| |
| |||||||
Log-Analyse und Auswertung: SystembereinigungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
28.10.2016, 20:15
| #1 |
 |  Systembereinigung Hallo, seit einiger Zeit kann ich ein paar Dateien nicht löschen, die ich mal runtergeladen habe. Es steht immer dran, die Datei ist in System geöffnet, nicht löschbar. Was kann ich da machen? Ansonsten würde ich gerne mal mein System komplett "reinigen" Wie gehe ich da vor? Danke schonmal für die Hilfe! so hier noch meine Logfiles vom FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-10-2016
durchgeführt von Michael Neumann (Administrator) auf PC (28-10-2016 20:42:08)
Gestartet von C:\Users\Michael Neumann\Downloads
Geladene Profile: Michael Neumann (Verfügbare Profile: Michael Neumann)
Platform: Windows 7 Professional N Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 10 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(The Eraser Project) C:\Program Files\Eraser\Eraser.exe
(BitTorrent Inc.) C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe
() C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\MagentaCloud.App.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(InstallShield Software Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase EWA\tbmux32.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase EPC\tbmux32.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase WIS\tbmux32.exe
(Alexandria Software Consulting) C:\Program Files (x86)\EWA net\server\bin\tomcat.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(MKS Software Inc.) C:\Windows\System32\nutsrv4.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(BitTorrent Inc.) C:\Users\Michael Neumann\AppData\Roaming\uTorrent\updates\3.4.9_42606\utorrentie.exe
(BitTorrent Inc.) C:\Users\Michael Neumann\AppData\Roaming\uTorrent\updates\3.4.9_42606\utorrentie.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase EWA\tbkern32.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase EWA\tbkern32.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase EPC\tbkern32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13423688 2013-02-26] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2757424 2015-11-16] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1828160 2015-11-16] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-09-09] (Apple Inc.)
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1085512 2015-01-12] (The Eraser Project)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291128 2013-03-06] (Intel Corporation)
HKLM-x32\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-16] (InstallShield Software Corporation)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1284680 2014-03-25] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25424008 2016-10-24] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1209344 2016-07-10] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-05-31] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-281873479-767526044-2589904799-1000\...\Run: [uTorrent] => C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe [1977536 2016-10-12] (BitTorrent Inc.)
HKU\S-1-5-21-281873479-767526044-2589904799-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4299968 2016-08-29] (Disc Soft Ltd)
HKU\S-1-5-21-281873479-767526044-2589904799-1000\...\MountPoints2: G - G:\AUTORUN.EXE
HKU\S-1-5-21-281873479-767526044-2589904799-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [ MagentaOverlayIcon1] -> {70fd746c-367b-3030-8aa3-9170bba946b5} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MagentaOverlayIcon2] -> {975d4594-41a0-3903-a44e-ce7109705240} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MagentaOverlayIcon3] -> {4e36001f-6b82-3b12-8348-64d682964de9} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MagentaOverlayIcon4] -> {47418e6f-8c1d-3223-bef9-2ba1bc655f28} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
Startup: C:\Users\Michael Neumann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagentaCLOUD.lnk [2016-10-21]
ShortcutTarget: MagentaCLOUD.lnk -> C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\MagentaCloud.App.exe ()
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{31EAC9C4-33F6-487D-9974-A221A66C6667}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{80EDD751-B7A9-4F29-8ABA-3BC5F4E53FCF}: [DhcpNameServer] 172.20.10.1
ManualProxies:
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-281873479-767526044-2589904799-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
SearchScopes: HKU\S-1-5-21-281873479-767526044-2589904799-1000 -> DefaultScope {8BD59BC6-6B70-4860-A1EA-E9D69C187D0D} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-281873479-767526044-2589904799-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL =
SearchScopes: HKU\S-1-5-21-281873479-767526044-2589904799-1000 -> {8BD59BC6-6B70-4860-A1EA-E9D69C187D0D} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-281873479-767526044-2589904799-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\java\jre1.8.0_91\bin\ssv.dll [2016-04-26] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-26] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-21] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKU\S-1-5-21-281873479-767526044-2589904799-1000 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Michael Neumann\AppData\Roaming\Mozilla\Firefox\Profiles\6crjv80j.default [2016-10-27]
FF NewTab: Mozilla\Firefox\Profiles\6crjv80j.default -> www.google.de
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\6crjv80j.default -> Google Default
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\6crjv80j.default -> Bing
FF Homepage: Mozilla\Firefox\Profiles\6crjv80j.default -> about:home
FF Extension: (pdf shield) - C:\Users\Michael Neumann\AppData\Roaming\Mozilla\Firefox\Profiles\6crjv80j.default\Extensions\{141017b5-1eb1-4600-9f96-3238cb2c4f8c}.xpi [2015-12-18] [ist nicht signiert]
FF Extension: (Adblock Plus) - C:\Users\Michael Neumann\AppData\Roaming\Mozilla\Firefox\Profiles\6crjv80j.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-27]
FF SearchPlugin: C:\Users\Michael Neumann\AppData\Roaming\Mozilla\Firefox\Profiles\6crjv80j.default\searchplugins\google-default.xml [2015-07-03]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2016-10-26] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-26] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-05-31] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2016-10-26] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-08-13] (DivX, LLC)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-14] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-05-31] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default [2016-10-28]
CHR Extension: (Google Präsentationen) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-10]
CHR Extension: (Google Docs) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-10]
CHR Extension: (Google Drive) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (YouTube) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-23]
CHR Extension: (Google-Suche) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Google Tabellen) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-10]
CHR Extension: (Google Docs Offline) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Google Mail) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-10]
CHR Extension: (Chrome Media Router) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-28]
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-05-31] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-08-05] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-02] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-02] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [41576 2016-10-24] (Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
R2 EWA net DB Core; C:\Program Files (x86)\EWA net\database\TransBase EWA\tbmux32.exe [326616 2011-03-09] (Transaction Software, D 81829 Munich) [Datei ist nicht signiert]
R2 EWA net DB EPC; C:\Program Files (x86)\EWA net\database\TransBase EPC\tbmux32.exe [417792 2007-11-27] (Transaction Software, D 81829 Munich) [Datei ist nicht signiert]
R2 EWA net DB WIS; C:\Program Files (x86)\EWA net\database\TransBase WIS\tbmux32.exe [326616 2011-03-09] (Transaction Software, D 81829 Munich) [Datei ist nicht signiert]
R2 EWA net Server; C:\Program Files (x86)\EWA net\server\bin\tomcat.exe [65536 2003-07-31] (Alexandria Software Consulting) [Datei ist nicht signiert]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156400 2015-11-16] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.376\McCHSvc.exe [327944 2016-07-19] (McAfee, Inc.)
R2 NuTCRACKERService; C:\Windows\system32\nutsrv4.exe [574776 2012-10-12] (MKS Software Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-11-16] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8133424 2015-11-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5915440 2015-11-16] (NVIDIA Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2015-11-18] (SolidWorks) [Datei ist nicht signiert]
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2014-05-30] (Microsoft Corporation) [Datei ist nicht signiert]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 CoordinatorServiceHost; "C:\Program Files\SolidWorks Corp\SolidWorks (2)\swScheduler\DTSCoordinatorService.exe" [X]
S2 ewserver; "C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe" [X]
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
S2 MSSQL$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sTEW_SQLEXPRESS [X]
S2 RemoteSolverDispatcher; "C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe" "SOFTWARE\SRAC\COSMOS_FloWorks 2016" [X]
S4 SQLAgent$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE" -i TEW_SQLEXPRESS [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] ()
S1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-09-24] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-09-24] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2014-01-27] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2014-01-27] (Symantec Corporation) [Datei ist nicht signiert]
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
R1 LUMDriver; C:\Windows\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19760 2015-11-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-11-16] (NVIDIA Corporation)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation)
S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2014-01-29] (Symantec Corporation)
U5 UnlockerDriver5; C:\Users\Michael Neumann\Downloads\x64\UnlockerDriver5.sys [12352 2010-07-01] ()
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21072 2013-03-27] ()
S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52592 2014-03-12] (Cisco Systems, Inc.)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-10-28 20:36 - 2016-10-28 09:30 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Vorrichtung für das Eintauchen von Elektronik
2016-10-28 20:06 - 2016-10-28 20:06 - 00088438 _____ C:\Users\Michael Neumann\Desktop\FRST.txt
2016-10-28 19:38 - 2016-10-28 19:40 - 00000000 ____D C:\AdwCleaner
2016-10-28 19:38 - 2016-10-28 19:38 - 03910208 _____ C:\Users\Michael Neumann\Downloads\adwcleaner_6.030.exe
2016-10-28 18:35 - 2016-10-28 20:42 - 00034219 _____ C:\Users\Michael Neumann\Downloads\FRST.txt
2016-10-28 18:34 - 2016-10-28 20:42 - 00000000 ____D C:\FRST
2016-10-28 18:34 - 2016-10-28 18:34 - 02407936 _____ (Farbar) C:\Users\Michael Neumann\Downloads\FRST64.exe
2016-10-28 17:42 - 2016-10-28 17:42 - 00888497 _____ C:\Users\Michael Neumann\Downloads\Vorrichtung für das Eintauchen von Elektronik.zip
2016-10-27 19:55 - 2016-10-27 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-10-26 18:51 - 2016-10-26 18:51 - 00095007 _____ C:\Users\Michael Neumann\Desktop\Amazon.pdf
2016-10-26 18:01 - 2016-10-26 18:01 - 01250998 _____ C:\Users\Michael Neumann\Downloads\Renner-Einfuehrung PP KJP VL WS 2016_17_skript.pdf
2016-10-26 17:41 - 2016-10-26 17:41 - 03138887 _____ C:\Users\Michael Neumann\Downloads\Folien 01 WS 2016-17 Einfuehrung.pdf
2016-10-26 17:41 - 2016-10-26 17:41 - 00032121 _____ C:\Users\Michael Neumann\Downloads\Hinweis Klausurtermine.pdf
2016-10-26 17:40 - 2016-10-26 17:40 - 00030683 _____ C:\Users\Michael Neumann\Downloads\Hinweis Folien.pdf
2016-10-26 17:24 - 2016-10-26 17:24 - 00404980 _____ C:\Users\Michael Neumann\Downloads\Theorie-Praxis-Verhaeltnis in paedagogischen Handlungsfeldern-1.pdf
2016-10-26 17:19 - 2016-10-26 17:19 - 00109507 _____ C:\Users\Michael Neumann\Downloads\WS 2016_VL_M10_01.pdf
2016-10-26 16:57 - 2016-10-26 16:57 - 12783616 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_7_Depression_WiSe_2016_17.ajf.ppt
2016-10-26 12:13 - 2016-10-26 12:13 - 05488320 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-10-24 19:36 - 2016-10-24 19:49 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Warcraft.The.Beginning.2016.German.DL.1080p.BluRay.x264-COiNCiDENCE
2016-10-24 18:53 - 2016-10-24 18:53 - 00009726 _____ C:\Users\Michael Neumann\Downloads\studiengangNeuLPfb6a5191-ed37-4a55-bfc0-4c1909946d2f.pdf
2016-10-24 15:06 - 2016-10-24 15:06 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2016-10-24 15:06 - 2016-10-24 15:06 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2016-10-24 15:06 - 2016-10-24 15:06 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2016-10-24 15:06 - 2016-10-24 15:06 - 00041576 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2016-10-24 06:44 - 2016-10-28 20:35 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-10-24 06:41 - 2016-10-24 06:41 - 12647936 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_6_Schizophrenien_II_WiSe_2016_17.ajf.ppt
2016-10-24 06:41 - 2016-10-24 06:41 - 08606720 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_4_illegale_Drogen_Verhaltenssuechte_WiSe_2016_17.ajf.ppt
2016-10-24 06:41 - 2016-10-24 06:41 - 06607360 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_5_Schizophrenien_I_WiSe_2016_17.ajf.ppt
2016-10-23 19:56 - 2016-10-23 19:56 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Eraser 6
2016-10-23 19:37 - 2016-10-23 20:53 - 00000000 ____D C:\Users\Michael Neumann\Downloads\relink.to - Command.and.Conquer.The.Ultimate.Collection.MULTi2 UNCUT-RAF - ID9d972d4389ffab4fd1bea63af938c4
2016-10-23 19:18 - 2016-10-23 19:18 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-10-23 19:17 - 2016-10-23 19:17 - 01474568 _____ C:\Users\Michael Neumann\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2016-10-23 19:11 - 2016-10-23 19:11 - 00001759 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eraser.lnk
2016-10-23 19:11 - 2016-10-23 19:11 - 00001747 _____ C:\Users\Public\Desktop\Eraser.lnk
2016-10-23 19:11 - 2016-10-23 19:11 - 00000000 ____D C:\Program Files\Eraser
2016-10-23 19:09 - 2016-10-23 19:09 - 01474568 _____ C:\Users\Michael Neumann\Downloads\Eraser - CHIP-Installer.exe
2016-10-23 16:51 - 2016-10-23 16:51 - 05916386 _____ C:\Users\Michael Neumann\Desktop\D2_Umdruck_20161018.pdf
2016-10-23 11:07 - 2016-10-28 20:28 - 00000000 ____D C:\Users\Michael Neumann\AppData\LocalLow\uTorrent
2016-10-22 22:33 - 2016-10-22 22:51 - 00000000 ____D C:\Users\Michael Neumann\Downloads\DSW164
2016-10-22 22:11 - 2016-10-22 22:20 - 00904027 _____ C:\FilExile_log.txt
2016-10-22 22:10 - 2016-10-22 22:20 - 00000000 ____D C:\Program Files (x86)\FilExile
2016-10-22 22:10 - 2016-10-22 22:10 - 00001091 _____ C:\Users\Michael Neumann\Desktop\FilExile.lnk
2016-10-22 22:10 - 2016-10-22 22:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\FilExile
2016-10-22 22:09 - 2016-10-22 22:09 - 01332963 _____ (FilExile Team ) C:\Users\Michael Neumann\Downloads\FilExilev2.00_Setup.exe
2016-10-22 22:03 - 2016-10-22 22:04 - 00000000 ____D C:\Users\Michael Neumann\Downloads\x64
2016-10-22 22:03 - 2016-10-22 22:03 - 00113964 _____ C:\Users\Michael Neumann\Downloads\unlocker1.9.0-portable (1).zip
2016-10-22 22:03 - 2010-07-06 22:09 - 00000000 ____D C:\Users\Michael Neumann\Downloads\x86
2016-10-22 22:03 - 2010-07-04 19:32 - 00001670 _____ C:\Users\Michael Neumann\Downloads\README.TXT
2016-10-22 22:02 - 2016-10-22 22:02 - 00113964 _____ C:\Users\Michael Neumann\Downloads\unlocker1.9.0-portable.zip
2016-10-22 21:22 - 2016-10-22 21:22 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Tempzxpsign7e298ef43d20fc0d
2016-10-22 21:22 - 2016-10-22 21:22 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Tempzxpsign5c518339017e0a82
2016-10-22 21:10 - 2016-10-22 21:10 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Tempzxpsignd6d0d978b157ff23
2016-10-22 21:10 - 2016-10-22 21:10 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Tempzxpsigna0322a2d5f286b41
2016-10-22 21:08 - 2016-10-22 21:08 - 00001056 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.5.lnk
2016-10-22 21:08 - 2016-10-22 21:08 - 00000000 ____D C:\Users\Michael Neumann\Documents\Adobe
2016-10-22 21:02 - 2016-10-22 21:02 - 00001221 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-10-22 21:02 - 2016-10-22 21:02 - 00001209 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-10-21 21:34 - 2016-10-21 21:34 - 11679373 _____ C:\Users\Michael Neumann\Downloads\3658005483_Messelek.pdf
2016-10-21 21:26 - 2016-10-28 20:29 - 00000000 ____D C:\Users\Michael Neumann\MagentaCLOUD
2016-10-21 21:24 - 2016-10-21 21:24 - 00000000 __SHD C:\Users\Michael Neumann\AppData\Roaming\wyUpdate AU
2016-10-21 21:24 - 2016-10-21 21:24 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\MagentaCLOUD
2016-10-21 21:23 - 2016-10-21 21:23 - 00002436 _____ C:\Users\Michael Neumann\Desktop\MagentaCLOUD.lnk
2016-10-21 21:23 - 2016-10-21 21:23 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\Telekom
2016-10-21 21:23 - 2016-10-21 21:23 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telekom
2016-10-21 21:23 - 2016-10-21 21:23 - 00000000 ____D C:\Program Files (x86)\Telekom
2016-10-21 21:21 - 2016-10-21 21:21 - 26708712 _____ (Deutsche Telekom AG) C:\Users\Michael Neumann\Downloads\MagentaCLOUD.exe
2016-10-21 21:05 - 2016-10-21 21:05 - 00645706 _____ C:\Users\Michael Neumann\Desktop\Corporate Pass.pdf
2016-10-21 20:40 - 2016-10-21 20:51 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Warcraft.The.Beginning.2016.German.DL.AC3.1080p.BluRay.x264-MOViEADDiCTS - filecrypt.cc
2016-10-21 20:32 - 2016-10-21 20:32 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\dvdcss
2016-10-21 20:23 - 2016-10-21 20:32 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Warcraft The Beginning DVD5
2016-10-21 20:01 - 2016-08-25 21:15 - 00000000 ____D C:\Users\Michael Neumann\Downloads\UL975
2016-10-21 20:00 - 2015-03-14 17:21 - 09843413 _____ C:\Users\Michael Neumann\Downloads\Elektrokonstruktion - Gestaltung, Schaltpläne und Engineering mit EPLAN (3. Auflage).pdf
2016-10-21 19:58 - 2016-10-21 19:58 - 08572642 _____ C:\Users\Michael Neumann\Downloads\Elektrokonstruktion.3.rar
2016-10-21 19:56 - 2016-10-21 19:58 - 525336576 _____ C:\Users\Michael Neumann\Downloads\UL975.part2.rar
2016-10-21 19:56 - 2016-10-21 19:58 - 525336576 _____ C:\Users\Michael Neumann\Downloads\UL975.part1.rar
2016-10-21 19:56 - 2016-10-21 19:57 - 379641400 _____ C:\Users\Michael Neumann\Downloads\UL975.part3.rar
2016-10-20 20:34 - 2016-09-10 13:46 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Warcraft.The.Beginning.German.2016.AC3.BDRip.x264-COiNCiDENCE
2016-10-20 20:20 - 2016-10-20 20:24 - 1047527424 _____ C:\Users\Michael Neumann\Downloads\coincidence-warcraft.the.beginning-sd.part1.rar
2016-10-20 20:20 - 2016-10-20 20:23 - 607708001 _____ C:\Users\Michael Neumann\Downloads\coincidence-warcraft.the.beginning-sd.part2.rar
2016-10-19 16:14 - 2016-10-19 16:14 - 00009657 _____ C:\Users\Michael Neumann\Downloads\studiengangNeuLPc79ffda8-f323-40a1-8ad0-2bce4adfff81.pdf
2016-10-19 16:14 - 2016-10-19 16:14 - 00009657 _____ C:\Users\Michael Neumann\Downloads\studiengangNeuLP30a725bb-d79f-439a-9271-d0a31bcddca2.pdf
2016-10-17 19:17 - 2016-10-17 19:17 - 00751532 _____ C:\Users\Michael Neumann\Downloads\Präsentation nb Kolloquium Okt 2016_Kita-Behinderung_Müller.pdf
2016-10-17 19:10 - 2016-10-17 19:10 - 92123136 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_1_Einfuehrung in die Psychiatrie_WiSe_2016.ppt
2016-10-17 19:10 - 2016-10-17 19:10 - 15532544 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_2_Demenz_Delir_WiSe_2016_17.ajf.ppt
2016-10-17 19:10 - 2016-10-17 19:10 - 03117056 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_3_Alkohol_WiSe_2016_17.ajf.ppt
2016-10-16 15:24 - 2016-10-16 15:25 - 00009603 _____ C:\Users\Michael Neumann\Downloads\studiengangNeuLPbf66c9d7-9c6b-4326-abcb-664a283a6c8d.pdf
2016-10-15 15:50 - 2016-10-15 15:50 - 00001122 _____ C:\Users\Michael Neumann\Desktop\EVEREST Ultimate Edition.lnk
2016-10-15 15:47 - 2016-10-15 15:47 - 01474568 _____ C:\Users\Michael Neumann\Downloads\Everest Ultimate Edition - CHIP-Installer.exe
2016-10-13 18:40 - 2016-10-13 18:44 - 02140101 _____ C:\Users\Michael Neumann\Documents\IMG_20161013_0001.pdf
2016-10-12 18:25 - 2016-09-30 17:37 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-12 18:25 - 2016-09-30 17:20 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-10-12 18:25 - 2016-09-30 17:20 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-10-12 18:25 - 2016-09-15 17:30 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-12 18:25 - 2016-09-15 17:30 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-10-12 18:25 - 2016-09-15 17:15 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-12 18:25 - 2016-09-15 17:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-10-12 18:25 - 2016-09-12 23:13 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-10-12 18:25 - 2016-09-12 23:13 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-10-12 18:25 - 2016-09-12 23:08 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-10-12 18:25 - 2016-09-12 22:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-10-12 18:25 - 2016-09-12 22:37 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-12 18:25 - 2016-09-12 22:32 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-10-12 18:25 - 2016-09-12 22:32 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-10-12 18:25 - 2016-09-12 22:32 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-10-12 18:25 - 2016-09-12 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-10-12 18:25 - 2016-09-12 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-10-12 18:25 - 2016-09-12 22:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-10-12 18:25 - 2016-09-12 21:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-12 18:25 - 2016-09-12 20:43 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-12 18:25 - 2016-09-12 20:43 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-12 18:25 - 2016-09-10 18:19 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-12 18:25 - 2016-09-10 17:53 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-12 18:25 - 2016-09-09 20:29 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-12 18:25 - 2016-09-09 20:26 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-12 18:25 - 2016-09-09 20:23 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:01 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-10-12 18:25 - 2016-09-09 20:00 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-10-12 18:25 - 2016-09-09 20:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-10-12 18:25 - 2016-09-09 20:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-10-12 18:25 - 2016-09-09 20:00 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:51 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-10-12 18:25 - 2016-09-09 19:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-10-12 18:25 - 2016-09-09 19:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-10-12 18:25 - 2016-09-09 19:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-10-12 18:25 - 2016-09-09 19:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-10-12 18:25 - 2016-09-09 19:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-10-12 18:25 - 2016-09-09 19:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-10-12 18:25 - 2016-09-09 19:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-10-12 18:25 - 2016-09-09 19:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-10-12 18:25 - 2016-09-09 19:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-10-12 18:25 - 2016-09-09 19:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-12 18:25 - 2016-09-08 22:34 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-10-12 18:25 - 2016-09-08 22:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-10-12 18:25 - 2016-09-08 22:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-10-12 18:25 - 2016-09-08 22:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-10-12 18:25 - 2016-09-08 16:55 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-12 18:25 - 2016-09-08 16:55 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-12 18:25 - 2016-08-12 19:02 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-12 18:25 - 2016-08-12 19:02 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-12 18:25 - 2016-08-12 19:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-10-12 18:25 - 2016-08-12 19:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-10-12 18:25 - 2016-08-12 19:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-10-12 18:25 - 2016-08-12 18:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-12 18:25 - 2016-08-12 18:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-12 18:25 - 2016-08-12 18:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-10-12 18:25 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-10-12 18:25 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-10-12 18:25 - 2016-08-12 18:26 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 02023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-10-12 18:25 - 2016-08-06 17:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-10-12 18:25 - 2016-08-06 17:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-10-12 18:25 - 2016-08-06 17:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-10-12 18:25 - 2016-08-06 17:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-10-12 18:25 - 2016-08-06 17:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2016-10-12 18:25 - 2016-08-06 17:01 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-10-12 18:25 - 2016-08-06 17:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-10-12 18:25 - 2016-08-06 16:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-10-12 18:25 - 2016-08-06 16:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-10-12 18:25 - 2016-08-06 16:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-10-12 18:25 - 2016-06-14 19:21 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-10-12 18:25 - 2016-06-14 19:16 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-10-12 18:25 - 2016-06-14 19:11 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-10-12 18:25 - 2016-06-14 17:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-10-12 18:25 - 2016-06-14 17:15 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-10-12 18:25 - 2016-06-14 17:15 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-10-12 18:25 - 2016-06-14 17:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-10-12 18:25 - 2016-06-14 17:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-10-12 18:25 - 2016-06-14 17:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-10-12 18:25 - 2016-06-14 17:00 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-10-12 18:25 - 2016-06-14 17:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-10-12 18:24 - 2016-09-12 23:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-12 18:24 - 2016-09-12 23:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-12 18:24 - 2016-08-16 22:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-10-12 18:23 - 2016-08-29 17:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-12 18:23 - 2016-08-29 17:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-12 18:23 - 2016-08-29 17:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-10-12 18:23 - 2016-08-29 17:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-12 18:23 - 2016-08-29 17:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-12 18:23 - 2016-08-29 17:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-10-12 18:23 - 2016-08-29 17:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-12 18:23 - 2016-08-29 16:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-10-12 18:23 - 2016-07-22 16:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-10-12 18:23 - 2016-07-22 16:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-10-07 21:19 - 2016-10-07 21:34 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Schrank für die Station Antennenprüfung
2016-10-07 21:19 - 2016-10-07 21:19 - 05268434 _____ C:\Users\Michael Neumann\Downloads\Schrank für die Station Antennenprüfung.zip
2016-10-02 18:04 - 2016-10-02 18:04 - 00148734 _____ C:\Users\Michael Neumann\Downloads\Forum_2_029913_Biegen_2.SLDPRT
2016-10-02 17:32 - 2016-10-02 17:32 - 00000000 ____D C:\Program Files\Bonjour
2016-10-02 17:32 - 2016-10-02 17:32 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-10-02 17:05 - 2016-10-02 17:05 - 00027649 _____ C:\Users\Michael Neumann\Downloads\[rutracker.org].t5131411.torrent
2016-10-02 16:58 - 2016-10-02 16:58 - 00003220 _____ C:\Windows\System32\Tasks\{E0092505-F31F-455C-8BF9-97B3E5C74058}
2016-10-02 16:21 - 2016-10-02 16:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-10-02 16:21 - 2016-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-10-02 15:55 - 2016-10-02 15:55 - 00054843 _____ C:\Users\Michael Neumann\Downloads\[rutracker.org].t5208698.torrent
2016-10-02 15:55 - 2016-10-02 15:55 - 00054843 _____ C:\Users\Michael Neumann\Downloads\[rutracker.org].t5208698 (1).torrent
2016-10-02 15:47 - 2016-10-02 15:47 - 00155232 _____ C:\Users\Michael Neumann\Downloads\Forum_2_029913_Biegen.SLDPRT
2016-10-02 13:37 - 2016-10-02 13:37 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-10-02 13:37 - 2016-10-02 13:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-10-02 13:37 - 2016-10-02 13:37 - 00000000 ____D C:\Program Files\iTunes
2016-10-02 13:37 - 2016-10-02 13:37 - 00000000 ____D C:\Program Files\iPod
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-10-28 20:39 - 2014-09-29 14:10 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\uTorrent
2016-10-28 20:37 - 2009-07-14 06:50 - 00019920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-28 20:37 - 2009-07-14 06:50 - 00019920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-28 20:31 - 2016-04-26 13:13 - 00000510 _____ C:\Windows\Tasks\MATLAB R2016a Startup Accelerator.job
2016-10-28 20:30 - 2016-04-16 18:37 - 00000000 ___RD C:\Users\Michael Neumann\Dropbox
2016-10-28 20:28 - 2016-04-02 13:12 - 00001228 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-10-28 20:28 - 2015-07-10 11:58 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-28 20:28 - 2014-01-27 21:26 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-28 20:28 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-28 20:18 - 2016-04-02 13:13 - 00001232 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-10-28 20:13 - 2014-04-08 21:27 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-10-28 19:55 - 2014-09-03 10:21 - 00100604 _____ C:\Users\Michael Neumann\Downloads\Addition.txt
2016-10-28 19:50 - 2015-07-10 11:58 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-28 19:40 - 2015-07-02 20:37 - 00000000 ____D C:\ProgramData\Lavasoft
2016-10-28 19:40 - 2015-07-02 19:46 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2016-10-28 18:43 - 2014-04-09 15:56 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-28 09:52 - 2014-06-25 20:34 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Adobe
2016-10-27 19:56 - 2016-04-02 13:12 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-10-27 17:56 - 2015-07-10 11:58 - 00002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-26 17:29 - 2010-11-21 05:27 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-10-26 12:13 - 2014-04-08 21:27 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-10-26 12:13 - 2014-04-08 21:27 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-26 12:13 - 2014-04-08 21:27 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-10-26 12:13 - 2014-04-08 21:27 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-10-26 12:13 - 2014-04-08 21:27 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-24 20:49 - 2016-02-21 18:00 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\JDownloader 2.0
2016-10-24 20:44 - 2016-08-05 17:32 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Battle.net
2016-10-24 20:03 - 2014-02-07 15:17 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\vlc
2016-10-24 18:54 - 2014-01-27 21:45 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-10-23 19:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2016-10-23 19:18 - 2014-04-09 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-10-23 19:18 - 2014-04-09 15:56 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-10-23 15:44 - 2015-04-01 13:41 - 00000000 ____D C:\Program Files\Heroes of the Storm
2016-10-22 22:20 - 2016-04-15 18:24 - 00000000 ____D C:\Program Files\SOLIDWORKS Corp
2016-10-22 22:07 - 2014-02-03 23:18 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\CrashDumps
2016-10-22 21:50 - 2014-01-27 19:23 - 00000000 ____D C:\Users\Michael Neumann
2016-10-22 21:34 - 2016-08-13 18:43 - 00262144 _____ C:\Users\Public\SWInstallReg.swdat
2016-10-22 21:23 - 2014-02-19 13:02 - 00000000 ____D C:\ProgramData\Adobe
2016-10-22 21:23 - 2014-01-29 16:15 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\Adobe
2016-10-22 21:18 - 2015-12-25 20:20 - 00000000 ____D C:\Users\Michael Neumann\Documents\SolidWorks Downloads
2016-10-22 21:12 - 2015-05-25 13:57 - 00000000 ____D C:\Program Files\Adobe
2016-10-22 21:12 - 2015-05-25 13:54 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-10-22 21:10 - 2015-05-25 13:57 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-10-22 21:02 - 2015-04-22 17:14 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-22 20:57 - 2014-02-19 13:02 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-10-22 10:58 - 2014-01-27 21:49 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2016-10-19 16:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-10-15 15:50 - 2015-12-27 22:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2016-10-15 15:50 - 2015-12-27 22:58 - 00000000 ____D C:\Program Files (x86)\Lavalys
2016-10-15 13:05 - 2015-11-18 11:44 - 00000000 ____D C:\Program Files\Common Files\SOLIDWORKS Shared
2016-10-13 18:35 - 2014-12-23 16:26 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-10-13 18:34 - 2016-05-28 20:25 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-13 18:25 - 2011-04-12 10:14 - 00799598 _____ C:\Windows\system32\perfh007.dat
2016-10-13 18:25 - 2011-04-12 10:14 - 00190524 _____ C:\Windows\system32\perfc007.dat
2016-10-13 18:25 - 2009-07-14 07:12 - 01908908 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-13 18:25 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-10-13 18:19 - 2009-07-14 06:50 - 00484416 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-13 18:15 - 2014-12-27 05:18 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-13 18:15 - 2014-12-27 05:18 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-13 18:15 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-10-13 18:15 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism
2016-10-12 19:26 - 2015-02-23 11:19 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-10-12 19:25 - 2015-07-09 07:06 - 00000000 ____D C:\Windows\system32\MRT
2016-10-12 19:20 - 2015-07-09 07:06 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-12 18:16 - 2015-11-18 11:35 - 00000000 ____D C:\Windows\SolidWorks
2016-10-12 18:11 - 2016-04-14 17:28 - 00000000 ____D C:\ProgramData\COSMOS Applications
2016-10-11 12:48 - 2009-07-14 04:34 - 00000269 _____ C:\Windows\win.ini
2016-10-02 21:00 - 2016-04-26 19:42 - 00000000 ____D C:\Program Files\PTC
2016-10-02 20:46 - 2016-08-31 12:57 - 00001034 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2016-10-02 20:46 - 2016-08-31 12:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-10-02 16:59 - 2014-01-27 20:49 - 00129048 _____ C:\Users\Michael Neumann\AppData\Local\GDIPFONTCACHEV1.DAT
2016-10-02 13:37 - 2015-08-17 20:20 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-10-01 09:21 - 2016-04-02 13:12 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Dropbox
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-04-26 12:48 - 2016-02-01 15:32 - 0084246 _____ () C:\Program Files\license_agreement.txt
2016-04-26 13:03 - 2015-02-03 15:40 - 0005199 _____ () C:\Program Files\MCR_license.txt
2016-04-26 12:48 - 2016-01-13 23:22 - 0010114 _____ () C:\Program Files\patents.txt
2016-04-26 12:48 - 2013-12-28 03:08 - 0000245 _____ () C:\Program Files\trademarks.txt
2014-02-08 20:11 - 2014-02-15 20:24 - 0000000 _____ () C:\Users\Michael Neumann\AppData\Roaming\bitlord_log.txt
2010-10-22 10:14 - 2010-10-22 10:14 - 0000870 _____ () C:\Users\Michael Neumann\AppData\Roaming\smallwindows.cfg
2015-05-30 18:28 - 2015-05-30 18:28 - 0000862 _____ () C:\Users\Michael Neumann\AppData\Local\recently-used.xbel
2016-08-27 18:37 - 2016-08-27 18:37 - 0000017 _____ () C:\Users\Michael Neumann\AppData\Local\resmon.resmoncfg
2015-04-23 09:10 - 2015-04-23 09:10 - 0000032 _____ () C:\ProgramData\Temp.log
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Michael Neumann\ewanapi.exe
C:\Users\Michael Neumann\hpwin32.dll
C:\Users\Michael Neumann\hpwin64.dll
C:\Users\Michael Neumann\wis.exe
C:\Users\Michael Neumann\wisapi.exe
Einige Dateien in TEMP:
====================
C:\Users\Michael Neumann\AppData\Local\Temp\DTLiteInstaller.exe
C:\Users\Michael Neumann\AppData\Local\Temp\libeay32.dll
C:\Users\Michael Neumann\AppData\Local\Temp\msvcr100.dll
C:\Users\Michael Neumann\AppData\Local\Temp\msvcr120.dll
C:\Users\Michael Neumann\AppData\Local\Temp\ose00001.exe
C:\Users\Michael Neumann\AppData\Local\Temp\pimuninstall.exe
C:\Users\Michael Neumann\AppData\Local\Temp\proxy_vole2129198776930472743.dll
C:\Users\Michael Neumann\AppData\Local\Temp\proxy_vole4140280378126413756.dll
C:\Users\Michael Neumann\AppData\Local\Temp\proxy_vole8147574381217899982.dll
C:\Users\Michael Neumann\AppData\Local\Temp\sqlite3.dll
C:\Users\Michael Neumann\AppData\Local\Temp\VSUSetup.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-10-26 20:16
==================== Ende von FRST.txt ============================
|
|
28.10.2016, 20:16
| #2 |
| | Systembereinigung und die
__________________Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26-10-2016
durchgeführt von Michael Neumann (28-10-2016 20:43:09)
Gestartet von C:\Users\Michael Neumann\Downloads
Windows 7 Professional N Service Pack 1 (X64) (2014-01-27 17:23:47)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-281873479-767526044-2589904799-500 - Administrator - Disabled)
Gast (S-1-5-21-281873479-767526044-2589904799-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-281873479-767526044-2589904799-1002 - Limited - Enabled)
Michael Neumann (S-1-5-21-281873479-767526044-2589904799-1000 - Administrator - Enabled) => C:\Users\Michael Neumann
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
µTorrent (HKU\S-1-5-21-281873479-767526044-2589904799-1000\...\uTorrent) (Version: 3.4.9.42606 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.020.20039 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.270 - Adobe Systems Incorporated)
Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015.5 (HKLM-x32\...\PHSP_17_0_1) (Version: 17.0.1 - Adobe Systems Incorporated)
Apple Application Support (32-Bit) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
calibre 64bit (HKLM\...\{2E0DEF55-D1D3-493C-8673-D4B30F12B9CE}) (Version: 2.51.0 - Kovid Goyal)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG3500 series Benutzerregistrierung (HKLM-x32\...\Canon MG3500 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG3500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series) (Version: 1.01 - Canon Inc.)
Canon MG3500 series On-screen Manual (HKLM-x32\...\Canon MG3500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.4.1 - Canon Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.3.01095 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 4.3.01095 - Cisco Systems, Inc.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd)
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.80 - DivX, LLC)
Document_Installer (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 13.4.21 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.35.1 - Dropbox, Inc.) Hidden
Eraser 6.2.0.2962 (HKLM\...\{C6E287F1-2E47-45F0-BB51-94F815CFFB48}) (Version: 6.2.2962 - The Eraser Project)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
EWA_net_Admin (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
EWA_net_Client_Applications (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
EWA_net_Core (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
EWA_net_EPC (x32 Version: 1.00.0000 - Daimler) Hidden
EWA_net_Server (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
EWA_net_WIS (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
EWA_net_WIS_CaseOnline_Importer (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
FilExile (HKLM-x32\...\{1310229C-E62A-4F05-87DB-13979A5D2EFC}_is1) (Version: 2.00 - Bryan Carey)
GDR 4213 für SQL Server*2014 (KB3070446) (64-bit) (HKLM\...\KB3070446) (Version: 12.1.4213.0 - Microsoft Corporation)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hotfix 4459 für SQL Server*2014 (KB3162659) (64-bit) (HKLM\...\KB3162659) (Version: 12.1.4459.0 - Microsoft Corporation)
IBM SPSS Statistics 22 (HKLM\...\{104875A1-D083-4A34-BC4F-3F635B7F8EF7}) (Version: 22.0.0.0 - IBM Corp)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3071 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.100 - Intel Corporation)
ISO to USB (HKLM-x32\...\{D08A30AC-A663-4EA8-8D81-B98E17F19F1C}_is1) (Version: - isotousb.com)
iTunes (HKLM\...\{9946A4F7-E0FD-4A33-82D1-06CBFFBBB9F9}) (Version: 12.5.1.21 - Apple Inc.)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java SE Development Kit 8 Update 91 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180910}) (Version: 8.0.910.14 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
MagentaCLOUD Software (HKLM-x32\...\{D14275B4-2DBB-4F22-BDE4-1D94297DD16A}) (Version: 5.0.0.0 - Deutsche Telekom AG)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MATLAB R2016a (HKLM\...\Matlab R2016a) (Version: 9.0 - MathWorks)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.376.2 - McAfee, Inc.)
Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{980C484A-DF30-42BE-A27E-38A0038F0A97}) (Version: 12.1.4459.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{7F0B9DC8-9D2C-4BE1-BCB1-EECFFFA79B98}) (Version: 12.1.4459.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
MKS Platform Components 9.x (HKLM\...\{30276636-0000-0905-9ABB-000BDB5CF35D}) (Version: 9.5.0000 - Mortice Kern Systems)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.4 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.1 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 359.00 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Grafiktreiber 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.00 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
ON_OFF Charge 2 B13.0403.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B13.0403.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
ON_OFF Charge B13.0403.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
PTC Quality Agent (HKLM-x32\...\{57E7D63A-D1BA-4F64-A202-0E5FC6F934CA}) (Version: 2.0.0.0 - PTC)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6849 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.1 - VS Revo Group, Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Secure Download Manager (HKLM-x32\...\{E040B65B-8683-4228-8C33-D44A141E40EA}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SOLIDWORKS 2015 x64 Edition SP04 (Version: 23.140.56 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2015 x64 German Resources (Version: 23.140.56 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS 2016 x64 Edition SP03 (Version: 24.130.57 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2016 x64 German Resources (Version: 24.130.57 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Composer Player 2015 SP04 x64 Edition (Version: 23.40.56 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2015 x64 Edition SP04 (Version: 15.4.0012 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2016 x64 Edition SP03 (Version: 16.3.0030 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Electrical 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Explorer 2015 SP04 x64 Edition (Version: 23.40.56 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Flow Simulation 2016 SP03 x64 Edition (Version: 24.30.58 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Plastics 2016 SP03 x64 Edition (Version: 24.30.57 - Dassault Systemes SolidWorks Corp) Hidden
SopCast 3.8.3 (HKLM-x32\...\SopCast) (Version: 3.8.3 - www.sopcast.com)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
SQL Server 2014 Common Files (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.89 - TuneUp Software) Hidden
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version: - Microsoft)
VBA (3821b) (x32 Version: 6.01.00.1234 - Microsoft Corporation) Hidden
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Windows Mobile-Gerätecenter (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinToUSB Version 2.9 (HKLM\...\WinToUSB_is1) (Version: 2.9 - The EasyUEFI Development Team.)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-281873479-767526044-2589904799-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0464E076-7C2D-4D9D-9FD0-7470DF046FD7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-10] (Google Inc.)
Task: {09313367-3195-4B1E-A0C3-B620DCF5F8C0} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {14F7D72B-6259-4247-A707-B181D8809ECE} - System32\Tasks\{90779EFB-D7AC-4466-92B4-7D791211CA77} => pcalua.exe -a E:\setup.exe -d E:\
Task: {1765850B-E88B-4CF0-B688-14CE6B8D4FD2} - System32\Tasks\{7E08EB13-9408-4412-A57D-36980A4F420E} => pcalua.exe -a "C:\Program Files (x86)\HDvid-Codec V9.0\Uninstall.exe" -c /fromcontrolpanel=1
Task: {1818ADCF-8731-421B-86AD-1519C7A819FD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-04-02] (Dropbox, Inc.)
Task: {3A19688C-AA1C-44E7-9E29-5311D92E2E03} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {3ED6FF4F-FED1-4908-AAC3-76528FCDC97A} - System32\Tasks\{E0092505-F31F-455C-8BF9-97B3E5C74058} => pcalua.exe -a "C:\SOLIDWORKS Admin\SOLIDWORKS 2016 SP3.0\startswinstall.exe" -d "C:\SOLIDWORKS Admin\SOLIDWORKS 2016 SP3.0"
Task: {4739D27C-AD98-4B0E-BC12-7392DE44EC1D} - System32\Tasks\{2CA4935F-08A4-4EC1-A610-B8BD2B2E46A2} => pcalua.exe -a "C:\Users\Michael Neumann\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\57H5G1V9\jre-8u73-windows-i586.exe" -d "C:\Users\Michael Neumann\Desktop"
Task: {4D8E4017-DDC5-4B21-942D-36373E8DF2B2} - System32\Tasks\AdobeAAMUpdater-1.0-PC-Michael Neumann => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-05-05] (Adobe Systems Incorporated)
Task: {62A4C70E-4923-4932-BD83-3C4A27763403} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-04-02] (Dropbox, Inc.)
Task: {650786E9-0D94-47B5-A15F-7827DE3B1990} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe
Task: {6AAE439A-50C5-446F-9D32-616B71A4EF34} - System32\Tasks\MATLAB R2016a Startup Accelerator => C:\Program Files\bin\win64\MATLABStartupAccelerator.exe [2015-12-28] ()
Task: {74E18E0E-65DC-43A8-BC4D-855ED353117C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-10] (Google Inc.)
Task: {85ABDAD9-416B-4759-AB3F-4BB7BF538409} - System32\Tasks\{EFEEEA67-E489-49FC-9831-2C07E5FDE0DE} => pcalua.exe -a D:\setup.exe -d D:\
Task: {87DDEFD6-2E05-4EEF-B466-C664FA782BAC} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe
Task: {9736B19D-4951-417A-AA7F-EF63B78B6021} - System32\Tasks\{44A81C2F-84CA-4D6D-9832-4C8F268F5D8F} => C:\Users\Michael Neumann\Desktop\setup.exe
Task: {B088AF82-A00B-4FAD-9894-FDB8E28119BF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {CFEC6FC1-D9AA-489F-A71E-3256E75A0B31} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe
Task: {E82E6672-5D0C-4B19-BC6D-AFE4C41F6F72} - System32\Tasks\{3F662D63-DC82-4D60-8BE2-343AE19EDD32} => pcalua.exe -a "C:\Program Files (x86)\EWA net\install\manager\Setup.exe" -c /clean
Task: {F1F87033-3DC2-40D3-9143-3AF4C409F50F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {F7B3DA4F-00AB-4B56-851F-A81F9D114A78} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {FDB2942C-B82F-47E1-BFB8-197B10705364} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-26] (Adobe Systems Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MATLAB R2016a Startup Accelerator.job => C:\Program Files\bin\win64\MATLABStartupAccelerator.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-01-27 21:26 - 2015-11-14 08:06 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-05-22 19:33 - 2016-05-22 19:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-09-01 18:12 - 2016-09-01 18:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-09-01 18:12 - 2016-09-01 18:12 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-01-27 19:55 - 2013-03-19 15:25 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-05-31 16:35 - 2016-05-31 16:35 - 03576008 _____ () C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\MagentaCloud.App.exe
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2016-05-22 19:32 - 2016-05-22 19:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-07-10 13:37 - 2016-07-10 13:37 - 00073728 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2015-11-20 22:11 - 2015-11-16 05:35 - 00012080 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-05-31 16:34 - 2016-05-31 16:34 - 00327352 _____ () C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\CefSharp.dll
2016-05-31 16:35 - 2016-05-31 16:35 - 24985264 _____ () C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\libcef.dll
2016-05-31 16:34 - 2016-05-31 16:34 - 00206536 _____ () C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\CefSharp.WinForms.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2016-04-02 13:14 - 2016-10-10 20:19 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2016-10-27 19:55 - 2016-10-10 20:19 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2016-10-27 19:55 - 2016-10-10 20:19 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2016-10-27 19:55 - 2016-10-10 20:19 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2016-04-02 13:14 - 2016-10-10 20:19 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2016-04-02 13:14 - 2016-10-10 20:19 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2016-04-02 13:14 - 2016-10-10 20:19 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2016-04-02 13:14 - 2016-10-10 20:20 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-08-05 20:12 - 2016-10-24 15:16 - 00021312 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2016-10-27 19:55 - 2016-10-10 20:19 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2016-10-27 19:55 - 2016-10-10 20:21 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-08-05 20:12 - 2016-10-24 15:16 - 00025424 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-08-05 20:12 - 2016-10-10 20:20 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2016-10-27 19:55 - 2016-10-10 20:17 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2016-10-27 19:55 - 2016-10-24 15:15 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2016-10-27 19:55 - 2016-10-24 15:15 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2016-04-02 13:14 - 2016-10-10 20:19 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 01972528 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00133424 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00224056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2016-08-05 20:12 - 2016-10-24 15:16 - 00020288 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32._winffi_user32.pyd
2016-10-27 19:55 - 2016-10-10 20:24 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2016-10-27 19:55 - 2016-10-10 20:24 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2016-04-02 13:14 - 2016-10-10 20:21 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2016-08-05 20:12 - 2016-10-24 15:16 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00042808 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00168760 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2016-04-02 13:14 - 2016-10-10 20:25 - 00697304 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-02-23 12:15 - 2013-06-28 17:24 - 00163840 _____ () C:\Program Files (x86)\EWA net\apps\jre\private_jre\bin\server\jvm.dll
2016-05-31 04:46 - 2016-05-31 04:46 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-02-23 12:16 - 2011-03-09 11:48 - 00036864 ____N () C:\Program Files (x86)\EWA net\database\TransBase EWA\polycsr.dll
2015-02-23 12:16 - 2011-03-09 11:48 - 00166912 ____N () C:\Program Files (x86)\EWA net\database\TransBase EWA\libmcrypt.dll
2016-05-12 22:37 - 2016-05-12 22:37 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-05-12 22:37 - 2016-05-12 22:37 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-05-12 22:37 - 2016-05-12 22:37 - 00120832 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-05-12 22:37 - 2016-05-12 22:37 - 00126464 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-05-31 04:40 - 2016-05-31 04:40 - 00109760 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-05-12 22:37 - 2016-05-12 22:37 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2015-02-24 17:19 - 2005-03-21 16:54 - 00036864 ____N () C:\Program Files (x86)\EWA net\database\TransBase EPC\polycsr.dll
2015-02-24 17:19 - 2007-11-26 17:26 - 00166912 ____N () C:\Program Files (x86)\EWA net\database\TransBase EPC\libmcrypt.dll
2016-10-27 17:56 - 2016-10-20 10:47 - 01819240 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libglesv2.dll
2016-10-27 17:56 - 2016-10-20 10:47 - 00093288 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Michael Neumann\Desktop\Praktikumsbericht Michael Neumann.docx:com.dropbox.attributes [168]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-281873479-767526044-2589904799-1000\...\localhost -> localhost
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2016-08-13 14:57 - 00000857 ____A C:\Windows\system32\Drivers\etc\hosts
0.0.0.1 mssplus.mcafee.com
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-281873479-767526044-2589904799-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Michael Neumann\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\Services: COMSysApp => 3
MSCONFIG\Services: CoordinatorServiceHost => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^DeskDrive.lnk => C:\Windows\pss\DeskDrive.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Finderbar.lnk => C:\Windows\pss\Finderbar.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^maComfort.lnk => C:\Windows\pss\maComfort.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Refresh.lnk => C:\Windows\pss\Refresh.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^RocketDock.lnk => C:\Windows\pss\RocketDock.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SOLIDWORKS 2016 Fast Start.lnk => C:\Windows\pss\SOLIDWORKS 2016 Fast Start.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SOLIDWORKS Hintergrund-Downloader.lnk => C:\Windows\pss\SOLIDWORKS Hintergrund-Downloader.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^UberIcon.lnk => C:\Windows\pss\UberIcon.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinLaunch.lnk => C:\Windows\pss\WinLaunch.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Winroll.lnk => C:\Windows\pss\Winroll.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^xwidget.lnk => C:\Windows\pss\xwidget.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^YzShadow.lnk => C:\Windows\pss\YzShadow.lnk.CommonStartup
MSCONFIG\startupreg: NuTCSetupEnviron => C:\PROGRA~1\PTC\MKSTOO~1\bin\ncoeenv.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{43B2A889-42F4-4A54-8477-EE6C93301EBF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{DEC67625-BF62-41CD-8B02-56E349A4290B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{869B6BCB-B483-4CF4-BD42-E6B2C9E54FBB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3BA10A79-EEFD-40C1-9411-2385F70F6B95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{42A4850B-C9A5-491D-A625-977E7BC7E820}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7399B5C4-9129-40B5-BAB9-4FD880592635}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{22BE3DD7-4B06-4C5A-AE25-2E6370632ECA}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{B1C2AD7D-D28E-401D-A5D3-C1D1B294B81A}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A6E94342-DA67-4B32-A23D-6A927EDCB22B}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{29CCA88E-F7BA-4BED-AEEA-612BCF08A2B4}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{409F68AF-D776-4C11-8F68-3F19BED5ACD3}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{A6910282-1D69-4908-B62F-013977F5D551}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{493E860A-EB57-4476-8633-1E89C93ECA8B}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{A5C8D7DA-786F-4C77-AAC0-A0A95208E0D6}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{FD998466-A213-4A6F-9563-6EE72BC90600}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{625308EF-ABC3-411D-8554-B93650090687}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{11118A62-86D5-4EA1-8FE5-0178F73E9B64}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{58BA06CD-6AA8-4677-A4B8-A37B1E66A1BB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5493E70B-9835-4451-9507-9FAEC9ADDF59}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{54251114-11AE-45BE-918B-BFDADDDEEC7E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{74261EF9-DA26-4CF0-9359-902A06C5781D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{760BA47D-D66A-4784-8A2B-E56BB210FA58}C:\users\michael neumann\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\michael neumann\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{236D54A9-D8E0-4559-855A-35EA496F1A0E}C:\users\michael neumann\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\michael neumann\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{0F5F65A9-F4DD-4200-A26F-32B0AD1D920D}C:\users\michael neumann\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\michael neumann\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{3C9FC8EE-2D3D-4ECA-9EB8-835F232AA26F}C:\users\michael neumann\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\michael neumann\appdata\local\akamai\netsession_win.exe
FirewallRules: [{8C42E33D-E9B7-4B51-9243-7246D9318080}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{3A36EC4E-DDA4-450F-912A-CF3CE643B5E8}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{676F7D55-8802-4FF9-96D8-37D751373B54}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [{4CE0C25E-6F9D-4DA5-8F2E-7698CA31959F}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{694B8B1D-CA9A-4056-9342-39F9DC96F84B}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{A7AA7DDA-83B0-47BB-9404-C53D1630A1FB}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe
FirewallRules: [{8B2E672C-B535-4334-889C-D65B7ECA71DF}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe
FirewallRules: [{46A4F262-D5F7-4717-9A44-369558864ECA}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe
FirewallRules: [{21024876-0192-43D5-839B-1037C9529980}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe
FirewallRules: [TCP Query User{D127CD0A-9C15-4039-9628-4A99B4AADF34}C:\program files (x86)\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\tera\tera-launcher.exe
FirewallRules: [UDP Query User{7F597633-001A-444A-934F-7207079F24E0}C:\program files (x86)\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\tera\tera-launcher.exe
FirewallRules: [{6006F92E-5EA1-4159-B7DB-0B1A4196EF5A}] => (Block) C:\Program Files (x86)\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [TCP Query User{5798F4AF-8D1B-45F0-A5A8-AFEAAFC23C38}C:\program files (x86)\bitlord 2\bitlord files\bitlord.exe] => (Allow) C:\program files (x86)\bitlord 2\bitlord files\bitlord.exe
FirewallRules: [UDP Query User{20CF9CE6-725D-4AB5-98F9-CC330962AAA8}C:\program files (x86)\bitlord 2\bitlord files\bitlord.exe] => (Allow) C:\program files (x86)\bitlord 2\bitlord files\bitlord.exe
FirewallRules: [{717897BA-CC83-469C-9019-01776E8F5F44}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{AF330B1E-4F4A-444E-AF72-3A3CC25711FF}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{24765642-6A9E-4B31-9B77-3EA83730E96E}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{F7EB2D12-93F2-42DE-871E-1962D66568DA}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{1EB8916C-B2DB-49B4-B969-EB4EA9234755}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{115F08F2-26B2-422E-896F-6651D04BC376}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{15B10262-27A3-447E-BB75-D2431C8BF035}] => (Allow) C:\Program Files (x86)\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [{A78E7BFF-CB72-49BD-875F-3269755D0930}] => (Allow) C:\Program Files (x86)\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [{154AFBDD-77BE-4793-B281-25699392139A}] => (Allow) C:\Program Files (x86)\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [{D2541C4F-FBB5-4671-B3E9-083FDC9E1E77}] => (Allow) C:\Program Files (x86)\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [TCP Query User{FE7D7C6C-33F3-415B-B5C7-F577A62F7DBD}C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{AA94699C-1BFB-47C3-B215-ED5D27ACD378}C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe
FirewallRules: [TCP Query User{14B18570-FD39-450A-8874-FCFAB07028F4}C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe] => (Block) C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{2CF66D2E-0ABB-4B61-BD38-1AA100E01FC0}C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe] => (Block) C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe
FirewallRules: [TCP Query User{3CA11BED-557B-4CE4-A0AB-6FC4608D80FD}C:\program files\dassault systemes\b20\win_b64\code\bin\orbixd.exe] => (Allow) C:\program files\dassault systemes\b20\win_b64\code\bin\orbixd.exe
FirewallRules: [UDP Query User{8ED397BE-6203-4871-A43C-7A2BE1FA7536}C:\program files\dassault systemes\b20\win_b64\code\bin\orbixd.exe] => (Allow) C:\program files\dassault systemes\b20\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{631DEA02-A859-4AF2-97A1-0F7D7FBF93C7}C:\program files\dassault systemes\b21\win_b64\code\bin\orbixd.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\orbixd.exe
FirewallRules: [UDP Query User{916486C6-9E18-4184-963C-C55BC8691EB2}C:\program files\dassault systemes\b21\win_b64\code\bin\orbixd.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{78B8F484-4B0E-4646-B731-7F8CD3EA9DEB}C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{E8E46BF3-B8F6-4644-920F-83CAF6A12CFD}C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe
FirewallRules: [TCP Query User{10085B95-A8A1-4935-B434-A57DEBADEBCD}C:\program files\dassault systemes\b21\win_b64\code\bin\catutil.exe] => (Block) C:\program files\dassault systemes\b21\win_b64\code\bin\catutil.exe
FirewallRules: [UDP Query User{5104B408-92BA-4093-9224-42715CC3A22A}C:\program files\dassault systemes\b21\win_b64\code\bin\catutil.exe] => (Block) C:\program files\dassault systemes\b21\win_b64\code\bin\catutil.exe
FirewallRules: [TCP Query User{78987C3F-B9BA-4574-8EF9-825D1A563A8C}C:\program files\java\jre8\bin\javaw.exe] => (Allow) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [UDP Query User{9EA1CBB8-7F36-4E41-944F-D84BD7DA83B4}C:\program files\java\jre8\bin\javaw.exe] => (Allow) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [TCP Query User{ADE94D8B-DEA2-4CAC-94E7-0076557299C5}C:\program files (x86)\hearthstone\hearthstone.exe] => (Block) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{098F762C-0F70-4EE1-A25D-A5FE473AC740}C:\program files (x86)\hearthstone\hearthstone.exe] => (Block) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{8D86B55A-D1A9-47A3-A33B-F0D142F24977}C:\users\michael neumann\downloads\hearthcrawl v27 r338\hearthcrawler.exe] => (Allow) C:\users\michael neumann\downloads\hearthcrawl v27 r338\hearthcrawler.exe
FirewallRules: [UDP Query User{FD4A601D-3D68-44CD-A816-1E8EA4971BD3}C:\users\michael neumann\downloads\hearthcrawl v27 r338\hearthcrawler.exe] => (Allow) C:\users\michael neumann\downloads\hearthcrawl v27 r338\hearthcrawler.exe
FirewallRules: [TCP Query User{B535E2DF-E2EF-4D1B-9E46-35497C48751B}C:\windows\system32\javaw.exe] => (Allow) C:\windows\system32\javaw.exe
FirewallRules: [UDP Query User{1711BB59-FEFD-4D06-8B76-C021693B2943}C:\windows\system32\javaw.exe] => (Allow) C:\windows\system32\javaw.exe
FirewallRules: [TCP Query User{7DF1A252-31B4-452E-A3B3-E6BCD9F377B2}C:\users\michael neumann\desktop\datenbank\technische thermodynamik ws14.15\latest\hearthcrawler.exe] => (Allow) C:\users\michael neumann\desktop\datenbank\technische thermodynamik ws14.15\latest\hearthcrawler.exe
FirewallRules: [UDP Query User{00E86D78-67AC-48E4-BA31-635A00CC21AB}C:\users\michael neumann\desktop\datenbank\technische thermodynamik ws14.15\latest\hearthcrawler.exe] => (Allow) C:\users\michael neumann\desktop\datenbank\technische thermodynamik ws14.15\latest\hearthcrawler.exe
FirewallRules: [{0468DF96-E1F7-416D-A1E1-BE65D7752DFD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{F2322231-B91B-461B-957F-6897FEA81D1C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{F4304505-60FC-4FA0-97FA-B4C504D1B2B2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{4B63E26C-5134-4CBA-82E3-C7989F115958}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{5950CA76-C9D7-43E2-983B-AFED5EF69434}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{0406793B-130F-4861-B81C-D87881680404}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{BE2648EC-5DE5-40E3-A25A-6BF6F1BEA51B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{A2948A34-1900-41AD-9B77-19391D058C9B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [TCP Query User{E672DA57-BC11-4B29-9024-6FD33F8B74F3}C:\users\michael neumann\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michael neumann\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{CB5EBF70-570A-4ACF-ACC0-5D2DC9933605}C:\users\michael neumann\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michael neumann\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{08E19020-9890-45D7-A3DF-E3DF76DE4ECB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{7EE22B39-8148-4B87-BF34-5BC8AEED49E7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{26429978-1954-43A7-8349-041E9497FF24}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{3818A266-7E11-41B2-9B4A-EA89A4CD7CF2}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.com
FirewallRules: [{F22578C0-2115-4F0C-A91B-FD8C5961CD25}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\WinWrapIDE.exe
FirewallRules: [{719F33D8-B7C9-4708-8A42-B3EA229C81BC}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{76B78845-10A4-436C-BDA9-EE2AC86357F1}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.com
FirewallRules: [{1BE1491E-9482-407F-AADA-F146E30474E7}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\WinWrapIDE.exe
FirewallRules: [{7BB7BB15-C566-4217-9475-DDCE6BFC1F26}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{F882951A-C5B7-4581-B471-6ADE1C1D8F10}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{29ABACCC-BBA4-4FC1-B6BC-8DA968B205EF}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.com
FirewallRules: [{06D39A9D-1E47-44A7-856F-C06588FB2005}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.com
FirewallRules: [{6D009E87-22F2-4113-8796-0CE948F02DB9}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\WinWrapIDE.exe
FirewallRules: [{8B5AE635-62A9-4FEC-8FBF-6A0AC2880A46}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\WinWrapIDE.exe
FirewallRules: [TCP Query User{180A38BF-E7B1-4329-9E8D-B17620E13BF0}C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe] => (Allow) C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe
FirewallRules: [UDP Query User{5E0B6DB2-8E10-4AB0-A9D4-C5B2A813A79A}C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe] => (Allow) C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe
FirewallRules: [{2FFE2951-F5AE-4E37-90E0-8B4A51295F00}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{3E766F72-12A9-4088-AC17-0AF10E8623A0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{288D127E-9FCB-47AE-8799-FF49E1588351}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{0E10193B-2834-4456-A669-03415D3FE1BD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{72C4D01E-DAEF-4686-93B3-A2D23BBF1BBD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{5011530C-B05C-49D1-8107-1EEFB353E30C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{94596D95-9829-480D-986A-252F0DC8B40D}] => (Allow) C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{11803C83-CF86-4EB2-A0B2-F3C3EB6D5C3E}] => (Allow) C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8F0814E6-EC6F-4A1F-871D-EA218FA2EF35}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{C9567DEC-FF5D-4D2A-AA75-3E2D69144F65}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{D435303B-26C9-4C5E-BB9A-4D1AAFCB356C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{6D5BD45E-FD48-439C-8D80-E62C652F48C4}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{4271F84D-859D-486F-9202-2D39D11F6047}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{FD9E37F8-B580-4925-B04D-DF0BB96D995D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{9672A879-2B51-4DEB-B5E0-4CF5A42E3126}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7F83016C-05C0-4A1A-AA1C-5ED404FAE9BC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{E562A778-B21C-4255-9E75-07112DD7FB35}C:\program files\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{558C8100-C374-4004-AA38-A4AFC73B2432}C:\program files\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{540EA966-CCB2-4D11-B0EC-A03B76F05DFA}C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A1EE2D6F-3E76-486D-A04C-B2387113DD4F}C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{85DD0C00-86A9-4F82-A27D-43DCB5CA17C7}C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{162324F1-2587-4D6A-BCF2-B73A8034DBD0}C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{DE38ACE3-21C4-45A9-AD32-CC6F60DD9EF6}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [UDP Query User{FE7B116C-AD93-491B-85B0-A089875F717B}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [TCP Query User{C4E499E6-CC15-4380-9C71-5F9F6176F286}C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{9F1E8974-48AF-43A8-8DA5-E07871506FDC}C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe
FirewallRules: [TCP Query User{40EB36FE-32D2-4A21-9A46-552040569BEA}C:\program files\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{729687FB-016C-485A-8E31-E44CA195F660}C:\program files\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1C622EF4-7367-49C0-9F74-32FEE8BE7720}C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C39CBC23-B7EE-467C-A2A4-A8346CB8D2B5}C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{7A387FD3-05CD-435E-881B-A90C3068BBA5}C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{3CE16F1E-2B5C-4A74-B003-FDCA5C46A04D}C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2A894A95-66FB-49E3-8F61-5152F5E66954}C:\program files\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{932510DF-2FF5-4F92-870E-BFE0AB563644}C:\program files\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9B2EFE54-5B36-4B1B-B912-1CC272B1FEF0}C:\program files\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{BCBCA83C-717C-48F9-B469-9B92AB5B6250}C:\program files\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{DFAADE73-D7E8-41C1-9C69-08A717755505}C:\users\michael neumann\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Allow) C:\users\michael neumann\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [UDP Query User{8DC10F27-5915-4CE4-A803-790815998EB7}C:\users\michael neumann\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Allow) C:\users\michael neumann\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [TCP Query User{CB3E2305-243D-4E79-98DA-CB3CF6EF4CF7}C:\program files\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{6C240616-6CBF-47F9-B9C1-90B2A1DE3C2F}C:\program files\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{FEB12FED-5B3C-4B77-95C4-232262B31C83}C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9D39830D-47CF-4A6B-B473-6183DC257A7F}C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{EE461F22-51A3-4F04-A6FF-0D71654F8F83}C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{21BEA338-3E66-4098-89D4-FE6B454DCC34}C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{68FA026B-64A2-4A5F-A006-7ED8C96C891D}C:\program files\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9DD652BB-5BC1-4A91-AA74-81B1E0946B80}C:\program files\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{95950914-E2E7-474E-9CD1-F791C05B699F}C:\program files\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{08CF009B-5117-4A9F-BFE3-77CB62DCE955}C:\program files\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{DAA0EAFF-2863-4241-BB66-93BA41DAC96D}C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B30CF65D-84C9-4CA8-AA63-0A3363C13540}C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{22D929C5-50FF-4B06-8E1D-CB5AE507E3BE}C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E690FC13-771E-4257-9BB8-C837BD1C8F5D}C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{A5D66EB6-0D53-4168-935E-3D3CA51CFFE0}C:\program files\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D80393F1-86DF-4737-99CB-A89C9A114720}C:\program files\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D8C9D1CE-A4E0-4F06-B615-6591AA609DD4}C:\program files\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{DB950FF4-173F-48F7-BBEE-51FAA33D17BD}C:\program files\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2D1DC5E0-19E7-4DCE-AD66-704131883195}C:\program files\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{650F9C88-51C9-4E9D-AF0B-49BA7709901C}C:\program files\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{06B76F01-D5B5-4BA0-B1DF-F2D12B18A6CC}C:\program files\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{BA579104-AF17-4B97-9E47-4ED858B1F13B}C:\program files\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{008B57AE-E095-41CF-A767-D368ED11353E}C:\program files\overwatch\gameclientapp.exe] => (Allow) C:\program files\overwatch\gameclientapp.exe
FirewallRules: [UDP Query User{24BFBEED-C365-42C1-A347-A1D24E483AAE}C:\program files\overwatch\gameclientapp.exe] => (Allow) C:\program files\overwatch\gameclientapp.exe
FirewallRules: [{8287E18D-D62A-45D5-ADA4-B76641CF8595}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{466B231A-DAA1-4B38-AD68-E4E01FAE48FD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{DC3CA838-8D27-46CA-A862-78EC9BA4861E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{59AF9740-6F90-4FCA-8118-C2D88B7F45B5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DE11C5D1-A6BB-4007-A96E-C7BBE69FEE91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{CD4060F1-F301-4628-B857-866B9AD65A40}C:\program files\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{8F34C251-0757-4640-9031-F2C5655901B6}C:\program files\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{922AF628-EA57-4611-BD5E-027816B76E14}C:\program files\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F2FC73AD-92E5-4F86-8F1D-53933F85D11E}C:\program files\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe
FirewallRules: [{F641CB8A-1DF3-4221-A48C-1D27CA569FB6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5E56163F-563D-4564-99B9-85B88E0AF108}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{00E8B793-75B7-44E9-91CA-C930C82011CB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{17D67EE3-877C-4674-A8AE-DF4ACC9D15F6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{4D13D531-68A9-4062-8925-3C9BF05A4669}C:\program files\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A93DBE5D-A318-449A-B363-2D465EF18AEB}C:\program files\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{21236521-8558-4A58-B6DE-42A704020039}C:\program files\heroes of the storm\versions\base40431\heroesofthestorm_x64.exe] => (Block) C:\program files\heroes of the storm\versions\base40431\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F6B13E36-81AC-4CC7-BABD-BEEB12793D13}C:\program files\heroes of the storm\versions\base40431\heroesofthestorm_x64.exe] => (Block) C:\program files\heroes of the storm\versions\base40431\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{70D3A7AB-E34B-4526-BBFD-64470B749D5A}C:\program files\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F2705D57-F189-41BB-8EC4-7D0F4A407351}C:\program files\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2C371E49-4524-4D9E-A41F-96D151E6023A}C:\program files\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B8EB3C8D-7924-4D93-AAA6-5F381355FDC6}C:\program files\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{170E8800-B955-4AB0-A5C0-F48CA649593D}C:\program files\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{37602442-2275-45D3-86D6-B3CBA6A8A569}C:\program files\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{6F89CDE9-EC18-432A-9206-A7D0ADF4BC70}C:\program files\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{FBA874CB-3645-402D-82CA-2A9C933A719A}C:\program files\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{60400196-EAA0-4BB5-8118-E327D2CA75DC}C:\program files\heroes of the storm\versions\base42273\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42273\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B0332209-B1FE-47AF-A91B-CE2F135494E8}C:\program files\heroes of the storm\versions\base42273\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42273\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{EA161952-B964-49C1-A6BE-A5BB2DDF77B0}C:\program files\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{265341A3-3581-49C5-93F6-AE6BA7AB5831}C:\program files\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{6A6E2600-2554-456B-AE3C-BF7F63FDFBB9}C:\program files\bin\win64\matlab.exe] => (Allow) C:\program files\bin\win64\matlab.exe
FirewallRules: [UDP Query User{4A8FB930-7679-41FF-B04D-C587B12A925B}C:\program files\bin\win64\matlab.exe] => (Allow) C:\program files\bin\win64\matlab.exe
FirewallRules: [TCP Query User{B775E788-54DC-43F6-A1FD-4D512DB50BCD}C:\program files\java\jdk1.8.0_91\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_91\bin\jmc.exe
FirewallRules: [UDP Query User{356CAE57-03CC-445F-ABE1-C54B74E4E7CB}C:\program files\java\jdk1.8.0_91\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_91\bin\jmc.exe
FirewallRules: [TCP Query User{4486FE09-7869-47EE-B53D-BDEE2B652992}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\nms\nmsd.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\nms\nmsd.exe
FirewallRules: [UDP Query User{E5000930-CE37-496A-89FB-E4710A8A75AB}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\nms\nmsd.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\nms\nmsd.exe
FirewallRules: [TCP Query User{885148C8-5E80-4819-842C-55640EDD13BC}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\xtop.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\xtop.exe
FirewallRules: [UDP Query User{F148EEC8-16D3-4E9D-B271-7E48E5228269}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\xtop.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\xtop.exe
FirewallRules: [TCP Query User{3879598B-A701-4D76-9FA3-3B99D566B48C}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\pro_comm_msg.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [UDP Query User{3EEE38ED-7296-47D9-B511-FD43F522F70A}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\pro_comm_msg.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [TCP Query User{E7CB1A09-A78C-4C99-BCAC-D1CEAC513734}C:\program files\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{CD0FDCAD-E78A-4FB2-AABF-295EB1F0B5BA}C:\program files\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{0E4DE1D7-6CAD-452E-9637-9C4F8AECB273}C:\program files\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{60B2E018-6631-468B-9B05-BB5E325B3C0D}C:\program files\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{38832C0B-74F8-4EC0-8652-D00F73DDA450}C:\program files\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{65B93D55-87F4-470D-861C-21A97B6BD339}C:\program files\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{16C70145-2A92-4131-BCE3-607FF8882973}C:\program files\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{640DB27B-C21A-4A42-B9DB-B3E68FBE370B}C:\program files\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8E41015A-4A66-47DE-873F-3667CC96D4F5}C:\program files\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9F5B4E68-3827-4AE5-865A-08FA9E98A15C}C:\program files\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{AFC088AE-9F0B-4403-B73D-4E6AB3BF6322}C:\program files\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C141CCB0-985E-40EE-A985-4AF2604CF969}C:\program files\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{ED79A94A-5267-4A9D-93A6-BDB9F0934587}C:\program files\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4F60AFFE-9A89-4569-A68E-1A728692DFAC}C:\program files\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B959BCA7-CE75-4534-B2A9-421949A72C1D}C:\program files\heroes of the storm\versions\base44737\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44737\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{61705D89-FDC7-403C-8BCB-CA78D78C3C9D}C:\program files\heroes of the storm\versions\base44737\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44737\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{BF455E03-DB25-4E5D-897E-1FCD54CD88B7}C:\program files\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C69CC429-C017-435C-9991-88FD6341EAAF}C:\program files\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{3DEAE4B6-5D5A-4868-8959-F9F1FB91102E}C:\program files\heroes of the storm\versions\base44941\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44941\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{76EC16CB-6D96-425B-82E0-28815BC05AC3}C:\program files\heroes of the storm\versions\base44941\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44941\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{AC82B8CA-5BD6-49A9-A85E-53E910E92E22}C:\program files\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F87C4885-6216-4EE6-ACAC-461B9FA88223}C:\program files\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe
FirewallRules: [{3303ED34-4007-45D9-A55C-CDB97329F724}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{2311A73B-AB57-4F87-96C1-FA544115F8D8}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{A5C26631-CBB5-42B9-9CE6-4A05CE1C1C77}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\photoview\photoview360.exe
FirewallRules: [{434DF1B7-DD28-4BDC-B1E4-407322FCC555}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\photoview\photoview360.exe
FirewallRules: [{5BDCF8A5-AE98-4991-B718-70FA9158D468}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\photoview\photoview360_cl.exe
FirewallRules: [{F8A3CA50-2FAB-4CA6-A3B3-54D5A1E10340}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\photoview\photoview360_cl.exe
FirewallRules: [TCP Query User{D1F78F60-AAB2-4D37-AE1D-F5771CFECF26}C:\program files\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{8BAEFC20-0708-4CD7-849C-85AAC411AF56}C:\program files\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D3345854-B078-4D12-AC28-09758C6F956A}C:\program files\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C5A3EAAF-54E1-4780-AF35-F35620FAB1C3}C:\program files\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{E164BD74-D016-46F7-9D53-D6490ED9CF59}C:\program files\heroes of the storm\versions\base46690\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46690\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{30ADEFEC-C905-41A0-BC87-63BBB28D8864}C:\program files\heroes of the storm\versions\base46690\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46690\heroesofthestorm_x64.exe
FirewallRules: [{1C5E0793-EADA-4F72-815F-7E1C76B50889}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{08FAFC36-B996-4F8E-A8C2-2A1F51296B9B}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\photoview\photoview360.exe
FirewallRules: [{79219C72-79B8-44CF-92E3-6065D7847147}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\photoview\photoview360.exe
FirewallRules: [{C332740B-5BB4-4D4B-BF43-0CFCA5DCC2AD}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\photoview\photoview360_cl.exe
FirewallRules: [{A66573BD-EA77-41E8-86E1-C74BEED2156B}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\photoview\photoview360_cl.exe
FirewallRules: [{A26A19B4-F533-4099-A1DB-C7D05D028303}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{87C0520E-8169-4802-87FD-642ECB81AAAF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0217674E-34B8-4157-A518-7D7481ACA28F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B05551F5-9BDE-41E0-B387-3AF681A914CC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{150B6B28-C463-4E2E-BCB9-2E59AE2B8D78}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks (3)\photoview\photoview360.exe
FirewallRules: [{239D9211-A9E0-409C-805D-C664D5AA0CAA}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks (3)\photoview\photoview360.exe
FirewallRules: [{FEABFB86-F49F-4160-8F8D-056D5A974711}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks (3)\photoview\photoview360_cl.exe
FirewallRules: [{799FFEC1-E8BA-42E2-AC58-6222F9CA5F4C}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks (3)\photoview\photoview360_cl.exe
FirewallRules: [TCP Query User{2241B7CF-2342-498D-BB9F-05CAEC42CFDC}C:\program files\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{EECB79DE-2754-4CC7-A907-DB435CBB6098}C:\program files\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe
FirewallRules: [{044A92B6-ED6A-4389-8F88-903E66E0F070}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{86DC9B00-E41D-4B3B-807C-9C3CF47C5892}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\swScheduler\DTSCoordinatorService.exe
FirewallRules: [TCP Query User{7CFE7B6F-DC54-4F46-BB97-BE4DA009EC09}C:\program files\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{81987FA0-BBF3-4E62-AC35-EE4827B41625}C:\program files\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe
FirewallRules: [{3FF107F6-977D-4582-906A-8F280A7830A4}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{13A082BE-7408-4FA2-BFC5-B98ED1859A81}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{C4A5507B-BEBB-4DC4-99D7-D8A462B93C68}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{8F26D0C3-B4E5-4938-937E-71C7BDC4FC42}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Wiederherstellungspunkte =========================
25-10-2016 08:21:57 Windows Update
28-10-2016 09:52:57 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Intel(R) Active Management Technology - SOL (COM3)
Description: Intel(R) Active Management Technology - SOL
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: Serial
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Norton Internet Security Settings Manager
Description: Norton Internet Security Settings Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ccSet_NIS
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (10/28/2016 08:29:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (10/28/2016 08:28:33 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.
Error: (10/28/2016 07:44:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (10/28/2016 07:43:17 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.
Error: (10/28/2016 03:57:02 PM) (Source: MsiInstaller) (EventID: 11706) (User: PC)
Description: Produkt: SOLIDWORKS 2016 x64 Edition SP03 -- Fehler 1706. Für das Produkt SOLIDWORKS 2016 x64 Edition SP03 wurde kein Installationspaket gefunden. Wiederholen Sie die Installation und verwenden Sie dabei eine gültige Kopie des Installationspakets "solidworks.msi".
Error: (10/28/2016 03:53:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (10/28/2016 03:52:14 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.
Error: (10/28/2016 09:52:14 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (10/28/2016 09:47:32 AM) (Source: MsiInstaller) (EventID: 11706) (User: PC)
Description: Produkt: SOLIDWORKS 2016 x64 Edition SP03 -- Fehler 1706. Für das Produkt SOLIDWORKS 2016 x64 Edition SP03 wurde kein Installationspaket gefunden. Wiederholen Sie die Installation und verwenden Sie dabei eine gültige Kopie des Installationspakets "solidworks.msi".
Error: (10/28/2016 09:44:29 AM) (Source: EWA net DB Core) (EventID: 4097) (User: )
Description: TransBase Multiplexer error report:
Version: V6.8.1.46 (Build 719) 2011/03/09 (Release)
select()
Systemfehler:
=============
Error: (10/28/2016 08:29:42 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
ccSet_NIS
UsbCharger
Error: (10/28/2016 08:29:17 PM) (Source: DCOM) (EventID: 10016) (User: PC)
Description: Durch die Berechtigungseinstellungen (Computerstandard) wird der SID (S-1-5-21-281873479-767526044-2589904799-1000) für Benutzer PC\Michael Neumann von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID
{9BA05972-F6A8-11CF-A442-00A0C90A8F39}
und APPID
{9BA05972-F6A8-11CF-A442-00A0C90A8F39}
gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden.
Error: (10/28/2016 08:29:17 PM) (Source: DCOM) (EventID: 10016) (User: PC)
Description: Durch die Berechtigungseinstellungen (Computerstandard) wird der SID (S-1-5-21-281873479-767526044-2589904799-1000) für Benutzer PC\Michael Neumann von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID
{9BA05972-F6A8-11CF-A442-00A0C90A8F39}
und APPID
{9BA05972-F6A8-11CF-A442-00A0C90A8F39}
gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden.
Error: (10/28/2016 08:28:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Remote Solver for Flow Simulation 2016" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (10/28/2016 08:28:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "SQL Server (TEW_SQLEXPRESS)" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (10/28/2016 08:28:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Service Installer TrueKey" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (10/28/2016 08:28:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "SOLIDWORKS Electrical Collaborative Server" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (10/28/2016 08:28:01 PM) (Source: Serial) (EventID: 36) (User: )
Description: Bei der Überprüfung, ob "\Device\Serial0" ein serieller Anschluss ist, war der Inhalt des Divisor-Latch-Registers mit dem Interruptfreigabe- und dem Empfangsregister identisch.
Das Gerät wurde nicht als serieller Anschluss erkannt und wird gelöscht.
Error: (10/28/2016 08:19:07 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Netzwerkspeicher-Schnittstellendienst" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
Es wird bereits eine Instanz des Dienstes ausgeführt.
Error: (10/28/2016 08:17:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Diagnosediensthost" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
CodeIntegrity:
===================================
Date: 2015-12-27 21:58:52.139
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Users\MICHAE~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-12-27 21:58:52.110
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Users\MICHAE~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-12-27 21:58:51.336
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-12-27 21:58:51.307
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 46%
Installierter physikalischer RAM: 8070.8 MB
Verfügbarer physikalischer RAM: 4321.88 MB
Summe virtueller Speicher: 16139.78 MB
Verfügbarer virtueller Speicher: 11757.69 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:377.39 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 8F2604F7)
Partition 1: (Active) - (Size=931.4 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
Geändert von Mixer008 (28.10.2016 um 20:26 Uhr) |
|
28.10.2016, 21:36
| #3 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | SystembereinigungZitat:
 Was ich da so seh in den Log sieht ziemlich eindeutig nach Büro-PC aus 
__________________ |
|
29.10.2016, 06:02
| #4 |
| | Systembereinigung Hallo, Nein das ist kein Büro-PC. Das ist mein privater PC. Vor allem wie kommst du darauf? Und wie soll man das Gegenteil beweisen, damit du das glaubst ?  |
|
29.10.2016, 10:25
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Systembereinigung Warum ich darauf komme? Sieh dir doch mal diese Softwarekonfig an! Windows 7 Professional N Adobe Creative Cloud Adobe Photoshop CC 2015.5 Dassault Systemes Software Prerequisites x86-x64 EWA_net_Admin IBM SPSS Statistics 22 MATLAB R2016a Microsoft Office Professional Plus 2013 Microsoft SQL Server 2014 SOLIDWORKS Flow Simulation 2016 SP03 x64 Edition SOLIDWORKS Plastics 2016 SP03 x64 Edition
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
29.10.2016, 10:52
| #6 |
| | Systembereinigung Hahaha  ,das ist alles Software von der Uni !!! Ich kann die Software nutzen, weil ich an der Uni eingeschrieben bin. Auch das Betriebssystem habe ich von der Uni runtergeladen, weil es umsonst ist. Rechner wird privat genutzt zu Studium-Zwecken, nicht gewerblich. Wenn du mir nicht weiterhelfen wirst, weil du mir gerade nicht glaubst, dann lassen wir es. Geändert von Mixer008 (29.10.2016 um 11:04 Uhr) |
|
29.10.2016, 11:07
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Systembereinigung Und das soll ich woher riechen wenn du das nicht schreibst?  Diese Software kann genauso gut kommerziell benutzt werden. Schau dir mal an was normale Lizenzen dafür kosten, da brichst du zusammen  1. Schritt: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers 2. Schritt: Kaspersky TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
29.10.2016, 12:13
| #8 |
| | Systembereinigung Hey, jo alles klar. Kein Thema. hier die Log-Files: Malwarebytes Anti-Rootkit: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2014.11.18.05
rootkit: v2014.11.12.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.17609
Michael Neumann :: PC [administrator]
29.10.2016 12:42:53
mbar-log-2016-10-29 (12-42-53).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 419743
Time elapsed: 23 minute(s), 54 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Kaspersky: Code:
ATTFilter 13:07:54.0409 0x1dd8 TDSS rootkit removing tool 3.1.0.11 Aug 5 2016 12:13:31
13:07:58.0108 0x1dd8 ============================================================
13:07:58.0108 0x1dd8 Current date / time: 2016/10/29 13:07:58.0108
13:07:58.0108 0x1dd8 SystemInfo:
13:07:58.0109 0x1dd8
13:07:58.0109 0x1dd8 OS Version: 6.1.7601 ServicePack: 1.0
13:07:58.0109 0x1dd8 Product type: Workstation
13:07:58.0109 0x1dd8 ComputerName: PC
13:07:58.0109 0x1dd8 UserName: Michael Neumann
13:07:58.0109 0x1dd8 Windows directory: C:\Windows
13:07:58.0109 0x1dd8 System windows directory: C:\Windows
13:07:58.0109 0x1dd8 Running under WOW64
13:07:58.0109 0x1dd8 Processor architecture: Intel x64
13:07:58.0109 0x1dd8 Number of processors: 4
13:07:58.0109 0x1dd8 Page size: 0x1000
13:07:58.0109 0x1dd8 Boot type: Normal boot
13:07:58.0109 0x1dd8 CodeIntegrityOptions = 0x00000001
13:07:58.0109 0x1dd8 ============================================================
13:08:00.0478 0x1dd8 KLMD registered as C:\Windows\system32\drivers\80365019.sys
13:08:00.0478 0x1dd8 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23564, osProperties = 0x1
13:08:00.0673 0x1dd8 System UUID: {C564E9FA-415F-DEA1-788F-52712B6B49AD}
13:08:01.0157 0x1dd8 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:08:01.0172 0x1dd8 ============================================================
13:08:01.0173 0x1dd8 \Device\Harddisk0\DR0:
13:08:01.0173 0x1dd8 MBR partitions:
13:08:01.0173 0x1dd8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
13:08:01.0173 0x1dd8 ============================================================
13:08:01.0198 0x1dd8 C: <-> \Device\Harddisk0\DR0\Partition1
13:08:01.0214 0x1dd8 ============================================================
13:08:01.0214 0x1dd8 Initialize success
13:08:01.0214 0x1dd8 ============================================================
13:08:03.0150 0x2634 ============================================================
13:08:03.0150 0x2634 Scan started
13:08:03.0150 0x2634 Mode: Manual;
13:08:03.0150 0x2634 ============================================================
13:08:03.0150 0x2634 KSN ping started
13:08:03.0229 0x2634 KSN ping finished: true
13:08:04.0786 0x2634 ================ Scan system memory ========================
13:08:04.0786 0x2634 System memory - ok
13:08:04.0787 0x2634 ================ Scan services =============================
13:08:04.0907 0x2634 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:08:04.0911 0x2634 1394ohci - ok
13:08:04.0953 0x2634 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:08:04.0959 0x2634 ACPI - ok
13:08:04.0969 0x2634 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:08:04.0971 0x2634 AcpiPmi - ok
13:08:05.0027 0x2634 [ 4D2A45FDEBC823742B9F37DBBF99893A, E7236141B493879E2F39038A74A3E8AAEDDC56B0BF758BA4725D99B27983155F ] acsock C:\Windows\system32\DRIVERS\acsock64.sys
13:08:05.0037 0x2634 acsock - ok
13:08:05.0112 0x2634 [ DC00FD73505DAEDD99CAF4533B0C05BD, 2863D1F0587B79254FBE093C191C73892768CF2AC59BEF97745EE66CEE3473AF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:08:05.0114 0x2634 AdobeARMservice - ok
13:08:05.0184 0x2634 [ 16D11D2CA3F2078F553E0C3A70A4F050, 51EEA7EFBE122D3FEB2F8487F5A45166A0C4963314B28840C3C404479B4E1849 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:08:05.0191 0x2634 AdobeFlashPlayerUpdateSvc - ok
13:08:05.0299 0x2634 [ 8787431643698296C440B61DD42E12BD, 8A4D81E5A8564C30444B1762E1047F550E456AF9E58865D6573C0044B8272344 ] AdobeUpdateService C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
13:08:05.0316 0x2634 AdobeUpdateService - ok
13:08:05.0357 0x2634 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
13:08:05.0364 0x2634 adp94xx - ok
13:08:05.0385 0x2634 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
13:08:05.0390 0x2634 adpahci - ok
13:08:05.0403 0x2634 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
13:08:05.0406 0x2634 adpu320 - ok
13:08:05.0443 0x2634 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:08:05.0444 0x2634 AeLookupSvc - ok
13:08:05.0501 0x2634 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
13:08:05.0508 0x2634 AFD - ok
13:08:05.0519 0x2634 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
13:08:05.0521 0x2634 agp440 - ok
13:08:05.0625 0x2634 [ 021D06851E7AFF5C314039DF813608F3, 081B14840F4AD428B4407AA2E639369A45D174D9507BD107F33FE3A94FB8F8EC ] AGSService C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
13:08:05.0653 0x2634 AGSService - ok
13:08:05.0678 0x2634 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
13:08:05.0680 0x2634 ALG - ok
13:08:05.0713 0x2634 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
13:08:05.0714 0x2634 aliide - ok
13:08:05.0728 0x2634 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
13:08:05.0728 0x2634 amdide - ok
13:08:05.0740 0x2634 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
13:08:05.0742 0x2634 AmdK8 - ok
13:08:05.0750 0x2634 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
13:08:05.0752 0x2634 AmdPPM - ok
13:08:05.0797 0x2634 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:08:05.0799 0x2634 amdsata - ok
13:08:05.0818 0x2634 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
13:08:05.0821 0x2634 amdsbs - ok
13:08:05.0829 0x2634 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:08:05.0831 0x2634 amdxata - ok
13:08:05.0864 0x2634 [ 8B73FEE96B60EE597CBCAA735A842A36, AB3FC01FEC62AC115EC766770D8694DEDA2FF2286E0199DC238ABF2493EC1A22 ] AppID C:\Windows\system32\drivers\appid.sys
13:08:05.0865 0x2634 AppID - ok
13:08:05.0896 0x2634 [ F5800413C0DF45C2CA15FD3ACBB1365F, 741E09EED0FF0152B59704729BD700E7D7A671C88F0708884AAB7A56ECCBD8AB ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:08:05.0898 0x2634 AppIDSvc - ok
13:08:05.0941 0x2634 [ B46099A534B7989D80330EA82D9092D6, 0CAC09732FAFAE805E55428B6BE001DCC39EBC599539FADE7AA68571A8A554E5 ] Appinfo C:\Windows\System32\appinfo.dll
13:08:05.0942 0x2634 Appinfo - ok
13:08:06.0030 0x2634 [ 885888F8AAD89108A5EE2D0174690220, 9B148C117EBE400F40BF7F32B66B20AA4628BA9E233D707DFA2EB4A8A65E7C52 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:08:06.0032 0x2634 Apple Mobile Device Service - ok
13:08:06.0052 0x2634 [ 1C726705935E89FD59E652E4F09148D0, 5D72DB5C493ED48ACBD1A520283C7B16E656FB1E8B00885696C79A09FC37487D ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
13:08:06.0053 0x2634 AppleCharger - ok
13:08:06.0071 0x2634 [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
13:08:06.0072 0x2634 AppleChargerSrv - ok
13:08:06.0103 0x2634 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
13:08:06.0107 0x2634 AppMgmt - ok
13:08:06.0116 0x2634 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
13:08:06.0119 0x2634 arc - ok
13:08:06.0127 0x2634 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
13:08:06.0130 0x2634 arcsas - ok
13:08:06.0207 0x2634 [ 49C65599344CCADFD085709745761ED4, F8797F59B752A7F4BD66596DCE178BD993C73B6091A5CE7C9EFA1B557AA950E9 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:08:06.0209 0x2634 aspnet_state - ok
13:08:06.0234 0x2634 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:08:06.0236 0x2634 AsyncMac - ok
13:08:06.0271 0x2634 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
13:08:06.0299 0x2634 atapi - ok
13:08:06.0352 0x2634 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:08:06.0367 0x2634 AudioEndpointBuilder - ok
13:08:06.0386 0x2634 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:08:06.0396 0x2634 AudioSrv - ok
13:08:06.0412 0x2634 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:08:06.0414 0x2634 AxInstSV - ok
13:08:06.0433 0x2634 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
13:08:06.0440 0x2634 b06bdrv - ok
13:08:06.0466 0x2634 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:08:06.0470 0x2634 b57nd60a - ok
13:08:06.0482 0x2634 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
13:08:06.0484 0x2634 BDESVC - ok
13:08:06.0492 0x2634 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
13:08:06.0492 0x2634 Beep - ok
13:08:06.0539 0x2634 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
13:08:06.0549 0x2634 BFE - ok
13:08:06.0577 0x2634 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
13:08:06.0591 0x2634 BITS - ok
13:08:06.0600 0x2634 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:08:06.0602 0x2634 blbdrive - ok
13:08:06.0665 0x2634 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:08:06.0671 0x2634 Bonjour Service - ok
13:08:06.0686 0x2634 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:08:06.0688 0x2634 bowser - ok
13:08:06.0696 0x2634 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
13:08:06.0697 0x2634 BrFiltLo - ok
13:08:06.0709 0x2634 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
13:08:06.0709 0x2634 BrFiltUp - ok
13:08:06.0733 0x2634 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
13:08:06.0735 0x2634 Browser - ok
13:08:06.0745 0x2634 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:08:06.0750 0x2634 Brserid - ok
13:08:06.0755 0x2634 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:08:06.0756 0x2634 BrSerWdm - ok
13:08:06.0759 0x2634 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:08:06.0759 0x2634 BrUsbMdm - ok
13:08:06.0763 0x2634 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:08:06.0764 0x2634 BrUsbSer - ok
13:08:06.0775 0x2634 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
13:08:06.0777 0x2634 BTHMODEM - ok
13:08:06.0796 0x2634 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
13:08:06.0798 0x2634 bthserv - ok
13:08:06.0841 0x2634 [ 56685951208AC81CF923B9B08BEDF3B7, F5FF438B9A54AD8D54E82DE60E1771C9685A95D5E590D69EB1E4E78D3B9B7769 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys
13:08:06.0843 0x2634 ccSet_NIS - ok
13:08:06.0850 0x2634 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:08:06.0852 0x2634 cdfs - ok
13:08:06.0880 0x2634 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:08:06.0882 0x2634 cdrom - ok
13:08:06.0895 0x2634 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
13:08:06.0898 0x2634 CertPropSvc - ok
13:08:06.0901 0x2634 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
13:08:06.0902 0x2634 circlass - ok
13:08:06.0956 0x2634 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
13:08:06.0962 0x2634 CLFS - ok
13:08:07.0021 0x2634 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:08:07.0023 0x2634 clr_optimization_v2.0.50727_32 - ok
13:08:07.0078 0x2634 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:08:07.0081 0x2634 clr_optimization_v2.0.50727_64 - ok
13:08:07.0161 0x2634 [ BD2AE15EFB47E5215B4D0C59EA00C91A, E2A3FB8B606E55E843958B93EE6A5FDCE6FB4AAA6BEFD2F030BAA91ED4B5B013 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:08:07.0164 0x2634 clr_optimization_v4.0.30319_32 - ok
13:08:07.0201 0x2634 [ 30EAABE7A3B1081B6F5DDE4A1C0305D2, 14C1D9931D32A069B6E90B47476FEC3978818D040A23BE939F04DC0A5D978509 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:08:07.0205 0x2634 clr_optimization_v4.0.30319_64 - ok
13:08:07.0224 0x2634 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
13:08:07.0225 0x2634 CmBatt - ok
13:08:07.0245 0x2634 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:08:07.0247 0x2634 cmdide - ok
13:08:07.0298 0x2634 [ 3323F76352B0AF14B2CDC4DFBF3E980A, F8E3C3508C37E647497B6889F26819B1DB30275F48A994D1BBFBAA9454E5FD70 ] CNG C:\Windows\system32\Drivers\cng.sys
13:08:07.0310 0x2634 CNG - ok
13:08:07.0320 0x2634 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
13:08:07.0321 0x2634 Compbatt - ok
13:08:07.0335 0x2634 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
13:08:07.0336 0x2634 CompositeBus - ok
13:08:07.0339 0x2634 COMSysApp - ok
13:08:07.0404 0x2634 [ E41C4FB1D9971409E17D61F45A228121, 5EC6139D26B7198EED2D7FF5F2E7C50E4605313C4047C4CC81F59FF147235C02 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
13:08:07.0412 0x2634 cphs - ok
13:08:07.0416 0x2634 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
13:08:07.0417 0x2634 crcdisk - ok
13:08:07.0461 0x2634 [ BB724567892383010B8436DCC0A84628, 2768F5FD7A096CB1CEA33F8818EF16F9F5E3E07BB8442949A49A9CF24B62C6E6 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:08:07.0466 0x2634 CryptSvc - ok
13:08:07.0500 0x2634 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
13:08:07.0512 0x2634 CSC - ok
13:08:07.0539 0x2634 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
13:08:07.0549 0x2634 CscService - ok
13:08:07.0620 0x2634 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
13:08:07.0623 0x2634 dbupdate - ok
13:08:07.0630 0x2634 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
13:08:07.0634 0x2634 dbupdatem - ok
13:08:07.0660 0x2634 dbx - ok
13:08:07.0719 0x2634 [ 566BD6ED419F7FBC88EDD579044AD5C9, EC66C10DAC23ED149545305EA25F60888C5D3675BD850C7C12275B8666D18FEF ] DbxSvc C:\Windows\system32\DbxSvc.exe
13:08:07.0720 0x2634 DbxSvc - ok
13:08:07.0802 0x2634 [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch C:\Windows\system32\rpcss.dll
13:08:07.0809 0x2634 DcomLaunch - ok
13:08:07.0833 0x2634 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
13:08:07.0837 0x2634 defragsvc - ok
13:08:07.0878 0x2634 [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:08:07.0881 0x2634 DfsC - ok
13:08:07.0910 0x2634 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
13:08:07.0913 0x2634 dg_ssudbus - ok
13:08:07.0944 0x2634 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
13:08:07.0949 0x2634 Dhcp - ok
13:08:08.0062 0x2634 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
13:08:08.0092 0x2634 DiagTrack - ok
13:08:08.0169 0x2634 [ 64F6A6B21B25528F7368928C0171C8E3, B9D56EA97E57501D567D71965C1CD57C85DA1C7EAF958B38F3D199457DD4D2E3 ] Disc Soft Lite Bus Service C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
13:08:08.0193 0x2634 Disc Soft Lite Bus Service - ok
13:08:08.0215 0x2634 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
13:08:08.0217 0x2634 discache - ok
13:08:08.0281 0x2634 [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
13:08:08.0283 0x2634 Disk - ok
13:08:08.0300 0x2634 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
13:08:08.0302 0x2634 dmvsc - ok
13:08:08.0339 0x2634 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:08:08.0342 0x2634 Dnscache - ok
13:08:08.0356 0x2634 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
13:08:08.0360 0x2634 dot3svc - ok
13:08:08.0376 0x2634 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
13:08:08.0379 0x2634 DPS - ok
13:08:08.0420 0x2634 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:08:08.0421 0x2634 drmkaud - ok
13:08:08.0435 0x2634 [ 679FF716052109392D870F6A6C4A3535, BEF1784448CCA4AF1D67ED68BD0C7CFE01A7719E98CACF92C2DCBFAA916DC57E ] dtlitescsibus C:\Windows\system32\DRIVERS\dtlitescsibus.sys
13:08:08.0437 0x2634 dtlitescsibus - ok
13:08:08.0462 0x2634 [ E23FDD696839A4790682CA66C48D3F2F, F5F0721BDA751968224E52E75D0C309A3E084C430CD98E85A55AF622D16B9A44 ] dtliteusbbus C:\Windows\system32\DRIVERS\dtliteusbbus.sys
13:08:08.0465 0x2634 dtliteusbbus - ok
13:08:08.0536 0x2634 [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:08:08.0558 0x2634 DXGKrnl - ok
13:08:08.0571 0x2634 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
13:08:08.0574 0x2634 EapHost - ok
13:08:08.0643 0x2634 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
13:08:08.0712 0x2634 ebdrv - ok
13:08:08.0798 0x2634 [ 1B7AA375F711F66D5FF2B855F9EC987F, 151E3897A31F0E828D08EBBB9C10A60047B48534BB38349EF1C8D9245524CA58 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
13:08:08.0807 0x2634 eeCtrl - ok
13:08:08.0841 0x2634 [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] EFS C:\Windows\System32\lsass.exe
13:08:08.0842 0x2634 EFS - ok
13:08:08.0913 0x2634 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:08:08.0924 0x2634 ehRecvr - ok
13:08:08.0935 0x2634 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
13:08:08.0937 0x2634 ehSched - ok
13:08:08.0973 0x2634 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
13:08:08.0981 0x2634 elxstor - ok
13:08:09.0003 0x2634 [ 7230C8B80DDE1F0524C353240B78CC0E, 15F73EBFB9152010E7736AFE518A47C209E17DDB347A40C4CDA0D9BBD26D1176 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
13:08:09.0005 0x2634 EraserUtilRebootDrv - ok
13:08:09.0013 0x2634 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:08:09.0015 0x2634 ErrDev - ok
13:08:09.0053 0x2634 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
13:08:09.0059 0x2634 EventSystem - ok
13:08:09.0170 0x2634 [ 76D73A7D1DC9D01D0496912EE68F7C40, 2F9B9B99BA173F8D9E47CD52B50ACB67CEE6497ACC4FE48D75270D479FCA272D ] EWA net DB Core C:\Program Files (x86)\EWA net\database\TransBase EWA\tbmux32.exe
13:08:09.0180 0x2634 EWA net DB Core - ok
13:08:09.0243 0x2634 [ 7395E7EFBE8053E5989BC99038A6D3B0, 74A9E985A170C509E592A0195D5F18AA19EEA8D360FCF85A19C0EE03234E7136 ] EWA net DB EPC C:\Program Files (x86)\EWA net\database\TransBase EPC\tbmux32.exe
13:08:09.0253 0x2634 EWA net DB EPC - ok
13:08:09.0323 0x2634 [ 76D73A7D1DC9D01D0496912EE68F7C40, 2F9B9B99BA173F8D9E47CD52B50ACB67CEE6497ACC4FE48D75270D479FCA272D ] EWA net DB WIS C:\Program Files (x86)\EWA net\database\TransBase WIS\tbmux32.exe
13:08:09.0330 0x2634 EWA net DB WIS - ok
13:08:09.0419 0x2634 [ 4787EA164E01CAFBF5DA384B6EDC9FC5, 27B436E1AEC531285E883D58AE4AD2AE2154B5B31159692CCC27B2360FD5CCC3 ] EWA net Server C:\Program Files (x86)\EWA net\server\bin\tomcat.exe
13:08:09.0421 0x2634 EWA net Server - ok
13:08:09.0451 0x2634 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
13:08:09.0456 0x2634 exfat - ok
13:08:09.0477 0x2634 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:08:09.0482 0x2634 fastfat - ok
13:08:09.0546 0x2634 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
13:08:09.0617 0x2634 Fax - ok
13:08:09.0685 0x2634 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
13:08:09.0686 0x2634 fdc - ok
13:08:09.0713 0x2634 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
13:08:09.0715 0x2634 fdPHost - ok
13:08:09.0724 0x2634 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
13:08:09.0727 0x2634 FDResPub - ok
13:08:09.0735 0x2634 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:08:09.0737 0x2634 FileInfo - ok
13:08:09.0747 0x2634 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:08:09.0748 0x2634 Filetrace - ok
13:08:09.0825 0x2634 [ 00EDB531DFB127197D625204B138269B, 0CE6536344CE30F06C6CD04BEB202C935B10439200B9CE792B4440D2EE3CB9D9 ] FlexNet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
13:08:09.0849 0x2634 FlexNet Licensing Service - ok
13:08:09.0976 0x2634 [ 668D43EFEB7F129584100CF6320E8A6F, 093254127A63420F93001BA63CF323AA4C17A38914D5B991E31F3B8C1971E9D7 ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
13:08:10.0009 0x2634 FlexNet Licensing Service 64 - ok
13:08:10.0019 0x2634 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
13:08:10.0020 0x2634 flpydisk - ok
13:08:10.0034 0x2634 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:08:10.0041 0x2634 FltMgr - ok
13:08:10.0106 0x2634 [ 700A5373FA66F1DAAECBD2CFB88C73ED, D6C1C4C846BC24EB6539ECC701A456FA53BB6679C79391F5B70580D47B6CE395 ] FontCache C:\Windows\system32\FntCache.dll
13:08:10.0125 0x2634 FontCache - ok
13:08:10.0166 0x2634 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:08:10.0167 0x2634 FontCache3.0.0.0 - ok
13:08:10.0174 0x2634 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:08:10.0175 0x2634 FsDepends - ok
13:08:10.0184 0x2634 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:08:10.0185 0x2634 Fs_Rec - ok
13:08:10.0203 0x2634 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:08:10.0206 0x2634 fvevol - ok
13:08:10.0213 0x2634 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
13:08:10.0215 0x2634 gagp30kx - ok
13:08:10.0235 0x2634 gdrv - ok
13:08:10.0322 0x2634 [ 5E42BDFF22707E577AD82BE4C43C3BCE, 4C0BBF6AAA7EB30A789D91A4F29726C2A6D941D457B59CF376EF96571F3E1BB4 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
13:08:10.0337 0x2634 GfExperienceService - ok
13:08:10.0368 0x2634 [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
13:08:10.0381 0x2634 gpsvc - ok
13:08:10.0443 0x2634 [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:08:10.0446 0x2634 gupdate - ok
13:08:10.0460 0x2634 [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:08:10.0462 0x2634 gupdatem - ok
13:08:10.0475 0x2634 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:08:10.0476 0x2634 hcw85cir - ok
13:08:10.0508 0x2634 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:08:10.0515 0x2634 HdAudAddService - ok
13:08:10.0530 0x2634 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:08:10.0533 0x2634 HDAudBus - ok
13:08:10.0546 0x2634 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
13:08:10.0548 0x2634 HidBatt - ok
13:08:10.0561 0x2634 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
13:08:10.0565 0x2634 HidBth - ok
13:08:10.0574 0x2634 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
13:08:10.0575 0x2634 HidIr - ok
13:08:10.0585 0x2634 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
13:08:10.0586 0x2634 hidserv - ok
13:08:10.0633 0x2634 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:08:10.0634 0x2634 HidUsb - ok
13:08:10.0649 0x2634 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:08:10.0653 0x2634 hkmsvc - ok
13:08:10.0663 0x2634 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:08:10.0669 0x2634 HomeGroupListener - ok
13:08:10.0686 0x2634 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:08:10.0691 0x2634 HomeGroupProvider - ok
13:08:10.0713 0x2634 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:08:10.0716 0x2634 HpSAMD - ok
13:08:10.0776 0x2634 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:08:10.0791 0x2634 HTTP - ok
13:08:10.0803 0x2634 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:08:10.0804 0x2634 hwpolicy - ok
13:08:10.0818 0x2634 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
13:08:10.0821 0x2634 i8042prt - ok
13:08:10.0863 0x2634 [ FA4C48E36F0B24E7E33D3E7E1844B9C9, F61F448B8E305DEFDDA5D4A6FC4E57C798C11ED4DA0ACB885847DC8A9A7B4E98 ] iaStorA C:\Windows\system32\DRIVERS\iaStorA.sys
13:08:10.0871 0x2634 iaStorA - ok
13:08:10.0910 0x2634 [ D5854F77CEEAFC5A8405F8ECCBEC09DF, 06D94EAF55787F807FB40E95011E90B0A719AC1A1529C2C110C1EABC5BE02C5B ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
13:08:10.0910 0x2634 IAStorDataMgrSvc - ok
13:08:10.0924 0x2634 [ 05E24E2CA39C0D2FAADE8FC603345A7D, 01C519CABD3B1F003AAD1B6F1CE79C1A49408DFC2CE5A8008A7BD0A1266D783C ] iaStorF C:\Windows\system32\DRIVERS\iaStorF.sys
13:08:10.0925 0x2634 iaStorF - ok
13:08:10.0968 0x2634 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:08:10.0974 0x2634 iaStorV - ok
13:08:11.0069 0x2634 [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:08:11.0071 0x2634 IDriverT - ok
13:08:11.0130 0x2634 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:08:11.0142 0x2634 idsvc - ok
13:08:11.0246 0x2634 [ 7209139C75C6765DFA42912B98672F0B, 7FAD24F4BD91F1192BED1C66DEA079830D7DA6D651298037E5E383EC62B53632 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
13:08:11.0368 0x2634 igfx - ok
13:08:11.0383 0x2634 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
13:08:11.0384 0x2634 iirsp - ok
13:08:11.0423 0x2634 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
13:08:11.0437 0x2634 IKEEXT - ok
13:08:11.0527 0x2634 [ 6CB00AE4D2CEF52995D420656E02C30A, EDE13D7A650022CB75318159C57161F5FF9A128DB80D055555E6CB4F5F469EA4 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:08:11.0594 0x2634 IntcAzAudAddService - ok
13:08:11.0623 0x2634 [ 0E0B99617ED3FDB6C5F0E2D62709B5DF, A656CA3A60E62BE16A015150B23136CE150F9876B4035E9E8D8E73D1707B37A4 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
13:08:11.0630 0x2634 IntcDAud - ok
13:08:11.0670 0x2634 [ DDA8E5AD97231AB50B81FED04C28F64C, 5C9E8F7CC45A9AE7FF12A02641562E271D84894DFA7C50218AC2AAA298251B60 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
13:08:11.0680 0x2634 Intel(R) Capability Licensing Service Interface - ok
13:08:11.0712 0x2634 [ 86FE509640D77FB0998FC8B1FF5523C6, 13E895DEB9B84379251699D7E52C5E3FD888994425DE01B6C4634F9E959D5584 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
13:08:11.0724 0x2634 Intel(R) Capability Licensing Service TCP IP Interface - ok
13:08:11.0739 0x2634 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
13:08:11.0740 0x2634 intelide - ok
13:08:11.0760 0x2634 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:08:11.0761 0x2634 intelppm - ok
13:08:11.0790 0x2634 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:08:11.0793 0x2634 IPBusEnum - ok
13:08:11.0808 0x2634 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:08:11.0810 0x2634 IpFilterDriver - ok
13:08:11.0839 0x2634 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:08:11.0847 0x2634 iphlpsvc - ok
13:08:11.0857 0x2634 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:08:11.0859 0x2634 IPMIDRV - ok
13:08:11.0876 0x2634 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:08:11.0878 0x2634 IPNAT - ok
13:08:11.0944 0x2634 [ 16A6D49E7698FC6F1730D3FF9F5561A8, 860D2601BA3A71C81A6B21F4D92A5E9C47772C9DE0F047D49000FA4A484D7932 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:08:11.0953 0x2634 iPod Service - ok
13:08:11.0964 0x2634 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:08:11.0966 0x2634 IRENUM - ok
13:08:11.0968 0x2634 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:08:11.0969 0x2634 isapnp - ok
13:08:12.0010 0x2634 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:08:12.0020 0x2634 iScsiPrt - ok
13:08:12.0042 0x2634 [ 897B93573F07C9CB1140516DAC44BC7E, C80665FEA4913DDC72F2140EC92CD4FA5D693BD8D0E4029A99DB96D63172E3D1 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
13:08:12.0043 0x2634 iusb3hcs - ok
13:08:12.0076 0x2634 [ 2D15CEDF619796002E8640F73A4BF920, FCC0137CB5AE32266A550EE46106B80F431F0B55342599951B9D032F8EA10649 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
13:08:12.0083 0x2634 iusb3hub - ok
13:08:12.0120 0x2634 [ F1E93FE111924D0BC853155AADF8048B, 2DFD5B3D042286A0FD5E482C81FAE339E4F05C0A6DFF43061D8502C4551125F7 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
13:08:12.0135 0x2634 iusb3xhc - ok
13:08:12.0168 0x2634 [ BF5D3A2624177C413680DEF19A465AF8, B9909D3E6CB6F9971293116387865AD15CB9D47513C7FAA9C36BE4D2847A41EB ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
13:08:12.0171 0x2634 jhi_service - ok
13:08:12.0174 0x2634 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:08:12.0176 0x2634 kbdclass - ok
13:08:12.0188 0x2634 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:08:12.0189 0x2634 kbdhid - ok
13:08:12.0200 0x2634 [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] KeyIso C:\Windows\system32\lsass.exe
13:08:12.0201 0x2634 KeyIso - ok
13:08:12.0236 0x2634 [ CF11CC2B73D5155533C67354F9188E09, D59C30B9651F8E0952DFF34A010BC60A1D27AE10F5705C54424BF6BB7ADF9F62 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:08:12.0239 0x2634 KSecDD - ok
13:08:12.0285 0x2634 [ 2E56D51B184EFB8E353B7AF446299DC8, CE7AAFF89F3A0BFE191DE90430A04C7FB899F5CF3B704AA5A96F47D5F37192B2 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:08:12.0294 0x2634 KSecPkg - ok
13:08:12.0308 0x2634 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:08:12.0309 0x2634 ksthunk - ok
13:08:12.0336 0x2634 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
13:08:12.0343 0x2634 KtmRm - ok
13:08:12.0370 0x2634 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:08:12.0375 0x2634 LanmanServer - ok
13:08:12.0393 0x2634 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:08:12.0397 0x2634 LanmanWorkstation - ok
13:08:12.0416 0x2634 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:08:12.0418 0x2634 lltdio - ok
13:08:12.0432 0x2634 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:08:12.0437 0x2634 lltdsvc - ok
13:08:12.0457 0x2634 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:08:12.0459 0x2634 lmhosts - ok
13:08:12.0480 0x2634 [ 02A9CBACE666877BBBA4FD66B22F6D4A, 0E783BA7A8F00CEC8F03CFEE03999CA5DB9E4DB7CCE62D9171CFCF36AFBE4BB1 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
13:08:12.0486 0x2634 LMS - ok
13:08:12.0508 0x2634 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
13:08:12.0510 0x2634 LSI_FC - ok
13:08:12.0522 0x2634 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
13:08:12.0525 0x2634 LSI_SAS - ok
13:08:12.0536 0x2634 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
13:08:12.0538 0x2634 LSI_SAS2 - ok
13:08:12.0552 0x2634 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
13:08:12.0555 0x2634 LSI_SCSI - ok
13:08:12.0566 0x2634 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
13:08:12.0569 0x2634 luafv - ok
13:08:12.0601 0x2634 [ 701223C663019B62029FAB1A2385EE81, 5CD7559A61954BDABE988FD316E06C4AEB24716C685E0C910B8AB03A1339EFEF ] LUMDriver C:\Windows\system32\drivers\LUMDriver.sys
13:08:12.0602 0x2634 LUMDriver - ok
13:08:12.0636 0x2634 [ A401CFF74982D8DF851F20307C806073, 1D7BA90C9E77FAAE59F60AB5310EC41D9C5B98F1F9A89A3CDB9169E6DEF565DA ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
13:08:12.0642 0x2634 LVRS64 - ok
13:08:12.0749 0x2634 [ 13384CB5F5813E65F31078D6ABFAAF38, A6E7374C15CAECC273197BF62F8F926BA30E9509270A8470756F4710E1DEA126 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
13:08:12.0850 0x2634 LVUVC64 - ok
13:08:12.0932 0x2634 [ 6EF327DBB5DC9D6310ADE48CAB14959D, AFDC81E83E9EC9424C14431E531E976C419715754952D92BE2691186C55F0E9B ] McComponentHostService C:\Program Files\McAfee Security Scan\3.11.376\McCHSvc.exe
13:08:12.0939 0x2634 McComponentHostService - ok
13:08:12.0971 0x2634 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:08:12.0974 0x2634 Mcx2Svc - ok
13:08:12.0987 0x2634 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
13:08:12.0988 0x2634 megasas - ok
13:08:13.0002 0x2634 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
13:08:13.0008 0x2634 MegaSR - ok
13:08:13.0029 0x2634 [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
13:08:13.0030 0x2634 MEIx64 - ok
13:08:13.0052 0x2634 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
13:08:13.0055 0x2634 MMCSS - ok
13:08:13.0065 0x2634 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
13:08:13.0066 0x2634 Modem - ok
13:08:13.0078 0x2634 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:08:13.0078 0x2634 monitor - ok
13:08:13.0124 0x2634 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:08:13.0126 0x2634 mouclass - ok
13:08:13.0134 0x2634 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:08:13.0136 0x2634 mouhid - ok
13:08:13.0184 0x2634 [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:08:13.0187 0x2634 mountmgr - ok
13:08:13.0255 0x2634 [ 9FC679D10A7377BB04ECC3D0E2E26B53, 24ACD4EC1618A052C29E4463138B28F62C8B78D442DB82F4925E64FC5849A096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:08:13.0258 0x2634 MozillaMaintenance - ok
13:08:13.0278 0x2634 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
13:08:13.0282 0x2634 mpio - ok
13:08:13.0287 0x2634 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:08:13.0289 0x2634 mpsdrv - ok
13:08:13.0316 0x2634 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
13:08:13.0333 0x2634 MpsSvc - ok
13:08:13.0373 0x2634 [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:08:13.0376 0x2634 MRxDAV - ok
13:08:13.0429 0x2634 [ FCA01B0C70DAE9BE557577E719469D17, F9868B7B50EF6323BF6690F087A83928A1E82B96A19B27F344E10BF11E520C32 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:08:13.0437 0x2634 mrxsmb - ok
13:08:13.0457 0x2634 [ 386BE96797C5B480AD31E8B50CEE337C, 88E826F42BEB38CAA7C84AE6ED4D8EBC4D382A8A37CF9F7B8517B297F168F1B3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:08:13.0463 0x2634 mrxsmb10 - ok
13:08:13.0509 0x2634 [ 841474CF2EB14F826038FBCC7D85B857, 4B1BC8AFDA54D1F16AC2AAB7EDDAE07FBF1E3B65D1658F8901A3E3175AF72800 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:08:13.0515 0x2634 mrxsmb20 - ok
13:08:13.0538 0x2634 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
13:08:13.0540 0x2634 msahci - ok
13:08:13.0545 0x2634 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:08:13.0549 0x2634 msdsm - ok
13:08:13.0568 0x2634 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
13:08:13.0571 0x2634 MSDTC - ok
13:08:13.0593 0x2634 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:08:13.0594 0x2634 Msfs - ok
13:08:13.0598 0x2634 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:08:13.0599 0x2634 mshidkmdf - ok
13:08:13.0610 0x2634 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:08:13.0611 0x2634 msisadrv - ok
13:08:13.0640 0x2634 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:08:13.0643 0x2634 MSiSCSI - ok
13:08:13.0646 0x2634 msiserver - ok
13:08:13.0667 0x2634 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:08:13.0668 0x2634 MSKSSRV - ok
13:08:13.0675 0x2634 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:08:13.0676 0x2634 MSPCLOCK - ok
13:08:13.0689 0x2634 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:08:13.0690 0x2634 MSPQM - ok
13:08:13.0709 0x2634 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:08:13.0715 0x2634 MsRPC - ok
13:08:13.0725 0x2634 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:08:13.0726 0x2634 mssmbios - ok
13:08:13.0736 0x2634 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:08:13.0737 0x2634 MSTEE - ok
13:08:13.0750 0x2634 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
13:08:13.0752 0x2634 MTConfig - ok
13:08:13.0763 0x2634 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
13:08:13.0766 0x2634 Mup - ok
13:08:13.0781 0x2634 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
13:08:13.0791 0x2634 napagent - ok
13:08:13.0817 0x2634 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:08:13.0822 0x2634 NativeWifiP - ok
13:08:13.0898 0x2634 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:08:13.0919 0x2634 NDIS - ok
13:08:13.0929 0x2634 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:08:13.0930 0x2634 NdisCap - ok
13:08:13.0949 0x2634 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:08:13.0950 0x2634 NdisTapi - ok
13:08:13.0966 0x2634 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:08:13.0968 0x2634 Ndisuio - ok
13:08:13.0986 0x2634 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:08:13.0988 0x2634 NdisWan - ok
13:08:13.0995 0x2634 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:08:13.0996 0x2634 NDProxy - ok
13:08:14.0044 0x2634 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
13:08:14.0045 0x2634 Netaapl - ok
13:08:14.0064 0x2634 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:08:14.0065 0x2634 NetBIOS - ok
13:08:14.0094 0x2634 [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:08:14.0098 0x2634 NetBT - ok
13:08:14.0117 0x2634 [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] Netlogon C:\Windows\system32\lsass.exe
13:08:14.0118 0x2634 Netlogon - ok
13:08:14.0132 0x2634 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
13:08:14.0139 0x2634 Netman - ok
13:08:14.0185 0x2634 [ 2635C2A431F5F04DFFE23C2678BBA410, D6F6973B57D2ED4DC4BF097CBBECFDA3045CED2C7E970CF7E127961F196893BD ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:08:14.0187 0x2634 NetMsmqActivator - ok
13:08:14.0204 0x2634 [ 2635C2A431F5F04DFFE23C2678BBA410, D6F6973B57D2ED4DC4BF097CBBECFDA3045CED2C7E970CF7E127961F196893BD ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:08:14.0206 0x2634 NetPipeActivator - ok
13:08:14.0223 0x2634 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
13:08:14.0231 0x2634 netprofm - ok
13:08:14.0235 0x2634 [ 2635C2A431F5F04DFFE23C2678BBA410, D6F6973B57D2ED4DC4BF097CBBECFDA3045CED2C7E970CF7E127961F196893BD ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:08:14.0237 0x2634 NetTcpActivator - ok
13:08:14.0241 0x2634 [ 2635C2A431F5F04DFFE23C2678BBA410, D6F6973B57D2ED4DC4BF097CBBECFDA3045CED2C7E970CF7E127961F196893BD ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:08:14.0243 0x2634 NetTcpPortSharing - ok
13:08:14.0266 0x2634 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
13:08:14.0267 0x2634 nfrd960 - ok
13:08:14.0292 0x2634 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
13:08:14.0298 0x2634 NlaSvc - ok
13:08:14.0308 0x2634 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:08:14.0309 0x2634 Npfs - ok
13:08:14.0313 0x2634 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
13:08:14.0315 0x2634 nsi - ok
13:08:14.0322 0x2634 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:08:14.0324 0x2634 nsiproxy - ok
13:08:14.0418 0x2634 [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:08:14.0447 0x2634 Ntfs - ok
13:08:14.0467 0x2634 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
13:08:14.0468 0x2634 Null - ok
13:08:14.0536 0x2634 [ DA16D10F446F9F9CE3EDB395A34ED5EE, F2F7592BEDB2F5D9981C49695987C7767DA9995A5963B3483EFC7ADE6B39669D ] NuTCRACKERService C:\Windows\system32\nutsrv4.exe
13:08:14.0544 0x2634 NuTCRACKERService - ok
13:08:14.0574 0x2634 [ D812362E8AF615B521AD4DF19A93BD5A, B1F04122DFE9FCC3FC56BE327D86912D624C89F2EFB9684BE66FC22115D0E19F ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
13:08:14.0577 0x2634 NVHDA - ok
13:08:14.0815 0x2634 [ 6DDB922F08C17C342F1FB868D7EB22CD, A62E476FD377EA9974122DC7C426735B6BE5CECCD0D3DA22502DF7CBB208B49E ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:08:15.0018 0x2634 nvlddmkm - ok
13:08:15.0089 0x2634 [ 2CCD9A74A0F9C7605EAFA3F3AC8DC476, DEE95B0C0CA4525850E06AD3C1233A6C6E88D97EE874F83801686B87FD23F0BC ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
13:08:15.0112 0x2634 NvNetworkService - ok
13:08:15.0167 0x2634 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:08:15.0169 0x2634 nvraid - ok
13:08:15.0186 0x2634 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:08:15.0189 0x2634 nvstor - ok
13:08:15.0211 0x2634 [ 2F61DB46C84CCBB5D9F75065A85D2173, 79049D42F0D82BD3C5A9C8231CF2F412B50C9E6483DB14F41CD48301D85C166C ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
13:08:15.0212 0x2634 NvStreamKms - ok
13:08:15.0372 0x2634 [ 6F5AC1C495DA6D19AF99A59DC44BC13F, 61E8C0C0B9EEEF6ADE86AD4BC8D43256A6B20AEEB43BBC3C44B3B6140544259F ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
13:08:15.0470 0x2634 NvStreamNetworkSvc - ok
13:08:15.0612 0x2634 [ 73FA6B2DF3348AF05E1F98310854BD4F, F0B7CF54495C81EE4C8B44580E399F3B22E190CB553AC7BA8E2DC13A28477566 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
13:08:15.0688 0x2634 NvStreamSvc - ok
13:08:15.0752 0x2634 [ 5A3DE85307FB54C09C0D1D52B97916FE, EAE8FF99337557F60078F94F952BAC48880CA279A763FD14E098E34B4EE8534F ] nvsvc C:\Windows\system32\nvvsvc.exe
13:08:15.0764 0x2634 nvsvc - ok
13:08:15.0770 0x2634 [ 35DFC12FD7E44B7CB8CCD7E5A2B3975A, 36E0E39646636F6E027691E5C3903C51479B3F707BDEA40F460FD27E357DA14E ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
13:08:15.0771 0x2634 nvvad_WaveExtensible - ok
13:08:15.0814 0x2634 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:08:15.0816 0x2634 nv_agp - ok
13:08:15.0822 0x2634 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:08:15.0824 0x2634 ohci1394 - ok
13:08:15.0881 0x2634 [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:08:15.0887 0x2634 ose64 - ok
13:08:16.0069 0x2634 [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:08:16.0206 0x2634 osppsvc - ok
13:08:16.0240 0x2634 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:08:16.0245 0x2634 p2pimsvc - ok
13:08:16.0257 0x2634 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
13:08:16.0264 0x2634 p2psvc - ok
13:08:16.0272 0x2634 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:08:16.0274 0x2634 Parport - ok
13:08:16.0297 0x2634 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:08:16.0299 0x2634 partmgr - ok
13:08:16.0347 0x2634 [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll
13:08:16.0354 0x2634 PcaSvc - ok
13:08:16.0367 0x2634 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
13:08:16.0372 0x2634 pci - ok
13:08:16.0387 0x2634 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\DRIVERS\pciide.sys
13:08:16.0388 0x2634 pciide - ok
13:08:16.0399 0x2634 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
13:08:16.0404 0x2634 pcmcia - ok
13:08:16.0415 0x2634 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
13:08:16.0417 0x2634 pcw - ok
13:08:16.0435 0x2634 [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:08:16.0447 0x2634 PEAUTH - ok
13:08:16.0491 0x2634 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
13:08:16.0518 0x2634 PeerDistSvc - ok
13:08:16.0573 0x2634 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:08:16.0574 0x2634 PerfHost - ok
13:08:16.0626 0x2634 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
13:08:16.0652 0x2634 pla - ok
13:08:16.0678 0x2634 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:08:16.0686 0x2634 PlugPlay - ok
13:08:16.0697 0x2634 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:08:16.0699 0x2634 PNRPAutoReg - ok
13:08:16.0715 0x2634 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:08:16.0720 0x2634 PNRPsvc - ok
13:08:16.0748 0x2634 [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:08:16.0756 0x2634 PolicyAgent - ok
13:08:16.0771 0x2634 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
13:08:16.0774 0x2634 Power - ok
13:08:16.0806 0x2634 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:08:16.0808 0x2634 PptpMiniport - ok
13:08:16.0819 0x2634 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
13:08:16.0822 0x2634 Processor - ok
13:08:16.0843 0x2634 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
13:08:16.0847 0x2634 ProfSvc - ok
13:08:16.0851 0x2634 [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:08:16.0852 0x2634 ProtectedStorage - ok
13:08:16.0861 0x2634 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:08:16.0864 0x2634 Psched - ok
13:08:16.0914 0x2634 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
13:08:16.0936 0x2634 ql2300 - ok
13:08:16.0952 0x2634 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
13:08:16.0954 0x2634 ql40xx - ok
13:08:16.0969 0x2634 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
13:08:16.0974 0x2634 QWAVE - ok
13:08:16.0983 0x2634 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:08:16.0985 0x2634 QWAVEdrv - ok
13:08:17.0048 0x2634 [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
13:08:17.0055 0x2634 RapiMgr - ok
13:08:17.0071 0x2634 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:08:17.0073 0x2634 RasAcd - ok
13:08:17.0090 0x2634 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:08:17.0091 0x2634 RasAgileVpn - ok
13:08:17.0098 0x2634 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
13:08:17.0102 0x2634 RasAuto - ok
13:08:17.0114 0x2634 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:08:17.0117 0x2634 Rasl2tp - ok
13:08:17.0144 0x2634 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
13:08:17.0151 0x2634 RasMan - ok
13:08:17.0161 0x2634 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:08:17.0163 0x2634 RasPppoe - ok
13:08:17.0173 0x2634 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:08:17.0176 0x2634 RasSstp - ok
13:08:17.0189 0x2634 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:08:17.0195 0x2634 rdbss - ok
13:08:17.0201 0x2634 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:08:17.0202 0x2634 rdpbus - ok
13:08:17.0205 0x2634 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:08:17.0206 0x2634 RDPCDD - ok
13:08:17.0233 0x2634 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
13:08:17.0236 0x2634 RDPDR - ok
13:08:17.0252 0x2634 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:08:17.0253 0x2634 RDPENCDD - ok
13:08:17.0257 0x2634 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:08:17.0258 0x2634 RDPREFMP - ok
13:08:17.0302 0x2634 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:08:17.0306 0x2634 RDPWD - ok
13:08:17.0320 0x2634 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:08:17.0324 0x2634 rdyboost - ok
13:08:17.0344 0x2634 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:08:17.0347 0x2634 RemoteAccess - ok
13:08:17.0356 0x2634 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:08:17.0360 0x2634 RemoteRegistry - ok
13:08:17.0429 0x2634 [ 5BD6B1EC997FF3DD779D62E05D2079A8, BE4BDE29C134BAEDE4D35C777F2C6195F8C12FEF4583FAD2A442F8D1678B7FF7 ] RMCAST C:\Windows\system32\DRIVERS\RMCAST.sys
13:08:17.0433 0x2634 RMCAST - ok
13:08:17.0446 0x2634 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:08:17.0453 0x2634 RpcEptMapper - ok
13:08:17.0465 0x2634 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
13:08:17.0468 0x2634 RpcLocator - ok
13:08:17.0525 0x2634 [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs C:\Windows\system32\rpcss.dll
13:08:17.0536 0x2634 RpcSs - ok
13:08:17.0599 0x2634 [ E2319BDFF45DC9600E3751BE690F044D, 93F7A1EB1DB5F5CD41846F8D1DD5F08569DDE55AB125A01131B4ED20C322B956 ] RsFx0310 C:\Windows\system32\DRIVERS\RsFx0310.sys
13:08:17.0605 0x2634 RsFx0310 - ok
13:08:17.0617 0x2634 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:08:17.0620 0x2634 rspndr - ok
13:08:17.0660 0x2634 [ B358C047E081AC70035017BD1D7ED818, D52455156F2913C5A88B18EC76C4C10B3589FE95F9735DD687A0307FA00FF500 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
13:08:17.0675 0x2634 RTL8167 - ok
13:08:17.0688 0x2634 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
13:08:17.0688 0x2634 s3cap - ok
13:08:17.0701 0x2634 [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] SamSs C:\Windows\system32\lsass.exe
13:08:17.0702 0x2634 SamSs - ok
13:08:17.0712 0x2634 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:08:17.0715 0x2634 sbp2port - ok
13:08:17.0726 0x2634 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:08:17.0731 0x2634 SCardSvr - ok
13:08:17.0739 0x2634 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:08:17.0740 0x2634 scfilter - ok
13:08:17.0807 0x2634 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
13:08:17.0831 0x2634 Schedule - ok
13:08:17.0857 0x2634 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
13:08:17.0858 0x2634 SCPolicySvc - ok
13:08:17.0869 0x2634 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:08:17.0874 0x2634 SDRSVC - ok
13:08:17.0890 0x2634 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:08:17.0890 0x2634 secdrv - ok
13:08:17.0930 0x2634 [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
13:08:17.0932 0x2634 seclogon - ok
13:08:17.0945 0x2634 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
13:08:17.0948 0x2634 SENS - ok
13:08:17.0958 0x2634 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:08:17.0961 0x2634 SensrSvc - ok
13:08:17.0983 0x2634 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:08:17.0984 0x2634 Serenum - ok
13:08:18.0004 0x2634 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:08:18.0007 0x2634 Serial - ok
13:08:18.0029 0x2634 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
13:08:18.0030 0x2634 sermouse - ok
13:08:18.0044 0x2634 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
13:08:18.0048 0x2634 SessionEnv - ok
13:08:18.0057 0x2634 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:08:18.0058 0x2634 sffdisk - ok
13:08:18.0064 0x2634 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:08:18.0066 0x2634 sffp_mmc - ok
13:08:18.0069 0x2634 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:08:18.0069 0x2634 sffp_sd - ok
13:08:18.0072 0x2634 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
13:08:18.0073 0x2634 sfloppy - ok
13:08:18.0087 0x2634 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:08:18.0095 0x2634 SharedAccess - ok
13:08:18.0112 0x2634 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:08:18.0121 0x2634 ShellHWDetection - ok
13:08:18.0138 0x2634 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
13:08:18.0140 0x2634 SiSRaid2 - ok
13:08:18.0146 0x2634 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
13:08:18.0148 0x2634 SiSRaid4 - ok
13:08:18.0187 0x2634 [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:08:18.0192 0x2634 SkypeUpdate - ok
13:08:18.0209 0x2634 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:08:18.0211 0x2634 Smb - ok
13:08:18.0238 0x2634 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:08:18.0240 0x2634 SNMPTRAP - ok
13:08:18.0309 0x2634 [ 4945020BC094C322571184A6E8056B3A, 9E09257411F7C3631537D0198E0E64CDD1A697D80430F6379139B15A2BA8A6C9 ] SolidWorks Licensing Service C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
13:08:18.0311 0x2634 SolidWorks Licensing Service - ok
13:08:18.0317 0x2634 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
13:08:18.0318 0x2634 spldr - ok
13:08:18.0364 0x2634 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
13:08:18.0374 0x2634 Spooler - ok
13:08:18.0444 0x2634 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
13:08:18.0512 0x2634 sppsvc - ok
13:08:18.0525 0x2634 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:08:18.0528 0x2634 sppuinotify - ok
13:08:18.0602 0x2634 [ C386F811A5E2F87DCF3EA4A527A20AA6, D68DF4E237AC6CBE193DE3A5C48F473F332A1D3CFC7BC21AFDE3EF922DA08279 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
13:08:18.0605 0x2634 SQLWriter - ok
13:08:18.0657 0x2634 [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv C:\Windows\system32\DRIVERS\srv.sys
13:08:18.0667 0x2634 srv - ok
13:08:18.0687 0x2634 [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:08:18.0696 0x2634 srv2 - ok
13:08:18.0706 0x2634 [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:08:18.0710 0x2634 srvnet - ok
13:08:18.0721 0x2634 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:08:18.0725 0x2634 SSDPSRV - ok
13:08:18.0734 0x2634 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:08:18.0737 0x2634 SstpSvc - ok
13:08:18.0763 0x2634 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
13:08:18.0766 0x2634 ssudmdm - ok
13:08:18.0795 0x2634 [ 117DF2CC1758A097CC30305C4B8908C6, C750E0115FC749F3D42589868F1DE5E421B18D9588A5191B7D1D6AC41DB8EC3C ] ssudobex C:\Windows\system32\DRIVERS\ssudobex.sys
13:08:18.0798 0x2634 ssudobex - ok
13:08:18.0852 0x2634 [ 937821881026EBE17DA25285CD5461A8, 79C503798BD6CE218598229AAB417EBD43E151A2E821BE99E138BFA9F841103A ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
13:08:18.0857 0x2634 Stereo Service - ok
13:08:18.0875 0x2634 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
13:08:18.0876 0x2634 stexstor - ok
13:08:18.0897 0x2634 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
13:08:18.0907 0x2634 stisvc - ok
13:08:18.0928 0x2634 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
13:08:18.0930 0x2634 storflt - ok
13:08:18.0954 0x2634 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
13:08:18.0956 0x2634 StorSvc - ok
13:08:18.0975 0x2634 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
13:08:18.0977 0x2634 storvsc - ok
13:08:18.0983 0x2634 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:08:18.0985 0x2634 swenum - ok
13:08:19.0005 0x2634 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
13:08:19.0021 0x2634 swprv - ok
13:08:19.0049 0x2634 [ F19E5E37ED8134B9E5F6287F2D3A75D7, 5804D6DF529213CCF7CD2C345483940554CAA5C6EA065A1B09AA54D114C612F8 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
13:08:19.0052 0x2634 SymEvent - ok
13:08:19.0119 0x2634 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
13:08:19.0145 0x2634 SysMain - ok
13:08:19.0156 0x2634 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:08:19.0159 0x2634 TabletInputService - ok
13:08:19.0175 0x2634 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
13:08:19.0181 0x2634 TapiSrv - ok
13:08:19.0273 0x2634 [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:08:19.0304 0x2634 Tcpip - ok
13:08:19.0341 0x2634 [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:08:19.0364 0x2634 TCPIP6 - ok
13:08:19.0381 0x2634 [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:08:19.0383 0x2634 tcpipreg - ok
13:08:19.0399 0x2634 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:08:19.0400 0x2634 TDPIPE - ok
13:08:19.0424 0x2634 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:08:19.0426 0x2634 TDTCP - ok
13:08:19.0461 0x2634 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:08:19.0464 0x2634 tdx - ok
13:08:19.0478 0x2634 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:08:19.0480 0x2634 TermDD - ok
13:08:19.0534 0x2634 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
13:08:19.0543 0x2634 TermService - ok
13:08:19.0587 0x2634 [ 9201BE2BAB8A9FF8E20D8439AE3BB04D, D973C4FE5B8D02B15476D72B49105840A04DBFF8BCB77117C0354D046E6C02FB ] Themes C:\Windows\system32\themeservice.dll
13:08:19.0589 0x2634 Themes - ok
13:08:19.0603 0x2634 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
13:08:19.0604 0x2634 THREADORDER - ok
13:08:19.0625 0x2634 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
13:08:19.0628 0x2634 TrkWks - ok
13:08:19.0672 0x2634 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:08:19.0676 0x2634 TrustedInstaller - ok
13:08:19.0715 0x2634 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:08:19.0789 0x2634 tssecsrv - ok
13:08:19.0946 0x2634 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:08:19.0983 0x2634 TsUsbFlt - ok
13:08:20.0022 0x2634 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
13:08:20.0023 0x2634 TsUsbGD - ok
13:08:20.0045 0x2634 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:08:20.0050 0x2634 tunnel - ok
13:08:20.0063 0x2634 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
13:08:20.0066 0x2634 uagp35 - ok
13:08:20.0089 0x2634 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:08:20.0101 0x2634 udfs - ok
13:08:20.0120 0x2634 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:08:20.0125 0x2634 UI0Detect - ok
13:08:20.0158 0x2634 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:08:20.0162 0x2634 uliagpkx - ok
13:08:20.0187 0x2634 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:08:20.0190 0x2634 umbus - ok
13:08:20.0195 0x2634 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
13:08:20.0197 0x2634 UmPass - ok
13:08:20.0222 0x2634 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
13:08:20.0232 0x2634 UmRdpService - ok
13:08:20.0313 0x2634 [ 9DC07E73A4ABB9ACF692113B36A5009F, CA7176FC219515D58DCFA66EC61880ECE5617275C9B83701BB74D8B60E733D34 ] UnlockerDriver5 C:\Users\Michael Neumann\Downloads\x64\UnlockerDriver5.sys
13:08:20.0314 0x2634 UnlockerDriver5 - ok
13:08:20.0332 0x2634 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
13:08:20.0345 0x2634 upnphost - ok
13:08:20.0396 0x2634 [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
13:08:20.0398 0x2634 USBAAPL64 - ok
13:08:20.0453 0x2634 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
13:08:20.0458 0x2634 usbaudio - ok
13:08:20.0489 0x2634 [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
13:08:20.0493 0x2634 usbccgp - ok
13:08:20.0520 0x2634 [ BA1E9E3550F6D578FF68DA2873077C96, 40C533C1C59ADD2057F9B95D631A2540A0B246C532AE69B64C629DEEB770A238 ] UsbCharger C:\Windows\system32\DRIVERS\UsbCharger.sys
13:08:20.0522 0x2634 UsbCharger - ok
13:08:20.0552 0x2634 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:08:20.0601 0x2634 usbcir - ok
13:08:20.0650 0x2634 [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci C:\Windows\system32\drivers\usbehci.sys
13:08:20.0653 0x2634 usbehci - ok
13:08:20.0716 0x2634 [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub C:\Windows\system32\drivers\usbhub.sys
13:08:20.0728 0x2634 usbhub - ok
13:08:20.0752 0x2634 [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:08:20.0754 0x2634 usbohci - ok
13:08:20.0784 0x2634 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:08:20.0786 0x2634 usbprint - ok
13:08:20.0810 0x2634 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:08:20.0812 0x2634 usbscan - ok
13:08:20.0834 0x2634 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:08:20.0837 0x2634 USBSTOR - ok
13:08:20.0862 0x2634 [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:08:20.0864 0x2634 usbuhci - ok
13:08:20.0876 0x2634 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
13:08:20.0879 0x2634 UxSms - ok
13:08:20.0885 0x2634 [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] VaultSvc C:\Windows\system32\lsass.exe
13:08:20.0886 0x2634 VaultSvc - ok
13:08:20.0895 0x2634 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:08:20.0896 0x2634 vdrvroot - ok
13:08:20.0920 0x2634 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
13:08:20.0933 0x2634 vds - ok
13:08:20.0945 0x2634 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:08:20.0947 0x2634 vga - ok
13:08:20.0958 0x2634 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
13:08:20.0959 0x2634 VgaSave - ok
13:08:20.0981 0x2634 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
13:08:20.0986 0x2634 vhdmp - ok
13:08:21.0018 0x2634 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
13:08:21.0019 0x2634 viaide - ok
13:08:21.0042 0x2634 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
13:08:21.0047 0x2634 vmbus - ok
13:08:21.0056 0x2634 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
13:08:21.0057 0x2634 VMBusHID - ok
13:08:21.0087 0x2634 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:08:21.0089 0x2634 volmgr - ok
13:08:21.0105 0x2634 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:08:21.0112 0x2634 volmgrx - ok
13:08:21.0127 0x2634 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:08:21.0133 0x2634 volsnap - ok
13:08:21.0212 0x2634 [ 786148B4BB46040FE5DAC0E149E77AF1, D315BB4F0D12B03DE6297FFC02E106BAAD7D4045F067AE4B9B9A978F5575DFD0 ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
13:08:21.0226 0x2634 vpnagent - ok
13:08:21.0256 0x2634 [ 0F42C39016F82F345C0F2DB2D5B90EB4, 2E957E72BB8D0293F61FA7385BA9400DF7759E1E3D35FE24F3877A6460988F4D ] vpnva C:\Windows\system32\DRIVERS\vpnva64-6.sys
13:08:21.0258 0x2634 vpnva - ok
13:08:21.0279 0x2634 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
13:08:21.0283 0x2634 vsmraid - ok
13:08:21.0330 0x2634 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
13:08:21.0355 0x2634 VSS - ok
13:08:21.0366 0x2634 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
13:08:21.0367 0x2634 vwifibus - ok
13:08:21.0392 0x2634 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
13:08:21.0398 0x2634 W32Time - ok
13:08:21.0410 0x2634 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
13:08:21.0411 0x2634 WacomPen - ok
13:08:21.0421 0x2634 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:08:21.0424 0x2634 WANARP - ok
13:08:21.0426 0x2634 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:08:21.0427 0x2634 Wanarpv6 - ok
13:08:21.0457 0x2634 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
13:08:21.0480 0x2634 wbengine - ok
13:08:21.0494 0x2634 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:08:21.0499 0x2634 WbioSrvc - ok
13:08:21.0548 0x2634 [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
13:08:21.0554 0x2634 WcesComm - ok
13:08:21.0572 0x2634 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:08:21.0578 0x2634 wcncsvc - ok
13:08:21.0588 0x2634 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:08:21.0591 0x2634 WcsPlugInService - ok
13:08:21.0597 0x2634 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
13:08:21.0598 0x2634 Wd - ok
13:08:21.0633 0x2634 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:08:21.0644 0x2634 Wdf01000 - ok
13:08:21.0687 0x2634 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:08:21.0690 0x2634 WdiServiceHost - ok
13:08:21.0692 0x2634 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:08:21.0694 0x2634 WdiSystemHost - ok
13:08:21.0734 0x2634 [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
13:08:21.0738 0x2634 WebClient - ok
13:08:21.0753 0x2634 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:08:21.0758 0x2634 Wecsvc - ok
13:08:21.0771 0x2634 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:08:21.0774 0x2634 wercplsupport - ok
13:08:21.0794 0x2634 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
13:08:21.0797 0x2634 WerSvc - ok
13:08:21.0816 0x2634 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:08:21.0817 0x2634 WfpLwf - ok
13:08:21.0828 0x2634 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:08:21.0829 0x2634 WIMMount - ok
13:08:21.0849 0x2634 WinDefend - ok
13:08:21.0870 0x2634 WinHttpAutoProxySvc - ok
13:08:21.0921 0x2634 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:08:21.0928 0x2634 Winmgmt - ok
13:08:21.0995 0x2634 [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
13:08:22.0049 0x2634 WinRM - ok
13:08:22.0091 0x2634 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUSB C:\Windows\system32\DRIVERS\WinUsb.sys
13:08:22.0092 0x2634 WinUSB - ok
13:08:22.0130 0x2634 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
13:08:22.0155 0x2634 Wlansvc - ok
13:08:22.0272 0x2634 [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:08:22.0300 0x2634 wlidsvc - ok
13:08:22.0304 0x2634 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:08:22.0305 0x2634 WmiAcpi - ok
13:08:22.0322 0x2634 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:08:22.0325 0x2634 wmiApSrv - ok
13:08:22.0343 0x2634 WMPNetworkSvc - ok
13:08:22.0351 0x2634 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:08:22.0353 0x2634 WPCSvc - ok
13:08:22.0376 0x2634 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:08:22.0379 0x2634 WPDBusEnum - ok
13:08:22.0399 0x2634 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:08:22.0400 0x2634 ws2ifsl - ok
13:08:22.0410 0x2634 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
13:08:22.0413 0x2634 wscsvc - ok
13:08:22.0449 0x2634 [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
13:08:22.0450 0x2634 WSDPrintDevice - ok
13:08:22.0462 0x2634 [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
13:08:22.0464 0x2634 WSDScan - ok
13:08:22.0468 0x2634 WSearch - ok
13:08:22.0566 0x2634 [ 31F32E0C1A8BA9A37EEC23DE5F27F847, 0180832BC6172C9A4C32B5B222BB3F91EA615A5EBDA98DB79ED4FED258C2D257 ] wuauserv C:\Windows\system32\wuaueng.dll
13:08:22.0614 0x2634 wuauserv - ok
13:08:22.0636 0x2634 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:08:22.0638 0x2634 WudfPf - ok
13:08:22.0650 0x2634 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:08:22.0653 0x2634 WUDFRd - ok
13:08:22.0677 0x2634 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:08:22.0681 0x2634 wudfsvc - ok
13:08:22.0728 0x2634 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
13:08:22.0733 0x2634 WwanSvc - ok
13:08:22.0745 0x2634 ================ Scan global ===============================
13:08:22.0791 0x2634 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
13:08:22.0837 0x2634 [ 20EBCFD94E5F9C801354062991E7257B, 9CD497241559A5D6A8C2C77F1109B6D512BFFA8CC154480A3CDC36B7BB68BFAB ] C:\Windows\system32\winsrv.dll
13:08:22.0849 0x2634 [ 20EBCFD94E5F9C801354062991E7257B, 9CD497241559A5D6A8C2C77F1109B6D512BFFA8CC154480A3CDC36B7BB68BFAB ] C:\Windows\system32\winsrv.dll
13:08:22.0864 0x2634 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
13:08:22.0908 0x2634 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
13:08:22.0916 0x2634 [ Global ] - ok
13:08:22.0916 0x2634 ================ Scan MBR ==================================
13:08:22.0919 0x2634 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:08:23.0083 0x2634 \Device\Harddisk0\DR0 - ok
13:08:23.0083 0x2634 ================ Scan VBR ==================================
13:08:23.0084 0x2634 [ A060BDB29DC9D0630E2C1DCBD6F21084 ] \Device\Harddisk0\DR0\Partition1
13:08:23.0085 0x2634 \Device\Harddisk0\DR0\Partition1 - ok
13:08:23.0086 0x2634 ================ Scan generic autorun ======================
13:08:23.0117 0x2634 [ 5CB3B79FA382173035A58506CC3D398A, 5A5359D7027564923BF40FB5146428E3C2E48B20C72127B9940EBEAF01104BB1 ] C:\Windows\system32\igfxtray.exe
13:08:23.0123 0x2634 IgfxTray - ok
13:08:23.0141 0x2634 [ B28469D8C7C75D8C4A4406D4A3B48417, D351A6FB710B830FEA45273AAA27F913E2E8E3D9251051E3B657407AB794C4BF ] C:\Windows\system32\hkcmd.exe
13:08:23.0152 0x2634 HotKeysCmds - ok
13:08:23.0172 0x2634 [ 63D23C49DD66D4B65DFB50EFEC595EDA, BA9CAC8A7791B51760690F339C005EDCC79209D2A187578241203FBD5C65B0A8 ] C:\Windows\system32\igfxpers.exe
13:08:23.0183 0x2634 Persistence - ok
13:08:23.0476 0x2634 [ 635BFF7C55A68CFEEFFB155979E68EE0, 018AAC3F2F8B31078DCD35E4C543172737213DE63F0EC0A9B2A7F45E44B6842F ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
13:08:23.0635 0x2634 RTHDVCPL - ok
13:08:23.0683 0x2634 [ D94BCD3B86F5220BEFC277B395EEE845, 61D3DE5621CE855F8EA5BF2308D0DFFB3B517BF7187AEE1FEF6785C5880E7D49 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
13:08:23.0684 0x2634 IAStorIcon - ok
13:08:23.0756 0x2634 [ DD37DC13DF1224A8719208AE5CDE2B63, EA365A7358637C555D8CDEDD59BCA574C8B6EB8BB3C1B8790FEC7D76A37FC4AB ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
13:08:23.0789 0x2634 NvBackend - ok
13:08:23.0808 0x2634 [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
13:08:23.0810 0x2634 ShadowPlay - ok
13:08:23.0892 0x2634 [ A0E32171EFB9432D0746F5EF728BB0FB, B468233DD9C68EBA86A3970587177CD86402212F456956D70B926875519833FA ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
13:08:23.0903 0x2634 AdobeAAMUpdater-1.0 - ok
13:08:23.0959 0x2634 [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdc.exe
13:08:23.0971 0x2634 Windows Mobile Device Center - ok
13:08:23.0974 0x2634 [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
13:08:23.0976 0x2634 Logitech Download Assistant - ok
13:08:24.0023 0x2634 [ 9C3F26DCA9142F16ED3D7EE8AB4E417D, 867AD96CB5738266E5BC93E424EA1673881C5F5FBF19C7B699F800C7206CA929 ] C:\Program Files\iTunes\iTunesHelper.exe
13:08:24.0026 0x2634 iTunesHelper - ok
13:08:24.0074 0x2634 [ 5511B28C8937C4265AEBFFFFA9B03F04, 81B948E27AE4FB6BCAF64619030228DC61F914C3250652BC4E91F2E233E19991 ] C:\Program Files\Eraser\Eraser.exe
13:08:24.0087 0x2634 Eraser - ok
13:08:24.0150 0x2634 [ 70BDEE03032BF7CE279838866B25E697, 007C3AC1B4380BC56EC6E14EFC022C03F165D08447AD763854351C530E19D976 ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
13:08:24.0154 0x2634 IMSS - ok
13:08:24.0201 0x2634 [ 0436F64FD296BE331B3BB0CE446548BF, 53A8F8E58F451A7B030AE61E30DBB9BDFD5342046674177941A838B66D80FD70 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
13:08:24.0206 0x2634 USB3MON - ok
13:08:24.0228 0x2634 [ D2AEADFD998706B4216315B2BD3FA79E, D45634355B7733F9B6754A6FB80B7EC20C0D584A08E2F710DF612B393D96A8F9 ] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
13:08:24.0231 0x2634 ISUSScheduler - ok
13:08:24.0282 0x2634 [ 887E31727394E2998A471A01A521EAB4, E68D0C778BAAB307E6BDDA151787D31FC16AD83ADE3FE848353998D111A9AC0C ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
13:08:24.0291 0x2634 DivXMediaServer - ok
13:08:24.0319 0x2634 [ 8FFDB89A0FB7C8ABC3A8825E38047341, B9107FAA3A885CD9A08C20F78D31C3642FA76812E417F41C4F2ADF7D90CA8C72 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
13:08:24.0322 0x2634 LWS - ok
13:08:24.0365 0x2634 [ 16AFB34618E1286FF856DC600AC49C79, 431EC110507685A0F4472EAE35383B4C1E3DC0B56E01CDECFB18F753181DC995 ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
13:08:24.0388 0x2634 DivXUpdate - ok
13:08:24.0469 0x2634 [ 6AD64E318ED6B5F04AFAC2849DE05EA0, E71BAAC529BA31762519342303DA0AF1BD230DD1EDBACD1B0CA261041F21BEBB ] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
13:08:24.0488 0x2634 CanonQuickMenu - ok
13:08:24.0512 0x2634 [ 6B53177248AC5327FFB5CB2D5C500C94, 2F03DA955BF63BDCA979B76B263FBE4EB1BA2A76476EF0D9145E66CAB781C67C ] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
13:08:24.0517 0x2634 IJNetworkScannerSelectorEX - ok
13:08:24.0675 0x2634 Dropbox - ok
13:08:24.0758 0x2634 [ 252B20650657B7A81155FD72BBDA0C75, F70EBD07EB938CC258955088ED2CA3BC9A8220AB9EFF21578E008BA87BC610E5 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
13:08:24.0769 0x2634 SunJavaUpdateSched - ok
13:08:24.0795 0x2634 [ CD0362AEE36CFE1EF5DF973230742E67, 9F1D8AD4E09D16C39CD6A35CB298456468C1808226FFA8AD65BF9562A6ECC07D ] C:\Program Files (x86)\PDF24\pdf24.exe
13:08:24.0798 0x2634 PDFPrint - ok
13:08:24.0841 0x2634 [ A6A77A4BF2FB6AA4F8357DBFC2B9C724, 0A654E001AF5614F93FB78E5A84D48CD30AAF73F24691DCA5137DD867A9A4447 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
13:08:24.0855 0x2634 Cisco AnyConnect Secure Mobility Agent for Windows - ok
13:08:24.0980 0x2634 [ 28856A978670B7292F45EEF43978998B, 73C5FDC6C3413AF63943F0167EB2522498BC97C4A8B545BBC8E6CE1EE52A7727 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
13:08:25.0009 0x2634 Adobe Creative Cloud - ok
13:08:25.0076 0x2634 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
13:08:25.0093 0x2634 Sidebar - ok
13:08:25.0118 0x2634 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
13:08:25.0121 0x2634 mctadmin - ok
13:08:25.0141 0x2634 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
13:08:25.0154 0x2634 Sidebar - ok
13:08:25.0157 0x2634 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
13:08:25.0159 0x2634 mctadmin - ok
13:08:25.0264 0x2634 [ 4568951FA4CD0B478D01D131F25A0ECC, 2D4220DBB4B16202FF1F2809024111AA80B6DD57178EC4BE336F5C5EBD66A76F ] C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe
13:08:25.0287 0x2634 uTorrent - ok
13:08:25.0399 0x2634 [ B8E262F4824CD03AE58D70B33307DCD5, 74EECAD827C5C307A2A5281299C15EED24DDD54E3B8E656B830F6932A3BE7D62 ] C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe
13:08:25.0481 0x2634 DAEMON Tools Lite Automount - ok
13:08:25.0945 0x2634 [ A70E699E0B0DD9C2B3B35E9A8167F903, 6CC7AFFEED646AA9C46C709C8B36751CA9EBCDDC70438ECE1D1328E6C1A02421 ] C:\Program Files\CCleaner\CCleaner64.exe
13:08:26.0050 0x2634 CCleaner Monitoring - ok
13:08:26.0057 0x2634 Waiting for KSN requests completion. In queue: 155
13:08:27.0177 0x2634 Win FW state via NFP2: enabled ( trusted )
13:08:27.0273 0x2634 ============================================================
13:08:27.0273 0x2634 Scan finished
13:08:27.0273 0x2634 ============================================================
13:08:27.0276 0x27ac Detected object count: 0
13:08:27.0276 0x27ac Actual detected object count: 0
|
|
29.10.2016, 12:14
| #9 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | SystembereinigungZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
29.10.2016, 13:13
| #10 |
| | Systembereinigung so, nun mit dem aktuellen Malwarebytes Anti-Rootkit: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.10.29.05
rootkit: v2016.09.26.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.17609
Michael Neumann :: PC [administrator]
29.10.2016 13:17:54
mbar-log-2016-10-29 (13-17-54).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 435040
Time elapsed: 52 minute(s), 47 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
29.10.2016, 13:24
| #11 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Systembereinigung Malware hast du keine auf dem Rechner. Dein Anliegen wäre also eigentlich besser da aufgehoben => Alles rund um Windows - Trojaner-Board Zitat:
Vorschläge: 1. neue Adminkonto erstellen, dann abmelden und mit diesem neuen Konto anmelden, darunter versuchen die fragwürdigen Dateien zu löschen 2. Linux-Live-DVD verwenden (zB Ubuntu MATE im Ausprobiermodus) und dann von "außen" die Dateien vom Windows-NTFS-Volume löschen 3. Möglichkeit: versuchen mit FRST die Dateien wegzuscripten
__________________ Logfiles bitte immer in CODE-Tags posten |
|
30.10.2016, 13:10
| #12 |
| | Systembereinigung Also ich denk ich probier mal alles aus was du geschrieben hast. Hoffentlich klappt das dann . EDIT: Möglichkeit Nummer 1 klappt nicht. die anderen verstehe ich nicht wie ich da vorgehen soll. Kannst es vielleicht etwas besser beschreiben? Und die Möglichkeit, die ich mir halt noch vorstellen kann, ist das System nochmal neu draufsetzen xD hallo cosinus, könntest du mir bitte ein Script für das FRST schreiben? und das mit Ubuntu probier ich heute mal aus. EDIT 2: Also das mit Ubuntu hat geklappt. Damit bedanke ich recht herzlich für die Hilfe von dir cosinus!!! Geändert von Mixer008 (29.10.2016 um 13:43 Uhr) |
|
| Themen zu Systembereinigung |
| canon, dateien, einiger, hilfe, hilfe!, komplett, löschen, nicht, nicht löschen, node.js, reinigen, runtergeladen, schonmal, system, systembereinigung, würde |
Linear-Darstellung
