-08-13 16:13 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-08-13 16:13 - 2015-08-13 16:13 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-13 16:13 - 2015-08-13 16:13 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-08-13 16:13 - 2015-08-13 16:13 - 00000000 ____D C:\Program Files\Realtek
2015-08-13 12:15 - 2015-08-13 12:15 - 00000000 ___HD C:\$Windows.~WS
2015-08-13 12:14 - 2015-08-13 12:15 - 19648448 _____ (Microsoft Corporation) C:\Users\Ismael\Downloads\MediaCreationToolx64.exe
2015-08-13 11:56 - 2015-07-10 13:00 - 00000001 ___SH C:\BOOTNXT
2015-08-13 11:55 - 2015-08-13 16:19 - 00013275 _____ C:\WINDOWS\diagerr.xml
2015-08-13 11:55 - 2015-08-13 16:19 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2015-08-13 11:55 - 2015-08-13 16:19 - 00008197 _____ C:\WINDOWS\comsetup.log
2015-08-13 10:58 - 2015-08-13 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2015-08-13 10:58 - 2015-08-13 10:58 - 00000968 _____ C:\Users\Public\Desktop\Diablo III.lnk
2015-08-12 09:00 - 2015-07-16 22:12 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-08-12 09:00 - 2015-07-16 21:33 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-08-12 09:00 - 2015-07-16 21:05 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2015-08-12 08:58 - 2015-07-20 20:12 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-08-12 00:18 - 2015-08-12 00:18 - 00000749 _____ C:\Users\Ismael\Desktop\Start Tor Browser.lnk
2015-08-12 00:18 - 2015-08-12 00:18 - 00000749 _____ C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2015-08-11 23:48 - 2015-08-12 00:12 - 44190224 _____ C:\Users\Ismael\Downloads\torbrowser-install-5.0_de.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

============================

CLamantius 05.09.2015 19:24
FRST.txt Teil 2


Code:
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-05 20:08 - 2014-11-21 14:41 - 00006533 _____ C:\WINDOWS\SysWOW64\Gms.log
2015-09-05 20:06 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-05 20:06 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-05 20:06 - 2015-07-10 14:20 - 00023712 _____ C:\WINDOWS\setupact.log
2015-09-05 20:06 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-05 20:06 - 2014-11-21 19:25 - 00000000 ___RD C:\Users\Ismael\Dropbox
2015-09-05 20:06 - 2014-11-21 19:05 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Dropbox
2015-09-05 20:05 - 2015-07-10 18:34 - 00883584 _____ C:\WINDOWS\system32\perfh007.dat
2015-09-05 20:05 - 2015-07-10 18:34 - 00195718 _____ C:\WINDOWS\system32\perfc007.dat
2015-09-05 20:05 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-09-05 19:59 - 2015-06-22 12:48 - 00001228 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000UA.job
2015-09-05 19:57 - 2015-07-02 16:45 - 00000000 ____D C:\Users\Ismael\Documents\Gothic3
2015-09-05 19:35 - 2015-07-16 10:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-05 17:58 - 2015-07-14 17:58 - 00000356 _____ C:\WINDOWS\Tasks\FatBurn.job
2015-09-05 17:58 - 2015-06-08 11:58 - 00000354 _____ C:\WINDOWS\Tasks\BoxyFX.job
2015-09-05 10:42 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-05 09:46 - 2014-11-22 11:42 - 00000000 ____D C:\Users\Ismael\AppData\Local\Adobe
2015-09-05 00:59 - 2015-06-22 12:48 - 00001176 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000Core.job
2015-09-04 13:15 - 2014-11-21 16:06 - 00612157 _____ C:\WINDOWS\DirectX.log
2015-09-04 13:00 - 2014-11-21 16:45 - 00007595 _____ C:\Users\Ismael\AppData\Local\Resmon.ResmonCfg
2015-09-04 03:31 - 2014-11-26 22:21 - 00000000 ____D C:\Users\Ismael\AppData\Local\Battle.net
2015-09-04 00:24 - 2014-11-21 16:50 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Skype
2015-09-02 13:16 - 2014-12-25 00:55 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\uTorrent
2015-09-02 12:16 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-02 11:44 - 2015-07-16 10:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-09-02 11:44 - 2014-11-21 14:33 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-01 07:34 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-09-01 07:34 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-31 23:53 - 2014-11-21 14:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-31 21:55 - 2015-02-10 15:53 - 00001456 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-08-31 00:47 - 2015-08-05 03:40 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-29 15:46 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-27 02:37 - 2015-02-10 15:53 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-08-27 02:37 - 2015-02-10 15:53 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-08-27 02:36 - 2015-02-10 15:53 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-08-27 02:36 - 2015-02-10 15:53 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-08-26 17:21 - 2015-02-01 10:35 - 00000000 ____D C:\Users\Ismael\Documents\StarCraft II
2015-08-25 20:38 - 2015-08-05 03:40 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-08-25 20:38 - 2015-08-05 03:40 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-08-25 20:38 - 2015-08-05 03:40 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-08-25 20:38 - 2015-08-05 03:40 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-08-25 20:38 - 2015-08-05 03:40 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-25 20:38 - 2015-08-05 03:40 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-25 20:38 - 2015-07-23 04:02 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-08-25 20:38 - 2015-02-10 15:53 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-08-25 20:38 - 2015-02-10 15:53 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-08-23 04:10 - 2014-12-02 15:30 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-08-19 03:30 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-14 15:13 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-08-14 13:01 - 2014-11-22 09:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-08-14 04:11 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-13 20:57 - 2014-11-21 14:35 - 00000000 ____D C:\Program Files (x86)\Google
2015-08-13 19:11 - 2015-07-16 10:38 - 00148632 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-08-13 19:11 - 2015-07-16 10:38 - 00137288 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-08-13 19:11 - 2015-07-16 10:38 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-08-13 17:29 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Sidebar
2015-08-13 17:29 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2015-08-13 17:22 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-08-13 17:13 - 2015-07-10 13:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-13 17:11 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-13 17:11 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-13 17:11 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-13 17:11 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-13 17:11 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-13 17:08 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-08-13 17:08 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-08-13 17:08 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-08-13 17:08 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-08-13 17:08 - 2015-07-10 13:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-08-13 17:08 - 2015-07-10 13:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-08-13 17:08 - 2015-07-10 13:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-08-13 17:08 - 2015-07-10 13:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-08-13 17:08 - 2015-07-10 13:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-08-13 17:08 - 2015-07-10 13:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-08-13 17:08 - 2015-07-10 13:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-08-13 17:08 - 2015-07-10 13:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-08-13 17:08 - 2015-07-10 13:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-08-13 17:08 - 2015-07-10 13:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-08-13 17:08 - 2015-07-10 13:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-08-13 17:08 - 2015-07-10 13:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-08-13 17:08 - 2015-07-10 13:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-08-13 17:08 - 2015-07-10 13:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-08-13 17:08 - 2015-07-10 13:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-08-13 17:08 - 2015-07-10 13:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-08-13 17:08 - 2015-07-10 13:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-08-13 16:59 - 2015-07-10 14:20 - 04964328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-13 16:38 - 2015-07-10 18:35 - 00000000 ____D C:\WINDOWS\OCR
2015-08-13 16:36 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-13 16:36 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-13 16:36 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-13 16:36 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-13 16:20 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows NT
2015-08-13 16:20 - 2015-07-10 11:05 - 00000000 __RHD C:\Users\Default
2015-08-13 16:19 - 2015-07-16 10:38 - 00003542 _____ C:\WINDOWS\System32\Tasks\Avira Browser Safety Updater Task
2015-08-13 16:19 - 2015-07-16 10:00 - 00003932 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-13 16:19 - 2015-07-14 17:58 - 00003380 _____ C:\WINDOWS\System32\Tasks\FatBurn
2015-08-13 16:19 - 2015-07-10 13:04 - 00000000 __RSD C:\WINDOWS\Media
2015-08-13 16:19 - 2015-07-10 13:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-13 16:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-13 16:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Registration
2015-08-13 16:19 - 2015-06-22 12:48 - 00004310 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000UA
2015-08-13 16:19 - 2015-06-22 12:48 - 00003914 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000Core
2015-08-13 16:19 - 2015-06-08 11:58 - 00003378 _____ C:\WINDOWS\System32\Tasks\BoxyFX
2015-08-13 16:19 - 2015-01-06 22:07 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-08-13 16:19 - 2014-12-30 01:24 - 00003616 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-Ismael-PC-Ismael
2015-08-13 16:17 - 2015-07-10 13:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-13 16:17 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-13 16:17 - 2015-06-02 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-13 16:17 - 2015-05-23 13:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2015-08-13 16:17 - 2015-05-13 23:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2015-08-13 16:17 - 2015-04-19 19:41 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Fantasy Grounds
2015-08-13 16:17 - 2015-04-01 11:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tele2
2015-08-13 16:17 - 2015-03-23 14:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2015-08-13 16:17 - 2015-03-13 15:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-08-13 16:17 - 2015-03-10 08:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2015-08-13 16:17 - 2015-03-06 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2015-08-13 16:17 - 2015-03-01 18:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount&Blade With Fire and Sword
2015-08-13 16:17 - 2015-02-25 22:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2015-08-13 16:17 - 2015-02-22 17:37 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-08-13 16:17 - 2015-01-28 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-08-13 16:17 - 2015-01-25 12:37 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Midimaster
2015-08-13 16:17 - 2015-01-25 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Midimaster
2015-08-13 16:17 - 2015-01-07 00:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2015-08-13 16:17 - 2014-12-21 22:22 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-13 16:17 - 2014-12-21 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-13 16:17 - 2014-12-10 22:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2015-08-13 16:17 - 2014-12-02 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-08-13 16:17 - 2014-11-28 07:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHARKOON Drakonia
2015-08-13 16:17 - 2014-11-26 22:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-08-13 16:17 - 2014-11-21 17:46 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2015-08-13 16:17 - 2014-11-21 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-13 16:17 - 2014-11-21 15:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft LifeCam
2015-08-13 16:17 - 2014-11-21 14:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-13 16:17 - 2014-11-21 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2015-08-13 16:17 - 2014-11-21 14:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-08-13 16:17 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-13 16:16 - 2015-07-10 13:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-13 16:16 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-13 16:16 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-13 16:16 - 2009-07-14 05:20 - 00000000 ____D C:\Users\Default.migrated
2015-08-13 16:15 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-08-13 16:15 - 2015-07-10 15:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\schemas
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-08-13 16:15 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-13 16:15 - 2015-07-02 16:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JoWood
2015-08-13 16:15 - 2015-04-10 15:28 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GamersFirst
2015-08-13 16:15 - 2015-03-13 19:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2015-08-13 16:15 - 2014-12-03 09:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-08-13 16:15 - 2014-11-28 07:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT
2015-08-13 16:15 - 2014-11-22 15:45 - 00000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-08-13 16:15 - 2014-11-21 16:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-13 16:15 - 2014-11-21 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2015-08-13 16:15 - 2011-04-12 09:54 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-08-13 16:15 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-08-13 16:15 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-13 16:14 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-13 16:13 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-13 16:04 - 2014-11-21 14:27 - 01629197 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-13 16:04 - 2009-07-14 06:45 - 00028944 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-13 16:04 - 2009-07-14 06:45 - 00028944 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-13 15:58 - 2014-11-21 14:22 - 00008192 __RSH C:\BOOTSECT.BAK
2015-08-13 15:57 - 2015-07-10 19:28 - 00000000 ___HD C:\$Windows.~BT
2015-08-13 14:33 - 2015-05-19 06:58 - 00000000 ____D C:\Users\Ismael\Documents\The Witcher 3
2015-08-13 11:21 - 2014-11-22 10:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-13 11:19 - 2014-11-22 10:28 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-13 11:17 - 2015-02-02 15:13 - 00000000 ____D C:\Users\Ismael\Documents\Diablo III
2015-08-13 09:14 - 2015-03-02 22:23 - 00000000 ____D C:\Users\Ismael\AppData\Local\CrashDumps
2015-08-11 06:52 - 2015-07-17 21:34 - 00050472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-08-10 10:41 - 2015-03-06 23:19 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-08-09 19:19 - 2015-03-23 13:51 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2015-08-08 17:38 - 2015-07-10 13:06 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-08 17:38 - 2015-07-10 13:06 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-07 13:07 - 2015-08-05 03:40 - 01567576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-08-07 13:07 - 2015-08-05 03:40 - 00204648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-04-12 14:33 - 2015-04-12 14:33 - 0003584 _____ () C:\Users\Ismael\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-21 16:45 - 2015-09-04 13:00 - 0007595 _____ () C:\Users\Ismael\AppData\Local\Resmon.ResmonCfg
2015-07-02 07:25 - 2015-07-02 07:25 - 0000000 _____ () C:\Users\Ismael\AppData\Local\Temp.dat
2014-12-03 09:13 - 2014-12-03 09:13 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-08-13 16:13 - 2015-08-13 16:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Ismael\AppData\Local\Temp\avgnt.exe
C:\Users\Ismael\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpl0acjl.dll
C:\Users\Ismael\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Ismael\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Ismael\AppData\Local\Temp\nvStInst.exe
C:\Users\Ismael\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-09-01 07:31

==================== Ende von FRST.txt

CLamantius 05.09.2015 19:27
Addition.txt

Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:04-09-2015
durchgeführt von Ismael (2015-09-05 20:17:25)
Gestartet von C:\Users\Ismael\Downloads
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-831993325-2952530161-2944430335-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-831993325-2952530161-2944430335-503 - Limited - Disabled)
Gast (S-1-5-21-831993325-2952530161-2944430335-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-831993325-2952530161-2944430335-1002 - Limited - Enabled)
Ismael (S-1-5-21-831993325-2952530161-2944430335-1000 - Administrator - Enabled) => C:\Users\Ismael

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

µTorrent (HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\uTorrent) (Version: 3.4.4.40911 - BitTorrent Inc.)
10,000,000 (HKLM-x32\...\Steam App 227580) (Version:  - EightyEightGames)
3DMark (HKLM-x32\...\Steam App 223850) (Version:  - Futuremark)
A Bastard's Tale Demo (HKLM-x32\...\Steam App 372730) (Version:  - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Dreamweaver CS6 (HKLM-x32\...\{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}) (Version: 12 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Age of Empires® III: Complete Collection (HKLM-x32\...\Steam App 105450) (Version:  - Ensemble Studios)
Ampu-Tea (HKLM-x32\...\Steam App 289090) (Version:  - ProjectorGames)
ANNO 2070 (HKLM-x32\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)
APB Reloaded (HKLM-x32\...\APB Reloaded) (Version: 1.6.7.672769 - )
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version:  - Reloaded Productions)
ArcheAge (HKLM-x32\...\Steam App 304030) (Version:  - XLGAMES)
Assassin's Creed IV Black Flag (HKLM-x32\...\Steam App 242050) (Version:  - Ubisoft Montreal)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.12.420 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Launcher (HKLM-x32\...\{b76c0d12-422c-44e3-9daa-9363451e24cd}) (Version: 1.1.44.15481 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.44.15481 - Avira Operations GmbH & Co. KG) Hidden
Banished (HKLM-x32\...\Steam App 242920) (Version:  - Shining Rock Software LLC)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield Heroes (HKLM-x32\...\{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}) (Version:  - EA Digital illusions)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Blade Symphony (HKLM-x32\...\Steam App 225600) (Version:  - Puny Human)
Borderlands: The Pre-Sequel (HKLM-x32\...\Steam App 261640) (Version:  - 2K Australia)
Call of Juarez Gunslinger (HKLM-x32\...\Steam App 204450) (Version:  - Techland)
Camtasia Studio 8 (HKLM-x32\...\{474DFABF-E55B-4905-ABAA-40791A6AC77F}) (Version: 8.4.4.1859 - TechSmith Corporation)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
Cloud Chamber (HKLM-x32\...\Steam App 290710) (Version:  - Investigate North)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version:  - Paradox Development Studio)
Curse Client (HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
DARK SOULS™ II: Scholar of the First Sin (HKLM-x32\...\Steam App 335300) (Version:  - FromSoftware, Inc)
Darkest Dungeon (HKLM-x32\...\Steam App 262060) (Version:  - Red Hook Studios)
DeadCore (HKLM-x32\...\Steam App 284460) (Version:  - 5 Bits Games)
Deus Ex: Game of the Year Edition (HKLM-x32\...\Steam App 6910) (Version:  - Ion Storm)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.7 - Electronic Arts)
Drakonia Configurator (HKLM-x32\...\{A7B243AA-6D4C-4575-A873-6F01A1EFC5E2}}_is1) (Version:  - )
Dropbox (HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
Dungeon of the Endless (HKLM-x32\...\Steam App 249050) (Version:  - AMPLITUDE Studios)
Enclave (HKLM-x32\...\Steam App 253980) (Version:  - Topware)
Fallout 3 - Game of the Year Edition (HKLM-x32\...\Steam App 22370) (Version:  - Bethesda Game Studios)
Free YouTube Download version 3.2.60.713 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.60.713 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.56.301 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.56.301 - DVDVideoSoft Ltd.)
Gameforge Live 2.0.6 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.6 - Gameforge)
GamersFirst LIVE! (HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\GamersFirst LIVE!) (Version:  - GamersFirst)
Gods Will Be Watching (HKLM-x32\...\Steam App 274290) (Version:  - Deconstructeam)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
GOG.com Downloader version 3.6.0 (HKLM-x32\...\{456A5815-604D-4D72-94DF-346D2B978A59}_is1) (Version: 3.6.0 - GOG.com)
Gone Home (HKLM-x32\...\Steam App 232430) (Version:  - The Fullbright Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
Gothic 3 (HKLM-x32\...\{17BADF87-3597-46FE-8D74-69C4FA78883E}) (Version: 1.0.0 - JoWood)
Guns of Icarus Online (HKLM-x32\...\Steam App 209080) (Version:  - Muse Games)
Hacknet (HKLM-x32\...\Steam App 365450) (Version:  - Team Fractal Alligator)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version:  - Reto-Moto)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version:  - IO Interactive)
Hitman: Sniper Challenge (HKLM-x32\...\Steam App 205930) (Version:  - IO Interactive)
HP Deskjet 2050 J510 series - Grundlegende Software für das Gerät (HKLM\...\{DF37555F-0259-43DA-B60C-47106FA14AA3}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
In Verbis Virtus (HKLM-x32\...\Steam App 242840) (Version:  - Indomitus Games)
Intel(R) Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1168 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{9A37ADB3-3D8D-4EDF-8F6D-B8A66F18087B}) (Version: 5.0.10.2793 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche Studios)
Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version:  - Avalanche Studios)
Knights of Pen and Paper +1 (HKLM-x32\...\Steam App 231740) (Version:  - Behold Studios)
Legend of Grimrock (HKLM-x32\...\Steam App 207170) (Version:  - Almost Human Games)
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
Mad Max (HKLM-x32\...\Steam App 234140) (Version:  - Avalanche Studios)
Magic 2014  (HKLM-x32\...\Steam App 213850) (Version:  - Stainless Games)
Magicka (HKLM-x32\...\Steam App 42910) (Version:  - Arrowhead Game Studios)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 15.0.4745.1002 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mind: Path to Thalamus (HKLM-x32\...\Steam App 296070) (Version:  - Carlos Coronado)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Mount&Blade With Fire and Sword (HKLM-x32\...\Mount&Blade With Fire and Sword) (Version:  - )
Mozilla Thunderbird 31.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.6.0 (x86 de)) (Version: 31.6.0 - Mozilla)
MURDERED: SOUL SUSPECT™ (HKLM-x32\...\Steam App 233290) (Version:  - Airtight Games)
My Game Long Name (HKLM\...\UDK-de36c1cb-c70b-4c82-98b9-ca49f3d5934b) (Version:  - Epic Games, Inc.)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.52.3 - Black Tree Gaming)
Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 150724.114470 - Square Enix Ltd)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Performance (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 6.5 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA System Monitor (HKLM-x32\...\InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}) (Version: 6.5 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Ori and the Blind Forest (HKLM-x32\...\Steam App 261570) (Version:  - Moon Studios GmbH)
Origin (HKLM-x32\...\Origin) (Version: 9.5.2.2829 - Electronic Arts, Inc.)
Out There: Ω Edition (HKLM-x32\...\Steam App 334420) (Version:  - Mi-Clos Studio)
PAC-MAN Championship Edition DX+ (HKLM-x32\...\Steam App 236450) (Version:  - Mine Loader Software Co., Ltd.)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version:  - Grinding Gear Games)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version:  - OVERKILL Software)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Pillars of Eternity (HKLM-x32\...\Steam App 291650) (Version:  - Obsidian Entertainment)
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Daybreak Games)
PlanetSide 2 (HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\SOE-PlanetSide 2) (Version:  - Sony Online Entertainment)
Platformines (HKLM-x32\...\Steam App 264540) (Version:  - Magiko Gaming)
Port of Call (HKLM-x32\...\Steam App 356520) (Version:  - Underdog Games)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.77.1126.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Reign Of Kings (HKLM-x32\...\Steam App 344760) (Version:  - Code}{atch)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rhythmustrainer 3.0 (HKLM-x32\...\Rhythmustrainer_is1) (Version:  - Midimaster)
Risk of Rain (HKLM-x32\...\Steam App 248820) (Version:  - )
ROCCAT Isku Keyboard Driver (HKLM-x32\...\{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}) (Version:  - Roccat GmbH)
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.7 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.1.0 - Samsung Electronics)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 1.0.2533.0 - Hi-Rez Studios)
Star Conflict (HKLM-x32\...\Steam App 212070) (Version:  - Star Gem Inc.)
Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version:  - Carbon)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Styx: Master of Shadows (HKLM-x32\...\Steam App 242640) (Version:  - Cyanide Studio)
Swipecart (HKLM-x32\...\Steam App 295930) (Version:  - Micro Factory Games)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Tele2 Internet (HKLM-x32\...\Tele2 Internet) (Version: 5.0.0.14 - Tele2 Telecommunication GmbH)
Tele2 Internet (x32 Version: 5.0.0.14 - Tele2 Telecommunication GmbH) Hidden
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - )
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Escapists (HKLM-x32\...\1423221839_is1) (Version: 2.0.0.1 - GOG.com)
The Fall (HKLM-x32\...\Steam App 290770) (Version:  - Over The Moon)
The Night of the Rabbit (HKLM-x32\...\Steam App 230820) (Version:  - Daedalic Entertainment)
The Talos Principle (HKLM-x32\...\Steam App 257510) (Version:  - Croteam)
The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\GOGPACKTHEWITCHER2EE_is1) (Version: 3.4.0.25 - GOG.com)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.8.4 - GOG.com)
The Witcher 3: Wild Hunt - Alternative Look for Ciri (HKLM-x32\...\Alternative Look for Ciri_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Alternative Look for Triss (HKLM-x32\...\Alternative Look for Triss_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Alternative Look for Yennefer (HKLM-x32\...\Alternative Look for Yennefer_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Ballad Heroes - Neutral Gwent Card Set (HKLM-x32\...\Ballad Heroes - Neutral Gwent Card Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Beard and Hairstyle Set (HKLM-x32\...\Beard and Hairstyle Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Elite Crossbow Set (HKLM-x32\...\Elite Crossbow Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Finisher Animations (HKLM-x32\...\New Finisher Animations_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Contract - Skellige's Most Wanted (HKLM-x32\...\New Quest - Contract: Skellige's Most Wanted_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Contract Missing Miners (HKLM-x32\...\New Quest - Contract Missing Miners_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Fool's Gold (HKLM-x32\...\New Quest - Fool's Gold_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Scavenger Hunt - Wolf School Gear (HKLM-x32\...\New Quest - Scavenger Hunt: Wolf School Gear_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Quest - Where the Cat and Wolf Play... (HKLM-x32\...\New Quest - Where the Cat and Wolf Play..._is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Nilfgaardian Armor Set (HKLM-x32\...\Nilfgaardian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Skellige Armor Set (HKLM-x32\...\Skellige Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Temerian Armor Set (HKLM-x32\...\Temerian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.10.1 - Electronic Arts)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 7.3 - Ubisoft)
VGA Boost (HKLM-x32\...\{809ACFAE-9A4D-4C60-9223-D8B615CD8CBA}}_is1) (Version: 1.0.0.7 - MSI)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Desktop Gadgets (HKLM\...\Windows Desktop Gadgets_is1) (Version: 2.0 - hxxp://gadgetsrevived.com)
WinRAR 5.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
XAMPP (HKLM-x32\...\xampp) (Version: 5.6.8-0 - Bitnami)
Year Walk (HKLM-x32\...\Steam App 269050) (Version:  - Simogo)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1B}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{ea5bdbaa-ef59-4d9c-ad47-9d33a60c0e99}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Ismael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-831993325-2952530161-2944430335-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Ismael\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

==================== Wiederherstellungspunkte =========================

04-09-2015 12:39:56 DirectX wurde installiert
05-09-2015 20:11:58 JRT Pre-Junkware Removal

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {0134CA48-4F85-4C1A-8A54-0CD36554AF0A} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {13429E5A-D392-4222-99EC-2D4D52E6D39E} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {141AED40-C8D5-4DA0-95D6-8863F3A2FAB4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-14] (Microsoft Corporation)
Task: {18AE2DE8-75F0-4FE9-94EC-A5DD3FECD124} - System32\Tasks\{D37590F8-3DD1-4721-B1DA-D567A6D71455} => pcalua.exe -a D:\battlenet\Battle.net\Battle.net.6075\Battle.net.exe -d D:\battlenet\Battle.net\Battle.net.6075
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {1FFBAA05-EC9F-4DED-9FE2-619F2B1EABDC} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-14] (Microsoft Corporation)
Task: {20941A06-4662-4118-8B07-962B798557E7} - System32\Tasks\SkypeUpdate => C:\Users\Ismael\AppData\Roaming\Skype\downloader.exe [2015-09-02] (Skype Technologies S.A.)
Task: {226865E0-B17A-481A-A447-9FF78ECB31F6} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {27D22B7E-C3C5-443B-BF84-0E895DDA48AF} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {3054CE97-A92E-4F9A-A239-AE924D9FF716} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {33BABF43-C45F-4446-B192-ED64B9D804F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-13] (Google Inc.)
Task: {35FF3C12-D3AD-4C00-B71A-00EA49A3F3D4} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {3661E786-AA82-4F65-A664-5762A6D6973F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {3BCE1CB4-EA55-4A6A-A2FF-DB8665A74B2E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {432B96D2-2A63-4FF1-BB2D-9946AB4B25CB} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {46B99875-0479-4947-B3E4-EE815C5E9222} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {4AD117ED-280D-4034-A620-A3A82274A59B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {4ADDB448-7616-47B8-A671-A8192D266B6A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {58691AA0-93FB-456C-8D34-E110197ECA49} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {59E12B16-6968-4B87-8E52-39AA49371F27} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {5AD41C01-2408-4711-8495-662892503F96} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {649F6CA4-EDBF-41A6-96B7-69A83AE4BA8B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {6ACD892D-07D2-4B43-A1D2-356D0236915B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {6F3C3168-C374-4AB7-A3F0-027C37F43638} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-05-12] (Microsoft Corporation)
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {7593B7BD-95C5-49CC-B9D4-9BA0E0878E01} - System32\Tasks\BoxyFX => c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}\544915693522649780b.exe <==== ACHTUNG
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {7CDA133D-FC93-40C1-B0CA-04BFE8C994DF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {81523A9D-712B-4C2B-B698-4BB9BD98B0D3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {81629C2B-E6D8-43F3-900A-B0420153FBB9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {87D266D3-1BBB-45C2-B14F-CE0B0B0A7608} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {89284FC3-DBDB-4444-BD44-266B63C4CB6A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-13] (Microsoft Corporation)
Task: {8E449293-77C7-4D7C-A24B-C03E3E42D982} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000Core => C:\Users\Ismael\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-22] (Dropbox, Inc.)
Task: {991A211D-49F6-4874-9ABE-62CC33305313} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {A1F996AC-06C7-4B04-B5BF-4829CF413596} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {A23450D8-A59C-444A-8399-DE547DD1263E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {A840C392-E401-4CF2-AEB2-E0707971017F} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A8E18E51-4386-40A6-A9CF-B5ADDC2760E0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11] (Adobe Systems Incorporated)
Task: {AD3253AE-2FAA-4D0B-9966-CB99CFA19439} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {B7D27F71-0FAB-494E-8F01-7C5E335D593D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-07-14] (Microsoft Corporation)
Task: {BCBB8500-02F4-49C1-BBB1-58FBDB1A1C8E} - System32\Tasks\FatBurn => c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}\9000599011852156690b.exe <==== ACHTUNG
Task: {BD793107-B28F-4748-98A9-8BE0D468F20F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-13] (Google Inc.)
Task: {BDE0500E-01EA-4E00-8F8A-57F12DB22F36} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {BE8F7579-843A-48EA-A40C-ABE917C65DFF} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CC7BB016-06B0-42DE-8FB0-8F1CDA6C96DF} - System32\Tasks\Avira Browser Safety Updater Task => C:\Program Files (x86)\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [2015-03-11] (Avira Operations GmbH & Co. KG)
Task: {D84505F8-297E-4781-A8EE-0E7A6E9D8342} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {DC8FD9F2-6513-49DA-89FA-C0C3D91F5AD4} - System32\Tasks\AdobeAAMUpdater-1.0-Ismael-PC-Ismael => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {DDB4D29F-07AB-49CB-B1AD-7E58C83AB27D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {DE322182-B179-44F8-BB67-16EBFA26C7B4} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {E30B7AEC-B87F-438D-9001-EA16E14B6125} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000UA => C:\Users\Ismael\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-22] (Dropbox, Inc.)
Task: {E61AE0D1-F4FF-4779-BD36-F71538ED0A9A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-05-12] (Microsoft Corporation)
Task: {EDD67556-119D-4090-B5E1-AD5B214C2F10} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {F23A6A72-E271-4DA3-8F71-746CB614EEAD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {F47C5156-D456-455D-9F1E-2761D2F4AA44} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\BoxyFX.job => c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}\544915693522649780b.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000Core.job => C:\Users\Ismael\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-831993325-2952530161-2944430335-1000UA.job => C:\Users\Ismael\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\FatBurn.job => c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}\9000599011852156690b.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-13 17:11 - 2015-08-13 17:11 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-19 01:34 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-29 04:24 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 04:24 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2014-12-02 15:30 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 01:34 - 2015-08-11 10:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-13 17:11 - 2015-08-13 17:11 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2014-02-21 10:47 - 2014-02-21 10:47 - 00209712 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2014-02-21 10:47 - 2014-02-21 10:47 - 00057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2014-02-21 10:47 - 2014-02-21 10:47 - 00057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTEncryptionCheck.dll
2014-02-21 10:47 - 2014-02-21 10:47 - 00037168 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll
2014-02-19 19:51 - 2014-02-19 19:51 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-09-03 10:06 - 2015-08-28 02:17 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libglesv2.dll
2015-09-03 10:06 - 2015-08-28 02:17 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libegl.dll
2015-09-03 10:06 - 2015-08-28 02:17 - 16393032 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-831993325-2952530161-2944430335-1000\...\sony.com -> sony.com


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-831993325-2952530161-2944430335-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{416D5774-DBAA-4B3A-8BBF-8093F195D64C}] => (Allow) D:\steam\steamapps\common\PAC-MAN Championship Edition DX+\PAC-MAN.exe
FirewallRules: [{F0D0BFC1-D6D5-4172-9FEC-B3FA9FEA3B68}] => (Allow) D:\steam\steamapps\common\PAC-MAN Championship Edition DX+\PAC-MAN.exe
FirewallRules: [{07C71891-9293-4365-9692-1E305FA2FBE6}] => (Allow) D:\steam\steamapps\common\Platformines\Platformines.exe
FirewallRules: [{D2713FCE-ECCF-48A6-B275-014B9B1563DF}] => (Allow) D:\steam\steamapps\common\Platformines\Platformines.exe
FirewallRules: [{152241FB-8F3F-48F0-AEAB-8E285F7DF3EE}] => (Allow) D:\steam\steamapps\common\DeadCore\DeadCore.exe
FirewallRules: [{1332C4A5-DC62-4AD3-A2F0-1B328E0C116A}] => (Allow) D:\steam\steamapps\common\DeadCore\DeadCore.exe
FirewallRules: [{4BBCE445-07DE-46E7-94C6-3B6D27087A85}] => (Allow) D:\steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{9E57048D-4FE1-487D-B3C0-DD9137A214D2}] => (Allow) D:\steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{B38165DF-F42B-4346-AB13-7169740862D7}] => (Allow) D:\steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{096B0D0E-B2FA-43B8-950A-50A843989A77}] => (Allow) D:\steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{871952C7-4607-46B1-9255-C3910F894EE8}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{8A041057-107F-443E-B781-9491EA4B2D50}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{C9E662C4-6E2C-4F39-B0BE-B4981E39EAC1}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos.exe
FirewallRules: [{88084D2A-D170-4DAA-9524-16C6BCF56E79}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos.exe
FirewallRules: [UDP Query User{F6F00F58-D10E-4362-A14F-39663DEA57F5}C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno5.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno5.exe
FirewallRules: [TCP Query User{D1E0B527-AE1D-4B65-982D-DC191A3C5FD1}C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno5.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno5.exe
FirewallRules: [{4CE85DDD-3898-4CB3-A55F-3E8B80EEBE7B}] => (Allow) D:\steam\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{92C0D578-7E04-4D07-8D48-3BA5A3D9FC71}] => (Allow) D:\steam\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{CC4E58C3-8FBF-4FFE-B844-983EF9986ACA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E86B01AD-815C-42C2-A99D-FA56B746060F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CDAE449F-5251-4BD9-949E-E1AF922AC807}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{CD9EAAD5-62C1-4540-B664-964FD9700177}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6E611C66-ED02-4674-864A-52C765AAC9BB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [UDP Query User{1F028E6F-64D7-44C3-B558-1C164C81396C}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{4FCDE864-1191-4D4D-B3D5-DE7361E7771A}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{2868BEE3-4662-409A-B4C7-24C460C7D1AD}] => (Allow) C:\Users\Ismael\AppData\Local\Temp\Rar$EXa0.404\NetworkTrafficView.exe
FirewallRules: [{85AA591B-E57C-4292-8888-E5E17CB8B644}] => (Allow) C:\Users\Ismael\AppData\Local\Temp\Rar$EXa0.404\NetworkTrafficView.exe
FirewallRules: [{93D75233-E2AD-4518-9169-7784870EAEC9}] => (Allow) D:\steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{232E53FE-6198-44CC-BD57-D3691729143E}] => (Allow) D:\steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{9EE8F96C-8045-4DA5-BE01-3C80A3504DD1}] => (Allow) D:\steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{09F432B4-5F7E-4D5B-81FE-06C2EF491DBE}] => (Allow) D:\steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{7433F619-CACD-483C-B0D5-2A2F4CDE7971}] => (Allow) C:\Program Files (x86)\Tele2\SupportCenter\SupportCenter.exe
FirewallRules: [{1F076701-A36A-4451-B1BD-019E7D2A1318}] => (Allow) C:\Program Files (x86)\Tele2\SupportCenter\SupportCenter.exe
FirewallRules: [{17EAC8A2-2CD1-4BFD-BF28-27B3DFDF8A70}] => (Allow) D:\steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{8268CF62-4AF2-482B-BD3C-CC21B164789B}] => (Allow) D:\steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [UDP Query User{189FA185-A760-44D0-8574-0F70DF5F3A06}D:\alien isolation\alien isolation\ai.exe] => (Block) D:\alien isolation\alien isolation\ai.exe
FirewallRules: [TCP Query User{D1182ADE-C004-49D8-BDA5-024B72A69196}D:\alien isolation\alien isolation\ai.exe] => (Block) D:\alien isolation\alien isolation\ai.exe
FirewallRules: [{782D58AD-333D-4F7D-89C1-0F4AAA339299}] => (Allow) C:\Users\Ismael\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C1F2E188-9450-49EF-A7B8-6D876F8AC6D6}] => (Allow) C:\Users\Ismael\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{035D28DB-608C-410F-B833-4E7F90D5C1E4}] => (Allow) D:\steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{8C16D1EE-C284-463C-877B-8E1F32805740}] => (Allow) D:\steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{7AFC27E9-0811-4372-B1C7-CDE06CAC16F8}] => (Allow) D:\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{E5B7E40F-30D1-45E5-9BAC-DC59EC394A70}] => (Allow) D:\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{30E7B1E1-F197-466B-AD8B-206D28635F69}] => (Allow) D:\steam\steamapps\common\Gods Will Be Watching\gwbw.exe
FirewallRules: [{1BF6FAB0-F0A2-4B0C-B228-E7947AA829F9}] => (Allow) D:\steam\steamapps\common\Gods Will Be Watching\gwbw.exe
FirewallRules: [{5300D42B-708D-4E71-B041-EDC48DEECA84}] => (Allow) D:\steam\steamapps\common\Risk of Rain\Risk of Rain.exe
FirewallRules: [{9521EF12-E380-4A45-9E05-AFE6CA460F15}] => (Allow) D:\steam\steamapps\common\Risk of Rain\Risk of Rain.exe
FirewallRules: [{F0C9BC95-8985-414C-946E-643856A9AE31}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{ED628E64-D320-4B80-9F8E-90A8A50D6ABD}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{D46D111A-A069-4C50-835A-640A14386A5B}] => (Allow) C:\_STEAM_\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{5024DD35-0740-4D3A-B459-65020AFBCAAB}] => (Allow) C:\_STEAM_\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{487A1C3A-D715-483C-82F5-4E2910335566}] => (Allow) C:\_STEAM_\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{8C24E87E-42AD-4E50-9031-400EFF6AA87C}] => (Allow) C:\_STEAM_\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{9960D66F-AF05-4B19-AA63-58A7A4B19B88}] => (Allow) F:\Steam\SteamApps\common\Windforge\Bin\Game.exe
FirewallRules: [{8F0FC67D-BE60-4002-BF52-BC9B0B3E567C}] => (Allow) F:\Steam\SteamApps\common\Windforge\Bin\Game.exe
FirewallRules: [{A6D5822B-4ACE-4048-A031-4BE7D6008596}] => (Allow) F:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{1C590AD7-EED4-48EE-A463-7F821DD687E4}] => (Allow) F:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [UDP Query User{54B8764F-FF4E-4F87-8665-CC2EF588E958}F:\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) F:\steam\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{99C3621C-9135-475C-A667-65D0E2DFB1E8}F:\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) F:\steam\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [{D1F13457-15D9-4007-A301-9E3A01D2BB12}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{C7A879CD-B773-45D4-A3CC-0B053E73D801}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{84BF6172-7196-4E20-BAE2-EE2E73DDD2FE}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{CE0896C2-FEB3-49A7-9A8B-BA8522B55896}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{F5A943AF-F46D-407F-BA1F-6F4EFE66A07C}] => (Allow) D:\steam\steamapps\common\A Bastard's Tale Demo\a_bastards_tale_demo.exe
FirewallRules: [{FC932273-96B7-4AC5-8D31-EAFC481B0D1B}] => (Allow) D:\steam\steamapps\common\A Bastard's Tale Demo\a_bastards_tale_demo.exe
FirewallRules: [{FC5F507C-4469-4C37-AA41-0EEB46FFCCE9}] => (Allow) D:\steam\steamapps\common\ArcheAge\GlyphClient.exe
FirewallRules: [{F1D6CE79-7E93-4B48-8C9C-C6A385F5C5FB}] => (Allow) D:\steam\steamapps\common\ArcheAge\GlyphClient.exe
FirewallRules: [{46A7DCB9-8E6D-4228-9D0C-F8778D69608E}] => (Allow) D:\steam\steamapps\common\star conflict\game.exe
FirewallRules: [{4603E049-9186-4D88-9091-1083E966DAEB}] => (Allow) D:\steam\steamapps\common\star conflict\game.exe
FirewallRules: [{3FC5C3C3-9790-4FF7-B4E5-DD0D6C2E221B}] => (Allow) D:\steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{EC3A98D1-303E-4A06-884D-0D313ED2637D}] => (Allow) D:\steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{75FEA397-7722-4485-A3E6-FF8EEBB8A4BD}] => (Allow) D:\steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{9D1E62F5-57FE-4024-BC2E-5BB9CCCEDE4B}] => (Allow) D:\steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [UDP Query User{D6A4B953-1CA5-4E51-9479-3AC1243C2C4F}C:\program files (x86)\java\jre1.8.0_31\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\java.exe
FirewallRules: [TCP Query User{15289BE4-7663-44D7-B096-262E85C83054}C:\program files (x86)\java\jre1.8.0_31\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\java.exe
FirewallRules: [UDP Query User{9AABC589-169C-4E57-A365-59D017B02475}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe
FirewallRules: [TCP Query User{6DFC9E51-057C-4110-9298-4D032277A00E}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe
FirewallRules: [UDP Query User{80264794-C364-4112-AD3B-E560EFC9DDD0}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{F5EE8F31-908B-4633-8E4D-97983BE0E28D}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{E9DAFC01-9530-4C5A-923E-879A04089FB2}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{51C81B76-A63B-4EFB-B2B0-6A9B56577DAD}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{1F1246A1-A383-4A12-8BCA-BB6B364C9861}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{A641E7B3-FE1D-437D-BD3E-484D272F5026}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [{B90AF8F2-E057-43BD-8719-C73A335CB629}] => (Allow) F:\Steam\SteamApps\common\Gunpoint\Gunpoint.exe
FirewallRules: [{D3B7EC67-8CE0-4E1D-B967-3E553D8E42BA}] => (Allow) F:\Steam\SteamApps\common\Gunpoint\Gunpoint.exe
FirewallRules: [UDP Query User{CADEAD3D-1C90-468E-A4C5-BCC74386613A}D:\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [TCP Query User{0A1D28F6-4C30-4AE6-A282-E784D9ADF114}D:\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [{810DD6D4-475B-4BCD-A6FB-C51279CFF0CF}] => (Allow) D:\steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{B0DC4CED-9C8E-4EEE-920E-C12E8396C550}] => (Allow) D:\steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{106875AF-293C-4D08-874E-FDEF7DAC9BCF}] => (Allow) D:\steam\steamapps\common\Swipecart\game.exe
FirewallRules: [{9B6BB337-4CC4-464A-B915-7D0A5EEAD26A}] => (Allow) D:\steam\steamapps\common\Swipecart\game.exe
FirewallRules: [{2C37904A-BCAE-4626-AF23-5062D350BF61}] => (Allow) D:\steam\steamapps\common\Enclave\Enclave.exe
FirewallRules: [{9D19AFFE-7574-4749-AE20-419D2E769229}] => (Allow) D:\steam\steamapps\common\Enclave\Enclave.exe
FirewallRules: [{106E9D61-A497-4E35-9704-9320AEE11C78}] => (Allow) D:\steam\steamapps\common\Magicka\Magicka.exe
FirewallRules: [{1725C78E-EA46-4294-921A-01FBD201BC2A}] => (Allow) D:\steam\steamapps\common\Magicka\Magicka.exe
FirewallRules: [{AD450285-929D-41C0-BB69-03CAE2C269F1}] => (Allow) D:\steam\steamapps\common\TheFall\TheFall.exe
FirewallRules: [{C617BBA9-7DB5-4D5E-8CFB-131FBEC32C75}] => (Allow) D:\steam\steamapps\common\TheFall\TheFall.exe
FirewallRules: [{BFD6C29F-2456-4D01-8321-73AE6C3CD240}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{591CA1A0-5CF6-4854-91C5-5CA84E201181}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{2D83702A-A5F4-499B-BEF4-26AD0B723260}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{539A0E42-CA07-485B-9286-AA83F0324E97}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{AA546906-CD31-4B2A-A648-F01A83A06DC4}] => (Allow) D:\steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{36E57706-EDA5-4DA7-8F4A-478D213DE45B}] => (Allow) D:\steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{2A11D03B-529D-4E58-B954-97E4DD63AA49}] => (Allow) D:\steam\steamapps\common\CoJ Gunslinger\CoJGunslinger.exe
FirewallRules: [{E4904EC7-DB99-477E-B0D6-04FF3A278BD2}] => (Allow) D:\steam\steamapps\common\CoJ Gunslinger\CoJGunslinger.exe
FirewallRules: [{016F112E-9F79-4EEF-B4C3-0AA1B4A6F666}] => (Allow) D:\steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{8A314EE5-788C-42D7-9BF4-095AD04FE92D}] => (Allow) D:\steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{B538E0AA-1090-4EDD-8C4E-9A696DBB2735}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{676CE17D-FC13-470E-9915-70D6A9907137}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{0984169D-4A95-4E36-ADC8-7F9127C8F55D}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{3B1016F6-D1DB-4FFD-B0BE-8A36F1E1450E}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{EBEC0F30-11EC-48EC-A080-662792700FE6}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{438FBA28-B29E-4120-B94D-C9917BE048B6}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{CFFA7722-038A-4A8E-B232-51F792BFD55D}] => (Allow) D:\steam\steamapps\common\Dungeon of the Endless\DungeonoftheEndless.exe
FirewallRules: [{3F369AE9-5135-44B0-B84C-8CA8034F8E63}] => (Allow) D:\steam\steamapps\common\Dungeon of the Endless\DungeonoftheEndless.exe
FirewallRules: [{DC0F93AD-758A-41EE-940E-597279042F0E}] => (Allow) D:\steam\steamapps\common\CloudChamber\CloudChamber.exe
FirewallRules: [{538839A1-0137-4DC6-90DB-7F92FAD213B1}] => (Allow) D:\steam\steamapps\common\CloudChamber\CloudChamber.exe
FirewallRules: [{4CD5369F-9AAE-480B-9A41-997BEA9F443A}] => (Allow) D:\steam\steamapps\common\Blade Symphony\berimbau.exe
FirewallRules: [{B26E06C2-FC2E-4172-A765-128CBFC88E99}] => (Allow) D:\steam\steamapps\common\Blade Symphony\berimbau.exe
FirewallRules: [{C813216F-24AA-4D88-9EA7-97D2D8367739}] => (Allow) F:\Steam\SteamApps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{4708E423-0ABB-4EB4-A32B-A343B00A611D}] => (Allow) F:\Steam\SteamApps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{9F2E7092-56B3-494E-9EDE-E1584E0398C8}] => (Allow) F:\Steam\SteamApps\common\Hammerwatch\Hammerwatch.exe
FirewallRules: [{58C94454-C4B6-48BE-90C7-C0712D0DFFC5}] => (Allow) F:\Steam\SteamApps\common\Hammerwatch\Hammerwatch.exe
FirewallRules: [{098F5FDF-7576-4D62-A721-0E5A348EDC6A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{627A9B9A-72D7-4D75-9EE9-63982A028E60}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{80D01D3C-574C-4AC2-BABC-703C47703CC3}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{775274A4-0FC4-4717-B39F-41007FE795F6}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D661BF32-EA62-4722-B19C-1A4E845A818A}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{3F2B7E1A-2004-4371-8A3D-661A66BB7A67}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{A58618D8-9B0C-4D15-A676-623223ABE175}] => (Allow) D:\aPB\APB\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{278A6054-AB09-46E7-A13F-4A79DA7C576A}] => (Allow) D:\aPB\APB\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{119C5183-2A54-4EDB-B5E0-BD6C95C3DEE6}] => (Allow) D:\aPB\APB\APB Reloaded\Binaries\APB.exe
FirewallRules: [{38D985ED-9F76-426D-945D-F9784161A385}] => (Allow) D:\aPB\APB\APB Reloaded\Binaries\APB.exe
FirewallRules: [{D5CF25FC-F22A-4F8C-8B17-299164787FFF}] => (Allow) C:\Program Files (x86)\Tele2\Installer_COMPLETE\Installer_Complete.exe
FirewallRules: [{C0297A3A-CCD8-4D81-8CF9-2A248CAE47DE}] => (Allow) C:\Program Files (x86)\Tele2\Installer_COMPLETE\Installer_Complete.exe
FirewallRules: [{5BF30AEB-A70A-413A-A598-6CA0644DFC38}] => (Allow) C:\_STEAM_\steamapps\common\Reign Of Kings\Reign of Kings.exe
FirewallRules: [{93668018-24D8-42B1-A4F2-47F45FC67845}] => (Allow) C:\_STEAM_\steamapps\common\Reign Of Kings\Reign of Kings.exe
FirewallRules: [{A09FFE26-E6BF-4F9C-88EF-BB72CFC02862}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{2B43CC22-F4C6-4385-988C-80569EBE737A}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{6A71E36E-5531-4C17-AE04-D92CACAC3376}] => (Allow) D:\steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{526C1EC8-042C-42BA-9C7D-013BED524D8B}] => (Allow) D:\steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{01DD2AD3-00CA-44CC-92AE-104982B67A06}] => (Allow) C:\_STEAM_\steamapps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{2E240048-6DFA-466D-B401-883565B97172}] => (Allow) C:\_STEAM_\steamapps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{45ADF016-A2BE-475A-B71F-AF716E5C8B24}] => (Allow) C:\_STEAM_\steamapps\common\Reign Of Kings\ROK.exe
FirewallRules: [{3DA4F1A8-2348-4841-B219-8A7639F2FF1D}] => (Allow) C:\_STEAM_\steamapps\common\Reign Of Kings\ROK.exe
FirewallRules: [{304F293E-0401-4D79-85EF-A9655B8C8F79}] => (Allow) C:\_STEAM_\steamapps\common\In Verbis Virtus\Binaries\Win32\IVV.exe
FirewallRules: [{B2FF8DE9-BDEA-4186-BC15-6F06C3D6F607}] => (Allow) C:\_STEAM_\steamapps\common\In Verbis Virtus\Binaries\Win32\IVV.exe
FirewallRules: [UDP Query User{5EC90810-3B7E-4FEB-B69F-B614488D2056}C:\users\ismael\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ismael\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{85166EB3-AC06-45CA-9C0B-1219ADED916F}C:\users\ismael\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ismael\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{C817C891-A921-451C-A964-4C81108B0353}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{999BD285-E61D-47D2-AE0B-24C856AF1EDC}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{1FF8AF3C-12B1-4CF5-92BB-99AAD9D8C6DF}] => (Allow) D:\steam\steamapps\common\Hitman Sniper Challenge\HMSC.exe
FirewallRules: [{8ADF46A1-1F24-4632-832A-0AA9FAAF3730}] => (Allow) D:\steam\steamapps\common\Hitman Sniper Challenge\HMSC.exe
FirewallRules: [{A0C347ED-1EE7-4850-B567-E5D56D13A9DA}] => (Allow) D:\steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{D4CED8F4-CE6C-4297-84C1-439915337F27}] => (Allow) D:\steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{FF13A85E-AC5D-4C86-860B-ED055D943095}] => (Allow) C:\Program Files (x86)\Tele2\Installer_COMPLETE\Installer_Complete.exe
FirewallRules: [{68747C78-C16D-4474-B901-D1750156F1A7}] => (Allow) C:\Program Files (x86)\Tele2\Installer_COMPLETE\Installer_Complete.exe
FirewallRules: [{890275CD-F035-4E3E-AC26-6262A295B702}] => (Allow) C:\Program Files (x86)\Tele2\SupportCenter\SupportCenter.exe
FirewallRules: [{AC22E318-3638-4A9A-BCC1-A0E8CEFF5A4C}] => (Allow) C:\Program Files (x86)\Tele2\SupportCenter\SupportCenter.exe
FirewallRules: [{858AAC8E-95D6-434F-B75B-E3F3D2B5B5EC}] => (Allow) D:\steam\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{A3985C50-2C43-4B0C-AEA5-A0A28D4B02B7}] => (Allow) D:\steam\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [UDP Query User{EDFF844B-4BC3-47ED-B7F8-79D3AD8E9B15}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{E65FD010-4178-4E3D-A39E-BA240BB9C9C4}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [{642F32FB-47F3-423C-8912-5B18D1469FEC}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{72CC8E0C-2DA5-45DC-B301-255AFF695E5A}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [UDP Query User{335AA2E0-6D68-4FF3-BDC4-B06594D4F0A4}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{84025B79-8DEF-41DB-B93A-9FC48B31C7B4}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [{6688BA6B-469B-48CB-ACAC-BACEA1B28CF1}] => (Allow) D:\steam\steamapps\common\Ori\ori.exe
FirewallRules: [{5BEF85CA-73C9-4C9E-847B-83653704F62D}] => (Allow) D:\steam\steamapps\common\Ori\ori.exe
FirewallRules: [{B089FB84-10B4-4D67-85AD-F37A3D1BF46C}] => (Allow) F:\Steam\SteamApps\common\Cloudbuilt\CommunityLevelEditor.exe
FirewallRules: [{4383000A-2EBF-4088-AB0A-B195399149B0}] => (Allow) F:\Steam\SteamApps\common\Cloudbuilt\CommunityLevelEditor.exe
FirewallRules: [UDP Query User{43EFF0E8-AFAF-448C-B8EE-7EF7E9B0F704}C:\users\ismael\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\ismael\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{C95B1D00-0721-4F9A-A97E-435E6F276230}C:\users\ismael\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\ismael\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{79EC6E5A-9CD7-4E24-8CB7-F0A640EA25B7}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{564A701F-6C4C-4A80-B4EF-F62DD4B9CB00}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{E0469095-54D5-43A3-8E8B-5DB697479167}] => (Allow) C:\_STEAM_\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{9A175F8D-42FE-4746-A8F1-B4AAFA57021E}] => (Allow) C:\_STEAM_\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [UDP Query User{ACC457C2-C454-4D51-9833-9E29A47EB21C}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe] => (Allow) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe
FirewallRules: [TCP Query User{77465A37-F00A-4C6A-B351-63A53204A6DA}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe] => (Allow) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe
FirewallRules: [{8975BF57-AC70-47BE-AB51-3A51264CD543}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3F3FEEA1-FA2E-45EB-BFB1-ECB529802CC4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{C47E63A7-B714-47BF-84A2-067C26E9ADAB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D445D4D2-123E-46E8-97AA-674C24C80F63}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{1C9BB955-292C-4A79-B1B4-EC72F7838B5A}] => (Allow) C:\_STEAM_\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{673E77FF-27E8-4FF1-AF65-995CDEE15E63}] => (Allow) C:\_STEAM_\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [UDP Query User{1A09CAF7-9402-4A6D-8DE5-85A0E5F3BF24}D:\gameforge\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) D:\gameforge\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [TCP Query User{B9F97050-BD8A-4063-BB69-D37647E2799E}D:\gameforge\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) D:\gameforge\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{053B8444-F3C2-4330-8BA5-56932ECFB7F5}] => (Allow) D:\gameforge\GameforgeLive\gfl_client.exe
FirewallRules: [UDP Query User{07FE56F1-2348-4868-B462-7BB0272AD6DC}F:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) F:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [TCP Query User{EB1E5DF9-01BD-44A6-B170-7C3F06C4C724}F:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) F:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [{CD670746-7C37-4629-9B68-CD4925B7EC7C}] => (Allow) D:\steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{6577E18B-00EB-41AB-B9F0-30DE8B1EB2DB}] => (Allow) D:\steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [UDP Query User{34521A6D-E56B-4499-8BE3-DA3BAED513BE}C:\_steam_\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\_steam_\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [TCP Query User{C3495698-9B60-40FB-A193-AD6493ED8E11}C:\_steam_\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\_steam_\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [{0E61759A-FC76-4508-92F0-8F9E544D2F96}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{CFB79BF6-7815-4A66-82F3-596DBDB9A69B}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{C6EE5105-6AD8-4DD6-BB8D-3782E633287B}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos.exe
FirewallRules: [{8DCEAC6B-5FCC-4C7A-9885-EDBE5D52B19D}] => (Allow) C:\_STEAM_\steamapps\common\The Talos Principle\Bin\Talos.exe
FirewallRules: [{24F7B161-2EF6-4312-A217-57D709B28206}] => (Allow) C:\_STEAM_\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{66B72BC4-CCC9-4ABC-BAA8-4AB220D86E88}] => (Allow) C:\_STEAM_\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{7416EA8A-0390-4D62-9C83-E669145A33ED}] => (Allow) LPort=8317
FirewallRules: [{11E2365F-A3F0-40FA-ADFB-6852D8F39A54}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{78BDC3B9-C944-4F6F-A05E-8F14872E85AF}] => (Allow) F:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{4C3D41B9-BF5F-4BAE-9223-CA5D30D74F21}] => (Allow) C:\_STEAM_\steamapps\common\Murdered Soul Suspect\Binaries\Win64\Murdered.exe
FirewallRules: [{92BBD539-F060-4DE6-BE7A-81CC25F0A000}] => (Allow) C:\_STEAM_\steamapps\common\Murdered Soul Suspect\Binaries\Win64\Murdered.exe
FirewallRules: [{AC6C17C9-111C-4079-8CCB-B4441D7D6466}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E5358C99-DD7A-4184-B5CA-42CD339E8AB1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{141F16D6-FF78-4464-A19F-D5A2746B131F}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{3570478F-70E4-48BF-91D8-6090CD979602}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [{443498D4-ED25-411E-A27A-5DBE861C9BB0}] => (Allow) F:\Steam\SteamApps\common\The Incredible Adventures of Van Helsing II\VanHelsing.exe
FirewallRules: [{972C1B42-E70D-4DB0-BB7A-CEBC38CC6F44}] => (Allow) F:\Steam\SteamApps\common\The Incredible Adventures of Van Helsing II\VanHelsing.exe
FirewallRules: [{59A4B240-FB04-4938-8D45-EA48FCFC61C0}] => (Allow) C:\_STEAM_\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{736D159B-EDF0-46F8-87BF-078DDEC32436}] => (Allow) C:\_STEAM_\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [UDP Query User{017E4516-8604-4AE5-9D7C-A842CDCD56C7}D:\teso\launcher\bethesda.net_launcher.exe] => (Allow) D:\teso\launcher\bethesda.net_launcher.exe
FirewallRules: [TCP Query User{8FE06C4E-12B0-4A0C-BA59-048172171055}D:\teso\launcher\bethesda.net_launcher.exe] => (Allow) D:\teso\launcher\bethesda.net_launcher.exe
FirewallRules: [{05A8F9BD-E1F1-48C9-B72F-C5F02B839295}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{0FF96908-7C81-4CC8-83E0-F4F61298F250}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [UDP Query User{0C27B5AD-1808-4BF1-A65A-D446E949FA17}D:\battlenet\hearthstone\hearthstone\hearthstone.exe] => (Allow) D:\battlenet\hearthstone\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{1CA14154-2A53-4556-94AD-3B0C0DF93C46}D:\battlenet\hearthstone\hearthstone\hearthstone.exe] => (Allow) D:\battlenet\hearthstone\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{DCED1011-F215-4293-9513-24178E54B2D7}D:\battlenet\d3\diii\diablo iii\diablo iii.exe] => (Allow) D:\battlenet\d3\diii\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{A9826FFA-5FB2-4FCF-96F7-A0E56B76EFB4}D:\battlenet\d3\diii\diablo iii\diablo iii.exe] => (Allow) D:\battlenet\d3\diii\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{AC54A972-9D41-41DE-ADD1-D9AA951CF127}D:\battlenet\starcraft ii\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\battlenet\starcraft ii\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [TCP Query User{82475B4D-57A3-47DC-9D85-82D72256B750}D:\battlenet\starcraft ii\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\battlenet\starcraft ii\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{F6FB7F3A-6CC6-4CDC-BDB5-4D35C5DA1356}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{40F13119-B5B3-43F8-8932-99D08CFF00C4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{DEC45A98-D3A0-4905-B5EE-8D780053E8AD}] => (Allow) F:\Steam\SteamApps\common\audiosurf\engine\QuestViewer.exe
FirewallRules: [{7F94ABB3-DDEA-49A4-8404-19EB967946A9}] => (Allow) F:\Steam\SteamApps\common\audiosurf\engine\QuestViewer.exe
FirewallRules: [{22ECCCEC-A640-4630-B2AB-DA437A39872E}] => (Allow) C:\_STEAM_\steamapps\common\Styx\Binaries\Win64\StyxGame.exe
FirewallRules: [{D03A2004-EEBF-433B-823C-716DBC573AFF}] => (Allow) C:\_STEAM_\steamapps\common\Styx\Binaries\Win64\StyxGame.exe
FirewallRules: [{A7E0D237-659C-41AF-B71E-6B23AF946278}] => (Allow) D:\steam\steamapps\common\Legend of Grimrock\grimrock.exe
FirewallRules: [{E03AC328-3D22-4DD0-8C3D-4A1A7217DBD7}] => (Allow) D:\steam\steamapps\common\Legend of Grimrock\grimrock.exe
FirewallRules: [{AFBD6885-A2DC-44C6-A1C7-C8CC3871DF24}] => (Allow) F:\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{A87DA547-6371-444B-8302-D8160352CBA3}] => (Allow) F:\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{5C257D5B-492E-4E28-B54F-2AF7F0DE05BA}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{6B7ED683-D96E-4AA0-9E59-BD99C85F13D7}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [UDP Query User{4CB20C89-5ACF-49C8-ABD1-0984E8D6E6E7}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{F94B05AB-8DD8-4367-8E75-428402B468A9}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{E0509A5B-EC37-4992-82FC-D1153AD4FCD0}] => (Allow) D:\steam\steamapps\common\Gone Home\GoneHome.exe
FirewallRules: [{85F76C19-87E5-4B35-8DA7-C4BAEB354B8D}] => (Allow) D:\steam\steamapps\common\Gone Home\GoneHome.exe
FirewallRules: [{D07726BE-7FA4-48BC-B296-9672FA78F6FF}] => (Allow) D:\steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{9AB938E3-1C15-4E61-897A-6233FBE558E9}] => (Allow) D:\steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{12088605-738F-4CEC-8B27-FD8404625F36}] => (Allow) D:\steam\steamapps\common\YearWalk\yearwalk.exe
FirewallRules: [{5173723F-3303-4EAC-A491-04EC5A55FEB2}] => (Allow) D:\steam\steamapps\common\YearWalk\yearwalk.exe
FirewallRules: [{B1F06989-D13D-4212-83C8-20E664E1D2C8}] => (Allow) D:\steam\steamapps\common\Mind_Path_to_Thalamus\Binaries\Win32\Mind.exe
FirewallRules: [{7EF08759-33FA-4C2B-9F95-CAE6F77242BB}] => (Allow) D:\steam\steamapps\common\Mind_Path_to_Thalamus\Binaries\Win32\Mind.exe
FirewallRules: [{1E3BC641-047B-4C40-BB50-2BC17F858C66}] => (Allow) C:\_STEAM_\steamapps\common\Knights of Pen and Paper\knightspp.exe
FirewallRules: [{3B0F8096-FD90-4D08-8C01-9BF8A5C278DB}] => (Allow) C:\_STEAM_\steamapps\common\Knights of Pen and Paper\knightspp.exe
FirewallRules: [{B86240C0-C032-4FBF-9F64-D56BE131B76D}] => (Allow) F:\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{F4E4DCE3-0603-41E1-B6AD-8891BEC403AC}] => (Allow) F:\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [UDP Query User{E403CE7A-BD32-428D-82CA-2EB46D9A1FC2}C:\users\ismael\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ismael\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{147E3ADE-3F5A-4BE8-86CB-FE983590B819}C:\users\ismael\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ismael\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{417FA7D5-8DEA-4169-83A1-DBBD5F0D8562}] => (Allow) F:\Steam\SteamApps\common\Tropico 5\Tropico5Steam.exe
FirewallRules: [{1C76C335-2126-47C5-8CD9-B638D7319C73}] => (Allow) F:\Steam\SteamApps\common\Tropico 5\Tropico5Steam.exe
FirewallRules: [{73EC5450-440D-45F7-B25E-4AE8DC2920F0}] => (Allow) F:\Steam\SteamApps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe
FirewallRules: [{DD44A12F-2E3B-4FC5-B0D8-D8A86B207743}] => (Allow) F:\Steam\SteamApps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe
FirewallRules: [UDP Query User{AEC0B4D4-7D10-4DD2-9940-88E52FD58F8F}F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [TCP Query User{742742B3-B7C2-4E01-AB63-5107F7FA583A}F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{F4D05547-5888-428A-843A-02B80120C0D2}F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{C4488B72-AC3E-47A6-BF6A-81836CAB2930}F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) F:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [{A3806247-2D59-4DD1-9303-3F21B11A118E}] => (Allow) F:\Steam\SteamApps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{773B5E96-77AA-4F8B-A460-6210A9DDB737}] => (Allow) F:\Steam\SteamApps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{300AEE93-8133-4BA4-A79F-F50974E9CD3D}] => (Allow) F:\Steam\SteamApps\common\Tower Wars\TW.exe
FirewallRules: [{807F9C32-74A8-4ADE-9247-71858624C70E}] => (Allow) F:\Steam\SteamApps\common\Tower Wars\TW.exe
FirewallRules: [{5894782B-2D62-41C7-9D35-8B11EDDB360A}] => (Allow) C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe
FirewallRules: [{B46C21A0-B1A4-4351-92DF-7983D0E0158D}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{590DB5F6-267F-4FCF-ABD0-936B9C13085C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{8307A5B6-40EE-4BCC-8983-022FC02C5059}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{5387BAF1-038D-4181-81F4-3D5872AEE944}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [{C65765E9-6A64-4094-A6B5-856B9E68FF81}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [{43C53822-A734-41BB-B5E0-E5C0A0856E4B}] => (Allow) F:\Steam\SteamApps\common\Crypt of the NecroDancer\NecroDancer.exe
FirewallRules: [{AECC3DEB-0A67-4361-891C-2C545402933D}] => (Allow) F:\Steam\SteamApps\common\Crypt of the NecroDancer\NecroDancer.exe
FirewallRules: [{D25888CC-7CE8-4A92-A14B-22E00ECCEBED}] => (Allow) F:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{C64BF902-0F72-4F6B-BD9A-B5FD9F245937}] => (Allow) F:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{A854AF77-1DA6-4559-82D1-BF39304624D9}] => (Allow) F:\Steam\SteamApps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{941738BD-EAA0-4E19-B423-F1C35AD57F7D}] => (Allow) F:\Steam\SteamApps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{F6A2E040-06EB-4567-A999-D71B29009737}] => (Allow) D:\battlenet\Battle.net\Battle.net.exe
FirewallRules: [{BD45E96E-AB14-4535-813E-F3B9596548F7}] => (Allow) D:\battlenet\Battle.net\Battle.net.exe
FirewallRules: [{31F99FE5-A81D-4B36-A9A3-AA4158991C0B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{AFE02FF8-A3E3-4A3D-966B-75210EA1FF45}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{2C7399C0-A265-48B8-858F-781822CDF743}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\InitEngine.exe
FirewallRules: [{FB9C57F7-D579-4949-B6D6-A53A5DB191B3}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\InitEngine.exe
FirewallRules: [{CB1759CB-2CD8-4330-9D01-7A16A37E5F90}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\AutoPatcher.exe
FirewallRules: [{9B5DD2CE-FA56-4422-AF43-E1101F4D5676}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\AutoPatcher.exe
FirewallRules: [{22718752-216E-4377-AA0C-7C6E14637E08}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno5.exe
FirewallRules: [{7A9439E5-FF73-469F-9055-7C81BC105BB8}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno5.exe
FirewallRules: [UDP Query User{7703334A-6851-44F8-9349-04B6F70A58C0}C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno2070\initengine.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno2070\initengine.exe
FirewallRules: [TCP Query User{BFEE0FF8-E6F3-4A09-8DD6-937D1E5C4ED3}C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno2070\initengine.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\anno2070\initengine.exe
FirewallRules: [{A2D839A0-DE6B-4646-AA9B-C52376EACD2A}] => (Allow) F:\Steam\SteamApps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{2B42684F-77E8-41DE-ADBD-646E7CF9F233}] => (Allow) F:\Steam\SteamApps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [UDP Query User{F74C35F5-2957-4B10-AA89-A20578FC77FC}C:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) C:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [TCP Query User{81532378-754F-4FA4-B915-A2F851A091D0}C:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) C:\gog games\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [{0145311C-87F1-469B-BE40-E2BFD190ACA5}] => (Allow) F:\Steam\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{57AE5C09-7D47-435A-9CD4-B0ED9A763AB3}] => (Allow) F:\Steam\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{DA234AFA-572B-45A1-8DEE-264C857D44A0}] => (Allow) F:\Steam\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{228C7A9C-08D7-4951-AE91-02AD3C9F37F0}] => (Allow) F:\Steam\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{499E730D-7F85-48E6-B331-BEF7ADF75D56}] => (Allow) F:\Steam\SteamApps\common\Cloudbuilt\CloudBuilt.exe
FirewallRules: [{94773C03-0F72-4018-AFD7-37C0940D1DDD}] => (Allow) F:\Steam\SteamApps\common\Cloudbuilt\CloudBuilt.exe
FirewallRules: [UDP Query User{077485A2-6D98-4885-A07C-7EAC60FBDE2D}F:\dragonsprophet\dragon's prophet\dp_x64.exe] => (Allow) F:\dragonsprophet\dragon's prophet\dp_x64.exe
FirewallRules: [TCP Query User{B17A6E8C-BFAB-43FB-B0B2-C1833B8D091A}F:\dragonsprophet\dragon's prophet\dp_x64.exe] => (Allow) F:\dragonsprophet\dragon's prophet\dp_x64.exe
FirewallRules: [{9F68DFFB-266B-4B79-831F-2C98E9174684}] => (Allow) C:\Users\Ismael\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{3C0E1C3F-4A39-4A55-84B3-AACAE46C4E96}] => (Allow) C:\Users\Ismael\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{1FDA609E-2D4F-4C78-BC53-3179DBD9A86B}] => (Block) F:\dragonsprophet\dragon's prophet\launcher.exe
FirewallRules: [{8DE3A0D1-D3FD-407A-9957-F359F1295EE8}] => (Block) F:\dragonsprophet\dragon's prophet\launcher.exe
FirewallRules: [UDP Query User{50FF52ED-EBDF-40F4-80C9-9D5677B44EA8}F:\dragonsprophet\dragon's prophet\launcher.exe] => (Allow) F:\dragonsprophet\dragon's prophet\launcher.exe
FirewallRules: [TCP Query User{E2251AB3-2122-4BA4-BD3D-A6D6E58691E9}F:\dragonsprophet\dragon's prophet\launcher.exe] => (Allow) F:\dragonsprophet\dragon's prophet\launcher.exe
FirewallRules: [{8E318DE8-6B9E-412D-8078-985D3D407DEA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{054935E2-519A-49EA-AA0B-4F9BCBEAA8D1}] => (Allow) F:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{D1CD68A3-B59D-40FC-B6A6-0C25248FA9B5}] => (Allow) F:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{F37F3894-51B5-4226-A126-1C426F28E66F}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [{E3CF1B2E-23A3-47E9-85A8-C32B33DE549E}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [{624945EF-75BA-4D53-B12D-95ABAC23890C}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{B5A38A1D-0D64-4B87-84F2-34B04D4FA9CD}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{C94D32A7-06B5-4B32-B031-048362ED8917}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{271501C2-4454-467E-A0D8-A0F7DED24CAD}] => (Allow) F:\Steam\SteamApps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{B2A4BE11-AE05-4087-A069-5F192334EF17}] => (Allow) F:\Steam\SteamApps\common\10000000\10000000.exe
FirewallRules: [{01D5EC04-3D69-48BD-ADAB-45C0BF76A083}] => (Allow) F:\Steam\SteamApps\common\10000000\10000000.exe
FirewallRules: [{E494F373-70C0-4759-9D18-70BB018DA638}] => (Allow) F:\Steam\SteamApps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{601189C5-1EC6-4734-95B7-48E92FFF0CCF}] => (Allow) F:\Steam\SteamApps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{F9EAF699-C27D-48C4-AC55-ACC80941990E}] => (Allow) D:\steam\bin\steamwebhelper.exe
FirewallRules: [{C2391B96-DEE9-49AD-8579-4FFED63546E5}] => (Allow) D:\steam\bin\steamwebhelper.exe
FirewallRules: [{D08E5E4C-6B71-4531-9AAA-6598C3E6D3CB}] => (Allow) D:\steam\Steam.exe
FirewallRules: [{2588315F-D47B-4043-B76E-2AA809F45F69}] => (Allow) D:\steam\Steam.exe
FirewallRules: [{17F7F6AC-92E4-4F0B-8632-879065B99E18}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{BA545030-F767-4758-8195-6A94C62EE14F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{3D275E81-1970-4C18-AF64-8DE39F05A64F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{379DC712-4D10-4023-8A3D-10F0292943AC}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{D3102383-004A-4471-A503-AE4927515ACD}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{AB612FFF-33E3-462E-940E-A414AE6616B3}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{4960FED2-6CAA-4A14-8DDB-F1AA07BF0969}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{01E91BF6-FF38-4623-9537-2E5D09156D7E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{AE22A33F-FE87-4A10-B1D7-4386D9DDE1A6}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{515629A9-4DCA-4DE2-AD00-A6777C17BB89}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{2DDF3FCD-E5AC-4A53-B3EB-BA5905B8E411}] => (Allow) D:\steam\steamapps\common\Hacknet\Hacknet.exe
FirewallRules: [{D66338B1-9CF5-47A5-83D2-820E7B9B3EEF}] => (Allow) D:\steam\steamapps\common\Hacknet\Hacknet.exe
FirewallRules: [{69D1D155-FD15-41F8-9341-676BEF699BD8}] => (Allow) D:\steam\steamapps\common\Magic 2014\DotP_D14.exe
FirewallRules: [{322299E2-0AF7-4F88-AC87-CEF3E9F6E4C3}] => (Allow) D:\steam\steamapps\common\Magic 2014\DotP_D14.exe
FirewallRules: [{C29C9FD9-F392-4E3D-9FB1-C98FEC9E17A8}] => (Allow) D:\steam\steamapps\common\Ampu-Tea\AmpuTea.exe
FirewallRules: [{F26D7FF8-16DA-4851-BC0C-07980792401C}] => (Allow) D:\steam\steamapps\common\Ampu-Tea\AmpuTea.exe
FirewallRules: [{B647C8D8-B3EE-4500-9374-FEEEE408B5F1}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{6AEF2F82-170C-4EC3-9F06-712CDC1E75C9}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{D8E1D238-0E0C-467B-B116-72FBD9C596BA}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{7ABA49EA-28AA-4C67-810C-7FD1FDC0A23C}] => (Allow) F:\Steam\SteamApps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{909CFD06-4DE4-434B-8ECE-570F52840D97}] => (Allow) C:\_STEAM_\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{9C4D9B60-ED01-43B8-8AD8-16DE71B3D0E2}] => (Allow) C:\_STEAM_\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{46CC17D0-B742-4583-86CD-45F114B5EB8C}] => (Allow) D:\steam\steamapps\common\OutThereOmega\OutThereOmega.exe
FirewallRules: [{6B3DA6DC-39E3-491D-ADAA-F28263DC60AA}] => (Allow) D:\steam\steamapps\common\OutThereOmega\OutThereOmega.exe
FirewallRules: [{6642D315-DB39-447F-A084-A0D156D0CEF2}] => (Allow) D:\steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{07967037-9B07-458F-8F1C-176B4A7940E1}] => (Allow) D:\steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{A9C93D79-80A7-4212-B152-00CFD33E63CB}] => (Allow) D:\steam\steamapps\common\Port of Call\PortOfCall.exe
FirewallRules: [{48C94D1B-931D-4887-BF24-BCB42AA99C09}] => (Allow) D:\steam\steamapps\common\Port of Call\PortOfCall.exe
FirewallRules: [{E55312AF-433D-4FE2-80E3-7EDBFDC3E26D}] => (Allow) D:\steam\steamapps\common\Mad Max\MadMax.exe
FirewallRules: [{5C323A19-1E36-4479-A661-34AB3CFA1FEA}] => (Allow) D:\steam\steamapps\common\Mad Max\MadMax.exe
FirewallRules: [{7D107D45-D575-403C-A0CA-791A0747980D}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{E3EDBE26-F05C-44F1-94B8-F21CC9E5935D}] => (Allow) F:\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{13662E1F-286C-435F-8138-B3B4D74709A6}] => (Allow) C:\_STEAM_\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{159357E9-98A6-4D74-BDF5-CE1D8F4A7B9A}] => (Allow) C:\_STEAM_\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{CAE7DB9B-DEF0-493F-9F21-D0C4D31E4A4A}] => (Allow) C:\Users\Ismael\AppData\Roaming\Skype\downloader.exe
FirewallRules: [{BF710D63-A85A-438D-A19A-44E488D9C616}] => (Allow) C:\Users\Ismael\AppData\Roaming\Skype\downloader.exe
FirewallRules: [{023A2AE5-00C4-497B-82D1-896D9C9C9B1A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/05/2015 08:11:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (09/05/2015 08:08:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OHub.exe, Version: 16.0.6203.2351, Zeitstempel: 0x55e86a67
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.16430, Zeitstempel: 0x55c59f92
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000ea28c
ID des fehlerhaften Prozesses: 0x10ac
Startzeit der fehlerhaften Anwendung: 0xOHub.exe0
Pfad der fehlerhaften Anwendung: OHub.exe1
Pfad des fehlerhaften Moduls: OHub.exe2
Berichtskennung: OHub.exe3
Vollständiger Name des fehlerhaften Pakets: OHub.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: OHub.exe5

Error: (09/05/2015 08:00:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OHub.exe, Version: 16.0.6203.2351, Zeitstempel: 0x55e86a67
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.16430, Zeitstempel: 0x55c59f92
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000ea28c
ID des fehlerhaften Prozesses: 0x2c58
Startzeit der fehlerhaften Anwendung: 0xOHub.exe0
Pfad der fehlerhaften Anwendung: OHub.exe1
Pfad des fehlerhaften Moduls: OHub.exe2
Berichtskennung: OHub.exe3
Vollständiger Name des fehlerhaften Pakets: OHub.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: OHub.exe5

Error: (09/05/2015 07:52:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x1bcc
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5

Error: (09/05/2015 07:50:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x1498
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5

Error: (09/05/2015 07:29:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x33c8
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5

Error: (09/05/2015 07:11:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x2194
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5

Error: (09/05/2015 05:24:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x1948
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5

Error: (09/05/2015 05:22:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x1870
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5

Error: (09/05/2015 05:06:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x9ac
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5


Systemfehler:
=============
Error: (09/05/2015 08:12:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Intel(R) Smart Connect Technology Agent" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/05/2015 08:12:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/05/2015 08:12:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.

Error: (09/05/2015 08:12:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/05/2015 08:12:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Streamer Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/05/2015 08:12:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Network Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/05/2015 08:12:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Performance Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/05/2015 08:12:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MSI_Trigger_Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/05/2015 08:12:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Message Queuing" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/05/2015 08:12:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MSCamSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Microsoft Office:
=========================
Error: (09/05/2015 08:11:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert

Error: (09/05/2015 08:08:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: OHub.exe16.0.6203.235155e86a67ntdll.dll10.0.10240.1643055c59f92c000037400000000000ea28c10ac01d0e805dcae88a3C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6203.23511.0_x64__8wekyb3d8bbwe\OHub.exeC:\WINDOWS\SYSTEM32\ntdll.dlled41460d-a167-4d1f-a80b-8c063bd1b8b7Microsoft.MicrosoftOfficeHub_17.6203.23511.0_x64__8wekyb3d8bbweMicrosoft.MicrosoftOfficeHub

Error: (09/05/2015 08:00:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: OHub.exe16.0.6203.235155e86a67ntdll.dll10.0.10240.1643055c59f92c000037400000000000ea28c2c5801d0e804cb2ce0a6C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6203.23511.0_x64__8wekyb3d8bbwe\OHub.exeC:\WINDOWS\SYSTEM32\ntdll.dll7ed8ba8c-0e60-4a05-a1f5-5c17a446baf9Microsoft.MicrosoftOfficeHub_17.6203.23511.0_x64__8wekyb3d8bbweMicrosoft.MicrosoftOfficeHub

Error: (09/05/2015 07:52:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: dwm.exe10.0.10240.16384559f3907dwmcore.dll10.0.10240.1646155d2d629c000060200000000000aca771bcc01d0e8035d67d9feC:\WINDOWS\system32\dwm.exeC:\WINDOWS\system32\dwmcore.dllc6c05445-a0de-40d9-9c33-e4bc168a4221

Error: (09/05/2015 07:50:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: dwm.exe10.0.10240.16384559f3907dwmcore.dll10.0.10240.1646155d2d629c000060200000000000aca77149801d0e800670c66dfC:\WINDOWS\system32\dwm.exeC:\WINDOWS\system32\dwmcore.dll8b7294df-f6aa-4c76-9caf-7fb8e76cbcb8

Error: (09/05/2015 07:29:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: dwm.exe10.0.10240.16384559f3907dwmcore.dll10.0.10240.1646155d2d629c000060200000000000aca7733c801d0e7fde5d830d3C:\WINDOWS\system32\dwm.exeC:\WINDOWS\system32\dwmcore.dlleb5a0968-1005-4182-985e-9478484a67f2

Error: (09/05/2015 07:11:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: dwm.exe10.0.10240.16384559f3907dwmcore.dll10.0.10240.1646155d2d629c000060200000000000aca77219401d0e7eeec0e1beeC:\WINDOWS\system32\dwm.exeC:\WINDOWS\system32\dwmcore.dll010bcbec-52f2-4716-a5d0-85836a0f1481

Error: (09/05/2015 05:24:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: dwm.exe10.0.10240.16384559f3907dwmcore.dll10.0.10240.1646155d2d629c000060200000000000aca77194801d0e7eea865086cC:\WINDOWS\system32\dwm.exeC:\WINDOWS\system32\dwmcore.dll25536d0d-c954-405c-a29c-7cde56a6ac17

Error: (09/05/2015 05:22:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: dwm.exe10.0.10240.16384559f3907dwmcore.dll10.0.10240.1646155d2d629c000060200000000000aca77187001d0e7ec62411554C:\WINDOWS\system32\dwm.exeC:\WINDOWS\system32\dwmcore.dll94ae66bb-22ee-442b-a9bd-e6d79c1351f5

Error: (09/05/2015 05:06:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: dwm.exe10.0.10240.16384559f3907dwmcore.dll10.0.10240.1646155d2d629c000060200000000000aca779ac01d0e7ec2999762bC:\WINDOWS\system32\dwm.exeC:\WINDOWS\system32\dwmcore.dlla1df5839-7976-4ef5-81f4-ab6e75f42e49


CodeIntegrity:
===================================
  Date: 2015-08-24 10:37:13.212
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:13.189
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:13.161
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:13.126
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:13.111
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:13.095
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:12.446
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-24 10:37:12.366
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-19 17:44:39.727
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2015-08-19 17:44:39.703
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 24%
Installierter physikalischer RAM: 16328.23 MB
Verfügbarer physikalischer RAM: 12383.22 MB
Summe virtueller Speicher: 32712.23 MB
Verfügbarer virtueller Speicher: 27755.5 MB

==================== Laufwerke ================================

Drive c: (System) (Fixed) (Total:232.88 GB) (Free:38.59 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: (Data1) (Fixed) (Total:931.51 GB) (Free:373.85 GB) NTFS
Drive e: (Gothic 3) (CDROM) (Total:3.04 GB) (Free:0 GB) CDFS
Drive f: () (Fixed) (Total:465.76 GB) (Free:133.21 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 2989E734)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: F369F369)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2989E72F)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
Wie angegeben alles ausgeführt. Ich habe schon keine (sichtbaren) Probleme mehr. Richtig super!! Aber zur Sicherheit habe ich doch alles nochmal geposted wie verlangt wurde. Nochmals vielen vielen Dank weil die Hilfe echt schnell und effektiv war. Alleine wäre ich noch Jahre am verzweifeln mit der Werbung. :dankeschoen::dankeschoen::dankeschoen::dankeschoen::singsing::applaus::dankeschoen:

cosinus 05.09.2015 20:07
FRST-Fix

Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft!

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
Task: {7593B7BD-95C5-49CC-B9D4-9BA0E0878E01} - System32\Tasks\BoxyFX => c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}\544915693522649780b.exe <==== ACHTUNG
Task: {BCBB8500-02F4-49C1-BBB1-58FBDB1A1C8E} - System32\Tasks\FatBurn => c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}\9000599011852156690b.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\BoxyFX.job => c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}\544915693522649780b.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\FatBurn.job => c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}\9000599011852156690b.exe <==== ACHTUNG
c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}
c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}
EmptyTemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.


CLamantius 06.09.2015 13:18
Fixlog.txt

Code:
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:04-09-2015
durchgeführt von Ismael (2015-09-06 14:04:09) Run:1
Gestartet von C:\Users\Ismael\Downloads
Geladene Profile: Ismael (Verfügbare Profile: Ismael)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
Task: {7593B7BD-95C5-49CC-B9D4-9BA0E0878E01} - System32\Tasks\BoxyFX => c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}\544915693522649780b.exe <==== ACHTUNG
Task: {BCBB8500-02F4-49C1-BBB1-58FBDB1A1C8E} - System32\Tasks\FatBurn => c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}\9000599011852156690b.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\BoxyFX.job => c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}\544915693522649780b.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\FatBurn.job => c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}\9000599011852156690b.exe <==== ACHTUNG
c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}
c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}
EmptyTemp:

*****************

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7593B7BD-95C5-49CC-B9D4-9BA0E0878E01}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7593B7BD-95C5-49CC-B9D4-9BA0E0878E01}" => Schlüssel erfolgreich entfernt
C:\WINDOWS\System32\Tasks\BoxyFX => erfolgreich verschoben
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BoxyFX" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BCBB8500-02F4-49C1-BBB1-58FBDB1A1C8E}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCBB8500-02F4-49C1-BBB1-58FBDB1A1C8E}" => Schlüssel erfolgreich entfernt
C:\WINDOWS\System32\Tasks\FatBurn => erfolgreich verschoben
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FatBurn" => Schlüssel erfolgreich entfernt
C:\WINDOWS\Tasks\BoxyFX.job => erfolgreich verschoben
C:\WINDOWS\Tasks\FatBurn.job => erfolgreich verschoben
"c:\programdata\{d8c6fbdc-b0b4-2193-d8c6-6fbdcb0bef72}" => Datei/Ordner nicht gefunden.
"c:\programdata\{2da04bb5-ae6f-d3bc-2da0-04bb5ae62ed6}" => Datei/Ordner nicht gefunden.
EmptyTemp: => 1.1 GB temporäre Dateien entfernt.


Das System musste neu gestartet werden..

==== Ende von Fixlog 14:04:26 ====

cosinus 06.09.2015 16:05
Okay, dann Kontrollscans mit ESET und SC bitte:


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset



Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

CLamantius 07.09.2015 21:12
log.txt

Code:
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9da30b963ab20e4c93778a17d03be0b7
# end=init
# utc_time=2015-09-07 05:59:49
# local_time=2015-09-07 07:59:49 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Init
Update Download
Update Finalize
Updated modules version: 25646
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9da30b963ab20e4c93778a17d03be0b7
# end=updated
# utc_time=2015-09-07 06:02:03
# local_time=2015-09-07 08:02:03 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=9da30b963ab20e4c93778a17d03be0b7
# engine=25646
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-09-07 08:04:11
# local_time=2015-09-07 10:04:11 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 5110176 5130263 0 0
# scanned=750373
# found=6
# cleaned=0
# scan_time=7327
sh=35667A6B754B732825376F5532B1D9AAC5424D1D ft=1 fh=f84a1c3dca5d5a97 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Ismael\Downloads\ClocX - CHIP-Installer.exe"
sh=6779A561491CE52F9CC43320E5EA853D81BB73FA ft=1 fh=cb8e02879135beed vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Ismael\Downloads\FileZilla - CHIP-Installer.exe"
sh=09FAAC20B822AA899E557F6B98368A4436D505A1 ft=1 fh=3cdc818e89db3dc9 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Ismael\Downloads\PunkBuster - CHIP-Installer.exe"
sh=972123FAB4E1AD5DA6E929F9F5199CC404210F73 ft=1 fh=74261cc9fd8ceaa9 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Ismael\Downloads\Thunderbird - CHIP-Installer.exe"
sh=EE6DFA203D37416D90CB50021E77488628F42A7D ft=1 fh=74299985e87789d8 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Ismael\Downloads\VLC media player 64 Bit - CHIP-Installer.exe"
sh=3F4DF6552D391B76F2C9E91D09BEEF439017ACB8 ft=1 fh=c46837bf5a6fa1fa vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Ismael\AppData\Local\Temp\DMR\dmr_72.exe"
checkup.txt

Code:
Results of screen317's Security Check version 1.008 
  x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
Avira Antivirus   
Windows Defender 
 Antivirus up to date!  (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 Java 8 Update 31 
 Java version 32-bit out of Date!
 Adobe Flash Player        18.0.0.232 
 Adobe Reader XI 
 Mozilla Thunderbird 31.6.0 Thunderbird out of Date! 
 Google Chrome (44.0.2403.157)
 Google Chrome (45.0.2454.85)
````````Process Check: objlist.exe by Laurent```````` 
 Avira Antivir avgnt.exe
 Avira Antivir avguard.exe
 Avira Antivirus sched.exe 
 Avira Antivirus avshadow.exe 
 Avira Antivirus avcenter.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````

cosinus 07.09.2015 23:17
Thunderbird und Java updaten. Und zukünftig keine Downloads mehr von Chip.de!!!!

FRST-Fix

Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft!

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
C:\Users\Ismael\Downloads\ClocX - CHIP-Installer.exe
C:\Users\Ismael\Downloads\FileZilla - CHIP-Installer.exe
C:\Users\Ismael\Downloads\PunkBuster - CHIP-Installer.exe
C:\Users\Ismael\Downloads\Thunderbird - CHIP-Installer.exe
C:\Users\Ismael\Downloads\VLC media player 64 Bit - CHIP-Installer.exe
EmptyTemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Alle Zeitangaben in WEZ +1. Es ist jetzt 14:22 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131