WIN10: Ein kritischer Fehler .... Neustart in einer Minute

METZI01 · 05.05.2016, 10:33

METZI01
Hallo Trojanerboard,
bei der Installation von McAffee auf meinem Windows10 PC wurde der Virenschutz kurzfritsig de-aktviert.
Durch die Installation wurde ein Neustart notwendig, der ewig
dauerte und beim ersten Mal komplett fehlschlug. Nach dem Einloggen, kommt nach ca. 10 Minuten ein Pop-up
"Ein Kritischer Fehler ist aufgetreten! Der PC wird in einer Minute
neu gestartet" was dann auch passiert. Das Einloggen nach
Neustart dauert ca. 30 Minuten, danach habe ich etwa 10 Minuten
Zeit zum Arbeiten habe, bevor das Pop-up wiederkommt.
Vor 4 Wochen hatte ich mir bereits einen Virus/Malware eingefangen,
der ein komplettes Neuaufsetzen des Windows 10 PCs notwendig
machte. Da ging nur noch eine DOS Konsole. Davor hatte ich meine Daten mit XCOPY noch sichern
können, aber wahrscheinlich ist mein Rechner immer noch oder
schon wieder infiziert, obwohl ich die Platte ergebnislos mit McAffee gescannt hatte.
Ich habe FRST laufen lassen. Das Protokoll füge ich bei. Leider
kann ich das Resultat nicht interpretieren.
Könnt Ihr mir helfen, meinen Rechner wieder richtig sauber
zu bekommen?
Vielen Dank schon jetzt,
METZI01.

M-K-D-B · 06.05.2016, 19:50

Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.

Bitte beachte folgende Hinweise:

Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo. Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
Bitte beachten: Download bei filepony.de: So ladet Ihr unsere Tools richtig!
Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort als Administrator zu starten!

Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!

Zur ersten Analyse bitte FRST und TDSS-Killer ausführen:

Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Schritt 2
Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Bitte poste mit deiner nächsten Antwort

die Logdatei von TDSS-Killer,
die beiden neuen Logdateien von FRST.

METZI01 · 07.05.2016, 14:22

FRST.TXT Teil 1

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:02-05-2016
durchgeführt von Dirk (Administrator) auf PC_HWS28 (02-05-2016 21:25:51)
Gestartet von C:\Users\Dirk\Downloads
Geladene Profile: Dirk (Verfügbare Profile: Dirk)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(© 2015 Microsoft Corporation) C:\Users\Dirk\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11602.1.26.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [415128 2015-09-30] ()
HKLM\...\Run: [HotKeysCmds] => "C:\Windows\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\Windows\system32\igfxpers.exe"
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-03-19] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-1376451726-3106764419-4053074835-1001\...\Run: [HP Officejet Pro 8600 (NET)] => C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1376451726-3106764419-4053074835-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50670720 2016-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-1376451726-3106764419-4053074835-1001\...\Run: [BingSvc] => C:\Users\Dirk\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{2a85959e-aa5a-40e8-9074-73ad1babbd74}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{86157847-fa67-4d65-8815-ae32b7d0f1be}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKU\S-1-5-21-1376451726-3106764419-4053074835-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/?pc=ACJB
HKU\S-1-5-21-1376451726-3106764419-4053074835-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1376451726-3106764419-4053074835-1001 -> DefaultScope {69C2D572-DDAB-4C7B-AE41-F61B6C195839} URL = 
SearchScopes: HKU\S-1-5-21-1376451726-3106764419-4053074835-1001 -> {69C2D572-DDAB-4C7B-AE41-F61B6C195839} URL = 
SearchScopes: HKU\S-1-5-21-1376451726-3106764419-4053074835-1001 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-04-03] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-03] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-03] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2016-03-08] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-04-03] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-03] (Google Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-03]
CHR Extension: (Google Docs) - C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-03]
CHR Extension: (Google Drive) - C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-03]
CHR Extension: (YouTube) - C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-03]
CHR Extension: (Google Tabellen) - C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-03]
CHR Extension: (SiteAdvisor) - C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2016-04-03]
CHR Extension: (Google Docs Offline) - C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-08]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Google Mail) - C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-03]
CHR HKU\S-1-5-21-1376451726-3106764419-4053074835-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2828016 2016-02-09] (Microsoft Corporation)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [663592 2013-07-05] (Acer Incorporated)
S4 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-07] (ELAN Microelectronics Corp.)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [370064 2015-09-30] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [234192 2016-01-25] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-02-19] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [279488 2016-01-25] (McAfee, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [79248 2016-01-29] (McAfee, Inc.)
S3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [422184 2016-01-29] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [351656 2016-01-29] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [83608 2016-01-29] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [496368 2016-01-29] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [847608 2016-01-29] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [245096 2016-01-29] (McAfee, Inc.)
S3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-02 21:20 - 2016-05-02 21:20 - 00038395 _____ C:\Users\Dirk\Downloads\Addition.txt
2016-05-02 21:18 - 2016-05-02 21:25 - 00015660 _____ C:\Users\Dirk\Downloads\FRST.txt
2016-05-02 21:18 - 2016-05-02 21:25 - 00000000 ____D C:\FRST
2016-05-02 21:17 - 2016-05-02 21:18 - 02377216 _____ (Farbar) C:\Users\Dirk\Downloads\FRST64.exe
2016-05-02 20:50 - 2016-05-02 20:50 - 00000000 ___HD C:\OneDriveTemp
2016-05-02 18:57 - 2016-05-02 18:57 - 00000000 ____D C:\Program Files\Common Files\AV
2016-05-02 18:53 - 2016-05-02 18:54 - 08320264 _____ (McAfee, Inc.) C:\Users\Dirk\Downloads\McAfeeSetup-AutoLogin (2).exe
2016-05-02 18:52 - 2016-05-02 21:14 - 00000000 ___HD C:\$SysReset
2016-05-01 21:12 - 2016-04-22 09:57 - 00453288 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-05-01 20:56 - 2016-05-01 20:56 - 00000000 ____D C:\WINDOWS\%LOCALAPPDATA%
2016-05-01 18:41 - 2016-05-01 18:41 - 08320264 _____ (McAfee, Inc.) C:\Users\Dirk\Downloads\McAfeeSetup-AutoLogin (1).exe
2016-05-01 18:39 - 2016-05-01 18:40 - 08320264 _____ (McAfee, Inc.) C:\Users\Dirk\Downloads\McAfeeSetup-AutoLogin.exe
2016-04-19 20:51 - 2016-04-19 20:51 - 00000000 ____D C:\Users\Dirk\Tracing
2016-04-19 20:49 - 2016-05-02 21:25 - 00000000 ____D C:\Users\Dirk\AppData\Roaming\Skype
2016-04-19 20:49 - 2016-04-19 20:49 - 00002642 _____ C:\Users\Public\Desktop\Skype.lnk
2016-04-19 20:49 - 2016-04-19 20:49 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-04-19 20:49 - 2016-04-19 20:49 - 00000000 ____D C:\ProgramData\Skype
2016-04-19 20:49 - 2016-04-19 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-04-19 20:48 - 2016-04-19 20:48 - 01503872 _____ (Skype Technologies S.A.) C:\Users\Dirk\Downloads\SkypeSetup (2).exe
2016-04-16 10:31 - 2016-05-01 19:51 - 00000000 ____D C:\Users\Dirk\AppData\Local\CrashDumps
2016-04-12 20:53 - 2016-04-02 05:14 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-12 20:53 - 2016-03-29 12:20 - 07474016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-04-12 20:53 - 2016-03-29 12:20 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-12 20:53 - 2016-03-29 12:18 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-04-12 20:53 - 2016-03-29 11:37 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-04-12 20:53 - 2016-03-29 10:41 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-04-12 20:53 - 2016-03-29 10:06 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-04-12 20:53 - 2016-03-29 10:02 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-04-12 20:53 - 2016-03-29 10:01 - 00541304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-04-12 20:53 - 2016-03-29 09:58 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-04-12 20:53 - 2016-03-29 09:58 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-04-12 20:53 - 2016-03-29 09:46 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-04-12 20:53 - 2016-03-29 09:36 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-04-12 20:53 - 2016-03-29 09:19 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-04-12 20:53 - 2016-03-29 09:15 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-04-12 20:53 - 2016-03-29 09:15 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-04-12 20:53 - 2016-03-29 09:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-04-12 20:53 - 2016-03-29 09:12 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-04-12 20:53 - 2016-03-29 09:12 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-04-12 20:53 - 2016-03-29 09:10 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-04-12 20:53 - 2016-03-29 09:07 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-04-12 20:53 - 2016-03-29 09:02 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-04-12 20:53 - 2016-03-29 09:02 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-04-12 20:53 - 2016-03-29 09:00 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-04-12 20:53 - 2016-03-29 08:42 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-04-12 20:53 - 2016-03-29 08:37 - 01444352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-04-12 20:53 - 2016-03-29 08:37 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-04-12 20:53 - 2016-03-29 08:37 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-04-12 20:53 - 2016-03-29 08:32 - 01731584 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-04-12 20:53 - 2016-03-29 08:31 - 02275328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-04-12 20:53 - 2016-03-29 08:28 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-04-12 20:53 - 2016-03-29 08:27 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-04-12 20:53 - 2016-03-29 08:26 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-04-12 20:53 - 2016-03-29 08:05 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-04-12 20:53 - 2016-03-29 08:05 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-12 20:53 - 2016-03-29 08:02 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-04-12 20:53 - 2016-03-29 08:01 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-04-12 20:53 - 2016-03-29 07:56 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-12 20:53 - 2016-03-29 07:52 - 11545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-04-12 20:53 - 2016-03-29 07:51 - 22378496 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-04-12 20:53 - 2016-03-29 07:51 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-04-12 20:53 - 2016-03-29 07:43 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-04-12 20:53 - 2016-03-29 07:41 - 24602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-12 20:53 - 2016-03-29 07:41 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-12 20:53 - 2016-03-29 07:39 - 13382656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-12 20:53 - 2016-03-29 07:38 - 18673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-04-12 20:53 - 2016-03-29 07:37 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-12 20:53 - 2016-03-29 07:27 - 07836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-04-12 20:53 - 2016-03-29 07:27 - 05662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-04-12 20:52 - 2016-04-02 06:13 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-04-12 20:52 - 2016-04-02 06:10 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-04-12 20:52 - 2016-04-02 06:10 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-12 20:52 - 2016-04-02 06:10 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-12 20:52 - 2016-04-02 05:29 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-12 20:52 - 2016-04-02 05:29 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-04-12 20:52 - 2016-04-02 05:26 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-04-12 20:52 - 2016-04-02 05:23 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-04-12 20:52 - 2016-04-02 05:21 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-04-12 20:52 - 2016-04-02 05:19 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-04-12 20:52 - 2016-04-02 05:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-04-12 20:52 - 2016-04-02 05:15 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-04-12 20:52 - 2016-04-02 05:09 - 01832448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-12 20:52 - 2016-04-02 05:07 - 03575296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-12 20:52 - 2016-04-02 05:07 - 02158592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-12 20:52 - 2016-04-02 05:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-12 20:52 - 2016-03-29 12:23 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-04-12 20:52 - 2016-03-29 12:22 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-12 20:52 - 2016-03-29 12:22 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-12 20:52 - 2016-03-29 12:20 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-12 20:52 - 2016-03-29 12:20 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-12 20:52 - 2016-03-29 12:15 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-04-12 20:52 - 2016-03-29 12:11 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-04-12 20:52 - 2016-03-29 12:05 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-04-12 20:52 - 2016-03-29 12:02 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-04-12 20:52 - 2016-03-29 12:02 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-04-12 20:52 - 2016-03-29 11:56 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-04-12 20:52 - 2016-03-29 11:28 - 00696664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-12 20:52 - 2016-03-29 11:28 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-04-12 20:52 - 2016-03-29 11:28 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-04-12 20:52 - 2016-03-29 11:25 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-04-12 20:52 - 2016-03-29 11:25 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-12 20:52 - 2016-03-29 11:19 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-04-12 20:52 - 2016-03-29 11:18 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-04-12 20:52 - 2016-03-29 11:17 - 00300104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-04-12 20:52 - 2016-03-29 11:13 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-04-12 20:52 - 2016-03-29 11:11 - 00605440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-12 20:52 - 2016-03-29 11:11 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-04-12 20:52 - 2016-03-29 11:10 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-04-12 20:52 - 2016-03-29 11:09 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-04-12 20:52 - 2016-03-29 11:08 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-04-12 20:52 - 2016-03-29 11:08 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-04-12 20:52 - 2016-03-29 11:07 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-04-12 20:52 - 2016-03-29 10:44 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-04-12 20:52 - 2016-03-29 10:44 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-04-12 20:52 - 2016-03-29 10:41 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-04-12 20:52 - 2016-03-29 10:32 - 00253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-04-12 20:52 - 2016-03-29 10:26 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-04-12 20:52 - 2016-03-29 10:26 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-04-12 20:52 - 2016-03-29 10:26 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-04-12 20:52 - 2016-03-29 10:25 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-04-12 20:52 - 2016-03-29 10:24 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-04-12 20:52 - 2016-03-29 10:23 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-04-12 20:52 - 2016-03-29 10:21 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-04-12 20:52 - 2016-03-29 10:16 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-04-12 20:52 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-12 20:52 - 2016-03-29 10:07 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-04-12 20:52 - 2016-03-29 09:57 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-04-12 20:52 - 2016-03-29 09:51 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-04-12 20:52 - 2016-03-29 09:50 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-04-12 20:52 - 2016-03-29 09:49 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-04-12 20:52 - 2016-03-29 09:48 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-12 20:52 - 2016-03-29 09:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-04-12 20:52 - 2016-03-29 09:42 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-04-12 20:52 - 2016-03-29 09:39 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-04-12 20:52 - 2016-03-29 09:38 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-12 20:52 - 2016-03-29 09:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-04-12 20:52 - 2016-03-29 09:36 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-04-12 20:52 - 2016-03-29 09:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-04-12 20:52 - 2016-03-29 09:35 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-04-12 20:52 - 2016-03-29 09:34 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-04-12 20:52 - 2016-03-29 09:34 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-04-12 20:52 - 2016-03-29 09:34 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-04-12 20:52 - 2016-03-29 09:33 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-04-12 20:52 - 2016-03-29 09:30 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-04-12 20:52 - 2016-03-29 09:30 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-12 20:52 - 2016-03-29 09:28 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-04-12 20:52 - 2016-03-29 09:27 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-04-12 20:52 - 2016-03-29 09:26 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-04-12 20:52 - 2016-03-29 09:23 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-04-12 20:52 - 2016-03-29 09:23 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-12 20:52 - 2016-03-29 09:23 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-12 20:52 - 2016-03-29 09:22 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-04-12 20:52 - 2016-03-29 09:21 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-12 20:52 - 2016-03-29 09:20 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-04-12 20:52 - 2016-03-29 09:20 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-12 20:52 - 2016-03-29 09:19 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-12 20:52 - 2016-03-29 09:17 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-04-12 20:52 - 2016-03-29 09:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-12 20:52 - 2016-03-29 09:17 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-12 20:52 - 2016-03-29 09:16 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-04-12 20:52 - 2016-03-29 09:16 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-04-12 20:52 - 2016-03-29 09:14 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-04-12 20:52 - 2016-03-29 09:14 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-12 20:52 - 2016-03-29 09:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-04-12 20:52 - 2016-03-29 09:12 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-04-12 20:52 - 2016-03-29 09:11 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-04-12 20:52 - 2016-03-29 09:11 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-12 20:52 - 2016-03-29 09:11 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-04-12 20:52 - 2016-03-29 09:10 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-04-12 20:52 - 2016-03-29 09:09 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-12 20:52 - 2016-03-29 09:08 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-04-12 20:52 - 2016-03-29 09:08 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-04-12 20:52 - 2016-03-29 09:07 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-12 20:52 - 2016-03-29 09:06 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-12 20:52 - 2016-03-29 09:06 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-04-12 20:52 - 2016-03-29 09:05 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-12 20:52 - 2016-03-29 09:04 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-04-12 20:52 - 2016-03-29 09:03 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-04-12 20:52 - 2016-03-29 09:02 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-12 20:52 - 2016-03-29 09:00 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-12 20:52 - 2016-03-29 08:59 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-12 20:52 - 2016-03-29 08:59 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-12 20:52 - 2016-03-29 08:56 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-04-12 20:52 - 2016-03-29 08:56 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-04-12 20:52 - 2016-03-29 08:55 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-12 20:52 - 2016-03-29 08:53 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-04-12 20:52 - 2016-03-29 08:49 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-04-12 20:52 - 2016-03-29 08:48 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-04-12 20:52 - 2016-03-29 08:44 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-04-12 20:52 - 2016-03-29 08:43 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-04-12 20:52 - 2016-03-29 08:42 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-12 20:52 - 2016-03-29 08:42 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-12 20:52 - 2016-03-29 08:41 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-04-12 20:52 - 2016-03-29 08:40 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-04-12 20:52 - 2016-03-29 08:39 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-04-12 20:52 - 2016-03-29 08:39 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-04-12 20:52 - 2016-03-29 08:38 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-04-12 20:52 - 2016-03-29 08:36 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-04-12 20:52 - 2016-03-29 08:36 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-04-12 20:52 - 2016-03-29 08:35 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-04-12 20:52 - 2016-03-29 08:34 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-04-12 20:52 - 2016-03-29 08:34 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-04-12 20:52 - 2016-03-29 08:34 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-04-12 20:52 - 2016-03-29 08:32 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-12 20:52 - 2016-03-29 08:32 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-04-12 20:52 - 2016-03-29 08:32 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-04-12 20:52 - 2016-03-29 08:32 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-04-12 20:52 - 2016-03-29 08:32 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-04-12 20:52 - 2016-03-29 08:32 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-04-12 20:52 - 2016-03-29 08:32 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-04-12 20:52 - 2016-03-29 08:31 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-04-12 20:52 - 2016-03-29 08:31 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-04-12 20:52 - 2016-03-29 08:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-04-12 20:52 - 2016-03-29 08:30 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-04-12 20:52 - 2016-03-29 08:29 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-04-12 20:52 - 2016-03-29 08:29 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-04-12 20:52 - 2016-03-29 08:28 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-04-12 20:52 - 2016-03-29 08:27 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-04-12 20:52 - 2016-03-29 08:27 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-04-12 20:52 - 2016-03-29 08:23 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-04-12 20:52 - 2016-03-29 08:22 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-04-12 20:52 - 2016-03-29 08:19 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-12 20:52 - 2016-03-29 08:17 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-04-12 20:52 - 2016-03-29 08:14 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-04-12 20:52 - 2016-03-29 08:13 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-04-12 20:52 - 2016-03-29 08:10 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-04-12 20:52 - 2016-03-29 08:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-04-12 20:52 - 2016-03-29 08:05 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-04-12 20:52 - 2016-03-29 08:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-04-12 20:52 - 2016-03-29 08:05 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-04-12 20:52 - 2016-03-29 08:04 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-12 20:52 - 2016-03-29 08:04 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-12 20:52 - 2016-03-29 08:01 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-04-12 20:52 - 2016-03-29 07:58 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-04-12 20:52 - 2016-03-29 07:49 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-04-12 20:52 - 2016-03-29 07:45 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-04-12 20:52 - 2016-03-29 07:45 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-04-12 20:52 - 2016-03-29 07:43 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-04-12 20:52 - 2016-03-29 07:38 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-04-12 20:52 - 2016-03-29 07:36 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-04-12 20:52 - 2016-03-29 07:26 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-12 20:52 - 2016-03-29 07:25 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-04-12 20:51 - 2016-04-02 05:30 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-12 20:51 - 2016-04-02 05:25 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-12 20:51 - 2016-04-02 05:25 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-04-12 20:51 - 2016-04-02 05:23 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-12 20:51 - 2016-04-02 05:08 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-04-12 20:51 - 2016-04-02 05:03 - 04774912 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-04-12 20:51 - 2016-03-29 10:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-04-12 20:51 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-12 20:51 - 2016-03-29 10:07 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-04-12 20:51 - 2016-03-29 10:07 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-12 20:51 - 2016-03-29 10:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-04-12 20:51 - 2016-03-29 10:00 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-12 20:51 - 2016-03-29 10:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-04-12 20:51 - 2016-03-29 10:00 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-12 20:51 - 2016-03-29 09:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-12 20:51 - 2016-03-29 09:57 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-04-12 20:51 - 2016-03-29 09:57 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-12 20:51 - 2016-03-29 09:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-04-12 20:51 - 2016-03-29 09:55 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-12 20:51 - 2016-03-29 09:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-04-12 20:51 - 2016-03-29 09:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-04-12 20:51 - 2016-03-29 09:54 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-12 20:51 - 2016-03-29 09:53 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-04-12 20:51 - 2016-03-29 09:52 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-12 20:51 - 2016-03-29 09:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-04-12 20:51 - 2016-03-29 09:50 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-12 20:51 - 2016-03-29 09:50 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-04-12 20:51 - 2016-03-29 09:50 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-12 20:51 - 2016-03-29 09:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-12 20:51 - 2016-03-29 09:48 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-04-12 20:51 - 2016-03-29 09:46 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-04-12 20:51 - 2016-03-29 09:34 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-04-12 20:51 - 2016-03-29 09:32 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-04-12 20:51 - 2016-03-29 09:32 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-04-12 20:51 - 2016-03-29 09:20 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-04-12 20:51 - 2016-03-29 09:20 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-04-12 20:51 - 2016-03-29 09:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-04-12 20:51 - 2016-03-29 09:18 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-04-12 20:51 - 2016-03-29 09:14 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-04-12 20:51 - 2016-03-29 09:11 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-04-12 20:51 - 2016-03-29 09:11 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-12 20:51 - 2016-03-29 09:11 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-04-12 20:51 - 2016-03-29 09:09 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-04-12 20:51 - 2016-03-29 09:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-04-12 20:51 - 2016-03-29 09:08 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-12 20:51 - 2016-03-29 09:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-04-12 20:51 - 2016-03-29 09:05 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-04-12 20:51 - 2016-03-29 09:00 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-04-12 20:51 - 2016-03-29 09:00 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-12 20:51 - 2016-03-29 08:59 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-04-12 20:51 - 2016-03-29 08:53 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-04-12 20:51 - 2016-03-29 08:52 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-04-12 20:51 - 2016-03-29 08:52 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-04-12 20:51 - 2016-03-29 08:39 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-12 20:51 - 2016-03-29 08:34 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-04-12 20:51 - 2016-03-29 08:27 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-04-12 20:51 - 2016-03-29 08:27 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-04-12 20:51 - 2016-03-29 08:05 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-04-12 20:51 - 2016-03-29 08:00 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-04-12 20:51 - 2016-03-29 07:35 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-04-12 20:51 - 2016-03-29 07:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-04-12 20:51 - 2016-03-29 07:27 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-04-12 20:51 - 2016-03-29 07:26 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-12 20:51 - 2016-03-29 07:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-04-12 20:51 - 2016-03-29 07:21 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-04-10 16:25 - 2016-04-10 16:25 - 01930927 _____ C:\Users\Dirk\Downloads\Angebot H.- Wellensiek-Str.28.pdf
2016-04-08 21:44 - 2016-04-08 21:44 - 00000000 ____D C:\Users\Dirk\AppData\Roaming\WildTangent
2016-04-08 21:44 - 2016-04-08 21:44 - 00000000 ____D C:\Users\Dirk\AppData\Local\AOP SDK
2016-04-07 09:41 - 2016-04-07 09:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\Recovery Management
2016-04-07 09:40 - 2016-04-07 09:40 - 00000000 ____D C:\Users\Dirk\AppData\Local\AcerCloud
2016-04-07 09:38 - 2016-04-07 09:38 - 00000000 ____D C:\Users\Dirk\AppData\Local\Doc
2016-04-07 09:37 - 2016-04-07 09:37 - 00000000 ____D C:\Users\Dirk\AppData\Local\ClearfiMedia
2016-04-07 09:35 - 2016-04-08 21:45 - 00000000 ____D C:\Users\Dirk\AppData\Local\Acer
2016-04-07 09:35 - 2016-04-07 09:35 - 00003418 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent
2016-04-07 09:28 - 2016-04-07 09:28 - 00000000 ____D C:\Users\Dirk\AppData\Local\ClearfiPhoto
2016-04-04 18:38 - 2016-04-04 18:38 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-04-03 19:06 - 2016-04-03 19:06 - 00003220 _____ C:\WINDOWS\System32\Tasks\{72E3AFEB-82F0-4512-9721-944E05BA9CF6}
2016-04-03 19:01 - 2016-04-03 19:01 - 01503872 _____ (Skype Technologies S.A.) C:\Users\Dirk\Downloads\SkypeSetup (1).exe
2016-04-03 16:45 - 2016-04-07 10:23 - 00000000 ____D C:\Users\Dirk\AppData\Roaming\Apple Computer
2016-04-03 16:45 - 2016-04-03 16:45 - 00001826 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-04-03 16:45 - 2016-04-03 16:45 - 00000000 ____D C:\Users\Dirk\AppData\Local\Apple Computer
2016-04-03 16:45 - 2016-04-03 16:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-04-03 16:44 - 2016-04-03 16:45 - 00000000 ____D C:\Program Files\iTunes
2016-04-03 16:44 - 2016-04-03 16:44 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-04-03 16:44 - 2016-04-03 16:44 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2016-04-03 16:44 - 2016-04-03 16:44 - 00000000 ____D C:\Users\Dirk\AppData\Local\Apple
2016-04-03 16:44 - 2016-04-03 16:44 - 00000000 ____D C:\ProgramData\Apple Computer
2016-04-03 16:44 - 2016-04-03 16:44 - 00000000 ____D C:\Program Files\iPod
2016-04-03 16:44 - 2016-04-03 16:44 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-04-03 16:44 - 2016-04-03 16:44 - 00000000 ____D C:\Program Files\Bonjour
2016-04-03 16:44 - 2016-04-03 16:44 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-04-03 16:44 - 2016-04-03 16:44 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-04-03 16:44 - 2016-04-03 16:44 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-04-03 16:43 - 2016-04-03 16:44 - 00000000 ____D C:\ProgramData\Apple
2016-04-03 16:42 - 2016-04-03 16:43 - 169713992 _____ (Apple Inc.) C:\Users\Dirk\Downloads\iTunes6464Setup (3).exe
2016-04-03 15:36 - 2016-04-03 15:36 - 00000000 ___RD C:\Users\Dirk\Documents\SkyDrive
2016-04-03 15:36 - 2016-04-03 15:36 - 00000000 ____D C:\Users\Dirk\Documents\Tracing
2016-04-03 15:26 - 2015-10-24 08:38 - 00000000 ___RD C:\Users\Dirk\Documents\OneDrive
2016-04-03 15:26 - 2014-04-08 18:40 - 00000000 ____D C:\Users\Dirk\Documents\PicStream
2016-04-03 15:20 - 2016-04-03 15:20 - 00000000 ____D C:\Users\Dirk\Downloads\Scandisk_Stick_64GB
2016-04-03 15:20 - 2016-04-03 15:20 - 00000000 ____D C:\Users\Dirk\Downloads\log
2016-04-03 15:20 - 2016-04-03 15:20 - 00000000 ____D C:\Users\Dirk\Downloads\Fat32FormatterEN
2016-04-03 15:20 - 2015-10-18 15:47 - 00272572 _____ C:\Users\Dirk\Downloads\V0805.pdf
2016-04-03 15:20 - 2015-10-18 15:39 - 00312710 _____ C:\Users\Dirk\Downloads\V0800.pdf
2016-04-03 15:20 - 2015-10-11 14:27 - 00060818 _____ C:\Users\Dirk\Downloads\umzugscheckliste.pdf
2016-04-03 15:20 - 2015-02-21 13:18 - 00132765 _____ C:\Users\Dirk\Downloads\YAWZME (1).pdf
2016-04-03 15:20 - 2015-02-07 11:01 - 01310274 _____ (pendrivelinux.com) C:\Users\Dirk\Downloads\YUMI-2.0.1.5.exe
2016-04-03 15:20 - 2015-01-18 11:04 - 00300539 _____ C:\Users\Dirk\Downloads\YAWZME.pdf
2016-04-03 15:20 - 2014-04-08 19:12 - 00000000 ____D C:\Users\Dirk\Documents\Mobile Uploads
2016-04-03 15:19 - 2016-02-25 14:46 - 55614231 _____ C:\Users\Dirk\Downloads\roomeon_3D-Planer_DE_1.6.2.exe
2016-04-03 15:19 - 2016-02-23 07:30 - 00017213 _____ C:\Users\Dirk\Downloads\Stadtwerke 2015.xlsx
2016-04-03 15:19 - 2016-02-23 07:30 - 00017213 _____ C:\Users\Dirk\Downloads\Stadtwerke 2015 (1).xlsx
2016-04-03 15:19 - 2016-02-19 16:19 - 01627872 _____ C:\Users\Dirk\Downloads\setup_dm_Fotowelt.exe
2016-04-03 15:19 - 2016-01-21 07:18 - 00066725 _____ C:\Users\Dirk\Downloads\Sammelrechnung_3129423371.pdf
2016-04-03 15:19 - 2016-01-21 07:18 - 00066725 _____ C:\Users\Dirk\Downloads\Sammelrechnung_3129423371 (1).pdf
2016-04-03 15:19 - 2016-01-20 13:17 - 00001412 _____ C:\Users\Dirk\Downloads\R2xvYmFsX09mZmljZV9SMi5TQVAgRGVza3RvcA-- (8).ica
2016-04-03 15:19 - 2016-01-05 15:15 - 17883136 _____ C:\Users\Dirk\Downloads\SketchUpViewer-en.msi
2016-04-03 15:19 - 2016-01-05 11:26 - 00030987 _____ C:\Users\Dirk\Downloads\SY052044_RE1512055316_2015-12.pdf
2016-04-03 15:19 - 2015-12-29 16:21 - 01721899 _____ C:\Users\Dirk\Downloads\REVIEW COPY_9781484217474_Strathausen.pdf
2016-04-03 15:19 - 2015-12-29 16:19 - 01547260 _____ C:\Users\Dirk\Downloads\Protokoll HWS 20.pdf
2016-04-03 15:19 - 2015-12-09 18:04 - 181071432 _____ (Kodak Alaris Inc.) C:\Users\Dirk\Downloads\MyPhotoCreationInstaller (5).exe
2016-04-03 15:19 - 2015-11-28 15:00 - 12494104 _____ (Splashtop Inc. ) C:\Users\Dirk\Downloads\Splashtop_Remote_Desktop_Win_v1.1.4.0.exe
2016-04-03 15:19 - 2015-11-15 09:39 - 00067678 _____ C:\Users\Dirk\Downloads\S_20151115_093930_Neue_Nachrichten.ZIP
2016-04-03 15:19 - 2015-11-08 13:45 - 00168651 _____ C:\Users\Dirk\Downloads\SY052044_EVN_2015-10_RE1510049803.pdf
2016-04-03 15:19 - 2015-11-08 13:44 - 00029729 _____ C:\Users\Dirk\Downloads\SY052044_RE1510049803_2015-10 (1).pdf
2016-04-03 15:19 - 2015-11-08 13:43 - 00029729 _____ C:\Users\Dirk\Downloads\SY052044_RE1510049803_2015-10.pdf
2016-04-03 15:19 - 2015-10-11 14:36 - 00061871 _____ C:\Users\Dirk\Downloads\R-1510153434-KLAUS METZGER (3).pdf
2016-04-03 15:19 - 2015-10-11 14:33 - 00061871 _____ C:\Users\Dirk\Downloads\R-1510153434-KLAUS METZGER (2).pdf
2016-04-03 15:19 - 2015-10-11 14:31 - 00061871 _____ C:\Users\Dirk\Downloads\R-1510153434-KLAUS METZGER (1).pdf
2016-04-03 15:19 - 2015-10-11 14:25 - 00061871 _____ C:\Users\Dirk\Downloads\R-1510153434-KLAUS METZGER.pdf
2016-04-03 15:19 - 2015-10-06 18:52 - 04088505 _____ C:\Users\Dirk\Downloads\Scan_20151006.pdf
2016-04-03 15:19 - 2015-09-11 10:05 - 00001407 _____ C:\Users\Dirk\Downloads\R2xvYmFsX09mZmljZV9SMi5TQVAgRGVza3RvcA-- (7).ica
2016-04-03 15:19 - 2015-09-11 09:48 - 00001411 _____ C:\Users\Dirk\Downloads\R2xvYmFsX09mZmljZV9SMi5TQVAgRGVza3RvcA-- (6).ica
2016-04-03 15:19 - 2015-09-11 09:48 - 00001407 _____ C:\Users\Dirk\Downloads\R2xvYmFsX09mZmljZV9SMi5TQVAgRGVza3RvcA-- (5).ica
2016-04-03 15:19 - 2015-09-11 08:25 - 00001408 _____ C:\Users\Dirk\Downloads\R2xvYmFsX09mZmljZV9SMi5TQVAgRGVza3RvcA-- (4).ica
2016-04-03 15:19 - 2015-09-10 09:51 - 00001413 _____ C:\Users\Dirk\Downloads\R2xvYmFsX09mZmljZV9SMi5TQVAgRGVza3RvcA-- (1).ica
2016-04-03 15:19 - 2015-09-10 09:51 - 00001412 _____ C:\Users\Dirk\Downloads\R2xvYmFsX09mZmljZV9SMi5TQVAgRGVza3RvcA-- (3).ica
2016-04-03 15:19 - 2015-09-10 09:51 - 00001408 _____ C:\Users\Dirk\Downloads\R2xvYmFsX09mZmljZV9SMi5TQVAgRGVza3RvcA--.ica
2016-04-03 15:19 - 2015-09-10 09:51 - 00001407 _____ C:\Users\Dirk\Downloads\R2xvYmFsX09mZmljZV9SMi5TQVAgRGVza3RvcA-- (2).ica
2016-04-03 15:19 - 2015-09-04 13:41 - 00029675 _____ C:\Users\Dirk\Downloads\SY052044_RE1508044494_2015-08.pdf
2016-04-03 15:19 - 2015-07-19 17:22 - 01384576 _____ (Skype Technologies S.A.) C:\Users\Dirk\Downloads\SkypeSetup.exe
2016-04-03 15:19 - 2015-07-10 10:04 - 00095728 _____ C:\Users\Dirk\Downloads\S3  für Windows.pdf
2016-04-03 15:19 - 2015-06-14 15:09 - 00200860 _____ C:\Users\Dirk\Downloads\SpieldesLebens-ab1997.pdf
2016-04-03 15:19 - 2015-02-27 12:51 - 00001039 _____ C:\Users\Dirk\Downloads\receiverconfig.cr
2016-04-03 15:19 - 2015-02-07 11:23 - 1034944512 _____ C:\Users\Dirk\Downloads\ubuntu-14.04.1-desktop-i386.iso
2016-04-03 15:19 - 2015-02-07 10:17 - 1162936320 _____ C:\Users\Dirk\Downloads\ubuntu-14.10-desktop-amd64.iso
2016-04-03 15:19 - 2015-01-25 11:33 - 02370520 _____ C:\Users\Dirk\Downloads\Setup_FileViewPro_2015.exe
2016-04-03 15:19 - 2015-01-25 11:15 - 171682424 _____ (Kodak Alaris Inc.) C:\Users\Dirk\Downloads\MyPhotoCreationInstaller.exe
2016-04-03 15:19 - 2014-04-30 09:17 - 00102752 _____ C:\Users\Dirk\Downloads\RAPBOU0210000035.kml
2016-04-03 15:19 - 2014-04-15 20:21 - 00226143 _____ C:\Users\Dirk\Downloads\Pierre & Vacances.pdf
2016-04-03 15:19 - 2014-04-15 20:09 - 00329639 _____ C:\Users\Dirk\Downloads\Pierre&Vacances_cgv-cpv-E14-pvcp.pdf
2016-04-03 15:18 - 2016-03-13 13:29 - 00041746 _____ C:\Users\Dirk\Downloads\Millimeterpapier.svg
2016-04-03 15:18 - 2016-02-18 16:49 - 50573824 _____ (Ravensburger AG) C:\Users\Dirk\Downloads\install (1).exe
2016-04-03 15:18 - 2016-01-30 14:15 - 00075130 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2016_001 (1).PDF
2016-04-03 15:18 - 2016-01-30 14:14 - 00075130 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2016_001.PDF
2016-04-03 15:18 - 2016-01-13 11:51 - 00671245 _____ C:\Users\Dirk\Downloads\Metzger (2).skp
2016-04-03 15:18 - 2016-01-06 10:42 - 00519671 _____ C:\Users\Dirk\Downloads\Metzger.skp
2016-04-03 15:18 - 2016-01-06 09:24 - 171682424 _____ (Kodak Alaris Inc.) C:\Users\Dirk\Downloads\KodakCreateHome.exe
2016-04-03 15:18 - 2016-01-05 15:25 - 00519671 _____ C:\Users\Dirk\Downloads\Metzger (1).skp
2016-04-03 15:18 - 2015-12-31 12:23 - 00082239 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_013.PDF
2016-04-03 15:18 - 2015-12-20 14:39 - 167608088 _____ (Apple Inc.) C:\Users\Dirk\Downloads\iTunes6464Setup (2).exe
2016-04-03 15:18 - 2015-12-20 13:44 - 167608088 _____ (Apple Inc.) C:\Users\Dirk\Downloads\iTunes6464Setup.exe
2016-04-03 15:18 - 2015-12-20 13:44 - 167608088 _____ (Apple Inc.) C:\Users\Dirk\Downloads\iTunes6464Setup (1).exe
2016-04-03 15:18 - 2015-12-02 17:52 - 181071432 _____ (Kodak Alaris Inc.) C:\Users\Dirk\Downloads\MyPhotoCreationInstaller (4).exe
2016-04-03 15:18 - 2015-11-29 16:27 - 181071432 _____ (Kodak Alaris Inc.) C:\Users\Dirk\Downloads\MyPhotoCreationInstaller (3).exe
2016-04-03 15:18 - 2015-11-29 15:59 - 181071432 _____ (Kodak Alaris Inc.) C:\Users\Dirk\Downloads\MyPhotoCreationInstaller (2).exe
2016-04-03 15:18 - 2015-11-29 15:39 - 181071432 _____ (Kodak Alaris Inc.) C:\Users\Dirk\Downloads\MyPhotoCreationInstaller (1).exe
2016-04-03 15:18 - 2015-11-15 09:40 - 00080322 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_011 (2).PDF
2016-04-03 15:18 - 2015-11-15 09:38 - 00080322 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_011 (1).PDF
2016-04-03 15:18 - 2015-11-09 18:17 - 50704384 _____ (Ravensburger AG) C:\Users\Dirk\Downloads\install.exe
2016-04-03 15:18 - 2015-11-01 14:47 - 00080322 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_011.PDF
2016-04-03 15:18 - 2015-09-05 15:30 - 00263204 _____ C:\Users\Dirk\Downloads\Il+Rustico+Speisekarte+2015+web.pdf
2016-04-03 15:18 - 2015-09-01 01:56 - 00074948 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_009.PDF
2016-04-03 15:18 - 2015-08-02 12:32 - 00077960 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_008.PDF
2016-04-03 15:18 - 2015-07-10 10:05 - 00000256 _____ C:\Users\Dirk\Downloads\KVK38514.BDT
2016-04-03 15:18 - 2015-06-14 16:14 - 04617950 _____ C:\Users\Dirk\Downloads\mingw-w64-v1.0-snapshot-20110809.tar.bz2
2016-04-03 15:18 - 2015-06-14 13:48 - 00078202 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_006.PDF
2016-04-03 15:18 - 2015-05-03 09:21 - 00088052 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_005.PDF
2016-04-03 15:18 - 2015-04-18 10:21 - 00011641 _____ C:\Users\Dirk\Downloads\Ihre Retourenmarke.pdf
2016-04-03 15:18 - 2015-04-10 20:14 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Dirk\Downloads\mbam-setup-2.1.4.1018.exe
2016-04-03 15:18 - 2015-04-03 15:51 - 00085368 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_004 (1).PDF
2016-04-03 15:18 - 2015-04-03 15:50 - 00085368 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_004.PDF
2016-04-03 15:18 - 2015-02-28 08:09 - 00077521 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_003.PDF
2016-04-03 15:18 - 2015-02-04 15:44 - 00033491 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_002_pdf.pdf
2016-04-03 15:18 - 2015-01-31 10:46 - 00085850 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2015_001.PDF
2016-04-03 15:18 - 2015-01-18 11:04 - 00126965 _____ C:\Users\Dirk\Downloads\mandats_H2FDYMY.pdf
2016-04-03 15:18 - 2015-01-18 11:04 - 00091137 _____ C:\Users\Dirk\Downloads\Ihr 50 Euro Gutschein von airberlin holidays.pdf
2016-04-03 15:18 - 2015-01-05 08:59 - 00089977 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2014_014.PDF
2016-04-03 15:18 - 2014-09-23 08:37 - 112794960 _____ (Apple Inc.) C:\Users\Dirk\Downloads\iTunes64Setup.exe
2016-04-03 15:18 - 2014-08-29 21:48 - 00078875 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2014_010.pdf
2016-04-03 15:18 - 2014-06-28 12:54 - 10977160 _____ (LeapFrog Enterprises, Inc.) C:\Users\Dirk\Downloads\LeapFrogConnectSetup_LeapsterExplorer.exe
2016-04-03 15:18 - 2014-06-16 20:13 - 11862384 _____ (Microsoft Corporation) C:\Users\Dirk\Downloads\microsoft-security-essentials.exe
2016-04-03 15:18 - 2014-06-16 20:12 - 00748064 _____ C:\Users\Dirk\Downloads\microsoft-security-essentials_setup (1).exe
2016-04-03 15:18 - 2014-06-16 20:11 - 00748064 _____ C:\Users\Dirk\Downloads\microsoft-security-essentials_setup.exe
2016-04-03 15:18 - 2014-06-04 17:47 - 00000876 _____ C:\Users\Dirk\Downloads\Musik - Verknüpfung.lnk
2016-04-03 15:18 - 2014-05-03 11:11 - 00084673 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2014_005 (1).pdf
2016-04-03 15:18 - 2014-05-03 11:10 - 00084673 _____ C:\Users\Dirk\Downloads\Konto_1000220846-Auszug_2014_005.pdf
2016-04-03 15:17 - 2016-02-15 18:06 - 00014620 _____ C:\Users\Dirk\Downloads\Fernwärme Hochrechnung Dez 2015.xlsx
2016-04-03 15:17 - 2016-02-13 17:01 - 08699520 _____ C:\Users\Dirk\Downloads\DerNeueFordEdge-Broschuere.pdf
2016-04-03 15:17 - 2016-02-07 17:16 - 00091307 _____ C:\Users\Dirk\Downloads\Briefmarken.10Stk.07.02.2016_1716.pdf
2016-04-03 15:17 - 2016-01-16 16:40 - 00106077 _____ C:\Users\Dirk\Downloads\Briefmarken.12Stk.16.01.2016_1639.pdf
2016-04-03 15:17 - 2016-01-06 16:22 - 00472389 _____ C:\Users\Dirk\Downloads\Blick 1.pdf
2016-04-03 15:17 - 2016-01-06 16:22 - 00284057 _____ C:\Users\Dirk\Downloads\Ansicht 3.pdf
2016-04-03 15:17 - 2016-01-06 16:21 - 00324505 _____ C:\Users\Dirk\Downloads\Ansicht 1.pdf
2016-04-03 15:17 - 2016-01-06 16:21 - 00304598 _____ C:\Users\Dirk\Downloads\Ansicht 2 (1).pdf
2016-04-03 15:17 - 2016-01-06 10:45 - 00304598 _____ C:\Users\Dirk\Downloads\Ansicht 2.pdf
2016-04-03 15:17 - 2016-01-05 11:55 - 00023570 _____ C:\Users\Dirk\Downloads\2015-12-30_42849204_Abrechnung.pdf
2016-04-03 15:17 - 2016-01-05 11:54 - 00023730 _____ C:\Users\Dirk\Downloads\2015-12-30_42846459_Abrechnung.pdf
2016-04-03 15:17 - 2015-12-20 19:56 - 03504972 _____ C:\Users\Dirk\Downloads\6003524.pdf
2016-04-03 15:17 - 2015-12-20 16:19 - 00325034 _____ C:\Users\Dirk\Downloads\BonFab&Manue.pptx
2016-04-03 15:17 - 2015-11-16 20:13 - 00061433 _____ C:\Users\Dirk\Downloads\AGB (1).pdf
2016-04-03 15:17 - 2015-11-16 20:12 - 00072902 _____ C:\Users\Dirk\Downloads\Buchung Nr. 1001629_1 für Dirk Metzger (1).pdf
2016-04-03 15:17 - 2015-11-15 20:05 - 00061433 _____ C:\Users\Dirk\Downloads\AGB.pdf
2016-04-03 15:17 - 2015-11-15 18:44 - 00072902 _____ C:\Users\Dirk\Downloads\Buchung Nr. 1001629_1 für Dirk Metzger.pdf
2016-04-03 15:17 - 2015-11-10 20:35 - 00117659 _____ C:\Users\Dirk\Downloads\Briefmarken.10Stk.10.11.2015_2034.pdf
2016-04-03 15:17 - 2015-11-10 20:34 - 00129525 _____ C:\Users\Dirk\Downloads\Briefmarken.4Stk.10.11.2015_2034.pdf
2016-04-03 15:17 - 2015-11-01 11:21 - 07281864 _____ C:\Users\Dirk\Downloads\Dirk (1).zip
2016-04-03 15:17 - 2015-11-01 11:20 - 07281864 _____ C:\Users\Dirk\Downloads\Dirk.zip
2016-04-03 15:17 - 2015-10-26 20:48 - 00921946 _____ C:\Users\Dirk\Downloads\Handreichung_DAS.zip
2016-04-03 15:17 - 2015-10-06 17:15 - 05469780 _____ C:\Users\Dirk\Downloads\DWS_166_Antrag_DWS_Direkt_2015_06_AFB.pdf
2016-04-03 15:17 - 2015-09-21 18:39 - 00005047 _____ C:\Users\Dirk\Downloads\feinsein.mid
2016-04-03 15:17 - 2015-09-04 08:29 - 00023542 _____ C:\Users\Dirk\Downloads\eticket-Dr-METZGER-DIRK .pdf
2016-04-03 15:17 - 2015-09-03 14:15 - 00026631 _____ C:\Users\Dirk\Downloads\2015-08-31_41433205_Abrechnung (1).pdf
2016-04-03 15:17 - 2015-09-03 14:14 - 00029600 _____ C:\Users\Dirk\Downloads\2015-08-31_41430391_Abrechnung (1).pdf
2016-04-03 15:17 - 2015-09-01 08:56 - 00856656 _____ C:\Users\Dirk\Downloads\Golden Circle Account Statement 2015_07.pdf
2016-04-03 15:17 - 2015-08-31 06:39 - 04294476 _____ C:\Users\Dirk\Downloads\Axa_iPhone Schaden 20150704_V2.pdf
2016-04-03 15:17 - 2015-08-31 03:50 - 00026631 _____ C:\Users\Dirk\Downloads\2015-08-31_41433205_Abrechnung.pdf
2016-04-03 15:17 - 2015-08-31 03:48 - 00029600 _____ C:\Users\Dirk\Downloads\2015-08-31_41430391_Abrechnung.pdf
2016-04-03 15:17 - 2015-08-22 02:17 - 00011011 _____ C:\Users\Dirk\Downloads\folio.html
2016-04-03 15:17 - 2015-08-16 12:22 - 00090604 _____ C:\Users\Dirk\Downloads\Abrechnung 2015.xlsx
2016-04-03 15:17 - 2015-07-08 10:37 - 00329544 _____ C:\Users\Dirk\Downloads\Flyer_LeCyclo.pdf
2016-04-03 15:17 - 2015-06-14 15:20 - 50433966 _____ C:\Users\Dirk\Downloads\Dev-Cpp 5.11 TDM-GCC 4.9.2 Setup.exe
2016-04-03 15:17 - 2015-06-14 14:23 - 09326468 _____ C:\Users\Dirk\Downloads\devcpp-4.9.9.2_setup.exe
2016-04-03 15:17 - 2015-05-21 05:54 - 00964606 _____ C:\Users\Dirk\Downloads\BoardingPassMETZGERDIRK DR1432184005971.pdf
2016-04-03 15:17 - 2015-05-03 10:14 - 00027178 _____ C:\Users\Dirk\Downloads\2015-04-30_40044671_Abrechnung.pdf
2016-04-03 15:17 - 2015-05-03 10:14 - 00027178 _____ C:\Users\Dirk\Downloads\2015-04-30_40044671_Abrechnung (1).pdf
2016-04-03 15:17 - 2015-04-25 09:02 - 00072521 _____ C:\Users\Dirk\Downloads\Confirmation_for_Booking_ID_#_68535731_Check-in_August_20__2015.pdf
2016-04-03 15:17 - 2015-04-10 20:00 - 02217984 _____ C:\Users\Dirk\Downloads\adwcleaner_4.201.exe
2016-04-03 15:17 - 2015-04-03 16:06 - 00023816 _____ C:\Users\Dirk\Downloads\2015-03-30_39702407_Abrechnung.pdf
2016-04-03 15:17 - 2015-04-03 16:04 - 00023966 _____ C:\Users\Dirk\Downloads\2015-03-30_39700203_Abrechnung.pdf
2016-04-03 15:17 - 2015-04-03 16:04 - 00023966 _____ C:\Users\Dirk\Downloads\2015-03-30_39700203_Abrechnung (1).pdf
2016-04-03 15:17 - 2015-01-05 09:11 - 00023623 _____ C:\Users\Dirk\Downloads\2014-12-30_38713611_AirPlus_Rechnung.pdf
2016-04-03 15:17 - 2015-01-05 09:11 - 00023623 _____ C:\Users\Dirk\Downloads\2014-12-30_38713611_AirPlus_Rechnung (1).pdf
2016-04-03 15:17 - 2015-01-05 09:10 - 00023885 _____ C:\Users\Dirk\Downloads\2014-12-01_38417755_AirPlus_Rechnung (1).pdf
2016-04-03 15:17 - 2015-01-05 09:09 - 00023957 _____ C:\Users\Dirk\Downloads\2014-12-30_38711174_AirPlus_Rechnung (1).pdf
2016-04-03 15:17 - 2015-01-05 09:08 - 00023957 _____ C:\Users\Dirk\Downloads\2014-12-30_38711174_AirPlus_Rechnung.pdf
2016-04-03 15:17 - 2014-12-30 10:30 - 00023885 _____ C:\Users\Dirk\Downloads\2014-12-01_38417755_AirPlus_Rechnung.pdf
2016-04-03 15:17 - 2014-12-13 11:27 - 00139988 _____ C:\Users\Dirk\Downloads\Briefmarken.10Stk.13.12.2014_1127.pdf
2016-04-03 15:17 - 2014-11-16 13:02 - 06266240 _____ C:\Users\Dirk\Downloads\Bayam37 (1).air
2016-04-03 15:17 - 2014-11-16 12:59 - 01765180 _____ C:\Users\Dirk\Downloads\Bayam711.air
2016-04-03 15:17 - 2014-11-16 12:58 - 17711760 _____ (Adobe Systems Inc.) C:\Users\Dirk\Downloads\AdobeAIRInstaller.exe
2016-04-03 15:17 - 2014-11-16 12:11 - 06266240 _____ C:\Users\Dirk\Downloads\Bayam37.air
2016-04-03 15:17 - 2014-11-08 09:44 - 53664128 _____ (Citrix Systems, Inc.) C:\Users\Dirk\Downloads\CitrixReceiverWeb.exe
2016-04-03 15:17 - 2014-09-28 12:17 - 00188133 _____ C:\Users\Dirk\Downloads\Fat32FormatterEN.zip
2016-04-03 15:17 - 2014-09-01 11:18 - 00027321 _____ C:\Users\Dirk\Downloads\2014-09-01_37356581_AirPlus_Rechnung.pdf
2016-04-03 15:17 - 2014-07-30 14:13 - 00027089 _____ C:\Users\Dirk\Downloads\2014-07-30_37003748_AirPlus_Rechnung.pdf
2016-04-03 15:17 - 2014-06-19 07:15 - 70638408 _____ (Apple Inc.) C:\Users\Dirk\Downloads\iCloudSetup.exe
2016-04-03 15:17 - 2014-05-02 11:22 - 00009732 _____ C:\Users\Dirk\Downloads\googleearth-trace.kml
2016-04-03 15:17 - 2014-04-30 09:13 - 00884688 _____ (Google Inc.) C:\Users\Dirk\Downloads\GoogleEarthSetup.exe
2016-04-03 15:17 - 2014-04-27 10:57 - 00321890 _____ C:\Users\Dirk\Downloads\FRITZ.Box Fon WLAN 7390 84.06.03_27.04.14_1157.export
2016-04-03 15:17 - 2014-04-27 10:56 - 00321890 _____ C:\Users\Dirk\Downloads\FRITZ.Box Fon WLAN 7390 84.06.03_27.04.14_1156.export
2016-04-03 15:17 - 2014-04-15 20:09 - 03450888 _____ C:\Users\Dirk\Downloads\cg_fr_mondial_assistance.pdf
2016-04-03 14:30 - 2016-04-03 16:39 - 00000000 ____D C:\Users\Dirk\Documents\Dirk
2016-04-03 14:30 - 2016-04-03 14:30 - 00000000 ____D C:\Users\Dirk\Documents\Default.migrated
2016-04-03 14:30 - 2016-04-03 14:30 - 00000000 ____D C:\Users\Dirk\Documents\.oracle_jre_usage
2016-04-03 14:30 - 2016-04-03 14:30 - 00000000 ____D C:\Users\Dirk\Documents\.kodakch
2016-04-03 12:48 - 2016-04-10 13:09 - 00000000 ____D C:\Users\Dirk\AppData\Roaming\HpUpdate
2016-04-03 12:48 - 2016-04-03 12:48 - 00002281 _____ C:\Users\Public\Desktop\HP Officejet Pro 8600.lnk
2016-04-03 12:48 - 2016-04-03 12:48 - 00000988 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
2016-04-03 12:48 - 2016-04-03 12:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-04-03 12:48 - 2012-10-17 04:31 - 00741480 ____N (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPM5912.dll
2016-04-03 12:47 - 2016-04-03 12:49 - 00000000 ____D C:\Program Files (x86)\HP
2016-04-03 12:47 - 2016-04-03 12:47 - 00000000 ____D C:\ProgramData\HP
2016-04-03 12:47 - 2016-04-03 12:47 - 00000000 ____D C:\Program Files\HP
2016-04-03 12:46 - 2016-04-03 12:46 - 00000057 _____ C:\ProgramData\Ament.ini
2016-04-03 12:45 - 2016-04-03 12:50 - 00000000 ____D C:\Users\Dirk\AppData\Local\HP
2016-04-03 11:57 - 2016-03-01 07:31 - 00848168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-04-03 11:57 - 2016-03-01 07:22 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-04-03 11:57 - 2016-02-24 11:52 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-04-03 11:57 - 2016-02-24 11:48 - 00713568 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-04-03 11:57 - 2016-02-24 11:47 - 01173344 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-04-03 11:57 - 2016-02-24 11:40 - 00513888 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-04-03 11:57 - 2016-02-24 11:34 - 01613664 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-04-03 11:57 - 2016-02-24 11:28 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-04-03 11:57 - 2016-02-24 11:15 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-04-03 11:57 - 2016-02-24 10:46 - 06607080 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-04-03 11:57 - 2016-02-24 10:11 - 01997152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-04-03 11:57 - 2016-02-24 10:10 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-04-03 11:57 - 2016-02-24 10:06 - 05242496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-04-03 11:57 - 2016-02-24 08:18 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-04-03 11:57 - 2016-02-24 08:07 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-04-03 11:57 - 2016-02-24 07:55 - 01996288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-04-03 11:57 - 2016-02-24 07:34 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-04-03 11:57 - 2016-02-24 07:12 - 05321728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-04-03 11:57 - 2016-02-24 07:09 - 06972416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-04-03 11:57 - 2016-02-24 07:05 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-04-03 11:57 - 2016-02-24 07:03 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-04-03 11:57 - 2016-02-23 13:25 - 01818696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-04-03 11:57 - 2016-02-23 12:34 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-04-03 11:57 - 2016-02-23 12:32 - 08705672 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-04-03 11:57 - 2016-02-23 12:32 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-04-03 11:57 - 2016-02-23 12:32 - 01152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-04-03 11:57 - 2016-02-23 12:32 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-04-03 11:57 - 2016-02-23 12:31 - 01017032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-04-03 11:57 - 2016-02-23 12:31 - 00819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-04-03 11:57 - 2016-02-23 12:31 - 00536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-04-03 11:57 - 2016-02-23 12:31 - 00408120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-04-03 11:57 - 2016-02-23 12:25 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-04-03 11:57 - 2016-02-23 12:21 - 22564328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-04-03 11:57 - 2016-02-23 11:45 - 02773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-04-03 11:57 - 2016-02-23 11:38 - 06952088 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-04-03 11:57 - 2016-02-23 11:38 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-04-03 11:57 - 2016-02-23 11:38 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-04-03 11:57 - 2016-02-23 11:38 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-04-03 11:57 - 2016-02-23 11:38 - 00882720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-04-03 11:57 - 2016-02-23 11:37 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-04-03 11:57 - 2016-02-23 11:30 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-04-03 11:57 - 2016-02-23 11:27 - 21124344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-04-03 11:57 - 2016-02-23 11:20 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2016-04-03 11:57 - 2016-02-23 10:56 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-04-03 11:57 - 2016-02-23 10:53 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-04-03 11:57 - 2016-02-23 10:37 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-04-03 11:57 - 2016-02-23 10:29 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-04-03 11:57 - 2016-02-23 10:28 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-04-03 11:57 - 2016-02-23 10:14 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-04-03 11:57 - 2016-02-23 10:10 - 00997376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-04-03 11:57 - 2016-02-23 10:04 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-04-03 11:57 - 2016-02-23 10:02 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-04-03 11:57 - 2016-02-23 09:52 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-04-03 11:57 - 2016-02-23 09:49 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-04-03 11:57 - 2016-02-23 09:37 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-04-03 11:57 - 2016-02-23 09:31 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-04-03 11:57 - 2016-02-23 09:24 - 04827136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-04-03 11:57 - 2016-02-23 09:24 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-04-03 11:57 - 2016-02-23 09:14 - 00990720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-04-03 11:57 - 2016-02-23 08:56 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-04-03 11:57 - 2016-02-23 08:55 - 04894208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-04-03 11:57 - 2016-02-23 08:41 - 02912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-04-03 11:57 - 2016-02-23 08:39 - 02581504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-04-03 11:57 - 2016-02-23 08:36 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-04-03 11:57 - 2016-02-23 08:35 - 07533568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-04-03 11:57 - 2016-02-23 08:33 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-04-03 11:57 - 2016-02-23 08:30 - 02061312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-04-03 11:57 - 2016-02-23 08:28 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-04-03 11:56 - 2016-02-24 10:58 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-04-03 11:56 - 2016-02-24 10:54 - 00127840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-04-03 11:56 - 2016-02-24 10:51 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-04-03 11:56 - 2016-02-24 10:50 - 00808800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-04-03 11:56 - 2016-02-24 10:43 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-04-03 11:56 - 2016-02-24 10:39 - 00141560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-04-03 11:56 - 2016-02-24 10:19 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-04-03 11:56 - 2016-02-24 10:14 - 00216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-04-03 11:56 - 2016-02-24 10:11 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-04-03 11:56 - 2016-02-24 10:11 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-04-03 11:56 - 2016-02-24 10:11 - 00652392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-04-03 11:56 - 2016-02-24 10:11 - 00394080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-04-03 11:56 - 2016-02-24 10:11 - 00258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-04-03 11:56 - 2016-02-24 10:09 - 00640472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-04-03 11:56 - 2016-02-24 10:09 - 00147808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-04-03 11:56 - 2016-02-24 09:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-04-03 11:56 - 2016-02-24 09:39 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-04-03 11:56 - 2016-02-24 09:38 - 00187744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-04-03 11:56 - 2016-02-24 09:38 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-04-03 11:56 - 2016-02-24 09:37 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-04-03 11:56 - 2016-02-24 09:36 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-04-03 11:56 - 2016-02-24 09:35 - 00523752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-04-03 11:56 - 2016-02-24 09:35 - 00220064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-04-03 11:56 - 2016-02-24 09:33 - 00538736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-04-03 11:56 - 2016-02-24 09:33 - 00141664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-04-03 11:56 - 2016-02-24 09:30 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-04-03 11:56 - 2016-02-24 09:28 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-04-03 11:56 - 2016-02-24 09:23 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-04-03 11:56 - 2016-02-24 09:23 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-04-03 11:56 - 2016-02-24 09:22 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-04-03 11:56 - 2016-02-24 09:20 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-04-03 11:56 - 2016-02-24 09:19 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-04-03 11:56 - 2016-02-24 09:19 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-04-03 11:56 - 2016-02-24 09:14 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-04-03 11:56 - 2016-02-24 09:13 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-04-03 11:56 - 2016-02-24 09:12 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-04-03 11:56 - 2016-02-24 09:12 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-04-03 11:56 - 2016-02-24 09:10 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-04-03 11:56 - 2016-02-24 09:09 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-04-03 11:56 - 2016-02-24 09:09 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-04-03 11:56 - 2016-02-24 09:07 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-04-03 11:56 - 2016-02-24 09:03 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-04-03 11:56 - 2016-02-24 09:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-04-03 11:56 - 2016-02-24 09:01 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-04-03 11:56 - 2016-02-24 09:01 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2016-04-03 11:56 - 2016-02-24 09:00 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-04-03 11:56 - 2016-02-24 08:59 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-04-03 11:56 - 2016-02-24 08:59 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-04-03 11:56 - 2016-02-24 08:59 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-04-03 11:56 - 2016-02-24 08:58 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-04-03 11:56 - 2016-02-24 08:55 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-04-03 11:56 - 2016-02-24 08:55 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-04-03 11:56 - 2016-02-24 08:55 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-04-03 11:56 - 2016-02-24 08:54 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-04-03 11:56 - 2016-02-24 08:54 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-04-03 11:56 - 2016-02-24 08:54 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-04-03 11:56 - 2016-02-24 08:54 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-04-03 11:56 - 2016-02-24 08:53 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-04-03 11:56 - 2016-02-24 08:53 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-04-03 11:56 - 2016-02-24 08:52 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-04-03 11:56 - 2016-02-24 08:52 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PimIndexMaintenanceClient.dll
2016-04-03 11:56 - 2016-02-24 08:49 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-04-03 11:56 - 2016-02-24 08:46 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-04-03 11:56 - 2016-02-24 08:44 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-04-03 11:56 - 2016-02-24 08:44 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-04-03 11:56 - 2016-02-24 08:44 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-04-03 11:56 - 2016-02-24 08:43 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-04-03 11:56 - 2016-02-24 08:41 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-04-03 11:56 - 2016-02-24 08:41 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-04-03 11:56 - 2016-02-24 08:40 - 01224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-04-03 11:56 - 2016-02-24 08:40 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-04-03 11:56 - 2016-02-24 08:40 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-04-03 11:56 - 2016-02-24 08:39 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2016-04-03 11:56 - 2016-02-24 08:38 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-04-03 11:56 - 2016-02-24 08:36 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-04-03 11:56 - 2016-02-24 08:34 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-04-03 11:56 - 2016-02-24 08:32 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-04-03 11:56 - 2016-02-24 08:32 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-04-03 11:56 - 2016-02-24 08:31 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2016-04-03 11:56 - 2016-02-24 08:31 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2016-04-03 11:56 - 2016-02-24 08:28 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-04-03 11:56 - 2016-02-24 08:28 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-04-03 11:56 - 2016-02-24 08:28 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2016-04-03 11:56 - 2016-02-24 08:25 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-04-03 11:56 - 2016-02-24 08:23 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2016-04-03 11:56 - 2016-02-24 08:22 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2016-04-03 11:56 - 2016-02-24 08:21 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-04-03 11:56 - 2016-02-24 08:21 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-04-03 11:56 - 2016-02-24 08:18 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-04-03 11:56 - 2016-02-24 08:18 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2016-04-03 11:56 - 2016-02-24 08:17 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-04-03 11:56 - 2016-02-24 08:16 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-04-03 11:56 - 2016-02-24 08:13 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-04-03 11:56 - 2016-02-24 08:09 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-04-03 11:56 - 2016-02-24 08:09 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-04-03 11:56 - 2016-02-24 08:07 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-04-03 11:56 - 2016-02-24 08:07 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-04-03 11:56 - 2016-02-24 08:04 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-04-03 11:56 - 2016-02-24 08:03 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-04-03 11:56 - 2016-02-24 07:43 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-04-03 11:56 - 2016-02-24 07:22 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2016-04-03 11:56 - 2016-02-23 13:25 - 00563552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-04-03 11:56 - 2016-02-23 13:15 - 00779384 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-04-03 11:56 - 2016-02-23 12:33 - 00389992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-04-03 11:56 - 2016-02-23 12:32 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-04-03 11:56 - 2016-02-23 12:31 - 00476728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-04-03 11:56 - 2016-02-23 12:22 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2016-04-03 11:56 - 2016-02-23 12:17 - 00146272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-04-03 11:56 - 2016-02-23 11:40 - 00430944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-04-03 11:56 - 2016-02-23 11:38 - 00450912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-04-03 11:56 - 2016-02-23 11:38 - 00420928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-04-03 11:56 - 2016-02-23 11:32 - 00791744 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-04-03 11:56 - 2016-02-23 11:27 - 00376536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-04-03 11:56 - 2016-02-23 11:25 - 00534368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-04-03 11:56 - 2016-02-23 11:20 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-04-03 11:56 - 2016-02-23 11:17 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-04-03 11:56 - 2016-02-23 11:12 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2016-04-03 11:56 - 2016-02-23 11:10 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-04-03 11:56 - 2016-02-23 11:07 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-04-03 11:56 - 2016-02-23 11:07 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-04-03 11:56 - 2016-02-23 11:06 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-04-03 11:56 - 2016-02-23 11:01 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-04-03 11:56 - 2016-02-23 11:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-04-03 11:56 - 2016-02-23 11:00 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-04-03 11:56 - 2016-02-23 10:58 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2016-04-03 11:56 - 2016-02-23 10:55 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-04-03 11:56 - 2016-02-23 10:53 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2016-04-03 11:56 - 2016-02-23 10:52 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-04-03 11:56 - 2016-02-23 10:50 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-04-03 11:56 - 2016-02-23 10:48 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-04-03 11:56 - 2016-02-23 10:40 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-04-03 11:56 - 2016-02-23 10:39 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-04-03 11:56 - 2016-02-23 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-04-03 11:56 - 2016-02-23 10:38 - 00287712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2016-04-03 11:56 - 2016-02-23 10:36 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-04-03 11:56 - 2016-02-23 10:34 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-04-03 11:56 - 2016-02-23 10:34 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-04-03 11:56 - 2016-02-23 10:33 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-04-03 11:56 - 2016-02-23 10:31 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-04-03 11:56 - 2016-02-23 10:27 - 00307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-04-03 11:56 - 2016-02-23 10:26 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-04-03 11:56 - 2016-02-23 10:23 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-04-03 11:56 - 2016-02-23 10:22 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-04-03 11:56 - 2016-02-23 10:20 - 00847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-04-03 11:56 - 2016-02-23 10:20 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-04-03 11:56 - 2016-02-23 10:20 - 00493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-04-03 11:56 - 2016-02-23 10:19 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-04-03 11:56 - 2016-02-23 10:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-04-03 11:56 - 2016-02-23 10:09 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-04-03 11:56 - 2016-02-23 10:04 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-04-03 11:56 - 2016-02-23 10:04 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-04-03 11:56 - 2016-02-23 10:02 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-04-03 11:56 - 2016-02-23 10:02 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-04-03 11:56 - 2016-02-23 09:58 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-04-03 11:56 - 2016-02-23 09:57 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TimeBrokerClient.dll
2016-04-03 11:56 - 2016-02-23 09:50 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2016-04-03 11:56 - 2016-02-23 09:48 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-04-03 11:56 - 2016-02-23 09:47 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2016-04-03 11:56 - 2016-02-23 09:38 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-04-03 11:56 - 2016-02-23 09:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-04-03 11:56 - 2016-02-23 09:36 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-04-03 11:56 - 2016-02-23 09:36 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-04-03 11:56 - 2016-02-23 09:35 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-04-03 11:56 - 2016-02-23 09:24 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-04-03 11:56 - 2016-02-23 09:05 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-04-03 11:56 - 2016-02-23 09:01 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-04-03 11:56 - 2016-02-23 08:51 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-04-03 11:56 - 2016-02-09 05:18 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-04-03 11:56 - 2016-02-09 05:18 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2016-04-03 11:56 - 2016-02-09 05:07 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-04-03 11:52 - 2016-04-03 11:52 - 00000000 ____D C:\Users\Dirk\Documents\VomStick
2016-04-03 11:51 - 2016-04-03 11:51 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-04-03 11:49 - 2016-05-02 20:54 - 00001124 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-03 11:49 - 2016-05-02 20:50 - 00001120 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-03 11:49 - 2016-04-12 20:55 - 00002268 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-03 11:49 - 2016-04-12 20:55 - 00002256 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-03 11:49 - 2016-04-03 11:49 - 00987728 _____ (Google Inc.) C:\Users\Dirk\Downloads\ChromeSetup.exe
2016-04-03 11:49 - 2016-04-03 11:49 - 00004182 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-04-03 11:49 - 2016-04-03 11:49 - 00003950 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-04-03 11:49 - 2016-04-03 11:49 - 00000000 ____D C:\Users\Dirk\AppData\Local\Google
2016-04-03 11:49 - 2016-04-03 11:49 - 00000000 ____D C:\Program Files (x86)\Google
2016-04-03 11:35 - 2016-04-03 11:36 - 00000000 ____D C:\Users\Dirk\AppData\Local\MicrosoftEdge
2016-04-03 10:59 - 2016-04-03 10:59 - 00003294 _____ C:\WINDOWS\System32\Tasks\{32C02164-1FF7-4EAA-8361-FEE7937F380C}
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Videos
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Programme
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\ProgramData\Vorlagen
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\ProgramData\Startmenü
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\ProgramData\Dokumente
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-04-03 08:41 - 2016-04-03 08:41 - 00000000 _SHDL C:\Dokumente und Einstellungen
2016-04-03 08:40 - 2016-04-03 08:40 - 00000000 _____ C:\Recovery.txt
2016-04-02 22:21 - 2016-04-02 21:45 - 00000000 ___DC C:\WINDOWS\Panther
2016-04-02 22:19 - 2016-04-02 22:19 - 00000000 ____D C:\Windows.old
2016-04-02 22:18 - 2016-04-02 22:18 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-04-02 22:17 - 2016-04-02 22:17 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-04-02 22:17 - 2016-04-02 22:17 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-04-02 22:17 - 2016-04-02 22:17 - 00000000 ____D C:\Program Files\MSBuild
2016-04-02 22:17 - 2016-04-02 22:17 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-04-02 22:17 - 2016-04-02 22:17 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-04-02 22:16 - 2016-04-02 22:16 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-04-02 22:16 - 2016-04-02 22:16 - 00304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-04-02 22:16 - 2015-10-23 18:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-04-02 22:16 - 2015-10-23 18:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-04-02 22:16 - 2015-10-23 18:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-04-02 22:16 - 2015-10-23 18:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-04-02 22:16 - 2015-10-23 18:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-04-02 22:16 - 2015-10-23 18:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-04-02 21:57 - 2016-04-07 09:25 - 00000000 ____D C:\Users\Dirk\AppData\Local\Deployment
2016-04-02 21:57 - 2016-04-02 21:57 - 00000000 ____D C:\Users\Dirk\AppData\Local\Apps\2.0
2016-04-02 21:57 - 2016-04-02 21:57 - 00000000 ____D C:\ProgramData\Microsoft SkyDrive
2016-04-02 21:53 - 2016-04-03 11:53 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-04-02 21:53 - 2016-04-02 21:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-04-02 21:52 - 2016-04-02 21:52 - 00000000 ____D C:\Program Files\Common Files\Atheros
2016-04-02 21:51 - 2016-04-02 21:51 - 00000000 ____D C:\Program Files\AMD
2016-04-02 21:50 - 2016-05-02 20:49 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-04-02 21:50 - 2016-05-02 20:49 - 00000000 __SHD C:\Users\Dirk\IntelGraphicsProfiles
2016-04-02 21:50 - 2016-04-18 20:28 - 00002426 _____ C:\Users\Dirk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-04-02 21:50 - 2016-04-02 21:50 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-04-02 21:50 - 2016-04-02 21:50 - 00000000 ___RD C:\Users\Dirk\OneDrive
2016-04-02 21:47 - 2016-04-02 21:47 - 00000000 ____D C:\Users\Dirk\AppData\Local\Publishers
2016-04-02 21:47 - 2016-04-02 21:47 - 00000000 ____D C:\Users\Dirk\AppData\Local\ActiveSync
2016-04-02 21:46 - 2016-04-03 11:55 - 00000000 ____D C:\Users\Dirk\AppData\Local\Comms
2016-04-02 21:45 - 2016-04-02 21:45 - 00000020 ___SH C:\Users\Dirk\ntuser.ini
2016-04-02 21:45 - 2016-04-02 21:45 - 00000000 ____D C:\Users\Dirk\AppData\Local\TileDataLayer
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-04-02 21:41 - 2016-04-02 21:41 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-04-02 21:39 - 2016-05-02 20:52 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-02 21:35 - 2016-04-02 21:35 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-04-02 21:29 - 2016-04-02 21:29 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-04-02 21:29 - 2016-04-02 21:29 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2016-04-02 21:29 - 2016-04-02 21:29 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2016-04-02 21:27 - 2016-04-02 21:27 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-04-02 21:26 - 2016-05-01 18:45 - 00000000 ____D C:\Users\Dirk
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\Vorlagen
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\Startmenü
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\Netzwerkumgebung
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\Lokale Einstellungen
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\Eigene Dateien
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\Druckumgebung
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\Documents\Eigene Videos
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\Documents\Eigene Musik
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\Documents\Eigene Bilder
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\AppData\Local\Verlauf
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\AppData\Local\Anwendungsdaten
2016-04-02 21:26 - 2016-04-02 21:26 - 00000000 _SHDL C:\Users\Dirk\Anwendungsdaten
2016-04-02 21:23 - 2016-04-03 08:36 - 00000000 ____D C:\Program Files\Elantech
2016-04-02 21:23 - 2016-04-02 21:23 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-04-02 21:23 - 2016-04-02 21:23 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-04-02 21:23 - 2016-04-02 21:23 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-04-02 21:23 - 2016-04-02 21:23 - 00000000 ____D C:\Program Files\Realtek
2016-04-02 20:47 - 2016-04-02 21:40 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2016-04-02 20:47 - 2016-04-02 21:40 - 00009528 _____ C:\WINDOWS\diagerr.xml
2016-04-02 20:47 - 2016-04-02 21:07 - 00000000 ___HD C:\$WINDOWS.~BT
2016-04-02 20:44 - 2016-04-02 20:44 - 00000000 ____D C:\ESD
2016-04-02 20:43 - 2016-04-02 20:43 - 00000000 ____D C:\Users\Dirk\AppData\Local\Acer Aspire R7 Tutorial
2016-04-02 20:36 - 2016-04-02 20:36 - 00000000 ___HD C:\$Windows.~WS
2016-04-02 20:20 - 2016-01-29 07:01 - 00422184 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfeaack.sys
2016-04-02 20:16 - 2016-05-01 18:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2016-04-02 16:17 - 2016-04-13 20:13 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-04-02 16:17 - 2016-04-13 19:57 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-02 15:06 - 2016-05-02 18:52 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C751264D-4FEC-42F8-B390-A5764F872E9D}
2016-04-02 15:06 - 2016-04-02 15:06 - 00000000 ____D C:\Users\Dirk\AppData\Roaming\Macromedia
2016-04-02 15:05 - 2016-04-08 21:37 - 00000000 ____D C:\Users\Public\OEM
2016-04-02 15:05 - 2016-04-02 15:05 - 00000000 ____D C:\Users\Dirk\Documents\clear.fi
2016-04-02 14:54 - 2016-05-02 20:50 - 00000000 __RDO C:\Users\Dirk\SkyDrive
2016-04-02 14:54 - 2016-04-02 21:35 - 00002812 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1376451726-3106764419-4053074835-1001
2016-04-02 14:51 - 2016-04-02 14:51 - 00000000 ____D C:\Users\Public\Pokki
2016-04-02 14:50 - 2016-04-08 21:45 - 00000000 ____D C:\Users\Dirk\AppData\Local\clear.fi
2016-04-02 14:50 - 2016-04-02 14:50 - 00000000 ____D C:\Users\Dirk\PicStream
2016-04-02 14:49 - 2016-04-02 14:50 - 00000000 ____D C:\Users\Dirk\AppData\Local\PackageStaging
2016-04-02 14:49 - 2016-04-02 14:49 - 00001280 _____ C:\Users\Dirk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RtkGUI.lnk
2016-04-02 14:49 - 2016-04-02 14:49 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2016-04-02 14:49 - 2016-04-02 14:49 - 00000000 ____D C:\Users\Dirk\AppData\Roaming\Atheros
2016-04-02 14:48 - 2016-04-12 20:56 - 00000000 ____D C:\Users\Dirk\AppData\Local\Packages
2016-04-02 14:48 - 2016-04-03 12:53 - 00000000 ____D C:\Users\Dirk\AppData\Local\VirtualStore
2016-04-02 14:48 - 2016-04-02 14:48 - 00000000 ____D C:\Users\Dirk\AppData\Roaming\Adobe
2016-04-02 14:48 - 2016-04-02 14:48 - 00000000 ____D C:\ProgramData\OEM_YAHOO
2016-04-02 14:48 - 2016-04-02 14:48 - 00000000 ____D C:\Program Files\Accessory Store

METZI01 · 07.05.2016, 14:25

Code:

ATTFilter

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-10-21 15:36 - 2014-01-18 22:49 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC.dat
2021-10-04 09:34 - 2014-01-18 22:49 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTMICEQ0.dat
2016-05-02 20:52 - 2016-02-13 18:59 - 00776766 _____ C:\WINDOWS\system32\perfh007.dat
2016-05-02 20:52 - 2016-02-13 18:59 - 00155544 _____ C:\WINDOWS\system32\perfc007.dat
2016-05-02 20:52 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-05-02 20:44 - 2016-02-13 19:25 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-02 19:09 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-05-02 18:57 - 2013-10-31 08:40 - 00000000 ____D C:\ProgramData\McAfee
2016-05-02 18:57 - 2013-10-31 08:40 - 00000000 ____D C:\Program Files\Common Files\mcafee
2016-05-01 21:00 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-05-01 18:49 - 2013-10-31 08:40 - 00000000 ____D C:\Program Files\mcafee
2016-05-01 18:49 - 2013-10-31 08:40 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-05-01 18:42 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated
2016-04-30 09:30 - 2015-10-30 08:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-04-30 08:43 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-17 08:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-04-16 10:24 - 2016-02-13 10:21 - 00241576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-16 10:21 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-04-16 10:21 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-04-16 10:21 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-04-16 10:21 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-04-13 20:48 - 2015-10-30 09:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-04-13 20:15 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-10 10:03 - 2013-10-31 08:39 - 00000000 ____D C:\Program Files (x86)\Acer
2016-04-08 21:45 - 2014-01-18 23:12 - 00000000 ____D C:\ProgramData\Norton
2016-04-08 21:45 - 2013-10-31 08:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2016-04-08 21:45 - 2013-10-31 08:38 - 00000000 ____D C:\Program Files\Acer
2016-04-08 21:44 - 2014-01-18 23:12 - 00000000 ____D C:\ProgramData\NortonInstaller
2016-04-08 21:44 - 2014-01-18 23:12 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-04-08 21:44 - 2013-10-31 08:39 - 00000000 ____D C:\ProgramData\Acer
2016-04-08 21:44 - 2013-10-31 08:30 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-04-08 21:44 - 2013-10-31 08:30 - 00000000 ____D C:\ProgramData\WildTangent
2016-04-08 21:44 - 2013-10-31 08:30 - 00000000 ____D C:\Program Files (x86)\WildTangent Games
2016-04-08 21:44 - 2013-10-31 08:30 - 00000000 ____D C:\Program Files (x86)\WildGames
2016-04-08 21:43 - 2013-10-31 08:40 - 00000000 ____D C:\WINDOWS\oem
2016-04-07 12:04 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-04-07 09:49 - 2014-01-18 23:09 - 00000000 ____D C:\ProgramData\OEM
2016-04-07 09:29 - 2013-10-31 09:11 - 00000000 ___HD C:\OEM
2016-04-06 20:32 - 2015-10-30 09:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-04-06 20:32 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-04 18:03 - 2016-02-13 19:30 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-04-03 20:49 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-04-03 20:49 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-04-03 20:49 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-04-03 20:48 - 2016-02-13 19:12 - 00000000 ____D C:\Program Files\Windows Journal
2016-04-03 20:48 - 2015-10-30 09:24 - 00000000 __RSD C:\WINDOWS\Media
2016-04-03 20:48 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-04-03 20:48 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-04-03 20:48 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-04-03 20:48 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-04-03 20:48 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-04-03 16:57 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-04-03 11:54 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-04-03 08:39 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\appcompat
2016-04-02 22:21 - 2015-10-30 09:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-04-02 22:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-04-02 22:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-04-02 21:50 - 2013-10-31 08:27 - 00000000 ___HD C:\Intel
2016-04-02 21:41 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-04-02 21:41 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Registration
2016-04-02 21:41 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows NT
2016-04-02 21:35 - 2014-01-18 23:09 - 00002080 _____ C:\WINDOWS\System32\Tasks\Power Management
2016-04-02 21:35 - 2014-01-18 22:24 - 00002750 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1376451726-3106764419-4053074835-500
2016-04-02 21:34 - 2015-10-30 09:24 - 00000000 __RHD C:\Users\Public\Libraries
2016-04-02 21:30 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Help
2016-04-02 21:30 - 2014-01-18 23:13 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 12
2016-04-02 21:30 - 2014-01-18 22:44 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-04-02 21:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-04-02 21:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-04-02 21:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\InputMethod
2016-04-02 21:28 - 2013-10-31 08:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2016-04-02 21:28 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-04-02 21:28 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-04-02 21:28 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2016-04-02 21:28 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\ADFS
2016-04-02 21:27 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-04-02 21:27 - 2014-01-18 22:51 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros
2016-04-02 21:27 - 2014-01-18 22:45 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2016-04-02 21:27 - 2014-01-18 22:12 - 00000000 ____D C:\Program Files\Intel
2016-04-02 21:25 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-04-02 19:17 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-04-03 12:46 - 2016-04-03 12:46 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-04-02 21:23 - 2016-04-02 21:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Dirk\AppData\Local\Temp\0039241462208239mcinst.exe
C:\Users\Dirk\AppData\Local\Temp\AcerDocsSetup.exe
C:\Users\Dirk\AppData\Local\Temp\AcerPortalSetup.exe
C:\Users\Dirk\AppData\Local\Temp\AOPSetup.exe
C:\Users\Dirk\AppData\Local\Temp\BSvcProcessor.exe
C:\Users\Dirk\AppData\Local\Temp\BSvcUpdater.exe
C:\Users\Dirk\AppData\Local\Temp\McCSPInstall.dll
C:\Users\Dirk\AppData\Local\Temp\mccspuninstall.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-05-01 20:15

==================== Ende von FRST.txt ============================

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:02-05-2016
durchgeführt von Dirk (2016-05-02 21:20:02)
Gestartet von C:\Users\Dirk\Downloads
Windows 10 Home Version 1511 (X64) (2016-04-02 19:45:10)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1376451726-3106764419-4053074835-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1376451726-3106764419-4053074835-503 - Limited - Disabled)
Dirk (S-1-5-21-1376451726-3106764419-4053074835-1001 - Administrator - Enabled) => C:\Users\Dirk
Gast (S-1-5-21-1376451726-3106764419-4053074835-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1376451726-3106764419-4053074835-1005 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8100 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8100 - Acer Incorporated)
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
AMD Catalyst Install Manager (HKLM\...\{8FAAC5E4-3361-726A-9F42-F0414FD1D3BC}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom Card Reader Driver Installer (HKLM\...\{67AA948F-8D83-4566-B84A-7CAABCF64E3F}) (Version: 16.0.2.8 - Broadcom Corporation)
Broadcom NetLink Controller (HKLM\...\{D1D7ED66-5C08-40A0-AEC0-B6DF977697BB}) (Version: 16.2.1.2 - Broadcom Corporation)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3126.57 - CyberLink Corp.)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
HP Officejet Pro 8600 - Grundlegende Software für das Gerät (HKLM\...\{D2D05FDB-4EDA-462D-8DB6-E0B9AD4FA25F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Hilfe (HKLM-x32\...\{FDE820DD-CC88-4395-AD5C-801365B8F316}) (Version: 28.0.0 - Hewlett Packard)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4248 - Intel Corporation)
iTunes (HKLM\...\{A31C5565-90D9-4615-AE13-94D86C3836C7}) (Version: 12.3.3.17 - Apple Inc.)
Microsoft Office Home and Student 2013 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 15.0.4805.1003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
OEM Application Profile (HKLM-x32\...\{E3AE2D4D-5274-CE6B-5434-64DA3131A301}) (Version: 1.00.0000 - Ihr Firmenname)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4805.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4805.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4805.1003 - Microsoft Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.07 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7027 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.21 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1376451726-3106764419-4053074835-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Dirk\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {02B15658-20E0-43D6-AC47-11CFE768A778} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-02-09] (Microsoft Corporation)
Task: {063BF259-0B76-463E-9DDA-551D11DDE837} - System32\Tasks\{32C02164-1FF7-4EAA-8361-FEE7937F380C} => pcalua.exe -a "C:\Program Files (x86)\Acer\Acer Portal\AcerPortalSetup.exe" -c -uninstall
Task: {138FB8A5-1B0A-4A31-9772-A5D3399E0AC2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-03] (Google Inc.)
Task: {30DFB882-D1F7-4D53-AD64-CFAB811FB872} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {78D953F1-FC71-4FBF-AC78-F2B0778A3064} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-07-05] (Acer Incorporated)
Task: {8F93124B-459F-4E4D-805C-5431FAE0771C} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-07-10] (Acer Incorporated)
Task: {982A47E4-D0C1-45DD-9B29-BDAA6E396006} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-02-09] (Microsoft Corporation)
Task: {AFFD42F5-BF90-4B74-815E-C7B825E50B6C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-03] (Google Inc.)
Task: {E266C760-821E-43AB-B0CA-80BA62A3E017} - System32\Tasks\{72E3AFEB-82F0-4512-9721-944E05BA9CF6} => launchwinapp.exe hxxp://ui.skype.com/ui/0/7.21.0.100/de/abandoninstall?source=lightinstaller&amp;page=tsMain
Task: {E3DE9013-71BF-46B9-BF37-E2EE287631B0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {E9357D2C-87DE-446E-B6BB-D6B2BD5E9368} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-04-12 20:53 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-12 20:53 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-04-18 20:27 - 2016-04-18 20:27 - 00959176 _____ () C:\Users\Dirk\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\ClientTelemetry.dll
2016-04-19 20:48 - 2016-04-19 20:50 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-09-30 20:39 - 2015-09-30 20:39 - 00415128 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-02-13 19:02 - 2016-02-13 19:02 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-04-12 20:51 - 2016-04-02 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 01329936 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-04-03 11:49 - 2015-10-13 04:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-04-30 08:42 - 2016-04-30 08:43 - 10256384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11602.1.26.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2016-04-19 20:48 - 2016-04-19 20:50 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 20:48 - 2016-04-19 20:50 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-04-18 20:27 - 2016-04-18 20:27 - 00679624 _____ () C:\Users\Dirk\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\ClientTelemetry.dll
2014-01-18 22:40 - 2013-09-04 01:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-04-03 11:51 - 2016-04-03 11:51 - 00325824 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1376451726-3106764419-4053074835-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dirk\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\Services: ETDService => 2
MSCONFIG\Services: GamesAppIntegrationService => 2
MSCONFIG\Services: GamesAppService => 3
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: NOBU => 3
MSCONFIG\Services: XblAuthManager => 3
MSCONFIG\Services: XblGameSave => 3
MSCONFIG\Services: XboxNetApiSvc => 3

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{4C4A69C3-2A44-49C7-92B9-F34F25D56D32}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{18D591A1-B283-4866-8BD6-A407DE79D528}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{B94F2208-9556-4ED4-A6D7-83D3E409ACFF}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{9D32C99C-7698-4C63-AFEB-2AF528736CFC}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{5C812BFC-C592-422B-BFD4-1D6B7CFEF33F}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\virtualdrive.exe
FirewallRules: [{3CCA9523-C320-42BB-9E39-84367922C36E}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\virtualdrive.exe
FirewallRules: [{517389FE-942B-4498-A6C3-D6A897765D5B}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\Sdd.exe
FirewallRules: [{38E704BE-A533-4205-8264-A37987FDDCAE}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\Sdd.exe
FirewallRules: [{1C4223C4-358B-423B-87AD-6D5B381D5D84}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{7B0FBAC4-46DA-4EAC-9F65-6EDAD6C2B02D}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{893103E6-BFAC-40A0-8D64-6723883572E8}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{75087EAF-5133-41D9-8772-B23ED712FAE8}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{3AA2B6EF-4C2C-4DE7-8694-A154AE5EC576}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{05AE3337-A294-4712-8147-AFF74F5314EE}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{237CCBF3-E33C-46B3-9F96-CEBFC8517A6E}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{AB35728F-355A-4540-830B-1B5CDB79E3D0}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{CF12B8CC-532E-49F6-BF9E-61F3F45D0461}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{23D0888E-7942-4F39-807A-C91748131C7D}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{786678FA-306B-4253-8302-8AD680EBA87E}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{62FA2C9C-B105-4373-BE3C-F91504CD0D4C}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{97DE94B4-9AE5-406F-A3E9-1FCEBA24A927}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{8F16B3E9-948F-4EFF-A21E-89F9ABF49D76}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{A4ADC210-CDCD-4D85-8FDD-B984353E6563}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{CF9F4077-14F0-4F46-8FDB-FE6432A2C1AE}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{4A85F57E-0BD0-4DE1-9CE3-57385CCD2218}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{AD5E4FED-4F17-4179-8923-3DBF0E25F069}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{19E8A125-99C9-4D7E-B6D6-A384C4A52B11}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{4E403593-752F-4EFF-83D3-FE8118DA277D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{44013C2A-8433-4291-89BA-D2FB9BA4C1B1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{A2D330A5-F4EF-4C36-88CC-003EDD199798}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{F25CE8CE-8476-4218-816C-21A551FB4962}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{A3A1650C-3A80-4676-8770-BB5F4D0F04CD}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{DE12E1D0-C10A-4954-BC58-92CA4D85FBFB}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{C72A723A-14C4-443A-B908-62E794EACD17}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{4C727F23-1C4E-47A1-A601-BCDCE4ED7B9D}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{889C9617-BEDF-4F17-A1C3-0D31A39B59F6}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{3CBCB046-FAA3-4709-AA4B-D4E6BFB00084}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{2D338243-2018-4788-BABE-837BD8E40F68}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{E7554797-41BE-420B-9F5C-1EBE27688857}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{182B8A27-C6FB-4944-802C-BB4730BCA639}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\FaxApplications.exe
FirewallRules: [{18110B63-60FB-4720-B48A-34B01E5226B3}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\DigitalWizards.exe
FirewallRules: [{643FC2A9-3828-4B80-9E4D-6FF50C88A74F}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\SendAFax.exe
FirewallRules: [{6E0D1D51-8A2D-452D-9D8C-4D120D8BBA36}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe
FirewallRules: [{41299B5A-6E7E-4B75-A337-5D5AC66D56D4}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{B8E3CA13-A87B-41DD-8978-3850C1C4F4F3}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{F2796933-6C0C-4ABF-93F1-C3596078990B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{179C2831-2BCC-4A76-AA0A-96C5D83ED963}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3E53A202-14AB-45D8-ABBC-60DC2CB7E2B2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{02B0EFCA-AD11-4043-A17B-79570FC19805}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8A9E54C4-7CA6-49E4-89E4-76945C828C30}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{2D4F4943-FC89-4735-B7C3-5AFB0888B3BC}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{73C41964-BE6B-4498-A64D-43C3E12764B1}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{4B4FB392-FC5A-4990-94A2-800161E9DD9E}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{5D96C963-C15D-45A4-9AC2-7F76B1D8465B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{53871354-9FDE-41C1-8B0C-0112346248B3}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{6B6CCC2B-31F5-4B29-8642-3E287F2A58FD}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{0EDF5DCC-7FB9-492A-8BBD-EC0E013561CD}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe
FirewallRules: [{AC61E065-C8D9-454E-9A9B-246AC8881207}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe
FirewallRules: [{E81A9172-B928-4A05-AB4F-4DD7CBEF3AFE}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe
FirewallRules: [{58F236B4-BE3C-4B9A-A7D0-E3A2A9632B68}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe
FirewallRules: [{5C178890-3BC3-4571-B9EE-96F1B50A9EDD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{554E1FA1-281F-4C4D-A449-8A4AE010163F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (05/02/2016 06:58:12 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "C:\Windows\INF\msports.PNF" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm Anwendung für Dienste und Controller wurde wegen dieses Fehlers geschlossen.

Programm: Anwendung für Dienste und Controller
Datei: C:\Windows\INF\msports.PNF

Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
User Action
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
	- diese sich im Netzwerk befindet, 
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
	- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt. 
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.

Zusätzliche Daten
Fehlerwert: C000009C
Datenträgertyp: 3

Error: (05/02/2016 06:58:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: services.exe, Version: 10.0.10586.71, Zeitstempel: 0x5699d08f
Name des fehlerhaften Moduls: spinf.dll, Version: 10.0.10586.0, Zeitstempel: 0x5632d830
Ausnahmecode: 0xc0000006
Fehleroffset: 0x0000000000002f8e
ID des fehlerhaften Prozesses: 0x330
Startzeit der fehlerhaften Anwendung: 0xservices.exe0
Pfad der fehlerhaften Anwendung: services.exe1
Pfad des fehlerhaften Moduls: services.exe2
Berichtskennung: services.exe3
Vollständiger Name des fehlerhaften Pakets: services.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: services.exe5

Error: (05/02/2016 06:47:21 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT-AUTORITÄT)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - Ein E/A-Vorgang, der durch die Registrierung ausgelöst wurde, ist fehlgeschlagen. Dieser Fehler ist nicht korrigierbar. Die Registrierung konnte eine der Dateien mit dem Systemabbild der Registrierung nicht einlesen oder schreiben.

Error: (05/02/2016 06:47:21 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT-AUTORITÄT)
Description: Die Registrierung konnte nicht geladen werden. Dieses Problem wird oft durch zuwenig Arbeitsspeicher oder nicht ausreichende Sicherheitsberechtigungen verursacht. 

 Details - Ein E/A-Vorgang, der durch die Registrierung ausgelöst wurde, ist fehlgeschlagen. Dieser Fehler ist nicht korrigierbar. Die Registrierung konnte eine der Dateien mit dem Systemabbild der Registrierung nicht einlesen oder schreiben.
 for C:\Users\Dirk\AppData\Local\Microsoft\Windows\\UsrClass.dat

Error: (05/02/2016 06:40:50 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT-AUTORITÄT)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - Ein E/A-Vorgang, der durch die Registrierung ausgelöst wurde, ist fehlgeschlagen. Dieser Fehler ist nicht korrigierbar. Die Registrierung konnte eine der Dateien mit dem Systemabbild der Registrierung nicht einlesen oder schreiben.

Error: (05/02/2016 06:40:50 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT-AUTORITÄT)
Description: Die Registrierung konnte nicht geladen werden. Dieses Problem wird oft durch zuwenig Arbeitsspeicher oder nicht ausreichende Sicherheitsberechtigungen verursacht. 

 Details - Ein E/A-Vorgang, der durch die Registrierung ausgelöst wurde, ist fehlgeschlagen. Dieser Fehler ist nicht korrigierbar. Die Registrierung konnte eine der Dateien mit dem Systemabbild der Registrierung nicht einlesen oder schreiben.
 for C:\Users\Dirk\AppData\Local\Microsoft\Windows\\UsrClass.dat

Error: (05/02/2016 04:53:52 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "C:\Windows\INF\msports.PNF" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm Anwendung für Dienste und Controller wurde wegen dieses Fehlers geschlossen.

Programm: Anwendung für Dienste und Controller
Datei: C:\Windows\INF\msports.PNF

Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
User Action
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
	- diese sich im Netzwerk befindet, 
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
	- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt. 
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.

Zusätzliche Daten
Fehlerwert: C000009C
Datenträgertyp: 3

Error: (05/02/2016 04:53:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: services.exe, Version: 10.0.10586.71, Zeitstempel: 0x5699d08f
Name des fehlerhaften Moduls: spinf.dll, Version: 10.0.10586.0, Zeitstempel: 0x5632d830
Ausnahmecode: 0xc0000006
Fehleroffset: 0x0000000000002f8e
ID des fehlerhaften Prozesses: 0x360
Startzeit der fehlerhaften Anwendung: 0xservices.exe0
Pfad der fehlerhaften Anwendung: services.exe1
Pfad des fehlerhaften Moduls: services.exe2
Berichtskennung: services.exe3
Vollständiger Name des fehlerhaften Pakets: services.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: services.exe5

Error: (05/02/2016 04:45:28 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT-AUTORITÄT)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - Ein E/A-Vorgang, der durch die Registrierung ausgelöst wurde, ist fehlgeschlagen. Dieser Fehler ist nicht korrigierbar. Die Registrierung konnte eine der Dateien mit dem Systemabbild der Registrierung nicht einlesen oder schreiben.

Error: (05/02/2016 04:45:28 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT-AUTORITÄT)
Description: Die Registrierung konnte nicht geladen werden. Dieses Problem wird oft durch zuwenig Arbeitsspeicher oder nicht ausreichende Sicherheitsberechtigungen verursacht. 

 Details - Ein E/A-Vorgang, der durch die Registrierung ausgelöst wurde, ist fehlgeschlagen. Dieser Fehler ist nicht korrigierbar. Die Registrierung konnte eine der Dateien mit dem Systemabbild der Registrierung nicht einlesen oder schreiben.
 for C:\Users\Dirk\AppData\Local\Microsoft\Windows\\UsrClass.dat


Systemfehler:
=============
Error: (05/02/2016 08:56:18 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (05/02/2016 08:52:41 PM) (Source: DCOM) (EventID: 10016) (User: PC_HWS28)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PC_HWS28DirkS-1-5-21-1376451726-3106764419-4053074835-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.FeatureOnDemand.InsiderHub_10.0.10586.0_neutral_neutral_cw5n1h2txyewyS-1-15-2-4016783169-893401051-2237370320-274899566-412088533-2398988950-2155762795

Error: (05/02/2016 08:50:39 PM) (Source: DCOM) (EventID: 10010) (User: PC_HWS28)
Description: {14286318-B6CF-49A1-81FC-D74AD94902F9}

Error: (05/02/2016 08:49:09 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (05/02/2016 08:48:24 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (05/02/2016 08:46:21 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (05/02/2016 08:46:17 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (05/02/2016 08:46:13 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (05/02/2016 08:46:10 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (05/02/2016 08:46:06 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.


CodeIntegrity:
===================================
  Date: 2016-05-02 21:20:10.802
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-02 21:20:10.793
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-02 21:18:44.289
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-02 21:18:44.273
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-02 19:31:27.146
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdhdl64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-02 18:58:13.923
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\sfc_os.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-02 18:55:13.399
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-02 18:55:13.386
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-05-02 16:54:21.029
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-02 16:54:20.450
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\sfc_os.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4200U CPU @ 1.60GHz
Prozentuale Nutzung des RAM: 25%
Installierter physikalischer RAM: 8072.27 MB
Verfügbarer physikalischer RAM: 5990.43 MB
Summe virtueller Speicher: 9352.27 MB
Verfügbarer virtueller Speicher: 7032.38 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:913.69 GB) (Free:751.78 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E33FAE4E)

Partition: GPT.

==================== Ende von Addition.txt ============================

METZI01 · 07.05.2016, 14:26

Code:

ATTFilter

14:40:20.0956 0x153c  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
14:40:20.0956 0x153c  UEFI system
14:40:26.0871 0x153c  ============================================================
14:40:26.0871 0x153c  Current date / time: 2016/05/07 14:40:26.0871
14:40:26.0871 0x153c  SystemInfo:
14:40:26.0872 0x153c  
14:40:26.0872 0x153c  OS Version: 10.0.10586 ServicePack: 0.0
14:40:26.0872 0x153c  Product type: Workstation
14:40:26.0872 0x153c  ComputerName: PC_HWS28
14:40:26.0872 0x153c  UserName: Dirk
14:40:26.0872 0x153c  Windows directory: C:\WINDOWS
14:40:26.0872 0x153c  System windows directory: C:\WINDOWS
14:40:26.0872 0x153c  Running under WOW64
14:40:26.0872 0x153c  Processor architecture: Intel x64
14:40:26.0872 0x153c  Number of processors: 4
14:40:26.0872 0x153c  Page size: 0x1000
14:40:26.0872 0x153c  Boot type: Normal boot
14:40:26.0872 0x153c  ============================================================
14:40:27.0060 0x153c  KLMD registered as C:\WINDOWS\system32\drivers\39482305.sys
14:40:27.0919 0x153c  System UUID: {BD3A8188-6893-AA84-2B91-CDFAD2A2FEFA}
14:40:28.0515 0x153c  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:40:28.0521 0x153c  ============================================================
14:40:28.0521 0x153c  \Device\Harddisk0\DR0:
14:40:28.0521 0x153c  GPT partitions:
14:40:28.0521 0x153c  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {3D6E321D-29B0-4A42-BD92-7D351FB66151}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
14:40:28.0521 0x153c  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {15314F75-3417-4DCE-8A0F-0DCC3A315492}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x96000
14:40:28.0521 0x153c  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {2A56AE21-8A05-4B39-8034-683BBA601EAF}, Name: Microsoft reserved partition, StartLBA 0x15E800, BlocksNum 0x40000
14:40:28.0521 0x153c  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F1C95ABE-4A21-40EC-A95E-7406EFF87FC5}, Name: Basic data partition, StartLBA 0x19E800, BlocksNum 0x72362000
14:40:28.0521 0x153c  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {9E580791-B797-4F4E-80CA-EDE52C451723}, Name: Basic data partition, StartLBA 0x72500800, BlocksNum 0x2206000
14:40:28.0521 0x153c  MBR partitions:
14:40:28.0521 0x153c  ============================================================
14:40:28.0546 0x153c  C: <-> \Device\Harddisk0\DR0\Partition4
14:40:28.0546 0x153c  ============================================================
14:40:28.0546 0x153c  Initialize success
14:40:28.0546 0x153c  ============================================================
14:40:41.0348 0x05a8  ============================================================
14:40:41.0348 0x05a8  Scan started
14:40:41.0348 0x05a8  Mode: Manual; 
14:40:41.0348 0x05a8  ============================================================
14:40:41.0348 0x05a8  KSN ping started
14:40:43.0745 0x05a8  KSN ping finished: true
14:40:45.0768 0x05a8  ================ Scan system memory ========================
14:40:45.0768 0x05a8  System memory - ok
14:40:45.0769 0x05a8  ================ Scan services =============================
14:40:45.0927 0x05a8  [ DF1C3D7E6C7929AD83BE22852B5B08CB, 9ECF6211CCD30273A23247E87C31B3A2ACDA623133CEF6E9B3243463C0609C5F ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
14:40:45.0948 0x05a8  1394ohci - ok
14:40:45.0981 0x05a8  [ 2C5B3035B86770ADD2FE9BFBAF5B35A4, 19E16F9144FE3E33B5FF248CF0040AB079ACAE22290B1369CC72AE4CB5FE3A90 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
14:40:45.0986 0x05a8  3ware - ok
14:40:46.0040 0x05a8  [ 469441BAE3FF8A16826FC62C51EF5E18, E1204677B87F47222D05F670F8DF3DB65EA0881782A8DCFBE0103478ED71187C ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
14:40:46.0060 0x05a8  ACPI - ok
14:40:46.0075 0x05a8  [ 7EADED8087C392876521F7EBCE846EF4, 99BF1BD948F97C1ECBC049C7F949B71D73D0B41FB505B2F75B208E655F7DC8A3 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
14:40:46.0078 0x05a8  acpiex - ok
14:40:46.0091 0x05a8  [ C498887123327CDFD73A05E7A2780920, B45392C46254FCB8D79B6C3A82C8D894063199E6167D8E5F7EA7D60C75CD16EA ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
14:40:46.0092 0x05a8  acpipagr - ok
14:40:46.0117 0x05a8  [ C8DBE6EFFCF014CAA010B9BDDAC833EC, 96FC29340C62A6B0910DCCBF8945F32089FC300F45B451A540B8854D53734298 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
14:40:46.0118 0x05a8  AcpiPmi - ok
14:40:46.0136 0x05a8  [ 17039DBEB3B7B9ADCDB4B4533AA9771F, A4D38B144639A20B8B31E4F35FB776A028DB502FAC849FC73EECEB3CCD91830B ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
14:40:46.0137 0x05a8  acpitime - ok
14:40:46.0196 0x05a8  [ F7D0CD345D2DA42E7042ABCD73662403, 03183F90A994D69066F15C3DFC1D7D7514AEAF46A5AAC059B1FB327F8C30A35C ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
14:40:46.0236 0x05a8  ADP80XX - ok
14:40:46.0262 0x05a8  [ 70148EFA9A562E7185B75BBE7D376BF7, 8200E3349A1AFA1040B3D956A17BAF3CDC784A1A3CA396125E7872B36C03D84A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
14:40:46.0272 0x05a8  AFD - ok
14:40:46.0289 0x05a8  [ 870F1A2C936F92B5D053DF7EC75B352F, D617524FD5886D6D3BC2EFBBB5EA310E906454CD7CA7257C3D7BDEA8C4F2DA71 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
14:40:46.0313 0x05a8  agp440 - ok
14:40:46.0343 0x05a8  [ 3DF7751D5DC6525E7DC6617FBB45054F, 8E6D4C809DB3B66E7558C4829E01F5C227EE614AC82F33FD99DCC629770D1BE3 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
14:40:46.0348 0x05a8  ahcache - ok
14:40:46.0409 0x05a8  [ 19707ECBCEA71080A85DB2336580DB39, A09AE69C9DE2F3765417F212453B6927C317A94801AE68FBA6A8E8A7CB16CED7 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
14:40:46.0457 0x05a8  AJRouter - ok
14:40:46.0528 0x05a8  [ AA91A5E156D0364ABA7B01658C2EB014, F61055D581745023939C741CAB3370074D1416BB5A0BE0BD47642D5A75669E12 ] ALG             C:\WINDOWS\System32\alg.exe
14:40:46.0554 0x05a8  ALG - ok
14:40:46.0604 0x05a8  [ CA5D49FE7992628A02BB110248E1DDFE, AFB28A1F465A0C470C0EDF8708AADD3ABCD23AC9987C9E8B4C0015FD827EB576 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
14:40:46.0610 0x05a8  AMD External Events Utility - ok
14:40:46.0623 0x05a8  [ B70F0F2F54B4A4DB6E9C830454752F5A, C882DEAC30812E5FA4479A8CB688603C6AF269EF08236688F4C5E7EBED1D4572 ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
14:40:46.0651 0x05a8  AmdK8 - ok
14:40:46.0668 0x05a8  amdkmdag - ok
14:40:46.0814 0x05a8  [ 3A261C58BC747EBED2CB58069B497F69, E13C0F6340E398BB5BF519B750A5A9019BC589F1A5CE7C77D3DCF038A79EE903 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
14:40:46.0831 0x05a8  amdkmdap - ok
14:40:46.0860 0x05a8  [ 8A375CB3B6D1A56A2AEEE72A5F1D0926, 03D6EA77B141675B719E66DA09D1DACC7137B19F9918C303DD6870B3F36ADEBB ] amdkmpfd        C:\WINDOWS\system32\drivers\amdkmpfd.sys
14:40:46.0862 0x05a8  amdkmpfd - ok
14:40:46.0878 0x05a8  [ 35E890482C9728DD5C552B85DA8A5AB2, 1E0EB7D902AB4C38E23CAFC0BEA250E7F6E180E8814385B4F29730BFC373A191 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
14:40:46.0882 0x05a8  AmdPPM - ok
14:40:46.0918 0x05a8  [ 5B30BCFE6E02E45D3EE268FF001BC5E0, 9901DB728885CE36911F79998629B2DD42D56AF9633B5277834F498CC59B0346 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
14:40:46.0920 0x05a8  amdsata - ok
14:40:46.0937 0x05a8  [ F20B30F35A5C7888441B4DCA001ECF8E, 695A5BC1F18B65992EB06A202AD3CBFA17228E76DDFD1AE6977FD315724F75C2 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
14:40:46.0942 0x05a8  amdsbs - ok
14:40:46.0958 0x05a8  [ AFE838D7576C581D6483529621AB10CC, 14476A04CC64E7A0F1BBFDACCBD7A87F384BE1877C27656DBB973AF3975D4AE2 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
14:40:46.0959 0x05a8  amdxata - ok
14:40:46.0994 0x05a8  [ EDDB0D726DBECDFC1DBCC6DB464E5A13, 98D128D1E6FA270ED9ADBFE50078F68A794C00D4CBB86E28EC6161FFAD0CA8FF ] AppID           C:\WINDOWS\system32\drivers\appid.sys
14:40:47.0038 0x05a8  AppID - ok
14:40:47.0120 0x05a8  [ 7A55F9237F726D1667073A47B0D1B90F, 7C2D9AA84F1D4CC6C1FAF6848DF9479A534E01029C4387E8C0647745F1E74603 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
14:40:47.0122 0x05a8  AppIDSvc - ok
14:40:47.0143 0x05a8  [ 56E219DF92BE16F62308F884739BE022, FE189EE8A52BC5A0E6B76C632021F84F60307A182F2A67C0C0C7CAA72DEFC723 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
14:40:47.0146 0x05a8  Appinfo - ok
14:40:47.0285 0x05a8  [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:40:47.0329 0x05a8  Apple Mobile Device Service - ok
14:40:47.0378 0x05a8  [ 610499A73DF3599608EBB6B3F9929052, A9CA49C4A39A825916AB3791090BCFC7044FDB6B2C3538E01F0CFBC2A9931152 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
14:40:47.0404 0x05a8  AppReadiness - ok
14:40:47.0503 0x05a8  [ 0F3C165B71F8140F50A1DB5DE3E6D695, 7AD0F130088B3A964739C3194CF09E79B6B5D761B064071B9AC11D9B65F5D523 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
14:40:47.0589 0x05a8  AppXSvc - ok
14:40:47.0654 0x05a8  [ E3FE8F610B1CC12BC3B2E6BC43DC97E2, 0E18542CF2095A9ADA1759AB8F986E78B0A50A3C6B2AD4EACD80A23D832A2C6D ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
14:40:47.0665 0x05a8  arcsas - ok
14:40:47.0699 0x05a8  [ 5E00748A1AD246CAECBBB7553BED36CC, DAD2C93F0894E7BB5E5D8D767D8286A909086B49172C504A01097C3A180998C6 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
14:40:47.0701 0x05a8  AsyncMac - ok
14:40:47.0731 0x05a8  [ 492B99D2E3D5D7BFD5F0AE1BE7BD37DD, A3F6BFC4FDC1933FBF3145019B118689A414108B04F43E2563946B2673C89324 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
14:40:47.0733 0x05a8  atapi - ok
14:40:47.0938 0x05a8  [ 41DFF214D30294F18F64257167F1CCBA, 87BB8BC1AB5EC4F5DAD84CB0B16CDD4634F10DC687264E4C84E47EFEFF4310F6 ] athr            C:\WINDOWS\System32\drivers\athw8x.sys
14:40:48.0063 0x05a8  athr - ok
14:40:48.0157 0x05a8  [ 42BF7FA295F453618104B5A50BEE105B, AB44BA2AD2FC5AF3B6BE4489C444C03FD1AB02C22109BF5F39BE459294C4CB18 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
14:40:48.0171 0x05a8  AudioEndpointBuilder - ok
14:40:48.0225 0x05a8  [ 2A2C0983B6FE62F02E7183335B1F5C20, 07845269FE72894D31D3FC927EECE26333AE9A2149A995DA4AE007276B05C647 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
14:40:48.0243 0x05a8  Audiosrv - ok
14:40:48.0339 0x05a8  [ 7062CE507814D5306DCA5D6A15B7B6B6, 9D60506003A66C2E516B1FCB70CC5B26FB3A9948B95D97C828DD0328E76F2C91 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
14:40:48.0363 0x05a8  AxInstSV - ok
14:40:48.0429 0x05a8  [ 6447BA6FA709514B6C803D159B4C7D1E, 549DDCEAD93DF333F6BBD56A9258A867E4DA219741C00D48C68F8F230A87B11A ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
14:40:48.0446 0x05a8  b06bdrv - ok
14:40:48.0512 0x05a8  [ B4AC08B1D04D0CE085435E5CD0E663C5, 61E641388E5692B2EB351E44BA1DB86B5305DD105EE56865D59072CA9407C8AC ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
14:40:48.0514 0x05a8  BasicDisplay - ok
14:40:48.0525 0x05a8  [ 25B5BB369DEE2BAE4BF459C978FF9035, DBC2157B2AC0BC92B4011CE5E01F2DCDAAE71E37D9D21102503C6455FAAC4DCA ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
14:40:48.0527 0x05a8  BasicRender - ok
14:40:48.0544 0x05a8  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\WINDOWS\System32\drivers\bcmfn.sys
14:40:48.0545 0x05a8  bcmfn - ok
14:40:48.0559 0x05a8  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
14:40:48.0560 0x05a8  bcmfn2 - ok
14:40:48.0614 0x05a8  [ F374C27099807E99A156953F8416D34A, D267B8CD837290F9FC6B4FFD2DB8F54867D808FB155698FC7713BCAB3AE475B5 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
14:40:48.0622 0x05a8  BDESVC - ok
14:40:48.0657 0x05a8  [ 5A88834AEE15D97695FAE0837B73B3E4, 03035FB51DE218B8EDB15129A0376DDED0C7E7B6DA58DD95B12E4E5C8D852ED8 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
14:40:48.0658 0x05a8  Beep - ok
14:40:48.0823 0x05a8  [ 37F5E2385CB4D10AB42186974B9C241A, D38FA2B8CE19AC32056060F04B04D031F1621C07528DEDCCD5A8C01AB0A35995 ] BFE             C:\WINDOWS\System32\bfe.dll
14:40:48.0842 0x05a8  BFE - ok
14:40:48.0912 0x05a8  [ 64582C924C48175D52AED0D0E64AB413, 75DC6BC01D26A4BABEDB8013F0C106780F0991CA63075798C7C24B66022F58E3 ] BITS            C:\WINDOWS\System32\qmgr.dll
14:40:48.0934 0x05a8  BITS - ok
14:40:49.0030 0x05a8  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:40:49.0078 0x05a8  Bonjour Service - ok
14:40:49.0124 0x05a8  [ DA2C6F7ACE392193C424FEA975C5BFFB, 668F91F3E5F8EA170C10823D6959E0EDB32434C51FAA68BEA782EDDF5618690E ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
14:40:49.0160 0x05a8  bowser - ok
14:40:49.0240 0x05a8  [ 492FB85E61768950CDD27C87AED6E8FA, 1BFF11D899581E406D1AB5F2C66C9D816161ECF4B81AAACCCA3663875E86C0A5 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
14:40:49.0264 0x05a8  BrokerInfrastructure - ok
14:40:49.0345 0x05a8  [ A617BE5E429A035A1CA8217C1B16F0BB, 197EE6C6EB22FF8A626540886F5A2163CC4CB177504C5423856F54BF01EB0FF1 ] Browser         C:\WINDOWS\System32\browser.dll
14:40:49.0354 0x05a8  Browser - ok
14:40:49.0398 0x05a8  [ 53EA7FADB45D4A212CE6E22E053111AB, F8EF4C90261E67433BC3E3330CF1745D2E13C667E5F71C48C785E673E8031DED ] bScsiSDa        C:\WINDOWS\System32\drivers\bScsiSDa.sys
14:40:49.0405 0x05a8  bScsiSDa - ok
14:40:49.0446 0x05a8  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS       C:\WINDOWS\System32\drivers\btath_bus.sys
14:40:49.0448 0x05a8  BTATH_BUS - ok
14:40:49.0576 0x05a8  [ CCA07E23C5032A2DFA27566B8195BFA3, 05442C5D6867A974A382346F6DF81560F054C970A4B993F01A0F609B59A91D5A ] BtFilter        C:\WINDOWS\system32\DRIVERS\btfilter.sys
14:40:49.0593 0x05a8  BtFilter - ok
14:40:49.0626 0x05a8  [ CAEC7BC11AF69A181AF7932E636E09E4, 503C69045F1E025CBEE2405043BB71CC58478985ECAF6587F73FCB57860F5709 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
14:40:49.0666 0x05a8  BthAvrcpTg - ok
14:40:49.0687 0x05a8  [ 5F2B4B32E986C058525D3BA2A475A16C, CEC5BB0B025DD9525CFBBEDF6EB6F63336534798495A4F95763CE112DF915088 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
14:40:49.0692 0x05a8  BthHFEnum - ok
14:40:49.0710 0x05a8  [ 5406289E8AE2CB52FC408154E0A64BA7, 0A3795F2E6E2B51198452CF69A99159D8E11650E95F41DF0B575CB72F9C6C6B5 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
14:40:49.0712 0x05a8  bthhfhid - ok
14:40:49.0791 0x05a8  [ BAB101E7826BE287F79C4BA721621989, E6DD25C89267FE87253B8226292F2894F5E702075D3B23B09339D3B28744C060 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
14:40:49.0809 0x05a8  BthHFSrv - ok
14:40:49.0827 0x05a8  [ A76F20CCCA31895A1DA78A875E50F946, ECD4B3670DA5984AA24F4354457B4E45983938A89FF6DB03B556A633B4B37E3C ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
14:40:49.0829 0x05a8  BTHMODEM - ok
14:40:49.0906 0x05a8  [ 2A0EF9AF5FD3FCCC25E17C47198D6E25, 4B548DD7235EF5EEC36AC443F9F44A042332BA01CB38B3D2E804618F2DC31813 ] BTHPORT         C:\WINDOWS\System32\drivers\BTHport.sys
14:40:49.0925 0x05a8  BTHPORT - ok
14:40:49.0966 0x05a8  [ 7A177E18AA6A6A6365E6351C2BF8EDAE, A35224A20014B1215A6824AE5E17B8869A775EA272EF7F25EAFFA18733F8D09D ] bthserv         C:\WINDOWS\system32\bthserv.dll
14:40:49.0969 0x05a8  bthserv - ok
14:40:50.0050 0x05a8  [ B13CB5CCEE91ACA77C985B8E0D53A7D4, 1DB76A52E30B3DCC0FAF8579A7D5A24AD010ACA7613FB00B541FDDED7BE3F08E ] BTHUSB          C:\WINDOWS\System32\drivers\BTHUSB.sys
14:40:50.0052 0x05a8  BTHUSB - ok
14:40:50.0088 0x05a8  [ BF89BDBA5D3A0B4256D3F6FC8D31880D, 940F3BF55B88261C9E9A951A092331559FC5B24FE3BA0F1E1AB3450D2CA364C1 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
14:40:50.0090 0x05a8  buttonconverter - ok
14:40:50.0255 0x05a8  [ 52AE2CDD37AB735FBDA52263EFD524AA, 844103913E6079CC1C49B05FFB1CDC9A68692A8EE5A05C9C28FD272DFE534913 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
14:40:50.0314 0x05a8  c2cautoupdatesvc - ok
14:40:50.0531 0x05a8  [ C35B91B6777E7C6DB67B8583D2AA66A7, CE3A004B560EB750442150FEEFEE074A11A17E66B3F2A489E8EF1DBCF8FE8390 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
14:40:50.0568 0x05a8  c2cpnrsvc - ok
14:40:50.0599 0x05a8  [ C24C27FDF93B85A4EFCF25F830253AA2, 35C87518BB59663B57C2361A13AD4E57E37392598F1EB9F07F86CA5A6321AF5A ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
14:40:50.0627 0x05a8  CapImg - ok
14:40:50.0659 0x05a8  [ 7F9C7226D743B232907ED2537B8A574F, 2211AFC30E8F8FA03020DB48EE14914CD31E50BB6A63FF20AC7C6FA481E72C18 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
14:40:50.0661 0x05a8  cdfs - ok
14:40:50.0700 0x05a8  [ 0A92DC116CFC7F6BE8167DD25CB925CC, 50CAC7BE14FF69B10C029E049F7C441A5572540F027F95F940B185C76C689409 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
14:40:50.0706 0x05a8  CDPSvc - ok
14:40:50.0719 0x05a8  [ 82D97776BF982AA143BDC7DFB5054EA8, 954F56728371E6B3514586DCEAF15C4727BAED6CAFBF788654C4E03BD702942C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
14:40:50.0722 0x05a8  cdrom - ok
14:40:50.0738 0x05a8  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
14:40:50.0743 0x05a8  CertPropSvc - ok
14:40:50.0873 0x05a8  [ 1CA7070F72330C33A42CF678E92F030B, 0F9AAACE9949B76C0B4D6E53DB35BD599507265FB982AE8ACEB7E1B1CDD0B566 ] cfwids          C:\WINDOWS\system32\drivers\cfwids.sys
14:40:50.0887 0x05a8  cfwids - ok
14:40:50.0920 0x05a8  [ 0505C1D991D0F9D47F3353BB98597C7E, 3B801CCF4980256327A4A9FBD98007DA1E3ACE9C94E5A4C23AB21303B46E8B5A ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
14:40:50.0959 0x05a8  circlass - ok
14:40:50.0998 0x05a8  [ 8B4B39C507ABA09AAFE8E3932D1B392C, 734700155A658BC08FC96E8F99A01DE7F7251D7DDEFA79D258B2EEB370BA7AA8 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
14:40:51.0033 0x05a8  CLFS - ok
14:40:51.0228 0x05a8  [ 43102F2322F0CB42A7D2C685278BC460, 5586485A472BD5D99D27A36CEEEBB2C849C9D0D9EDB8312203B78279D69C6CA2 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
14:40:51.0278 0x05a8  ClickToRunSvc - ok
14:40:51.0331 0x05a8  [ F7526C133AC265F283012E9CD751F873, 6AABDD92FD880F49F63C1CC478C3D8291AF670802CEC58B32730E7675D858D88 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
14:40:51.0350 0x05a8  ClipSVC - ok
14:40:51.0369 0x05a8  [ 95832B049E2833B9F5189823CDF946C7, 72773A42A89220B4A6AC72D1633B16F11191A44D876A44FAB5CEFB717CE3223D ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
14:40:51.0370 0x05a8  CmBatt - ok
14:40:51.0455 0x05a8  [ 3B866F8CB10719A5AF9E410B1B149714, B0A32B526290ED8E1DD93C70AB49DD417B82CA23D6B815163131247091D61DBA ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
14:40:51.0481 0x05a8  CNG - ok
14:40:51.0501 0x05a8  [ 58D640BC2294C71BDE0953F12D4B432F, 0B3B7659FCB97791A2A1F895C8E6F9078F855C94C13EB47464492588C4B02B85 ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
14:40:51.0503 0x05a8  cnghwassist - ok
14:40:51.0639 0x05a8  [ 14F9883588398A1BDE49C75098C75DE6, D9D82DE89FAFE60BC902683BC44C7555533A030150FD5E5A35A24542FACC5CAD ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys
14:40:51.0641 0x05a8  CompositeBus - ok
14:40:51.0645 0x05a8  COMSysApp - ok
14:40:51.0688 0x05a8  [ 02B8E49148DE5E0A2F6FDF28CE94A6AC, EEA405823F441CA604BEAA44EB71A1D20BC80E124FF7B27380D0201AAF2E0849 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
14:40:51.0690 0x05a8  condrv - ok
14:40:51.0793 0x05a8  [ DE6DF2C34718EADCFF8776E597F2104D, 35D03E95853CEAC69F674FB09C819A4698EBEDFD8AC0474F0ADF02741492401E ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
14:40:51.0808 0x05a8  CoreMessagingRegistrar - ok
14:40:51.0930 0x05a8  [ 700A193A1555B083E3A08F5D3A844925, 974F7F0C78289EFE821407E418EB65A022D6445DED8EA112B9866784AF0221EE ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
14:40:52.0036 0x05a8  cphs - ok
14:40:52.0075 0x05a8  [ 2CE0D74AED86A372997E9D77AE10B9F5, 1AFAA22C68FD0B81F73CE0EB763AD77AB97E78916752843A5056E1352F0FEA82 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
14:40:52.0078 0x05a8  CryptSvc - ok
14:40:52.0107 0x05a8  [ 2619DC483579DB9FE804044C1ADFFD1A, 23A5420288735A980917091532BE7BB36EB51660AA4555C615AF736357EB02EC ] dam             C:\WINDOWS\system32\drivers\dam.sys
14:40:52.0109 0x05a8  dam - ok
14:40:52.0168 0x05a8  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
14:40:52.0184 0x05a8  DcomLaunch - ok
14:40:52.0259 0x05a8  [ 620921E77351FB651632322AD2C195C4, 5A98971995D7A2B5AE6BEA69344FCC6687B582FEF74BDA206D32FB2E6CEB0478 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
14:40:52.0271 0x05a8  DcpSvc - ok
14:40:52.0368 0x05a8  [ 6129EA4294C5C69E4665801E95B16AB2, CE419186CF0F57434426FF925A09F13BE87639679CBB5F2074B0E1A243349D27 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
14:40:52.0397 0x05a8  defragsvc - ok
14:40:52.0438 0x05a8  [ D12B9B6A6C4885824876422AACC89954, 5853ED5CAF84B7AAFF3EDC5C71FE23EB121DB681D81267D77118424BA9AB6F88 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
14:40:52.0446 0x05a8  DeviceAssociationService - ok
14:40:52.0476 0x05a8  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
14:40:52.0531 0x05a8  DeviceInstall - ok
14:40:52.0545 0x05a8  [ 5BF8BD9B19D665452494C8D56DF4B28D, E5FC649207EF42C04B6737D442FECD3383E82F8998B140319FF400773F1D0978 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
14:40:52.0550 0x05a8  DevQueryBroker - ok
14:40:52.0599 0x05a8  [ 935823F79CBEDB91637B63D37E3A5A36, BE9A46F1CA631B9252C71758901D55456DC3C143053003D9FA7D67811A1E5026 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
14:40:52.0604 0x05a8  Dfsc - ok
14:40:52.0628 0x05a8  [ 5841A361D28069DFC82E1E98040FDC3F, 3A48DB7ADE90654242CB54DAD07F5FF0CD5CABF372C50D5B2C4D7AED068986E1 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
14:40:52.0648 0x05a8  Dhcp - ok
14:40:52.0706 0x05a8  [ 9F5AC03F5A0000DD96FA29CD68A6605B, 6964E077635E65DA902CA6C69E704A9DCD5856D22BA75E1CF823E63E62266AF7 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
14:40:52.0728 0x05a8  diagnosticshub.standardcollector.service - ok
14:40:52.0828 0x05a8  [ 15D174719872A30F2FDD6B5B1B8BA5D9, B0E6FF6FC47B731C204F110D4B768231906B144B31F602ECE8EAC24D70BA880D ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
14:40:52.0864 0x05a8  DiagTrack - ok
14:40:52.0889 0x05a8  [ 4904B152E4942BF700F2D73228B4D477, 0E5646DCA05A24C71F057C9F9F64AE992D338DA72DF3126175C2FA178854C30F ] disk            C:\WINDOWS\system32\drivers\disk.sys
14:40:52.0892 0x05a8  disk - ok
14:40:52.0917 0x05a8  [ 49F069E2D22F33955A69D44DFD1B5179, 739C52C7B961BA683E8C7CCDB0E95423C17561B2F1F506BAE923DC53DB96B067 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
14:40:52.0925 0x05a8  DmEnrollmentSvc - ok
14:40:52.0940 0x05a8  [ 0197AE4B9790A4E73751CACFAA480126, 86BBB398F1A93754B2C329271F13A88FD2F285F30225C38F068F565CCA14EB9F ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
14:40:52.0942 0x05a8  dmvsc - ok
14:40:52.0969 0x05a8  [ 5EF8EC71A7A91F3DF7798BEFE6786B0E, A3A56B43C72926881C66B7A17C9EAA35C2D9603C8D3849438838536BCD3F4633 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
14:40:52.0971 0x05a8  dmwappushservice - ok
14:40:53.0009 0x05a8  [ 5839A317C25F70979433E0905DFABB1B, 7F1CD50C77A33A10259D8A208A355BE7ECAFEA69F810AD908EF8878A792741AF ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
14:40:53.0015 0x05a8  Dnscache - ok
14:40:53.0063 0x05a8  [ 1B15297A3A2CAB6BD586676154F389D8, 623D5F5FC8622B7D9AEEEB1787E6846C1570F0EEF94341239440B616D09D672A ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
14:40:53.0076 0x05a8  dot3svc - ok
14:40:53.0122 0x05a8  [ 316C2D8B8E3C0727969F1C3790EF7193, 631F8578FDB26578C8436E4B9C4DF21E1F58FCFE6DA66E5769AAC3739005D465 ] DPS             C:\WINDOWS\system32\dps.dll
14:40:53.0128 0x05a8  DPS - ok
14:40:53.0153 0x05a8  [ 25FA06D3B49D6ADF8E874FFCDCD76B50, 9AF09B96ED79D94EA36581ABE6CC73313A72891779774B15860D018BEA2BBA0F ] drmkaud         C:\WINDOWS\System32\drivers\drmkaud.sys
14:40:53.0154 0x05a8  drmkaud - ok
14:40:53.0195 0x05a8  [ 16EE6701115BECF8C657D9D6E123F6A1, 16E115B5245C3C988F8B58B90D30F183021C7C7792D3D1C74BEC606E49672B2A ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
14:40:53.0200 0x05a8  DsmSvc - ok
14:40:53.0229 0x05a8  [ FBC8C56814642A7CA88ACBCA8DD1121F, 108690704A359991C3D6577477E232F5F2F46B36DF6B4B0738A893EF05D7D4EB ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
14:40:53.0235 0x05a8  DsSvc - ok
14:40:53.0321 0x05a8  [ F45665E77D11F3C1552EDBEAD1559DC8, C7C4B493CB36A1A35B8CA33C044BA0ED273CDA80E36F48BFF7CE3A0356246838 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
14:40:53.0358 0x05a8  DXGKrnl - ok
14:40:53.0405 0x05a8  [ 0CDF6B61D7F7FFCD195AF0113B9B2C16, 828D3FA31742B54075EAED2E67BBB5166D2EF4F84B791077E96DC0BD5557F11E ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
14:40:53.0408 0x05a8  Eaphost - ok
14:40:53.0536 0x05a8  [ 491275B864B704B54EC08168344E0F38, B4849400C3F819CF7809A2001EA2ECB527022483F7DFE31C3930F951EAFE50CE ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
14:40:53.0648 0x05a8  ebdrv - ok
14:40:53.0688 0x05a8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] EFS             C:\WINDOWS\System32\lsass.exe
14:40:53.0691 0x05a8  EFS - ok
14:40:53.0754 0x05a8  [ CEF108FCE06892CFA5F1B49527D4BF49, FA337584024B6E6EE4AF519F57FFA4C0FCA19EDC148FF309336C4CCA8F9C9CE8 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
14:40:53.0757 0x05a8  EhStorClass - ok
14:40:53.0770 0x05a8  [ 5B1EAAE3001A7A320C106FC3859F4111, 700BA2C7D4DFAFFEB78D3804B310A4EE5B4295C84600442665693FF661673951 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
14:40:53.0774 0x05a8  EhStorTcgDrv - ok
14:40:53.0810 0x05a8  [ E34DEFC09F2843C2C24C2248F1ABE6D8, 1FD67EB5820A1D2F4402DE9D95DE288DB69D421A8473074FF23491D7CA8B5ACE ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
14:40:53.0814 0x05a8  embeddedmode - ok
14:40:53.0837 0x05a8  [ 062152DD5B225518A991DFCD8536770C, 5C8EF4E0C7DE3B24387FF239A8D0CDA39C2376826F16EAFF09739A6C7EDA01E0 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
14:40:53.0844 0x05a8  EntAppSvc - ok
14:40:53.0983 0x05a8  [ B5B5FC68BFB3F01267E54B236660E610, 103F90343B207AFB9151CDA71E70884FEB56E8596754D2AB8B3F46C045642F10 ] ePowerSvc       C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
14:40:53.0995 0x05a8  ePowerSvc - ok
14:40:54.0033 0x05a8  [ 7A2705148A4BB3CA255F81624338B461, 68AC8F8D2DD8AA4E8F2224A0054DE2AF67EA199217E87CD3C7299B021048F14F ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
14:40:54.0035 0x05a8  ErrDev - ok
14:40:54.0080 0x05a8  [ 6BD85B39B7B23F03B24CF641ED29147B, 850F21750BB39E5239B1584E1117844CAAAF6A5C58E79366552309F917675CE5 ] ETD             C:\WINDOWS\system32\DRIVERS\ETD.sys
14:40:54.0124 0x05a8  ETD - ok
14:40:54.0160 0x05a8  [ 8916EACF1256E1C5A3AF81FD39C747E7, FF28FB95E9F9287C1005CF0D9EB84F7CA3D137689862860C9848398504E1EFFF ] ETDService      C:\Program Files\Elantech\ETDService.exe
14:40:54.0199 0x05a8  ETDService - ok
14:40:54.0276 0x05a8  [ 17BE4A35829B37C742084DC02D48E5F0, 7FDA62B56DF585C3F2C6FFB10AC7C0D8F70FA921C4DEA47B2789745CFE2618CE ] EventSystem     C:\WINDOWS\system32\es.dll
14:40:54.0291 0x05a8  EventSystem - ok
14:40:54.0322 0x05a8  [ DFE8A33FBCF6F38182631A4D6097B92D, F9D06780830E74FD5309E6DC5C3EEDB9334A8AE284F381FA91EF2729297F8632 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
14:40:54.0329 0x05a8  exfat - ok
14:40:54.0347 0x05a8  [ 03DE0EC072C5EBD5B018CAD83F1E522A, 9D0B30A2870FBA20B95017CE3A4205F2DD53FE169A0D16715E962D83DE040FB3 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
14:40:54.0354 0x05a8  fastfat - ok
14:40:54.0397 0x05a8  [ 952F10D2116B91BA433842D07879AE7A, 9E1EC0C719877EF198AA4DDBE896E9DDEAD360AAC1FC6DF305E7C5C73C7A761D ] Fax             C:\WINDOWS\system32\fxssvc.exe
14:40:54.0412 0x05a8  Fax - ok
14:40:54.0425 0x05a8  [ 9D299AE86D671488926126A84DF77BFD, C076EEDD0524B7D88BC56C97089E0A836CC1AD725E1A544CC4F8DDBB6670C366 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
14:40:54.0427 0x05a8  fdc - ok
14:40:54.0460 0x05a8  [ 47D09B8C312658ACE433E46DDF51C3A5, E76948DA0F51C7DC6D69B7E36D63CE6E98FDE619FA30E91637F75B5084107D22 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
14:40:54.0462 0x05a8  fdPHost - ok
14:40:54.0471 0x05a8  [ 177AC945B20C81400A1525ED7B49A425, FD215A2E718EA38A95D985F53AB3DD44B50C2549AA67F44BA98C4709E492051F ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
14:40:54.0473 0x05a8  FDResPub - ok
14:40:54.0493 0x05a8  [ 3E78BEC276DA5A062E4D55F3291B3463, 62983457F506C70D1F89F527AB61C1C0F4D1B002631256A2708F9AF092A8C95E ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
14:40:54.0497 0x05a8  fhsvc - ok
14:40:54.0530 0x05a8  [ 8F12AB59336143B680F71B217B495AD2, A28F62F065C68CC1A7EEF0CA52F83C3284B001565D8E154BF8568DE4A525104E ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
14:40:54.0532 0x05a8  FileCrypt - ok
14:40:54.0565 0x05a8  [ 92ECCFA58C8195B8EA33ED942469D4E6, 8DB12E8CF80ECA22182F9A1F4CA922336A430297F1F596F204ECF4D9D19F30D9 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
14:40:54.0567 0x05a8  FileInfo - ok
14:40:54.0654 0x05a8  [ 87C51FDD50C17882BA93E28BBABB9847, 8987D80FB77D1D3F9E89B491B1287B027DA26FFC4E4BA7B01E07D4D4FC69E236 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
14:40:54.0658 0x05a8  Filetrace - ok
14:40:54.0676 0x05a8  [ E99261DD76D1C9E05AF575939CAE5AC5, A789724FD2E22AFB2F921836F5C19A21D17F4BBD604771E2908C2651BD31989C ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
14:40:54.0679 0x05a8  flpydisk - ok
14:40:54.0717 0x05a8  [ 25D7A58625E1453E40D36825DE74E4F1, 74119803D35E3C3CC349B44C6CD9EDF6B797F88584B847F0BF9EED542719B86B ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
14:40:54.0763 0x05a8  FltMgr - ok
14:40:54.0947 0x05a8  [ 4387DE200BF8DD0E2EE828E655434B9A, 9148D65E54663EEC139E754091F47ABF439A637BEA83F600D30736522DAA845D ] FontCache       C:\WINDOWS\system32\FntCache.dll
14:40:54.0980 0x05a8  FontCache - ok
14:40:55.0083 0x05a8  [ E79DAC43A5E191FC4DDB04197A704BFA, 2FA6C8B5B2DFE66C05828E3F55DFD6268A8210E9BD083F2D09367AD59AF1C6C1 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:40:55.0086 0x05a8  FontCache3.0.0.0 - ok
14:40:55.0116 0x05a8  [ B4175E8BE60B099686FF55CA7D692316, 3158FC5B4D1A2F1FC1346754392AE24AE58999B9061B1CE78A65E785BFFADD52 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
14:40:55.0121 0x05a8  FsDepends - ok
14:40:55.0145 0x05a8  [ CC71372CEB811A72F1DC99089C5CBF53, BB9DDE74D60E534A6F8A51B63DDBB441245F06A00A0AFD37DBBE86255690946D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:40:55.0149 0x05a8  Fs_Rec - ok
14:40:55.0195 0x05a8  [ 421497634C86EF4B8F86D0EBC076728F, E0D1449555D8849364E00AA747DBC820EF914A9F5B796E35070072FCBC532ADE ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
14:40:55.0213 0x05a8  fvevol - ok
14:40:55.0266 0x05a8  [ B9981A4CB9F728B3312A3885BFAA7204, 12FB2EB2E5D2A912769823DD9C1B33DB358CD0B7FBFC788529EF83DD584334F8 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
14:40:55.0296 0x05a8  gagp30kx - ok
14:40:55.0326 0x05a8  [ 77555B11B264991DDC26872FFCF1AB97, D5F230EEF74EB869F771F8A4AB19C1E6C845BB0EF4A1234882EBDA4FDC431E44 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
14:40:55.0329 0x05a8  gencounter - ok
14:40:55.0347 0x05a8  [ F3AC9652D88BF87BA6596CBEA28CE10F, 115F3C0A5B9903B17ADEA80E1825FE927B7361F5BDDF80CE3685EF2D327EDF4F ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
14:40:55.0348 0x05a8  genericusbfn - ok
14:40:55.0370 0x05a8  [ F802FBABF0C4DF1BAA733187B2E476F5, E2533284CEBBB872196B013DD1FBBCA794DB1CAAA37D64849BD9264ECDD2CEE6 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
14:40:55.0373 0x05a8  GPIOClx0101 - ok
14:40:55.0444 0x05a8  [ B55458A83395A2CFD4E745E9EC4AB5F2, EAB06B089D8A7DBC9AE2A1C919B489911690D341013A5F8F906819C68431CA85 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
14:40:55.0514 0x05a8  gpsvc - ok
14:40:55.0527 0x05a8  [ D011B0ADB15F4815310CE1BF4780B33E, 3860630917F83A89FE7A6407CC544505FA4BD754619CF273DD630ABFBAAE42EE ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
14:40:55.0528 0x05a8  GpuEnergyDrv - ok
14:40:55.0577 0x05a8  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:40:55.0581 0x05a8  gupdate - ok
14:40:55.0589 0x05a8  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:40:55.0593 0x05a8  gupdatem - ok
14:40:55.0651 0x05a8  [ 84BC034B6BB763733C1949B7B9BAF976, 18C2C0F15BAFA46197F0BB629C4F585D893C2A78324CA198F88A04527D524F23 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
14:40:55.0654 0x05a8  HDAudBus - ok
14:40:55.0665 0x05a8  [ 6B8CB114B8E64C0636EB49F7B914D1FC, 1AD7A43CC5CD99DCEF60C61242B6843D4AD925CE93BA5D75CD8395C7125EF5A7 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
14:40:55.0667 0x05a8  HidBatt - ok
14:40:55.0700 0x05a8  [ D1AD197CCDAAC0CB4819DA1D6EB17BAE, C370F974D0A1F7B60F47EAFF57B6CCABE82913187F8BFEE169B8237AE91247B1 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
14:40:55.0703 0x05a8  HidBth - ok
14:40:55.0714 0x05a8  [ 64909DECCFCC6FB5D9A5BAFDCCB31FEE, E19C91FD8D5102A8C4F6C6FF70CA058BB272FEC1B6E9CBA3A473C49948E6AC7E ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
14:40:55.0716 0x05a8  hidi2c - ok
14:40:55.0721 0x05a8  [ F510F7B7BF61DEAAC04E65C3B65E8D59, 11566086B06FB08B6A179E3068E022DA381C762DC8962D1E1D63DC646DD4D301 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
14:40:55.0723 0x05a8  hidinterrupt - ok
14:40:55.0727 0x05a8  [ 90F3ED42D423C942BA5EA54E2FFE7AC7, BF7DE0C8141CD20A6235657BA897A019ABEFF6A01AA3FB202C73C33433CDEAF8 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
14:40:55.0729 0x05a8  HidIr - ok
14:40:55.0765 0x05a8  [ 46DE2EF6382DD9613CB506760648F262, 419555220794380134A64E1956B83B2FD1D1B6E403C5FC729A9107E14A12E968 ] hidserv         C:\WINDOWS\system32\hidserv.dll
14:40:55.0768 0x05a8  hidserv - ok
14:40:55.0825 0x05a8  [ 128DEDDD61915DBA4D451D91D21F0513, 961A0DDA02B0879989300C15E4FF9022882A4CD895D65335C263AC0DD1918314 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
14:40:55.0826 0x05a8  HidUsb - ok
14:40:55.0827 0x05a8  Scan was interrupted by user!
14:40:55.0828 0x05a8  Waiting for KSN requests completion. In queue: 92
14:40:56.0829 0x05a8  Waiting for KSN requests completion. In queue: 92
14:40:57.0830 0x05a8  Waiting for KSN requests completion. In queue: 92
14:40:58.0392 0x1318  Object required for P2P: [ C35B91B6777E7C6DB67B8583D2AA66A7 ] c2cpnrsvc
14:40:58.0830 0x05a8  Waiting for KSN requests completion. In queue: 86
14:40:59.0830 0x05a8  Waiting for KSN requests completion. In queue: 86
14:41:00.0830 0x05a8  Waiting for KSN requests completion. In queue: 86
14:41:01.0263 0x1318  Object send P2P result: true
14:41:01.0264 0x1318  Object required for P2P: [ 43102F2322F0CB42A7D2C685278BC460 ] ClickToRunSvc
14:41:01.0832 0x05a8  Waiting for KSN requests completion. In queue: 77
14:41:02.0833 0x05a8  Waiting for KSN requests completion. In queue: 77
14:41:03.0833 0x05a8  Waiting for KSN requests completion. In queue: 77
14:41:03.0833 0x1318  Object send P2P result: true
14:41:03.0834 0x1318  Object required for P2P: [ 2619DC483579DB9FE804044C1ADFFD1A ] dam
14:41:04.0834 0x05a8  Waiting for KSN requests completion. In queue: 67
14:41:05.0834 0x05a8  Waiting for KSN requests completion. In queue: 67
14:41:06.0602 0x1318  Object send P2P result: true
14:41:06.0859 0x05a8  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x61100 ( enabled : updated )
14:41:06.0893 0x05a8  Win FW state via NFP2: enabled ( trusted )
14:41:09.0653 0x05a8  ============================================================
14:41:09.0653 0x05a8  Scan finished
14:41:09.0653 0x05a8  ============================================================
14:41:09.0675 0x173c  Detected object count: 0
14:41:09.0675 0x173c  Actual detected object count: 0
14:41:20.0578 0x119c  ============================================================
14:41:20.0578 0x119c  Scan started
14:41:20.0578 0x119c  Mode: Manual; SigCheck; TDLFS; 
14:41:20.0578 0x119c  ============================================================
14:41:20.0578 0x119c  KSN ping started
14:41:23.0069 0x119c  KSN ping finished: true
14:41:24.0435 0x119c  ================ Scan system memory ========================
14:41:24.0435 0x119c  System memory - ok
14:41:24.0435 0x119c  ================ Scan services =============================
14:41:24.0594 0x119c  [ DF1C3D7E6C7929AD83BE22852B5B08CB, 9ECF6211CCD30273A23247E87C31B3A2ACDA623133CEF6E9B3243463C0609C5F ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
14:41:24.0675 0x119c  1394ohci - ok
14:41:24.0691 0x119c  [ 2C5B3035B86770ADD2FE9BFBAF5B35A4, 19E16F9144FE3E33B5FF248CF0040AB079ACAE22290B1369CC72AE4CB5FE3A90 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
14:41:24.0704 0x119c  3ware - ok
14:41:24.0753 0x119c  [ 469441BAE3FF8A16826FC62C51EF5E18, E1204677B87F47222D05F670F8DF3DB65EA0881782A8DCFBE0103478ED71187C ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
14:41:24.0776 0x119c  ACPI - ok
14:41:24.0798 0x119c  [ 7EADED8087C392876521F7EBCE846EF4, 99BF1BD948F97C1ECBC049C7F949B71D73D0B41FB505B2F75B208E655F7DC8A3 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
14:41:24.0810 0x119c  acpiex - ok
14:41:24.0824 0x119c  [ C498887123327CDFD73A05E7A2780920, B45392C46254FCB8D79B6C3A82C8D894063199E6167D8E5F7EA7D60C75CD16EA ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
14:41:24.0846 0x119c  acpipagr - ok
14:41:24.0873 0x119c  [ C8DBE6EFFCF014CAA010B9BDDAC833EC, 96FC29340C62A6B0910DCCBF8945F32089FC300F45B451A540B8854D53734298 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
14:41:24.0886 0x119c  AcpiPmi - ok
14:41:24.0903 0x119c  [ 17039DBEB3B7B9ADCDB4B4533AA9771F, A4D38B144639A20B8B31E4F35FB776A028DB502FAC849FC73EECEB3CCD91830B ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
14:41:24.0931 0x119c  acpitime - ok
14:41:25.0005 0x119c  [ F7D0CD345D2DA42E7042ABCD73662403, 03183F90A994D69066F15C3DFC1D7D7514AEAF46A5AAC059B1FB327F8C30A35C ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
14:41:25.0042 0x119c  ADP80XX - ok
14:41:25.0073 0x119c  [ 70148EFA9A562E7185B75BBE7D376BF7, 8200E3349A1AFA1040B3D956A17BAF3CDC784A1A3CA396125E7872B36C03D84A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
14:41:25.0099 0x119c  AFD - ok
14:41:25.0112 0x119c  [ 870F1A2C936F92B5D053DF7EC75B352F, D617524FD5886D6D3BC2EFBBB5EA310E906454CD7CA7257C3D7BDEA8C4F2DA71 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
14:41:25.0123 0x119c  agp440 - ok
14:41:25.0151 0x119c  [ 3DF7751D5DC6525E7DC6617FBB45054F, 8E6D4C809DB3B66E7558C4829E01F5C227EE614AC82F33FD99DCC629770D1BE3 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
14:41:25.0178 0x119c  ahcache - ok
14:41:25.0209 0x119c  [ 19707ECBCEA71080A85DB2336580DB39, A09AE69C9DE2F3765417F212453B6927C317A94801AE68FBA6A8E8A7CB16CED7 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
14:41:25.0229 0x119c  AJRouter - ok
14:41:25.0269 0x119c  [ AA91A5E156D0364ABA7B01658C2EB014, F61055D581745023939C741CAB3370074D1416BB5A0BE0BD47642D5A75669E12 ] ALG             C:\WINDOWS\System32\alg.exe
14:41:25.0318 0x119c  ALG - ok
14:41:25.0356 0x119c  [ CA5D49FE7992628A02BB110248E1DDFE, AFB28A1F465A0C470C0EDF8708AADD3ABCD23AC9987C9E8B4C0015FD827EB576 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
14:41:25.0373 0x119c  AMD External Events Utility - ok
14:41:25.0390 0x119c  [ B70F0F2F54B4A4DB6E9C830454752F5A, C882DEAC30812E5FA4479A8CB688603C6AF269EF08236688F4C5E7EBED1D4572 ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
14:41:25.0415 0x119c  AmdK8 - ok
14:41:25.0435 0x119c  amdkmdag - ok
14:41:25.0489 0x119c  [ 3A261C58BC747EBED2CB58069B497F69, E13C0F6340E398BB5BF519B750A5A9019BC589F1A5CE7C77D3DCF038A79EE903 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
14:41:25.0528 0x119c  amdkmdap - ok
14:41:25.0561 0x119c  [ 8A375CB3B6D1A56A2AEEE72A5F1D0926, 03D6EA77B141675B719E66DA09D1DACC7137B19F9918C303DD6870B3F36ADEBB ] amdkmpfd        C:\WINDOWS\system32\drivers\amdkmpfd.sys
14:41:25.0573 0x119c  amdkmpfd - ok
14:41:25.0590 0x119c  [ 35E890482C9728DD5C552B85DA8A5AB2, 1E0EB7D902AB4C38E23CAFC0BEA250E7F6E180E8814385B4F29730BFC373A191 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
14:41:25.0614 0x119c  AmdPPM - ok
14:41:25.0651 0x119c  [ 5B30BCFE6E02E45D3EE268FF001BC5E0, 9901DB728885CE36911F79998629B2DD42D56AF9633B5277834F498CC59B0346 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
14:41:25.0668 0x119c  amdsata - ok
14:41:25.0699 0x119c  [ F20B30F35A5C7888441B4DCA001ECF8E, 695A5BC1F18B65992EB06A202AD3CBFA17228E76DDFD1AE6977FD315724F75C2 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
14:41:25.0727 0x119c  amdsbs - ok
14:41:25.0735 0x119c  [ AFE838D7576C581D6483529621AB10CC, 14476A04CC64E7A0F1BBFDACCBD7A87F384BE1877C27656DBB973AF3975D4AE2 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
14:41:25.0745 0x119c  amdxata - ok
14:41:25.0787 0x119c  [ EDDB0D726DBECDFC1DBCC6DB464E5A13, 98D128D1E6FA270ED9ADBFE50078F68A794C00D4CBB86E28EC6161FFAD0CA8FF ] AppID           C:\WINDOWS\system32\drivers\appid.sys
14:41:25.0815 0x119c  AppID - ok
14:41:25.0841 0x119c  [ 7A55F9237F726D1667073A47B0D1B90F, 7C2D9AA84F1D4CC6C1FAF6848DF9479A534E01029C4387E8C0647745F1E74603 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
14:41:25.0866 0x119c  AppIDSvc - ok
14:41:25.0875 0x119c  [ 56E219DF92BE16F62308F884739BE022, FE189EE8A52BC5A0E6B76C632021F84F60307A182F2A67C0C0C7CAA72DEFC723 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
14:41:25.0908 0x119c  Appinfo - ok
14:41:25.0985 0x119c  [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:41:26.0008 0x119c  Apple Mobile Device Service - ok
14:41:26.0073 0x119c  [ 610499A73DF3599608EBB6B3F9929052, A9CA49C4A39A825916AB3791090BCFC7044FDB6B2C3538E01F0CFBC2A9931152 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
14:41:26.0140 0x119c  AppReadiness - ok
14:41:26.0254 0x119c  [ 0F3C165B71F8140F50A1DB5DE3E6D695, 7AD0F130088B3A964739C3194CF09E79B6B5D761B064071B9AC11D9B65F5D523 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
14:41:26.0358 0x119c  AppXSvc - ok
14:41:26.0371 0x119c  [ E3FE8F610B1CC12BC3B2E6BC43DC97E2, 0E18542CF2095A9ADA1759AB8F986E78B0A50A3C6B2AD4EACD80A23D832A2C6D ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
14:41:26.0384 0x119c  arcsas - ok
14:41:26.0410 0x119c  [ 5E00748A1AD246CAECBBB7553BED36CC, DAD2C93F0894E7BB5E5D8D767D8286A909086B49172C504A01097C3A180998C6 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
14:41:26.0441 0x119c  AsyncMac - ok
14:41:26.0465 0x119c  [ 492B99D2E3D5D7BFD5F0AE1BE7BD37DD, A3F6BFC4FDC1933FBF3145019B118689A414108B04F43E2563946B2673C89324 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
14:41:26.0489 0x119c  atapi - ok
14:41:26.0648 0x119c  [ 41DFF214D30294F18F64257167F1CCBA, 87BB8BC1AB5EC4F5DAD84CB0B16CDD4634F10DC687264E4C84E47EFEFF4310F6 ] athr            C:\WINDOWS\System32\drivers\athw8x.sys
14:41:26.0798 0x119c  athr - ok
14:41:26.0850 0x119c  [ 42BF7FA295F453618104B5A50BEE105B, AB44BA2AD2FC5AF3B6BE4489C444C03FD1AB02C22109BF5F39BE459294C4CB18 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
14:41:26.0879 0x119c  AudioEndpointBuilder - ok
14:41:26.0953 0x119c  [ 2A2C0983B6FE62F02E7183335B1F5C20, 07845269FE72894D31D3FC927EECE26333AE9A2149A995DA4AE007276B05C647 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
14:41:27.0003 0x119c  Audiosrv - ok
14:41:27.0038 0x119c  [ 7062CE507814D5306DCA5D6A15B7B6B6, 9D60506003A66C2E516B1FCB70CC5B26FB3A9948B95D97C828DD0328E76F2C91 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
14:41:27.0074 0x119c  AxInstSV - ok
14:41:27.0121 0x119c  [ 6447BA6FA709514B6C803D159B4C7D1E, 549DDCEAD93DF333F6BBD56A9258A867E4DA219741C00D48C68F8F230A87B11A ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
14:41:27.0143 0x119c  b06bdrv - ok
14:41:27.0179 0x119c  [ B4AC08B1D04D0CE085435E5CD0E663C5, 61E641388E5692B2EB351E44BA1DB86B5305DD105EE56865D59072CA9407C8AC ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
14:41:27.0197 0x119c  BasicDisplay - ok
14:41:27.0204 0x119c  [ 25B5BB369DEE2BAE4BF459C978FF9035, DBC2157B2AC0BC92B4011CE5E01F2DCDAAE71E37D9D21102503C6455FAAC4DCA ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
14:41:27.0235 0x119c  BasicRender - ok
14:41:27.0245 0x119c  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\WINDOWS\System32\drivers\bcmfn.sys
14:41:27.0257 0x119c  bcmfn - ok
14:41:27.0270 0x119c  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
14:41:27.0289 0x119c  bcmfn2 - ok
14:41:27.0337 0x119c  [ F374C27099807E99A156953F8416D34A, D267B8CD837290F9FC6B4FFD2DB8F54867D808FB155698FC7713BCAB3AE475B5 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
14:41:27.0388 0x119c  BDESVC - ok
14:41:27.0424 0x119c  [ 5A88834AEE15D97695FAE0837B73B3E4, 03035FB51DE218B8EDB15129A0376DDED0C7E7B6DA58DD95B12E4E5C8D852ED8 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
14:41:27.0461 0x119c  Beep - ok
14:41:27.0514 0x119c  [ 37F5E2385CB4D10AB42186974B9C241A, D38FA2B8CE19AC32056060F04B04D031F1621C07528DEDCCD5A8C01AB0A35995 ] BFE             C:\WINDOWS\System32\bfe.dll
14:41:27.0560 0x119c  BFE - ok
14:41:27.0651 0x119c  [ 64582C924C48175D52AED0D0E64AB413, 75DC6BC01D26A4BABEDB8013F0C106780F0991CA63075798C7C24B66022F58E3 ] BITS            C:\WINDOWS\System32\qmgr.dll
14:41:27.0715 0x119c  BITS - ok
14:41:27.0803 0x119c  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:41:27.0831 0x119c  Bonjour Service - ok
14:41:27.0845 0x119c  [ DA2C6F7ACE392193C424FEA975C5BFFB, 668F91F3E5F8EA170C10823D6959E0EDB32434C51FAA68BEA782EDDF5618690E ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
14:41:27.0870 0x119c  bowser - ok
14:41:27.0930 0x119c  [ 492FB85E61768950CDD27C87AED6E8FA, 1BFF11D899581E406D1AB5F2C66C9D816161ECF4B81AAACCCA3663875E86C0A5 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
14:41:27.0980 0x119c  BrokerInfrastructure - ok
14:41:28.0023 0x119c  [ A617BE5E429A035A1CA8217C1B16F0BB, 197EE6C6EB22FF8A626540886F5A2163CC4CB177504C5423856F54BF01EB0FF1 ] Browser         C:\WINDOWS\System32\browser.dll
14:41:28.0067 0x119c  Browser - ok
14:41:28.0109 0x119c  [ 53EA7FADB45D4A212CE6E22E053111AB, F8EF4C90261E67433BC3E3330CF1745D2E13C667E5F71C48C785E673E8031DED ] bScsiSDa        C:\WINDOWS\System32\drivers\bScsiSDa.sys
14:41:28.0463 0x119c  bScsiSDa - ok
14:41:28.0501 0x119c  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS       C:\WINDOWS\System32\drivers\btath_bus.sys
14:41:28.0512 0x119c  BTATH_BUS - ok
14:41:28.0578 0x119c  [ CCA07E23C5032A2DFA27566B8195BFA3, 05442C5D6867A974A382346F6DF81560F054C970A4B993F01A0F609B59A91D5A ] BtFilter        C:\WINDOWS\system32\DRIVERS\btfilter.sys
14:41:28.0624 0x119c  BtFilter - ok
14:41:28.0648 0x119c  [ CAEC7BC11AF69A181AF7932E636E09E4, 503C69045F1E025CBEE2405043BB71CC58478985ECAF6587F73FCB57860F5709 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
14:41:28.0694 0x119c  BthAvrcpTg - ok
14:41:28.0700 0x119c  [ 5F2B4B32E986C058525D3BA2A475A16C, CEC5BB0B025DD9525CFBBEDF6EB6F63336534798495A4F95763CE112DF915088 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
14:41:28.0727 0x119c  BthHFEnum - ok
14:41:28.0731 0x119c  [ 5406289E8AE2CB52FC408154E0A64BA7, 0A3795F2E6E2B51198452CF69A99159D8E11650E95F41DF0B575CB72F9C6C6B5 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
14:41:28.0748 0x119c  bthhfhid - ok
14:41:28.0799 0x119c  [ BAB101E7826BE287F79C4BA721621989, E6DD25C89267FE87253B8226292F2894F5E702075D3B23B09339D3B28744C060 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
14:41:28.0843 0x119c  BthHFSrv - ok
14:41:28.0857 0x119c  [ A76F20CCCA31895A1DA78A875E50F946, ECD4B3670DA5984AA24F4354457B4E45983938A89FF6DB03B556A633B4B37E3C ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
14:41:28.0878 0x119c  BTHMODEM - ok
14:41:28.0941 0x119c  [ 2A0EF9AF5FD3FCCC25E17C47198D6E25, 4B548DD7235EF5EEC36AC443F9F44A042332BA01CB38B3D2E804618F2DC31813 ] BTHPORT         C:\WINDOWS\System32\drivers\BTHport.sys
14:41:29.0000 0x119c  BTHPORT - ok
14:41:29.0030 0x119c  [ 7A177E18AA6A6A6365E6351C2BF8EDAE, A35224A20014B1215A6824AE5E17B8869A775EA272EF7F25EAFFA18733F8D09D ] bthserv         C:\WINDOWS\system32\bthserv.dll
14:41:29.0052 0x119c  bthserv - ok
14:41:29.0083 0x119c  [ B13CB5CCEE91ACA77C985B8E0D53A7D4, 1DB76A52E30B3DCC0FAF8579A7D5A24AD010ACA7613FB00B541FDDED7BE3F08E ] BTHUSB          C:\WINDOWS\System32\drivers\BTHUSB.sys
14:41:29.0104 0x119c  BTHUSB - ok
14:41:29.0121 0x119c  [ BF89BDBA5D3A0B4256D3F6FC8D31880D, 940F3BF55B88261C9E9A951A092331559FC5B24FE3BA0F1E1AB3450D2CA364C1 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
14:41:29.0149 0x119c  buttonconverter - ok
14:41:29.0270 0x119c  [ 52AE2CDD37AB735FBDA52263EFD524AA, 844103913E6079CC1C49B05FFB1CDC9A68692A8EE5A05C9C28FD272DFE534913 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
14:41:29.0310 0x119c  c2cautoupdatesvc - ok
14:41:29.0360 0x119c  [ C35B91B6777E7C6DB67B8583D2AA66A7, CE3A004B560EB750442150FEEFEE074A11A17E66B3F2A489E8EF1DBCF8FE8390 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
14:41:29.0405 0x119c  c2cpnrsvc - ok
14:41:29.0407 0x119c  Object required for P2P: [ C35B91B6777E7C6DB67B8583D2AA66A7 ] c2cpnrsvc
14:41:32.0048 0x119c  Object send P2P result: true
14:41:32.0093 0x119c  [ C24C27FDF93B85A4EFCF25F830253AA2, 35C87518BB59663B57C2361A13AD4E57E37392598F1EB9F07F86CA5A6321AF5A ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
14:41:32.0136 0x119c  CapImg - ok
14:41:32.0171 0x119c  [ 7F9C7226D743B232907ED2537B8A574F, 2211AFC30E8F8FA03020DB48EE14914CD31E50BB6A63FF20AC7C6FA481E72C18 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
14:41:32.0198 0x119c  cdfs - ok
14:41:32.0236 0x119c  [ 0A92DC116CFC7F6BE8167DD25CB925CC, 50CAC7BE14FF69B10C029E049F7C441A5572540F027F95F940B185C76C689409 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
14:41:32.0271 0x119c  CDPSvc - ok
14:41:32.0287 0x119c  [ 82D97776BF982AA143BDC7DFB5054EA8, 954F56728371E6B3514586DCEAF15C4727BAED6CAFBF788654C4E03BD702942C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
14:41:32.0310 0x119c  cdrom - ok
14:41:32.0326 0x119c  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
14:41:32.0355 0x119c  CertPropSvc - ok
14:41:32.0385 0x119c  [ 1CA7070F72330C33A42CF678E92F030B, 0F9AAACE9949B76C0B4D6E53DB35BD599507265FB982AE8ACEB7E1B1CDD0B566 ] cfwids          C:\WINDOWS\system32\drivers\cfwids.sys
14:41:32.0394 0x119c  cfwids - ok
14:41:32.0422 0x119c  [ 0505C1D991D0F9D47F3353BB98597C7E, 3B801CCF4980256327A4A9FBD98007DA1E3ACE9C94E5A4C23AB21303B46E8B5A ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
14:41:32.0457 0x119c  circlass - ok
14:41:32.0498 0x119c  [ 8B4B39C507ABA09AAFE8E3932D1B392C, 734700155A658BC08FC96E8F99A01DE7F7251D7DDEFA79D258B2EEB370BA7AA8 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
14:41:32.0536 0x119c  CLFS - ok
14:41:32.0717 0x119c  [ 43102F2322F0CB42A7D2C685278BC460, 5586485A472BD5D99D27A36CEEEBB2C849C9D0D9EDB8312203B78279D69C6CA2 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
14:41:32.0784 0x119c  ClickToRunSvc - ok
14:41:32.0787 0x119c  Object required for P2P: [ 43102F2322F0CB42A7D2C685278BC460 ] ClickToRunSvc
14:41:35.0473 0x119c  Object send P2P result: true
14:41:35.0536 0x119c  [ F7526C133AC265F283012E9CD751F873, 6AABDD92FD880F49F63C1CC478C3D8291AF670802CEC58B32730E7675D858D88 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
14:41:35.0569 0x119c  ClipSVC - ok
14:41:35.0593 0x119c  [ 95832B049E2833B9F5189823CDF946C7, 72773A42A89220B4A6AC72D1633B16F11191A44D876A44FAB5CEFB717CE3223D ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
14:41:35.0616 0x119c  CmBatt - ok
14:41:35.0680 0x119c  [ 3B866F8CB10719A5AF9E410B1B149714, B0A32B526290ED8E1DD93C70AB49DD417B82CA23D6B815163131247091D61DBA ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
14:41:35.0710 0x119c  CNG - ok
14:41:35.0724 0x119c  [ 58D640BC2294C71BDE0953F12D4B432F, 0B3B7659FCB97791A2A1F895C8E6F9078F855C94C13EB47464492588C4B02B85 ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
14:41:35.0735 0x119c  cnghwassist - ok
14:41:35.0788 0x119c  [ 14F9883588398A1BDE49C75098C75DE6, D9D82DE89FAFE60BC902683BC44C7555533A030150FD5E5A35A24542FACC5CAD ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys
14:41:35.0835 0x119c  CompositeBus - ok
14:41:35.0840 0x119c  COMSysApp - ok
14:41:35.0880 0x119c  [ 02B8E49148DE5E0A2F6FDF28CE94A6AC, EEA405823F441CA604BEAA44EB71A1D20BC80E124FF7B27380D0201AAF2E0849 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
14:41:35.0895 0x119c  condrv - ok
14:41:35.0941 0x119c  [ DE6DF2C34718EADCFF8776E597F2104D, 35D03E95853CEAC69F674FB09C819A4698EBEDFD8AC0474F0ADF02741492401E ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
14:41:35.0969 0x119c  CoreMessagingRegistrar - ok
14:41:36.0047 0x119c  [ 700A193A1555B083E3A08F5D3A844925, 974F7F0C78289EFE821407E418EB65A022D6445DED8EA112B9866784AF0221EE ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
14:41:36.0077 0x119c  cphs - ok
14:41:36.0112 0x119c  [ 2CE0D74AED86A372997E9D77AE10B9F5, 1AFAA22C68FD0B81F73CE0EB763AD77AB97E78916752843A5056E1352F0FEA82 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
14:41:36.0136 0x119c  CryptSvc - ok
14:41:36.0165 0x119c  [ 2619DC483579DB9FE804044C1ADFFD1A, 23A5420288735A980917091532BE7BB36EB51660AA4555C615AF736357EB02EC ] dam             C:\WINDOWS\system32\drivers\dam.sys
14:41:36.0176 0x119c  dam - ok
14:41:36.0176 0x119c  Object required for P2P: [ 2619DC483579DB9FE804044C1ADFFD1A ] dam
14:41:38.0796 0x119c  Object send P2P result: true
14:41:38.0877 0x119c  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
14:41:38.0932 0x119c  DcomLaunch - ok
14:41:38.0968 0x119c  [ 620921E77351FB651632322AD2C195C4, 5A98971995D7A2B5AE6BEA69344FCC6687B582FEF74BDA206D32FB2E6CEB0478 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
14:41:38.0998 0x119c  DcpSvc - ok
14:41:39.0043 0x119c  [ 6129EA4294C5C69E4665801E95B16AB2, CE419186CF0F57434426FF925A09F13BE87639679CBB5F2074B0E1A243349D27 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
14:41:39.0104 0x119c  defragsvc - ok
14:41:39.0153 0x119c  [ D12B9B6A6C4885824876422AACC89954, 5853ED5CAF84B7AAFF3EDC5C71FE23EB121DB681D81267D77118424BA9AB6F88 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
14:41:39.0190 0x119c  DeviceAssociationService - ok
14:41:39.0213 0x119c  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
14:41:39.0246 0x119c  DeviceInstall - ok
14:41:39.0270 0x119c  [ 5BF8BD9B19D665452494C8D56DF4B28D, E5FC649207EF42C04B6737D442FECD3383E82F8998B140319FF400773F1D0978 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
14:41:39.0307 0x119c  DevQueryBroker - ok
14:41:39.0346 0x119c  [ 935823F79CBEDB91637B63D37E3A5A36, BE9A46F1CA631B9252C71758901D55456DC3C143053003D9FA7D67811A1E5026 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
14:41:39.0377 0x119c  Dfsc - ok
14:41:39.0416 0x119c  [ 5841A361D28069DFC82E1E98040FDC3F, 3A48DB7ADE90654242CB54DAD07F5FF0CD5CABF372C50D5B2C4D7AED068986E1 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
14:41:39.0444 0x119c  Dhcp - ok
14:41:39.0498 0x119c  [ 9F5AC03F5A0000DD96FA29CD68A6605B, 6964E077635E65DA902CA6C69E704A9DCD5856D22BA75E1CF823E63E62266AF7 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
14:41:39.0544 0x119c  diagnosticshub.standardcollector.service - ok
14:41:39.0624 0x119c  [ 15D174719872A30F2FDD6B5B1B8BA5D9, B0E6FF6FC47B731C204F110D4B768231906B144B31F602ECE8EAC24D70BA880D ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
14:41:39.0673 0x119c  DiagTrack - ok
14:41:39.0702 0x119c  [ 4904B152E4942BF700F2D73228B4D477, 0E5646DCA05A24C71F057C9F9F64AE992D338DA72DF3126175C2FA178854C30F ] disk            C:\WINDOWS\system32\drivers\disk.sys
14:41:39.0714 0x119c  disk - ok
14:41:39.0743 0x119c  [ 49F069E2D22F33955A69D44DFD1B5179, 739C52C7B961BA683E8C7CCDB0E95423C17561B2F1F506BAE923DC53DB96B067 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
14:41:39.0772 0x119c  DmEnrollmentSvc - ok
14:41:39.0788 0x119c  [ 0197AE4B9790A4E73751CACFAA480126, 86BBB398F1A93754B2C329271F13A88FD2F285F30225C38F068F565CCA14EB9F ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
14:41:39.0813 0x119c  dmvsc - ok
14:41:39.0838 0x119c  [ 5EF8EC71A7A91F3DF7798BEFE6786B0E, A3A56B43C72926881C66B7A17C9EAA35C2D9603C8D3849438838536BCD3F4633 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
14:41:39.0867 0x119c  dmwappushservice - ok
14:41:39.0916 0x119c  [ 5839A317C25F70979433E0905DFABB1B, 7F1CD50C77A33A10259D8A208A355BE7ECAFEA69F810AD908EF8878A792741AF ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
14:41:39.0958 0x119c  Dnscache - ok
14:41:39.0982 0x119c  [ 1B15297A3A2CAB6BD586676154F389D8, 623D5F5FC8622B7D9AEEEB1787E6846C1570F0EEF94341239440B616D09D672A ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
14:41:40.0013 0x119c  dot3svc - ok
14:41:40.0057 0x119c  [ 316C2D8B8E3C0727969F1C3790EF7193, 631F8578FDB26578C8436E4B9C4DF21E1F58FCFE6DA66E5769AAC3739005D465 ] DPS             C:\WINDOWS\system32\dps.dll
14:41:40.0104 0x119c  DPS - ok
14:41:40.0145 0x119c  [ 25FA06D3B49D6ADF8E874FFCDCD76B50, 9AF09B96ED79D94EA36581ABE6CC73313A72891779774B15860D018BEA2BBA0F ] drmkaud         C:\WINDOWS\System32\drivers\drmkaud.sys
14:41:40.0166 0x119c  drmkaud - ok
14:41:40.0210 0x119c  [ 16EE6701115BECF8C657D9D6E123F6A1, 16E115B5245C3C988F8B58B90D30F183021C7C7792D3D1C74BEC606E49672B2A ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
14:41:40.0247 0x119c  DsmSvc - ok
14:41:40.0282 0x119c  [ FBC8C56814642A7CA88ACBCA8DD1121F, 108690704A359991C3D6577477E232F5F2F46B36DF6B4B0738A893EF05D7D4EB ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
14:41:40.0318 0x119c  DsSvc - ok
14:41:40.0434 0x119c  [ F45665E77D11F3C1552EDBEAD1559DC8, C7C4B493CB36A1A35B8CA33C044BA0ED273CDA80E36F48BFF7CE3A0356246838 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
14:41:40.0494 0x119c  DXGKrnl - ok
14:41:40.0529 0x119c  [ 0CDF6B61D7F7FFCD195AF0113B9B2C16, 828D3FA31742B54075EAED2E67BBB5166D2EF4F84B791077E96DC0BD5557F11E ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
14:41:40.0560 0x119c  Eaphost - ok
14:41:40.0711 0x119c  [ 491275B864B704B54EC08168344E0F38, B4849400C3F819CF7809A2001EA2ECB527022483F7DFE31C3930F951EAFE50CE ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
14:41:40.0804 0x119c  ebdrv - ok
14:41:40.0847 0x119c  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] EFS             C:\WINDOWS\System32\lsass.exe
14:41:40.0875 0x119c  EFS - ok
14:41:40.0923 0x119c  [ CEF108FCE06892CFA5F1B49527D4BF49, FA337584024B6E6EE4AF519F57FFA4C0FCA19EDC148FF309336C4CCA8F9C9CE8 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
14:41:40.0937 0x119c  EhStorClass - ok
14:41:40.0984 0x119c  [ 5B1EAAE3001A7A320C106FC3859F4111, 700BA2C7D4DFAFFEB78D3804B310A4EE5B4295C84600442665693FF661673951 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
14:41:40.0999 0x119c  EhStorTcgDrv - ok
14:41:41.0036 0x119c  [ E34DEFC09F2843C2C24C2248F1ABE6D8, 1FD67EB5820A1D2F4402DE9D95DE288DB69D421A8473074FF23491D7CA8B5ACE ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
14:41:41.0054 0x119c  embeddedmode - ok
14:41:41.0073 0x119c  [ 062152DD5B225518A991DFCD8536770C, 5C8EF4E0C7DE3B24387FF239A8D0CDA39C2376826F16EAFF09739A6C7EDA01E0 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
14:41:41.0101 0x119c  EntAppSvc - ok
14:41:41.0200 0x119c  [ B5B5FC68BFB3F01267E54B236660E610, 103F90343B207AFB9151CDA71E70884FEB56E8596754D2AB8B3F46C045642F10 ] ePowerSvc       C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
14:41:41.0221 0x119c  ePowerSvc - ok
14:41:41.0236 0x119c  [ 7A2705148A4BB3CA255F81624338B461, 68AC8F8D2DD8AA4E8F2224A0054DE2AF67EA199217E87CD3C7299B021048F14F ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
14:41:41.0262 0x119c  ErrDev - ok
14:41:41.0328 0x119c  [ 6BD85B39B7B23F03B24CF641ED29147B, 850F21750BB39E5239B1584E1117844CAAAF6A5C58E79366552309F917675CE5 ] ETD             C:\WINDOWS\system32\DRIVERS\ETD.sys
14:41:41.0355 0x119c  ETD - ok
14:41:41.0395 0x119c  [ 8916EACF1256E1C5A3AF81FD39C747E7, FF28FB95E9F9287C1005CF0D9EB84F7CA3D137689862860C9848398504E1EFFF ] ETDService      C:\Program Files\Elantech\ETDService.exe
14:41:41.0405 0x119c  ETDService - ok
14:41:41.0448 0x119c  [ 17BE4A35829B37C742084DC02D48E5F0, 7FDA62B56DF585C3F2C6FFB10AC7C0D8F70FA921C4DEA47B2789745CFE2618CE ] EventSystem     C:\WINDOWS\system32\es.dll
14:41:41.0483 0x119c  EventSystem - ok
14:41:41.0521 0x119c  [ DFE8A33FBCF6F38182631A4D6097B92D, F9D06780830E74FD5309E6DC5C3EEDB9334A8AE284F381FA91EF2729297F8632 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
14:41:41.0565 0x119c  exfat - ok
14:41:41.0582 0x119c  [ 03DE0EC072C5EBD5B018CAD83F1E522A, 9D0B30A2870FBA20B95017CE3A4205F2DD53FE169A0D16715E962D83DE040FB3 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
14:41:41.0599 0x119c  fastfat - ok
14:41:41.0643 0x119c  [ 952F10D2116B91BA433842D07879AE7A, 9E1EC0C719877EF198AA4DDBE896E9DDEAD360AAC1FC6DF305E7C5C73C7A761D ] Fax             C:\WINDOWS\system32\fxssvc.exe
14:41:41.0682 0x119c  Fax - ok
14:41:41.0694 0x119c  [ 9D299AE86D671488926126A84DF77BFD, C076EEDD0524B7D88BC56C97089E0A836CC1AD725E1A544CC4F8DDBB6670C366 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
14:41:41.0720 0x119c  fdc - ok
14:41:41.0751 0x119c  [ 47D09B8C312658ACE433E46DDF51C3A5, E76948DA0F51C7DC6D69B7E36D63CE6E98FDE619FA30E91637F75B5084107D22 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
14:41:41.0767 0x119c  fdPHost - ok
14:41:41.0784 0x119c  [ 177AC945B20C81400A1525ED7B49A425, FD215A2E718EA38A95D985F53AB3DD44B50C2549AA67F44BA98C4709E492051F ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
14:41:41.0801 0x119c  FDResPub - ok
14:41:41.0818 0x119c  [ 3E78BEC276DA5A062E4D55F3291B3463, 62983457F506C70D1F89F527AB61C1C0F4D1B002631256A2708F9AF092A8C95E ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
14:41:41.0839 0x119c  fhsvc - ok
14:41:41.0876 0x119c  [ 8F12AB59336143B680F71B217B495AD2, A28F62F065C68CC1A7EEF0CA52F83C3284B001565D8E154BF8568DE4A525104E ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
14:41:41.0905 0x119c  FileCrypt - ok
14:41:41.0936 0x119c  [ 92ECCFA58C8195B8EA33ED942469D4E6, 8DB12E8CF80ECA22182F9A1F4CA922336A430297F1F596F204ECF4D9D19F30D9 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
14:41:41.0961 0x119c  FileInfo - ok
14:41:41.0976 0x119c  [ 87C51FDD50C17882BA93E28BBABB9847, 8987D80FB77D1D3F9E89B491B1287B027DA26FFC4E4BA7B01E07D4D4FC69E236 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
14:41:42.0003 0x119c  Filetrace - ok
14:41:42.0021 0x119c  [ E99261DD76D1C9E05AF575939CAE5AC5, A789724FD2E22AFB2F921836F5C19A21D17F4BBD604771E2908C2651BD31989C ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
14:41:42.0039 0x119c  flpydisk - ok
14:41:42.0049 0x119c  [ 25D7A58625E1453E40D36825DE74E4F1, 74119803D35E3C3CC349B44C6CD9EDF6B797F88584B847F0BF9EED542719B86B ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
14:41:42.0068 0x119c  FltMgr - ok
14:41:42.0134 0x119c  [ 4387DE200BF8DD0E2EE828E655434B9A, 9148D65E54663EEC139E754091F47ABF439A637BEA83F600D30736522DAA845D ] FontCache       C:\WINDOWS\system32\FntCache.dll
14:41:42.0210 0x119c  FontCache - ok
14:41:42.0305 0x119c  [ E79DAC43A5E191FC4DDB04197A704BFA, 2FA6C8B5B2DFE66C05828E3F55DFD6268A8210E9BD083F2D09367AD59AF1C6C1 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:41:42.0333 0x119c  FontCache3.0.0.0 - ok
14:41:42.0374 0x119c  [ B4175E8BE60B099686FF55CA7D692316, 3158FC5B4D1A2F1FC1346754392AE24AE58999B9061B1CE78A65E785BFFADD52 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
14:41:42.0403 0x119c  FsDepends - ok
14:41:42.0413 0x119c  [ CC71372CEB811A72F1DC99089C5CBF53, BB9DDE74D60E534A6F8A51B63DDBB441245F06A00A0AFD37DBBE86255690946D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:41:42.0426 0x119c  Fs_Rec - ok
14:41:42.0448 0x119c  [ 421497634C86EF4B8F86D0EBC076728F, E0D1449555D8849364E00AA747DBC820EF914A9F5B796E35070072FCBC532ADE ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
14:41:42.0474 0x119c  fvevol - ok
14:41:42.0490 0x119c  [ B9981A4CB9F728B3312A3885BFAA7204, 12FB2EB2E5D2A912769823DD9C1B33DB358CD0B7FBFC788529EF83DD584334F8 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
14:41:42.0501 0x119c  gagp30kx - ok
14:41:42.0528 0x119c  [ 77555B11B264991DDC26872FFCF1AB97, D5F230EEF74EB869F771F8A4AB19C1E6C845BB0EF4A1234882EBDA4FDC431E44 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
14:41:42.0553 0x119c  gencounter - ok
14:41:42.0571 0x119c  [ F3AC9652D88BF87BA6596CBEA28CE10F, 115F3C0A5B9903B17ADEA80E1825FE927B7361F5BDDF80CE3685EF2D327EDF4F ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
14:41:42.0598 0x119c  genericusbfn - ok
14:41:42.0637 0x119c  [ F802FBABF0C4DF1BAA733187B2E476F5, E2533284CEBBB872196B013DD1FBBCA794DB1CAAA37D64849BD9264ECDD2CEE6 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
14:41:42.0650 0x119c  GPIOClx0101 - ok
14:41:42.0736 0x119c  [ B55458A83395A2CFD4E745E9EC4AB5F2, EAB06B089D8A7DBC9AE2A1C919B489911690D341013A5F8F906819C68431CA85 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
14:41:42.0800 0x119c  gpsvc - ok
14:41:42.0818 0x119c  [ D011B0ADB15F4815310CE1BF4780B33E, 3860630917F83A89FE7A6407CC544505FA4BD754619CF273DD630ABFBAAE42EE ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
14:41:42.0849 0x119c  GpuEnergyDrv - ok
14:41:42.0907 0x119c  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:41:42.0936 0x119c  gupdate - ok
14:41:42.0967 0x119c  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:41:42.0977 0x119c  gupdatem - ok
14:41:43.0020 0x119c  [ 84BC034B6BB763733C1949B7B9BAF976, 18C2C0F15BAFA46197F0BB629C4F585D893C2A78324CA198F88A04527D524F23 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
14:41:43.0042 0x119c  HDAudBus - ok
14:41:43.0056 0x119c  [ 6B8CB114B8E64C0636EB49F7B914D1FC, 1AD7A43CC5CD99DCEF60C61242B6843D4AD925CE93BA5D75CD8395C7125EF5A7 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
14:41:43.0079 0x119c  HidBatt - ok
14:41:43.0113 0x119c  [ D1AD197CCDAAC0CB4819DA1D6EB17BAE, C370F974D0A1F7B60F47EAFF57B6CCABE82913187F8BFEE169B8237AE91247B1 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
14:41:43.0144 0x119c  HidBth - ok
14:41:43.0183 0x119c  [ 64909DECCFCC6FB5D9A5BAFDCCB31FEE, E19C91FD8D5102A8C4F6C6FF70CA058BB272FEC1B6E9CBA3A473C49948E6AC7E ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
14:41:43.0211 0x119c  hidi2c - ok
14:41:43.0215 0x119c  [ F510F7B7BF61DEAAC04E65C3B65E8D59, 11566086B06FB08B6A179E3068E022DA381C762DC8962D1E1D63DC646DD4D301 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
14:41:43.0226 0x119c  hidinterrupt - ok
14:41:43.0230 0x119c  [ 90F3ED42D423C942BA5EA54E2FFE7AC7, BF7DE0C8141CD20A6235657BA897A019ABEFF6A01AA3FB202C73C33433CDEAF8 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
14:41:43.0256 0x119c  HidIr - ok
14:41:43.0288 0x119c  [ 46DE2EF6382DD9613CB506760648F262, 419555220794380134A64E1956B83B2FD1D1B6E403C5FC729A9107E14A12E968 ] hidserv         C:\WINDOWS\system32\hidserv.dll
14:41:43.0313 0x119c  hidserv - ok
14:41:43.0349 0x119c  [ 128DEDDD61915DBA4D451D91D21F0513, 961A0DDA02B0879989300C15E4FF9022882A4CD895D65335C263AC0DD1918314 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
14:41:43.0360 0x119c  HidUsb - ok
14:41:43.0411 0x119c  [ 2FEF4D90C0CAED258C93CFF72A8FFD71, 56473D90E9FE52849067D080FD88B29C0BBE76E5266657E2ABD6366B7A4E9474 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
14:41:43.0446 0x119c  HomeGroupListener - ok
14:41:43.0505 0x119c  [ E2145534FB853921788F52701BED0CAB, DF71F842772FAC21DD8994C97F578A78AC43D06C5F26F752FB69B47DFE3BB112 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
14:41:43.0546 0x119c  HomeGroupProvider - ok
14:41:43.0563 0x119c  [ FF442DCDCE1F6E9FAA9C8AD0CD1D199B, A239414E97B310C9545995B0E723B5E792B08D71F651450EB006AD4D1765E4F7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
14:41:43.0576 0x119c  HpSAMD - ok
14:41:43.0665 0x119c  [ 63C3F74DC398A1C1A77E39DFB9C312CA, 283A13899838B4313BFBC406E832042696C549640A1AB11E23C0B9E499289836 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
14:41:43.0707 0x119c  HTTP - ok
14:41:43.0735 0x119c  [ CBA5E88A0F0475B7F49653BB72150BEF, 0F03560D9C30E069D117A555AEE729C81E6BCAE443FA25172D0E9E6903695C67 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
14:41:43.0745 0x119c  hwpolicy - ok
14:41:43.0754 0x119c  [ D668FAB4B0397B426EE3D41683B9A1C0, 66F3E3B2ABC3C9B25A0DADBF09818547ED301230374AC5302B4794629A95DDF8 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
14:41:43.0780 0x119c  hyperkbd - ok
14:41:43.0788 0x119c  [ 40115A0F8E7FF9E786EBBD1D33D39AD7, 5190D3970950251CD0946521C428BF26BF7D68C2984B990B8EFDD406EC9CDFE1 ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
14:41:43.0810 0x119c  HyperVideo - ok
14:41:43.0820 0x119c  [ 53FDD9E69189E546DE4740F8C4D8AB2F, 45ED5B229ED5FD0CEE8BF52EFF88FD8B1889BF348ED7187926F290B3AD48A76D ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
14:41:43.0845 0x119c  i8042prt - ok
14:41:43.0860 0x119c  [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c           C:\WINDOWS\System32\drivers\iai2c.sys
14:41:43.0875 0x119c  iai2c - ok
14:41:43.0897 0x119c  [ 59A20F5AD9F4AE54098154359519408E, E27B7389C9D123CDDA4EC9CBDB06C4AA5000012391F940EE1492419B593608FE ] iaLPSS2i_I2C    C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
14:41:43.0921 0x119c  iaLPSS2i_I2C - ok
14:41:43.0931 0x119c  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
14:41:43.0939 0x119c  iaLPSSi_GPIO - ok
14:41:43.0950 0x119c  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
14:41:43.0972 0x119c  iaLPSSi_I2C - ok
14:41:44.0019 0x119c  [ 6B0029A0253098CCE28EACCFDB9E7208, E33AD69644E1683A971DA1169B704FBCFD9F715E9550816058E420BB5DE4D946 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
14:41:44.0054 0x119c  iaStorAV - ok
14:41:44.0074 0x119c  [ 9652E1E35A92D8C75710C17A63B15796, 72F8C4A49B874226DEE9B7C9704F0E0A98DAA2DF4EAE2F2258E8324ACBD242E4 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
14:41:44.0094 0x119c  iaStorV - ok
14:41:44.0117 0x119c  [ FFADF691F7BF727AF5C863454A372723, FCF5A5595E8C9C937BE9F1C3AB5D9BD0EFE82DE1298D12085E0CCD84A186D2F2 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
14:41:44.0138 0x119c  ibbus - ok
14:41:44.0182 0x119c  [ 80BF2990E01E774D64F6E13F30661942, ADFEA2280D29F2C7B0A556C61709301D6327C288064FF5A4D29358403DF41DCE ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
14:41:44.0217 0x119c  icssvc - ok
14:41:44.0225 0x119c  IEEtwCollectorService - ok
14:41:44.0436 0x119c  [ 548712979B0BA12ECE2D8549797593D4, 6809412A76DE30C914A65BB8546E436AD540E00610D5D13FDE486C4446E95C24 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
14:41:44.0596 0x119c  igfx - ok
14:41:44.0619 0x119c  [ BA1BA1C9E40BCEB88678747C1E7C256F, C85CC690D353FCEBFD243304C25EEAA2BC13DB1E2A4C8C65371F455511540959 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
14:41:44.0663 0x119c  igfxCUIService2.0.0.0 - ok
14:41:44.0701 0x119c  [ 95A03F67830FDCB950E70261128D540D, D052CB703500E2871CF51E015E444F2A99FA9A7579AC422104F0E411F6107BD0 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
14:41:44.0771 0x119c  IKEEXT - ok
14:41:44.0924 0x119c  [ 8EB4D1D7806D05E5AB39D96464D801CA, 73853F56CD05243B1CABED2CA2420DFC8BA53F951030EECCD0D2A0E26D8A0D1B ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
14:41:45.0041 0x119c  IntcAzAudAddService - ok
14:41:45.0074 0x119c  [ B375D8686E1BD2B79C0F00E3868A8C3B, A15D99F04B69FB37ED3AC0C3BBA464BF6D6EB1873D4AE1062983120E3BD1C4DB ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
14:41:45.0091 0x119c  IntcDAud - ok
14:41:45.0199 0x119c  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
14:41:45.0253 0x119c  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
14:41:47.0940 0x119c  Detect skipped due to KSN trusted
14:41:47.0941 0x119c  Intel(R) Capability Licensing Service Interface - ok
14:41:47.0992 0x119c  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
14:41:48.0033 0x119c  Intel(R) Capability Licensing Service TCP IP Interface - ok
14:41:48.0058 0x119c  [ ECDB27420D3A98424666904525A8562A, BDA98C3C95F2AD79945EF8213D5C65064052C09C82DD36F0D6724E1D21DCC30A ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
14:41:48.0068 0x119c  intelide - ok
14:41:48.0083 0x119c  [ 8FF1978643EFD219C5BA49690191D701, 6FD78A8490107C80090D7125644B8C910855374BE1373D1D6B199307C79680BA ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
14:41:48.0095 0x119c  intelpep - ok
14:41:48.0118 0x119c  [ B61B60F36E1C8022FA8166ABF0F66B07, 23161F1DA51D44D936329E62DF4C2DAEE3DDD4B3D62CC501A888C0E149788968 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
14:41:48.0151 0x119c  intelppm - ok
14:41:48.0165 0x119c  [ CA0D42029AFFC4514D295E1EF823D02D, F2A05CB2B2E8C843FD02DC37E86F23CF928A4B2F9044424A60DE4E82B87DF5C3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
14:41:48.0188 0x119c  IoQos - ok
14:41:48.0193 0x119c  [ 6E3F9D95235DFC9417384080A216F310, 6F13D72661038A91CFABB360621F4B169D78955C3EAD64956A7C825ABAEC5121 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:41:48.0209 0x119c  IpFilterDriver - ok
14:41:48.0287 0x119c  [ 6E75B731A8A7EFED0821327B08DAB46D, A77B746447824BD3C68B82D7329B82D62098B2409F8AEE4738FA23CB1561E629 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
14:41:48.0352 0x119c  iphlpsvc - ok
14:41:48.0363 0x119c  [ 4F527ECB5EAB47D8EAF34A469666C469, 8FFBEEF42515B6A7758BE579ED69E3911856CBF7710D9785011332C5E3DFE495 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
14:41:48.0389 0x119c  IPMIDRV - ok
14:41:48.0396 0x119c  [ 9E5E8F2A1996F23B7E9687846AA81B01, 29E59384A4F92B3B4F2974942C91A12380113C13D3800900B5F44E2355D05455 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
14:41:48.0418 0x119c  IPNAT - ok
14:41:48.0490 0x119c  [ F96B9EDC032E61EB87652896E92ED526, F9E3CD2FA2D963C56034A4F606869467FDC6647B916CF457249270E6C337A8A5 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:41:48.0514 0x119c  iPod Service - ok
14:41:48.0541 0x119c  [ C317EB660138BC9CBFE37CCDE56351AE, F3AF6C573419D7F65C96A4841D4F056CA281CD5AFACDC7A5F586A390DC6E615B ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
14:41:48.0562 0x119c  IRENUM - ok
14:41:48.0592 0x119c  [ 531994A6D9399D9B74BE12B5BB58A81E, 6D5CF540C777F4828E1D4C5FE58EE41E6C2F5F399C554DC85F19D1E52229B094 ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
14:41:48.0617 0x119c  isapnp - ok
14:41:48.0649 0x119c  [ 68D5354A4A9692EEC24664C60F47D4A2, 92124E98B6E286B6127DC6D0BFACC9C6D293D58EAE2B47B45532714CE6A6D0CD ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
14:41:48.0675 0x119c  iScsiPrt - ok
14:41:48.0748 0x119c  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
14:41:48.0778 0x119c  jhi_service - ok
14:41:48.0805 0x119c  [ 8438B8A45E16258064C19FBEC4EE069F, 9128F825403B26A39BC769A53555DF1FD2B82882AF1384135D0329FCF2BBAC6D ] k57nd60a        C:\WINDOWS\System32\drivers\k57nd60a.sys
14:41:48.0836 0x119c  k57nd60a - ok
14:41:48.0875 0x119c  [ 701D7DB13B0815E7076EF4CB4CE981F8, 02585661656C0069AC318B82DE83DAC660451A0B970FDBCA0F7A8B4CBF7D93A9 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
14:41:48.0889 0x119c  kbdclass - ok
14:41:48.0899 0x119c  [ 884EBBDDBF5968003B40185BD96FF0E6, E3934D0FF0BEDDF5526AF529F7D15BA8BE479383894975B1AF1A1818C394A6E3 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
14:41:48.0930 0x119c  kbdhid - ok
14:41:48.0945 0x119c  [ 6B3A0C7902811E6372643447E41F7048, 30667B56A306CFD5D15BC46F8E7D9E167612E71B6C8F554406E706A6330F5B94 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
14:41:48.0963 0x119c  kdnic - ok
14:41:48.0971 0x119c  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] KeyIso          C:\WINDOWS\system32\lsass.exe
14:41:48.0989 0x119c  KeyIso - ok
14:41:49.0007 0x119c  [ 982C795DE20CED7AEDD2E7899B5D9BC1, 9F4E7536DB253CD83AA2AB89E9F3311714CD70F13AFD16F9B4D4CD86A70FC164 ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
14:41:49.0020 0x119c  KSecDD - ok
14:41:49.0036 0x119c  [ 7D8B9214692C4D0F1646215D9984E19A, DC73503A8CA67F4E167DEA69AADDEA5F2D756E1C1F4FF42B6ECEA7E637BB80AB ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
14:41:49.0050 0x119c  KSecPkg - ok
14:41:49.0066 0x119c  [ E9BB0023D730701BB5D9839B44F5E6B5, 19D4BAC09424D331922472CFD2D0E32BEFA9188A6AF194C8D1F93FD77CE36691 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
14:41:49.0094 0x119c  ksthunk - ok
14:41:49.0131 0x119c  [ 71DE1AD9B23661EEC4F2A6EAA5A7D33D, 3219AEF3D6AE5933AE669FD2ED9ED95A8780612E39F31DB3DB9ED6B6244C5F7B ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
14:41:49.0168 0x119c  KtmRm - ok
14:41:49.0223 0x119c  [ 8BBB2B4429AF340481520C20C17FC5B6, 9E32815349195FC4B1BE213600FD407F2EAEEC8368289EB3E6B769125A739C08 ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
14:41:49.0286 0x119c  LanmanServer - ok
14:41:49.0323 0x119c  [ 1F5D48B1DA1B812BD2411CA44D75DD32, D1BDB8142CB13E8C6DD6F42E07C9D19BBBF6410D5122A04C01B34B95B442DD95 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
14:41:49.0382 0x119c  LanmanWorkstation - ok
14:41:49.0413 0x119c  [ 02C54C5C7EBE371EC0C59795ED22213F, 712AFE0EDF40436124F3FD55ED9B5A3A33A8761A58F4D482BB65229741B1C270 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
14:41:49.0454 0x119c  lfsvc - ok
14:41:49.0472 0x119c  [ 01BF128CC327A2E53898F732AF52B3DB, D62ACDA69D9942F9CEF400874DBB6EAF9811D9657CBFEF89174F88D76BB8D8EA ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
14:41:49.0497 0x119c  LicenseManager - ok
14:41:49.0533 0x119c  [ EC34EED89C34B27C292166B725AC7A7B, 58F1BA0CB7743314AC012A82F8CE4072CBDD05D9570C52BC18DC551882F5B1BA ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
14:41:49.0561 0x119c  lltdio - ok
14:41:49.0589 0x119c  [ 2C23283A0815B048C06D8C0ED76AAD95, 4335546939C1A98CFE9A4403CC82D79CC713439E4DFD1F4760FDD867305151E0 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
14:41:49.0630 0x119c  lltdsvc - ok
14:41:49.0670 0x119c  [ 4ACC60B4CBC911F3F34A1D66213BBBF5, C09A87ACAE0D41FD425BAF076FFE9B601DB89BB66199E5BD72FC59C6A8E449DB ] LMDriver        C:\WINDOWS\System32\drivers\LMDriver.sys
14:41:49.0676 0x119c  LMDriver - ok
14:41:49.0706 0x119c  [ CB6365E995F4DB856866500EDD8F61C1, 717ED387F245CAC68217B0F393D7B8AB3805721AB2C4D2D43430FE6E740F0856 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
14:41:49.0729 0x119c  lmhosts - ok
14:41:49.0779 0x119c  [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
14:41:49.0794 0x119c  LMS - ok
14:41:49.0827 0x119c  [ 961F28D879D345BFA50AF51285C90F2E, F9931A436651F695B746BC0C07E833D9C9F64126746DF976E691E6CAE26DAC9B ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
14:41:49.0844 0x119c  LSI_SAS - ok
14:41:49.0867 0x119c  [ 6BFB8D1B3407518BE06B6F81F92FA0F5, DE0818DCC0D8D1D30A29AB167C65461A78100ABE2368637CEB9D0ED2B4E88D8E ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
14:41:49.0900 0x119c  LSI_SAS2i - ok
14:41:49.0915 0x119c  [ BE0E47988D78F731DEC2C0CB03E765CB, CA0015E87A3962611DBF714253FA618A6568346BAE640884432C1D44DE4C8684 ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
14:41:49.0928 0x119c  LSI_SAS3i - ok
14:41:49.0941 0x119c  [ F99BF02BE9219986817BF094981EEB18, 4303C772366065885C5D937B2E9AC0BF80C84BFB2737716055AD57BF6AADD673 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
14:41:49.0954 0x119c  LSI_SSS - ok
14:41:50.0015 0x119c  [ FFAA37FBBDD161E8C200C83B40F7872E, 0637B3119FC220CB8E23EE6694A9F1F25CF8D61008B14F6E30FDC17DCF9E077E ] LSM             C:\WINDOWS\System32\lsm.dll
14:41:50.0071 0x119c  LSM - ok
14:41:50.0084 0x119c  [ 2FCF837196082864F66CFD9CAB256275, 8BE01C3BCBC1E6E5D1FD7F49E936482E61ACB805F397AB81B8D39C2F0F1083BD ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
14:41:50.0105 0x0cf8  Object required for P2P: [ 9A2A2F3C69B9A30B6E78536F6D258BAD ] iai2c
14:41:50.0114 0x119c  luafv - ok
14:41:50.0148 0x119c  [ 9BC40C5A140B5F380042E391CC95993F, 4FFE8A6A473530CE171AC47C7E8D51B8C29BDC209E7129F66B06F8D40F07DAED ] MapsBroker      C:\WINDOWS\System32\moshost.dll
14:41:50.0180 0x119c  MapsBroker - ok
14:41:50.0216 0x119c  [ 2ED29B635F35E31A1C0D3DDB7DD2AD03, F70CC20B98C2DBCD13B0D509D92B3BC3828D1B88F3ACD60C860E163064844181 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
14:41:50.0247 0x119c  megasas - ok
14:41:50.0284 0x119c  [ 22E3CB85870879CBAE13C5095A8B12E3, 5FA5A8EFBA117089CFDBE09743A16BC3A7CC2042C96ABA1F57901747493106BF ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
14:41:50.0324 0x119c  megasr - ok
14:41:50.0356 0x119c  [ E0EF6C1399A9B1AAA0B28590411BED04, 10C193D1ED434A6DC2AD8C450012B9AF1C848A0A0B3B775F13495648FB77E009 ] MEIx64          C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
14:41:50.0382 0x119c  MEIx64 - ok
14:41:50.0430 0x119c  [ F2C23E25636BCA3543E6AD7858E861B7, 0CAB0A037471B4858CE9477E49BF50A5E3E6685E05F8A4BD2D9238551D5073A6 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
14:41:50.0461 0x119c  MessagingService - ok
14:41:50.0625 0x119c  [ 6EA13EA739CCB3BFDC7258926E986885, 5ED857E52D65A2E5680F8C00A2CCA995873674CE0554488F16E96102139807AE ] mfeaack         C:\WINDOWS\system32\drivers\mfeaack.sys
14:41:50.0656 0x119c  mfeaack - ok
14:41:50.0674 0x119c  [ 971F243A588493D093982EFA089001DA, 72259E50FEE36768748C5390D6723E1A12D3AA76B3D1769A9D804A6905867014 ] mfeavfk         C:\WINDOWS\system32\drivers\mfeavfk.sys
14:41:50.0688 0x119c  mfeavfk - ok
14:41:50.0714 0x119c  [ 062649F008287DB3D257DC5902E87FF6, 7C5D9A80DBAF011DE0F5B630EAD5DE22336BE20BC8663C4551191D102587EB99 ] mfeelamk        C:\WINDOWS\system32\drivers\mfeelamk.sys
14:41:50.0729 0x119c  mfeelamk - ok
14:41:50.0813 0x119c  [ 540C973370E07028C7DEDB79CD2B2463, EFD181B8128FF9769ACDDA6CB23EF07D5FAFBA9DD17C4C56EBEBC63A3AE5ABA7 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
14:41:50.0877 0x119c  mfefire - ok
14:41:50.0903 0x119c  [ 9A223D31E66B42FED95F28F5E4A71084, 658AF2F50F78269B4F961AC413E6D266131E991F1D9FDA44AF053AA9608655C9 ] mfefirek        C:\WINDOWS\system32\drivers\mfefirek.sys
14:41:50.0922 0x119c  mfefirek - ok
14:41:51.0019 0x119c  [ DA6A9E929E5C2B6CA1D8ABD16C2153F5, A98F3A96628CA6A827C6AD2D795EAA374DE19EC222AFD0B6E5A376958C7A9123 ] mfehidk         C:\WINDOWS\system32\drivers\mfehidk.sys
14:41:51.0052 0x119c  mfehidk - ok
14:41:51.0091 0x119c  [ 0D5986FD9B12D2FA6DA76EEEB186C78A, 396F1CAC55416C8C8F099C0B8A4B315510CC900EB21B9993FB01202F7385933D ] mfemms          C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
14:41:51.0130 0x119c  mfemms - ok
14:41:51.0170 0x119c  [ BD33A511702A03DEF58CA31584E1EFEB, D47015DA57D1968FAC71A73A1D08601579F294552F351B6E556B9307D8FEEE0B ] mfevtp          C:\Windows\system32\mfevtps.exe
14:41:51.0182 0x119c  mfevtp - ok
14:41:51.0213 0x119c  [ 4FF88ABD53310B9E8F4DE732AC3AEFB0, 0498879C56FE94C1DAB0FBB050969C1A092D4CA4A5FC155E7E22BCD0F7CC8593 ] mfewfpk         C:\WINDOWS\system32\drivers\mfewfpk.sys
14:41:51.0235 0x119c  mfewfpk - ok
14:41:51.0283 0x119c  [ D41920FBFFF2BBCBBC69A5B383AD022E, E66218A8303422EA10C19BA12343740B9A1A70B11B39E185E805B4F74CD2B75E ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
14:41:51.0329 0x119c  mlx4_bus - ok
14:41:51.0368 0x119c  [ 64BD0C87064EA20C2D3DC4199F9C239C, ED69706277A58ED2C5F2B1B4E9A4A9C7C20173D46EB57FB31D8B63340BA23193 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
14:41:51.0381 0x119c  MMCSS - ok
14:41:51.0393 0x119c  [ 8D4B46FA84A3A3702EDADD37FAC6EDBA, E3B9E12BD324FE637C365FDC5E490C41889047004D4FC8F7D78339484F2F717B ] Modem           C:\WINDOWS\system32\drivers\modem.sys
14:41:51.0410 0x119c  Modem - ok
14:41:51.0419 0x119c  [ 78FEC1BDB168370F131BFBFEA0A04E9D, E07B1BC429C2CFBD6162F89A6502C67A4BAD904ADC05D3505D87A0B2BCE1061B ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
14:41:51.0440 0x119c  monitor - ok
14:41:51.0472 0x119c  [ D1CC0833CFBC4222A95CAA5D0C8C78FF, 54F04374C6D3EFF5C1B794C069870458F10757E5773AEE911957089EAF51EC8D ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
14:41:51.0496 0x119c  mouclass - ok
14:41:51.0504 0x119c  [ C2E05EC6B80BCF5AE362DA873E1BCE64, 4ABE5CA2005A54E92259EDB52205A5C59BDB83026FC0CD7CBB1E3A003C2B535B ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
14:41:51.0534 0x119c  mouhid - ok
14:41:51.0541 0x119c  [ D5B7668A8F6C67C51FA5C6C513396D6C, 35985AD89344A8464BD78B8DA6A772E4E60A2EB93072AC23673A86EFD0B2270A ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
14:41:51.0556 0x119c  mountmgr - ok
14:41:51.0561 0x119c  [ 5FBCB85D127BE21E3A9DAF11A13C00EA, D00AB99CC813E26B0BD2D39161D4138AB89A06B3E3A28712F2D5BCA60905BEC4 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
14:41:51.0580 0x119c  mpsdrv - ok
14:41:51.0642 0x119c  [ 553F19DC6F3F73545CB17FCD7A8AE37B, 49ABB625EB9C2981254EEA1FE7858DF630BA2D65653CC91CD4FEEACF69C5392F ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
14:41:51.0691 0x119c  MpsSvc - ok
14:41:51.0709 0x119c  [ BF6CA7EA5ECD6CF72D3D76652A9B8280, 8EC031D0D8E75CB583B129CBA518701097697498621307108388FA05FBF604BB ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
14:41:51.0732 0x119c  MRxDAV - ok
14:41:51.0744 0x119c  [ 0B3B0C1D86050355676640488FA897D3, DBED9D6F7AAFB11F4C00C1F69DB7A887A3058E5FA66615A1640242439822B60C ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:41:51.0763 0x119c  mrxsmb - ok
14:41:51.0804 0x119c  [ 1A490555FD330CA2764D89191177C867, 1004AE2F80BEA9A6DBA3E6B5D2DDFA44FBA253F7137D60B000B094699DE1CB12 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
14:41:51.0857 0x119c  mrxsmb10 - ok
14:41:51.0921 0x119c  [ 0F47A6C09F0A7FB5513D322A2B9BE4EC, 00A17CB55D232E11F3D24D0B43FE4FA9E55F7EF5E5607B26ED84C13108AAC4FA ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
14:41:51.0957 0x119c  mrxsmb20 - ok
14:41:51.0979 0x119c  [ A4411C522D41707D5BCA817A5BB9E30B, EF7505BE475ECAB2B5E66A7419EDAF42A7E7A65BAD3BBE346A8CEE5DD69782CC ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
14:41:52.0006 0x119c  MsBridge - ok
14:41:52.0042 0x119c  [ 807A6636828E5F43C10A01474B8907EE, F275645F4F0D0A796C33C03EA7FA563A0B890AB3A93E5F99C5EA166F91D249B1 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
14:41:52.0075 0x119c  MSDTC - ok
14:41:52.0094 0x119c  [ D123343DDB02E372B02BF2C4293F835F, 8E02D9F7E5DA717B64538444B3FE1C55AA4B0F26F51DA20947E971D27EA09D12 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
14:41:52.0117 0x119c  Msfs - ok
14:41:52.0152 0x119c  [ B3358F380BA3F29F56BE0F7734C24D5F, 229D9E72C429AC51BF6E7C8306218620CB1AA50FE39BA6C11ED0F643E7AF90E5 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
14:41:52.0183 0x119c  msgpiowin32 - ok
14:41:52.0191 0x119c  [ B2044D5D125F249680508EC0B2AAEFAC, 9631FF42DA5A7CEE1F2607AA8972EF0A67616F0EEEBC95F97B1C8F5A577ED5C4 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
14:41:52.0218 0x119c  mshidkmdf - ok
14:41:52.0234 0x119c  [ 36ABE7FC80BED4FE44754AE5CFB51432, FB89DF3A50C52B69D4E831A370157D1901810093A0D7D7120A120FC5C6E14BF5 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
14:41:52.0257 0x119c  mshidumdf - ok
14:41:52.0264 0x119c  [ 59307FEAFC9E72EEEC56B7FD7D294F4C, 56576635870FC68980977FFA0E7F8E8D69A7981DECF5B52D0B2A82E3BA6685EA ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
14:41:52.0274 0x119c  msisadrv - ok
14:41:52.0300 0x119c  [ 236A38F5CB0A23BF0ACCD70ED0BD7F70, 8106B528458E6C8E4437D9064D58F10FF195E67CD308AEBBD5F860AD2D59DCC4 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
14:41:52.0325 0x119c  MSiSCSI - ok
14:41:52.0328 0x119c  msiserver - ok
14:41:52.0340 0x119c  [ E9457EDFEBC774199F907395C6D09CA2, C3655CE83F4AD1258382722E9A99C33FDD3AA40B62CFEB8DFDD141E254E6DCE2 ] MSKSSRV         C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
14:41:52.0363 0x119c  MSKSSRV - ok
14:41:52.0396 0x119c  [ C85D79735641D27C5821C35ECDDC2334, C1BAFD98122B04665870171C143EC119181351D10777A83680A63BF305703FF3 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
14:41:52.0438 0x119c  MsLldp - ok
14:41:52.0455 0x119c  [ EF75184B64356850D0F04D049C253526, 325476F53372BD70201347F044C8EFEC0DB939E1926454B6DCC0CF7864969650 ] MSPCLOCK        C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
14:41:52.0472 0x119c  MSPCLOCK - ok
14:41:52.0485 0x119c  [ 543933D166C618E7588EA77707EC1683, 84A65D277E28FDD7CE2345188891093AC88B577E4C528AD39AB629E341199688 ] MSPQM           C:\WINDOWS\system32\DRIVERS\MSPQM.sys
14:41:52.0501 0x119c  MSPQM - ok
14:41:52.0529 0x119c  [ 182711E9DDF70121A20EBB61B2DFB9E8, 70606503F6280EA3175B9AEC8370A8F461575755DA86EF6E9C9D04EAD61481FA ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
14:41:52.0549 0x119c  MsRPC - ok
14:41:52.0562 0x119c  [ E887FFDD6734C496407E9219225CB6FF, 0EC9A79224BCE5D0A782E62CC38E3494E8FB65DFC07C66D25C5A1A351121C27D ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
14:41:52.0574 0x119c  mssmbios - ok
14:41:52.0585 0x119c  [ 83A2AB75951000D681FABDB80C07AEFC, 3B2F582F097E3F934C4587B27CB05525350F36924B74CA6BCD364878FA8EC273 ] MSTEE           C:\WINDOWS\system32\DRIVERS\MSTEE.sys
14:41:52.0606 0x119c  MSTEE - ok
14:41:52.0614 0x119c  [ 4FA0483896FC16583851EFB733FCB083, BB59243ABE32FBE92EC1B04D24239BE2DF7C2354A407C2EFF97623F07DCBDA35 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
14:41:52.0647 0x119c  MTConfig - ok
14:41:52.0660 0x119c  [ 60F88248608315E13391C2F1C3B4473F, 99E8B74118A01FC281A1C6B323EFD1A8EA1997B81A013442205066F55327D555 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
14:41:52.0672 0x119c  Mup - ok
14:41:52.0682 0x119c  [ 218705233D02776AE4D19CC37D985C1B, 3D92925867B6B8FFAF78E4080139DCB3D45E1E6E1D0AFB6A4FE248B002BD8471 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
14:41:52.0695 0x119c  mvumis - ok
14:41:52.0734 0x119c  [ AA4CD20708B7E0412A5316D7E2875103, 4E60A0865B7656735F3AB34AF5FE48304138F47DE961D4D16661617D711DEBC0 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
14:41:52.0787 0x119c  NativeWifiP - ok
14:41:52.0805 0x0cf8  Object send P2P result: true
14:41:52.0805 0x0cf8  Object required for P2P: [ 59A20F5AD9F4AE54098154359519408E ] iaLPSS2i_I2C
14:41:52.0859 0x119c  [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
14:41:52.0903 0x119c  NAUpdate - ok
14:41:52.0952 0x119c  [ A340A4B27CC7DEDDF953B7E2C9699747, 4C5AB23BD0C69B17E9BD29CAFEDC100A6EFC78BAB645B007FCAE4318C459D345 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
14:41:52.0971 0x119c  NcaSvc - ok
14:41:53.0090 0x119c  [ 24146738C422814EEB2A98FF1FC5C6E1, 3C70C6768681CE63DED339822EFB36194037B987D92456B9E955061A3A3C63BC ] NcbService      C:\WINDOWS\System32\ncbservice.dll
14:41:53.0144 0x119c  NcbService - ok
14:41:53.0162 0x119c  [ 476466DC3AB2327E2DBFAEC11798E2EE, 9ACD74720664CF3F239601DF0BE80AC443AF0FBF666CBB8509169364FB22B95D ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
14:41:53.0200 0x119c  NcdAutoSetup - ok
14:41:53.0233 0x119c  [ B57CE307DA101C739885B7CC0678077F, F7F45DB6D306060F0FE0E59F39C3B95F6A9B6173930F22C5C41B2003895D6642 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
14:41:53.0261 0x119c  ndfltr - ok
14:41:53.0315 0x119c  [ E582DA849A58524E645545FB68B6625D, B74E2CF078F6C575EFC4A2E4293D03FE6BA933307D656E0E57FFA17EF324948D ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
14:41:53.0352 0x119c  NDIS - ok
14:41:53.0363 0x119c  [ 202260E7CDD731A32AF62ABD1ABEE008, 0E019FAE09B2659CC3267756DB962CCD69172BA67E3288B491F7B455287A5392 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
14:41:53.0388 0x119c  NdisCap - ok
14:41:53.0402 0x119c  [ A1D473D0CF10561F29B58EA7C5412A92, 3DBFC1D769E03E30C87FF4F30A9B523A69A7E0CD4EB87F8A9ECE190FEB84C569 ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
14:41:53.0430 0x119c  NdisImPlatform - ok
14:41:53.0440 0x119c  [ 1A0AE283B8DE6BB76412A0F8213D45AC, 91AFFDC7A9277EB59CD54021049BEA715078F90470B8A12F3E9F1386DF068D2D ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:41:53.0455 0x119c  NdisTapi - ok
14:41:53.0506 0x119c  [ A74EE2D2C0BFF5EC3A6185791868C4CA, A346320DEBEAE890575B4C6594FB3A3A9890A0E86881ADD8376E442282C88D38 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
14:41:53.0534 0x119c  Ndisuio - ok
14:41:53.0542 0x119c  [ 32A9BD1342640D48AD85C8B3E812B984, B702B05A0180472139B35B105DD3B6B6F75AEDC9DD1EE342FB576259076455AE ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
14:41:53.0562 0x119c  NdisVirtualBus - ok
14:41:53.0581 0x119c  [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
14:41:53.0603 0x119c  NdisWan - ok
14:41:53.0614 0x119c  [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:41:53.0633 0x119c  ndiswanlegacy - ok
14:41:53.0645 0x119c  [ 50AEF8EF0064A91ABB08D858D039C9DE, 16F1CBE1EC3778D157CC054261068C8D7F8A72D85853CB70178F8DF81D238C8F ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
14:41:53.0675 0x119c  ndproxy - ok
14:41:53.0705 0x119c  [ D358DF634F52247CB43F0781218F4D6E, D375E9E681551467FC5F7AB2AC053C9F22AAC541C0BCBA57090211F45009342C ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
14:41:53.0719 0x119c  Ndu - ok
14:41:53.0755 0x119c  [ 026618ECF6C4BEBDCB7885D42EC0DBE4, 8E7E13361DCF8748FA3AD518B3DE0A3DCE932316EE32E5529E75785BC5395AD1 ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
14:41:53.0767 0x119c  NetBIOS - ok
14:41:53.0776 0x119c  [ F51C02D992A8D6BC5EC4D990F227D4C7, DBBDA422BFA82219403689637BE8D6B0D0A893895143E807FA5A007C166454CB ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
14:41:53.0809 0x119c  NetBT - ok
14:41:53.0819 0x119c  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] Netlogon        C:\WINDOWS\system32\lsass.exe
14:41:53.0830 0x119c  Netlogon - ok
14:41:53.0865 0x119c  [ 7FD4C3D32DAE890608F44074A3437CD8, 5B7D9E9AEE26896B818F3C5DBE4C96A33D43CE2CF7716B95AAB7203611C03BFE ] Netman          C:\WINDOWS\System32\netman.dll
14:41:53.0898 0x119c  Netman - ok
14:41:53.0955 0x119c  [ A059F75402710535A90A8D043674A514, E98536DF74A2B75FDBA6B866DC1909544292DFE5E14F984941470FBA6E8D810C ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
14:41:53.0987 0x119c  netprofm - ok
14:41:54.0023 0x119c  [ C5DEEC4F7ED591D1E322899ADC4EE45F, CA3BE40FA1216F77C6D5B9FD518378DB9561163BFDC90C8CB1C2C2EA4112B263 ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
14:41:54.0070 0x119c  NetSetupSvc - ok
14:41:54.0111 0x119c  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:41:54.0141 0x119c  NetTcpPortSharing - ok
14:41:54.0176 0x119c  [ 2BB62723C835F75F0C7C9E6A736881FB, CBA690F5205BE8AE1E8ED8A47BC1594E05391DAC30AAEE0A055366F24602346C ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
14:41:54.0219 0x119c  netvsc - ok
14:41:54.0265 0x119c  [ 91B32D7036700BEED5343E1F6A7122CC, 8123CA398A79F0E69126F962AA29C2464FAB50182E961CB6A6ADB6CEA09A6732 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
14:41:54.0339 0x119c  NgcCtnrSvc - ok
14:41:54.0398 0x119c  [ C64B693DF26EB7BFF25F9BAD8B54D571, 12363E81B329D048E0148739AA542958F7CAF6FF3404BB001AF51850EF84338D ] NgcSvc          C:\WINDOWS\system32\ngcsvc.dll
14:41:54.0466 0x119c  NgcSvc - ok
14:41:54.0523 0x119c  [ 1B8F07B59F7DAE02264FB8A16088C467, 1795DA9F72C34A9F47D9AAF5E95D40C3296948EB89D9600679AB4660671A5C65 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
14:41:54.0584 0x119c  NlaSvc - ok
14:41:54.0592 0x119c  [ 465DC580170CD844206D7E3EF1DBF2A1, 5A14001029BE154C708CCA34449B280905DB79978FC7F0BE0CF20B20E47752CF ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
14:41:54.0606 0x119c  Npfs - ok
14:41:54.0631 0x119c  [ 29395C214D2CD4C81F73166AB988A797, 3631EB2EA17E455ECD151C0BC9A3DF6EC87C75B15DC9B607CFB68D7C463E04B7 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
14:41:54.0644 0x119c  npsvctrig - ok
14:41:54.0656 0x119c  [ AF8B7848E102A83AAECCD24B181CEBE5, B2AAE3567EE3A7975CDFCB3FE41D33C74D4486BFF35FF56E0516A01C744BA52B ] nsi             C:\WINDOWS\system32\nsisvc.dll
14:41:54.0690 0x119c  nsi - ok
14:41:54.0703 0x119c  [ 2871225495F832A8C8A7DD1A17EDB3DC, 2F6664C7F5FB2341B2AAF3C5A258FA0D7AEEE447562D7F39FD5A4EE905C18C6D ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
14:41:54.0748 0x119c  nsiproxy - ok
14:41:54.0839 0x119c  [ 19BD8A88AAC580592668B070AC0727D9, 60DB84895C40E6412BEB2D0E4D7F05891446B9DE992D70579CC90BA3FB27FC01 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
14:41:54.0949 0x119c  NTFS - ok
14:41:54.0986 0x119c  [ 6DBD703320484C37CEA9E4E2D266A8CE, 85D6F73C0E3FDE16829C9BC0D13DD89E64183EAE02F84607F6B8440CB7F366E6 ] Null            C:\WINDOWS\system32\drivers\Null.sys
14:41:55.0020 0x119c  Null - ok
14:41:55.0045 0x119c  [ 604D27CC38CC23493F218D0BB834B3FF, EF5E5759CCF16DD97271C82DAF47FB2086EBCA5DE7D05177B70CA1197B95F41E ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
14:41:55.0062 0x119c  nvraid - ok
14:41:55.0073 0x119c  [ 8B50D897657AB4A15FD9E251BBF7D107, 36036130DD46D9BF105AC7176E219F3BE7D1168A660A0F8DFF76F61FBFA4B417 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
14:41:55.0088 0x119c  nvstor - ok
14:41:55.0100 0x119c  [ 31F990B2B6B91E9D7A667405CE12FCB1, 907E095D1E83CDAFF34BE789FC41CDD7BB4DEE23261E1D03C1CF0D4D030534AC ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
14:41:55.0113 0x119c  nv_agp - ok
14:41:55.0162 0x119c  [ 7F3A0D052B8E00E730316210B1DD092F, 14BD026EA759F6C81ED6B4DBB04E0584B7F6456725503FC73CD4347B7743005F ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
14:41:55.0218 0x119c  OneSyncSvc - ok
14:41:55.0312 0x119c  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:41:55.0326 0x119c  ose - ok

METZI01 · 07.05.2016, 14:31

Code:

ATTFilter

14:41:55.0351 0x0cf8  Object send P2P result: true
14:41:55.0364 0x119c  [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
14:41:55.0392 0x119c  p2pimsvc - ok
14:41:55.0438 0x119c  [ 4A5634915AF62C983E08425905D0C04C, 09BC3F7AD9F79C5FF59520933D06FE155AC21CD0ABAFE66B81C9F87D83A2339F ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
14:41:55.0482 0x119c  p2psvc - ok
14:41:55.0524 0x119c  [ 7D0FC96264C0F8F2C1321E33E8EB646C, 82A06437B9B096BCCF5CE31BDF3539696E2E41DFA9870C358566EEE2F7D3B447 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
14:41:55.0538 0x119c  Parport - ok
14:41:55.0553 0x119c  [ 24AC0FD10325FBC2303B29A5F237AEB0, D94B26A36EBE4EFE8EA270FA6600811206830480BE953809F74FAB80628DF879 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
14:41:55.0567 0x119c  partmgr - ok
14:41:55.0588 0x119c  [ 0ECA2ADD5FBCE73183A68935C71B40B7, 08CC5F2F10D1DD1A1396CC29196314003491D3AF3DE59CADB281F252577F1860 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
14:41:55.0612 0x119c  PcaSvc - ok
14:41:55.0621 0x119c  [ 1D4E995955BDAE781C46CB97AE1CFB58, FF7475F19782CA253AA839DDB86E5AC20C5785D5CC1DD57D9FECBE4F5A5C0BFB ] pci             C:\WINDOWS\system32\drivers\pci.sys
14:41:55.0639 0x119c  pci - ok
14:41:55.0654 0x119c  [ 2B4D98DF0CA57FB9536DBC80D2449D1F, AB34FA8585A20854369C0FAEB18BF5C7734D7E3C791F644B0576E40D609FCD09 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
14:41:55.0665 0x119c  pciide - ok
14:41:55.0678 0x119c  [ F4D5793BF2E58AF15C6CF2FEEF9E73EB, 9B5A40AF8838063F8F0A2B1480B39A2711AAE78BD972CDA60CCA0EB2BA211A87 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
14:41:55.0691 0x119c  pcmcia - ok
14:41:55.0706 0x119c  [ 22A53744CEEADFFFD33BA010FAD95229, 30B775EC9795105B8BF785BD63115C160955E7EFF74B995D3EC288138D1825A3 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
14:41:55.0717 0x119c  pcw - ok
14:41:55.0723 0x119c  [ 48F3A3222CF340FE31535CB6D49C6D6F, 5F8904871219FA6C1BD74747583855B0FBCE42F340A3BE10270D8D3F02766E9D ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
14:41:55.0735 0x119c  pdc - ok
14:41:55.0778 0x119c  [ E2F8376F9731D12A009C522036C6073A, 5B8B68D3C013AAA8ED368C97042984C35E8D023542DBA404E7A03E89F2357E66 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
14:41:55.0815 0x119c  PEAUTH - ok
14:41:55.0824 0x119c  [ 1398A85E59698067CBBE1D66A9C13ADF, E3609F183068BFAED756B2F9237181D60A6F6D78691248B8BF5B0AEB6A367E3D ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
14:41:55.0835 0x119c  percsas2i - ok
14:41:55.0852 0x119c  [ 35F7C7AD709D909D618D9EDF987FC3ED, EE713E33688E74C5A2546CC58EBD8EA8F8116F25E42DCF8DA21DCBC7C7590E0E ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
14:41:55.0864 0x119c  percsas3i - ok
14:41:55.0933 0x119c  [ 0DAF7B7D85F7AF38E29161460899C63F, F2609F2BD02C714857F5D5E6EF580643429C54E175AA72D38467F8F3A4E7F59F ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
14:41:55.0966 0x119c  PerfHost - ok
14:41:56.0075 0x119c  [ 57606281E23B0F53347527691E947B2B, 7030182E706CEBE6BD52BDC71CA8F2230AD445AE6554188E76F09A5E2612BD2E ] PhoneSvc        C:\WINDOWS\System32\PhoneService.dll
14:41:56.0138 0x119c  PhoneSvc - ok
14:41:56.0166 0x119c  [ 04F7878E7017105AB782353231561749, FB2811D98216720D4FDF0AC0EDF16C6CD33D7224B4CAFA752B4D2A839E6DD88A ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
14:41:56.0191 0x119c  PimIndexMaintenanceSvc - ok
14:41:56.0305 0x119c  [ A546F72EFFE5CBBC98003A0CA19DA0F8, 89AE396676A37D851F46427E421E8E8ED5B4BADC33023F1E215CC352A4110F44 ] pla             C:\WINDOWS\system32\pla.dll
14:41:56.0390 0x119c  pla - ok
14:41:56.0419 0x119c  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
14:41:56.0455 0x119c  PlugPlay - ok
14:41:56.0466 0x119c  [ 6BF7093B27EA90FD9222845D19C1BE5F, CF8A6764BB6B369258F21FD303E4CAE08632195620A0BD66B62F62F5D7B762B8 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
14:41:56.0491 0x119c  PNRPAutoReg - ok
14:41:56.0515 0x119c  [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
14:41:56.0540 0x119c  PNRPsvc - ok
14:41:56.0580 0x119c  [ 5A91C28F99043215121499257468C4BD, 816D2AEBA29B8A050747E01CE11EB12A05C1CDDF91835C44BBB6A7B9D348B15A ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
14:41:56.0618 0x119c  PolicyAgent - ok
14:41:56.0638 0x119c  [ AE3B1056FC1795F18D990C4908A6ECBF, 1C41F7714EBF54DF358D9B19D6AFE7281D3EABE20038B568A12031B76E1D50D9 ] Power           C:\WINDOWS\system32\umpo.dll
14:41:56.0661 0x119c  Power - ok
14:41:56.0692 0x119c  [ 5BA6B9AD03B81546BA64E488C4EF9D17, C43442577685FA1A7C32094B2F14FC92BA6B511FD9FDBA6FD82473A1B165FC61 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
14:41:56.0709 0x119c  PptpMiniport - ok
14:41:56.0877 0x119c  [ 959F94AD1255BC749884EDDD14EC29C4, 2CD6DA9778EA36FA0B4080F6DB1C634712238E014E47546403CD3CDB35A1DCA8 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
14:41:57.0054 0x119c  PrintNotify - ok
14:41:57.0089 0x119c  [ 21AECFF3EB5748CBE12538A2500EFDE5, A1679F21363E99E3698B9C6F7E7E3BB2877D47089BC381AF0C51B1DD8B24325B ] Processor       C:\WINDOWS\System32\drivers\processr.sys
14:41:57.0120 0x119c  Processor - ok
14:41:57.0171 0x119c  [ 7E0078F1EFEB6F8F47CF85C1D73C7EBC, 831BC3CE72F29AD259DEE7121D6F785CE0A8462CFB69DD7FB1F3BDAF16CDBF3E ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
14:41:57.0217 0x119c  ProfSvc - ok
14:41:57.0251 0x119c  [ 596FB6C5A72F34B7566930985E543806, 870B43783DB4CF845FA72BC5E40CE76BE6DFC66FE9E9B4B0A52D6B7FE7EA65FC ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
14:41:57.0265 0x119c  Psched - ok
14:41:57.0309 0x119c  [ E84F66BA185934C166F8DF0FA8F88455, 2E0380E98DA29B3F43FB3FE0E1ECA52B3C9AEF54CE982D5514F70FAE81758449 ] QWAVE           C:\WINDOWS\system32\qwave.dll
14:41:57.0331 0x119c  QWAVE - ok
14:41:57.0371 0x119c  [ CFBA9C976CBF6796E5DC39EF59984021, A1C956AD828FC70ED92D702516E0F88A4BDAF8C93C571D7CA20F1695FD8E70C2 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
14:41:57.0384 0x119c  QWAVEdrv - ok
14:41:57.0414 0x119c  [ 6A52182919E25FB56D253D389F92CE98, AE6497D5CF324CB813248ADECB0F53E5CB3D6C326774E2257319E4CE7782C591 ] RadioShim       C:\WINDOWS\System32\drivers\RadioShim.sys
14:41:57.0420 0x119c  RadioShim - ok
14:41:57.0437 0x119c  [ 7B2AD8C55217B514C14281AB97B4E21D, A1E295897B864B9C0177FF1C502EB060084A1783C0E7E53636291F901C2E2AA8 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:41:57.0456 0x119c  RasAcd - ok
14:41:57.0489 0x119c  [ E15A9CE1E2E7D1C8DF97A4FC1FFE6289, 44B53418D6BC51ACC567CF6917A0981889B44AE420489C9C03F5A30418B37267 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
14:41:57.0602 0x119c  RasAgileVpn - ok
14:41:57.0638 0x119c  [ D60BA4C76D194472D6602FF3D2D51ADE, 01272663897685C75FFBC3F1C0CFDB8D0E1A58182049E0B607D634536A8F6400 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
14:41:57.0668 0x119c  RasAuto - ok
14:41:57.0707 0x119c  [ E3C82823B22463BC38AA4F8ADA852624, FF601B117F4003E2CC65B6143C2A270331EB257EE82B3BC020247D1AB1CD625F ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
14:41:57.0743 0x119c  Rasl2tp - ok
14:41:57.0801 0x119c  [ 3655D86C5E2982B131FC0935DE24F98F, 0386B31FECDDED77450609A807097B2307361CB59B236DEC41037BDC95897463 ] RasMan          C:\WINDOWS\System32\rasmans.dll
14:41:57.0862 0x119c  RasMan - ok
14:41:57.0885 0x119c  [ 3369023EB5790A75BA7DABA14B75D922, 36B63D5B74FDC932AAF1A876514024602D2F3EAF2CA33D1247CBA1E52FDB0418 ] RasPppoe        C:\WINDOWS\System32\drivers\raspppoe.sys
14:41:57.0931 0x119c  RasPppoe - ok
14:41:57.0959 0x119c  [ 1E32A8CD65C4AD0A827CFEB13034DA29, 5D9A92E13020D994CCD39F701BACAFE2177A40A9CC89649441B91E3F3DECD911 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
14:41:58.0005 0x119c  RasSstp - ok
14:41:58.0029 0x119c  [ 2B648363E4C5E34B469C58596F377DD9, 30F82770468BBA562CEA0E9E39B24ACEFBE022343D0180C82E2ACE8957B73E44 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:41:58.0056 0x119c  rdbss - ok
14:41:58.0071 0x119c  [ D0221C13960E274CC539D72D5A842ED0, A5A961506B9D7429D97D0635FD69E74736C0E8405487E1D22BB5CD978A60044C ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
14:41:58.0100 0x119c  rdpbus - ok
14:41:58.0116 0x119c  [ 1DC2CC74B51E4DC4CD5A20C1021E4010, 46B7D17EE27439F2191504D1C6F6C70B2540BD4F2261DBB1F4BE783BEA99B04C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
14:41:58.0133 0x119c  RDPDR - ok
14:41:58.0158 0x119c  [ 177DF954D0DEC0465A380C75F6E7F65F, 6B30C78223029BD5DBA586BF961968F85762209BA55CD031460A215B20F93AB2 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
14:41:58.0170 0x119c  RdpVideoMiniport - ok
14:41:58.0192 0x119c  [ 5D1680871054D2B0B8A971BC8AB3B837, 9CAB0B2E3857829D34A82A78B120D07E292D4D5060168D964295EB23339B7DE7 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
14:41:58.0209 0x119c  rdyboost - ok
14:41:58.0251 0x119c  [ 341E6830DA70F65730300DAB4CB0B490, 341EC8DB5E39963EF89E726F08730AFB2356C3BAD71CCE9EECCAB4D9B31C4863 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
14:41:58.0307 0x119c  ReFSv1 - ok
14:41:58.0352 0x119c  [ 8355BCA85B0928382DFCDD02FCD1681A, F306F038DA09C8D2095C311818E2F991B55BCD96B40B95D2A53A60EA6AC37014 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
14:41:58.0397 0x119c  RemoteAccess - ok
14:41:58.0435 0x119c  [ 2C82F4DCABAB389CEBB1C9E86C715C9C, 70354621D3D467616A419A818C54D2C89EA013C5050BA9944E3A7A4F25CAD6BA ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
14:41:58.0461 0x119c  RemoteRegistry - ok
14:41:58.0531 0x119c  [ 518A992A6700A86A47F79388F91737C0, 29B5D48F1E360714F9BCB26939AD49ED07F6D9C82E0DB5C9C6AF5B0BBFF04341 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
14:41:58.0690 0x119c  RetailDemo - ok
14:41:58.0718 0x119c  [ 176D8470B15CD9080861594F9A33FA01, CFB66D7FEB9465985C2866D64EA03B7E7BE830DCF6C02B3FE2244D7F7E5343E2 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
14:41:58.0762 0x119c  RpcEptMapper - ok
14:41:58.0797 0x119c  [ 1A563653DAEDFE4CA81936E0D2FD8B56, 308B0DFEBA63333D407093C449A08ABFECE118C9274100809356BDAF7FA32EB6 ] RpcLocator      C:\WINDOWS\system32\locator.exe
14:41:58.0843 0x119c  RpcLocator - ok
14:41:58.0883 0x119c  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
14:41:58.0931 0x119c  RpcSs - ok
14:41:58.0965 0x119c  [ 0AC5FCDC29ED97ECDEF1276425EE2059, 8A12D1732D4AA18A9ED8416F4D4A49B81CE7C4C86ABCEE8FF28A16EA61993CFE ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
14:41:58.0995 0x119c  rspndr - ok
14:41:59.0023 0x119c  [ 044890BB0D6CF1E23C1087234D320509, FA6C79D24BE4ACCFAC617D2850B922BFAA7C2766AE625C725F3ACF43C934EFAF ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
14:41:59.0034 0x119c  s3cap - ok
14:41:59.0044 0x119c  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] SamSs           C:\WINDOWS\system32\lsass.exe
14:41:59.0055 0x119c  SamSs - ok
14:41:59.0094 0x119c  [ 530F797129776AA7E81994783A97E2AD, F131EF036702C6E741E5A6851AE07E81043CE8BAEED0768838C0F31CE14FEC1A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
14:41:59.0107 0x119c  sbp2port - ok
14:41:59.0151 0x119c  [ 0C12493B333B96797AFC5F3C7831C051, BEE786D7ED14221B1A9450060597393AC44116D776B913E045B5F6066D720F74 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
14:41:59.0204 0x119c  SCardSvr - ok
14:41:59.0219 0x119c  [ 40110802D217FE1CB581D9A70B1FD16F, CCB920593CCC6663676039F3F731536DFEF535C3F715F6DB6F34D0D733BEF89B ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
14:41:59.0241 0x119c  ScDeviceEnum - ok
14:41:59.0274 0x119c  [ 9B6B1D4DB35A3D9BEAF023BC95E1F49D, CA44124CA3E9958FB77A891CD234A993B63E8AC6632AE801CDEC6666267E7C7E ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
14:41:59.0300 0x119c  scfilter - ok
14:41:59.0365 0x119c  [ EA195B8BC11C1CDB313CFD456EFFA0E9, EEDF349C59ED0645B04040707906BB4496527243858C2A6BE46BE7029B4A7F37 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
14:41:59.0439 0x119c  Schedule - ok
14:41:59.0470 0x119c  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
14:41:59.0495 0x119c  SCPolicySvc - ok
14:41:59.0545 0x119c  [ B24408471C1BCB17FC44F5B47EA8DEA3, 1CFE07C793F2A3D883E9071B8703C01A7619C8C0A02AAEBAA1130F36654AFD4F ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
14:41:59.0593 0x119c  sdbus - ok
14:41:59.0624 0x119c  [ 811EC0B1221402FCED0BA37E112BF627, 366EB8AF04C603BED6CF53652CC937099B247D5DD8C58D699D0D8DA22F8FDD51 ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
14:41:59.0653 0x119c  SDRSVC - ok
14:41:59.0691 0x119c  [ DE6D7DC78D956928F59F7415A0F41E13, C0F8EEED29BF63A0D8FB5A0286C1C768BFEF598EC52715D910B5BB1A76231805 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
14:41:59.0704 0x119c  sdstor - ok
14:41:59.0735 0x119c  [ EBD07BD20B5E0E92A398566EF8720F79, 8A88C861D4113B9938C32CBD28FD3D7F1C3133E700E23E17F5DFD7B26CCDA04A ] seclogon        C:\WINDOWS\system32\seclogon.dll
14:41:59.0760 0x119c  seclogon - ok
14:41:59.0773 0x119c  [ B7B9EEBCB7466338403A75D15AC120D7, B8F79DA71F8CD0F30983F7D92B625A431C212DD543DE2B3DC03EC5A68C41B00D ] SENS            C:\WINDOWS\System32\sens.dll
14:41:59.0792 0x119c  SENS - ok
14:41:59.0852 0x119c  [ D14DD7D766664F880FECF44CE6017966, ECF966E3ACF4EBD5A3259468A076619A539E35F1B97AB6A98FBD7882F1FBBBAB ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
14:41:59.0932 0x119c  SensorDataService - ok
14:41:59.0974 0x119c  [ 45D26646E3AD737E5DE3DB91CCCE7DBA, B05AB32700998C8347BC5797B18EB97F303FCB2302BED852348F2703DEDE72F9 ] SensorService   C:\WINDOWS\system32\SensorService.dll
14:42:00.0007 0x119c  SensorService - ok
14:42:00.0036 0x119c  [ 7363A65C738F5A5292D7BDBE55D8C3C2, C53C10A0AE58613DFCC91E62E004D9B188E4793C2A19B4BE871A705EEE77048E ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
14:42:00.0086 0x119c  SensrSvc - ok
14:42:00.0125 0x119c  [ 67585C295FF2D221679E376B68893B35, 4B5E9A8DA8C6F7B1F7129F80A0603503D467E5650306FB4C309977D74037E46B ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
14:42:00.0153 0x119c  SerCx - ok
14:42:00.0202 0x119c  [ B8C4852CBCAAC1374C08EC7445443824, DDE577A81B3E11B5B56096317BC47AA6E286573042407B96A9D29BE981F3FA4D ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
14:42:00.0229 0x119c  SerCx2 - ok
14:42:00.0253 0x119c  [ D3A103944A8FCD78FD48B2B19092790C, 252DB8395DA8639E748658D3BE7863C1700E27AA5C41BB700CFCE193FE3F04E9 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
14:42:00.0269 0x119c  Serenum - ok
14:42:00.0307 0x119c  [ 249A563C48DFD9E42A37587653E003BB, D022FAE2B7AC9D99B9F230A4DF0B045891588162587E1F468B5E05C8DA98AA9A ] Serial          C:\WINDOWS\System32\drivers\serial.sys
14:42:00.0326 0x119c  Serial - ok
14:42:00.0331 0x119c  [ 0F5B43074AE731D2C6F061241C9D84A6, 05CFEB30A4FC11441552D37687608C8C2FD6DC2F2266AE9D6526753E26283DE6 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
14:42:00.0346 0x119c  sermouse - ok
14:42:00.0391 0x119c  [ CD90E445F6458512A5BA884D561EFCF1, E792FAB8AFF4126C1977024060842D788A06475139782896AFD7B39C85FCDF3F ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
14:42:00.0421 0x119c  SessionEnv - ok
14:42:00.0452 0x119c  [ D9FE59276BD56A9643C32D5FACE2F251, 591862D868A545F468496DE97DEE42C9DB3AFBFC0881CBA79EB6641A254AF033 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
14:42:00.0479 0x119c  sfloppy - ok
14:42:00.0535 0x119c  [ F8083C536BEDE61AFB4069D8A8C16DA7, 13AADAD7B5582911B8ABBE0CF7132CC517F7413A361CCF8ED502F803D061FFA3 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
14:42:00.0621 0x119c  SharedAccess - ok
14:42:00.0671 0x119c  [ AE6E4D3172FBF45B944668CB3998B8A8, E7D7F98CB464C236A17069987F7B678D7688D9D577334151EF09DF5C6F22AFFC ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
14:42:00.0713 0x119c  ShellHWDetection - ok
14:42:00.0742 0x119c  [ ABBE803FE0BDAE0E5BE74DDEFBE62F23, 5009F489F7A6D66628C23A0FA3D7632399D0AD72BD11A1B70D7E768ED507377D ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
14:42:00.0753 0x119c  SiSRaid2 - ok
14:42:00.0771 0x119c  [ 6043DF55CFE3C7ACF477645FA64DEA98, 0E18EF8EC589841BC319C17FBABA7383FD247C9441ABF64A0D830976F3E611AE ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
14:42:00.0784 0x119c  SiSRaid4 - ok
14:42:00.0864 0x119c  [ 3E98CE04689597C76B3EF4D3D0323836, F7FFF675066281190C236F2995EB003A1779231E5164EEE6BEE334A4240B1DF9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
14:42:00.0900 0x119c  SkypeUpdate - ok
14:42:00.0939 0x119c  [ B922D32039A3B5991E64429EC4EE52A9, 5EB7EB1F6D2C25F06044D8CA9F3BA0471FB40C8C96432BDC2C80CC36DC49BA0B ] smphost         C:\WINDOWS\System32\smphost.dll
14:42:00.0965 0x119c  smphost - ok
14:42:01.0012 0x119c  [ F07301C282AA222C33F8C28B4F545275, 2938943A3A62B33C8296DF3B57897D32293F5395A5E2A01C76B0160A98C12520 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
14:42:01.0056 0x119c  SmsRouter - ok
14:42:01.0095 0x119c  [ 0B6BECB2651EF947249CDC3715E8B9CC, EB7281AF3529DE16FE8CD0C0C0C8877641865A5864D58628DBAB865B510B0D0B ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
14:42:01.0140 0x119c  SNMPTRAP - ok
14:42:01.0201 0x119c  [ 1A6CB30F0EFC1632E6F1B852CA892583, 0E6BDCEE837AEC3D02C437478143C75550C94A50E36895DDB095F54A2FA18E2A ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
14:42:01.0233 0x119c  spaceport - ok
14:42:01.0248 0x119c  [ E1C158F6C00359278727A2CEE5D2ED71, 1591F942C6DD99D3BA7FD4D72D957864117B2263F205468A15F1D1417C6F799D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
14:42:01.0260 0x119c  SpbCx - ok
14:42:01.0313 0x119c  [ D1241DFC397FA8CCFB4BB4B63AAD31AC, F8C57C2F7CA8B6D8FEE1505A143A3FECF502C8DCFFC375F9C8848A87D9714C9E ] Spooler         C:\WINDOWS\System32\spoolsv.exe
14:42:01.0358 0x119c  Spooler - ok
14:42:01.0575 0x119c  [ 7C58AFEC26E9F7730A8AA7FD40225937, 546EAD8889F2A1BB6DCCB7781976B975F34DA1C9047F95FEAA52CF38EC60C6DD ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
14:42:01.0830 0x119c  sppsvc - ok
14:42:01.0854 0x119c  [ ACC1709EC7FE6EB8999DBC91C50C2B34, 83ABF51751A264291C53A32B86239A607361E56CB045CD2CBE6E41DBB8A01F54 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
14:42:01.0879 0x119c  srv - ok
14:42:01.0895 0x119c  [ AFBCFC946FAE7483E27BD316D03F94A5, CC9478EA717E85C38304957E923997821DFE2A995D7C8DF98C15267D952BEFBE ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
14:42:01.0928 0x119c  srv2 - ok
14:42:01.0949 0x119c  [ 107C1EBE79710E4A759449BD6604245A, 963D693F4E61EDC7B3AA9006CC274D56E577CE0035A61DDB2A6DE72116D5C52B ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
14:42:01.0967 0x119c  srvnet - ok
14:42:02.0004 0x119c  [ 8C1786C073A496B8C0C8A5450A4FFD5B, 13BF3B42A63CE6C461259D4CE767FB0DE1F10433512A11D2B2C033E36E652542 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
14:42:02.0039 0x119c  SSDPSRV - ok
14:42:02.0080 0x119c  [ 217A982201052EFC8C3C0C88D229791C, 11509E3446ED7B75C9A05CDC4A7AF18926CB463E0D98BAE1CD5DB43E88F94F90 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
14:42:02.0106 0x119c  SstpSvc - ok
14:42:02.0218 0x119c  [ 58863C57E4598C4F9DA967C5C36CFA5D, BB34FBC324E84E05128258CE3755241ECB63F7F2AE7F96716AC373931FAF92A8 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
14:42:02.0316 0x119c  StateRepository - ok
14:42:02.0338 0x119c  [ CCDA497C880AD16D87EDFAEFCFB2EDF5, 622599AA35ACFF0375DA252210BE42E7E90F30EDFEFF2F62FDB14AE6E45B5F88 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
14:42:02.0349 0x119c  stexstor - ok
14:42:02.0374 0x119c  [ 2834415C4EDD6CE35CB3CFEC50E08469, 28426616C709457DF38B5E2B4B9666C1255B81D2097589A95AAABD1BFACD302A ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
14:42:02.0403 0x119c  StillCam - ok
14:42:02.0476 0x119c  [ 75476CAA8FA0A4E573948CDE8C7F0304, 68C4405CACA77AEED71761875A9AF60BCFBDD39E356BEA1BA8226E099BAA5FA4 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
14:42:02.0531 0x119c  stisvc - ok
14:42:02.0546 0x119c  [ BF8EA6FC3358C2F69678E3E94F764F84, D274DAD7B5756DD49CA44277C73497F1EC465C8E365CC730CD194932C3825920 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
14:42:02.0558 0x119c  storahci - ok
14:42:02.0612 0x119c  [ 32FF460DA8C1F370F5C08B7654899B73, 0C9D5D38D033109BA672ABAFEF0F0CD295E9FFA108ACFCA9044429D9B2CA9057 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
14:42:02.0623 0x119c  storflt - ok
14:42:02.0642 0x119c  [ CC21DB3EF619B9480FE31A4EFE92CBEB, 256EFCA2F231F41D34250E1460BF88894D943EAE83A0B153FCADE700AB4DE11E ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
14:42:02.0654 0x119c  stornvme - ok
14:42:02.0676 0x119c  [ 390B8A75768E2689586539C224520895, D72F52E6D7AC5DC318FF9C1DF1F4E8A435D65B6BB59D7F1642222EC026BC54DB ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
14:42:02.0710 0x119c  storqosflt - ok
14:42:02.0776 0x119c  [ E5C3042B68D4EA89B3C52E150E553DA0, 83428E8EFC584778745F6B30F6F8FD96A645AD33F39AA955E97F9A0D458847B1 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
14:42:02.0823 0x119c  StorSvc - ok
14:42:02.0843 0x119c  [ 770A92D9D3A0BF61C97C3AFCB36847D9, 21A8CC3F8E63B971C4FF8DDED5C7032E093A7B0F16E2128A9BD2E890BA76A1D9 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
14:42:02.0855 0x119c  storufs - ok
14:42:02.0864 0x119c  [ 736A2418E3E7F3DB3CF6EB0A55D1D581, 2D3BBC4E0C7B51EDE7479A978E4BCD5F47A7257745179F01D2D9ECFD83CCCC82 ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
14:42:02.0875 0x119c  storvsc - ok
14:42:02.0919 0x119c  [ FA8F6E3AD3F92B35D2673CC9FD20429C, 62F81CBACF7E16FEF9DE3BE95FA5C9BDB51BAE4667AE5AE71399864A390FF6D5 ] svsvc           C:\WINDOWS\system32\svsvc.dll
14:42:02.0941 0x119c  svsvc - ok
14:42:02.0974 0x119c  [ BD98B0225BCD49E8A62F4F8EE1D1F613, CDAD11969B2DA417079547724BECC3DB4FC4711B3C01590EB0D02774B69B6D90 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
14:42:02.0996 0x119c  swenum - ok
14:42:03.0046 0x119c  [ 22E539A9B96C66A713583EC017562616, 210DA61DFC7AA9AD23277D9CC0239B781F4EABD322D0803AEC9434D68B81FABD ] swprv           C:\WINDOWS\System32\swprv.dll
14:42:03.0128 0x119c  swprv - ok
14:42:03.0154 0x119c  [ CAE4B27B469C583131EA5AAE622F5D76, 3979006EB22489D1AAD2EC2E9F32C286EEDCDB83B37B97E58BA831263EC33B84 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
14:42:03.0175 0x119c  Synth3dVsc - ok
14:42:03.0256 0x119c  [ 34A3EB84B2A830E6F450B8F885AE4E6E, E61AC6D17B815CB71F26D71CA3CCAFD9E66A170E3ED2E64A4F20D097A0C683B5 ] SysMain         C:\WINDOWS\system32\sysmain.dll
14:42:03.0318 0x119c  SysMain - ok
14:42:03.0396 0x119c  [ AF2C8D7C1D4DCFD5C31501F009DF42B7, 3DDF9353F014EE99B031BBC969620CA07647FBB8D78EB4697C8D633021B46B11 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
14:42:03.0457 0x119c  SystemEventsBroker - ok
14:42:03.0494 0x119c  [ 6979A147C0D5C5CAB621ADC394D32B80, C30B8E3D271A1591D965559EA4A11A1BE63A34D832ED53B26CE91799C888DF77 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
14:42:03.0512 0x119c  TabletInputService - ok
14:42:03.0541 0x119c  [ 86B62FC8CB89946446F9B24FE49A66FD, 7B095310D1C78B82E5ACAC4713E101DD1323A3CF6FB39218C2E78ABE2B0385B5 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
14:42:03.0565 0x119c  TapiSrv - ok
14:42:03.0701 0x119c  [ 083A727D784009F9CCFB120C7841B7AF, 14242ECC3EB17154AD856A2C5229324BA6914291F4E2CD93E6AE251A31130448 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
14:42:03.0771 0x119c  Tcpip - ok
14:42:03.0851 0x119c  [ 083A727D784009F9CCFB120C7841B7AF, 14242ECC3EB17154AD856A2C5229324BA6914291F4E2CD93E6AE251A31130448 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
14:42:03.0923 0x119c  Tcpip6 - ok
14:42:03.0954 0x119c  [ 17F37EC9042D84561C550620643D9A85, B01620BA319A1383D403E6E50C7724879520F3267654556D975CAFFF91A82C78 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
14:42:03.0969 0x119c  tcpipreg - ok
14:42:04.0024 0x119c  [ 91D3F2A6253EF83EFBD7903028F58C4D, C15768CCCF734093B0F8A5E76882B35927B716E4F14D91ACEE897E1C078D43D1 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
14:42:04.0061 0x119c  tdx - ok
14:42:04.0095 0x119c  [ E730D0EB1B84EBC98423FC8D285EDBC0, 442DD433F9D22304E64EC7ACFC4E04892D4D92D8AC545A3530FC932A2EEC4767 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
14:42:04.0109 0x119c  terminpt - ok
14:42:04.0192 0x119c  [ 14307D4801C8CEF0A615907C09E886B3, C7F34C294D70DE689F673E0B5E9253B27EFEBBE6FA38B68B3B0B0374A896407E ] TermService     C:\WINDOWS\System32\termsrv.dll
14:42:04.0286 0x119c  TermService - ok
14:42:04.0318 0x119c  [ D009D1BC14FD5F2AC93D1878735F6C39, D8BCE505B66E05BC00075E46B38359CA4D0FA484EB7981A74221885E8A1FFB87 ] Themes          C:\WINDOWS\system32\themeservice.dll
14:42:04.0346 0x119c  Themes - ok
14:42:04.0390 0x119c  [ 5F27DE2082E16D4C1D6C627C8ECBD341, 08DA3EB3EF2B2006B6F9F2C8C149DF55DE6738975D556206A814096CAB5C1411 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
14:42:04.0425 0x119c  TieringEngineService - ok
14:42:04.0470 0x119c  [ 62300878366762EABAC7834543964A6E, 84E3DE6C93B31CBA71BA90669EB52C3122774E0EF803390EE8A483164D2CFE18 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
14:42:04.0498 0x119c  tiledatamodelsvc - ok
14:42:04.0525 0x119c  [ 7E81E3E0D7F83BFE3C3975020B6C7F12, 316F9415646CC7A4E9A5F1E07310D433457E623B3E589543E4A6C73C4F77712C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
14:42:04.0547 0x119c  TimeBroker - ok
14:42:04.0588 0x119c  [ 169B0A246067457FEF8A18EED7EED9D5, BF5AC0CB29E1E456253B881CD0608B578D7343E9DFE1738A14598D1DFFE1AB66 ] TPM             C:\WINDOWS\System32\drivers\tpm.sys
14:42:04.0603 0x119c  TPM - ok
14:42:04.0648 0x119c  [ AA84AF93CE5AF1F05838B51D20295419, 85B3EE773C691EEDFA080CD9C59D31CB58A5BC577AEE91A929F5DFBE1368AB6D ] TrkWks          C:\WINDOWS\System32\trkwks.dll
14:42:04.0670 0x119c  TrkWks - ok
14:42:04.0717 0x119c  [ E50DD57F496CED8873FA3E7D38BCCD42, 36B95F6F2CF48078C6B19FB452C87BB07E95C8804A5C6B526D349AC6227CAB26 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
14:42:04.0755 0x119c  TrustedInstaller - ok
14:42:04.0768 0x119c  [ 48E828C66AB016E48F2CB4DD585315FD, 063809B610F6B177B65D62D12605FB94F108DB26A9FD3067E6D6C51F0D92E774 ] tsusbflt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
14:42:04.0785 0x119c  tsusbflt - ok
14:42:04.0795 0x119c  [ 267C76EE60736EA5A1811A53FA02AABE, 28D4C4CB972534204B8336D0403B70E4EFE4F8369ABDE7401FFCCF7D4E3EA165 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
14:42:04.0808 0x119c  TsUsbGD - ok
14:42:04.0844 0x119c  [ 8CE72F094B822AD5EE9C3A3AFC0C16B6, 827CCD849544E1DA364B03DBC82A848D2F93AD32BA14ED52709C609BC70CE5CA ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
14:42:04.0870 0x119c  tunnel - ok
14:42:04.0905 0x119c  [ 56C238ACFE4CB020D3E38508249039EA, 172868080F07D98175229A02410FE751B5958ED5A3D567D4AE5736F4025DF432 ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
14:42:04.0927 0x119c  tzautoupdate - ok
14:42:04.0945 0x119c  [ 42C546414F80BD6C0137FC3A106F8A69, 067FFCAF0059935851888BD984E848E4E1A6CC1941A8F4534067CCF0B2A3B2E6 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
14:42:04.0957 0x119c  uagp35 - ok
14:42:04.0990 0x119c  [ 1686DBC81748B096232B15F16C302985, 63D72D1838C42A95599AF3C0B19A069E310ADB091208011D7D6FBAC968D1A59A ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
14:42:05.0005 0x119c  UASPStor - ok
14:42:05.0018 0x119c  [ 3995CC3DEDED258768B8EBC2F4C0DC73, 130E99EF13EB494B8BB6A8E037DD8D59C195190EA3C27CA9E3A695AF4349DC7C ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
14:42:05.0033 0x119c  UcmCx0101 - ok
14:42:05.0048 0x119c  [ 1C95F7CE37D9EFB90EBE987A9712356C, B9EE7743ADA50276F05D735C5C29E44039D630A7DC93766A0EAF400DA037E4AF ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
14:42:05.0061 0x119c  UcmUcsi - ok
14:42:05.0079 0x119c  [ AED081772091C98173905E2DF28C223B, 08541CF3354EBB634BD590E0019128F70A6FCA9075B7E785A9E9BD82EC234DD3 ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
14:42:05.0094 0x119c  Ucx01000 - ok
14:42:05.0103 0x119c  [ DCA34A111C29E4578DF2B8CEA3C7CDBD, 86BCE4C8EC228724D5896067A85A4768B6069D10A482ECC51A8F828DBD3880C9 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
14:42:05.0126 0x119c  UdeCx - ok
14:42:05.0171 0x119c  [ 718A956AE00CE086F381044AB66CC29C, E4EED1600C72CECE1D4507827C329A93D356BBA027470FCF6C4B5C1651DED643 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
14:42:05.0238 0x119c  udfs - ok
14:42:05.0255 0x119c  [ BA760F8E66428BA9FF1E8BFBC6248136, BE7DCBB293B12672CB3653E640C46F669BD738D320F34F4FA4A26F6B248561F0 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
14:42:05.0265 0x119c  UEFI - ok
14:42:05.0305 0x119c  [ 28B8E1C6CBCF9FFE2FABFF3160C26ADF, 1C90E6C4E17C9B5555151943970BB6CC196E7EFC6665D9B9DCBB1EC51C70C715 ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
14:42:05.0322 0x119c  Ufx01000 - ok
14:42:05.0335 0x119c  [ 2B1DABA97DDF5365FC66EE7DEDD86A13, 2FF3355862938B37EE63FCA149415CE5032BF54747B07517BB21460733B65AD8 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
14:42:05.0348 0x119c  UfxChipidea - ok
14:42:05.0392 0x119c  [ DB630FC660443D63EBAB2C830C298EFE, 7698772FF9C988DF752DF3FAF1B154E923EBA425B92F288ABB6EF0805ABD3296 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
14:42:05.0421 0x119c  ufxsynopsys - ok
14:42:05.0454 0x119c  [ 63451BD694651307254B8DD37A3D79C7, C781E2D876AF42D5972CCDCF86B7A59F6AF8AF0C6350647F3FA1B209119B5EF9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
14:42:05.0483 0x119c  UI0Detect - ok
14:42:05.0505 0x119c  [ 6DE78C04BF32ECA7AF3064F53687C9A5, 164D3BB24EBA3EAF613799928063FE75220A4E583D985F53A895017782C18600 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
14:42:05.0532 0x119c  uliagpkx - ok
14:42:05.0549 0x119c  [ 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4, BA2E6F16B6B3B54C943F1E7B9F79A6D1332A7ED228D754CC5AE70E3CD78B1F37 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
14:42:05.0569 0x119c  umbus - ok
14:42:05.0598 0x119c  [ 11680607944A719EF20E0E740785712A, 1567C2B3AAD702DCC2DC9C6B7B92EE5B681C06701A39DAC3AA7E2BE9E1E04F47 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
14:42:05.0639 0x119c  UmPass - ok
14:42:05.0702 0x119c  [ FD949725D9EB52C0B87435CDE1134668, 96E2B3D3379E9AE225E5A4C5251207F1E7DA573901F4F026758EDE9FAEF4F2C5 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
14:42:05.0749 0x119c  UmRdpService - ok
14:42:05.0805 0x119c  [ CB902A15DD21B363FECA5DCCF34F5C57, 6A0836A12A410EBD5C667982852B58CA9E9EDB11EA666C413CC0F811E01A549D ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
14:42:05.0864 0x119c  UnistoreSvc - ok
14:42:05.0952 0x119c  [ B85A8CF2BE74DFF1E80097AC94584112, B1DBACC33A4143FEE2CF54E567590A69580312AD7A053BCC85B487C4D451FBDA ] upnphost        C:\WINDOWS\System32\upnphost.dll
14:42:05.0991 0x119c  upnphost - ok
14:42:06.0028 0x119c  [ 2410A0C20D21A25E6C01979FA886BE90, DD3F92D8CF110D47B9E36BA0EB10EB34C0FDD28FE0D57E4B60F9326703388F75 ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
14:42:06.0041 0x119c  UrsChipidea - ok
14:42:06.0049 0x119c  [ 6E59CE43B6BA5AA1ADCF36A4DBBB92BB, 647D66775A90F67D803043DE8C8AE8BC2F7A042A8DCF9C95BF5458C79609481B ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
14:42:06.0073 0x119c  UrsCx01000 - ok
14:42:06.0076 0x119c  [ E8A59FA109A22FC07E44BDFCC9727DBD, 0DC5928C0FF7E5B38917660D6EFECCC22172DB0BB9B23216F33E750790529C16 ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
14:42:06.0087 0x119c  UrsSynopsys - ok
14:42:06.0116 0x119c  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
14:42:06.0134 0x119c  USBAAPL64 - ok
14:42:06.0154 0x119c  [ D8A44550ECE102B6443F5D54DCE7DAB3, 97F5AE7B17DAC4A4F3186C77116BC8E49874FB0018C99D8E2CDA29D89E8B0912 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
14:42:06.0167 0x119c  usbccgp - ok
14:42:06.0172 0x119c  [ 66B3D22DAB5312FF238ABF5C6D9F8FAB, 4A644AFC1C27D692D352BEB8801398A00EA5B4055476063AF905A0A46DDBF8BB ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
14:42:06.0202 0x119c  usbcir - ok
14:42:06.0219 0x119c  [ 3E4F20DB902D2E2914F3FF3DB9772200, F3D32BE06A26164B5F6E8DB67160D1DBBDC6D14666EEF84EA43C78CB7706E31C ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
14:42:06.0231 0x119c  usbehci - ok
14:42:06.0246 0x119c  [ 41F7F00D76904416EF1F9EFA1A4C37A2, 7A4250EB2E2E0037B3AE1480C13B229ECFF5C575E68E4F934EE011DB1833B46A ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
14:42:06.0272 0x119c  usbhub - ok
14:42:06.0305 0x119c  [ B7E1CAA9429E4C3E7E01CB35B97E1536, 11A6431C27821F247202AC9F18441FEA26544630461522C129F1671257C527BA ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
14:42:06.0331 0x119c  USBHUB3 - ok
14:42:06.0391 0x119c  [ DAB35CCA86F5FBE77D870A40089BC4A1, 4A47D59D882D0F2B93F2EE7F10995E7D68B58009434E2CBD04C659E0D1F059D8 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
14:42:06.0451 0x119c  usbohci - ok
14:42:06.0475 0x119c  [ 21162F65C7756AAECAEBED9E67D0A5FE, DE3B43964171DB5B0464DA5E7A674A5D200A8695E6EF1AE2030681066ABA2688 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
14:42:06.0497 0x119c  usbprint - ok
14:42:06.0533 0x119c  [ F259A45D6B555B14CC8365AA6BC8DC20, 28A588656449307F6E9C999BE5D73E34A2542A5771F4B504D9D36B9F93F32303 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
14:42:06.0556 0x119c  usbser - ok
14:42:06.0570 0x119c  [ 8949F77132A4F8F3BA17C6727099F002, 86AD4A2263B34983335180FDAE775D1744E042D2A11300D27DF546F15F285A25 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
14:42:06.0584 0x119c  USBSTOR - ok
14:42:06.0609 0x119c  [ 8B3E458A8851F9A3B2109B1680EE1159, 753AC8F82F65564F00EA2F60B43E4B815FEAABE0DA35B6356210A5F4B1CA3EFC ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
14:42:06.0622 0x119c  usbuhci - ok
14:42:06.0657 0x119c  [ 4B13B61CBB9CC3CB373C60B930D648F5, C79D10A1BF2B6BF141DD37A90BCCA0E1F2AF31B5028BB21537A8EE6EED630F5B ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
14:42:06.0680 0x119c  usbvideo - ok
14:42:06.0732 0x119c  [ 9E9D58F5E1702955B2F4D62996F80E8E, 6C21C250B9D98346D0D5CB7D6C11AB120A1D195C28313BDB0CE532663F0114E2 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
14:42:06.0750 0x119c  USBXHCI - ok
14:42:06.0818 0x119c  [ 2771EBB565F5C121E66060B173991D4D, 1EB34A6262A18E47ADCA392FDB2D58E8428A1CA43EB4196D76A897F74A03CA7F ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
14:42:06.0893 0x119c  UserDataSvc - ok
14:42:06.0966 0x119c  [ 36EC82F0E399F36BD25F593D63DC144A, 2A9E916A098ACD5A5074A5FD053ECAB027A0932A348C728F20CD63EF16289533 ] UserManager     C:\WINDOWS\System32\usermgr.dll
14:42:07.0022 0x119c  UserManager - ok
14:42:07.0060 0x119c  [ 05F4CB5991D897E4253BF61FA5E828F8, 25B5B6751B4455491E9A050DF5C12F788B5677F70FB4844E0BF851090AC1F74C ] UsoSvc          C:\WINDOWS\system32\usocore.dll
14:42:07.0090 0x119c  UsoSvc - ok
14:42:07.0114 0x119c  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
14:42:07.0128 0x119c  VaultSvc - ok
14:42:07.0189 0x119c  [ E1BE37312785A71862516F66B3FD24CE, D248C513DBEACB192653C6E46809209F341771B146544BBF43B86369280B4F8B ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
14:42:07.0200 0x119c  vdrvroot - ok
14:42:07.0297 0x119c  [ 67A6E949395A09914AD8B38FE14B8D15, 593F2FAA880B2E0468F98BD58B5214A170E5890907B25294D7A47C66505A3D45 ] vds             C:\WINDOWS\System32\vds.exe
14:42:07.0351 0x119c  vds - ok
14:42:07.0371 0x119c  [ E42C0F2850735FF9D908B9DB581E6314, E2204A56BF37FC57CD2ED96E3F908882D72B4BFF1BFB97C5172C851F1E4F9650 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
14:42:07.0389 0x119c  VerifierExt - ok
14:42:07.0421 0x119c  [ EC15FD6A28757793E2DA394CD94ABD52, DC758BBEE9C6952D7B3F7171EF67B037B4068E88189A2C4A894122D1D1209468 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
14:42:07.0457 0x119c  vhdmp - ok
14:42:07.0472 0x119c  [ D0C9632C350F46786643A069251BC249, CF65BA0D3F3D2B821C10E2D4F53F5B6BF6236CA9767419392A561CFA79254C3B ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
14:42:07.0484 0x119c  vhf - ok
14:42:07.0501 0x119c  [ E886CB75DA2B6EB35469EF10135624C7, 3AFC59A0709B984F517A918D5BBEBEB1C80001BEC87C133447DCEAEDE00E516D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
14:42:07.0513 0x119c  vmbus - ok
14:42:07.0522 0x119c  [ 46D2EC27820EC0F798F85821E53C2942, D298A7D6AC16F76A069F843C8DD323ECB340D361733CB9B076BCDE8FC5F1FEFC ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
14:42:07.0551 0x119c  VMBusHID - ok
14:42:07.0605 0x119c  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
14:42:07.0636 0x119c  vmicguestinterface - ok
14:42:07.0653 0x119c  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
14:42:07.0695 0x119c  vmicheartbeat - ok
14:42:07.0707 0x119c  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
14:42:07.0735 0x119c  vmickvpexchange - ok
14:42:07.0747 0x119c  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
14:42:07.0774 0x119c  vmicrdv - ok
14:42:07.0789 0x119c  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
14:42:07.0819 0x119c  vmicshutdown - ok
14:42:07.0832 0x119c  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
14:42:07.0861 0x119c  vmictimesync - ok
14:42:07.0873 0x119c  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
14:42:07.0901 0x119c  vmicvmsession - ok
14:42:07.0914 0x119c  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
14:42:07.0941 0x119c  vmicvss - ok
14:42:07.0988 0x119c  [ B9265F47E7A354BAAA0AF5CBA3F8F7CE, F836E7BEDC7CAB1C01225164D171A0210D8F909F52992E4C0BF3C92B365BCD52 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
14:42:08.0001 0x119c  volmgr - ok
14:42:08.0011 0x119c  [ BEE9C8B72AB752B794F69C2B9B3678AA, 49A5093C26F3CDCD60577F7F2D7F936C7B2BD010B27F2C49A7B6AA41E42DF98D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
14:42:08.0031 0x119c  volmgrx - ok
14:42:08.0042 0x119c  [ E1F91A727A04C9F8199D04FF3BBBF63C, 076CAEE621DBF7DE24ED92BA239C440879FDB674CF3213DF3E35AEC03D0D2031 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
14:42:08.0063 0x119c  volsnap - ok
14:42:08.0093 0x119c  [ F7B1B1101271E31F43CC76E890704F51, 2282D82B220C3D13FF980ED8E40443C83816D3DA9557EACEA137873F92BB9CF4 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
14:42:08.0105 0x119c  vpci - ok
14:42:08.0122 0x119c  [ D48ED0A08BD2FD25A833E6AC99623091, 6CA7580878D3893E14B4938023A00CDFC9BE215A0CE4ED59A94F95DFD9FDF4D8 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
14:42:08.0137 0x119c  vsmraid - ok
14:42:08.0228 0x119c  [ 4CF5A1E0C4FCA956ACD6C654E2A8610E, 57F3C7200C25E8717AF92AF2ED7615C6605179D3514B432220FA6EA94CAB4F2E ] VSS             C:\WINDOWS\system32\vssvc.exe
14:42:08.0345 0x119c  VSS - ok
14:42:08.0392 0x119c  [ 6990D4AFDF545669D4E6C232F26DE1FB, 9B8F99A035188FD96BA79E935E8EF387BEA2223ECA0B74CF64AB993DABAA5722 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
14:42:08.0429 0x119c  VSTXRAID - ok
14:42:08.0460 0x119c  [ 1EE11F0508C58EF081F4176E66D6970B, 9069B3FC8850C7CF617909C6DBFC3753FEB59A9E708379CC57190F4097FB374E ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
14:42:08.0476 0x119c  vwifibus - ok
14:42:08.0508 0x119c  [ 938E4EF58E42D252B742B0E243011B90, AC0C21FBAF15924CB271CA43ACB7A86287936C78B4852BCFC59EC7EC703E036C ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
14:42:08.0543 0x119c  vwififlt - ok
14:42:08.0562 0x119c  [ 3BE5AAC930447FD18D4A8255A2FEC95C, A517357188FE4A5BD98A3CDB2165ACCE96CCE4BE2B90DDBEAF70B6DDF393F506 ] vwifimp         C:\WINDOWS\System32\drivers\vwifimp.sys
14:42:08.0599 0x119c  vwifimp - ok
14:42:08.0662 0x119c  [ 48C1A256591297C43ECFC4E30D144EAA, 8E66833ED2CEB6D7E499EB2E4282B4F9DFA28B6D21757BB88EC52FD069D7FACE ] W32Time         C:\WINDOWS\system32\w32time.dll
14:42:08.0721 0x119c  W32Time - ok
14:42:08.0738 0x119c  [ 00C27B64C758C111E5D78A70DE6CA2B6, C99761B9B671B3A1FF1C52796CCA3F4F825BF50D9657D13B551E849CDD82055D ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
14:42:08.0760 0x119c  WacomPen - ok
14:42:08.0805 0x119c  [ D76D1AC4F2C642D09A68227D129A4726, D14D6C4D94E9660848C74B220359683D91A4A3D70750E781A20B6D86D46794CE ] WalletService   C:\WINDOWS\system32\WalletService.dll
14:42:08.0857 0x119c  WalletService - ok
14:42:08.0871 0x119c  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:42:08.0888 0x119c  wanarp - ok
14:42:08.0892 0x119c  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:42:08.0907 0x119c  wanarpv6 - ok
14:42:08.0982 0x119c  [ 2598BBF11C9E7D0885DCA52E7FD5BCBD, 46B1FB080A2CD88C89A0EB8BA2594A1FA2C341ED77A6C6835CBFFE42907FAC55 ] wbengine        C:\WINDOWS\system32\wbengine.exe
14:42:09.0127 0x119c  wbengine - ok
14:42:09.0173 0x119c  [ 642EFABF900374FA85639D83B5533AFD, 292692D6AAC2A785D237ADFBC7CA3D379E8FC79FA366A8CE7D06F5CA5CE6866B ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
14:42:09.0225 0x119c  WbioSrvc - ok
14:42:09.0281 0x119c  [ E9A0D466F6D8EC349DB526146618BCB6, CFD6F3F979E4366A68FBEC3BE90A42BF3D65403A987E80741A720C0622871F32 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
14:42:09.0312 0x119c  Wcmsvc - ok
14:42:09.0340 0x119c  [ 53A036CED1270F2459E708A05922FD49, 2F281A72E4B0408DE6C8153F5988C9AA38591FB1E72558767D389637D0666A85 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
14:42:09.0380 0x119c  wcncsvc - ok
14:42:09.0396 0x119c  [ 965B6197A659782B6A0F68411A180AAD, 5541AB78B71E4FA655BCBF2D80D574B2A3B4AA8871F65D26620BDE549FA5459A ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
14:42:09.0429 0x119c  WcsPlugInService - ok
14:42:09.0447 0x119c  [ 069D3D6E20AD753B34FCE856F0436869, CF8C12295DDAA56E7350019AADBA533D7857CFB3F20DEE14E557963645A9331B ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
14:42:09.0461 0x119c  WdBoot - ok
14:42:09.0483 0x119c  [ A556768CC1FA4F36022BEE2F0EDE2566, 3A4BC9DE614F43CD94FA354A565C66B2E1E36C0608D84C6288010B97B9D811AA ] WDC_SAM         C:\WINDOWS\System32\drivers\wdcsam64.sys
14:42:09.0499 0x119c  WDC_SAM - ok
14:42:09.0556 0x119c  [ 6CC727E94CD84E9720FDCDA8089CABCC, BCF66056B06DED6BC2D329E910FCD3E685D627BAD3B5D7F4B0E970B45CD9CEF4 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
14:42:09.0605 0x119c  Wdf01000 - ok
14:42:09.0641 0x119c  [ E3E97151A1D1E87BB2D5371F66C5F169, 0ED0B9852FE0533816F5EE2F06045B3964A00FD749A7011DB3C663AB6FA369E2 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
14:42:09.0663 0x119c  WdFilter - ok
14:42:09.0702 0x119c  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
14:42:09.0723 0x119c  WdiServiceHost - ok
14:42:09.0727 0x119c  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
14:42:09.0747 0x119c  WdiSystemHost - ok
14:42:09.0821 0x119c  [ 2BC2E99623119521EEF7910A11D0FDE0, 3F3E48A79534F0F65F961D9B170D534562E04901B630127B16DF02E6D42F2BBF ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
14:42:09.0866 0x119c  wdiwifi - ok
14:42:09.0877 0x119c  [ 07B043160399AF4009054E2EA3464BF4, 8D652D7CD75F8FB2B5414155355F0C970015914E1AC6522DBB8387BB8662F542 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
14:42:09.0891 0x119c  WdNisDrv - ok
14:42:09.0925 0x119c  WdNisSvc - ok
14:42:09.0964 0x119c  [ 9972D395DBD05D91DA5EDADEB9325680, 9382D846793F285721A1A0FED42F914035A53D856B902FADB0B7144C471BDA91 ] WebClient       C:\WINDOWS\System32\webclnt.dll
14:42:10.0029 0x119c  WebClient - ok
14:42:10.0043 0x119c  [ B6BF579761489720BCE787F723F596E5, 879B17F6A4F23F5E85A09126B7B407955DDCEB1BA4A8FFC0A418B7F47311C056 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
14:42:10.0072 0x119c  Wecsvc - ok
14:42:10.0079 0x119c  [ 10C9CF8771A2A87F575F9FB56821474E, 15E3DFFE9CF6777F67E426ECF797D2DF743EA152DEE336DCC9C2F92A0E6EB9A3 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
14:42:10.0108 0x119c  WEPHOSTSVC - ok
14:42:10.0119 0x119c  [ 357C083FE35D030D991D163AAF622A06, F301852D49DBDEF0D28F56CD74CBDC71CA003EBD07D3F46EA5C870DC1BD07896 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
14:42:10.0141 0x119c  wercplsupport - ok
14:42:10.0156 0x119c  [ 2235AF716D15D9DFE4C59DC2AC0C440C, 2DCFCEBEA77E7E40CEF9A785BE1A794B390B36E40FBCF49B494F9CEA3F6A28C4 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
14:42:10.0179 0x119c  WerSvc - ok
14:42:10.0199 0x119c  [ C11272713719922DE5711094333BD166, 61D4F07E02AECF04964FF51EEA31069A2B0EAA549AD2B29B5FD3E1E6BB543593 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
14:42:10.0213 0x119c  WFPLWFS - ok
14:42:10.0236 0x119c  [ 205A1FAE910F5C493D236245850BB62A, DBA4D1D734BAA3CDEB8A7F9C81A8DAA88CEA55AF5C4C5908E76FB8E522C5EC8A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
14:42:10.0263 0x119c  WiaRpc - ok
14:42:10.0274 0x119c  [ EF536C54AB9281FDC4E83B07279FCFC4, 22E4F133170682EE14413CA8FDC2DBE73AB31960D6ACB728A6B398229FDDFD3B ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
14:42:10.0286 0x119c  WIMMount - ok
14:42:10.0288 0x119c  WinDefend - ok
14:42:10.0323 0x119c  [ D8966A76408107224C6013993135DD78, 6159F69BC26FF817078E68C70E6DFC9075FEBF9EF9F4F046C7A65BC377544AE6 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
14:42:10.0337 0x119c  WindowsTrustedRT - ok
14:42:10.0343 0x119c  [ 8B102A7B6CE326FD4208CC7C2D183343, E47C1D76CBFD2A382C3A7BB048D752FB6DD4616FADDEB1C3ADD5DDAE149742AF ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
14:42:10.0353 0x119c  WindowsTrustedRTProxy - ok
14:42:10.0424 0x119c  [ FFD04E8263FC9CDB89BAD8C27C337223, 7021161D354F1536DA261D001524B92301466631DCFA161A7C6355AAC86BBE40 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
14:42:10.0483 0x119c  WinHttpAutoProxySvc - ok
14:42:10.0520 0x119c  [ 4A53441C1C4D2878BEF27E381138BB2D, C221E74491E6FD2AF472B53876B46788D5CF62F4E645457F3B3816FD0ED2BAA1 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
14:42:10.0538 0x119c  WinMad - ok
14:42:10.0596 0x119c  [ 1033C37122C7404C3B926ADF84874832, 163B3A7112F13AE7BB2655A28C6B19AF9B263F2AD2FF1B75314BE3E2B9118903 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
14:42:10.0619 0x119c  Winmgmt - ok
14:42:10.0737 0x119c  [ 703D0F62C5AA4D08EE8756516C0D125D, 02015A5E62490C11EC968160C528C2AFD1D7194AACA27F407B06EB462657511F ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
14:42:10.0888 0x119c  WinRM - ok
14:42:10.0934 0x119c  [ 260907CE034FE327AC99BDA4153AB22F, B96501F43248713C2E153B9D22B78D51412A3C6989A2FB5F53A406C6CDC98D30 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
14:42:10.0963 0x119c  WINUSB - ok
14:42:10.0973 0x119c  [ 40A3E8D729F458B2C9A8BD9380FF83D5, CD42FFC138969EF8C9588FD113F0B9A98FBA282D46A5B6BCFA765F55ED6E97A1 ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
14:42:10.0985 0x119c  WinVerbs - ok
14:42:11.0068 0x119c  [ 453740989239803FE363FF8B40EA2E08, 25499705627C38D3431B3C336E0CF3BF55ABB0C461B88DA6D3767CAAE1E2B893 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
14:42:11.0203 0x119c  WlanSvc - ok
14:42:11.0311 0x119c  [ E48BBF1363F843E030757EC190DD33E6, B37199495115ED423BA99B7317377CE865BB482D4E847861E871480AC49D4A84 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
14:42:11.0390 0x119c  wlidsvc - ok
14:42:11.0407 0x119c  [ 8F010BF65238F3F822D22BA12831796E, 2CA830F259B742D2F5CDD0437960BF512D40FB4A4C2342E3BABB38D468F79694 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
14:42:11.0420 0x119c  WmiAcpi - ok
14:42:11.0463 0x119c  [ 74ACA5A7880C1F0BB9D60E32E1705A70, A89817BCCBFF94D7394614DA81D1C6C4F53AF47A539E674EEF6DC3FC496BF702 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
14:42:11.0502 0x119c  wmiApSrv - ok
14:42:11.0547 0x119c  WMPNetworkSvc - ok
14:42:11.0587 0x119c  [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
14:42:11.0623 0x119c  Wof - ok
14:42:11.0721 0x119c  [ 4090C6738AA92B428220857B4D44F638, 4A3EE47494051E5BA8393F2AC8226EF434DA3AA1895CF4BADC9BC1BC378647C6 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
14:42:11.0877 0x119c  workfolderssvc - ok
14:42:11.0911 0x119c  [ 22C52D7EE7C7D0E02C8EFD8CAE8E3A71, 126605A12CEC9CC07DE3050F12E43CECABEAF0D00DF12300AF70F34700F7FE8E ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
14:42:11.0924 0x119c  wpcfltr - ok
14:42:11.0957 0x119c  [ D282ECA35ADAC7A93D6B4943E775010B, A76A9698A95646FA63AC18DFFA02B744D7C6043934CBF6C37832ED2E6B21F570 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
14:42:11.0974 0x119c  WPDBusEnum - ok
14:42:11.0985 0x119c  [ 1C08E424CBDD5065BB7266F8C048C1B1, 0452C85EDA6CBAB75C2617886C5D8117ED25D91F1BE0F8377B08D55B6629B028 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
14:42:11.0996 0x119c  WpdUpFltr - ok
14:42:12.0010 0x119c  [ 2C6EEFFBB7FB1C51CCD3737C77AB9109, 8C2ED309FAF4312512E7BCCBBC51B1353603A3499077A1DE21991F0692AF1620 ] WpnService      C:\WINDOWS\system32\WpnService.dll
14:42:12.0038 0x119c  WpnService - ok
14:42:12.0055 0x119c  [ 638B43D39A3D0B47024555CF1095E6F1, C7EA0A6ED227A5256EB02CA76FEC538DF196B8DC38DA2A567757D2B221C9473E ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
14:42:12.0084 0x119c  ws2ifsl - ok
14:42:12.0098 0x119c  [ 9C17CF2D05F8DA5AC66880B6BEE64E7D, 8930079A1AFA97657BE567038EE57C988D3DE9A6C24EA46160E2974837082535 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
14:42:12.0103 0x17dc  Object required for P2P: [ 807A6636828E5F43C10A01474B8907EE ] MSDTC
14:42:12.0130 0x119c  wscsvc - ok
14:42:12.0141 0x119c  [ F517CB0182B1DA5C0E0FC6B548FF60CC, F09CA4172D611487F157973C808627F04B0CF0A71CE19D49280BFBEA4AE6027B ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
14:42:12.0154 0x119c  WSDPrintDevice - ok
14:42:12.0157 0x119c  WSearch - ok
14:42:12.0293 0x119c  [ 6E04BBE242E2889B37300C4DF5CE1126, FBDAEAC62C48A4FC5EF412AE47FF10590AE83E8871412F76F6F9BAE910542DFA ] WSService       C:\WINDOWS\System32\WSService.dll
14:42:12.0454 0x119c  WSService - ok
14:42:12.0549 0x119c  [ 3D0DE8170ECCEC20CBF205D79C535BA1, 9249A420B9024AB3B18D7E4DAC20E2080E0759C620F46D37D467DC25A77F2025 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
14:42:12.0702 0x119c  wuauserv - ok
14:42:12.0722 0x119c  [ A928F25CB62232F413EE655352856E10, 1D2B278A24DDDE8792ADE7649FF90A98E186B79F13AA296C30E4180293BE906A ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
14:42:12.0738 0x119c  WudfPf - ok
14:42:12.0778 0x119c  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
14:42:12.0808 0x119c  WUDFRd - ok
14:42:12.0864 0x119c  [ 1336DA39FE006EAB2733CA4DE5B3560C, F0D6C71ADCB66D4D14EC6D09FD43F5521A3A8CA53F248DFD01696FB4F033BE77 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
14:42:12.0926 0x119c  wudfsvc - ok
14:42:12.0950 0x119c  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
14:42:12.0977 0x119c  WUDFWpdFs - ok
14:42:13.0054 0x119c  [ 7F7591CCC146EC7D9EB77C1277D605F4, 80D6D45BD3C3C7F79BFA98B864CBFA443245416ED64C0BC16E9E7C8C5E958AFB ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
14:42:13.0152 0x119c  WwanSvc - ok
14:42:13.0222 0x119c  [ 5DFAF8BE5A3CABAABF6795BC09EB7876, 1AFD0BC50EA5C2CCB2874E97FE5205175C80849BD6C9BDAF9FBC49174D478997 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
14:42:13.0277 0x119c  XblAuthManager - ok
14:42:13.0322 0x119c  [ 7118498F6E48758A2EF5A7D1982E2B62, 1FF75AE64CB6DB263E8B35515E092B325AA71A6B2210F8F2B0AD087B3BA33345 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
14:42:13.0393 0x119c  XblGameSave - ok
14:42:13.0432 0x119c  [ F279536122B83FD0D8E158AA753E1B7C, 6A542F28E24B30DBDC2EEE24DA33C2F4ADB3596AEDDD71DC1495DD40577CE4BB ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
14:42:13.0452 0x119c  xboxgip - ok
14:42:13.0510 0x119c  [ 69E727F94BEA64E66C284F3C482F33E6, B3E0F287E7A251E0FC17C41089C45737027E54F0213BDE847356AC882B4D3700 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
14:42:13.0590 0x119c  XboxNetApiSvc - ok
14:42:13.0629 0x119c  [ DA0807D87A62D076C29C4E30F1E84F46, CA3079350038091AEE04D4DA7C06865E9DB3095120AE61AAB575AA77E86A6223 ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
14:42:13.0654 0x119c  xinputhid - ok
14:42:13.0656 0x119c  ================ Scan global ===============================
14:42:13.0699 0x119c  [ 82E25186617BA6C15010F0D47C705705, 5BF9E38918E6EAE86448137E2D120B80318AA1143CDDF539A2BFBEE227646816 ] C:\WINDOWS\system32\basesrv.dll
14:42:13.0742 0x119c  [ E2899695BD30B5F93EC626EBBEF2CB69, B190D2903A109D2C146D881F90769060A0E971942F4AA61AEAD81861032D89C3 ] C:\WINDOWS\system32\winsrv.dll
14:42:13.0840 0x119c  [ 09E92888FFF86F3334E59778724DCA6F, 2344763B52395EF565A9DE5F55BEDCA026AD2E8072FFD06F826BF366B3BA2AB4 ] C:\WINDOWS\system32\sxssrv.dll
14:42:13.0876 0x119c  [ 6FF8248F3A9D69A095C7F3F42BC29CB2, 9077B1AA0AFB8DB329FDED0E51085DE1C51B22A986162F29037FCA404A80D512 ] C:\WINDOWS\system32\services.exe
14:42:13.0893 0x119c  [ Global ] - ok
14:42:13.0893 0x119c  ================ Scan MBR ==================================
14:42:13.0901 0x119c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
14:42:13.0993 0x119c  \Device\Harddisk0\DR0 - ok
14:42:13.0993 0x119c  ================ Scan VBR ==================================
14:42:13.0995 0x119c  [ 93E7473381DC87FA7851C0F9F1A31CE8 ] \Device\Harddisk0\DR0\Partition1
14:42:14.0043 0x119c  \Device\Harddisk0\DR0\Partition1 - ok
14:42:14.0054 0x119c  [ C1E191B76AE528E74207AE627CC39021 ] \Device\Harddisk0\DR0\Partition2
14:42:14.0116 0x119c  \Device\Harddisk0\DR0\Partition2 - ok
14:42:14.0131 0x119c  [ 6DBEA23E444B72C8001697E8C89D0D02 ] \Device\Harddisk0\DR0\Partition3
14:42:14.0131 0x119c  \Device\Harddisk0\DR0\Partition3 - ok
14:42:14.0139 0x119c  [ 5F0B2DDB52E97358FC981CD8B2FD80D7 ] \Device\Harddisk0\DR0\Partition4
14:42:14.0228 0x119c  \Device\Harddisk0\DR0\Partition4 - ok
14:42:14.0266 0x119c  [ 140DE2D81264BB151B1E5E6D27DB6E48 ] \Device\Harddisk0\DR0\Partition5
14:42:14.0285 0x119c  \Device\Harddisk0\DR0\Partition5 - ok
14:42:14.0286 0x119c  ================ Scan generic autorun ======================
14:42:14.0316 0x119c  ETDCtrl - ok
14:42:14.0719 0x17dc  Object send P2P result: true
14:42:14.0729 0x17dc  Object required for P2P: [ 3E98CE04689597C76B3EF4D3D0323836 ] SkypeUpdate
14:42:14.0736 0x119c  [ 0011163AC036C71E03883DD10C626F81, CD1F55C6BC20817F69E76A2B2AB4BA30D175821A3A4EA5A34E285182584518B7 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
14:42:15.0015 0x119c  RTHDVCPL - ok
14:42:15.0082 0x119c  [ 0DCB89B1F3689BC6262FF30BBD603171, 594E6E07BC6B161469848A477F28211B70E759A8D369276810F622EE00D97783 ] C:\Windows\system32\rundll32.exe
14:42:15.0172 0x119c  Logitech Download Assistant - ok
14:42:15.0211 0x119c  [ B99D68C404A4E69FBB95E3A282091CFA, 5EAB9CF42DCB58C5067C857E79F068611AE7C4A52F06B8C5C2DD0821B6B7D318 ] C:\Windows\system32\igfxtray.exe
14:42:15.0252 0x119c  IgfxTray - ok
14:42:15.0253 0x119c  HotKeysCmds - ok
14:42:15.0255 0x119c  Persistence - ok
14:42:15.0296 0x119c  [ CC9823AA6E3F6229CD6DA193551314A5, 76BCD2BCA391C2114BF9D28FA290D9B39D16379C410070E0E3A6376FDEE51CE1 ] C:\Program Files\iTunes\iTunesHelper.exe
14:42:15.0306 0x119c  iTunesHelper - ok
14:42:15.0374 0x119c  [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
14:42:15.0447 0x119c  HP Software Update - ok
14:42:15.0746 0x119c  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
14:42:16.0035 0x119c  OneDriveSetup - ok
14:42:16.0279 0x119c  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
14:42:16.0446 0x119c  OneDriveSetup - ok
14:42:16.0597 0x119c  [ F9387D080BF8566354CDB0445AB8F87B, 4EE5D4A15E2D3DF578FA0370449C0894166B1B2998B63D9F02A994845350B86A ] C:\Users\Dirk\AppData\Local\Microsoft\OneDrive\OneDrive.exe
14:42:16.0629 0x119c  OneDrive - ok
14:42:16.0812 0x119c  [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
14:42:16.0877 0x119c  HP Officejet Pro 8600 (NET) - ok
14:42:16.0941 0x119c  Skype - ok
14:42:16.0989 0x119c  [ CC436BB2A26391F3DEBE316F6FB0474F, 2DA63827AD1449CA5F2888ADFA9645F1EAF8B39D26EC214441EE80F3A56E6E72 ] C:\Users\Dirk\AppData\Local\Microsoft\BingSvc\BingSvc.exe
14:42:17.0009 0x119c  BingSvc - ok
14:42:17.0010 0x119c  Waiting for KSN requests completion. In queue: 180
14:42:17.0490 0x17dc  Object send P2P result: true
14:42:17.0492 0x17dc  Object required for P2P: [ 7C58AFEC26E9F7730A8AA7FD40225937 ] sppsvc
14:42:18.0011 0x119c  Waiting for KSN requests completion. In queue: 173
14:42:19.0012 0x119c  Waiting for KSN requests completion. In queue: 173
14:42:20.0012 0x119c  Waiting for KSN requests completion. In queue: 110
14:42:20.0088 0x17dc  Object send P2P result: true
14:42:20.0095 0x17dc  Object required for P2P: [ 34A3EB84B2A830E6F450B8F885AE4E6E ] SysMain
14:42:21.0013 0x119c  Waiting for KSN requests completion. In queue: 89
14:42:22.0013 0x119c  Waiting for KSN requests completion. In queue: 89
14:42:22.0861 0x17dc  Object send P2P result: true
14:42:22.0875 0x17dc  Object required for P2P: [ 4CF5A1E0C4FCA956ACD6C654E2A8610E ] VSS
14:42:23.0014 0x119c  Waiting for KSN requests completion. In queue: 11
14:42:24.0014 0x119c  Waiting for KSN requests completion. In queue: 11
14:42:25.0014 0x119c  Waiting for KSN requests completion. In queue: 11
14:42:25.0483 0x17dc  Object send P2P result: true
14:42:26.0023 0x119c  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x61100 ( enabled : updated )
14:42:26.0025 0x119c  Win FW state via NFP2: enabled ( trusted )
14:42:28.0474 0x119c  ============================================================
14:42:28.0474 0x119c  Scan finished
14:42:28.0474 0x119c  ============================================================
14:42:28.0491 0x1668  Detected object count: 0
14:42:28.0491 0x1668  Actual detected object count: 0

Hallo Matthias,

vielen Dank! Ich bin sehr glücklich, dass mir jemand hilft. Auf dem infizierten PC kann man kaum noch arbeiten. Ich transferiere die Dateien auf meinen Job PC über meinen E-Mail Account und von dort poste ich sie dann im Forum.

Das FRST Log File ist ein paar Tage alt, seitdem habe ich aber nichts mehr am PC gemacht. Die TDSSKiller Infos sind aktuell - ohne Befund. Ein Update des Tools nach dem Download war nicht erforderlich.

Vielen Dank für die Zusammenarbeit und viele Grüße,
Dirk.

M-K-D-B · 07.05.2016, 15:11

Servus,

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

METZI01 · 08.05.2016, 08:42

Hallo M-K-D-B,
leider entpackt mein PC die selbstentpackende Datei mbar-1.09.3.1001.exe nicht. Man hört den Anfang eines Windows Gongs, dann wir der Bildschirm für 5-10 Minuten dunkel und das war's. Windows Defender läuft noch ... ist das eine mögliche Ursache?
Viele Grüße,
METZI01.

Hallo M-K-D-B,
inzwischen ist es durch Senken des Windows Sicherheitsniveaus und Ausschalten des Defendes gelungen MBAR zu entpacken. Im selben Moment in dem das Tool startet, kommt das "In einer Minute wird der PC heruntergfahren" Pop-up. Ich kann die MBAR Datenbank Updaten und das Tool initialisieren, dann fährt der PC herunter.
Ich werde es noch 1-2 Mal probieren und melde mich dann hier nochmals mit dem Resultat. Zur Info: Bevor ich dasThema hier im Forum geöffnet habe, ist schon dasselbe mit McAffee passiert: in dem Moment in dem die Installation startet, fährt der PC herunter. Zufall?
Viele Grüße,
METZI01.

M-K-D-B · 08.05.2016, 11:16

Servus,

wie sieht es im abgesicherten Modus aus?

METZI01 · 08.05.2016, 20:08

Hallo M-K-D-B,
leider schlägt das 1-Minute Pop-up immer genau dann zu, wenn ich nach 45 Minuten Boot-Prozess MBAR.EXE starten will, mit und ohne Netz, abgesichert oder nicht.
Kann man MBAR von der Kommandozeile aus starten?
Vielen Dank und Grúße und einem Guten Start in die náchste Woche,
METZI01.

M-K-D-B · 09.05.2016, 16:14

Servus,

was spricht gegen ein Zurücksetzen von Windows 10?

METZI01 · 09.05.2016, 18:12

Hallo M-K-D-B,
ist das unter Beibehaltung der Daten möglich? Ich befürchte nur, dass die Probleme dadurch nicht nachhaltig gelöst sind. Könntest Du mich danach weiter bei der Reinigung meines PCs unterstützen?
Vielen Dank und Grüße,
METZI01.

Zurücksetzen unter Beibehaltung der eigenen Daten ohne Erfolg abgebrochen ... Zurücksetzen unter Löschung löscht zusätzlich eine Menge der gelieferten Treiber und Programme, das wüirde ich gerne vermeiden, komplett Zurücksetzen wirft mich auf Windows 8 zurück - es ist dann sehr mhsam den Win 8.1 und Win 10 Upgrade zu machen und vor Allem die ganze Werbesoftware von Acer wieder zu löschen ...
habe ich eine andere Option?

M-K-D-B · 10.05.2016, 16:25

Servus,

da ich keine Malware sehe, würde ich die Daten sichern und alles zurücksetzen. Scheint ein Systemproblem zu sein.

Was ist mit "Daten extern sichern" und dann "Zurücksetzen" (Start > Einstellungen > Update und Sicherheit > Wiederherstellung > Diesen PC zurücksetzen > Alles entfernen)?

METZI01 · 11.05.2016, 06:05

Hallo M-K-D-B,
zwar hatte ich den PC vor ca. einem Monat schon einmal zurückgesetzt, aber ich kann es nochmals probieren. So wie es jetzt ist, ist der erst 2 Jahre alte PC völlig unbrauchbar. Vielleicht können wir nach dem zurücksetzen MBAR & co. laufenlassen, um zu sehen, dass tatsächlich alles entfernt wurde?
Das kann jetzt 1-2 Tage dauern. Ich melde mich wieder, wenn es so weit ist.
Einstweilen viele Grüße.
METZI01.

M-K-D-B · 11.05.2016, 16:41

Ok, bis dann.

Es wäre aber gut, wenn du nur Windows zurücksetzt und nicht unzählige Programme installierst, vielleicht liegts ja an einem von denen.

08.05.2016, 11:16	#9
M-K-D-B /// TB-Ausbilder	WIN10: Ein kritischer Fehler .... Neustart in einer Minute Servus, wie sieht es im abgesicherten Modus aus?

09.05.2016, 16:14	#11
M-K-D-B /// TB-Ausbilder	WIN10: Ein kritischer Fehler .... Neustart in einer Minute Servus, was spricht gegen ein Zurücksetzen von Windows 10?

10.05.2016, 16:25	#13
M-K-D-B /// TB-Ausbilder	WIN10: Ein kritischer Fehler .... Neustart in einer Minute Servus, da ich keine Malware sehe, würde ich die Daten sichern und alles zurücksetzen. Scheint ein Systemproblem zu sein. Was ist mit "Daten extern sichern" und dann "Zurücksetzen" (Start > Einstellungen > Update und Sicherheit > Wiederherstellung > Diesen PC zurücksetzen > Alles entfernen)?

11.05.2016, 16:41	#15
M-K-D-B /// TB-Ausbilder	WIN10: Ein kritischer Fehler .... Neustart in einer Minute Ok, bis dann. Es wäre aber gut, wenn du nur Windows zurücksetzt und nicht unzählige Programme installierst, vielleicht liegts ja an einem von denen.

WIN10: Ein kritischer Fehler .... Neustart in einer Minute

Log-Analyse und Auswertung: WIN10: Ein kritischer Fehler .... Neustart in einer Minute