| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Browserfenster wird schwarz wenn YT videos angesehen werdenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
28.05.2017, 14:27
| #1 |
 |  Browserfenster wird schwarz wenn YT videos angesehen werden Hallo, wenn ich YT videos ansehe wird manchmal mein Browserfenster schwarz, das betrifft dann alle geöffneten Tabs und das Problem verschwindet mit einem browserneustart. Ich vermute, dass es sich dabei um Schadsoftware handelt. Am 9.5. hatte ich zudem das Problem, dass sich in meinem Browser einige ziemlich chinesisch aussehende Seiten geöffnet haben, was aber nur ein mal vorkam. direkt danach habe ich mit Malwarebytes und Windows defender gescannt, und ich dachte, das Problem sei damit auch behoben (wenn ich mich recht entsinne sind dabei Sachen in der Quarantäne/löschung gelandet). Einen Screenshot aus dem verlauf mit den geöffneten Seiten habe ich hier: hxxp://imgur.com/a/n9p0m Ausserdem hatte ich das Problem mit dem Schwarzen Fenster auch einmal in meiner Nvidia Systemsteuerung, was mich dahingehend besorgt, dass die Graphikkarte bzw. der Treiber betroffen sein könnte. Ich habe am selben Tag als die Seiten sich geöffnet hatten mit Malwarebytes gescannt, die Protokolle habe ich hier: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 09.05.2017 Suchlaufzeit: 22:10 Protokolldatei: Malwarebytes Suchlaufprotokoll.txt Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2017.05.09.07 Rootkit-Datenbank: v2017.04.02.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: Manuel Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 331127 Abgelaufene Zeit: 3 Min., 47 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Update, 09.05.2017 22:10, SYSTEM, MANUEL, Manual, IP Database, 2017.5.3.1, 2017.5.9.1, Update, 09.05.2017 22:10, SYSTEM, MANUEL, Manual, Malware Database, 2017.5.4.3, 2017.5.9.7, Update, 09.05.2017 22:10, SYSTEM, MANUEL, Manual, Domain Database, 2017.5.4.2, 2017.5.9.3, Scan, 09.05.2017 22:14, SYSTEM, MANUEL, Manual, Start: 09.05.2017 22:10, Dauer: 3 Min. 47 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 0 Nicht-Malware-Erkennungen, (end) EDIT: In Windows Defender war die App- & Browsersteuerung abgeschaltet, die ich nicht händisch dekativiert habe. Geändert von Eneachril (28.05.2017 um 14:31 Uhr) Grund: Was vergessen.... |
|
29.05.2017, 19:34
| #2 |
| /// TB-Ausbilder   | Browserfenster wird schwarz wenn YT videos angesehen werden Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Um die Bereinigung möchlichst effektiv und schnell gestalten zu können, bitte ich um Beachtung der folgenden Hinweise:
Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Danke für deine Mitarbeit! Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Schritt 2 Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Bitte poste mit deiner nächsten Antwort
|
|
30.05.2017, 16:36
| #3 |
| | Browserfenster wird schwarz wenn YT videos angesehen werden TDSSKiller Log(keine Funde) //Teil 1:
__________________Code:
ATTFilter 17:29:17.0959 0x1bb0 TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
17:29:20.0053 0x1bb0 ============================================================
17:29:20.0053 0x1bb0 Current date / time: 2017/05/30 17:29:20.0053
17:29:20.0053 0x1bb0 SystemInfo:
17:29:20.0053 0x1bb0
17:29:20.0053 0x1bb0 OS Version: 10.0.15063 ServicePack: 0.0
17:29:20.0053 0x1bb0 Product type: Workstation
17:29:20.0053 0x1bb0 ComputerName: MANUEL
17:29:20.0053 0x1bb0 UserName: Manuel
17:29:20.0053 0x1bb0 Windows directory: C:\WINDOWS
17:29:20.0053 0x1bb0 System windows directory: C:\WINDOWS
17:29:20.0053 0x1bb0 Running under WOW64
17:29:20.0053 0x1bb0 Processor architecture: Intel x64
17:29:20.0053 0x1bb0 Number of processors: 8
17:29:20.0053 0x1bb0 Page size: 0x1000
17:29:20.0053 0x1bb0 Boot type: Normal boot
17:29:20.0053 0x1bb0 CodeIntegrityOptions = 0x00000001
17:29:20.0053 0x1bb0 ============================================================
17:29:20.0084 0x1bb0 KLMD registered as C:\WINDOWS\system32\drivers\59651633.sys
17:29:20.0084 0x1bb0 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 15063.0, osProperties = 0x19
17:29:20.0444 0x1bb0 System UUID: {794FB948-698C-7ACF-482B-5063CECF565C}
17:29:20.0725 0x1bb0 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:29:20.0725 0x1bb0 Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:29:20.0725 0x1bb0 ============================================================
17:29:20.0725 0x1bb0 \Device\Harddisk0\DR0:
17:29:20.0725 0x1bb0 MBR partitions:
17:29:20.0725 0x1bb0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:29:20.0725 0x1bb0 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3000
17:29:20.0725 0x1bb0 \Device\Harddisk1\DR1:
17:29:20.0725 0x1bb0 MBR partitions:
17:29:20.0725 0x1bb0 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D0E3800
17:29:20.0725 0x1bb0 ============================================================
17:29:20.0725 0x1bb0 C: <-> \Device\Harddisk1\DR1\Partition1
17:29:20.0725 0x1bb0 E: <-> \Device\Harddisk0\DR0\Partition2
17:29:20.0725 0x1bb0 ============================================================
17:29:20.0725 0x1bb0 Initialize success
17:29:20.0725 0x1bb0 ============================================================
17:30:22.0218 0x0440 ============================================================
17:30:22.0218 0x0440 Scan started
17:30:22.0218 0x0440 Mode: Manual; SigCheck; TDLFS;
17:30:22.0218 0x0440 ============================================================
17:30:22.0218 0x0440 KSN ping started
17:30:22.0265 0x0440 KSN ping finished: true
17:30:22.0546 0x0440 ================ Scan system memory ========================
17:30:22.0546 0x0440 System memory - ok
17:30:22.0546 0x0440 ================ Scan services =============================
17:30:22.0562 0x0440 [ AAB860A5E606B9621E130D8C29D3F305, 93466620433B27F3BCFECDA26DD420AD1E5219034BA3B4E930EDED6D6728AE5C ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
17:30:22.0593 0x0440 1394ohci - ok
17:30:22.0593 0x0440 [ 4140B14929C555E9513D59A2EEB5C471, 39A8400B3AA7FB1D8EBE87E65F89881AB23B6AE911BECAEC1FD86C7DADD4F1AA ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
17:30:22.0609 0x0440 3ware - ok
17:30:22.0609 0x0440 [ 6CE02D42183CDF31315F208AE35F153F, 89ABA07D48FADF2CFA2A5C9390479B3436229DA4C0082B0EE4B27D66D3AB3B4F ] acedrv11 C:\WINDOWS\system32\drivers\acedrv11.sys
17:30:22.0624 0x0440 acedrv11 - ok
17:30:22.0624 0x0440 [ D3DB4E3C096EFF74FB6E73E37CB66DD7, 451BE72D50D2316690910B86ACA1EBB5C0F3FE688BAB806EC94BCCB6F3798A0A ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
17:30:22.0640 0x0440 ACPI - ok
17:30:22.0640 0x0440 [ 3E5E5DAE5CAEC0209C93D3AD8128D8A0, 5CFA4D715AE8D928EA11F213C5A7B0B1C1705D2A8FF041E0A1988E645E669C54 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
17:30:22.0656 0x0440 AcpiDev - ok
17:30:22.0656 0x0440 [ F72D7CC7E7A97A09757313F3B4C7E17A, 36E3363380C51A2DB58D3177655A0A75DAA977C00C5A9C60A189068C0AFDC643 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
17:30:22.0671 0x0440 acpiex - ok
17:30:22.0671 0x0440 [ F04B6F53FBDB2B6B0451AE53DE19F0C9, 41A8C314A46867BAA45CD9666AAF734AD45B74E2033A8E66D93E17CDDAD66578 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
17:30:22.0671 0x0440 acpipagr - ok
17:30:22.0671 0x0440 [ C347A6095F3BE417D24F1E1349F4AF0F, 72C9D759BB132985AF55860658DC01F08590A2BD7E976FCF25E1314C5AA1D37B ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
17:30:22.0687 0x0440 AcpiPmi - ok
17:30:22.0687 0x0440 [ 686BFFC47454DD2F58795C2EE891CA9F, 6CC4B6679914742D700A8373DED2DD9A821CA5284D4D73493BA0855DB8E6520A ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
17:30:22.0687 0x0440 acpitime - ok
17:30:22.0702 0x0440 [ E6A1D864EC90F4397DF5AB2633B34DD4, 05F1B7291EBDD9CA1D74649C0DAFCBE5F2CF93E92C5CA16A8AC10B6DF83101A0 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:30:22.0702 0x0440 AdobeFlashPlayerUpdateSvc - ok
17:30:22.0734 0x0440 [ FBDA59118E59B3722248C66BAD89CAA9, 11AB83499757E3143834348DE39E85D56EC853071C96337C3ADD8A1E374C6CBC ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
17:30:22.0749 0x0440 ADP80XX - ok
17:30:22.0765 0x0440 [ AC1928C2F7505BD556C552F153B062AB, B48EA30F76DEA57868CA74CC775DD60257021A3DE10CE101B8BEFA1CE9D22CF4 ] AFD C:\WINDOWS\system32\drivers\afd.sys
17:30:22.0765 0x0440 AFD - ok
17:30:22.0781 0x0440 [ 1D914C996F2C3134E2344BB74F79BCF6, D27AF01BA29784555AF7D2E89A3A65E81D6AFE1D3C7E8F9367F06D9DF5F88069 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
17:30:22.0796 0x0440 ahcache - ok
17:30:22.0796 0x0440 [ 41856B40EE15F96DEC8755AB01FA3CF7, 33C3C899AF9CA15BE5A4CF097FF43DF3F0DBA0E48B6F1E28AE3E76AD76A1C361 ] AJRouter C:\WINDOWS\System32\AJRouter.dll
17:30:22.0796 0x0440 AJRouter - ok
17:30:22.0796 0x0440 [ F485CA5559DB37A4882467A4F7D58BEA, A1C648EFE12A5A3356BC0949372ADD0FF0CA2F5A8F992EB71C87E9C0D5C92BB2 ] ALG C:\WINDOWS\System32\alg.exe
17:30:22.0812 0x0440 ALG - ok
17:30:22.0812 0x0440 [ 9C39FBA94FFEF04561D13ED0D1B50DD0, 53FA118DEF37F0BA6030B9CB4C17019E6B5934941514756D66143B7BB66D7CA1 ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
17:30:22.0827 0x0440 AmdK8 - ok
17:30:22.0827 0x0440 [ 395D56FA2E22A10AE4774440D086F559, 24D7CBE9B82DC8900D9A5E345347FEC330D47FDBD1517A2AC10218BA2A9DFAA9 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
17:30:22.0843 0x0440 AmdPPM - ok
17:30:22.0843 0x0440 [ EB729A9ADCB9F9C406B533F95E2F67D4, EDCB8E39C503FF30ECB82F368242179E2788C12B4FD9B557F38380A934E7D8E7 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
17:30:22.0843 0x0440 amdsata - ok
17:30:22.0843 0x0440 [ 3B5C5C696F33FE61F1922533B03B9316, C9BAAA9B02547C66A276A31958DFD2A289C5963A4EE3FF306535565240D816CC ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
17:30:22.0859 0x0440 amdsbs - ok
17:30:22.0859 0x0440 [ A7D45A303FF8A9493C96C4B804051E6E, 6074C264876A398039D3F89905A486ABA5BDACA038B79920A34323B38CFCB358 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
17:30:22.0859 0x0440 amdxata - ok
17:30:22.0874 0x0440 [ C7F9F91698572CF9EDC18EDDE345BF97, 07C02E275686C2AB165EF37825F6D63AA9AAC08FD29878FEF665353DF0C7D23A ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
17:30:22.0874 0x0440 AppHostSvc - ok
17:30:22.0890 0x0440 [ 5180537517C27375B1F2CB37ED599FAF, 121BF0E3BDE068CC1E1E9B24DC334BA29348725E9BFB790699E4CC66664A4C3D ] AppID C:\WINDOWS\system32\drivers\appid.sys
17:30:22.0890 0x0440 AppID - ok
17:30:22.0890 0x0440 [ F7FEBF66A705F18DC063DFD259F15102, 394DA8A7355573C4D81C375450DF5C5B2FA6360E246B06FDE8E7F9ADF21360FA ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
17:30:22.0906 0x0440 AppIDSvc - ok
17:30:22.0906 0x0440 [ 13D7FEA71091D1EAD8ADDD10BFFEA06D, A707CAC76CBF0334E2FCE3220147B382F5E44DEF9E23DD459CF7C40F27771695 ] Appinfo C:\WINDOWS\System32\appinfo.dll
17:30:22.0921 0x0440 Appinfo - ok
17:30:22.0921 0x0440 [ EAF36A714E16A69B8B4ED7591CBA77B6, 11FE2A5D991FB8AF78F4E78FB6DF02005EC5404DC298FE2D4E7774BB0011AB52 ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
17:30:22.0937 0x0440 applockerfltr - ok
17:30:22.0937 0x0440 [ 82432C4D8E83A94C7644A61697113B4A, 97105B0089A1E02484B202AC58610A5DCFFF6F64402B67F9E8B6FF3A0FDB6E26 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
17:30:22.0952 0x0440 AppReadiness - ok
17:30:22.0984 0x0440 [ EAE1B6D86D661BFC494A3975583F722C, 9F6C4254B62299DAE712B9B6447CF5F6D69B529FE736427D79C2327F5B022670 ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
17:30:23.0046 0x0440 AppXSvc - ok
17:30:23.0046 0x0440 [ 6E456A94B9BD7F6B4758729BCEDE40C3, 2F3146AC960992FA947A8E8C4D5497624A5BC69B7A3EECA117AD599C70DDE8E3 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
17:30:23.0062 0x0440 arcsas - ok
17:30:23.0077 0x0440 [ BBF8F831C7720DD5135D8C4C8325187A, 2630C68200D7BD49A5772830D6B369C0EC337C2558A9562DD564DF042249ECC0 ] asComSvc C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
17:30:23.0093 0x0440 asComSvc - ok
17:30:23.0093 0x0440 [ 798DE15F187C1F013095BBBEB6FB6197, 436CCAB6F62FA2D29827916E054ADE7ACAE485B3DE1D3E5C6C62D3DEBF1480E7 ] AsIO C:\WINDOWS\syswow64\drivers\AsIO.sys
17:30:23.0093 0x0440 AsIO - ok
17:30:23.0109 0x0440 [ 6FCFBDF7D820CEB7426D988FA6E3DBA2, BC5C0564AB565F911FC99AD3D8C8FDA61E73BA4387CAAE3AE172DD443C56E617 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:30:23.0109 0x0440 aspnet_state - ok
17:30:23.0124 0x0440 [ 37F7DD839A711B5706B1264F4D8D4BDC, C949A7BB236C6C03E197EF7F9A6DF53E34EC35D925034351B5FD5D7DB62A770E ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
17:30:23.0156 0x0440 AsSysCtrlService - detected UnsignedFile.Multi.Generic ( 1 )
17:30:23.0218 0x0440 Detect skipped due to KSN trusted
17:30:23.0218 0x0440 AsSysCtrlService - ok
17:30:23.0218 0x0440 [ 766F3A7E42AFCF74265FAC78987D1665, 8FE82913DF5CF79B49B28B3CD782AF09FF30585A37473AE3E518A26C5D6453D0 ] AsyncMac C:\WINDOWS\System32\drivers\asyncmac.sys
17:30:23.0234 0x0440 AsyncMac - ok
17:30:23.0234 0x0440 [ 01733BEEE02E51F712330D5909BD701C, A583B482DBE701A752EDFDEAE2EF16D7160DFEA6077E0C8EF013828E285D960A ] atapi C:\WINDOWS\system32\drivers\atapi.sys
17:30:23.0249 0x0440 atapi - ok
17:30:23.0281 0x0440 [ 8FF48F1C894EDC6AA55CCF01AE1338EC, 446654CC72062061F2F80DEAA30C4F575B34BAC31D50C174F4DA20B7ED2D13C7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
17:30:23.0296 0x0440 AudioEndpointBuilder - ok
17:30:23.0312 0x0440 [ DCD20FAF0485C59032397DA2F93746AE, BED193535533E7264FD29BC0AE1BBD6F97EA92FF117EF4A527B0677E630B94EF ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
17:30:23.0343 0x0440 Audiosrv - ok
17:30:23.0359 0x0440 [ 6086B5EE0DA4600B2EC2725D82DEB74E, C67CA7021D710CFDCF62B17A2B2890E61E4F1E3D956312688454FD85738C303F ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
17:30:23.0359 0x0440 AxInstSV - ok
17:30:23.0374 0x0440 [ 0914A5E66C0775CE11960452A6434FEC, 978C1E20023841FBFEF0CEAFE09EDB679612C8E5986C6E40C1F6D0835112D13E ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
17:30:23.0390 0x0440 b06bdrv - ok
17:30:23.0390 0x0440 [ F8129321B1874D4386F7FEB754BC3380, 7264E7E2A339E456C0A1A40FDFAE0D202905467400B93FA0700498B86172337F ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
17:30:23.0390 0x0440 BasicDisplay - ok
17:30:23.0390 0x0440 [ CFD199354CC01F5857F3F27BC1BA2DBE, 8C3173A28EE11CE62789DC86F2DA56944478015ECB1BA02E1AFFDEDF5280373C ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
17:30:23.0406 0x0440 BasicRender - ok
17:30:23.0406 0x0440 [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
17:30:23.0406 0x0440 bcmfn2 - ok
17:30:23.0421 0x0440 [ C3B27514035315E3C1FCE64E69E253ED, 03AF100927077AD608C5EA47A17081CEA849F44C471AF978F410B83E2ABA5AE7 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
17:30:23.0437 0x0440 BDESVC - ok
17:30:23.0437 0x0440 [ ED03D2ACE378C9EB8BB957ABBD85B951, E9AE3025DC4956B736651B20AEA665909C2B468F9AE3E317F545DD4EEEA7D9E8 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
17:30:23.0437 0x0440 Beep - ok
17:30:23.0452 0x0440 [ 1FDC6CB56572203E6F4BF4E3FB30B886, 81D5C77C823DC078EEEB2DABEE5203D542C824E04FEDD96AA58F96037C065155 ] BFE C:\WINDOWS\System32\bfe.dll
17:30:23.0468 0x0440 BFE - ok
17:30:23.0484 0x0440 [ 5C0D4DBACB90D9ECE77907F4F6CF9EF6, FC29F03FB7E58A9ED17A34BC2D8E39533070B8B23D1A110622C3A213BF48CD2D ] BITS C:\WINDOWS\System32\qmgr.dll
17:30:23.0515 0x0440 BITS - ok
17:30:23.0515 0x0440 [ 2342B8619193B0D9FAC0D02C69DCE74A, 06A1512C9750ACD154DE8873DE6628355B7195759CE54FA96097EA6D56BE320E ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
17:30:23.0531 0x0440 bowser - ok
17:30:23.0546 0x0440 [ 04B27B2DE2981E79E078FAAC3AA8748F, 716F00D507D37CC549BE665D957186F2CF7B2B8C9B959B0FE8D01EBED2F154C6 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
17:30:23.0562 0x0440 BrokerInfrastructure - ok
17:30:23.0562 0x0440 [ 9C7F445B018AB4744B6E0C657B5D1833, 83D04F5E3D4BA46BBD8A67764A60F5731F86B0BE3A85C2858E002ABCC362F592 ] Browser C:\WINDOWS\System32\browser.dll
17:30:23.0577 0x0440 Browser - ok
17:30:23.0577 0x0440 [ AF57F0B0E284BE06860A7B701341324D, F94E44C777FDC049158B7BF73DAFCDB103D08493AC898D1C928771650F664412 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
17:30:23.0577 0x0440 BthAvrcpTg - ok
17:30:23.0593 0x0440 [ 729CC10B1658178F0F009FE0E9159281, B0F692CAB2BE47415C8A8CCCE8D53CDDF2B70518536ACF91CF96D74ADD04AF9C ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
17:30:23.0593 0x0440 BthHFEnum - ok
17:30:23.0593 0x0440 [ 336A9C0254A0178ED50281B6EDF5B836, C9C454C6EC4FF5897B1873A7E90D1CE8122E43783E978A570CEA75E15F65DE97 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
17:30:23.0609 0x0440 bthhfhid - ok
17:30:23.0609 0x0440 [ D8428BEF4033C7BFCD981074E2318F89, 9C0692F8387BAD94CCA4E36B59701A7A7B8FDCB5377B4C2CA75424583835E112 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
17:30:23.0624 0x0440 BthHFSrv - ok
17:30:23.0624 0x0440 [ 5428242193611BF91DDBF4F58900A55A, 91D59B0D0C7CA3DBBA8CA7CAD1E24845A224F451FC1880BE8CB7C1585AC79080 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
17:30:23.0640 0x0440 BTHMODEM - ok
17:30:23.0640 0x0440 [ 6927D295017E9F1A5D655A8F3A122672, 4B686C93056924580390440B49C721BD9039D5C972994D8EA96CA848B786B693 ] bthserv C:\WINDOWS\system32\bthserv.dll
17:30:23.0656 0x0440 bthserv - ok
17:30:23.0656 0x0440 [ 102CAA11BA89290D48FBFD2E04274BA0, 9C6786AD6C8BE5AF7538BAD553C401B0D7443E533CDE59E975CF3E07EF262F0C ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
17:30:23.0656 0x0440 buttonconverter - ok
17:30:23.0656 0x0440 [ 029434AC0A3935F9125ABBD08BF7C30B, 742338B882488CA83F502ACEBFEDC2783B8D9D6C391FE1088988276315A065F6 ] CAD C:\WINDOWS\System32\drivers\CAD.sys
17:30:23.0671 0x0440 CAD - ok
17:30:23.0671 0x0440 [ 307AE8BC9B45772DA02FB952A1D86C35, 4983AC71C8E164D9E6669D345925B4FBEDD0A0A4566887E7ECC56C996B66DBD4 ] CapImg C:\WINDOWS\System32\drivers\capimg.sys
17:30:23.0671 0x0440 CapImg - ok
17:30:23.0687 0x0440 [ B6E5AD7C83A5254DEE9D86023C0E5A81, 40F297406A025378A6273535475C1FF8C99BC6502B17C0E161131DA754D7974B ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
17:30:23.0687 0x0440 cdfs - ok
17:30:23.0703 0x0440 [ 00C7849679FCF4AE8DA78DC16BDDA369, CCEDC195D5D9512BA9E50FF586CB4B7AB9AE7091E71A24D46A934E97D84DFEBD ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
17:30:23.0734 0x0440 CDPSvc - ok
17:30:23.0734 0x0440 [ 618DA70D0D90DF3602259C1B121794DD, D2AF7967DE38F3B7C10824A1C900A145F45C57C0F179753A85989406600C4279 ] CDPUserSvc C:\WINDOWS\System32\CDPUserSvc.dll
17:30:23.0749 0x0440 CDPUserSvc - ok
17:30:23.0765 0x0440 [ ABE77AD954BC3D72F559CF0C381E50BC, D0F24B023D7CADD4893AAF223A9BAC00B2C58D552E0C314B506C01767FB74133 ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
17:30:23.0765 0x0440 cdrom - ok
17:30:23.0781 0x0440 [ 0EC94DA356D89CACD89B6E139E4D0A7D, 2F887681FDD5AB787154403E34623B1DFB61C70DAE5E2BFF1565E100F228870B ] CertPropSvc C:\WINDOWS\System32\certprop.dll
17:30:23.0781 0x0440 CertPropSvc - ok
17:30:23.0796 0x0440 [ 05EA22CFC40EDE05BF6E3BC782E5204C, F0C9C692FC31387E9D19426D3253317B6BA86D7118E3884C11E3287695006443 ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
17:30:23.0796 0x0440 cht4iscsi - ok
17:30:23.0843 0x0440 [ 863E1C9F6750446DFB9EDCAEC3531367, 88C5EE76FD85640EB1440DEFC7B6CB918E18DC09507BA91FAE285370B8C7D56A ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
17:30:23.0874 0x0440 cht4vbd - ok
17:30:23.0890 0x0440 [ 3E416539352B007AD0610BF34AC15D31, E2041129770B24AE95C5EC4B507477C72DFE8CB08D412E2621BF67207F9DEB8C ] circlass C:\WINDOWS\System32\drivers\circlass.sys
17:30:23.0890 0x0440 circlass - ok
17:30:23.0890 0x0440 [ 616E1ED94FA7F96D429D985FDB203D2E, EA681C442AA0F7D424C8DABD8D1C14653E61BDE740C0BC4C6C308B5FB4FE67AA ] CldFlt C:\WINDOWS\system32\drivers\cldflt.sys
17:30:23.0906 0x0440 CldFlt - ok
17:30:23.0906 0x0440 [ 96C01F97576D2542FCBD28E13C8CC6A1, 98E2501197B97399EB1F7C8AA96B5696931736E44400314E768A6C029B9E1C62 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
17:30:23.0921 0x0440 CLFS - ok
17:30:23.0937 0x0440 [ A5CA2992D42DB271DF933F49676E57DE, 7CC6B2908D9E2EDF848949C78433FAEC5526AE38307D095AA0EC66BFC45AEE3A ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
17:30:23.0953 0x0440 ClipSVC - ok
17:30:23.0953 0x0440 [ 5118CFC33BBB51C7E3ED441B7085AD26, 8D33864FF750926C4B95827FFAD24C558DE8A90FC5B2663084DEAB5ADBBFAFD2 ] clreg C:\WINDOWS\System32\drivers\registry.sys
17:30:23.0968 0x0440 clreg - ok
17:30:23.0968 0x0440 [ 232F3A3AC3A2FB32C5C46503A6517073, 9E0232E095471E6C8825E870F5842838F1AE515E56410F6A5CC3D58A9A4AF33A ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
17:30:23.0968 0x0440 CmBatt - ok
17:30:23.0984 0x0440 [ 3413CE81E02C091F33C4C3DD3071630F, 4758A2BB2FD453E9867C04CC420D12B279BB97E3C4E664A7058EA5F1EC63D04C ] CNG C:\WINDOWS\system32\Drivers\cng.sys
17:30:23.0999 0x0440 CNG - ok
17:30:23.0999 0x0440 [ E1BFF774FF67CA951A5DFF0E104FB132, 68809C4B72C54CEDE3AD33F5634E15A0225A67B391F9012EC7CEBA8AFC6EC3D5 ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
17:30:23.0999 0x0440 cnghwassist - ok
17:30:24.0015 0x0440 [ DFDAEDB857BC18764F0D8ECDCC3C1499, AE12E908BAF53C605A17A9FB1AFD6BFBEC75EBE45D893541281473C197C71FED ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_de4c68ea4fb1be53\CompositeBus.sys
17:30:24.0015 0x0440 CompositeBus - ok
17:30:24.0031 0x0440 COMSysApp - ok
17:30:24.0031 0x0440 [ 04532711732BE9DBC364E88E4A9EC18A, FCEB1F486E146A3FE7307397C1EB6760BFD8A327545F81C546F7134B08615B9E ] condrv C:\WINDOWS\system32\drivers\condrv.sys
17:30:24.0031 0x0440 condrv - ok
17:30:24.0046 0x0440 [ D734EBC7E66D82D543C874ED1FE9B40D, 8381E7B619BB36A1896C2A472AB830B775F317BE6ABDE98E4F943337C21930E0 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
17:30:24.0062 0x0440 CoreMessagingRegistrar - ok
17:30:24.0062 0x0440 [ 1F7F1A15B807BC7B241BB2FEEA79BC92, D756E2247757C274F3470B46FCDBB63317C05E8E66FDA9DB7ABF3A6820933D4C ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
17:30:24.0078 0x0440 CryptSvc - ok
17:30:24.0078 0x0440 [ 994A369A2DFC62ADED1226C70F69D20D, 916AF63ADD92362F5361902AB4C1507086EAB8839BEC10DB65CDE0AAB20681DE ] dam C:\WINDOWS\system32\drivers\dam.sys
17:30:24.0093 0x0440 dam - ok
17:30:24.0093 0x0440 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
17:30:24.0093 0x0440 dbupdate - ok
17:30:24.0093 0x0440 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
17:30:24.0109 0x0440 dbupdatem - ok
17:30:24.0124 0x0440 [ 85E71BD98A72996A00C71EB7B537A631, 7ECCEF0CF289DD0649F1A9F176F8631BBE0D043723D368E13F26FA7C49A82D6F ] DbxSvc C:\WINDOWS\system32\DbxSvc.exe
17:30:24.0124 0x0440 DbxSvc - ok
17:30:24.0156 0x0440 [ 0E79A4C76CAAA0CFE9CA42C13E5AA086, C4D90EDA54216CC7897128D39517E4E18195BF28254796C6D0684E2C7DB90642 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
17:30:24.0171 0x0440 DcomLaunch - ok
17:30:24.0187 0x0440 [ 1175E107082287A58A756239F48E1A73, 0DB2017061D94FAC95CEBD7C4729E42018A92698D72CEE3EA412A9D14DB8D552 ] defragsvc C:\WINDOWS\System32\defragsvc.dll
17:30:24.0203 0x0440 defragsvc - ok
17:30:24.0218 0x0440 [ BBCAC50027D030E07EC7E5C36469FAFF, FEF39659F21D2AE676E4882FBAF5A881C534BB7EA26E5EFF9F7B5F8B952D6532 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
17:30:24.0218 0x0440 DeviceAssociationService - ok
17:30:24.0234 0x0440 [ A2BACEBAC01BE7A6656B454E75C23262, C2C168718A341D48679AC4CA8005BD06E9F1F0D1F7C72D3C30A7A8CE1F665A43 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
17:30:24.0249 0x0440 DeviceInstall - ok
17:30:24.0249 0x0440 [ 5B84093D490A6B060C8BE60BA52C876F, D34A854418A66529B18313A50E6D7EAB982611AD9AB0335245AE764FE0602C22 ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
17:30:24.0281 0x0440 DevicesFlowUserSvc - ok
17:30:24.0281 0x0440 [ F08F70BBD833BAA3BF0D5E500CBEE6CC, 8BB99E6D96CB8B25036549030986EC267C26BF1FC66E4EB00A3E41FE3BB5DE70 ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
17:30:24.0281 0x0440 DevQueryBroker - ok
17:30:24.0281 0x0440 [ 185A4519B7764F4DEF714D890A7A9FD2, 9805D9DB42D11582583EA3F0FFEE9EF2B0C536DA99A9A3D3863B2669B1CC34A7 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
17:30:24.0296 0x0440 Dfsc - ok
17:30:24.0312 0x0440 [ BC5188B3F35BB8070888441A2A740465, 05C18A3DC1BD96C6751E76DBF57C47E526A1F9DF5E013B20B69EA0159CD6CE56 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
17:30:24.0328 0x0440 Dhcp - ok
17:30:24.0328 0x0440 [ 5DF493C7954890EEC65CC2A21D479F76, 67087AAAC2AF93F265077AA392444E32DC299918A843A8AECFBE73636A5F2314 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
17:30:24.0328 0x0440 diagnosticshub.standardcollector.service - ok
17:30:24.0359 0x0440 [ F38183343C14B0C0BAB900640652257F, 2C42D206A552A527097BF586F338D89252B6F90044A54322757A4B74644E66E1 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
17:30:24.0421 0x0440 DiagTrack - ok
17:30:24.0421 0x0440 [ 1203EA16F36C5BEB2509FB7CC03DC178, 195209CB711E5BDE24A50C88AA62F32E8AE26F6A83B423374FCA41444F55D1CE ] Disk C:\WINDOWS\system32\drivers\disk.sys
17:30:24.0421 0x0440 Disk - ok
17:30:24.0437 0x0440 [ 626E3564A7588139DE2367E14F8CAAB2, 472530B6DD70F4A5E61A8572B0479A6DF3BE8B4DD1E021BF00D05B3553927463 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
17:30:24.0468 0x0440 DmEnrollmentSvc - ok
17:30:24.0468 0x0440 [ 038B8B76284BC291EC75B005BB3EB13F, FE7BD7CF833C4A96ABF4FD6EBAB829CC4D8096780A22A313035D7E49BBA12D36 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
17:30:24.0468 0x0440 dmvsc - ok
17:30:24.0468 0x0440 [ 32C76DFE2586EBECFFA4112E9196591C, 190C294F50B96B13D0B776F7C19DCB47EAACBEE999CBA50236CF8C856CF38B17 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
17:30:24.0484 0x0440 dmwappushservice - ok
17:30:24.0499 0x0440 [ FC3AA34608A69BDAC67E31FB70C8A720, 38815F527DF963B4A7D93895776DDD618BD29782B1FA74EB1A7319AE58739A06 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
17:30:24.0499 0x0440 Dnscache - ok
17:30:24.0515 0x0440 [ F08CB37830A1F9950E8B2F7B1F78CC7E, E4E75645893597F6A02B98DC4F126A664F5DEF7B1CD4C2DEE5CA8ED18DB64C9C ] dot3svc C:\WINDOWS\System32\dot3svc.dll
17:30:24.0531 0x0440 dot3svc - ok
17:30:24.0531 0x0440 [ 3425E26D0A7792F2EE7745C0336C2062, 54A3AFFC31C2641BCE1877F2CBA61D2CD7191BA39FD5B3659491E4E307570C1E ] DPS C:\WINDOWS\system32\dps.dll
17:30:24.0546 0x0440 DPS - ok
17:30:24.0546 0x0440 [ 3D934A1C02EB6979CF45C70A71F580EC, 279B325E18ABF82FF523095D8D5958A3A48C7B7A4F64BD562DDED1D0662B608A ] drmkaud C:\WINDOWS\system32\DRIVERS\drmkaud.sys
17:30:24.0546 0x0440 drmkaud - ok
17:30:24.0546 0x0440 [ 5E92CB292D676634058E6C62653C9227, CE35C51B444664641306B4C2E21978B3418B58B2A973B19B908D86FE723FB4C4 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
17:30:24.0562 0x0440 DsmSvc - ok
17:30:24.0562 0x0440 [ E479C2656A3A47F5D4FAD10AE6EAED52, B17D18D5440CF131EEADA385989A8ED0DB7728CAAC4E745720947DD1BC4F9EF6 ] DsSvc C:\WINDOWS\System32\DsSvc.dll
17:30:24.0578 0x0440 DsSvc - ok
17:30:24.0578 0x0440 [ 682D7DF9704217DD8716307F9E2EEC05, A8D36414A7316C59995CF9689DD84B2FD3FECE47E39F515C81BC3C439890E993 ] DusmSvc C:\WINDOWS\System32\dusmsvc.dll
17:30:24.0609 0x0440 DusmSvc - ok
17:30:24.0640 0x0440 [ 5FB6528EC95A2E83AE71005108C03D2B, F419FEA6679B59C5993235875C7857E8D960CDDC47E69EF08B20B6774FB08A45 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
17:30:24.0671 0x0440 DXGKrnl - ok
17:30:24.0687 0x0440 [ 83E4A14F851341C933C3235BFB882ECA, 152EDEF6B566D010FE519FE4B046050A5281069B48AFF8A2395D7D2BD0519701 ] e1iexpress C:\WINDOWS\System32\drivers\e1i63x64.sys
17:30:24.0703 0x0440 e1iexpress - ok
17:30:24.0703 0x0440 [ ECA1628436628362856ACF239E6AFD29, 19051DC348918B863E0A272CF56891B8CB49E7E705B8BAC7663D36C797A7B962 ] EapHost C:\WINDOWS\System32\eapsvc.dll
17:30:24.0718 0x0440 EapHost - ok
17:30:24.0718 0x0440 EasyAntiCheat - ok
17:30:24.0781 0x0440 [ D64CD3AE93125EDA383190C2AF607E70, 3D180B96C6A2318842FA03AE5F703320A93CF1F440FF7D0E6F6F9BAD98F2FA02 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
17:30:24.0828 0x0440 ebdrv - ok
17:30:24.0843 0x0440 [ EABFCDA6E996F8A32DC1B302F7683BB2, 5FF2BA89D9A7BDE78C40866F15EC576527699ADD0F120E1A8388C4404A69F0E8 ] EFS C:\WINDOWS\System32\lsass.exe
17:30:24.0843 0x0440 EFS - ok
17:30:24.0843 0x0440 [ FFBB37982E6D24AEC7A2E5459098EAC9, E89DD74540088ECAC9E802D7A059C0A6E3E5412BD42E5E9F26258724458EF8DB ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
17:30:24.0859 0x0440 EhStorClass - ok
17:30:24.0859 0x0440 [ ABF38D02E01D6ED87AE1DF65FC5DF62D, 57D48609DA30F60016D2ADEB9A772942FB39A117247EB63FAE3FCF50D726B698 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
17:30:24.0859 0x0440 EhStorTcgDrv - ok
17:30:24.0874 0x0440 [ 0910A2954D7053537495DFF981177ACC, 9A70B599B02C67E3E3EC4FA10D76ABABA614B8CC224965B8F9479E13E68019A1 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
17:30:24.0874 0x0440 embeddedmode - ok
17:30:24.0890 0x0440 [ CA966CED8970A60FB00A3592564EF093, 4BD904032445235EE69DAA0024E0FB3D8B2325D897A683E334754EB3CA90AB39 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
17:30:24.0906 0x0440 EntAppSvc - ok
17:30:24.0906 0x0440 [ B9A59B4AD516E38C39FA416398B96CCB, 4630A9AD414476B47F634F2EB5659597797222A8938B68847B97FECCE1A1B5F8 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
17:30:24.0906 0x0440 ErrDev - ok
17:30:24.0906 0x0440 [ EA913DC8671CCCDEB9780A5FF6A7B00E, C27F350CEC748F229DED2EF8D6D4B151A6A6B82F9E087A8DF028AA19F1E1BE0A ] ESProtectionDriver C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys
17:30:24.0921 0x0440 ESProtectionDriver - ok
17:30:24.0921 0x0440 [ 1541374239F33512D7F4D24ED1E9238C, 8B1548D4052A72175EB6ADA9FD4286ACD5041E1CE071DCAC3760BB227FCD3621 ] EventSystem C:\WINDOWS\system32\es.dll
17:30:24.0937 0x0440 EventSystem - ok
17:30:24.0953 0x0440 [ 9C4D88E8614487AD85A6F18A71A7298F, EE6F48C89D6379C7361484EAE7C7FAAA477D48032BFDD0D363E48642E62EADF4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
17:30:24.0953 0x0440 exfat - ok
17:30:24.0968 0x0440 [ 8F51A5633DEB18DBC8B1C117B42B23D7, C45FEE32C5AB67CEC86AB1388AC2E3508AF5811D8B8A204AAC8E5DC42C749A2C ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
17:30:24.0968 0x0440 fastfat - ok
17:30:24.0984 0x0440 [ ECC5AEFEA31F1A078E954305B8CA6373, 15948D017E3B52D3B4BBEC047F963BD77247E24A59F0532B6A023B0C4159FC84 ] Fax C:\WINDOWS\system32\fxssvc.exe
17:30:24.0999 0x0440 Fax - ok
17:30:24.0999 0x0440 [ 853081957BA148F38FD8DE4390CFCF4A, 37C92C7ABA55A5FF7094F77F8EBEEE1F4BEE161CEC6B01A50FC0D0C39E36C142 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
17:30:25.0015 0x0440 fdc - ok
17:30:25.0015 0x0440 [ 885C06C35CC8FAEDDE3CDA36B72CA2A9, FF6584E7AF2FB540B2183665C3E216BE98DE953CEA6A7E4C5F13514BE4AAC9D3 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
17:30:25.0031 0x0440 fdPHost - ok
17:30:25.0031 0x0440 [ 367E878C79D9F391E3D53B6BBC1B6386, 739D89F6954E17B73F53702CFF8EE985FB241255D962A83BAF1A20E783CAF466 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
17:30:25.0031 0x0440 FDResPub - ok
17:30:25.0031 0x0440 [ 514F6A0B83527DD6ACCC8B21A57B10E3, EA3D401E42D05BA39E5874513DFB895A086BECE4D69FC1AC12F85F326A435A4B ] fhsvc C:\WINDOWS\system32\fhsvc.dll
17:30:25.0046 0x0440 fhsvc - ok
17:30:25.0046 0x0440 [ 27E764D6460504B7271AFECE7A59FB76, A32B08142068BF042B3E47C0CA7F4FCFD07A37807B1B8DAAE614F3A132475D52 ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
17:30:25.0062 0x0440 FileCrypt - ok
17:30:25.0062 0x0440 [ 3D6087F51110F3CC0DA89385354F8C5E, 49FF976C3391A257BCD4B048BF6D1273F8537005E32D65E5F272AF3294639F05 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
17:30:25.0062 0x0440 FileInfo - ok
17:30:25.0062 0x0440 [ 057E95E53C38260C4EF49B3A077770CD, 7008E71663046FF1D91D9DC3570094561C812067E1CA07715A1D2E4F787207AE ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
17:30:25.0078 0x0440 Filetrace - ok
17:30:25.0078 0x0440 [ 90B2983D8495C26345A1DC5F0C3BB07B, 50D834D40C27EEF5023556A77B13D3335789333E302A73DF221CD86D156FDEE9 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
17:30:25.0093 0x0440 flpydisk - ok
17:30:25.0093 0x0440 [ A84261F75F490E45CFEDBA77EFE4F67E, 292BA04D8996140255E4B6105015C2A640890BEFB6C022E30E0D9CBF45D5F4DB ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
17:30:25.0109 0x0440 FltMgr - ok
17:30:25.0124 0x0440 [ 3B42FD3CCD1E7A6A192B88284B0CBA4F, 2ABD147A845AAD109F1E27258D60E4AE7AB582F303A821436CFF17645AE8F6D9 ] FontCache C:\WINDOWS\system32\FntCache.dll
17:30:25.0171 0x0440 FontCache - ok
17:30:25.0171 0x0440 [ B282011D13BBEEA0273DF33C5E776D55, B4AF068BBB09D0F546F5590FCDD745250CFD58DD3A8ABF5DC26670FA32D181FB ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:30:25.0171 0x0440 FontCache3.0.0.0 - ok
17:30:25.0187 0x0440 [ 8E0A89C8BC29F4B066B1DA4B96A63609, 1F4ABEC209ECDCA20620C7D7DB0C407F8D1032D506259B11FEAF2A0C3E14B1A3 ] FrameServer C:\WINDOWS\system32\FrameServer.dll
17:30:25.0203 0x0440 FrameServer - ok
17:30:25.0203 0x0440 [ D2814848206DFC18EB8D3D069FAE703E, A62263CDF9261B692423473F4FF23B01AC864C05850BA5591EB9019906B4A08B ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
17:30:25.0218 0x0440 FsDepends - ok
17:30:25.0218 0x0440 [ AE7EDF845F41ACA3B74567C3CE20E987, 6159C227C85912B03D8C35A1EF91705AE6C1C23C7228D6FCC0A9529844798E1B ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:30:25.0218 0x0440 Fs_Rec - ok
17:30:25.0234 0x0440 [ FF0699483185CE3B4E1144DF19AC5E97, 9BA0A2F04A1A51AFC3B830452AC75BE2D76300BAF1918BCF5AB60E4EB9888F0F ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
17:30:25.0249 0x0440 fvevol - ok
17:30:25.0249 0x0440 [ 6ACC5295F62A34871056637F8D6A1471, 40B67D16BC1C5613F8A685FABDCDCD2EA87383BA8EA0329BE426965BFAB1E2DA ] GalaxyClientService C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
17:30:25.0265 0x0440 GalaxyClientService - ok
17:30:25.0374 0x0440 [ CB8157B535DA674CA6CBEBE7E3BD5268, 1028FDA5207E9CF412BB0B1F0B984FEFEE511EBF8BD353F392F7052B0021F531 ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
17:30:25.0453 0x0440 GalaxyCommunication - ok
17:30:25.0468 0x0440 [ 4616F61E24B3AEA6E0E4EA7D69531EF4, 34CB16F68E4A4D19346C7FEC29BB5FE09BAAEC19EA730C9B93450F940D124D49 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
17:30:25.0468 0x0440 gencounter - ok
17:30:25.0468 0x0440 [ 23174BB6937459B924BB8EF667FB28EF, 6675B87F4DE9CCA96B6BAB9F77C4E0B377828613D9FFB03F7D443AF11321F157 ] genericusbfn C:\WINDOWS\System32\drivers\genericusbfn.sys
17:30:25.0484 0x0440 genericusbfn - ok
17:30:25.0484 0x0440 [ 4B11CFBE1D9B73A9D865F6AB26F800BA, BD76CB5AF0EE6DD404875A4C36622C6BC8CCF2975C47E28DD305EB041C6C0B91 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
17:30:25.0484 0x0440 GPIOClx0101 - ok
17:30:25.0500 0x0440 [ CF22C0941409C772AA1568DC4F89A111, ED5895F024E64B672EB3FAE6C456FA0D30A068CF2B475A7EE988DEA4DCD6D8DE ] gpsvc C:\WINDOWS\System32\gpsvc.dll
17:30:25.0531 0x0440 gpsvc - ok
17:30:25.0546 0x0440 [ 3FC3FCF557D0BE3D724EA10642E1F6FF, 744D0DDE748A1B681087668CB893F9A60A2BBE80A71098944E75B6A9AA934C82 ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
17:30:25.0546 0x0440 GpuEnergyDrv - ok
17:30:25.0562 0x0440 [ DD1A6F4998E7E21564FA9BAFE21C87ED, CAD04E9B8244ACA3314C6FD4422BE7A3B578AF1E61F13773A2C5DB388B3337F6 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
17:30:25.0562 0x0440 HDAudBus - ok
17:30:25.0562 0x0440 [ 9F90819E301C70A3A042FC05D3E41B5F, D2175786775D08686264001ABAA4B61DC08A847666F6B9A2A64D10BFC022F646 ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
17:30:25.0578 0x0440 HidBatt - ok
17:30:25.0578 0x0440 [ 3CA3244C45B25F3B3ED9445C195E40EB, 9C43B31DAB473D29069D0D6BC130660424FE2414BA519107641FA1561C10C76D ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
17:30:25.0578 0x0440 HidBth - ok
17:30:25.0578 0x0440 [ 55DAF856F9633DD2519BA4E942870F02, 5283548CB93EB46C5FD3B08E45C97BBFB33D47F11F89560508775889FBF2F754 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
17:30:25.0593 0x0440 hidi2c - ok
17:30:25.0593 0x0440 [ E34216A190D9BF8EAA666F6903BCD0EF, DA8529DAF903B447CC5FF2D112F670696549A4B66F54DF9A8C8C615D969CD477 ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
17:30:25.0593 0x0440 hidinterrupt - ok
17:30:25.0609 0x0440 [ 852DBB5185996AD8C73872A43A453729, 8C20331AE99E280799407CC5FCF88F8F645C331604230876A2CD7C253B9BD633 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
17:30:25.0609 0x0440 HidIr - ok
17:30:25.0609 0x0440 [ 6339CC87F0F610D1575C9A419940602A, B2A054ED0B669FA54E250EC2926955B1D944FA1FB2AF5B590C181CB2E9D297BA ] hidserv C:\WINDOWS\system32\hidserv.dll
17:30:25.0625 0x0440 hidserv - ok
17:30:25.0625 0x0440 [ C1A608120DE0DF52E51B8BAF86AF19F9, F3529822E78CFCA2E323A75926A833529889E40BB9602B287CC343C496CB2062 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
17:30:25.0625 0x0440 HidUsb - ok
17:30:25.0640 0x0440 [ BD1CF47172B97707DFC66ADA741AE2BE, 9607AB7074FC54D88FDF6E2A31506BCF8ECBF8FD651BB5CEA2421471C24BCED1 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
17:30:25.0640 0x0440 HomeGroupListener - ok
17:30:25.0656 0x0440 [ A004895B838003BAE2281DAF193B6A09, 587FCDCEF769B2AED12551B6426477B764CB8A025E692D4EC8B24E1CBA1C06E3 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
17:30:25.0671 0x0440 HomeGroupProvider - ok
17:30:25.0671 0x0440 [ 8ADD9CA3E0F18CEA11EA6FAED794A228, B46BA885ED8253A253B1C87C331CA145F7F397AF49853038B3F1EDAF81B2C4BA ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
17:30:25.0671 0x0440 HpSAMD - ok
17:30:25.0687 0x0440 [ 2413454E305678EA9A486E8DE2E67849, 5E821E909F99BAB782D89A0CDBFAE5474FEA211EB4F626A824D10D733F3FDC67 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
17:30:25.0718 0x0440 HTTP - ok
17:30:25.0718 0x0440 [ D3C45F1B5BB3EE772CDA416A4A3EEB9B, 97CD988CF307EBCC34F37F130F4F2C989DD17E70B2498DB1929B566A3387887B ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
17:30:25.0718 0x0440 HvHost - ok
17:30:25.0718 0x0440 [ F60F8390B635156593F7493AE898AFB0, AC5E58CDA12072C5FDBFEA0FA009CE2E251D143FC0878B2658ECCCF797B8B0EC ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
17:30:25.0734 0x0440 hvservice - ok
17:30:25.0734 0x0440 [ 563F5FC3B46A70A91AB6C8822AC8BF25, 43E647A7752D7444BF306E38571130AB778AA2A6892782C6C1112E47FBEFBC87 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
17:30:25.0734 0x0440 hwpolicy - ok
17:30:25.0734 0x0440 [ C082249BC3E972C8A132D9EC6AD9EAD5, D69EEFD97CF5E0BD64D11DE1C331D02A9BE522BB93A40FF32ED434D960B85D39 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
17:30:25.0750 0x0440 hyperkbd - ok
17:30:25.0750 0x0440 [ C6C8315E3262FAE460529C6DA2951682, 4ADBFA6601209BF6F5A9797721CBE2011905775CF4E266D7B42F89915D477E95 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
17:30:25.0765 0x0440 i8042prt - ok
17:30:25.0765 0x0440 [ C6B8743B213F06AA60943D8366FE968F, 758954F70B810063914B243115B2C753B2BCE40190F95C30ACBA0BF04EBD5B33 ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
17:30:25.0765 0x0440 iagpio - ok
17:30:25.0765 0x0440 [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
17:30:25.0781 0x0440 iai2c - ok
17:30:25.0781 0x0440 [ 42962355A7911407026E920E7252E3E5, 4A4016A53ED61354C81C594968339E6F3CCCFF4A64F8F28AD008ED8137E05AD2 ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
17:30:25.0781 0x0440 iaLPSS2i_GPIO2 - ok
17:30:25.0796 0x0440 [ BD47B2FEABFA48C6224D43EE9EA9BC06, 304628CA458AA7B1B8B1CFF12074AD75C1CE7BD41820B99607D7FA99A817D007 ] iaLPSS2i_GPIO2_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
17:30:25.0796 0x0440 iaLPSS2i_GPIO2_BXT_P - ok
17:30:25.0796 0x0440 [ 2184CB3A65888F446FCD6DBA9F073F4C, 0B3D63EC7F61BFAD490C123084965A9F38DBFE587AC9DAE6F4E6B68AD8093DB2 ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
17:30:25.0812 0x0440 iaLPSS2i_I2C - ok
17:30:25.0812 0x0440 [ 4126F8DA08CE7924A3AE6F7235F85D5F, 668DC1D09496A95F44C07C5C1F6ED7D3EFC6F89523B2744A86B460E5BECAEFB5 ] iaLPSS2i_I2C_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
17:30:25.0828 0x0440 iaLPSS2i_I2C_BXT_P - ok
17:30:25.0828 0x0440 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
17:30:25.0828 0x0440 iaLPSSi_GPIO - ok
17:30:25.0828 0x0440 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
17:30:25.0843 0x0440 iaLPSSi_I2C - ok
17:30:25.0859 0x0440 [ D820075D3395BED28FC57AEF8FBA666F, 7589CCCD355D2685C0E6D317AB39F0DB061153E6859A0F53834B001643CFDF57 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
17:30:25.0875 0x0440 iaStorAV - ok
17:30:25.0875 0x0440 [ A243E0CE8644378C9A9D015ABC3EDA27, 0C72F6D39DD64A16F54BCE185F4D8E670D386823F6364E9ED284F7F8DE11CBF5 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
17:30:25.0890 0x0440 iaStorV - ok
17:30:25.0890 0x0440 [ E16E4FC9F250E48CB2CAD93E59D010E2, EFF558EDD63DB0FD8BA240E94BD5999106233B95BF86BFB99EE9B897F41C542B ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
17:30:25.0906 0x0440 ibbus - ok
17:30:25.0906 0x0440 [ E3061D5ABA80394D29E26EA58AF7F69A, 9BCF1AD2CC9C7E48FD350F9D59797E17F355C840EDE428143764F93716159C20 ] icssvc C:\WINDOWS\System32\tetheringservice.dll
17:30:25.0921 0x0440 icssvc - ok
17:30:25.0937 0x0440 [ E9E4BB312F6B544392F44D513FAA2243, 3E6917BCE9F1AF554D57FED9E76B33F36D92145B0090A5F8F64E2A53EB4C54A4 ] IKEEXT C:\WINDOWS\System32\ikeext.dll
17:30:25.0968 0x0440 IKEEXT - ok
17:30:25.0968 0x0440 [ 0E33BC018502E7FDE77C343055D9C626, CD1C60E8EDAA044E03E5776962E091C1288204033A57A799D446F9B058D6AD59 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
17:30:25.0968 0x0440 IndirectKmd - ok
17:30:26.0031 0x0440 [ 527EF452D0E60F575EF6AE360BE9D587, EA4E1339CF05F72D44C5AD4441380E54E0D2B49195F19D2637AB9CDDA1BB1C0B ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
17:30:26.0078 0x0440 IntcAzAudAddService - ok
17:30:26.0093 0x0440 [ 4C17F57E43645E75800E9E84787E34E5, 6A1531D97462BA3B3DBDAD472AF15B717C958AA8C5CE2373DE0B2A41C35BE33E ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
17:30:26.0109 0x0440 Intel(R) Capability Licensing Service TCP IP Interface - ok
17:30:26.0109 0x0440 [ E42505363945956ECB5D38A4EB21CB39, C6A46A7621721EB1EA46E5F7D2E560D8022A97241F0792814015F803D96A2C92 ] Intel(R) PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
17:30:26.0125 0x0440 Intel(R) PROSet Monitoring Service - ok
17:30:26.0125 0x0440 [ 4B7F8A1AAC7172DB6918A0E10E1D78A3, 1E9922AF9B5458F23A379EDCD61B615B6E53BAF8927237C1C7DCC04122CCF417 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
17:30:26.0125 0x0440 intelide - ok
17:30:26.0125 0x0440 [ 0A3DBE89C965FFB7C0D0E38834E77B90, 0166BE79228ED6B3D7AA1BACB4F1BB68357DBF70DF778B2F8A3776E374EE690C ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
17:30:26.0140 0x0440 intelpep - ok
17:30:26.0140 0x0440 [ 64EC687A811DC4F69DF3816F073352AA, F70942B67448DF9848F32F88D37E1E0C548CE9FEFC4376628D7CBEF62494D8E1 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
17:30:26.0156 0x0440 intelppm - ok
17:30:26.0156 0x0440 [ 549C278119FF539C3B219C55B98B0E87, B4C15AB0C77EAB6C5ADEBD014F610BBFC537EAEB0E3960636624001C8A5DE56E ] iorate C:\WINDOWS\system32\drivers\iorate.sys
17:30:26.0156 0x0440 iorate - ok
17:30:26.0156 0x0440 [ A0F9F2E87F0C751FE164D90EB44A9B63, BE816F17E43E5F80AC65E913AB7F9E77B8D6B70B90A784CB00C907D3DAFFD4DB ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:30:26.0171 0x0440 IpFilterDriver - ok
17:30:26.0187 0x0440 [ 57A93FCF94FAB8C2161335E56C81CD16, 4A642E4FF70DA209074B78EC50B76A024DB5D01B8C9FCC405A64AF0F1A7EA389 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
17:30:26.0218 0x0440 iphlpsvc - ok
17:30:26.0218 0x0440 [ 656DDB34996A96539BA6E2843B5F2A77, EDC3F1A2BA38A9655361A20B6C8001984AEB1A530C5385CF6EC0AF595305DBC7 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
17:30:26.0218 0x0440 IPMIDRV - ok
17:30:26.0234 0x0440 [ DCC05E5EAA580C97F13B434FAFACED85, 5C6CFD3D9FAEB7274E05F3D19D3AA064624500C616650DE227B849B505662BB4 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
17:30:26.0234 0x0440 IPNAT - ok
17:30:26.0250 0x0440 [ 9A6B993A95CCA15502DE3C980508DC44, 370A1A4531A72CFBF331ED274913925A269115A13E3A6B5E1821FB48DD7242AE ] IpxlatCfgSvc C:\WINDOWS\System32\IpxlatCfg.dll
17:30:26.0250 0x0440 IpxlatCfgSvc - ok
17:30:26.0265 0x0440 [ 9035C10C7EB8CF7C87CEA82A62EBB43A, A0DA94E80E503DB3C2877CE1BCDC70B3FCC6861ADFBCCE66C6D2592BD63F27DC ] irda C:\WINDOWS\system32\drivers\irda.sys
17:30:26.0265 0x0440 irda - ok
17:30:26.0265 0x0440 [ E7FD479E3298F3C8852A0D2F092BDB35, 07F2E779268EBBF4F32ED1C8423493B36BA823905E71B524C6AEBA0093193307 ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
17:30:26.0281 0x0440 IRENUM - ok
17:30:26.0281 0x0440 [ 65B145143F6E5E1B5A213F0D9F4C4C44, 0E390BD8D7B4B9562E8FEE0D109DCE0D9EA823FD2D20B39FFACE3331F30FE5BC ] irmon C:\WINDOWS\System32\irmon.dll
17:30:26.0281 0x0440 irmon - ok
17:30:26.0281 0x0440 [ 7FE3B3A30FA20F27AF7022A01C2266BA, 8AB924F08ABF1DCB154B6A3BDB7E3E5A863008B5AFF8E3DB9759848774E00E8A ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
17:30:26.0296 0x0440 isapnp - ok
17:30:26.0296 0x0440 [ D492648D96A14BA639B76D177B24CD82, D65D2494BAC8A317FD70293E59D039078D1D19FAE20A4EB2665246CAACFF0C6F ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
17:30:26.0312 0x0440 iScsiPrt - ok
17:30:26.0312 0x0440 [ 0B93A01F786F37A4B1EDE84E639FFF10, 8747109A2FA2B80C8C5F5B6D2372C1B0DA4F4BF9DC1D551195ADF0715C260223 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
17:30:26.0312 0x0440 jhi_service - ok
17:30:26.0328 0x0440 [ D36B404BF979297C6572AEF98B2594F2, CB2F4E6589936D35D59CA70B39A29D091540EA125BE4B937AF92CEA0C6D0AAEB ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
17:30:26.0328 0x0440 kbdclass - ok
17:30:26.0328 0x0440 [ 7E2036A846789D6D6A2EE21915017EE1, 82AF85CA30B440E453F7694C7EDABB5D2DB213AD2FE8620B92667DFB492229A1 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
17:30:26.0328 0x0440 kbdhid - ok
17:30:26.0343 0x0440 [ 4C054B8E901F41F5743DADE8A29FF256, 1009CC2503E08AFEA849BA83135C2D75C573FC4D6EFB5DBCDCC7ACB17AF83152 ] kdnic C:\WINDOWS\System32\drivers\kdnic.sys
17:30:26.0343 0x0440 kdnic - ok
17:30:26.0343 0x0440 [ EABFCDA6E996F8A32DC1B302F7683BB2, 5FF2BA89D9A7BDE78C40866F15EC576527699ADD0F120E1A8388C4404A69F0E8 ] KeyIso C:\WINDOWS\system32\lsass.exe
17:30:26.0359 0x0440 KeyIso - ok
17:30:26.0359 0x0440 [ BA7A5838866618A4E82FBC05B8923605, 96E898C7768BED66487A00E02B2E50516602BCF54E6648F5528E3334AE8527EB ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
17:30:26.0359 0x0440 KSecDD - ok
17:30:26.0359 0x0440 [ 6629CAA1F157088B9EDD1EAD24C6D753, 3E5F3BCB34F4B52BE46B96F9F720FE5FB37A01D4E408875F6BB89F5B5C5A3900 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
17:30:26.0375 0x0440 KSecPkg - ok
17:30:26.0375 0x0440 [ 365D39AD9D6BD9D61299DC098CDFC9E4, 7747A065818E1747C4FF4A96E069DE36919DFCC564D06CA232FD5EED44152687 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
17:30:26.0390 0x0440 ksthunk - ok
17:30:26.0390 0x0440 [ 08F9C3F7FE3019BF53B1405B1820528F, E90940533F88A33C396E1DF9D186E945F030315FB2201E479F144E27387333CA ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
17:30:26.0406 0x0440 KtmRm - ok
17:30:26.0421 0x0440 [ 0DD3C5101AE1AA7E28B4CE5AB190C261, FAFFE2102972798210ED5E766F54C5EED6262354E132E1C24539DAA598895608 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
17:30:26.0421 0x0440 LanmanServer - ok
17:30:26.0437 0x0440 [ B82D6C634638534E41748FCEC909E55D, C286EB7B3E780549F77E75B4B9F053861D82EFDCD43B1308848A08D23EFADDCA ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
17:30:26.0453 0x0440 LanmanWorkstation - ok
17:30:26.0453 0x0440 [ AF1077E89AD4458EC9B1CABB35595346, 762AE3218B7B05032C4199F0AE9ABCC822C3DF88BBB09536202B6B26A7944024 ] lfsvc C:\WINDOWS\System32\lfsvc.dll
17:30:26.0453 0x0440 lfsvc - ok
17:30:26.0453 0x0440 [ C0CB3B9F1F92C36B91309FDACCDF918B, 5D40C11388A48323D9D9AC18A950B09E2654092BC2F9DE45779A9354668BA18E ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
17:30:26.0468 0x0440 LicenseManager - ok
17:30:26.0468 0x0440 [ FC37745959DFA4871759E4DCC836227A, 8B63F798440FD0A34E2F2940B2598238BC852EF3EFD22147A77AB4BA6FB9E704 ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
17:30:26.0484 0x0440 lltdio - ok
17:30:26.0484 0x0440 [ 1797F544956D46966C67A2F7879403A9, D7820D2F8E936FF13D709BA1BD0541AABA8402F38698FE96DAE70B4E7A730835 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
17:30:26.0500 0x0440 lltdsvc - ok
17:30:26.0500 0x0440 [ AE561CB0813D4DFA7D3E4471B2B70F5F, 344EA5E02D04098F032353962C1B70B0F578BCCD2843C70D6330B3F967D2FDB5 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
17:30:26.0515 0x0440 lmhosts - ok
17:30:26.0515 0x0440 [ C31139E0907170E2A3FA8D19DCC23D35, C504E93D2018E9E487A428483C646C67B4ECE122560CF0FA49A1626E1509EEAE ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:30:26.0531 0x0440 LMS - ok
17:30:26.0531 0x0440 [ 16C9D4D822CCA795A72DC88B25A577CC, AEF93AA4E815F90C1A42D574C6DE7EF31FE69AD7B78B8E1AC7C27304F3CD7959 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
17:30:26.0546 0x0440 LSI_SAS - ok
17:30:26.0546 0x0440 [ 920F0CFCED5F28A31B79F1C470649D11, 5A5F390F2FD7C26807E7896E9F8F94EE7E69FE3C4B247BEA515588EB076148EF ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
17:30:26.0546 0x0440 LSI_SAS2i - ok
17:30:26.0546 0x0440 [ 0FE63316F1C70A0F759A449FAC64C24B, CF99D62FDA862095BA1EB57DD58CEC070E0552E15B6F454B87D593707132636B ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
17:30:26.0562 0x0440 LSI_SAS3i - ok
17:30:26.0562 0x0440 [ 80E82C46B27A923A3744531069B63857, C73A200FC2A009D19F2C26FAC07489EA0F4329CD7A1D80EB3200B19DFC883F8D ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
17:30:26.0562 0x0440 LSI_SSS - ok
17:30:26.0578 0x0440 [ A69A59CD52D26443FF728FD52283598C, E416481B23CDADBB9E608E49C9DC9A520D14935E92CA9B63E7763692DB382D7D ] LSM C:\WINDOWS\System32\lsm.dll
17:30:26.0593 0x0440 LSM - ok
17:30:26.0609 0x0440 [ 88F5570C04766EE561FF129B2F93030C, A36F7FF563F813EC0F69E5BFB76C58A1C9824F54BA1729C4096E8B7B7C8D90EC ] luafv C:\WINDOWS\system32\drivers\luafv.sys
17:30:26.0609 0x0440 luafv - ok
17:30:26.0625 0x0440 [ D365217A6D4528ABB41B40C8FBD227E8, 340129785A5788A8FFE0E1B339A616D290F7504F3658F63E1A3B169B38460FBF ] MapsBroker C:\WINDOWS\System32\moshost.dll
17:30:26.0625 0x0440 MapsBroker - ok
17:30:26.0640 0x0440 [ C3EED732789052C98A2613A7E1C37CDA, D71735C8FB772EEB7F3F304CD79D8D774A9A285A94365DE0E635F61357EC9F0F ] mausbhost C:\WINDOWS\System32\drivers\mausbhost.sys
17:30:26.0640 0x0440 mausbhost - ok
17:30:26.0640 0x0440 [ 4DCE65116A28488593FF5A6A18B03DB0, AAFA7E7C1C9A38B8CF5CE530F96028191F52B1FDD2790246E413B63CF7C5F02A ] mausbip C:\WINDOWS\System32\drivers\mausbip.sys
17:30:26.0656 0x0440 mausbip - ok
17:30:26.0656 0x0440 [ 9BCD7A648AD359393671AFE7CDA4F803, 57BFD1E82317802B52C2974769B025B08F39BB1CC20C23C3F81901DC970042BF ] MbaeSvc C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
17:30:26.0656 0x0440 MbaeSvc - ok
17:30:26.0671 0x0440 [ 0609BF877A2F4DEECC62EEE220AB6242, 393268836EB055669997BD05866487497AFC396C9516DA4C4F143679B1DDCA6E ] megasas C:\WINDOWS\system32\drivers\megasas.sys
17:30:26.0671 0x0440 megasas - ok
17:30:26.0671 0x0440 [ EEC64C8D498D121607C7615FDFBEE4D0, B605B9886C1A05C999B005AEA6D0677DF632E2F34F4FF03F09C2E6C05F554D50 ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
17:30:26.0671 0x0440 megasas2i - ok
17:30:26.0687 0x0440 [ 2B7D3B206833D769218A1F4BE2D73B97, 25901A5E931DC3659993448E59ABC3601B7B0ED9AFEF0F5ECC139D0D0442F73B ] megasr C:\WINDOWS\system32\drivers\megasr.sys
17:30:26.0703 0x0440 megasr - ok
17:30:26.0718 0x0440 [ 1BC9159CF58BABD89419072EA180A8F6, 6C9AB779C2355A341800A8F93AAAF9B19FAFF444CD6A7BD27C63D53F379A75EF ] MEIx64 C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
17:30:26.0718 0x0440 MEIx64 - ok
17:30:26.0718 0x0440 [ 4F708DA590EDBCC124FB79066D44759B, B8DA803299AF5FDE1594CF958EA6B99D4B99E8163438A70A692CA33A96DBF8DE ] MessagingService C:\WINDOWS\System32\MessagingService.dll
17:30:26.0734 0x0440 MessagingService - ok
17:30:26.0734 0x0440 [ 89257B8D3826B5629CF7F73F97DA44F9, F056D67EC82072BA209FF7942862862FDF562F8C038F3128861C387F8F63B494 ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
17:30:26.0750 0x0440 mlx4_bus - ok
17:30:26.0765 0x0440 [ 9AE3C0CC0865B1618A3C97744A6A9E9B, BF72AEF0360AC278B36ED31E5BFC2E8F72136B0952490A105CB6929654C97F6C ] MMCSS C:\WINDOWS\system32\drivers\mmcss.sys
17:30:26.0765 0x0440 MMCSS - ok
17:30:26.0765 0x0440 [ 0CD29540C32C2E2E0E3D7E9832752AF3, E64C3F5323C59D53409E33E88989FDD2A38B5B602336FC1D8C3702CA9B5EBFC7 ] Modem C:\WINDOWS\system32\drivers\modem.sys
17:30:26.0782 0x0440 Modem - ok
17:30:26.0782 0x0440 [ 534477FCAFDFCA6B841BFA06BD26BCC5, 96404FDF0BA2127A3BD24319637EC0C8BE8C42618D9FEDF66F41C5F72840D427 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
17:30:26.0782 0x0440 monitor - ok
17:30:26.0782 0x0440 [ F5D4E18A70BA069D479154442CDEB60D, 96345E88BC6A50415E112A4B4CFDF3F4306EA049741C5B0A2BFFC142F15EB5CB ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
17:30:26.0798 0x0440 mouclass - ok
17:30:26.0798 0x0440 [ 5C09868963B0C076AC3BC7759A46B7B1, 64CD200A8D90CDC31317009636A3BB6574ABF04BCAC903F93C47823C40CC03F6 ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
17:30:26.0798 0x0440 mouhid - ok
17:30:26.0813 0x0440 [ 8BF7039787036529B98E50AE86A0E46B, 69C04D012D026A14E2D2A138EDA79227F9BE4BE1892D517DCDB797F2A5AEDB14 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
17:30:26.0813 0x0440 mountmgr - ok
17:30:26.0813 0x0440 [ 65C0F9AE99ECCCA7C5C3CEFA7ED80904, AABEBEAED256318B5B8C1BC36A2E365CB942ED591C78E78EC6C55EF94A522342 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:30:26.0829 0x0440 MozillaMaintenance - ok
17:30:26.0829 0x0440 [ AA12FAF01013F63348B722D3588550FF, AADE8C93BFE0830AE43AD649F62D7D7E25FC14107B172815EF9F4069C19ADFCC ] MpKslbbbca715 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B744086B-8B84-4110-92B4-BDCF00A137C8}\MpKslbbbca715.sys
17:30:26.0829 0x0440 MpKslbbbca715 - ok
17:30:26.0829 0x0440 [ AD118EC95E9EF4D5223D681D8F183567, 395B76626956F5B7992676B9CA57B2CA075F0CDA881E14B3ED07ABE2DC0EEDBC ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
17:30:26.0845 0x0440 mpsdrv - ok
17:30:26.0860 0x0440 [ FA53A01517BBA97EA3B71CF5CC2052F4, C6F7CBDFAD629B2D4B6ED6A471708E8DBEB5CD5E0A992848359D3C0A82FDFCBE ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
17:30:26.0876 0x0440 MpsSvc - ok
17:30:26.0892 0x0440 [ 84A7AF1DB4EEBEDBA3F41FF4D3234091, F49E140D0DEA2BB98205A8CA7C0ECB366FFF02D528A83760E9358DFCFF5A90D8 ] MQAC C:\WINDOWS\system32\drivers\mqac.sys
17:30:26.0892 0x0440 MQAC - ok
17:30:26.0907 0x0440 [ D14C297933C82B8CB0B5CBBA4DDC830B, 2EF356F5373F16A7AE2421187FC5C150C09452C835229275B7403181D65C210F ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
17:30:26.0907 0x0440 MRxDAV - ok
17:30:26.0923 0x0440 [ F2AD1B72C5A6475FB5FF332E1980DF88, 41E24496FBD61C0A333F567DA7C4E38C5A792724FB56448189099F60114749D5 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:30:26.0939 0x0440 mrxsmb - ok
17:30:26.0939 0x0440 [ 469DD958B1D8CB09E38BE2298B8C398D, 97CCEFF58D8865B0D27C4E16B082C20FA5279CF01A37F47B5F2DA39B334F0667 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
17:30:26.0954 0x0440 mrxsmb10 - ok
17:30:26.0954 0x0440 [ 1FC4802B593494746B6FE3BDAC25E371, 774CC950B46B3E32603D368D9938BFCF60D2BB3C14C3FE8B03CB1E724AAC29EF ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
17:30:26.0970 0x0440 mrxsmb20 - ok
17:30:26.0970 0x0440 [ BD12E1941A87671A767447B02C6A51A1, 7FCB3077E827639CE23CC2C6FE997A33F7A702D266C0277AF01453B5ACC0966D ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
17:30:26.0970 0x0440 MsBridge - ok
17:30:26.0985 0x0440 [ 41C5D9B52F4A1B30C3F7219D601CF12C, E1C1B1CED19D32FA1B765C7C380B9E749893B2018CF358F448E40DA60CB63166 ] MSDTC C:\WINDOWS\System32\msdtc.exe
17:30:26.0985 0x0440 MSDTC - ok
17:30:26.0985 0x0440 [ 92C00BD9616F353CA59A755C33269757, E67F05A4A1C44137CCAC0C7292A7010B5920172ACAE32638600E231F28F33035 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
17:30:27.0001 0x0440 Msfs - ok
17:30:27.0001 0x0440 [ F27EC8F7A0A779276E5DA2E70C2B01EE, A450DB309F84CAFFCE2A720612BDB260D88E9C390D2BC60874D73A55D8567E04 ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
17:30:27.0001 0x0440 msgpiowin32 - ok
17:30:27.0001 0x0440 [ CBA955A54C9446CAAD28C76789D3B071, F6CA1BECA35B13B7CCC9FFB325FACF22713F6B81E8A6540C9967A462E425BBEC ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
17:30:27.0017 0x0440 mshidkmdf - ok
17:30:27.0017 0x0440 [ E8E568EF60677E4534F387C53EE1B35F, 2E250EE1A9AE8AFDCA5216BED87328B05713386BD7E61C66A74EF021F2AFE7D7 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
17:30:27.0017 0x0440 mshidumdf - ok
17:30:27.0017 0x0440 [ 16376B7B0730C04DD1A2C0CC8E09E420, 2F39D3254FD272E277B5496A8C93A7CBFBF80F6004AE0343BE9F09C538975910 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
17:30:27.0032 0x0440 msisadrv - ok
17:30:27.0032 0x0440 [ 75FE54E84C1EB0C9C5E09F9FD5928ECC, 971CFEE8FB8364D17CD392E32A32AE57BE6461EAB6C580B52E6D752D4CFDD6B3 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
17:30:27.0048 0x0440 MSiSCSI - ok
17:30:27.0048 0x0440 msiserver - ok
17:30:27.0048 0x0440 [ B26E1C10C8323D2B6ADAF504CD487757, 758DBCDA43D62547ED274D2E09A66B266470C86A89A3BEF387E535DB37A7EA44 ] MSKSSRV C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
17:30:27.0064 0x0440 MSKSSRV - ok
17:30:27.0064 0x0440 [ E40B960078A15D4901265D32E071C42D, AC11B8221C8F529FE3CA6FEB99AF699664C86008A732C3A8E6B1CE31C2272454 ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
17:30:27.0064 0x0440 MsLldp - ok
17:30:27.0079 0x0440 [ 1EC9FC8E5101139CF84589E8EAC24B9A, F351661FC548FEC2652018B4F1A2BC64FD938637A518EEDC9B6ED97471BAAC9B ] MSMQ C:\WINDOWS\system32\mqsvc.exe
17:30:27.0079 0x0440 MSMQ - ok
17:30:27.0079 0x0440 [ B4860AB91DC4E73936F0FF504D6B4B07, 7371093D9EB62218D20F6B8B3C88CBF01932AEA2923ED119962A78BE46E5A939 ] MSPCLOCK C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
17:30:27.0101 0x0440 MSPCLOCK - ok
17:30:27.0103 0x0440 [ 8EDC45C3F7F64A51C98B59E24648F74B, 445731F32A37A99FAB3CD5D178A84FB4F835727826211FF18623409D29FF3A1A ] MSPQM C:\WINDOWS\system32\DRIVERS\MSPQM.sys
17:30:27.0116 0x0440 MSPQM - ok
17:30:27.0122 0x0440 [ 7DA5FAC2A49D30CA5B7B96B8B26281AC, 168C3AA5C7318184D8F67EA832920FCE64E11D4CC418517D7BDACB9632F0BEA8 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
17:30:27.0125 0x0440 MsRPC - ok
17:30:27.0125 0x0440 [ 7E3365C8BC83DCE88D6226BB5C7170C4, 69D741039CAAFCA93A4CC09CEC14F117527D732A6CF3077AA83E935B03EC3F9C ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
17:30:27.0141 0x0440 mssmbios - ok
17:30:27.0141 0x0440 [ 09D51564E49181E9928910D6B91C920E, FB3C918820ACF4506AC49478709B4D4C6489BA0B5113E666C34B916CA5CD6DE7 ] MSTEE C:\WINDOWS\system32\DRIVERS\MSTEE.sys
17:30:27.0156 0x0440 MSTEE - ok
17:30:27.0156 0x0440 [ 793AE56A3946EAD5F906C28D294FEFE6, BB563D088084026606C2FBD30A0850BA18363CC173CC6C77272D727CA6C1F9BD ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
17:30:27.0156 0x0440 MTConfig - ok
17:30:27.0156 0x0440 [ E35F51C7474A26680627477462715206, 435490915CDD416D666B64C6B4526285EC946E6918CFA85585692B9ED43518B6 ] Mup C:\WINDOWS\system32\Drivers\mup.sys
17:30:27.0172 0x0440 Mup - ok
17:30:27.0172 0x0440 [ 74BD1149BF50F1E24934042A3BD17C90, DC4626DC4D629CA7DF336EC7E6435F27D2E252D81945E57F4BF2C981DBCD9B45 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
17:30:27.0172 0x0440 mvumis - ok
17:30:27.0188 0x0440 [ 39C772E20B8C61858F969E4D60699D89, 32146D265CD315597C48FB233D77DDACB0FEDDB7E800A0F411A67844BB3ACC67 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
17:30:27.0203 0x0440 NativeWifiP - ok
17:30:27.0219 0x0440 [ BC80F85C129F12A5F64D6741A120B539, AD410F13BCBDE54F98E353BD4DAF30CC5A0A9990FC4F1AB3623EF3175EEBCAF7 ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
17:30:27.0250 0x0440 NaturalAuthentication - ok
17:30:27.0250 0x0440 [ F2EA6F3165E154C24C084AC35DD6C3F8, 4F8CB75770945F5A28CC308917A124109F7462CE933695B9CAA3FE2CAE76C445 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
17:30:27.0266 0x0440 NcaSvc - ok
17:30:27.0266 0x0440 [ 9B3C6582CFB91BA2A04B1D06D8E2FB98, 431E6B075FD24002724E8A2ED9FB3221AD66D1F1D021B56466187D97E5B43A1F ] NcbService C:\WINDOWS\System32\ncbservice.dll
17:30:27.0281 0x0440 NcbService - ok
17:30:27.0281 0x0440 [ 932E2E43078A3D786A46A5428F21B314, 17F1CC3388D80F1E1850063114C1EB72EEA149D9C8FA3501C0F9EB55C9E0C58D ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
17:30:27.0297 0x0440 NcdAutoSetup - ok
17:30:27.0297 0x0440 [ 0FFE8AF1B94C5FD54E6ACC6DAE990D31, B67D3CA3460D4700D8B83EFE4B6A7AA940650E84D985484FBAA1EE80F3632133 ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
17:30:27.0297 0x0440 ndfltr - ok
17:30:27.0313 0x0440 [ E27876B335FEB441DA511030AA85624D, 6B4FA08463166A2B32F317E6FEDE3C22EB8FFA5B2077955A0B2F2184858BDDE7 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
17:30:27.0344 0x0440 NDIS - ok
17:30:27.0344 0x0440 [ 4EA73CFDEE4A628D387D95464A131F29, 38A6E2389FA9B20A7AFDF3CFCD13B66489B92D853EE486BF81019F0A36A142E1 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
17:30:27.0359 0x0440 NdisCap - ok
17:30:27.0359 0x0440 [ EB127689AF6F24091AB73538A556257F, BC25067D355084D6893E9262750433044C28893BB27A67BF7AF5008742C6D359 ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
17:30:27.0375 0x0440 NdisImPlatform - ok
17:30:27.0375 0x0440 [ 73B4C72FB6170A08C64BDA92DE93ECF7, 766BBE659232F0F5EAEE577EE88091FB76175BC52D65B9637126069C97E795D4 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:30:27.0391 0x0440 NdisTapi - ok
17:30:27.0391 0x0440 [ 6704F27EB15A5B30AA7FA5A4F4D1FD47, 841F99B3C751F4D4E23C0E7B5C275B4871C1D5EF937A93129DF64DF49F6B6736 ] Ndisuio C:\WINDOWS\system32\drivers\ndisuio.sys
17:30:27.0391 0x0440 Ndisuio - ok
17:30:27.0406 0x0440 [ FE87CCAA89433FC306A80F15E848F4B2, 3269FDF53DA59057E066D582FCBB96B71C8063B8F488856A9DEA414B4797E43A ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
17:30:27.0406 0x0440 NdisVirtualBus - ok
17:30:27.0406 0x0440 [ 94517BC9F29A1B73D377F1BF1C3DCA34, 45A34D7AAA851C643E80C0F61CBF8544B8A2E8E7DAB2D5AB6F3A34FDEE4AB0B3 ] NdisWan C:\WINDOWS\System32\drivers\ndiswan.sys
17:30:27.0422 0x0440 NdisWan - ok
17:30:27.0438 0x0440 [ 94517BC9F29A1B73D377F1BF1C3DCA34, 45A34D7AAA851C643E80C0F61CBF8544B8A2E8E7DAB2D5AB6F3A34FDEE4AB0B3 ] ndiswanlegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:30:27.0453 0x0440 ndiswanlegacy - ok
17:30:27.0453 0x0440 [ AC6AC99075732F5C29DB0004DD5B1AC6, 684EC821EF5C60DA540CA36EC192B09E62440AAD5B13F0F4C23DDC4A9B96F28C ] ndproxy C:\WINDOWS\system32\DRIVERS\NDProxy.sys
17:30:27.0469 0x0440 ndproxy - ok
17:30:27.0469 0x0440 [ 9AC090451D92E6081EB89CDA83D74189, D4D442412F112853AA8D88DFB5F695AE4E8E2C361905992537EE53BE675FECE8 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
17:30:27.0484 0x0440 Ndu - ok
17:30:27.0484 0x0440 [ A115DDB2C7805C41EEC9A5276FF5764E, FC81D0BE2DAAC6E7161C0FC5C90050022A39AD50E28040D5357C0E1FD6C0B6B5 ] NetAdapterCx C:\WINDOWS\system32\drivers\NetAdapterCx.sys
17:30:27.0484 0x0440 NetAdapterCx - ok
17:30:27.0500 0x0440 [ F420B6CAB5151A38E4DBBFFB500C11DA, 271F495B261461B8EA847BFDD87C155E6DC1B6236C161B8253A1F023706B1B1D ] NetBIOS C:\WINDOWS\system32\drivers\netbios.sys
17:30:27.0500 0x0440 NetBIOS - ok
17:30:27.0500 0x0440 [ 30C2F67EC84EB11B22011620107E0325, 98088685F457566FD8D13B83A0BF6B06CDC70AC156B67BF87A8A8446C150C1F3 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
17:30:27.0516 0x0440 NetBT - ok
17:30:27.0516 0x0440 [ EABFCDA6E996F8A32DC1B302F7683BB2, 5FF2BA89D9A7BDE78C40866F15EC576527699ADD0F120E1A8388C4404A69F0E8 ] Netlogon C:\WINDOWS\system32\lsass.exe
17:30:27.0531 0x0440 Netlogon - ok
17:30:27.0531 0x0440 [ D9FF8CA42C3541F4840693F17143C595, B05FB0B6439B34BD93EE59DC48BBE3D712A7428EFBFE37A887CE8546E57EE68F ] Netman C:\WINDOWS\System32\netman.dll
17:30:27.0547 0x0440 Netman - ok
17:30:27.0547 0x0440 [ 4D37150AB4D61598919AB70ACFD1369A, 9ABF73213988ED9AA72B2658F8B91967A24C7CC2049859D86CE9C51A4AB57A84 ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:30:27.0563 0x0440 NetMsmqActivator - ok
17:30:27.0563 0x0440 [ 4D37150AB4D61598919AB70ACFD1369A, 9ABF73213988ED9AA72B2658F8B91967A24C7CC2049859D86CE9C51A4AB57A84 ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:30:27.0563 0x0440 NetPipeActivator - ok
17:30:27.0578 0x0440 [ 96173660A4DD4A56E4B8938A67DAD9B7, F1D8F94625C6461DB89F8D3BDC73748F8A7F3446694BD1F148AF9BE6F17E9543 ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
17:30:27.0594 0x0440 netprofm - ok
17:30:27.0594 0x0440 [ 79C810D49E6D2825F51B0D7CAA6E2FAD, 19B7FB87FC8CE8FEA456F06D32099ED5B69FE38D2954580D4CEC32998D206E9F ] NetSetupSvc C:\WINDOWS\System32\NetSetupSvc.dll
17:30:27.0609 0x0440 NetSetupSvc - ok
17:30:27.0609 0x0440 [ 4D37150AB4D61598919AB70ACFD1369A, 9ABF73213988ED9AA72B2658F8B91967A24C7CC2049859D86CE9C51A4AB57A84 ] NetTcpActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:30:27.0625 0x0440 NetTcpActivator - ok
17:30:27.0625 0x0440 [ 4D37150AB4D61598919AB70ACFD1369A, 9ABF73213988ED9AA72B2658F8B91967A24C7CC2049859D86CE9C51A4AB57A84 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:30:27.0625 0x0440 NetTcpPortSharing - ok
17:30:27.0641 0x0440 [ 8C03F2F5A9E93AEB08B3AEE51552394A, F95185FB8D5FDEAB39E593488BA6ABCFA9C081BFED05008E0CD95F29B894AFC8 ] netvsc C:\WINDOWS\System32\drivers\netvsc.sys
17:30:27.0641 0x0440 netvsc - ok
17:30:27.0656 0x0440 [ 0C124EAC0EF7B3767280C94A8C03615B, D10216726A221C8FBC67C47F4B266C271A7C7A4438F77AC44BB561E0A6EB6D34 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
17:30:27.0672 0x0440 NgcCtnrSvc - ok
17:30:27.0688 0x0440 [ 6A3DA98447EF49AEB7931ECFBA51AFAD, 9F8E7313E6FD1F46AF22C9C58C877869E73848F459A73F16E0A6AC261BC483DE ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
17:30:27.0703 0x0440 NgcSvc - ok
17:30:27.0719 0x0440 [ 50F98CD010326B58F09082BACF3123AE, 124446A2905E23BB3F5763E347842F3F511EC44C37C2F85E409F73EC8F53924E ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
17:30:27.0734 0x0440 NlaSvc - ok
17:30:27.0734 0x0440 [ 6D8F6A9C53CFB0C49E8251A442B7283F, C3E913E4997C35A9B4C2E613A499F01D15264EAB699B93269B690B2A74A70E9A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
17:30:27.0734 0x0440 Npfs - ok
17:30:27.0750 0x0440 [ BABF7E1757D6908941C9F9CBD66A5EF0, 323E743CB26583763A9C5DE64E7E08138CB8D3E2DE0A8BCE9F774E1C7426E7F8 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
17:30:27.0750 0x0440 npsvctrig - ok
17:30:27.0750 0x0440 [ A85EB5721C7203AAAAAA04F551960CD9, E61ED728E154799346C749159BFE36FAEB2CE64FC5735F533B910017D66A7EE5 ] nsi C:\WINDOWS\system32\nsisvc.dll
17:30:27.0766 0x0440 nsi - ok
17:30:27.0766 0x0440 [ 7A6BA778B48DF9FB7AC231D4FF6E3248, 5959CA59C75D2C4DD8A539CAA8D99EF6A0CB5AA3F0D485B14C8B35911748F1F7 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
17:30:27.0766 0x0440 nsiproxy - ok
17:30:27.0797 0x0440 [ 731FD52461C8107E5B19B9AEDBB82BFB, 51B6722B9B2863B4AE23CE6B1DBD8481DA341748196BD482C6C5F4A6959F24F9 ] NTFS C:\WINDOWS\system32\drivers\NTFS.sys
17:30:27.0844 0x0440 NTFS - ok
17:30:27.0844 0x0440 [ 4FFB2D5655D10700D5B8E205C4DB86BD, 69078960669A373F9C2D47AF2ED841619831106B681EBAAEAAE5BD569A54CE6D ] Null C:\WINDOWS\system32\drivers\Null.sys
17:30:27.0844 0x0440 Null - ok
17:30:27.0859 0x0440 [ 176372CCCD2A3B36224D0490A24FDCD5, 214C2BE782CF060069070C292CD18084DFFC26A2F26DB94847EFFFEC5B190905 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
17:30:27.0859 0x0440 NvContainerLocalSystem - ok
17:30:27.0875 0x0440 [ 176372CCCD2A3B36224D0490A24FDCD5, 214C2BE782CF060069070C292CD18084DFFC26A2F26DB94847EFFFEC5B190905 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
17:30:27.0875 0x0440 NvContainerNetworkService - ok
17:30:27.0891 0x0440 [ 99EB6376EC2C03CE5F668577651E3454, A783FFBF89A9074E2074ACAF3F55862DF2F05CAFEAF6A2D509DDA665EB0D59CB ] nvdimmn C:\WINDOWS\System32\drivers\nvdimmn.sys
17:30:27.0891 0x0440 nvdimmn - ok
17:30:27.0891 0x0440 [ C27427C9D79DE00A01B9987B68485F60, D385AFADECC3B1ECD62211D5501050A66F6A334AE3799DDA8F8CA4C231CFB075 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
17:30:27.0906 0x0440 NVHDA - ok
17:30:28.0078 0x0440 [ E3BD60B7CB6E015359E8CBAAAC867E0D, 553422F32793621169F2465762EB2B345AAD58F191AAED29E9D89B40BF339B92 ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7209bde3180ef5f7\nvlddmkm.sys
17:30:28.0250 0x0440 nvlddmkm - ok
17:30:28.0266 0x0440 [ 3DB2E9E207358BFBD09B77B5119ECA5B, 55FED85EFC06B7AB5031D9986E4E4D2FA8841C549081ABBA9F9D9BBAB7852B37 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
17:30:28.0266 0x0440 nvraid - ok
17:30:28.0266 0x0440 [ 4C04BFBD4DB2EECCC47F5FA39D65BB6E, 9312DC4F7000991946D92D87DD9D37D70E336629EDBA553BFC79804049E34B73 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
17:30:28.0281 0x0440 nvstor - ok
17:30:28.0281 0x0440 [ 4942EC595A4A10F94BB060CB2DFE83BD, 2FDBA6AFFCA0E85D840AFD149762CE82C95861C370469DF8A5C5B5F213CD9488 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
17:30:28.0281 0x0440 NvStreamKms - ok
17:30:28.0297 0x0440 [ 90DCD15F2FCD20474DE896DAEC146308, A3CD21CA15F359A3BEC6D659372E303C21EF1A290F3B7DC18D6452C89BDDF700 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
17:30:28.0297 0x0440 NvTelemetryContainer - ok
17:30:28.0297 0x0440 [ F489CE4A8456F9EB0F0C5532E2FD7549, 145D8A8EBF5120C735FBCDCA6593AB29088E2AB77130749E3727CB1434C9ABEA ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
17:30:28.0313 0x0440 nvvad_WaveExtensible - ok
17:30:28.0313 0x0440 [ E922DF7E9767AB997EF82BD8DA37F84A, 15303C8DD36BAAB1007A364F3301A084E487D927B92CA66BEB42488241AF808D ] nvvhci C:\WINDOWS\System32\drivers\nvvhci.sys
17:30:28.0313 0x0440 nvvhci - ok
17:30:28.0328 0x0440 [ 0D611DC17E48B6F8DD466A089170D118, E55A78E2CC6A0A5F7B8F0B75DFB2297FBC3B959C4FDEFBEA1C6C4E7706724AEB ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
17:30:28.0344 0x0440 OneSyncSvc - ok
17:30:28.0344 0x0440 [ F5F10CE848CAF07A12A7B92290DBA38A, AC6AC13B692D07A6853B24A6396F1C3388586FD5D528F79FA3E373428D54D29A ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
17:30:28.0359 0x0440 p2pimsvc - ok
17:30:28.0375 0x0440 [ D1A9C22A98A10EB11A190B8FC7C07C6A, 1DE5F07E707DA9D833F105A8D948BBAEF0172DB2147D9A665EC7320F88D57B9E ] p2psvc C:\WINDOWS\system32\p2psvc.dll
17:30:28.0375 0x0440 p2psvc - ok
17:30:28.0391 0x0440 [ 2CC6C325B271C7CA60F374F8F868CB45, 569391CA5DF003ED33CAA89FD38834641023C24F7FAE2261F6DA8ABC5CC9C3C9 ] Parport C:\WINDOWS\System32\drivers\parport.sys
17:30:28.0391 0x0440 Parport - ok
17:30:28.0391 0x0440 [ 664B7DDEE982ADF5EAB480C75B9F6218, 1D1403CBD75916B83EEFA9B235E237583C40025C87C13676247F1EAD3F1D33EE ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
17:30:28.0406 0x0440 partmgr - ok
17:30:28.0406 0x0440 [ 72ABB842C15A6C3AC3D954308C6BF206, 8F2A69E3BE43BCD2C8A39153062216B5CCEC9FA62205EC8A23FAB209DFAE7062 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
17:30:28.0422 0x0440 PcaSvc - ok
17:30:28.0438 0x0440 [ C5B74C6D87E77BC64DEBD1BF57DEB375, AEBC86E404D4E3985D9FBAD9913AC52127DDE7C79062830717CDFEEA4CD7CC0B ] pci C:\WINDOWS\system32\drivers\pci.sys
17:30:28.0438 0x0440 pci - ok
17:30:28.0438 0x0440 [ CFB85CB7A6F6926EA0EB96EDFB3C8A91, 7B3A58C165DF231BB202D8A2036272932439864F8EBDC62811E2BEFA8B36FC01 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
17:30:28.0453 0x0440 pciide - ok
17:30:28.0453 0x0440 [ 13B7D84B397A90E82682C47A15C3A98D, 7F897DA83209381A8C26B34416899E276256AB587DC4E2B60B185CAC8D1877F0 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
17:30:28.0453 0x0440 pcmcia - ok
17:30:28.0469 0x0440 [ 76EA512FD9D4673CF7A57775EE8922E2, 6D2B90616A46BC4F9BB6BACBD78EB33C23834987365C87617AFC2E147871C984 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
17:30:28.0469 0x0440 pcw - ok
17:30:28.0469 0x0440 [ 4A88D29869609A39782EF53145E6F7CA, 6200E0B96FD0289D7F95779723E3CABBDEE17EDE5F802CC51E5539F475711027 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
17:30:28.0469 0x0440 pdc - ok
17:30:28.0484 0x0440 [ 4F190BA3C9BD2F0277BCBF480F396091, F09613C76350706992B39D7EA9B859D28F00790E5AC17CA7D49C3E270B9D8994 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
17:30:28.0516 0x0440 PEAUTH - ok
17:30:28.0516 0x0440 [ FE52FF97A094609429FEF098EDC6FB08, 6762ED340048AF61B756CB7B576BE2057768FDB677623D01F2A592727C0E5A00 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
17:30:28.0516 0x0440 percsas2i - ok
17:30:28.0531 0x0440 [ FCA143274792F12383C35902E801E83A, 87D93226E32153794993035553C9935D07242631E182460D8ED13650175C0F01 ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
17:30:28.0531 0x0440 percsas3i - ok
17:30:28.0547 0x0440 [ 4DAD2C73778D41F951B33854936E7BDC, 1421FDA2D083D5923422A038C54603BF798C48DDB7244DBEDA46D537B8CE1534 ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
17:30:28.0547 0x0440 PerfHost - ok
17:30:28.0563 0x0440 [ B730E963A31B73938A76D7B80666D60D, FADF452637E2EB50CC8C0E75956FE01F029C587F6EF2F8B347213263DE9D3A80 ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
17:30:28.0594 0x0440 PhoneSvc - ok
17:30:28.0594 0x0440 [ 97D85602B8131C487EB08A36F7343F5E, BEDC106AF06358D40BB034390645A5BFF9C138CFD51B5997D32614741D3D2372 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
17:30:28.0609 0x0440 PimIndexMaintenanceSvc - ok
17:30:28.0625 0x0440 [ F9FB601621FF33376F3908C2C27C6EF4, 8689565D4FD1C68826EA0A9C2B44377A2AEC3CD812595F0D32904D8FA5809672 ] pla C:\WINDOWS\system32\pla.dll
17:30:28.0656 0x0440 pla - ok
17:30:28.0656 0x0440 [ A2BACEBAC01BE7A6656B454E75C23262, C2C168718A341D48679AC4CA8005BD06E9F1F0D1F7C72D3C30A7A8CE1F665A43 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
17:30:28.0672 0x0440 PlugPlay - ok
17:30:28.0672 0x0440 [ 414CA4DCC31D795882B25ADC1DACE779, AFD8D9AA24C64DD9569FDCBE65171810FE27AF24B8DD2941FECE6245EABB6AAC ] pmem C:\WINDOWS\System32\drivers\pmem.sys
17:30:28.0688 0x0440 pmem - ok
17:30:28.0688 0x0440 [ D54385DD5A39A5636D1587FC9ECFC337, DEEA5D433CB2DA55AE58C7C5431A1249C94B61606F0A75E4A44D516619060263 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
17:30:28.0703 0x0440 PNRPAutoReg - ok
17:30:28.0703 0x0440 [ F5F10CE848CAF07A12A7B92290DBA38A, AC6AC13B692D07A6853B24A6396F1C3388586FD5D528F79FA3E373428D54D29A ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
17:30:28.0719 0x0440 PNRPsvc - ok
17:30:28.0719 0x0440 [ 118E91AEE8F6DDAD088F955498CF2487, F4447C64CF1F36432E0FF09B6712DCE61BF28E3499F20C6C69E80D98B42D671E ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
17:30:28.0734 0x0440 PolicyAgent - ok
17:30:28.0750 0x0440 [ 456DEA8B86DD28A2BAD65DC0F05B659E, CF23418563605C0255C903366D92F8A0C4CAA407000F509D558F676DD843DBCD ] Power C:\WINDOWS\system32\umpo.dll
17:30:28.0750 0x0440 Power - ok
17:30:28.0750 0x0440 [ D292D7FADCEE481CC64A9DE8FE9C3347, BD870A375E33CD8434CA97FFE9C2F84E58C6CD0EAEEEE8922172CB01F9674B55 ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
17:30:28.0766 0x0440 PptpMiniport - ok
17:30:28.0813 0x0440 [ 5404E7A968A26DF03793B6F68536594D, BE5A85581E87EFE4DB43AD17B8D42D3F7F32364AEEC1416DBB94279C4A203FF2 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
17:30:28.0859 0x0440 PrintNotify - ok
17:30:28.0875 0x0440 [ D57CF871B3977731A91FE9611A54C7C1, B6C7F685716A88D0978377B83C5320C88EED0CAA44A001849AAFF71E4E0682E7 ] Processor C:\WINDOWS\System32\drivers\processr.sys
17:30:28.0875 0x0440 Processor - ok
17:30:28.0891 0x0440 [ 56A7713DE64B16FB309D132E88FDB098, A658C8DCA87442F33B726A9B2060B20393D83B8658D0894C046CAFEAB00E2D8A ] ProfSvc C:\WINDOWS\system32\profsvc.dll
17:30:28.0906 0x0440 ProfSvc - ok
17:30:28.0906 0x0440 [ B60431D2A046AD97F8427F6E568370F5, CD488E343585A5AC19D9AAF88BF0BB7EEA1BC48F6DA4A4FBF9BE5A04ECF5040B ] Psched C:\WINDOWS\system32\drivers\pacer.sys
17:30:28.0922 0x0440 Psched - ok
17:30:28.0922 0x0440 [ E0DCCA2A78516D155A6485CCA99F0EA5, EAFD24F815ECD6373BEC8E75B24FB54694CB8E4FF430FB6886F9B5B1C1762BFC ] QWAVE C:\WINDOWS\system32\qwave.dll
17:30:28.0938 0x0440 QWAVE - ok
17:30:28.0938 0x0440 [ A2B0F46FBA2521E7E732BDBDB1238515, 7F0FEFB09770BF5889D6C2219F68399C962A3F1071E70C4951B6FDAE196CF041 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
17:30:28.0953 0x0440 QWAVEdrv - ok
17:30:28.0953 0x0440 [ EA9EB06EFC325CD2ACF5DF2F26A4894E, 32AC7EDB42CDA736E2AD9AB67795735F16234D9BD80D56FDAE5B8B3C3C1CC26F ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:30:28.0969 0x0440 RasAcd - ok
17:30:28.0969 0x0440 [ 4E9379389D0A851DD19D130C8FAEFBD0, 279A25EF8949A5BAF311CA75493A5F89F74A02711EF875F67D0A95849B409C00 ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
17:30:28.0985 0x0440 RasAgileVpn - ok
17:30:28.0985 0x0440 [ 3E8CB44832FE3F96047187291523CDA1, 999A10D4D50CD2C39309FDC04A9F4CB0959BA061AE9305D4DF7F00F37F3813F9 ] RasAuto C:\WINDOWS\System32\rasauto.dll
17:30:28.0985 0x0440 RasAuto - ok
17:30:29.0000 0x0440 [ 5279EC98F6218D29EADDFECCC0D80E9A, 6F376FC3BEFA9F521635192177962AF1F41173502EC067896B7C2A5FB71E7A3B ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
17:30:29.0016 0x0440 Rasl2tp - ok
17:30:29.0016 0x0440 [ AC6A0AE3B33EE783717820458882F91C, EA503A90DBC31FB6B5D047D59E0F2855880EF3877877AD576579DB5CD8188E4A ] RasMan C:\WINDOWS\System32\rasmans.dll
17:30:29.0047 0x0440 RasMan - ok
17:30:29.0047 0x0440 [ D7FF75ED7A48FD60A573C9E959CF4DB5, C67673E2D678527F8C07C9BCC487D385B92282D9D73396CFB01F14F5211CA991 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:30:29.0063 0x0440 RasPppoe - ok
17:30:29.0063 0x0440 [ 6A4E45A7F17FA0B4B1B48C550E311944, 1E84A559B7AA5F07E8156D223EFFB1B2B43D1E4E90E561D8DF2C257FFBCFDC0D ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
17:30:29.0078 0x0440 RasSstp - ok
17:30:29.0094 0x0440 [ F2C575A9657F7B2E027C6CE7BC8F1A2D, 5D002488CCEDCEBF0542F508FCE47DC9105C67D5685489970048437BD243AC0E ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:30:29.0094 0x0440 rdbss - ok
17:30:29.0094 0x0440 [ 9414B22E093243636D362BF8C8C12A67, 575CE91AFADD771CBF86377962EDFAF70150BBA575F8DF144FEE6CC1C0FF88E0 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
17:30:29.0110 0x0440 rdpbus - ok
17:30:29.0110 0x0440 [ 53A01D3FDB701AC5D9DDE4140227E3D9, 833AF0BAAB49B58C71C684D2AA20B900C27E19DDCE5E15355C7ABAAB33BC7673 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
17:30:29.0125 0x0440 RDPDR - ok
17:30:29.0125 0x0440 [ DF32ED51DC0C3F6F3B1C4CEF71B8B426, DBEAD271B5DE6439E3106BDDB8B1E47D7BA47AE203CF3E1F8924CE02FDCA6E0B ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
17:30:29.0125 0x0440 RdpVideoMiniport - ok
17:30:29.0141 0x0440 [ 2369A5B651308E0C3458143976E9B03B, 0EDE99F7E2A7668E90C2FCA11D4BCE0676FBEA2CCFB57A004827CE5FE96D1584 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
17:30:29.0141 0x0440 rdyboost - ok
17:30:29.0172 0x0440 [ 3581FB9529035F8EC6DB681664CA70B1, 0C7BCD6A3B4248683C52B69F0B373D5929C2375F9BBF6CA80C480A8E7446A30C ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
17:30:29.0188 0x0440 ReFS - ok
17:30:29.0203 0x0440 [ 79E1ADE19D8B7C56EF29D098EAF57AD0, 295D0F04359A00849759976710F6CB83DB96E5007946930EA19865620EA3EFE7 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
17:30:29.0219 0x0440 ReFSv1 - ok
17:30:29.0235 0x0440 [ D91C597DE82E1500525945E1FFF24B0F, 3F5837A743715FB2CCBFC9458FBE010AED170B46515925D4C7C59BBAC792F695 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
17:30:29.0250 0x0440 RemoteAccess - ok
17:30:29.0250 0x0440 [ 19D1072193DAF71C97E5A05FC7673BB3, 313C3762CCC490C20B5561A78E6002E7A52F0142B370F17849DD4AB2F0AF6513 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
17:30:29.0266 0x0440 RemoteRegistry - ok
17:30:29.0281 0x0440 [ A12D167F73C3E285AC623BCA62B3A8BC, 6E8213808C22C0688BD40721FBBBAA88BFEFA1BD304BC19AA015FC541CA5BF84 ] RetailDemo C:\WINDOWS\system32\RDXService.dll
17:30:29.0297 0x0440 RetailDemo - ok
17:30:29.0297 0x0440 [ D31B2CD9458D2E212A5F24D56D2FB8D5, D8EC0BDB9D143C050A48217C57AA1BA6D60EEFEF67A98441064BD8FD339987DD ] RmSvc C:\WINDOWS\System32\RMapi.dll
17:30:29.0328 0x0440 RmSvc - ok
17:30:29.0344 0x0440 [ C79F1F7C8A5FCBE90E3C833299AA1F59, 7969E79B2095BDA144AA369DE21F49C9FAD272B5864B2F0FD28CB28D148F2AD6 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
17:30:29.0344 0x0440 RpcEptMapper - ok
17:30:29.0344 0x0440 [ 1CE6928C1587F9760F7C3A036786CAE8, 3E4F5371E0DDDBA612BF61891D17D691DCAFB2E1010BBD84737FBD98DA8C03DE ] RpcLocator C:\WINDOWS\system32\locator.exe
17:30:29.0360 0x0440 RpcLocator - ok
17:30:29.0375 0x0440 [ 0E79A4C76CAAA0CFE9CA42C13E5AA086, C4D90EDA54216CC7897128D39517E4E18195BF28254796C6D0684E2C7DB90642 ] RpcSs C:\WINDOWS\system32\rpcss.dll
17:30:29.0391 0x0440 RpcSs - ok
17:30:29.0406 0x0440 [ E87EECED9287C275B6CF30EB598B1D77, D0C5D4E37A3FAD422C0ECFFAB53904D9FD5385129DE2BC5AF75D91CD016EA6AC ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
17:30:29.0406 0x0440 rspndr - ok
17:30:29.0406 0x0440 [ 6308366D3CDEA5F427CFF4BCF0081B4E, ABB91A41C09A1607C66BD380FD0A3EECAAF9AD534856CCC78DE1A4E450ADB07F ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
17:30:29.0422 0x0440 s3cap - ok
17:30:29.0422 0x0440 [ EABFCDA6E996F8A32DC1B302F7683BB2, 5FF2BA89D9A7BDE78C40866F15EC576527699ADD0F120E1A8388C4404A69F0E8 ] SamSs C:\WINDOWS\system32\lsass.exe
17:30:29.0422 0x0440 SamSs - ok
17:30:29.0438 0x0440 [ 33B2DC5C2F19DA89F862484E23D9833D, 1C3BD1804767D087BE1510EEDCE94FFAC096922C821A123DB1BACDA5777246A7 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
17:30:29.0438 0x0440 sbp2port - ok
17:30:29.0438 0x0440 [ 6A7F961E0E6382F185809AEC6A97E078, 434E215337453C3973762A2F10806A57F3B296DDD34A948F781B67E374836AF5 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
17:30:29.0453 0x0440 SCardSvr - ok
17:30:29.0469 0x0440 [ 45B203A8CD642F72E86690B957B6490D, 29D5733D2A6FF9F051FD74FFDCCDB5272EC8E7734021F5BBF0E9E521E61B150F ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
17:30:29.0469 0x0440 ScDeviceEnum - ok
17:30:29.0469 0x0440 [ 5CFEEFCC6FAD1FD09ACCFBD652DDD85B, F90104CC42073ACD48A2FCCEDF58B57D8663223406ECB0A270140A053E9260B3 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
17:30:29.0485 0x0440 scfilter - ok
17:30:29.0500 0x0440 [ 5BBFA6CA63E8A5BB8FA2FA84A5562CE2, C74CD0A76473343A8620D26C96F7300026C295EDF61B8A336AB326DFE861678D ] Schedule C:\WINDOWS\system32\schedsvc.dll
17:30:29.0516 0x0440 Schedule - ok
17:30:29.0531 0x0440 [ 5C8620FAC0E3C1658C8EF7AD7BB7EA5F, FEBE7FC79FCDF692167D82DE54031FD68BD2941544007EEB3D82C21E7F1C5C83 ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
17:30:29.0531 0x0440 scmbus - ok
17:30:29.0531 0x0440 [ 0EC94DA356D89CACD89B6E139E4D0A7D, 2F887681FDD5AB787154403E34623B1DFB61C70DAE5E2BFF1565E100F228870B ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
17:30:29.0547 0x0440 SCPolicySvc - ok
17:30:29.0563 0x0440 [ DCD86049661A2C36DEE69D9DF7C3330D, DFFE21D91289C17A1ACE1311A8621EDC0C6579552B4C22FEC3BD884746234114 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
17:30:29.0563 0x0440 sdbus - ok
17:30:29.0563 0x0440 [ 464B615872981015AC4FEEBDEA83A063, 5CF491352B267241CA11F08E72E6EA668A595662561892E0D02CCA5B71172E14 ] SDFRd C:\WINDOWS\System32\drivers\SDFRd.sys
17:30:29.0578 0x0440 SDFRd - ok
17:30:29.0578 0x0440 [ 847F01FB8504425BB255856A14278A86, 41997D25D12779CA79551988C56FA0A302367076B09A82F620858EDDDBFCE3FF ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
17:30:29.0578 0x0440 SDRSVC - ok
17:30:29.0594 0x0440 [ 6BC219F1D9CDE08CEB9084ADB41FBA01, DA8AC3B42A72515A1976961976203A52D4C8636586EB5EF6B466AAF967A6567E ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
17:30:29.0594 0x0440 sdstor - ok
17:30:29.0594 0x0440 [ 2AE8505519C7E8A903DD7BE793A79846, 7044B1BC183E028BCFB544489B033F0968F033696F9816F354329ABD26C6EE7E ] seclogon C:\WINDOWS\system32\seclogon.dll
17:30:29.0610 0x0440 seclogon - ok
17:30:29.0610 0x0440 [ 09301074EA03CA8E82EAB16ADA1217CA, 4A303880959F611B199C810D231539B7DE618E28041BFA30891F2C55A70754D7 ] SecurityHealthService C:\WINDOWS\system32\SecurityHealthService.exe
17:30:29.0625 0x0440 SecurityHealthService - ok
17:30:29.0641 0x0440 [ 77FB9BE8EDDCC999D09F2B1A7878A2A9, 589774C006A339FCA9772C37C9103C73C8592E018553804B97F34E2A0069A3F7 ] SEMgrSvc C:\WINDOWS\system32\SEMgrSvc.dll
17:30:29.0672 0x0440 SEMgrSvc - ok
17:30:29.0672 0x0440 [ 25456AF499A0C9C4A93CFAC70BDE9CC2, 885C1A9C8BFA73D9C9C454759DF871237F7C0F28D879E98B4BE0D0113C549B09 ] SENS C:\WINDOWS\System32\sens.dll
17:30:29.0688 0x0440 SENS - ok
17:30:29.0703 0x0440 [ 892C955E1081412942F64679E0DD7A5D, 6A28012270FA1FB3BB279102C67FA5296564630181C887E1EA6EA1F952A30C37 ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
17:30:29.0735 0x0440 SensorDataService - ok
17:30:29.0750 0x0440 [ 358008CBDE5603F3B56789C977661CE3, 2C81180B27B854F201A683D2C75677660CA54ADC685F86CD414537C60D51FB4A ] SensorService C:\WINDOWS\system32\SensorService.dll
17:30:29.0766 0x0440 SensorService - ok
17:30:29.0766 0x0440 [ 9B3744C26F206F9F90713D93A93C8B6E, D194F668D8BDDDB4356136CACF1FAD46E7566939C624029EF6E28D7A192B8EBF ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
17:30:29.0781 0x0440 SensrSvc - ok
17:30:29.0781 0x0440 [ 585329F62195A4B7AAD0A95F6EC89751, E7ADED97ACA8E8E06C368E24702C22D4C2B0B9495DEA24A2DC2A30782099BDCE ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
17:30:29.0781 0x0440 SerCx - ok
17:30:29.0797 0x0440 [ C8F4FDA8B3D039D7947344614FF5BFB2, 1A3B88EC59F2A820AFE4F3AC65F7149EAC68672D1F0D729CBB575694005A8911 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
17:30:29.0797 0x0440 SerCx2 - ok
17:30:29.0797 0x0440 [ E5B450E4E0DC1591254BF9CCF6C57B40, 958E7378D9BDE1F2EBE736D8D9912D56835A606AABDD042443A35CA37EC70F11 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
17:30:29.0813 0x0440 Serenum - ok
17:30:29.0813 0x0440 [ 628D8DD136F92316BFEB58FA005338B7, 0CDA673D31F40EBD07E9F67667DB6077F23DCADE2DD8376AB550575224625D44 ] Serial C:\WINDOWS\System32\drivers\serial.sys
17:30:29.0813 0x0440 Serial - ok
17:30:29.0828 0x0440 [ E5BA0B7353ADC5C95AB466D2E4DC89B1, 98F2A22ED892B2610C85EAAAB51DF25939599955A27611FCE9E68C3701CFD4EA ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
17:30:29.0828 0x0440 sermouse - ok
17:30:29.0844 0x0440 [ 043D7B39E693C610036BD56DF30EF440, 329D29CE1CB5F502B7DFCBE24878CA61EC56787A1B02195E19499701B194DE08 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
17:30:29.0844 0x0440 SessionEnv - ok
17:30:29.0860 0x0440 [ 15CFCC4692DA8887B977CE5FC5181084, 31D86E122E35AB9E7275F2B0573EE98770BBE517ED3B9CCED97F4969C9A619F9 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
17:30:29.0860 0x0440 sfloppy - ok
17:30:29.0875 0x0440 [ 87B083252816171A17F833CBCB7AA85E, 200AB93CEF384791DC9B04D2AF17877CA10595B2CEDF4B9505E367A2382C4AB7 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
17:30:29.0891 0x0440 SharedAccess - ok
17:30:29.0906 0x0440 [ 4293E11951DEAAFB3924AB1DAB1FAC08, 644974816DDF690B26F369E48533D654A5B298BCA993EE53EACB5C00E52E5243 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:30:29.0938 0x0440 ShellHWDetection - ok
17:30:29.0953 0x0440 [ 1F73E6C66E7D9ED4FD58F9238D27430E, F1BFF9D3A0BB1981F6A1A3C23476675760E5AEFD919697D6DF00421576D93985 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
17:30:29.0969 0x0440 shpamsvc - ok
17:30:29.0969 0x0440 [ 2339F6B45E1D863B1D327F3AFD75A675, 03304ADC42EF6E8F671C8AA78A0D3E40408D870FBF2DA2B31A1727F86EF8F213 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
17:30:29.0985 0x0440 SiSRaid2 - ok
17:30:29.0985 0x0440 [ F520D50AD7266ED31D25DF4C8EA6BC2D, F68CF9EFB8319E59A8D9C24A36A198185DD79CBACD14510F5450F0024F0CD4D3 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
17:30:29.0985 0x0440 SiSRaid4 - ok
17:30:29.0985 0x0440 [ 70A2FD5F5B7B1A5E1146BE45E4DFB75D, 598824F06BBC2E37B9A6474411637C73233C8D2E13AE963C3229279A8519A9D3 ] smphost C:\WINDOWS\System32\smphost.dll
17:30:30.0000 0x0440 smphost - ok
17:30:30.0016 0x0440 [ CB001810FD0C56F1D57229D023A84AE8, E423B53EE3A3710D6F45CD14C8BA5EF8E955344C8477385D470E6687FC661A75 ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
17:30:30.0031 0x0440 SmsRouter - ok
17:30:30.0047 0x0440 [ 17B685A6DBD7543D2A55739526361583, EAF3C4DE587866D04CF9B051E5CEE335BC84788C8C62816AF404B6AD24FF1482 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
17:30:30.0047 0x0440 SNMPTRAP - ok
17:30:30.0063 0x0440 [ 2334ED0B61CAE7E7B1B454674206CDAC, 4EAA11805C2282E0306A381CF56E4B28D83C68BA1B401BFD512AE70C05C8A4CD ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
17:30:30.0078 0x0440 spaceport - ok
17:30:30.0078 0x0440 [ F3F0B8CAC1F3E6C3382EAFCE762475AD, 9F2EB373FB9216CDA71965979EE5E18F3AFDD26FF7E0C09DD7C3D880205C2554 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
17:30:30.0078 0x0440 SpatialGraphFilter - ok
17:30:30.0078 0x0440 [ 83E82B0E292DCDE4C75B9241BF0FB300, 494D2FD4CD082CC416CA5FF1ABE06BDC65A769F371CF0E18AD25C380B45AEE32 ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
17:30:30.0094 0x0440 SpbCx - ok
17:30:30.0094 0x0440 [ 10CD42898C9E4849193E78A87337B2E9, 7C4FCB36EE1AF92C6962F14AE6DEF2CB154468EC3963DCDB9BDF8398C98B475B ] spectrum C:\WINDOWS\system32\spectrum.exe
17:30:30.0125 0x0440 spectrum - ok
17:30:30.0141 0x0440 [ 29D813B5D84BC2C26BBC607CAA57A675, 2C4D5F4E2F7B6580E22ABF67690B0D32CAF5063DEA79E6F57E565782973F3990 ] Spooler C:\WINDOWS\System32\spoolsv.exe
17:30:30.0156 0x0440 Spooler - ok
17:30:30.0219 0x0440 [ E910861720DE6EDFB5CC6158CE3C7E17, 526BA8EEB9EE5312FEC39753D728E05F49AD81132346A354C95D4D4938001E2B ] sppsvc C:\WINDOWS\system32\sppsvc.exe
17:30:30.0281 0x0440 sppsvc - ok
17:30:30.0298 0x0440 [ 36EAC4FE629FC036632F13EC14788FD1, 6AEE37816306FE46FA99EADB23E98CE6A6674C11ED847F1F5575926E26B09F9A ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
17:30:30.0298 0x0440 srv - ok
17:30:30.0314 0x0440 [ A84B05C7C2A233497BE1D518A662C326, 85B291B6783AD48F2111B46050311A553BE6D6A7C3D90861DC010FA65730D2B5 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
17:30:30.0330 0x0440 srv2 - ok
17:30:30.0345 0x0440 [ 0351B28EEDFBD6C8CC69A7224A098CFA, D1D08D63F773CAEEA66585D090C073C0748AE96A2AAE8487E4B8BA54F7E59558 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
17:30:30.0361 0x0440 srvnet - ok
17:30:30.0361 0x0440 [ E95A6C339AE68515897B2E4C6B0842CA, 29DD7E83CD68432EAE4A7ED92CDA40AA52028F5FBB52152F0A1C752B572C2684 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
17:30:30.0377 0x0440 SSDPSRV - ok
17:30:30.0392 0x0440 [ FBD45746B2EDEECA10CCA6A861F8049B, 34383B0A07A93E0FA89CA32CD45AC5061F73723B2A9E0BF4AF93A53F70F1678E ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
17:30:30.0392 0x0440 SstpSvc - ok
17:30:30.0455 0x0440 [ F1A5AC00B8CD7E28BBC8DD7E60D48B65, AC185DD46A8B63500DDE74C2446F6409B0B4612068C33B4B7C30E43F389908DF ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
17:30:30.0548 0x0440 StateRepository - ok
17:30:30.0564 0x0440 [ C8DC0C34715627ABF7A265ED27D1F75A, 5B8B9AC65D7458A8C6C868107E0BE3F9B1A1A5117FC69FDC260BAA9F1BDD0008 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
17:30:30.0595 0x0440 Steam Client Service - ok
17:30:30.0595 0x0440 [ D40C589F80EB1C511263D0547C0259AE, A0236F6BB515AE006CC4C9F40FCCE250407888757A3646BB4BCB59EF8EEF1311 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
17:30:30.0595 0x0440 stexstor - ok
17:30:30.0611 0x0440 [ F83F43CD328E6CEEAAC27612F3EB1FF5, E3D35E5154CD228301806706E6EADCA36E9113EAF44BC06E3C43B2E902187326 ] stisvc C:\WINDOWS\System32\wiaservc.dll
17:30:30.0627 0x0440 stisvc - ok
17:30:30.0627 0x0440 [ 63F1C499672A1049F0814F243798F35F, 65B39E2AFC48E8F5754296DC72183EE505677D7FCD8909D4975629D6AA849DC0 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
17:30:30.0642 0x0440 storahci - ok
17:30:30.0642 0x0440 [ E5F703788DFA05411F1469E96838F438, A7E8D2DC23E23EA52B068C71D9387E69FF49798A27CE0243A994A2B1B09FA042 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
17:30:30.0642 0x0440 storflt - ok
17:30:30.0642 0x0440 [ 0D0128244FF55EAD3F878D3FE542DBA5, 4FCFA1B2113E07264A71A22298CA6E9FDC2AB722E0AE184A8F5656C18113A858 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
17:30:30.0658 0x0440 stornvme - ok
17:30:30.0658 0x0440 [ 3A62FF78619258E6126C5C4B4CC82C8E, C72CC295680B35E0EEE5A5310E0241E2FFE0E540BFAA49C35C06AA882229C1CD ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
17:30:30.0673 0x0440 storqosflt - ok
17:30:30.0673 0x0440 [ 212CB512B785E218667CCA56C4BFD71D, 5FD4CFEE5AB2187D928632076E6AD5C2C53D66884479C4D34930DCFCA3CCEE34 ] StorSvc C:\WINDOWS\system32\storsvc.dll
17:30:30.0705 0x0440 StorSvc - ok
17:30:30.0705 0x0440 [ C6097966F8EA3B288070CDF7C3C8C3E8, D12C4AF3E54DCE1E5DC9C8AA0E83420F481DC0165A7F7845083A85BABC102D37 ] storufs C:\WINDOWS\system32\drivers\storufs.sys
17:30:30.0705 0x0440 storufs - ok
17:30:30.0705 0x0440 [ 3DC3B17E92DA02E36B4138733DF6C1AC, 398F20B6D6DAF6DA950C149F63F3B23864E1478119BFE53218C220CEADEC800D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
17:30:30.0720 0x0440 storvsc - ok
17:30:30.0720 0x0440 [ D284AB2CA6C30317D142D38CE1F848BE, 4C9EAE174F5C673CA550C9382E85CE7DAF5DC9965495BAB09078B634A4CDD4FB ] svsvc C:\WINDOWS\system32\svsvc.dll
17:30:30.0720 0x0440 svsvc - ok
17:30:30.0720 0x0440 [ 2BC4D0EBC2467FE90302AE0AFAF23768, CF8BCC9CA1FBA8407FD044613A2497BEEC641DE463B076F0ED1FA7674C202ADE ] swenum C:\WINDOWS\System32\drivers\swenum.sys
17:30:30.0736 0x0440 swenum - ok
17:30:30.0736 0x0440 [ 13985DA558FBCBFD9108A2CACB5FE494, DD457A73E82147AA90C36D695A47E862FF90D96FB1E22760FAB5780F7C332A46 ] swprv C:\WINDOWS\System32\swprv.dll
17:30:30.0752 0x0440 swprv - ok
17:30:30.0767 0x0440 [ 572F81CF08972D53BAFFC2A110A2A586, D9AF8EBB31CE097849F93FC8C0F06178B2E1CA8C48D08BBDD85174CCD64A16D6 ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
17:30:30.0767 0x0440 Synth3dVsc - ok
17:30:30.0783 0x0440 [ 4746E7782AABDDC950E94336C03D3D4E, B583CB003D364F82B6C45932CC119FF8D5555E3E0B2D75B861B34C1B6AB6509B ] SysMain C:\WINDOWS\system32\sysmain.dll
17:30:30.0814 0x0440 SysMain - ok
17:30:30.0814 0x0440 [ 97E0FD613D031EAA73E8AD259169AC22, E86E9B9C18AF2E79D7CF80B177A12D89418CDBD3CBB74307809DD0377408DB82 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
17:30:30.0830 0x0440 SystemEventsBroker - ok
17:30:30.0830 0x0440 [ 7750219DFABC38261575B6CEFBF84EC6, 50DF85E34AF7C1343281AD0EF34FD94AB0E279DA5C61976ABA0135B8F013C543 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
17:30:30.0845 0x0440 TabletInputService - ok
17:30:30.0845 0x0440 [ C1C6A802C2A9A57029D4347E251F4D18, 9F75B7F003C829FFDB2CDC98231D32FE988754D23873048FA4F6EB82ED1DCED4 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
17:30:30.0861 0x0440 TapiSrv - ok
17:30:30.0892 0x0440 [ 0907BD52E5264C0851A839D471F35DA0, 6301E98E343F72AD8F10C3AAED3EFD60221EC43206BD6740DD0CD8DF3ECBB5F5 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
17:30:30.0939 0x0440 Tcpip - ok
17:30:30.0970 0x0440 [ 0907BD52E5264C0851A839D471F35DA0, 6301E98E343F72AD8F10C3AAED3EFD60221EC43206BD6740DD0CD8DF3ECBB5F5 ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
17:30:31.0017 0x0440 Tcpip6 - ok
17:30:31.0017 0x0440 [ 1C35A5C62D110346379C55E39A3D547C, 5BDBD593AB51ECA5A6B703E86F300E3B2B153E128BEB9A006ABD827AE726BD62 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
17:30:31.0017 0x0440 tcpipreg - ok
17:30:31.0033 0x0440 [ 2540384EF2EEE5BE930E3FB1061395DC, 53BACC0718967E0860BAE1EB2DECDD3960FA19AC47066C5DFCE03AA0427BB654 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
17:30:31.0033 0x0440 tdx - ok
17:30:31.0033 0x0440 [ 96A35CDBA661D41C5A3914257CA1D200, 691ABBAA99C673E7D0B81D811BCC60976C3EC050F2B39B35B87A3BCC211F119A ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
17:30:31.0048 0x0440 terminpt - ok
17:30:31.0064 0x0440 [ 0B5C6D1683CDE89B3488326C60EA6EF2, 3B822CF005FA3002F27FF9BF39E7E133987230DA3481CFCF99F3B2B6B373A718 ] TermService C:\WINDOWS\System32\termsrv.dll
17:30:31.0080 0x0440 TermService - ok
17:30:31.0080 0x0440 [ 6568EF1B30101979107055B7E515EE58, A318082E5FDD79C9F85E8C00A78EBFA0EC44B1046976E85633DC7BD123DA38B9 ] Themes C:\WINDOWS\system32\themeservice.dll
17:30:31.0095 0x0440 Themes - ok
17:30:31.0111 0x0440 [ 2ABC11CFC2F03A919AF78A6E3E29C570, 54D91F89993A0FF090E2213EED92DE3659DCB693FBDA5932E31C6D6D7CFC8E80 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
17:30:31.0127 0x0440 TieringEngineService - ok
17:30:31.0127 0x0440 [ 8949EED671F531E7B4A0FD7333CCC125, 2D55A1B4FD6843A11383BB71D0409943CA0C47350153F3EDAAA3CADFA4A3504A ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
17:30:31.0142 0x0440 tiledatamodelsvc - ok
17:30:31.0158 0x0440 [ E59D4F92FE11B47AB727C6D192CC977F, 1DA06663889A20A1B22DDF90E5C99A5668023C0B89E252F3E820C0D1964B1948 ] TimeBrokerSvc C:\WINDOWS\System32\TimeBrokerServer.dll
17:30:31.0158 0x0440 TimeBrokerSvc - ok
17:30:31.0173 0x0440 [ C83505A5CC15E39D6C6D7B3C20187E5C, A6AB47C041A7C99CB0D5EA706CC31B3D88DC83BAF5AF7E59F651F9D7068D94B2 ] TokenBroker C:\WINDOWS\System32\TokenBroker.dll
17:30:31.0205 0x0440 TokenBroker - ok
17:30:31.0205 0x0440 [ 13878331EB3906C29A1F4E46B9606218, 892C17BBB35E72B36AE5F16124DFD5D8D7151260A370C142EBDD1D14EAD42AB9 ] TPM C:\WINDOWS\System32\drivers\tpm.sys
17:30:31.0220 0x0440 TPM - ok
17:30:31.0220 0x0440 [ 85E0D4431D61675A94EA99C9E1F56436, 9FA750703E04D20A62DBB0185CBDD70AFC4573FB65F86E61AAF7CF7A7D8E1E3E ] TrkWks C:\WINDOWS\System32\trkwks.dll
17:30:31.0236 0x0440 TrkWks - ok
17:30:31.0236 0x0440 [ F21A69013A67B372675F523262AC1E33, C3F910E375C0F4B7FFA6F6D755622FF6B0CAE36DF691C938DE177C94815FE3C8 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
17:30:31.0236 0x0440 TrustedInstaller - ok
17:30:31.0252 0x0440 [ 9856BCCD1CD5DE4D17E8DBBA7CEFC688, F4B532DCE6F4728092848FE7B2FC05AB921EC7B3FDD7E62AB40EE0029C008398 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
17:30:31.0252 0x0440 TsUsbFlt - ok
17:30:31.0252 0x0440 [ 837AD2B941E721BCCEB7EF137E2DEE18, 84BE22616A50467B1957434C8BD19C8B0FC3B21CD77FFB8E16A09347CEAE0F4E ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
17:30:31.0267 0x0440 TsUsbGD - ok
17:30:31.0267 0x0440 [ B3142C6118703E98EB0510CF7B43D0F2, 40FDCBAA2AD93026AD479BF8C1B4EE7A4E2E65590608B6B1C5DEB3C4716E5C03 ] tunnel C:\WINDOWS\System32\drivers\tunnel.sys
17:30:31.0283 0x0440 tunnel - ok
17:30:31.0283 0x0440 [ B097B77121A057AB6D70C647636978D4, 10F78A18AC898CDD0FA91D6FA29B8B45C6D8F6CE65B064C39256EB20FC6CD085 ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
17:30:31.0298 0x0440 tzautoupdate - ok
17:30:31.0298 0x0440 [ B4C846ABD462558D45CA578C855759C3, E0F0DD39A6C101C2209CA46EF2B5A5F4559843C9EE37CC08ED78D9E124A566D2 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
17:30:31.0298 0x0440 UASPStor - ok
17:30:31.0298 0x0440 [ 5C2C0296D9EE7DC92A3F14642FBE656D, 94A7D549EC53C71095AD8DE4DB8F846D1DB3438FE2679E41DCAE62C34C0654DD ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
17:30:31.0314 0x0440 UcmCx0101 - ok
17:30:31.0314 0x0440 [ 8BB64E04CD97AD8C68543181D93E2AFC, FBA2FB9A9906721BAD42CDFFCCE0234AF3F72B83E2571E526801F19173B7C9CE ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
17:30:31.0330 0x0440 UcmTcpciCx0101 - ok
17:30:31.0330 0x0440 [ 5A7CE114C8DA9060F32633F81A5625E5, B49163951B380827ADBF13D336D5BDC1EEE90A70058019928A603AA1C24D8EB7 ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
17:30:31.0330 0x0440 UcmUcsi - ok
17:30:31.0345 0x0440 [ 5D4EAF3D0911338CB8FDB088386D6DCA, 1AC5B494C39570E66C4D4F867C6B8E37C174FB5D67C2865B07247122F60F8895 ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
17:30:31.0345 0x0440 Ucx01000 - ok
17:30:31.0345 0x0440 [ 384E1F0D84B465820416338E52FE7C2B, 8F82778332EA1199987BA569536CBED8FEAF5E9D920321B0C9DFCBDDD91EEA35 ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
17:30:31.0361 0x0440 UdeCx - ok
17:30:31.0361 0x0440 [ C82BE75239D412057C9E3DB1785680C6, AE712E40440F5725DA41C95C3E558B5E9ABB17C55B70297DD40D7D1BDA7CE45D ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
17:30:31.0377 0x0440 udfs - ok
17:30:31.0377 0x0440 [ CCDF6EFF952BF3BF34DC17600F479397, 2A2009B3C4BD1A44F1C6E334CB0A7DD02443BCE1EB48837C1C70A2A04CC7C54A ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
17:30:31.0392 0x0440 UEFI - ok
17:30:31.0392 0x0440 [ 00BEF71C45FD6B06E7525E7B31EFA88C, C0BDE8CB41BF9A34E395EA86756637E4CD6B88EF1C842364ECA639948D6CD59A ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
17:30:31.0408 0x0440 Ufx01000 - ok
17:30:31.0408 0x0440 [ 9450AB15C30CF7D1F23C8A42E778C3A2, E62455008ED5B7220AEE62E0F459A67E26FB2878349ABA5AAF0164C2E7A8C0E9 ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
17:30:31.0408 0x0440 UfxChipidea - ok
17:30:31.0423 0x0440 [ CEE12C7A689BDF448715024A7E0EB9C3, EC48E1469800E34A71C8A97A6F2F0B7C67385BCB8438844E6967DE0A82E39B94 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
17:30:31.0423 0x0440 ufxsynopsys - ok
17:30:31.0423 0x0440 [ 5A2F610B31CC3FD23D3E20C1D5F1EF52, D470B7C1CAE066C2DCDBA47001913FB1A7C9CC5B200FB8324DB896B641C1A132 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
17:30:31.0439 0x0440 UI0Detect - ok
17:30:31.0439 0x0440 [ F39ED750EDF5948FA8CD99D1F4EC9372, AE42AE50DE09F26D3CA4ACDCD5ECABD59D26926707030F0532A885266FE83EF9 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
17:30:31.0455 0x0440 umbus - ok
17:30:31.0455 0x0440 [ 55984D4E64C2F8E4223542CBCC15EDEB, ECBC832FBBA6AFCAEDEBB2728FA4A6DDCF52A6421929E72CA29B61CDBED840DF ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
17:30:31.0455 0x0440 UmPass - ok
17:30:31.0455 0x0440 [ FBEF4641E3E08A03CA84AF5C393CA86B, 9A14A0FB645AB6DD0B49F3A14FBF38FECC65796F2503324E93994113CC7AD52F ] UmRdpService C:\WINDOWS\System32\umrdp.dll
17:30:31.0470 0x0440 UmRdpService - ok
17:30:31.0486 0x0440 [ 3699DED879B2FF8FC1ECE91489109796, 05B1283256F6CA6AF3ABBE003360BF0BAB3400223092E7E9F0822120BF576BD2 ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
17:30:31.0517 0x0440 UnistoreSvc - ok
17:30:31.0533 0x0440 [ BBB6BDBE5ADCE6F87F70623D5A1EC5BC, E8BD5804FF82417890A9D1A44096B174E81A8C7AD3059B1F0C62740E0B39D137 ] upnphost C:\WINDOWS\System32\upnphost.dll
17:30:31.0564 0x0440 upnphost - ok
17:30:31.0564 0x0440 [ 4D23214CB8B1C36B82061280EB8FDAB3, 387C01A7F9D8F89ED894EDF894AAAF8830DD7C90DF2F12A2CB4C4E9C7CB773BE ] UrsChipidea
|
|
30.05.2017, 16:40
| #4 |
| | Browserfenster wird schwarz wenn YT videos angesehen werden Teil2: Code:
ATTFilter C:\WINDOWS\System32\drivers\urschipidea.sys
17:30:31.0580 0x0440 UrsChipidea - ok
17:30:31.0580 0x0440 [ 4329D880DB96B504F0DDC991A7374CCD, 1486BEF2C03ED281B24A17D3C18FEA2360E37A6B46D1A67D4690CD871B0A13DA ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
17:30:31.0595 0x0440 UrsCx01000 - ok
17:30:31.0595 0x0440 [ 93FAD0AC5879F274FA248A49E3F3EA33, D936F408E23040B33F30AB3B43D8B8BB9F3CCF2549E821F4C47357987AFF386F ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
17:30:31.0595 0x0440 UrsSynopsys - ok
17:30:31.0595 0x0440 [ 6B09AA6A04C8261E787B6523229E7159, F97BED424E988AC6272D51025FD0D3180E89BAF0FFC83DAB609774D6269B353A ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
17:30:31.0611 0x0440 usbccgp - ok
17:30:31.0611 0x0440 [ ECE3AD18B4C22ED0C4AB1A2AD9AC32C8, 2062D400305075E886CF2C9D710A1C48B3F4AD48E7A75A77C66547357E96CB6E ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
17:30:31.0627 0x0440 usbcir - ok
17:30:31.0627 0x0440 [ F8BCB536866474C6D8008F4C69B778A1, F86F4330DE2F50D48559C1ED46168ADB8F6AA7C8FE3834FFE00085C1783C5750 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
17:30:31.0627 0x0440 usbehci - ok
17:30:31.0642 0x0440 [ 1F723DA014062DBF3288B408A7611845, 0CCC9360259E6FBC510BBF69AE991A53A92516023AAC32C60A44BD3B43371C66 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
17:30:31.0642 0x0440 usbhub - ok
17:30:31.0658 0x0440 [ C3F953D10C486D6A190AF548B3CF7DC9, B0FB45B3045D499A44853A9D4CFD39C9D92873FC0A62A3D76B6149E601DFECD8 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
17:30:31.0673 0x0440 USBHUB3 - ok
17:30:31.0673 0x0440 [ BE6ED98FD0D3FE5FB11762AD7CCD6C96, 54C6C929CA55EA6770474F7E230190FC7574C1FA52437B564B3B5FA4D6106D8A ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
17:30:31.0689 0x0440 usbohci - ok
17:30:31.0689 0x0440 [ CEE43CD5357DB8786CE6E2C430841AE4, 50F4629AE488A12D18EFFAD486D2F95545049AB1F6A3248BA44D2132EEC9A653 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
17:30:31.0705 0x0440 usbprint - ok
17:30:31.0705 0x0440 [ 99F0738B320B7A8D11351A32F68AA5F1, DAA887C31E3F56245C15F04044C12B6E832FA7E837F4107376A6F8D8E3A99FEC ] usbser C:\WINDOWS\System32\drivers\usbser.sys
17:30:31.0705 0x0440 usbser - ok
17:30:31.0705 0x0440 [ 67E26F56CF7EACCBD9C9F75343A3D7C2, 210FA280897CCCB2458E9E683A8B4CA8A5DF9606B54F8B9CE05CA4AA6FD810AB ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
17:30:31.0720 0x0440 USBSTOR - ok
17:30:31.0720 0x0440 [ 7BA802C9F73A84B75BB22538ADA495BE, 7D97E6305168C4CA86AB9BD5B63300156DFE97032251CB83DB1D4C4DB9C28DC8 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
17:30:31.0720 0x0440 usbuhci - ok
17:30:31.0736 0x0440 [ 50E70B3A95138AA4A30B095270EE0DE6, 9B7072C36230102A089C4A6DFE1980CD9DB28E566EF02830600DEBAF3AAD31C7 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
17:30:31.0736 0x0440 USBXHCI - ok
17:30:31.0767 0x0440 [ 3156FFFB2B3BF5375814F777D343AD9F, C4E63043EB9D9227CDD487608AF9BA25C755D85E5FF8E63C2079D68CCC79E4BB ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
17:30:31.0800 0x0440 UserDataSvc - ok
17:30:31.0815 0x0440 [ C0E60CC6D48013728C7E4168D61A0B39, CA283312E9669BCC74A3B5E6332502D1CAA7148C049B94AF3996F3C7CD2676EF ] UserManager C:\WINDOWS\System32\usermgr.dll
17:30:31.0847 0x0440 UserManager - ok
17:30:31.0847 0x0440 [ C71F447901864A61698B9FA2CF538146, 13673F28E6AE2CE8AB20ECF93997B49A355087F72970FE0BA7319B629DB3D36E ] UsoSvc C:\WINDOWS\system32\usocore.dll
17:30:31.0878 0x0440 UsoSvc - ok
17:30:31.0878 0x0440 [ EABFCDA6E996F8A32DC1B302F7683BB2, 5FF2BA89D9A7BDE78C40866F15EC576527699ADD0F120E1A8388C4404A69F0E8 ] VaultSvc C:\WINDOWS\system32\lsass.exe
17:30:31.0878 0x0440 VaultSvc - ok
17:30:31.0894 0x0440 [ C1EC9211C7759D2487FD30934AA3EE96, 6914BB8B44550DFE75E5A3772E93ADF8459EB621CA400BDD9B7E3185A09B6F9A ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
17:30:31.0894 0x0440 vdrvroot - ok
17:30:31.0909 0x0440 [ 374CD93271184F04988FDC1C25B3E855, 09727093C5F7B258867C16D41F7F9835BF549CC339288BFE01A8F34AC7E93E23 ] vds C:\WINDOWS\System32\vds.exe
17:30:31.0925 0x0440 vds - ok
17:30:31.0925 0x0440 [ C83F3BC00651448DB127D497CF955089, 31B8838CEED08E7D5DD8635A805A8010798BD9B10A3775FAFDB576FBD7303D39 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
17:30:31.0940 0x0440 VerifierExt - ok
17:30:31.0940 0x0440 [ 1021DCD0E3632E099E599B8893DC7969, 18A4F022240FBBDAEEAF6613E88F1B89370EE8BE575059657FEA451D7DA1FE75 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
17:30:31.0956 0x0440 vhdmp - ok
17:30:31.0972 0x0440 [ 1AD096A5C00E522398D0092D875A8CB6, 6959FCD6DD2115CD293DBD4BCD6D1BA0AE4F7495A9BBB48F7388384EEABB38E9 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
17:30:31.0972 0x0440 vhf - ok
17:30:31.0972 0x0440 [ EE9A22CFD9AEDD7B52F98B0272494609, F668131BABD048857F011A471936B52EDF0F2A42CB6000ACB4E0E43F88782AAD ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
17:30:31.0988 0x0440 vmbus - ok
17:30:31.0989 0x0440 [ BFBD0895926FD98A03AD6BB845B569B7, 5B7913ACD6CC132B2F36B079BC5F897C21884A7F21046B8996CC3D74C4B6DA4C ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
17:30:31.0989 0x0440 VMBusHID - ok
17:30:31.0989 0x0440 [ C123C97D351C56C75FE5335AB18255EE, 67315E332E863E5C233BA113826A5DEEE08C1A0A3358E6AC21F25DC5EAC86D07 ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
17:30:32.0004 0x0440 vmgid - ok
17:30:32.0004 0x0440 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
17:30:32.0020 0x0440 vmicguestinterface - ok
17:30:32.0020 0x0440 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
17:30:32.0036 0x0440 vmicheartbeat - ok
17:30:32.0036 0x0440 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
17:30:32.0051 0x0440 vmickvpexchange - ok
17:30:32.0051 0x0440 [ F8F380ABEAFBC589FF6D2D96267C1210, 0CFA3D9E88D984BAFED8E08102BF4DC4077856C6C8C1EBD8D4C4D0D49B673F44 ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
17:30:32.0067 0x0440 vmicrdv - ok
17:30:32.0067 0x0440 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
17:30:32.0082 0x0440 vmicshutdown - ok
17:30:32.0082 0x0440 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmictimesync C:\WINDOWS\System32\icsvc.dll
17:30:32.0098 0x0440 vmictimesync - ok
17:30:32.0098 0x0440 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
17:30:32.0114 0x0440 vmicvmsession - ok
17:30:32.0129 0x0440 [ F8F380ABEAFBC589FF6D2D96267C1210, 0CFA3D9E88D984BAFED8E08102BF4DC4077856C6C8C1EBD8D4C4D0D49B673F44 ] vmicvss C:\WINDOWS\System32\icsvcext.dll
17:30:32.0145 0x0440 vmicvss - ok
17:30:32.0145 0x0440 [ 0AB9C264F13E2A070A8CF10EDD099ED2, 2E7EB4EE8DCBBCA497CC0E7F4BE057627E9702B6FAF56A7DBCA1325236C880EC ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
17:30:32.0145 0x0440 volmgr - ok
17:30:32.0161 0x0440 [ 6EE608257C1137A25B402EF8FC77E83A, 3AE684EBA32563468AD917155C93220F938460A699FBFC3DB8436F83C0C54209 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
17:30:32.0161 0x0440 volmgrx - ok
17:30:32.0176 0x0440 [ E3429DBBEA3965BB96E24B16EF4A2551, 0CEE2DEF75C6761DA67AFD3BBF8DEEB1331796719EB84D658B3E517DEC824B49 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
17:30:32.0176 0x0440 volsnap - ok
17:30:32.0192 0x0440 [ 86E790B503C771E674C7DF8FFCBFEFDB, 634B27C4FA363A2165D3D6929D3B22F41EE06198C579A70D446A48830924467B ] volume C:\WINDOWS\system32\drivers\volume.sys
17:30:32.0192 0x0440 volume - ok
17:30:32.0192 0x0440 [ B25589A0892E6DF8CC07E5CB48BFC954, DA29974426EFD4472A3828FA0EF31AD3860AA8068AB66B5F4BE6A412BC3E73E9 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
17:30:32.0192 0x0440 vpci - ok
17:30:32.0207 0x0440 [ AA4466A47D2CA7ECE3DCF5256017DCC3, 83414BFBD3DF1CB7417F0F55709E8180D97FA20A74581C34EAAFF667FBEBFD93 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
17:30:32.0207 0x0440 vsmraid - ok
17:30:32.0223 0x0440 [ 0BB73BF6FDDD19DE3DE9377EA95E4C64, 74B6E612F9E009A5E43B603BCAD854F3711F6C8A7ED0328B1E3A9B2D4C9EA342 ] VSS C:\WINDOWS\system32\vssvc.exe
17:30:32.0270 0x0440 VSS - ok
17:30:32.0270 0x0440 [ 98BB6C9AD39D8F2E883093F28282FAEC, 63F4036A1DB23C20AAEEC1CA8ABDE9B46FA09A55EA4E5DB0C0B5D6D58ABAD62F ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
17:30:32.0286 0x0440 VSTXRAID - ok
17:30:32.0286 0x0440 [ B47026E109828102266CBE2F5F9AD113, 28C76B34C48BACEA267A208CC758BB55539323B16300E869AE71B6A99A849AB5 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
17:30:32.0301 0x0440 vwifibus - ok
17:30:32.0301 0x0440 [ 799ECD541A9B2764B36A22A095885365, E255E74682927D662294AA3F88FDA211EEE603466EB264E8941C3BACC6A0E530 ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
17:30:32.0317 0x0440 vwififlt - ok
17:30:32.0317 0x0440 [ E75460AC4E936BFC0703021DB0BB17B8, D9985C3206B503659FD2F4EE7FD0B9AF8CB2DE821BFD68B13C9E3BD9CE5AEF6B ] W32Time C:\WINDOWS\system32\w32time.dll
17:30:32.0348 0x0440 W32Time - ok
17:30:32.0348 0x0440 [ A57B80F078FE71DEC1D0487DA70A56FD, F26F273BB45CBCACE440B08FF14C05D1B89046AE669195B4DAD50129835B1D9C ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll
17:30:32.0364 0x0440 w3logsvc - ok
17:30:32.0364 0x0440 [ 08088DC69903630B80EEC8DB3C87FB1D, 939215139C185317B103516644F8B76DDC8C8A42078887C7E750A317E691C456 ] W3SVC C:\WINDOWS\system32\inetsrv\iisw3adm.dll
17:30:32.0379 0x0440 W3SVC - ok
17:30:32.0379 0x0440 [ F0F477541F7AF67CC05DA1CF4921A500, F7DD2F49B61C484596DE3893683B1172A138386BD71F54BFCF37A31005C7368F ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
17:30:32.0395 0x0440 WacomPen - ok
17:30:32.0395 0x0440 [ A0957CBC1C054A87EE7A65A994102A96, CB6339F3F67D0E33C26E6756F88869574B84426B20C907E094F83B9DC5E36A3E ] WalletService C:\WINDOWS\system32\WalletService.dll
17:30:32.0411 0x0440 WalletService - ok
17:30:32.0411 0x0440 [ FDD16EF9177A8A2EF08A7FA3D3EFAA13, 148F34CBEEF0CE87103C76294AE5BE318F990A5FE7A5EDE6F47D85361248582B ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:30:32.0426 0x0440 wanarp - ok
17:30:32.0426 0x0440 [ FDD16EF9177A8A2EF08A7FA3D3EFAA13, 148F34CBEEF0CE87103C76294AE5BE318F990A5FE7A5EDE6F47D85361248582B ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:30:32.0442 0x0440 wanarpv6 - ok
17:30:32.0457 0x0440 [ 08088DC69903630B80EEC8DB3C87FB1D, 939215139C185317B103516644F8B76DDC8C8A42078887C7E750A317E691C456 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
17:30:32.0473 0x0440 WAS - ok
17:30:32.0489 0x0440 [ EA0524A2A01792796EC80AE2FE08307A, 68CC0F3451C6797222411C276376C7741C96C45E628DD77FB1FB17C10DC0EA8A ] wbengine C:\WINDOWS\system32\wbengine.exe
17:30:32.0551 0x0440 wbengine - ok
17:30:32.0567 0x0440 [ 5E3E24AA72FA75D6322C7286917BEB4A, 97D0CF00873A5A70C1B4A73AD41F4053B22810DA37FF2E8528D510216311FEE1 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
17:30:32.0582 0x0440 WbioSrvc - ok
17:30:32.0598 0x0440 [ 2B7CCCFBB166100842D31440228588CF, FC0BE611C5497A0579E7D8F268BBE1BD520A8A764F112C7C5CC631767B683B79 ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
17:30:32.0598 0x0440 wcifs - ok
17:30:32.0614 0x0440 [ E00FE13E415C97C60E5A418965372A74, E74EBE34D3056F52231C7B12E6294AED1C4F02219E853D5E70AA05D823C800D5 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
17:30:32.0629 0x0440 Wcmsvc - ok
17:30:32.0645 0x0440 [ 2C396871F724DDF871A2EF4CADE5151D, 8CAD8A393F0CC447432E1BED21A691E25356F7DBC06E3887138A6F86CB1D656D ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
17:30:32.0661 0x0440 wcncsvc - ok
17:30:32.0661 0x0440 [ 1737BEF60CA384423CE4B32AF1C2BFFC, D61353D3B2EAEDFDCBB5DB3AD27E76396CC7755AFF01233307EAA1967493DE63 ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
17:30:32.0676 0x0440 wcnfs - ok
17:30:32.0676 0x0440 [ 38130C1C5FE0E08820EE57E1B087B659, 3705AA4699D4C402C0BBC5BC4E1EE67CB4A4B9C27702E88952A76891C3A3F496 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
17:30:32.0676 0x0440 WdBoot - ok
17:30:32.0692 0x0440 [ 0C6CBF3490EE5F0D62B5820568CA30B8, 97EDEC84DA72A900D7740B8763DDDAB600628F3F1E1DDE1212383C2E60FDC77C ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
17:30:32.0707 0x0440 Wdf01000 - ok
17:30:32.0707 0x0440 [ F7B6CB0F9ECD28848E2BDACEAB0D9204, B64D91A36600AEBE656F0514AF8653C294DE88054FE6DBB7B1A6D0A23D2A5131 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
17:30:32.0723 0x0440 WdFilter - ok
17:30:32.0723 0x0440 [ 501CB5E6999B7336BE5D0D401013D251, D4581E4FD8BE65D611E763AE88D2982A785036B2A93F2A00D3A3A395AB2AD5B3 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
17:30:32.0739 0x0440 WdiServiceHost - ok
17:30:32.0739 0x0440 [ 501CB5E6999B7336BE5D0D401013D251, D4581E4FD8BE65D611E763AE88D2982A785036B2A93F2A00D3A3A395AB2AD5B3 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
17:30:32.0754 0x0440 WdiSystemHost - ok
17:30:32.0754 0x0440 [ 2974422E31DBC953A585A065EF736948, B2E689579C12B1A8B2CB4F04875157E894CE747DF56A9B7083E04A8C9B85EAC5 ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
17:30:32.0786 0x0440 wdiwifi - ok
17:30:32.0786 0x0440 [ 82A4F22C884B4BAE8B531640859F9871, 1C662557F671FA680E7CC2FC565B198470E421778BD03749CD05B2928568C430 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
17:30:32.0801 0x0440 WdNisDrv - ok
17:30:32.0801 0x0440 WdNisSvc - ok
17:30:32.0801 0x0440 [ 9066FE8EAB91E15437CB3C43757F2A65, 1F8B3D8C90C7862CCAB91D170F49E7F1D58FABAFA1C8DDDE1796404D1DD98707 ] WebClient C:\WINDOWS\System32\webclnt.dll
17:30:32.0817 0x0440 WebClient - ok
17:30:32.0832 0x0440 [ F322B8E6C5614E7975C8BF34B7A6710E, 299816001856E8C91BFBB9C48D87B7ACBD5A39F6A65147F5AE6EDB3065A893E9 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
17:30:32.0832 0x0440 Wecsvc - ok
17:30:32.0832 0x0440 [ 04CA184EB5743DE5A2CCEEF2DB2DA8B3, E16921496F57B78A152A103F8D58601C9687360048A6CB51E76A96E3B64CC0FA ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
17:30:32.0848 0x0440 WEPHOSTSVC - ok
17:30:32.0848 0x0440 [ BA78F20F7FD7709EA3AAAD91F8535EDA, D1DFBFCBBB8D4D992FBF3B340DB6A2F5DDC7E55F52E1100297EA2004FF752A2B ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
17:30:32.0864 0x0440 wercplsupport - ok
17:30:32.0864 0x0440 [ E5AE3B23620126483B957BDFF38FE7B7, 306AAA0B37F3914FE590A5DBFBF640C79173150C006BC7A6CF1683D85C0AFC5F ] WerSvc C:\WINDOWS\System32\WerSvc.dll
17:30:32.0879 0x0440 WerSvc - ok
17:30:32.0879 0x0440 [ 51D61CA3CED9A0C4E5501EEDBD48039F, 95F9CC67537DEABE501B59351624F02126BC9B9DBB72016423FF997090A2128B ] WFDSConMgrSvc C:\WINDOWS\System32\wfdsconmgrsvc.dll
17:30:32.0911 0x0440 WFDSConMgrSvc - ok
17:30:32.0911 0x0440 [ 3C8F0ABD00E197101DCF43FEF8FB0D76, AF5C68B85EE1503ACD4AEA1D997F816C34293A77791D59A605DC18450B4906DE ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
17:30:32.0926 0x0440 WFPLWFS - ok
17:30:32.0926 0x0440 [ 2DEB40D6837956CE08A8F9EB3ECA5A01, B40D23E54CDF6BE05D6C5DA536BF6D998E79EDE9C391A42452F9F69EE206EA1E ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
17:30:32.0926 0x0440 WiaRpc - ok
17:30:32.0942 0x0440 [ 75014BF6510D4C6C69EEE5B7743A52AF, 11AEEF4D52C35E5A7006713836ECF1198A53CD02736E792B1C698144CA1363F0 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
17:30:32.0942 0x0440 WIMMount - ok
17:30:32.0942 0x0440 WinDefend - ok
17:30:32.0942 0x0440 [ C8EBCFED8FD2CDF725E44AF93016621E, A0B76E55CC535A0F1D79C3C0EC59753086EAB669EC7ADA4F97656DCAD2A69448 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
17:30:32.0958 0x0440 WindowsTrustedRT - ok
17:30:32.0958 0x0440 [ D318557F9D7CA3836104F0B8ECB1F32E, 6850BBFB4F65167B052F3CA22FD72E9188A14FD2A9CC085861B4BC40CBA34249 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
17:30:32.0958 0x0440 WindowsTrustedRTProxy - ok
17:30:32.0973 0x0440 [ 61F0D6574577499FB43D9F4870B08A7F, 757ACD4F292C43B04B6428D84A7147DE8E565716D94B6B02F288F3B5E2D1C135 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
17:30:32.0989 0x0440 WinHttpAutoProxySvc - ok
17:30:32.0989 0x0440 [ 31DDF1D001336B2DCE7DF24E99EF1D04, A1FCABF4A263BFAE042FE7A9F6C15FD9B3D8E985278C32AE8975ECE79B341277 ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
17:30:33.0004 0x0440 WinMad - ok
17:30:33.0004 0x0440 [ 9A26F7834706A6D8C8824EB08FD7C362, 750F6A0759D70BE481C70FE4BB21D18E756A8F0C23A014C2CE1E7729A1E625FE ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
17:30:33.0020 0x0440 Winmgmt - ok
17:30:33.0020 0x0440 [ 2E1A614EFB0523E20860AE7978DDA0A4, E13564690F9977747CA676D3843B467506447F060A5FF6676835A9C7A30BA409 ] WinNat C:\WINDOWS\system32\drivers\winnat.sys
17:30:33.0036 0x0440 WinNat - ok
17:30:33.0067 0x0440 [ 27DAA9AA3E03C1068678D5659461BB32, AFDED6D671C430F296C9EAA73590111D6A8A9FA93DFE0595B90467FFE28EFB35 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
17:30:33.0129 0x0440 WinRM - ok
17:30:33.0145 0x0440 [ 03858B18BB6DF6A400D9FC5153FD28A8, C7AD69B022AEFDDDAFB74CCCDF20AF9CCDBA0097634BBBD07A2EFBA5922560C1 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
17:30:33.0145 0x0440 WINUSB - ok
17:30:33.0145 0x0440 [ 0BF4A43CF1F3A4D50AFA4561C3B4628D, 2D0B4E7004C8AC8A9EE07E6D5241BF32395CA142BF3B03FA9CF00BC6720A6AC7 ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
17:30:33.0161 0x0440 WinVerbs - ok
17:30:33.0161 0x0440 [ 11DDD4C9BDF095A5F5B5ACA98FBBF7A2, CFA76C197987CC9EBFE4AC2AD6FE9A9620819B50E9DD423BCE13F7DB5DA641D8 ] wisvc C:\WINDOWS\system32\flightsettings.dll
17:30:33.0192 0x0440 wisvc - ok
17:30:33.0223 0x0440 [ E624376E7E7D9AC203113140D9E618A2, 3553D343665194492E38B8C437DE429CEAC135D69EC0CB951BA3E3A7549F673E ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
17:30:33.0270 0x0440 WlanSvc - ok
17:30:33.0301 0x0440 [ 2393C4DB3DF3D19B0B920AD607098E79, D632671247DE3808D9C5B36A3FF173C86BB3AD274D03C851BCD417CE62B3820D ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
17:30:33.0348 0x0440 wlidsvc - ok
17:30:33.0364 0x0440 [ E5AB2E0B4F766E34AFC768D9769A24D7, 0DE04B2F43B9DCC92F9215B1058EE4ABA228B9986051CF39959555C12DF017B3 ] wlpasvc C:\WINDOWS\System32\lpasvc.dll
17:30:33.0426 0x0440 wlpasvc - ok
17:30:33.0426 0x0440 [ 680A7846370000D20D7E74917D5B7936, 55B77B358039672845D361CA4205F3482D1F30A4654B610FD785A1337EFDC316 ] WmBEnum C:\WINDOWS\system32\drivers\WmBEnum.sys
17:30:33.0442 0x0440 WmBEnum - ok
17:30:33.0442 0x0440 [ 14C35BA8189C6F65D839163AA285E954, 8981AA488320C75E26E1ABDF884B721A4065F5D28F54782598B03F21B8CDC020 ] WmFilter C:\WINDOWS\system32\drivers\WmFilter.sys
17:30:33.0442 0x0440 WmFilter - ok
17:30:33.0442 0x0440 [ 0D6E1347A891607759340B1E55BA2A77, 033DF14920A581FE7E21C6930280AE159B5634F2FEAF79423E8D0B7D46500048 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
17:30:33.0442 0x0440 WmiAcpi - ok
17:30:33.0458 0x0440 [ F7B122E8A238354DE344B77216E8D9AC, 3C4F864655CFF786B33333E643AA929B2D2B01ECD56EEEEADE7CEAB38249DA3B ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
17:30:33.0473 0x0440 wmiApSrv - ok
17:30:33.0473 0x0440 WMPNetworkSvc - ok
17:30:33.0473 0x0440 [ 14802B3A30AA849C97CB968CCC813BF3, 330AD828ABD040ECDBF58F7162978CD61BFC093CAD404FD2BCAC74E3F2EC542A ] WmXlCore C:\WINDOWS\system32\drivers\WmXlCore.sys
17:30:33.0473 0x0440 WmXlCore - ok
17:30:33.0489 0x0440 [ 1AE1076034392218EE89D2744EC2A071, 695C28E2697B12BBD919687176CE082E94887A5D8B6229F163A26F6EDF401C4C ] Wof C:\WINDOWS\system32\drivers\Wof.sys
17:30:33.0489 0x0440 Wof - ok
17:30:33.0520 0x0440 [ D571821EDAA1F23EB521314FB9AA1C88, 7F16E6915060BD5FABE0805284631F92EEC11234579D09C3CEDDBF73D312E7F5 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
17:30:33.0551 0x0440 workfolderssvc - ok
17:30:33.0551 0x0440 [ 2AD9CC8445F0E1A8900A9DE123643CD2, A5928B26722DFBB201A32DEF48B25D4BF291815EA68CF50CBE79EEA9260A71E3 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
17:30:33.0567 0x0440 WPDBusEnum - ok
17:30:33.0567 0x0440 [ 1FD80CBB192A20375F3664639DEB57B5, 7A4789D4B2F8E289726E1C723DC00D5AC1F8C5E00FB2879C9D0E6DDC97D2B1A6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
17:30:33.0583 0x0440 WpdUpFltr - ok
17:30:33.0583 0x0440 [ 3369EF007E43B88EAC8F1789B43D4393, 347F9F7DF980BB739895EDFE72E2E595EF56634330DC63DAA36403AB232B5B5A ] WpnService C:\WINDOWS\system32\WpnService.dll
17:30:33.0598 0x0440 WpnService - ok
17:30:33.0598 0x0440 [ 41403B9466EDA80FACD7713478A56DF8, A71BF9C7A2483FE1F660AC9688FCB38BA2310F16A69EB117C948458364953F34 ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
17:30:33.0598 0x0440 WpnUserService - ok
17:30:33.0614 0x0440 [ DAF4451760B46CB383D287C4FAFFE97D, 658AFE31EF50E934FEDD2E7048257DBFE9E6DE5F1ACDC658B21737391CF1CC5A ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
17:30:33.0614 0x0440 ws2ifsl - ok
17:30:33.0629 0x0440 [ D4A0661AB0FE542460CA76BFB4FAA2D6, 149F0A0720C47BFFCA68165A46382E5CBB273F48483DBB598CEA320801664718 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
17:30:33.0629 0x0440 wscsvc - ok
17:30:33.0629 0x0440 WSearch - ok
17:30:33.0661 0x0440 [ 05BEDBBEEAAC22F98FCA529FAC659582, E4D2FFF98034E2E7FE0478AB9C8D677CA932349A976DFC0C2B65DB15C71354B4 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
17:30:33.0723 0x0440 wuauserv - ok
17:30:33.0723 0x0440 [ 455609BF60DA3B57EEAB863DEFCCF14D, F55271C42B7AFD17D01275703719C1F52C21996DB82AC78A70A8A8B62370623B ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
17:30:33.0739 0x0440 WudfPf - ok
17:30:33.0739 0x0440 [ 5068DAA8F67A62E964C9C9F88B159EA9, 09FCB7A817280957D1AD365EF8B46F666C70957238BF9FBC87D51115E1B0FCB0 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
17:30:33.0770 0x0440 WUDFRd - ok
17:30:33.0770 0x0440 [ 9EFE23CA208BF4B613FF4A6028DFAB10, 483D8D8DA578BF3EA5617EAB42457543EC6F97C1977BDD8ABFDF854AE3AAFD35 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
17:30:33.0786 0x0440 wudfsvc - ok
17:30:33.0786 0x0440 [ 5068DAA8F67A62E964C9C9F88B159EA9, 09FCB7A817280957D1AD365EF8B46F666C70957238BF9FBC87D51115E1B0FCB0 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
17:30:33.0801 0x0440 WUDFWpdFs - ok
17:30:33.0817 0x0440 [ 3EEF7185E0974D9AB2D65CA3214132CF, 44DB1D11B6B1D180F59AB3FE4D7235F7F2FD709A853F6A64E8E379FFFD16CD3C ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
17:30:33.0864 0x0440 WwanSvc - ok
17:30:33.0864 0x0440 [ FC0147AB34C7CDB2D8A1B29C207F2CD1, 737D40A4BE35AD13C091D8E320FAD3FD7C0C7E41C8B50E48D3C2151712A55718 ] xbgm C:\WINDOWS\System32\xbgmsvc.dll
17:30:33.0879 0x0440 xbgm - ok
17:30:33.0895 0x0440 [ 8C7C5945C3545CA767BE111D78C15314, 5A938679DA3EDA2D9CA7034908DFEFCC7DAADB10DFD0CF4ECE882FF536D1BFA2 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
17:30:33.0911 0x0440 XblAuthManager - ok
17:30:33.0926 0x0440 [ A8BD191F46CC58E45637CB3E262CF0F2, CA65524427ECDB5E1138A5F8E885566064E507BA60FC31E0D9D17B9556CC9ADC ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
17:30:33.0958 0x0440 XblGameSave - ok
17:30:33.0973 0x0440 [ 3AC720A97FE4B6325F3012B21AF74390, 41AC655BD5CE5016BAA482534D1CEA6E11EAECE121344B45A5C8DF84A83807F4 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
17:30:33.0973 0x0440 xboxgip - ok
17:30:33.0973 0x0440 [ E099DED5C602AE4A7ECCF7CD4B1D2E33, 7FDAFFE13B87A8E6AA8721F8905FFF6EF04CAB93009F68EDA862B57EBB04514F ] XboxGipSvc C:\WINDOWS\System32\XboxGipSvc.dll
17:30:33.0989 0x0440 XboxGipSvc - ok
17:30:34.0004 0x0440 [ 8489AA1A36074B3487BFDA8A9FDBAB3D, 59337C1F65AF42820260FCE271D18C2221B64A5E53005A11ECF397F651031C6A ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
17:30:34.0036 0x0440 XboxNetApiSvc - ok
17:30:34.0036 0x0440 [ 2E50A379A8E4F6C5D85E87C26C08D329, ADA0C344FE58A3772FFF7417268160E488741C5B2F08CA12ED587AB7F75756F6 ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
17:30:34.0051 0x0440 xinputhid - ok
17:30:34.0051 0x0440 [ 839AE4CB415AE348604C68F324B8C2E0, DAA68A2335CA2C7198698CF40692E8CB45E9C00D09ED2CEAF479AE7F4E037EE8 ] xusb22 C:\WINDOWS\System32\drivers\xusb22.sys
17:30:34.0051 0x0440 xusb22 - ok
17:30:34.0051 0x0440 ================ Scan global ===============================
17:30:34.0067 0x0440 [ EEA8447A2E39A39F66C74BA66C421F92, 7FFC5294E0D0438E7450ED36947AB04D0C84DF4E1C9F2D49340D3BA586FFFAB2 ] C:\WINDOWS\system32\basesrv.dll
17:30:34.0067 0x0440 [ A42970F5DAA633B35322F200C39DF4CF, 91EEA2A5BA8FF0CBCB058218B01E747D29ADE4544AFC5474C71DB380866B4F2E ] C:\WINDOWS\system32\winsrv.dll
17:30:34.0067 0x0440 [ 7DD72CBE412C9567661F4B1CE9631FC1, 8D914805CBDAF448C8C132C4C3FEB1D90804F4F485180F7364A75EC5655A4DDB ] C:\WINDOWS\system32\sxssrv.dll
17:30:34.0083 0x0440 [ 800D00D1A7ADA9E341CACDF287347584, 70AD5A458203B35F227F3F6B4783D00424C96AA9E29DB3090CEC8C00E62CD8E5 ] C:\WINDOWS\system32\services.exe
17:30:34.0083 0x0440 [ Global ] - ok
17:30:34.0083 0x0440 ================ Scan MBR ==================================
17:30:34.0301 0x0440 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:30:34.0504 0x0440 \Device\Harddisk0\DR0 - ok
17:30:34.0504 0x0440 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
17:30:34.0520 0x0440 \Device\Harddisk1\DR1 - ok
17:30:34.0520 0x0440 ================ Scan VBR ==================================
17:30:34.0520 0x0440 [ E13892FBCE7D324D75F91B51B4430CBF ] \Device\Harddisk0\DR0\Partition1
17:30:34.0520 0x0440 \Device\Harddisk0\DR0\Partition1 - ok
17:30:34.0520 0x0440 [ 94E2B3ABE92BB30C57A4A406DF39D4F8 ] \Device\Harddisk0\DR0\Partition2
17:30:34.0520 0x0440 \Device\Harddisk0\DR0\Partition2 - ok
17:30:34.0536 0x0440 [ B86D8B2B43507CAC3FFD8E43E7380452 ] \Device\Harddisk1\DR1\Partition1
17:30:34.0536 0x0440 \Device\Harddisk1\DR1\Partition1 - ok
17:30:34.0536 0x0440 ================ Scan generic autorun ======================
17:30:34.0536 0x0440 SecurityHealth - ok
17:30:34.0629 0x0440 [ EFDC4DC553400BFC8A174C52D13ECBF4, DCEC3A2A52BE3642A63FB24888BD553D46E3C60F7A6B6E05DCB1D5E1039D0323 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
17:30:34.0739 0x0440 RTHDVCPL - ok
17:30:34.0755 0x0440 [ 0104F4CA73154C23FFB449501F6D2D53, 0610AC01C06CC15D67F11C0EE00097A4D0A56B9EED16489FD3306EC2E1E6F301 ] C:\Program Files\Logitech\Gaming Software\LWEMon.exe
17:30:34.0755 0x0440 Start WingMan Profiler - ok
17:30:34.0755 0x0440 [ ECB702B8C5650381C0784F1EEABB97BC, 9CC4DDAD2E9AE05A8C5762BA88A13C2B1EE4E25AE98EF01DD041FE35D611DA87 ] C:\WINDOWS\system32\rundll32.exe
17:30:34.0770 0x0440 ShadowPlay - ok
17:30:34.0770 0x0440 Dropbox - ok
17:30:34.0801 0x0440 [ E876187946325E0A947C7BD0B645A265, C6568501533F19028DA9F2B2254F0036DD4E8AA2B1A709AB65E7CEC2E4CD185B ] C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
17:30:34.0833 0x0440 Malwarebytes Anti-Exploit - ok
17:30:35.0098 0x0440 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
17:30:35.0426 0x0440 OneDriveSetup - ok
17:30:35.0708 0x0440 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
17:30:35.0958 0x0440 OneDriveSetup - ok
17:30:35.0989 0x0440 [ 00F30FDFDE3E276C1A731C2DF951D67E, 018E6933882FCC41EE96E198E6F7ECEFB53EC650B1044A58876B26EDE011158B ] C:\Users\Manuel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
17:30:36.0020 0x0440 OneDrive - ok
17:30:36.0020 0x0440 Discord - ok
17:30:36.0270 0x0440 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
17:30:36.0520 0x0440 OneDriveSetup - ok
17:30:36.0536 0x0440 [ 9203CEE59C720D1D4BB9A97E4DE4152D, 55743BBED85C3EDB764F30648F23951FE8C76FC4984216596306F4E453D0CCB5 ] C:\Program Files (x86)\Windows Mail\wab.exe
17:30:36.0552 0x0440 WAB Migrate - ok
17:30:36.0552 0x0440 Waiting for KSN requests completion. In queue: 237
17:30:37.0585 0x0440 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.11.15063.0 ), 0x61100 ( enabled : updated )
17:30:37.0585 0x0440 Win FW state via NFP2: enabled ( trusted )
17:30:37.0678 0x0440 ============================================================
17:30:37.0678 0x0440 Scan finished
17:30:37.0678 0x0440 ============================================================
17:30:37.0678 0x1374 Detected object count: 0
17:30:37.0678 0x1374 Actual detected object count: 0
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 28-05-2017
durchgeführt von Manuel (Administrator) auf MANUEL (30-05-2017 17:26:18)
Gestartet von C:\Users\Manuel\Desktop
Geladene Profile: Manuel (Verfügbare Profile: Manuel & DefaultAppPool)
Platform: Windows 10 Home Version 1703 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Beepa P/L) C:\Fraps\fraps.exe
(Beepa P/L) C:\Fraps\fraps64.dat
(Hammer & Chisel, Inc.) C:\Users\Manuel\AppData\Local\Discord\app-0.0.297\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Manuel\AppData\Local\Discord\app-0.0.297\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Manuel\AppData\Local\Discord\app-0.0.297\Discord.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7636696 2014-09-02] (Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28734456 2017-05-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2650576 2017-05-05] (Malwarebytes Corporation)
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\Run: [Discord] => C:\Users\Manuel\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\MountPoints2: {9a8066d6-b48e-11e5-bbb4-806e6f6e6963} - "D:\StartUp.exe"
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{dbf9de44-cfa5-4383-a503-b7a4012b3bf0}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
FireFox:
========
FF DefaultProfile: 2rkug9sv.default
FF ProfilePath: C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default [2017-05-30]
FF NetworkProxy: Mozilla\Firefox\Profiles\2rkug9sv.default -> type", 0
FF Extension: (ProxTube) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default\Extensions\ich@maltegoetz.de.xpi [2017-04-12]
FF Extension: (Adblock Plus) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-05-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-11] ()
FF Plugin: @videolan.org/vlc,version=2.2.1 -> E:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> E:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> E:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-11] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-29] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-29] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-18] (NVIDIA Corporation)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-04] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] () [Datei ist nicht signiert]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [48944 2017-05-16] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [399120 2017-02-14] (EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [284736 2017-01-31] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6625856 2016-12-24] (GOG.com)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-29] (Intel Corporation)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [155080 2017-05-05] (Malwarebytes Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-18] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-05-18] (NVIDIA Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] ()
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [77440 2017-05-05] ()
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R1 MpKslbbbca715; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B744086B-8B84-4110-92B4-BDCF00A137C8}\MpKslbbbca715.sys [44928 2017-05-30] (Microsoft Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7209bde3180ef5f7\nvlddmkm.sys [14458264 2017-05-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-05-18] (NVIDIA Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-30 17:26 - 2017-05-30 17:26 - 00016008 _____ C:\Users\Manuel\Desktop\FRST.txt
2017-05-30 17:26 - 2017-05-30 17:26 - 00000000 ____D C:\FRST
2017-05-30 17:25 - 2017-05-30 17:25 - 02429952 _____ (Farbar) C:\Users\Manuel\Desktop\FRST64.exe
2017-05-29 18:22 - 2017-05-29 18:22 - 00000000 ____D C:\Users\Manuel\Documents\Drakensang
2017-05-29 18:22 - 2017-05-29 18:22 - 00000000 ____D C:\Program Files (x86)\ProtectDisc Driver Installer
2017-05-29 18:21 - 2017-05-29 18:54 - 00004096 _____ C:\Users\Public\Documents\00001119.LCS
2017-05-29 18:21 - 2017-05-29 18:21 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\ProtectDisc
2017-05-29 18:21 - 2017-05-29 18:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DB Browser for SQLite
2017-05-29 18:19 - 2017-05-29 18:19 - 15749664 _____ C:\Users\Manuel\Downloads\DB.Browser.for.SQLite-3.9.1-win64.exe
2017-05-29 18:19 - 2017-05-29 18:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Drakensang
2017-05-28 15:09 - 2017-05-28 15:09 - 00001222 _____ C:\Users\Manuel\Desktop\Malwarebytes Suchlaufprotokoll.txt
2017-05-28 15:09 - 2017-05-28 15:09 - 00000519 _____ C:\Users\Manuel\Desktop\Malwarebytes Schutzprotokoll.txt
2017-05-26 14:38 - 2017-05-26 14:38 - 00000222 _____ C:\Users\Manuel\Desktop\Total War WARHAMMER - Assembly Kit BETA.url
2017-05-23 00:24 - 2017-05-23 00:24 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-05-23 00:24 - 2017-05-18 09:35 - 00513144 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-05-23 00:24 - 2017-05-18 09:35 - 00418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-05-23 00:24 - 2017-05-18 07:21 - 00134592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-05-23 00:24 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-05-23 00:24 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-05-23 00:24 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-05-23 00:24 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-05-23 00:23 - 2017-05-18 09:35 - 40201848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 35390072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 35282040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 28624504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 11056456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 11028664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 10551072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 09248144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 09014976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 08808488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 03797112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 03256440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438233.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01606592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438233.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01275944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01056704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00995736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00993912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00993872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00964032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00914880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00775864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00725112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00612272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00583800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00577728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-05-22 23:47 - 2017-05-22 23:47 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-22 23:46 - 2017-05-23 00:24 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-05-22 23:46 - 2017-05-03 22:21 - 00175736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-22 23:46 - 2017-05-03 22:21 - 00143480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-05-18 13:37 - 2017-05-18 13:37 - 00007334 _____ C:\Users\Manuel\Desktop\OpenDocument Text (neu).odt
2017-05-17 20:48 - 2017-05-17 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-05-17 19:19 - 2017-05-17 19:42 - 00000420 _____ C:\Users\Manuel\Desktop\Wandtatoo.txt
2017-05-16 23:01 - 2017-05-16 23:01 - 00048944 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-05-16 20:25 - 2017-05-16 20:25 - 00000000 ____D C:\ProgramData\USOShared
2017-05-16 20:25 - 2017-05-16 20:25 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-05-16 20:24 - 2017-05-16 20:24 - 00000020 ___SH C:\Users\Manuel\ntuser.ini
2017-05-16 10:37 - 2017-05-16 10:37 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 21353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 20374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 11870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 08320920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04848440 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03655680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02651648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02435584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02298880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-16 10:37 - 2017-05-16 10:37 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-05-16 10:37 - 2017-05-16 10:37 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01411128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 01103872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00775824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00605936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-05-16 10:37 - 2017-05-16 10:37 - 00543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-05-16 10:37 - 2017-05-16 10:37 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-05-16 10:37 - 2017-05-16 10:37 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00207264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-16 10:37 - 2017-05-16 10:37 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-05-16 10:37 - 2017-05-16 10:37 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-05-16 10:37 - 2017-05-16 10:37 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-05-16 10:36 - 2017-03-17 23:00 - 05739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2017-05-16 10:36 - 2017-03-17 22:59 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2017-05-16 10:36 - 2017-03-17 22:48 - 06348288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2017-05-16 10:36 - 2017-03-17 22:43 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2017-05-16 10:36 - 2017-03-17 22:35 - 05484544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2017-05-16 10:35 - 2017-05-16 10:35 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-05-16 10:35 - 2017-05-16 09:39 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\system32\msmq
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files\MSBuild
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\inetpub
2017-05-16 10:34 - 2017-02-10 12:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-05-16 10:34 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-05-16 09:43 - 2017-05-30 16:17 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-16 09:43 - 2017-05-22 23:47 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-16 20:26 - 00003274 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-05-16 09:43 - 2017-05-16 09:44 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2017-05-16 09:43 - 2017-05-16 09:44 - 00011433 _____ C:\WINDOWS\diagerr.xml
2017-05-16 09:43 - 2017-05-16 09:43 - 00003728 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-05-16 09:43 - 2017-05-16 09:43 - 00003504 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-05-16 09:43 - 2017-05-16 09:43 - 00003332 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-05-16 09:43 - 2017-05-16 09:43 - 00002590 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2017-05-16 09:43 - 2017-05-16 09:43 - 00002284 _____ C:\WINDOWS\System32\Tasks\{CD086C04-185A-4373-B4C9-1B93FA40CA47}
2017-05-16 09:43 - 2017-05-16 09:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2017-05-16 09:43 - 2017-05-16 09:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-05-16 09:43 - 2017-05-16 09:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2017-05-16 09:41 - 2017-05-16 09:41 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-05-16 09:41 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-05-16 09:40 - 2017-05-30 05:06 - 00000000 ____D C:\Users\Manuel
2017-05-16 09:40 - 2017-05-23 00:27 - 02223076 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-16 09:40 - 2017-05-16 09:42 - 00000000 ____D C:\Users\DefaultAppPool
2017-05-16 09:40 - 2017-05-16 09:41 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-05-16 09:40 - 2017-05-16 09:40 - 02011386 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Vorlagen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Startmenü
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Netzwerkumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Lokale Einstellungen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Eigene Dateien
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Druckumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Videos
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Musik
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Bilder
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\AppData\Local\Verlauf
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\AppData\Local\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Videos
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2017-05-16 09:39 - 2017-05-30 16:24 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-16 09:39 - 2017-05-30 04:17 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-05-16 09:39 - 2017-05-23 00:25 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-16 09:39 - 2017-05-22 23:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-16 09:39 - 2017-05-22 23:46 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-16 09:39 - 2017-05-18 07:55 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-05-16 09:39 - 2017-05-18 07:48 - 06437824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 02479736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 01762936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00548984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-05-16 09:39 - 2017-05-16 20:24 - 00251984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-16 09:39 - 2017-05-16 20:09 - 07993157 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-05-16 09:39 - 2017-05-16 09:40 - 00000000 ____D C:\Program Files (x86)\ASUS
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_ASMBSW_01_11_00.Wdf
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____D C:\Program Files\Realtek
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____D C:\Program Files\ASUS
2017-05-16 09:39 - 2013-07-04 04:32 - 00028672 _____ (ASUSTek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO.dll
2017-05-16 09:39 - 2013-07-04 04:32 - 00015232 _____ C:\WINDOWS\SysWOW64\Drivers\AsIO.sys
2017-05-10 06:43 - 2017-05-16 20:24 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-10 03:26 - 2017-05-10 03:26 - 00000000 ____D C:\Users\Manuel\AppData\Local\UNP
2017-05-10 01:13 - 2017-05-16 09:41 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-05-10 01:13 - 2017-05-10 01:14 - 00000000 ____D C:\Program Files\UNP
2017-05-10 01:12 - 2017-03-04 08:26 - 00261632 ____N (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-05-03 15:03 - 2017-05-30 17:26 - 00000000 ____D C:\Users\Manuel\Desktop\WFTO
2017-05-03 14:32 - 2017-05-03 14:32 - 00002278 _____ C:\Users\Manuel\Desktop\Discord.lnk
2017-05-03 14:32 - 2017-05-03 14:32 - 00000000 ____D C:\Users\Manuel\AppData\Local\Discord
2017-05-03 14:28 - 2017-05-03 14:32 - 52553728 _____ (Hammer & Chisel, Inc.) C:\Users\Manuel\Downloads\DiscordSetup.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-30 16:45 - 2015-10-07 00:11 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-30 16:38 - 2016-01-20 22:23 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\vlc
2017-05-30 16:20 - 2016-12-15 18:01 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2017-05-30 16:20 - 2016-11-18 10:47 - 00000000 ____D C:\Users\Manuel\AppData\LocalLow\Mozilla
2017-05-30 16:17 - 2016-11-18 01:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-30 16:17 - 2015-10-06 23:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-29 21:18 - 2016-11-28 23:40 - 00000000 ____D C:\Users\Manuel\Desktop\MordheimBackup
2017-05-29 18:21 - 2015-10-06 23:40 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-29 18:20 - 2015-11-13 14:09 - 00000000 ___RD C:\Users\Manuel\Desktop\Zocks
2017-05-29 16:16 - 2015-10-06 15:37 - 00000133 _____ C:\Users\Manuel\Desktop\DL.html
2017-05-28 17:25 - 2015-10-07 00:49 - 00000000 ___RD C:\Users\Manuel\Dropbox
2017-05-28 15:08 - 2016-12-14 17:51 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-05-27 14:56 - 2015-10-07 00:40 - 00000000 ____D C:\Users\Manuel\AppData\Local\Dropbox
2017-05-27 13:47 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-27 13:47 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-23 14:36 - 2016-01-06 20:14 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-23 14:36 - 2016-01-06 20:14 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 00:27 - 2017-03-20 06:35 - 00959174 _____ C:\WINDOWS\system32\perfh007.dat
2017-05-23 00:27 - 2017-03-20 06:35 - 00217864 _____ C:\WINDOWS\system32\perfc007.dat
2017-05-23 00:25 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-23 00:25 - 2015-10-07 00:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-05-22 23:47 - 2016-10-25 00:27 - 00001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-05-20 22:53 - 2015-12-29 17:44 - 00000000 ____D C:\Users\Manuel\AppData\Local\Ubisoft Game Launcher
2017-05-19 12:36 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-05-18 09:35 - 2017-04-26 01:20 - 04114248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-05-18 09:35 - 2017-04-26 01:20 - 03624784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-05-18 09:35 - 2017-04-26 01:20 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-05-18 09:35 - 2017-04-26 01:20 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-05-18 09:35 - 2017-01-24 21:56 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-05-17 20:48 - 2015-10-07 00:40 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-05-17 18:47 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-05-17 15:00 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-17 14:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-05-16 20:40 - 2016-01-06 18:07 - 00000000 ____D C:\Users\Manuel\AppData\Local\Packages
2017-05-16 20:26 - 2016-01-06 18:09 - 00002426 _____ C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-05-16 20:26 - 2016-01-06 18:09 - 00000000 ___RD C:\Users\Manuel\OneDrive
2017-05-16 20:25 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-05-16 20:24 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-05-16 20:24 - 2016-01-06 18:07 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-16 10:38 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-05-16 10:37 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-05-16 10:37 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-05-16 10:36 - 2017-03-20 06:36 - 00000000 ____D C:\WINDOWS\OCR
2017-05-16 10:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-05-16 10:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-05-16 10:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2017-05-16 10:34 - 2017-03-18 22:59 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2017-05-16 10:34 - 2017-03-18 22:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2017-05-16 10:34 - 2017-03-18 22:59 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2017-05-16 10:34 - 2017-03-18 22:56 - 01380352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2017-05-16 10:34 - 2017-03-18 22:56 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2017-05-16 10:34 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2017-05-16 09:44 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-05-16 09:44 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-05-16 09:44 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-05-16 09:43 - 2017-03-20 06:37 - 00000000 ____D C:\WINDOWS\HoloShell
2017-05-16 09:43 - 2017-03-18 23:03 - 00000000 __RSD C:\WINDOWS\Media
2017-05-16 09:43 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-05-16 09:43 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-16 09:43 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-05-16 09:43 - 2016-01-06 18:03 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-05-16 09:42 - 2017-03-18 13:40 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-05-16 09:41 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\IME
2017-05-16 09:41 - 2016-12-15 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2017-05-16 09:41 - 2016-12-15 18:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
2017-05-16 09:41 - 2016-11-06 15:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nordlandtrilogie Heldenedition
2017-05-16 09:41 - 2016-09-20 17:34 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2017-05-16 09:41 - 2016-05-12 03:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2017-05-16 09:41 - 2016-05-04 17:01 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2017-05-16 09:41 - 2016-05-04 17:01 - 00000000 ____D C:\WINDOWS\system32\vbox
2017-05-16 09:41 - 2016-03-23 23:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-05-16 09:41 - 2016-01-26 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-05-16 09:41 - 2016-01-20 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-05-16 09:41 - 2016-01-05 20:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2017-05-16 09:41 - 2016-01-03 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2017-05-16 09:41 - 2015-12-17 22:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anno Online
2017-05-16 09:41 - 2015-11-29 23:55 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-05-16 09:41 - 2015-11-04 16:39 - 00000000 ____D C:\WINDOWS\de
2017-05-16 09:41 - 2015-10-12 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2017-05-16 09:41 - 2015-10-07 00:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-05-16 09:41 - 2015-10-06 23:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonic Radar II
2017-05-16 09:40 - 2017-04-21 19:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THQ
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 __SHD C:\Program Files\Windows Sidebar
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\schemas
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-16 09:40 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-05-16 09:40 - 2016-01-12 02:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2017-05-16 09:40 - 2015-12-29 17:44 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-05-16 09:40 - 2015-11-29 23:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2017-05-16 09:40 - 2015-11-25 00:17 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-05-16 09:40 - 2015-11-23 20:56 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies
2017-05-16 09:40 - 2015-10-07 02:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2017-05-16 09:40 - 2015-10-06 23:32 - 00000000 ____D C:\Program Files\Intel
2017-05-16 09:40 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Microsoft Games
2017-05-16 09:39 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-05-10 22:58 - 2016-12-15 18:01 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Exploit
2017-05-08 17:19 - 2016-02-20 19:08 - 00000000 ____D C:\Users\Manuel\AppData\Local\CrashDumps
2017-05-03 22:21 - 2017-04-25 22:26 - 00048248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-05-03 22:21 - 2016-10-25 00:27 - 01893496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 01755256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 01477240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 01317496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 00121464 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-05-03 15:34 - 2016-11-07 15:31 - 00000000 ____D C:\Users\Manuel\Desktop\Präsentation
2017-05-03 15:03 - 2015-10-12 21:09 - 00000000 ____D C:\Users\Manuel\Desktop\QA Vids
2017-05-03 14:32 - 2015-11-25 00:17 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\discord
2017-05-03 14:32 - 2015-11-23 20:56 - 00000000 ____D C:\Users\Manuel\AppData\Local\SquirrelTemp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-06-06 15:15 - 2016-06-06 15:16 - 0000100 _____ () C:\Users\Manuel\AppData\Roaming\ScriptStudioLayout.ini
2016-06-06 15:15 - 2016-06-06 15:16 - 0000046 _____ () C:\Users\Manuel\AppData\Roaming\ScriptStudioOptions.ini
2016-02-17 21:13 - 2016-02-17 21:13 - 0007597 _____ () C:\Users\Manuel\AppData\Local\Resmon.ResmonCfg
2017-05-16 09:39 - 2017-05-16 09:39 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
2017-04-26 01:22 - 2017-04-20 02:18 - 0867968 _____ (NVIDIA Corporation) C:\Users\Manuel\AppData\Local\Temp\nvSCPAPI64.dll
2017-05-23 00:23 - 2017-04-20 02:18 - 0367736 _____ (NVIDIA Corporation) C:\Users\Manuel\AppData\Local\Temp\nvStInst.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-28 16:53
==================== Ende von FRST.txt ============================
|
|
30.05.2017, 16:41
| #5 |
| | Browserfenster wird schwarz wenn YT videos angesehen werden Addition.txt: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-05-2017
durchgeführt von Manuel (30-05-2017 17:26:38)
Gestartet von C:\Users\Manuel\Desktop
Windows 10 Home Version 1703 (X64) (2017-05-16 07:45:03)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2887243570-1868036058-3993079417-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2887243570-1868036058-3993079417-503 - Limited - Disabled)
Gast (S-1-5-21-2887243570-1868036058-3993079417-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2887243570-1868036058-3993079417-1002 - Limited - Enabled)
Manuel (S-1-5-21-2887243570-1868036058-3993079417-1000 - Administrator - Enabled) => C:\Users\Manuel
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
7-Zip 16.04 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Alice: Madness Returns (HKLM-x32\...\Steam App 19680) (Version: - Spicy Horse Games)
Anno 2205 (HKLM-x32\...\Uplay Install 1253) (Version: - Ubisoft)
Anno Online - Standalone Client (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\Anno Online) (Version: - )
Ansel (Version: 382.33 - NVIDIA Corporation) Hidden
Banished (HKLM-x32\...\Steam App 242920) (Version: - Shining Rock Software LLC)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dawn of War - Dark Crusade (HKLM-x32\...\{FF39FC01-819B-42E4-AE49-1968AF12DDD4}) (Version: 1.00.0000 - THQ)
DB Browser for SQLite (HKLM-x32\...\DB Browser for SQLite) (Version: 3.9.1 - DB Browser for SQLite Team)
Die Schlacht um Mittelerde(tm) (HKLM-x32\...\{3F290582-3F4E-4B96-009C-E0BABAA40C42}) (Version: - )
Discord (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Drakensang (HKLM-x32\...\Drakensang_is1) (Version: - dtp)
Dropbox (HKLM-x32\...\Dropbox) (Version: 26.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Dungeons 2 (HKLM-x32\...\Steam App 262280) (Version: - Realmforge Studios)
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
For Honor (HKLM\...\Steam App 304390) (Version: - Ubisoft Montreal)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (HKLM-x32\...\Fraps) (Version: - )
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.2.1000 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.17 - Intel(R) Corporation) Hidden
Life is Feudal: Forest Village (HKLM\...\Steam App 496460) (Version: - Mindillusion)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes Anti-Exploit version 1.9.1.1403 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.9.1.1403 - Malwarebytes)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM-x32\...\Steam App 241930) (Version: - Monolith Productions, Inc.)
Mordheim: City of the Damned (HKLM-x32\...\Steam App 276810) (Version: - Rogue Factor)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 53.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 de)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Grafiktreiber 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Orcs Must Die! 2 (HKLM-x32\...\Steam App 201790) (Version: - Robot Entertainment)
Ori and the Blind Forest (HKLM-x32\...\Steam App 261570) (Version: - Moon Studios GmbH)
ProtectDisc Driver, Version 11 (HKLM-x32\...\ProtectDisc Driver 11) (Version: 11.0.0.12 - ProtectDisc Software GmbH)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7335 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Slack (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\slack) (Version: 2.5.2 - Slack Technologies)
Sonic Radar II (HKLM\...\{203BCA8D-BC00-4DD5-85DF-2F84DB803B57}) (Version: 2.1.701 - ASUSTeKcomputer.Inc)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version: - 11 bit studios)
Total War™: WARHAMMER® - Assembly Kit BETA (HKLM\...\Steam App 463690) (Version: - )
Total War™: WARHAMMER® (HKLM\...\Steam App 364360) (Version: - Creative Assembly)
Uplay (HKLM-x32\...\Uplay) (Version: 10.0 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
War for the Overworld (HKLM\...\Steam App 230190) (Version: - Subterranean Games)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0109D0B3-ED99-4BF4-95C6-FBF10EA163CC} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe
Task: {0395C049-F147-4C94-910B-C18AD3E36143} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe
Task: {0A319440-5662-45C0-AB09-C571DDEC39F2} - \ThunderMaster -> Keine Datei <==== ACHTUNG
Task: {115B9AA1-72CB-4888-8FE7-1F6E317C3900} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {1EB0538E-9C15-4836-8CEA-F6F7DB859869} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe
Task: {26371816-8B80-479B-86D0-1B22475AF262} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-06] (Dropbox, Inc.)
Task: {29933F0A-373C-49CD-AC74-638375FD18A4} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {383D922F-50DE-4647-AF59-3FDD8787A861} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {38B6FB3C-AF1A-4658-91BA-F4A84B39EDB4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe
Task: {3DB01EE1-84AC-46BF-96B6-C78182FA25CE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {3F0E5558-AB27-4D96-90B5-7A3CA16D210F} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {4A113117-0B96-4811-874A-129BEB8ACDD1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {4DE8110D-7D6E-4965-9F54-A99E5158D809} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {531206FF-A38C-4956-BDBA-59261DB7D7D0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {6031101C-3085-4053-9DC8-3E69E6934436} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe
Task: {62093F37-2EE1-466A-AFD6-84C6CDEF8FC5} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe
Task: {62863246-D074-4304-ACC8-0128B7F32171} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe
Task: {6568D748-194E-47B3-9786-ADEF53BDACAC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {71E59F04-A4E3-47FC-8087-ED1EE512B96D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {7A4C78C3-E804-4FCF-AA3E-1B1165A7B473} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {92351455-37A3-4D4B-AF36-CF9ED9FE03D1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-11] (Adobe Systems Incorporated)
Task: {95A467B5-D326-4192-A2ED-8DF8D249547F} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe
Task: {9CAFD9E7-FFDB-4325-8FE9-FA596FA1B497} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {9D3FC8A9-6E8B-4CDD-AF52-6E0F5CA4A780} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {A68FC644-1A62-4B0F-B911-F8016BC113D5} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe
Task: {AB956481-C9B1-40F3-9C1A-FC015C08B64C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {B3A5298F-D758-44B8-9BAF-C2722ABC32B8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe
Task: {B4707BFA-9140-429F-B902-726BD08F448B} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {BE3EC1BA-B857-4F9C-9FED-22E956EEDC41} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {CBE69FD1-C125-4006-9CFF-2BB6CCC55390} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe
Task: {E4BB71F8-FB3E-4671-9537-3B6A6E0A1472} - System32\Tasks\{CD086C04-185A-4373-B4C9-1B93FA40CA47} => Firefox.exe hxxp://ui.skype.com/ui/0/7.12.0.101/de/abandoninstall?source=lightinstaller&page=tsBing
Task: {ED77B198-DE42-43C0-87E8-4CD0275FC3DC} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {EF8892A7-84B5-4F8C-B19A-82126A647C34} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {F4CA7EC6-1A79-4371-AF10-915B093B882F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-05-23] (Microsoft Corporation)
Task: {FC95F454-E4B9-40C5-B23C-9BF375C30BCE} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {FE624BE6-82DE-4147-9FFC-469C3393F3E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe
Task: {FF10E023-BDA4-4B1A-B86F-EDD284932AFE} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-06] (Dropbox, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-05-16 09:39 - 2013-07-04 04:32 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2015-10-06 23:27 - 2014-07-23 03:59 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2016-10-25 00:27 - 2017-05-03 22:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 22:59 - 2017-03-20 06:36 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-05-26 13:01 - 2017-05-26 13:01 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-05-26 13:01 - 2017-05-26 13:01 - 00201728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-05-26 13:01 - 2017-05-26 13:01 - 43202048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-05-26 13:01 - 2017-05-26 13:01 - 02442752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\skypert.dll
2017-05-05 17:24 - 2017-05-05 17:25 - 00020480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-05-05 17:24 - 2017-05-05 17:25 - 26322944 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-05-05 17:24 - 2017-05-05 17:25 - 00441856 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-05-05 17:24 - 2017-05-05 17:25 - 02139648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-05-05 17:24 - 2017-05-05 17:25 - 02901928 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-05-05 17:24 - 2017-05-05 17:25 - 00046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2017-05-05 17:24 - 2017-05-05 17:25 - 00023040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Lumia.ViewerPluginProxy.dll
2016-06-03 15:00 - 2016-06-03 15:00 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2017-05-05 17:24 - 2017-05-05 17:25 - 00641024 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-05-05 17:24 - 2017-05-05 17:25 - 01062400 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2017-05-05 17:24 - 2017-05-05 17:25 - 00626176 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.dll
2017-05-05 17:24 - 2017-05-05 17:25 - 00950784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\IPP_PHOTOS.dll
2017-05-16 09:39 - 2017-05-30 16:17 - 00038544 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2017-05-16 09:39 - 2013-07-04 04:32 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2014-04-29 16:23 - 2014-04-29 16:23 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-10-25 00:27 - 2017-05-03 22:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-25 00:27 - 2017-05-03 22:20 - 65709176 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-05-17 20:47 - 2017-05-16 22:55 - 00871744 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-05-17 20:47 - 2017-05-16 22:55 - 01787200 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2016-09-15 23:56 - 2017-04-26 02:38 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2016-09-15 23:56 - 2017-04-26 02:38 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2016-09-15 23:56 - 2017-04-26 02:38 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2016-09-15 23:56 - 2017-05-16 23:00 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2016-09-15 23:56 - 2017-04-26 02:39 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2016-09-15 23:56 - 2017-04-26 02:38 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 01729360 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-05-17 20:47 - 2017-04-26 02:38 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-05-17 20:47 - 2017-04-26 02:39 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-05-17 20:47 - 2017-04-26 02:38 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2016-09-15 23:56 - 2017-04-26 02:40 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-09-15 23:56 - 2017-05-16 23:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00060736 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-05-17 20:47 - 2017-04-26 02:38 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-05-17 20:47 - 2017-04-26 02:40 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2016-09-15 23:56 - 2017-05-16 23:00 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-09-15 23:56 - 2017-05-16 23:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-05-17 20:47 - 2017-05-16 23:01 - 00082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2016-09-15 23:56 - 2017-05-16 23:01 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2016-09-15 23:56 - 2017-04-26 02:39 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-02-27 21:49 - 2017-05-16 23:01 - 00054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-01-24 03:48 - 2017-05-16 23:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2016-09-15 23:56 - 2017-05-16 23:01 - 00069968 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2017-01-24 03:48 - 2017-05-16 23:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-01-24 03:48 - 2017-05-16 23:01 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-01-24 03:48 - 2017-05-16 23:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2016-09-15 23:56 - 2017-04-26 02:40 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00103232 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
2016-09-15 23:56 - 2017-05-16 23:01 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-05-17 20:47 - 2017-04-26 02:34 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-05-17 20:47 - 2017-05-16 23:00 - 00033112 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2017-05-17 20:47 - 2017-03-22 12:07 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2017-05-17 20:47 - 2017-05-16 23:00 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2016-09-15 23:56 - 2017-05-16 23:01 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-05-17 20:47 - 2017-04-26 02:43 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-05-17 20:47 - 2017-04-26 02:43 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2016-09-15 23:56 - 2017-05-16 23:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-04-07 20:02 - 2017-05-16 23:01 - 00023368 _____ () C:\Program Files (x86)\Dropbox\Client\wincrashpad.compiled._Crashpad.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-05-17 20:47 - 2017-05-16 23:00 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2015-10-07 00:14 - 2017-03-10 02:13 - 00674592 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-10-07 00:14 - 2017-04-26 01:55 - 02465056 _____ () C:\Program Files (x86)\Steam\video.dll
2015-10-07 00:14 - 2016-09-01 03:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-10-07 00:14 - 2016-01-27 09:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-10-07 00:14 - 2016-01-27 09:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-10-07 00:14 - 2016-01-27 09:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-10-07 00:14 - 2016-01-27 09:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-10-07 00:14 - 2016-01-27 09:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-10-07 00:14 - 2016-09-01 03:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-10-07 00:14 - 2016-09-01 03:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-10-07 00:14 - 2017-04-26 01:55 - 00848672 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 20:48 - 2016-07-05 00:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-12-12 22:11 - 2017-01-30 23:41 - 68875552 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2015-10-07 00:14 - 2017-04-26 01:55 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll
2015-10-07 00:14 - 2015-09-25 01:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2017-05-03 14:32 - 2017-01-04 15:28 - 01958912 _____ () C:\Users\Manuel\AppData\Local\Discord\app-0.0.297\ffmpeg.dll
2017-05-03 14:32 - 2017-05-03 14:32 - 01082880 _____ () \\?\C:\Users\Manuel\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node
2017-05-03 14:32 - 2017-05-03 14:32 - 03750400 _____ () \\?\C:\Users\Manuel\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll
2017-05-03 14:32 - 2017-05-03 14:32 - 00914432 _____ () \\?\C:\Users\Manuel\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node
2017-05-03 14:32 - 2017-05-03 14:32 - 01127424 _____ () \\?\C:\Users\Manuel\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node
2017-05-03 14:32 - 2017-01-04 15:28 - 02278912 _____ () C:\Users\Manuel\AppData\Local\Discord\app-0.0.297\libglesv2.dll
2017-05-03 14:32 - 2017-01-04 15:28 - 00096768 _____ () C:\Users\Manuel\AppData\Local\Discord\app-0.0.297\libegl.dll
2017-05-30 17:20 - 2017-05-30 17:20 - 00148992 _____ () \\?\C:\Users\Manuel\AppData\Local\Temp\D04B.tmp.node
2017-05-03 14:32 - 2017-05-03 14:32 - 02658296 _____ () \\?\C:\Users\Manuel\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node
2017-05-03 14:32 - 2017-05-03 14:32 - 02665976 _____ () \\?\C:\Users\Manuel\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Manuel\Desktop\Screenshot 2017-05-09 22.17.05.png:com.dropbox.attributes [168]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2017-02-02 23:26 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Manuel\Pictures\angel_man_by_seanbean80-d4axa27.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\startupfolder: C:^Users^Manuel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Slack.lnk => C:\Windows\pss\Slack.lnk.Startup
MSCONFIG\startupreg: Discord => C:\Users\Manuel\AppData\Local\Discord\app-0.0.283\Discord.exe
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: GalaxyClient => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: THPanel => "C:\Program Files (x86)\Thunder Master\THPanel.exe" /A
HKLM\...\StartupApproved\StartupFolder: => "WinZip Preloader.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Update Benachrichtigungsdienst.lnk"
HKLM\...\StartupApproved\Run: => "Start WingMan Profiler"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\StartupApproved\Run: => "Discord"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{0709EFB8-24C8-4FF5-80E9-F3A43FBDD4F9}E:\dawn of war - dark crusade\darkcrusade.exe] => (Block) E:\dawn of war - dark crusade\darkcrusade.exe
FirewallRules: [TCP Query User{E34BF470-770B-481B-BE27-BABB983C549E}E:\dawn of war - dark crusade\darkcrusade.exe] => (Block) E:\dawn of war - dark crusade\darkcrusade.exe
FirewallRules: [{BBDA5951-B4F9-4509-BCB2-A5730906F9C4}] => (Allow) E:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{44436D23-D172-48F5-94ED-E42D3871BEEB}] => (Allow) E:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{65DF127B-18E1-41A8-A183-8BAB2532A987}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor\forhonor.exe
FirewallRules: [{E54A5F90-1C70-438D-A609-E4FD1B71EF21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor\forhonor.exe
FirewallRules: [UDP Query User{A7BC66CF-B414-4CAD-8249-BD170785009A}E:\for honor\forhonorbeta\forhonor.exe] => (Allow) E:\for honor\forhonorbeta\forhonor.exe
FirewallRules: [TCP Query User{221493AA-8524-4D1D-B1D5-3791DE830AE7}E:\for honor\forhonorbeta\forhonor.exe] => (Allow) E:\for honor\forhonorbeta\forhonor.exe
FirewallRules: [{B5C712C1-7518-4C92-B104-86C5797D3D24}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{1FB416F8-4404-4BFA-A94C-554C479E561F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{C77F9EFE-22CC-40AD-94A6-9772283BF313}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{EE505D25-CE8A-4D2B-B8D2-AED0E5E232B2}] => (Allow) E:\SteamLibrary\steamapps\common\Life is Feudal Forest Village\ForestVillage.exe
FirewallRules: [{222949B5-11E2-4FD1-A795-964444ADC113}] => (Allow) E:\SteamLibrary\steamapps\common\Life is Feudal Forest Village\ForestVillage.exe
FirewallRules: [{0B829C07-7740-4A0A-8899-ABF1D3ED9700}] => (Allow) E:\SteamLibrary\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{4B67A1EC-C1E8-4456-B6AF-8832627591C9}] => (Allow) E:\SteamLibrary\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{BCC58312-F89C-451D-A327-03B5A77D3218}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno 2205\Bin\Win64\Anno2205.exe
FirewallRules: [{92A795FA-9809-453C-87B5-FBF07B2ABEDC}] => (Allow) E:\SteamLibrary\steamapps\common\Alice Madness Returns\Binaries\Win32\AliceMadnessReturns.exe
FirewallRules: [{8DBBE8A7-C707-4E81-9D49-A6E79100E622}] => (Allow) E:\SteamLibrary\steamapps\common\Alice Madness Returns\Binaries\Win32\AliceMadnessReturns.exe
FirewallRules: [{914D1780-7C67-4D76-9F06-39CEF1AFE827}] => (Allow) E:\SteamLibrary\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\BrothersLauncher.exe
FirewallRules: [{1C640F78-6AFC-4A0C-BB62-E55E59F6F25C}] => (Allow) E:\SteamLibrary\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\BrothersLauncher.exe
FirewallRules: [{AA605E2F-CBA5-4DE7-A3C4-EF2F4DAA1042}] => (Allow) E:\SteamLibrary\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\Brothers.exe
FirewallRules: [{A55A8765-0D22-40C4-B9B1-292E0998641D}] => (Allow) E:\SteamLibrary\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\Brothers.exe
FirewallRules: [{89B80398-AF93-467A-922C-9FB9026B8037}] => (Allow) E:\SteamLibrary\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{D1041040-4372-47B0-B977-82612534D81A}] => (Allow) E:\SteamLibrary\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{37A04C34-7ECA-45E3-948A-03D330EA0147}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2C9DEEAA-9683-4AD0-B105-A40FD840B84F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{05386E8E-9F7F-42E2-9B60-4972A34591A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{3703F714-3F0A-4EF4-81F6-0BDB540C03E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{8912978E-E238-4771-8D95-DEDF8C2FC090}] => (Allow) E:\SteamLibrary\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{BC888965-A2F5-4B4C-A86B-9A1150F1A47C}] => (Allow) E:\SteamLibrary\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{FF930ACB-1BD4-44E4-929A-8463DD797AD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\mordheim\mordheim.exe
FirewallRules: [{A421B9BE-E294-4FA3-AE90-22C6BCBD9C91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\mordheim\mordheim.exe
FirewallRules: [{3601F1BC-5E46-450A-A7CA-612F8CD6C7FB}] => (Allow) E:\SteamLibrary\steamapps\common\Dungeons2\mono\bin\mono.exe
FirewallRules: [{63FCE78D-3724-41F8-941C-E089FB46364B}] => (Allow) E:\SteamLibrary\steamapps\common\Dungeons2\mono\bin\mono.exe
FirewallRules: [{1E0EDABE-5007-4139-9331-4BC18B63FA23}] => (Allow) E:\SteamLibrary\steamapps\common\Dungeons2\Dungeons2.exe
FirewallRules: [{CEDAFF83-A2E3-4DEC-89F3-9EE9FCDA1833}] => (Allow) E:\SteamLibrary\steamapps\common\Dungeons2\Dungeons2.exe
FirewallRules: [{A4A9D187-8E53-4494-8BBD-08DC0E161332}] => (Allow) E:\SteamLibrary\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{93BDAAC5-D23C-4B99-96B6-A9B36E9E6E6F}] => (Allow) E:\SteamLibrary\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [UDP Query User{0009D068-4179-4402-99AF-EE096779B652}E:\battle for middle earth\patchget.dat] => (Allow) E:\battle for middle earth\patchget.dat
FirewallRules: [TCP Query User{8DE0C382-0468-4241-811B-8623EFF1379D}E:\battle for middle earth\patchget.dat] => (Allow) E:\battle for middle earth\patchget.dat
FirewallRules: [{00420703-8D29-416D-8708-C4E06F74D849}] => (Allow) E:\Battle for Middle Earth\game.dat
FirewallRules: [{F6BDA793-32A8-4EEC-BEAA-D79401A9EB1A}] => (Allow) E:\Battle for Middle Earth\game.dat
FirewallRules: [UDP Query User{8F08B534-6F06-4735-8237-FC50D9BBEC1C}C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [TCP Query User{70C830A3-0BA8-4726-AAF2-6179B580B4A9}C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [{86CDCD07-E492-44CE-974C-6338FAE2CC0E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{DEA48ABE-6352-414F-A6C2-9402F9C7502C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6FD94A6C-FC71-4BE5-810D-4B35716E80BD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4BA516B8-E3F2-47B2-BD68-A5EF675BB575}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1A5BF79C-DC2F-4523-AA25-3D15AA3EA15B}] => (Allow) E:\SteamLibrary\steamapps\common\Ori\ori.exe
FirewallRules: [{72E13B79-3DC7-461B-B23A-6128246DBEA5}] => (Allow) E:\SteamLibrary\steamapps\common\Ori\ori.exe
FirewallRules: [{BAAA63B6-781C-4D2F-B57B-42669DCDB599}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{548818E3-553B-42C7-8CEC-6878BE59035A}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2B5A8C90-70C6-4727-A13B-6D04C4134D60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{CA499FAF-20EF-47D7-8464-8C0FFE5F4704}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{75BA819F-0444-4A25-BBFE-2B565916672B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FA4B1CCF-B07D-4193-8ADE-04D96FB1D648}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EAAB2090-B119-4B7D-AB33-FD5935637715}] => (Allow) E:\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{12BE024D-D877-4BA7-A2A6-9AEEDAF21B5D}] => (Allow) E:\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{30090509-026D-4CC8-A11F-F95CA6F90E94}] => (Allow) E:\SteamLibrary\steamapps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
FirewallRules: [{881D4C63-ECDA-4028-B39A-05BBFCBB6519}] => (Allow) E:\SteamLibrary\steamapps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
FirewallRules: [TCP Query User{A7B4C10A-C90F-47FB-A578-90F52AD8392A}E:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) E:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [UDP Query User{BEF50708-FC62-42D3-92A8-5BE7F5696A4C}E:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) E:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [TCP Query User{2D37C72E-49D9-4ACB-9CB8-1E932D91BAA0}C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{93D218A4-6360-45D2-AC18-7ECD4005E2A8}C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [{BAA8C52D-3A15-4CDC-A8FC-4BE825CE6415}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{907E9E84-ED87-4511-A227-E77E6475B7C9}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{2DEAB74E-E475-4CA7-B888-6F960ABCFBEF}] => (Allow) E:\SteamLibrary\steamapps\common\War For The Overworld\WFTO.exe
FirewallRules: [{A6BA98E4-11F9-4267-87E9-66B9746CB77E}] => (Allow) E:\SteamLibrary\steamapps\common\War For The Overworld\WFTO.exe
FirewallRules: [TCP Query User{9F166F4C-FDBB-4044-94E1-129AF4760201}E:\steamlibrary\steamapps\common\war for the overworld\wftogame.exe] => (Allow) E:\steamlibrary\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [UDP Query User{AF564EEC-201F-432B-80A5-9C87B37D099A}E:\steamlibrary\steamapps\common\war for the overworld\wftogame.exe] => (Allow) E:\steamlibrary\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [TCP Query User{9628823C-20D7-47C7-B56A-9095CC205170}E:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe] => (Allow) E:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [UDP Query User{618404F0-C7F1-4F60-920B-A21765384BBF}E:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe] => (Allow) E:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [{6C8D79F0-E49F-4879-A18A-E4185112879F}] => (Allow) C:\Might & Magic Heroes VI\Might & Magic Heroes VI.exe
FirewallRules: [{5F722E31-C6E6-4061-971F-3E7D0DDA7828}] => (Allow) C:\Might & Magic Heroes VI\Might & Magic Heroes VI.exe
FirewallRules: [{33163901-24E4-49BC-B78D-ADEE4E85AC97}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{E6CD184A-7313-482A-88E0-F314B56CF3E9}] => (Allow) E:\SteamLibrary\steamapps\common\Total War WARHAMMER\assembly_kit\binaries\BOB.AssemblyKit.exe
FirewallRules: [{0B189725-6F01-4B62-BF2A-FEBA9AFE479F}] => (Allow) E:\SteamLibrary\steamapps\common\Total War WARHAMMER\assembly_kit\binaries\BOB.AssemblyKit.exe
FirewallRules: [{7022F7F8-0599-4484-877E-A138893E7CA0}] => (Allow) E:\SteamLibrary\steamapps\common\Total War WARHAMMER\assembly_kit\binaries\TWeak.AssemblyKit.exe
FirewallRules: [{BD4D3FC8-0828-4FD0-A561-E1889309AA75}] => (Allow) E:\SteamLibrary\steamapps\common\Total War WARHAMMER\assembly_kit\binaries\TWeak.AssemblyKit.exe
==================== Wiederherstellungspunkte =========================
23-05-2017 14:36:12 Windows Update
29-05-2017 18:19:39 DirectX wurde installiert
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/27/2017 09:32:24 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (05/23/2017 02:36:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (05/19/2017 09:31:11 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (05/18/2017 05:03:17 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (05/17/2017 04:03:05 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (05/16/2017 09:43:14 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Error: (05/16/2017 09:42:33 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Error: (05/16/2017 09:42:33 AM) (Source: MSDTC 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Error: (05/16/2017 09:42:33 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Systemfehler:
=============
Error: (05/30/2017 04:17:44 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (05/30/2017 04:17:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CldFlt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die Anforderung wird nicht unterstützt.
Error: (05/30/2017 04:17:44 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 30.05.2017 um 04:34:00 unerwartet heruntergefahren.
Error: (05/30/2017 04:17:37 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT-AUTORITÄT)
Description: 32212256844617777039042328
Error: (05/22/2017 03:56:01 AM) (Source: DCOM) (EventID: 10010) (User: MANUEL)
Description: Der Server "{9BA05972-F6A8-11CF-A442-00A0C90A8F39}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/19/2017 12:25:54 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (05/19/2017 12:25:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CldFlt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die Anforderung wird nicht unterstützt.
Error: (05/19/2017 12:25:48 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT-AUTORITÄT)
Description: 32212256844753704164057784
Error: (05/19/2017 12:25:53 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 19.05.2017 um 01:37:50 unerwartet heruntergefahren.
Error: (05/17/2017 06:38:10 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
CodeIntegrity:
===================================
Date: 2017-05-26 03:41:06.508
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:41:06.432
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:59.872
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:29.699
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:29.463
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:29.370
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:41.975
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:35.067
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:35.009
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:34.797
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 21%
Installierter physikalischer RAM: 16326.87 MB
Verfügbarer physikalischer RAM: 12764.1 MB
Summe virtueller Speicher: 32710.87 MB
Verfügbarer virtueller Speicher: 28824.65 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.44 GB) (Free:48.1 GB) NTFS
Drive d: (Drasa_Pyramide) (CDROM) (Total:5.12 GB) (Free:0 GB) CDFS
Drive e: (Dateien) (Fixed) (Total:931.41 GB) (Free:625.28 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 8AB73DB5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: D9523981)
Partition 1: (Not Active) - (Size=232.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
|
|
30.05.2017, 19:54
| #6 |
| /// TB-Ausbilder | Browserfenster wird schwarz wenn YT videos angesehen werden Servus, Schritt 1 Downloade Dir bitte AdwCleaner auf deinen Desktop.
Schritt 2 Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Schritt 3
Bitte poste mit deiner nächsten Antwort
|
|
31.05.2017, 15:34
| #7 |
| | Browserfenster wird schwarz wenn YT videos angesehen werden AdwCleaner: Code:
ATTFilter # AdwCleaner v6.047 - Bericht erstellt am 31/05/2017 um 16:24:33
# Aktualisiert am 19/05/2017 von Malwarebytes
# Datenbank : 2017-05-30.2 [Server]
# Betriebssystem : Windows 10 Home (X64)
# Benutzername : Manuel - MANUEL
# Gestartet von : C:\Users\Manuel\Desktop\adwcleaner_6.047.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
*************************
:: Winsock Einstellungen zurückgesetzt
:: "Image File Execution Options" Schlüssel gelöscht
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Firewall Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1022 Bytes] - [31/05/2017 16:24:33]
C:\AdwCleaner\AdwCleaner[S0].txt - [1339 Bytes] - [31/05/2017 16:24:10]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1168 Bytes] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.3 (04.10.2017)
Operating System: Windows 10 Home x64
Ran by Manuel (Administrator) on 31.05.2017 at 16:28:03,57
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 1
Successfully deleted: C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default\extensions\trash (Folder)
Deleted the following from C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default\prefs.js
user_pref(extensions.ich@maltegoetz.de.config, {\proxy\:\[proxy]\,\supportedsites\:[{\domain\:\www.youtube.com\,\displayName\:\YouTube (auto)\,\functionName\
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 31.05.2017 at 16:28:31,12
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 28-05-2017
durchgeführt von Manuel (Administrator) auf MANUEL (31-05-2017 16:30:26)
Gestartet von C:\Users\Manuel\Desktop
Geladene Profile: Manuel (Verfügbare Profile: Manuel & DefaultAppPool)
Platform: Windows 10 Home Version 1703 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7636696 2014-09-02] (Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28734456 2017-05-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2650576 2017-05-05] (Malwarebytes Corporation)
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\Run: [Discord] => C:\Users\Manuel\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\MountPoints2: {9a8066d6-b48e-11e5-bbb4-806e6f6e6963} - "D:\StartUp.exe"
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{dbf9de44-cfa5-4383-a503-b7a4012b3bf0}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
FireFox:
========
FF DefaultProfile: 2rkug9sv.default
FF ProfilePath: C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default [2017-05-31]
FF NetworkProxy: Mozilla\Firefox\Profiles\2rkug9sv.default -> type", 0
FF Extension: (ProxTube) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default\Extensions\ich@maltegoetz.de.xpi [2017-04-12]
FF Extension: (Adblock Plus) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-05-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-11] ()
FF Plugin: @videolan.org/vlc,version=2.2.1 -> E:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> E:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> E:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-11] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-29] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-29] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-18] (NVIDIA Corporation)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-04] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] () [Datei ist nicht signiert]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [48944 2017-05-16] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [399120 2017-02-14] (EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [284736 2017-01-31] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6625856 2016-12-24] (GOG.com)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-29] (Intel Corporation)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [155080 2017-05-05] (Malwarebytes Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-18] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-05-18] (NVIDIA Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] ()
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [77440 2017-05-05] ()
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7209bde3180ef5f7\nvlddmkm.sys [14458264 2017-05-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-05-18] (NVIDIA Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-31 16:29 - 2017-05-31 16:29 - 00000000 ____D C:\Users\Manuel\AppData\Local\DBG
2017-05-31 16:28 - 2017-05-31 16:28 - 00000944 _____ C:\Users\Manuel\Desktop\JRT.txt
2017-05-31 16:27 - 2017-05-31 16:27 - 01663672 _____ (Malwarebytes) C:\Users\Manuel\Downloads\JRT.exe
2017-05-31 16:22 - 2017-05-31 16:24 - 00000000 ____D C:\AdwCleaner
2017-05-31 16:21 - 2017-05-31 16:21 - 04110280 _____ C:\Users\Manuel\Desktop\adwcleaner_6.047.exe
2017-05-30 17:29 - 2017-05-30 17:37 - 00265172 _____ C:\TDSSKiller.3.1.0.15_30.05.2017_17.29.17_log.txt
2017-05-30 17:28 - 2017-05-30 17:28 - 00151204 _____ C:\TDSSKiller.3.1.0.15_30.05.2017_17.28.18_log.txt
2017-05-30 17:27 - 2017-05-30 17:27 - 04922400 _____ (AO Kaspersky Lab) C:\Users\Manuel\Desktop\tdsskiller.exe
2017-05-30 17:26 - 2017-05-31 16:30 - 00014539 _____ C:\Users\Manuel\Desktop\FRST.txt
2017-05-30 17:26 - 2017-05-31 16:30 - 00000000 ____D C:\FRST
2017-05-30 17:26 - 2017-05-30 17:26 - 00058506 _____ C:\Users\Manuel\Desktop\Addition.txt
2017-05-30 17:25 - 2017-05-30 17:25 - 02429952 _____ (Farbar) C:\Users\Manuel\Desktop\FRST64.exe
2017-05-29 18:22 - 2017-05-29 18:22 - 00000000 ____D C:\Users\Manuel\Documents\Drakensang
2017-05-29 18:22 - 2017-05-29 18:22 - 00000000 ____D C:\Program Files (x86)\ProtectDisc Driver Installer
2017-05-29 18:21 - 2017-05-29 18:54 - 00004096 _____ C:\Users\Public\Documents\00001119.LCS
2017-05-29 18:21 - 2017-05-29 18:21 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\ProtectDisc
2017-05-29 18:21 - 2017-05-29 18:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DB Browser for SQLite
2017-05-29 18:19 - 2017-05-29 18:19 - 15749664 _____ C:\Users\Manuel\Downloads\DB.Browser.for.SQLite-3.9.1-win64.exe
2017-05-29 18:19 - 2017-05-29 18:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Drakensang
2017-05-28 15:09 - 2017-05-28 15:09 - 00001222 _____ C:\Users\Manuel\Desktop\Malwarebytes Suchlaufprotokoll.txt
2017-05-28 15:09 - 2017-05-28 15:09 - 00000519 _____ C:\Users\Manuel\Desktop\Malwarebytes Schutzprotokoll.txt
2017-05-26 14:38 - 2017-05-26 14:38 - 00000222 _____ C:\Users\Manuel\Desktop\Total War WARHAMMER - Assembly Kit BETA.url
2017-05-23 00:24 - 2017-05-23 00:24 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-05-23 00:24 - 2017-05-18 09:35 - 00513144 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-05-23 00:24 - 2017-05-18 09:35 - 00418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-05-23 00:24 - 2017-05-18 07:21 - 00134592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-05-23 00:24 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-05-23 00:24 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-05-23 00:24 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-05-23 00:24 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-05-23 00:23 - 2017-05-18 09:35 - 40201848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 35390072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 35282040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 28624504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 11056456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 11028664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 10551072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 09248144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 09014976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 08808488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 03797112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 03256440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438233.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01606592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438233.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01275944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01056704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00995736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00993912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00993872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00964032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00914880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00775864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00725112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00612272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00583800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00577728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-05-22 23:47 - 2017-05-22 23:47 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-22 23:46 - 2017-05-23 00:24 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-05-22 23:46 - 2017-05-03 22:21 - 00175736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-22 23:46 - 2017-05-03 22:21 - 00143480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-05-18 13:37 - 2017-05-18 13:37 - 00007334 _____ C:\Users\Manuel\Desktop\OpenDocument Text (neu).odt
2017-05-17 20:48 - 2017-05-17 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-05-17 19:19 - 2017-05-17 19:42 - 00000420 _____ C:\Users\Manuel\Desktop\Wandtatoo.txt
2017-05-16 23:01 - 2017-05-16 23:01 - 00048944 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-05-16 20:25 - 2017-05-16 20:25 - 00000000 ____D C:\ProgramData\USOShared
2017-05-16 20:25 - 2017-05-16 20:25 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-05-16 20:24 - 2017-05-16 20:24 - 00000020 ___SH C:\Users\Manuel\ntuser.ini
2017-05-16 10:37 - 2017-05-16 10:37 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 21353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 20374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 11870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 08320920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04848440 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03655680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02651648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02435584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02298880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-16 10:37 - 2017-05-16 10:37 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-05-16 10:37 - 2017-05-16 10:37 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01411128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 01103872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00775824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00605936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-05-16 10:37 - 2017-05-16 10:37 - 00543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-05-16 10:37 - 2017-05-16 10:37 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-05-16 10:37 - 2017-05-16 10:37 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00207264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-16 10:37 - 2017-05-16 10:37 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-05-16 10:37 - 2017-05-16 10:37 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-05-16 10:37 - 2017-05-16 10:37 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-05-16 10:36 - 2017-03-17 23:00 - 05739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2017-05-16 10:36 - 2017-03-17 22:59 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2017-05-16 10:36 - 2017-03-17 22:48 - 06348288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2017-05-16 10:36 - 2017-03-17 22:43 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2017-05-16 10:36 - 2017-03-17 22:35 - 05484544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2017-05-16 10:35 - 2017-05-16 10:35 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-05-16 10:35 - 2017-05-16 09:39 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\system32\msmq
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files\MSBuild
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\inetpub
2017-05-16 10:34 - 2017-02-10 12:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-05-16 10:34 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-05-16 09:43 - 2017-05-31 16:25 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-16 09:43 - 2017-05-22 23:47 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-16 20:26 - 00003274 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-05-16 09:43 - 2017-05-16 09:44 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2017-05-16 09:43 - 2017-05-16 09:44 - 00011433 _____ C:\WINDOWS\diagerr.xml
2017-05-16 09:43 - 2017-05-16 09:43 - 00003728 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-05-16 09:43 - 2017-05-16 09:43 - 00003504 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-05-16 09:43 - 2017-05-16 09:43 - 00003332 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-05-16 09:43 - 2017-05-16 09:43 - 00002590 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2017-05-16 09:43 - 2017-05-16 09:43 - 00002284 _____ C:\WINDOWS\System32\Tasks\{CD086C04-185A-4373-B4C9-1B93FA40CA47}
2017-05-16 09:43 - 2017-05-16 09:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2017-05-16 09:43 - 2017-05-16 09:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-05-16 09:43 - 2017-05-16 09:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2017-05-16 09:41 - 2017-05-16 09:41 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-05-16 09:41 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-05-16 09:40 - 2017-05-30 05:06 - 00000000 ____D C:\Users\Manuel
2017-05-16 09:40 - 2017-05-23 00:27 - 02223076 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-16 09:40 - 2017-05-16 09:42 - 00000000 ____D C:\Users\DefaultAppPool
2017-05-16 09:40 - 2017-05-16 09:41 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-05-16 09:40 - 2017-05-16 09:40 - 02011386 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Vorlagen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Startmenü
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Netzwerkumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Lokale Einstellungen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Eigene Dateien
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Druckumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Videos
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Musik
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Bilder
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\AppData\Local\Verlauf
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\AppData\Local\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Videos
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2017-05-16 09:39 - 2017-05-31 16:28 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-16 09:39 - 2017-05-31 16:13 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-05-16 09:39 - 2017-05-23 00:25 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-16 09:39 - 2017-05-22 23:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-16 09:39 - 2017-05-22 23:46 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-16 09:39 - 2017-05-18 07:55 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-05-16 09:39 - 2017-05-18 07:48 - 06437824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 02479736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 01762936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00548984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-05-16 09:39 - 2017-05-16 20:24 - 00251984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-16 09:39 - 2017-05-16 20:09 - 07993157 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-05-16 09:39 - 2017-05-16 09:40 - 00000000 ____D C:\Program Files (x86)\ASUS
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_ASMBSW_01_11_00.Wdf
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____D C:\Program Files\Realtek
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____D C:\Program Files\ASUS
2017-05-16 09:39 - 2013-07-04 04:32 - 00028672 _____ (ASUSTek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO.dll
2017-05-16 09:39 - 2013-07-04 04:32 - 00015232 _____ C:\WINDOWS\SysWOW64\Drivers\AsIO.sys
2017-05-10 06:43 - 2017-05-16 20:24 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-10 03:26 - 2017-05-10 03:26 - 00000000 ____D C:\Users\Manuel\AppData\Local\UNP
2017-05-10 01:13 - 2017-05-16 09:41 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-05-10 01:13 - 2017-05-10 01:14 - 00000000 ____D C:\Program Files\UNP
2017-05-10 01:12 - 2017-03-04 08:26 - 00261632 ____N (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-05-03 15:03 - 2017-05-31 03:43 - 00000000 ____D C:\Users\Manuel\Desktop\WFTO
2017-05-03 14:32 - 2017-05-03 14:32 - 00002278 _____ C:\Users\Manuel\Desktop\Discord.lnk
2017-05-03 14:32 - 2017-05-03 14:32 - 00000000 ____D C:\Users\Manuel\AppData\Local\Discord
2017-05-03 14:28 - 2017-05-03 14:32 - 52553728 _____ (Hammer & Chisel, Inc.) C:\Users\Manuel\Downloads\DiscordSetup.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-31 16:28 - 2016-11-18 10:47 - 00000000 ____D C:\Users\Manuel\AppData\LocalLow\Mozilla
2017-05-31 16:28 - 2010-11-21 05:27 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-31 16:24 - 2017-03-18 13:40 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-05-31 15:59 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-31 15:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-31 04:22 - 2015-10-07 00:11 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-30 22:11 - 2016-12-15 18:01 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2017-05-30 18:53 - 2016-01-20 22:23 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\vlc
2017-05-30 16:17 - 2016-11-18 01:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-30 16:17 - 2015-10-06 23:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-29 21:18 - 2016-11-28 23:40 - 00000000 ____D C:\Users\Manuel\Desktop\MordheimBackup
2017-05-29 18:21 - 2015-10-06 23:40 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-29 18:20 - 2015-11-13 14:09 - 00000000 ___RD C:\Users\Manuel\Desktop\Zocks
2017-05-29 16:16 - 2015-10-06 15:37 - 00000133 _____ C:\Users\Manuel\Desktop\DL.html
2017-05-28 17:25 - 2015-10-07 00:49 - 00000000 ___RD C:\Users\Manuel\Dropbox
2017-05-28 15:08 - 2016-12-14 17:51 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-05-27 14:56 - 2015-10-07 00:40 - 00000000 ____D C:\Users\Manuel\AppData\Local\Dropbox
2017-05-23 14:36 - 2016-01-06 20:14 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-23 14:36 - 2016-01-06 20:14 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 00:27 - 2017-03-20 06:35 - 00959174 _____ C:\WINDOWS\system32\perfh007.dat
2017-05-23 00:27 - 2017-03-20 06:35 - 00217864 _____ C:\WINDOWS\system32\perfc007.dat
2017-05-23 00:25 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-23 00:25 - 2015-10-07 00:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-05-22 23:47 - 2016-10-25 00:27 - 00001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-05-20 22:53 - 2015-12-29 17:44 - 00000000 ____D C:\Users\Manuel\AppData\Local\Ubisoft Game Launcher
2017-05-19 12:36 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-05-18 09:35 - 2017-04-26 01:20 - 04114248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-05-18 09:35 - 2017-04-26 01:20 - 03624784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-05-18 09:35 - 2017-04-26 01:20 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-05-18 09:35 - 2017-04-26 01:20 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-05-18 09:35 - 2017-01-24 21:56 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-05-17 20:48 - 2015-10-07 00:40 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-05-17 18:47 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-05-17 15:00 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-17 14:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-05-16 20:40 - 2016-01-06 18:07 - 00000000 ____D C:\Users\Manuel\AppData\Local\Packages
2017-05-16 20:26 - 2016-01-06 18:09 - 00002426 _____ C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-05-16 20:26 - 2016-01-06 18:09 - 00000000 ___RD C:\Users\Manuel\OneDrive
2017-05-16 20:25 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-05-16 20:24 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-05-16 20:24 - 2016-01-06 18:07 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-16 10:38 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-05-16 10:37 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-05-16 10:37 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-05-16 10:36 - 2017-03-20 06:36 - 00000000 ____D C:\WINDOWS\OCR
2017-05-16 10:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-05-16 10:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-05-16 10:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2017-05-16 10:34 - 2017-03-18 22:59 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2017-05-16 10:34 - 2017-03-18 22:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2017-05-16 10:34 - 2017-03-18 22:59 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2017-05-16 10:34 - 2017-03-18 22:56 - 01380352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2017-05-16 10:34 - 2017-03-18 22:56 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2017-05-16 10:34 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2017-05-16 09:44 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-05-16 09:44 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-05-16 09:44 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-05-16 09:43 - 2017-03-20 06:37 - 00000000 ____D C:\WINDOWS\HoloShell
2017-05-16 09:43 - 2017-03-18 23:03 - 00000000 __RSD C:\WINDOWS\Media
2017-05-16 09:43 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-05-16 09:43 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-16 09:43 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-05-16 09:43 - 2016-01-06 18:03 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-05-16 09:41 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\IME
2017-05-16 09:41 - 2016-12-15 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2017-05-16 09:41 - 2016-12-15 18:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
2017-05-16 09:41 - 2016-11-06 15:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nordlandtrilogie Heldenedition
2017-05-16 09:41 - 2016-09-20 17:34 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2017-05-16 09:41 - 2016-05-12 03:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2017-05-16 09:41 - 2016-05-04 17:01 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2017-05-16 09:41 - 2016-05-04 17:01 - 00000000 ____D C:\WINDOWS\system32\vbox
2017-05-16 09:41 - 2016-03-23 23:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-05-16 09:41 - 2016-01-26 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-05-16 09:41 - 2016-01-20 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-05-16 09:41 - 2016-01-05 20:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2017-05-16 09:41 - 2016-01-03 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2017-05-16 09:41 - 2015-12-17 22:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anno Online
2017-05-16 09:41 - 2015-11-29 23:55 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-05-16 09:41 - 2015-11-04 16:39 - 00000000 ____D C:\WINDOWS\de
2017-05-16 09:41 - 2015-10-12 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2017-05-16 09:41 - 2015-10-07 00:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-05-16 09:41 - 2015-10-06 23:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonic Radar II
2017-05-16 09:40 - 2017-04-21 19:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THQ
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 __SHD C:\Program Files\Windows Sidebar
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\schemas
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-16 09:40 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-05-16 09:40 - 2016-01-12 02:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2017-05-16 09:40 - 2015-12-29 17:44 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-05-16 09:40 - 2015-11-29 23:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2017-05-16 09:40 - 2015-11-25 00:17 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-05-16 09:40 - 2015-11-23 20:56 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies
2017-05-16 09:40 - 2015-10-07 02:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2017-05-16 09:40 - 2015-10-06 23:32 - 00000000 ____D C:\Program Files\Intel
2017-05-16 09:40 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Microsoft Games
2017-05-16 09:39 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-05-10 22:58 - 2016-12-15 18:01 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Exploit
2017-05-08 17:19 - 2016-02-20 19:08 - 00000000 ____D C:\Users\Manuel\AppData\Local\CrashDumps
2017-05-03 22:21 - 2017-04-25 22:26 - 00048248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-05-03 22:21 - 2016-10-25 00:27 - 01893496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 01755256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 01477240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 01317496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 00121464 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-05-03 15:34 - 2016-11-07 15:31 - 00000000 ____D C:\Users\Manuel\Desktop\Präsentation
2017-05-03 15:03 - 2015-10-12 21:09 - 00000000 ____D C:\Users\Manuel\Desktop\QA Vids
2017-05-03 14:32 - 2015-11-25 00:17 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\discord
2017-05-03 14:32 - 2015-11-23 20:56 - 00000000 ____D C:\Users\Manuel\AppData\Local\SquirrelTemp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-06-06 15:15 - 2016-06-06 15:16 - 0000100 _____ () C:\Users\Manuel\AppData\Roaming\ScriptStudioLayout.ini
2016-06-06 15:15 - 2016-06-06 15:16 - 0000046 _____ () C:\Users\Manuel\AppData\Roaming\ScriptStudioOptions.ini
2016-02-17 21:13 - 2016-02-17 21:13 - 0007597 _____ () C:\Users\Manuel\AppData\Local\Resmon.ResmonCfg
2017-05-16 09:39 - 2017-05-16 09:39 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
2017-04-26 01:22 - 2017-04-20 02:18 - 0867968 _____ (NVIDIA Corporation) C:\Users\Manuel\AppData\Local\Temp\nvSCPAPI64.dll
2017-05-23 00:23 - 2017-04-20 02:18 - 0367736 _____ (NVIDIA Corporation) C:\Users\Manuel\AppData\Local\Temp\nvStInst.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-28 16:53
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-05-2017
durchgeführt von Manuel (31-05-2017 16:30:53)
Gestartet von C:\Users\Manuel\Desktop
Windows 10 Home Version 1703 (X64) (2017-05-16 07:45:03)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2887243570-1868036058-3993079417-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2887243570-1868036058-3993079417-503 - Limited - Disabled)
Gast (S-1-5-21-2887243570-1868036058-3993079417-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2887243570-1868036058-3993079417-1002 - Limited - Enabled)
Manuel (S-1-5-21-2887243570-1868036058-3993079417-1000 - Administrator - Enabled) => C:\Users\Manuel
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
7-Zip 16.04 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Alice: Madness Returns (HKLM-x32\...\Steam App 19680) (Version: - Spicy Horse Games)
Anno 2205 (HKLM-x32\...\Uplay Install 1253) (Version: - Ubisoft)
Anno Online - Standalone Client (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\Anno Online) (Version: - )
Ansel (Version: 382.33 - NVIDIA Corporation) Hidden
Banished (HKLM-x32\...\Steam App 242920) (Version: - Shining Rock Software LLC)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dawn of War - Dark Crusade (HKLM-x32\...\{FF39FC01-819B-42E4-AE49-1968AF12DDD4}) (Version: 1.00.0000 - THQ)
DB Browser for SQLite (HKLM-x32\...\DB Browser for SQLite) (Version: 3.9.1 - DB Browser for SQLite Team)
Die Schlacht um Mittelerde(tm) (HKLM-x32\...\{3F290582-3F4E-4B96-009C-E0BABAA40C42}) (Version: - )
Discord (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Drakensang (HKLM-x32\...\Drakensang_is1) (Version: - dtp)
Dropbox (HKLM-x32\...\Dropbox) (Version: 26.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Dungeons 2 (HKLM-x32\...\Steam App 262280) (Version: - Realmforge Studios)
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
For Honor (HKLM\...\Steam App 304390) (Version: - Ubisoft Montreal)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (HKLM-x32\...\Fraps) (Version: - )
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.2.1000 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.17 - Intel(R) Corporation) Hidden
Life is Feudal: Forest Village (HKLM\...\Steam App 496460) (Version: - Mindillusion)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes Anti-Exploit version 1.9.1.1403 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.9.1.1403 - Malwarebytes)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM-x32\...\Steam App 241930) (Version: - Monolith Productions, Inc.)
Mordheim: City of the Damned (HKLM-x32\...\Steam App 276810) (Version: - Rogue Factor)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 53.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 de)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Grafiktreiber 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Orcs Must Die! 2 (HKLM-x32\...\Steam App 201790) (Version: - Robot Entertainment)
Ori and the Blind Forest (HKLM-x32\...\Steam App 261570) (Version: - Moon Studios GmbH)
ProtectDisc Driver, Version 11 (HKLM-x32\...\ProtectDisc Driver 11) (Version: 11.0.0.12 - ProtectDisc Software GmbH)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7335 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Slack (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\slack) (Version: 2.5.2 - Slack Technologies)
Sonic Radar II (HKLM\...\{203BCA8D-BC00-4DD5-85DF-2F84DB803B57}) (Version: 2.1.701 - ASUSTeKcomputer.Inc)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version: - 11 bit studios)
Total War™: WARHAMMER® - Assembly Kit BETA (HKLM\...\Steam App 463690) (Version: - )
Total War™: WARHAMMER® (HKLM\...\Steam App 364360) (Version: - Creative Assembly)
Uplay (HKLM-x32\...\Uplay) (Version: 10.0 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
War for the Overworld (HKLM\...\Steam App 230190) (Version: - Subterranean Games)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0109D0B3-ED99-4BF4-95C6-FBF10EA163CC} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe
Task: {0395C049-F147-4C94-910B-C18AD3E36143} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe
Task: {0A319440-5662-45C0-AB09-C571DDEC39F2} - \ThunderMaster -> Keine Datei <==== ACHTUNG
Task: {115B9AA1-72CB-4888-8FE7-1F6E317C3900} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {1EB0538E-9C15-4836-8CEA-F6F7DB859869} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe
Task: {26371816-8B80-479B-86D0-1B22475AF262} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-06] (Dropbox, Inc.)
Task: {29933F0A-373C-49CD-AC74-638375FD18A4} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {383D922F-50DE-4647-AF59-3FDD8787A861} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {38B6FB3C-AF1A-4658-91BA-F4A84B39EDB4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe
Task: {3DB01EE1-84AC-46BF-96B6-C78182FA25CE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {3F0E5558-AB27-4D96-90B5-7A3CA16D210F} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {4A113117-0B96-4811-874A-129BEB8ACDD1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {4DE8110D-7D6E-4965-9F54-A99E5158D809} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {531206FF-A38C-4956-BDBA-59261DB7D7D0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {6031101C-3085-4053-9DC8-3E69E6934436} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe
Task: {62093F37-2EE1-466A-AFD6-84C6CDEF8FC5} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe
Task: {62863246-D074-4304-ACC8-0128B7F32171} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe
Task: {6568D748-194E-47B3-9786-ADEF53BDACAC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {71E59F04-A4E3-47FC-8087-ED1EE512B96D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {7A4C78C3-E804-4FCF-AA3E-1B1165A7B473} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {92351455-37A3-4D4B-AF36-CF9ED9FE03D1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-11] (Adobe Systems Incorporated)
Task: {95A467B5-D326-4192-A2ED-8DF8D249547F} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe
Task: {9CAFD9E7-FFDB-4325-8FE9-FA596FA1B497} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {9D3FC8A9-6E8B-4CDD-AF52-6E0F5CA4A780} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {A68FC644-1A62-4B0F-B911-F8016BC113D5} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe
Task: {AB956481-C9B1-40F3-9C1A-FC015C08B64C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {B3A5298F-D758-44B8-9BAF-C2722ABC32B8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe
Task: {B4707BFA-9140-429F-B902-726BD08F448B} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {BE3EC1BA-B857-4F9C-9FED-22E956EEDC41} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {CBE69FD1-C125-4006-9CFF-2BB6CCC55390} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe
Task: {E4BB71F8-FB3E-4671-9537-3B6A6E0A1472} - System32\Tasks\{CD086C04-185A-4373-B4C9-1B93FA40CA47} => Firefox.exe hxxp://ui.skype.com/ui/0/7.12.0.101/de/abandoninstall?source=lightinstaller&page=tsBing
Task: {ED77B198-DE42-43C0-87E8-4CD0275FC3DC} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {EF8892A7-84B5-4F8C-B19A-82126A647C34} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {F4CA7EC6-1A79-4371-AF10-915B093B882F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-05-23] (Microsoft Corporation)
Task: {FC95F454-E4B9-40C5-B23C-9BF375C30BCE} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {FE624BE6-82DE-4147-9FFC-469C3393F3E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe
Task: {FF10E023-BDA4-4B1A-B86F-EDD284932AFE} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-06] (Dropbox, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-05-16 09:39 - 2013-07-04 04:32 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2015-10-06 23:27 - 2014-07-23 03:59 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 22:59 - 2017-03-20 06:36 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-05-26 13:01 - 2017-05-26 13:01 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-05-26 13:01 - 2017-05-26 13:01 - 00201728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-05-26 13:01 - 2017-05-26 13:01 - 43202048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-05-26 13:01 - 2017-05-26 13:01 - 02442752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\skypert.dll
2016-10-25 00:27 - 2017-05-03 22:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-05-16 09:39 - 2017-05-31 16:25 - 00038544 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2017-05-16 09:39 - 2013-07-04 04:32 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2014-04-29 16:23 - 2014-04-29 16:23 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-10-25 00:27 - 2017-05-03 22:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Manuel\Desktop\Screenshot 2017-05-09 22.17.05.png:com.dropbox.attributes [168]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2017-02-02 23:26 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Manuel\Pictures\angel_man_by_seanbean80-d4axa27.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\startupfolder: C:^Users^Manuel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Slack.lnk => C:\Windows\pss\Slack.lnk.Startup
MSCONFIG\startupreg: Discord => C:\Users\Manuel\AppData\Local\Discord\app-0.0.283\Discord.exe
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: GalaxyClient => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: THPanel => "C:\Program Files (x86)\Thunder Master\THPanel.exe" /A
HKLM\...\StartupApproved\StartupFolder: => "WinZip Preloader.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Update Benachrichtigungsdienst.lnk"
HKLM\...\StartupApproved\Run: => "Start WingMan Profiler"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\StartupApproved\Run: => "Discord"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
23-05-2017 14:36:12 Windows Update
29-05-2017 18:19:39 DirectX wurde installiert
31-05-2017 16:28:04 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/31/2017 04:30:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm MSASCui.exe, Version 4.11.15063.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 18a0
Startzeit: 01d2da1a3c36c802
Beendigungszeit: 3
Anwendungspfad: C:\Program Files\Windows Defender\MSASCui.exe
Berichts-ID: 04c81a94-c7e5-47d5-bb10-9ee54cc8935a
Vollständiger Name des fehlerhaften Pakets:
Auf das fehlerhafte Paket bezogene Anwendungs-ID:
Error: (05/27/2017 09:32:24 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (05/23/2017 02:36:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (05/19/2017 09:31:11 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (05/18/2017 05:03:17 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (05/17/2017 04:03:05 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (05/16/2017 09:43:14 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Error: (05/16/2017 09:42:33 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Error: (05/16/2017 09:42:33 AM) (Source: MSDTC 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Error: (05/16/2017 09:42:33 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Systemfehler:
=============
Error: (05/31/2017 04:28:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/31/2017 04:28:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA Display Container LS" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/31/2017 04:25:10 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "SysMain" wurde mit folgendem Fehler beendet:
Die Anforderung wird nicht unterstützt.
Error: (05/31/2017 04:25:10 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (05/31/2017 04:25:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CldFlt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die Anforderung wird nicht unterstützt.
Error: (05/31/2017 04:24:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/31/2017 04:24:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/31/2017 04:24:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Message Queuing" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/31/2017 04:24:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA Telemetry Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/31/2017 04:24:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2017-05-26 03:41:06.508
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:41:06.432
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:59.872
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:29.699
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:29.463
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:29.370
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:41.975
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:35.067
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:35.009
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:34.797
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 14%
Installierter physikalischer RAM: 16326.87 MB
Verfügbarer physikalischer RAM: 14002.18 MB
Summe virtueller Speicher: 32710.87 MB
Verfügbarer virtueller Speicher: 30211.45 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.44 GB) (Free:46.71 GB) NTFS
Drive d: (Drasa_Pyramide) (CDROM) (Total:5.12 GB) (Free:0 GB) CDFS
Drive e: (Dateien) (Fixed) (Total:931.41 GB) (Free:625.28 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 8AB73DB5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: D9523981)
Partition 1: (Not Active) - (Size=232.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
|
|
31.05.2017, 20:18
| #8 |
| /// TB-Ausbilder | Browserfenster wird schwarz wenn YT videos angesehen werden Servus, wir entfernen noch ein bisschen was und kontrollieren nochmal alles. Hinweis: Der Suchlauf mit ESET kann länger dauern. Schritt 1
Schritt 2 Downloade dir die passende Version von HitmanPro auf deinen Desktop: HitmanPro - 32 Bit | HitmanPro - 64 Bit.
Schritt 3 ESET Online Scanner
Schritt 4
Gibt es jetzt noch Probleme mit dem PC oder mit deinen Internet Browsern? Wenn ja, welche?Bitte poste mit deiner nächsten Antwort
|
|
01.06.2017, 08:08
| #9 |
| | Browserfenster wird schwarz wenn YT videos angesehen werden Fixlog: Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 31-05-2017
durchgeführt von Manuel (01-06-2017 08:04:59) Run:1
Gestartet von C:\Users\Manuel\Desktop
Geladene Profile: Manuel (Verfügbare Profile: Manuel & DefaultAppPool)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
CloseProcesses:
Task: {0A319440-5662-45C0-AB09-C571DDEC39F2} - \ThunderMaster -> Keine Datei <==== ACHTUNG
Task: {E4BB71F8-FB3E-4671-9537-3B6A6E0A1472} - System32\Tasks\{CD086C04-185A-4373-B4C9-1B93FA40CA47} => Firefox.exe hxxp://ui.skype.com/ui/0/7.12.0.101/de/abandoninstall?source=lightinstaller&page=tsBing
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
*****************
Prozesse erfolgreich geschlossen.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0A319440-5662-45C0-AB09-C571DDEC39F2} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A319440-5662-45C0-AB09-C571DDEC39F2} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ThunderMaster => Schlüssel nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4BB71F8-FB3E-4671-9537-3B6A6E0A1472} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4BB71F8-FB3E-4671-9537-3B6A6E0A1472} => Schlüssel erfolgreich entfernt
C:\WINDOWS\System32\Tasks\{CD086C04-185A-4373-B4C9-1B93FA40CA47} => erfolgreich verschoben
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CD086C04-185A-4373-B4C9-1B93FA40CA47} => Schlüssel erfolgreich entfernt
========= RemoveProxy: =========
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
========= Ende von RemoveProxy: =========
========= ipconfig /flushdns =========
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
========= Ende von CMD: =========
========= netsh winsock reset =========
Der Winsock-Katalog wurde zurckgesetzt.
Sie mssen den Computer neu starten, um den Vorgang abzuschlieáen.
========= Ende von CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 6053888 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 56109542 B
Java, Flash, Steam htmlcache => 252921022 B
Windows/system/drivers => 957171 B
Edge => 13928218 B
Chrome => 0 B
Firefox => 396950073 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 807392 B
Manuel => 330973078 B
DefaultAppPool => 16384 B
RecycleBin => 2016769439 B
EmptyTemp: => 2.9 GB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 08:05:18 ====
Code:
ATTFilter HitmanPro 3.7.20.286
www.hitmanpro.com
Computer name . . . . : MANUEL
Windows . . . . . . . : 10.0.0.15063.X64/8
User name . . . . . . : MANUEL\Manuel
UAC . . . . . . . . . : Enabled
License . . . . . . . : Free
Scan date . . . . . . : 2017-06-01 08:09:43
Scan mode . . . . . . : Normal
Scan duration . . . . : 2m 37s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : No
Threats . . . . . . . : 0
Traces . . . . . . . : 3
Objects scanned . . . : 1.582.937
Files scanned . . . . : 33.726
Remnants scanned . . : 342.870 files / 1.206.341 keys
Suspicious files ____________________________________________________________
C:\Users\Manuel\Desktop\FRST-OlderVersion\FRST64.exe
Size . . . . . . . : 2.429.952 bytes
Age . . . . . . . : 1.6 days (2017-05-30 17:25:09)
Entropy . . . . . : 7.6
SHA-256 . . . . . : A9AB096139FAB40B819EA9FAD0D325C808A0C7DAB9FBAC6D6E00BB781C85F562
Needs elevation . : Yes
Fuzzy . . . . . . : 24.0
Program has no publisher information but prompts the user for permission elevation.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Time indicates that the file appeared recently on this computer.
C:\Users\Manuel\Desktop\FRST64.exe
Size . . . . . . . : 2.431.488 bytes
Age . . . . . . . : 0.0 days (2017-06-01 08:04:03)
Entropy . . . . . : 7.6
SHA-256 . . . . . : D74C52B074A8BC3A0D515A678BB4D31ACF2221FB296F647E085218C7ABC9A922
Needs elevation . : Yes
Fuzzy . . . . . . : 24.0
Program has no publisher information but prompts the user for permission elevation.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Time indicates that the file appeared recently on this computer.
Forensic Cluster
-8.6s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{DD1241FB-6D55-46C7-9C5E-EE0A4C19BBB3}
-6.3s C:\Windows\Prefetch\CONSENT.EXE-40419367.pf
-6.0s C:\Windows\Prefetch\NVTRAY.EXE-39D19720.pf
-1.2s C:\Users\Manuel\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\5080DC7A65DB6A5960ECD874088F3328_6CBA2C06D5985DD95AE59AF8FC7C6220
-1.2s C:\Users\Manuel\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\5080DC7A65DB6A5960ECD874088F3328_6CBA2C06D5985DD95AE59AF8FC7C6220
-0.5s C:\Windows\Prefetch\SMARTSCREEN.EXE-EACC1250.pf
-0.3s C:\Windows\Prefetch\SVCHOST.EXE-6C0C2CFD.pf
-0.2s C:\Users\Manuel\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\64DCC9872C5635B1B7891B30665E0558_5552C20A2631357820903FD38A8C0F9F
-0.2s C:\Users\Manuel\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\64DCC9872C5635B1B7891B30665E0558_5552C20A2631357820903FD38A8C0F9F
-0.0s C:\Windows\Prefetch\DLLHOST.EXE-F7FC6593.pf
0.0s C:\Users\Manuel\Desktop\FRST64.exe
1.5s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Store\5F9E18D53E04794FE271DBC64488BB76
1.7s C:\Users\Manuel\Desktop\FRST-OlderVersion\
4.5s C:\Windows\Prefetch\FRST64.EXE-B5B64C2B.pf
7.0s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{55F6EBE1-B8C4-4F38-A205-5FF841B7DBFB}
11.7s C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf
Potential Unwanted Programs _________________________________________________
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\Software\IM\ (Sweetpacks)
Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=d5b7930d8f26c747bf9e36e501e3dabc
# end=init
# utc_time=2017-06-01 06:19:21
# local_time=2017-06-01 08:19:21 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 33575
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=d5b7930d8f26c747bf9e36e501e3dabc
# end=updated
# utc_time=2017-06-01 06:21:24
# local_time=2017-06-01 08:21:24 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=d5b7930d8f26c747bf9e36e501e3dabc
# engine=33575
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2017-06-01 07:00:34
# local_time=2017-06-01 09:00:34 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 3050 6433430 0 0
# scanned=219647
# found=0
# cleaned=0
# scan_time=2349
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 31-05-2017
durchgeführt von Manuel (Administrator) auf MANUEL (01-06-2017 09:04:22)
Gestartet von C:\Users\Manuel\Desktop
Geladene Profile: Manuel & DefaultAppPool (Verfügbare Profile: Manuel & DefaultAppPool)
Platform: Windows 10 Home Version 1703 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7636696 2014-09-02] (Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [29246632 2017-05-30] (Dropbox, Inc.)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2650576 2017-05-05] (Malwarebytes Corporation)
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\Run: [Discord] => C:\Users\Manuel\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\MountPoints2: {9a8066d6-b48e-11e5-bbb4-806e6f6e6963} - "D:\StartUp.exe"
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517120 2017-03-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{dbf9de44-cfa5-4383-a503-b7a4012b3bf0}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
FireFox:
========
FF DefaultProfile: 2rkug9sv.default
FF ProfilePath: C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default [2017-06-01]
FF NetworkProxy: Mozilla\Firefox\Profiles\2rkug9sv.default -> type", 0
FF Extension: (ProxTube) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default\Extensions\ich@maltegoetz.de.xpi [2017-04-12]
FF Extension: (Adblock Plus) - C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\2rkug9sv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-05-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-11] ()
FF Plugin: @videolan.org/vlc,version=2.2.1 -> E:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> E:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> E:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-11] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-29] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-29] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-18] (NVIDIA Corporation)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-04] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] () [Datei ist nicht signiert]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [48944 2017-05-30] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [399120 2017-02-14] (EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [284736 2017-01-31] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6625856 2016-12-24] (GOG.com)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-29] (Intel Corporation)
R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [155080 2017-05-05] (Malwarebytes Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-18] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-05-18] (NVIDIA Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] ()
R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [77440 2017-05-05] ()
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R1 MpKsl52547969; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{08999FFB-7011-455E-8F42-2F3CDB6392A3}\MpKsl52547969.sys [44928 2017-06-01] (Microsoft Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7209bde3180ef5f7\nvlddmkm.sys [14458264 2017-05-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-05-18] (NVIDIA Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-06-01 09:03 - 2017-06-01 09:03 - 00001688 _____ C:\Users\Manuel\Desktop\log.txt - Verknüpfung.lnk
2017-06-01 08:19 - 2017-06-01 08:19 - 00000000 ____D C:\Program Files (x86)\ESET
2017-06-01 08:18 - 2017-06-01 08:18 - 02870984 _____ (ESET) C:\Users\Manuel\Desktop\esetsmartinstaller_deu.exe
2017-06-01 08:08 - 2017-06-01 08:16 - 00000000 ____D C:\ProgramData\HitmanPro
2017-06-01 08:08 - 2017-06-01 08:08 - 11584088 _____ (SurfRight B.V.) C:\Users\Manuel\Desktop\HitmanPro_x64.exe
2017-06-01 08:04 - 2017-06-01 08:05 - 00003469 _____ C:\Users\Manuel\Desktop\Fixlog.txt
2017-06-01 08:04 - 2017-06-01 08:04 - 00000000 ____D C:\Users\Manuel\Desktop\FRST-OlderVersion
2017-06-01 07:48 - 2017-06-01 07:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-05-31 16:29 - 2017-05-31 16:29 - 00000000 ____D C:\Users\Manuel\AppData\Local\DBG
2017-05-31 16:28 - 2017-05-31 16:28 - 00000944 _____ C:\Users\Manuel\Desktop\JRT.txt
2017-05-31 16:27 - 2017-05-31 16:27 - 01663672 _____ (Malwarebytes) C:\Users\Manuel\Desktop\JRT.exe
2017-05-31 16:22 - 2017-05-31 16:24 - 00000000 ____D C:\AdwCleaner
2017-05-31 16:21 - 2017-05-31 16:21 - 04110280 _____ C:\Users\Manuel\Desktop\adwcleaner_6.047.exe
2017-05-30 17:29 - 2017-05-30 17:37 - 00265172 _____ C:\TDSSKiller.3.1.0.15_30.05.2017_17.29.17_log.txt
2017-05-30 17:28 - 2017-05-30 17:28 - 00151204 _____ C:\TDSSKiller.3.1.0.15_30.05.2017_17.28.18_log.txt
2017-05-30 17:27 - 2017-05-30 17:27 - 04922400 _____ (AO Kaspersky Lab) C:\Users\Manuel\Desktop\tdsskiller.exe
2017-05-30 17:26 - 2017-06-01 09:04 - 00015251 _____ C:\Users\Manuel\Desktop\FRST.txt
2017-05-30 17:26 - 2017-06-01 09:04 - 00000000 ____D C:\FRST
2017-05-30 17:26 - 2017-05-31 16:31 - 00034230 _____ C:\Users\Manuel\Desktop\Addition.txt
2017-05-30 17:25 - 2017-06-01 08:04 - 02431488 _____ (Farbar) C:\Users\Manuel\Desktop\FRST64.exe
2017-05-30 12:22 - 2017-05-30 12:22 - 00048944 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-05-29 18:22 - 2017-05-29 18:22 - 00000000 ____D C:\Users\Manuel\Documents\Drakensang
2017-05-29 18:22 - 2017-05-29 18:22 - 00000000 ____D C:\Program Files (x86)\ProtectDisc Driver Installer
2017-05-29 18:21 - 2017-05-29 18:54 - 00004096 _____ C:\Users\Public\Documents\00001119.LCS
2017-05-29 18:21 - 2017-05-29 18:21 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\ProtectDisc
2017-05-29 18:21 - 2017-05-29 18:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DB Browser for SQLite
2017-05-29 18:19 - 2017-05-29 18:19 - 15749664 _____ C:\Users\Manuel\Downloads\DB.Browser.for.SQLite-3.9.1-win64.exe
2017-05-29 18:19 - 2017-05-29 18:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Drakensang
2017-05-28 15:09 - 2017-05-28 15:09 - 00001222 _____ C:\Users\Manuel\Desktop\Malwarebytes Suchlaufprotokoll.txt
2017-05-28 15:09 - 2017-05-28 15:09 - 00000519 _____ C:\Users\Manuel\Desktop\Malwarebytes Schutzprotokoll.txt
2017-05-26 14:38 - 2017-05-26 14:38 - 00000222 _____ C:\Users\Manuel\Desktop\Total War WARHAMMER - Assembly Kit BETA.url
2017-05-23 00:24 - 2017-05-23 00:24 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-05-23 00:24 - 2017-05-18 09:35 - 00513144 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-05-23 00:24 - 2017-05-18 09:35 - 00418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-05-23 00:24 - 2017-05-18 07:21 - 00134592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-05-23 00:24 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-05-23 00:24 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-05-23 00:24 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-05-23 00:24 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-05-23 00:23 - 2017-05-18 09:35 - 40201848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 35390072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 35282040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 28624504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 11056456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 11028664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 10551072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 09248144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 09014976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 08808488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 03797112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 03256440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438233.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01606592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438233.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01275944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 01056704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00995736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00993912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00993872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00964032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00914880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00775864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00725112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00612272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00583800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00577728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-05-23 00:23 - 2017-05-18 09:35 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-05-22 23:47 - 2017-05-22 23:47 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-22 23:46 - 2017-05-23 00:24 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-05-22 23:46 - 2017-05-03 22:21 - 00175736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-22 23:46 - 2017-05-03 22:21 - 00143480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-05-18 13:37 - 2017-05-18 13:37 - 00007334 _____ C:\Users\Manuel\Desktop\OpenDocument Text (neu).odt
2017-05-17 19:19 - 2017-05-17 19:42 - 00000420 _____ C:\Users\Manuel\Desktop\Wandtatoo.txt
2017-05-16 20:25 - 2017-05-16 20:25 - 00000000 ____D C:\ProgramData\USOShared
2017-05-16 20:25 - 2017-05-16 20:25 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-05-16 20:24 - 2017-05-16 20:24 - 00000020 ___SH C:\Users\Manuel\ntuser.ini
2017-05-16 10:37 - 2017-05-16 10:37 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 21353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 20374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 11870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 08320920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04848440 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03655680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02651648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02435584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02298880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-16 10:37 - 2017-05-16 10:37 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-05-16 10:37 - 2017-05-16 10:37 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01411128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 01103872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00775824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00605936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-05-16 10:37 - 2017-05-16 10:37 - 00543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-05-16 10:37 - 2017-05-16 10:37 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-05-16 10:37 - 2017-05-16 10:37 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00207264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-16 10:37 - 2017-05-16 10:37 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-05-16 10:37 - 2017-05-16 10:37 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-05-16 10:37 - 2017-05-16 10:37 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-05-16 10:37 - 2017-05-16 10:37 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-16 10:37 - 2017-05-16 10:37 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-05-16 10:37 - 2017-05-16 10:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-05-16 10:36 - 2017-03-17 23:00 - 05739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2017-05-16 10:36 - 2017-03-17 22:59 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2017-05-16 10:36 - 2017-03-17 22:48 - 06348288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2017-05-16 10:36 - 2017-03-17 22:43 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2017-05-16 10:36 - 2017-03-17 22:35 - 05484544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2017-05-16 10:35 - 2017-05-16 10:35 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-05-16 10:35 - 2017-05-16 09:39 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\system32\msmq
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files\MSBuild
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-05-16 10:34 - 2017-05-16 10:34 - 00000000 ____D C:\inetpub
2017-05-16 10:34 - 2017-02-10 12:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-05-16 10:34 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-05-16 10:34 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-05-16 09:43 - 2017-06-01 08:05 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-16 09:43 - 2017-05-22 23:47 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-22 23:46 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-16 09:43 - 2017-05-16 20:26 - 00003274 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-05-16 09:43 - 2017-05-16 09:44 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2017-05-16 09:43 - 2017-05-16 09:44 - 00011433 _____ C:\WINDOWS\diagerr.xml
2017-05-16 09:43 - 2017-05-16 09:43 - 00003728 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-05-16 09:43 - 2017-05-16 09:43 - 00003504 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-05-16 09:43 - 2017-05-16 09:43 - 00003332 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-05-16 09:43 - 2017-05-16 09:43 - 00002590 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2017-05-16 09:43 - 2017-05-16 09:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2017-05-16 09:43 - 2017-05-16 09:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-05-16 09:43 - 2017-05-16 09:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2017-05-16 09:41 - 2017-05-16 09:41 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-05-16 09:41 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-05-16 09:40 - 2017-06-01 01:52 - 00000000 ____D C:\Users\Manuel
2017-05-16 09:40 - 2017-05-23 00:27 - 02223076 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-16 09:40 - 2017-05-16 09:42 - 00000000 ____D C:\Users\DefaultAppPool
2017-05-16 09:40 - 2017-05-16 09:41 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-05-16 09:40 - 2017-05-16 09:40 - 02011386 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Vorlagen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Startmenü
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Netzwerkumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Lokale Einstellungen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Eigene Dateien
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Druckumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Videos
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Musik
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Documents\Eigene Bilder
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\AppData\Local\Verlauf
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\AppData\Local\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\Manuel\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Videos
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2017-05-16 09:40 - 2017-05-16 09:40 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2017-05-16 09:39 - 2017-06-01 08:06 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-16 09:39 - 2017-05-31 22:31 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-05-16 09:39 - 2017-05-23 00:25 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-16 09:39 - 2017-05-22 23:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-16 09:39 - 2017-05-22 23:46 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-16 09:39 - 2017-05-18 07:55 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-05-16 09:39 - 2017-05-18 07:48 - 06437824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 02479736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 01762936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00548984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-16 09:39 - 2017-05-18 07:48 - 00069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-05-16 09:39 - 2017-05-16 20:24 - 00251984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-16 09:39 - 2017-05-16 20:09 - 07993157 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-05-16 09:39 - 2017-05-16 09:40 - 00000000 ____D C:\Program Files (x86)\ASUS
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_ASMBSW_01_11_00.Wdf
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____D C:\Program Files\Realtek
2017-05-16 09:39 - 2017-05-16 09:39 - 00000000 ____D C:\Program Files\ASUS
2017-05-16 09:39 - 2013-07-04 04:32 - 00028672 _____ (ASUSTek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO.dll
2017-05-16 09:39 - 2013-07-04 04:32 - 00015232 _____ C:\WINDOWS\SysWOW64\Drivers\AsIO.sys
2017-05-10 06:43 - 2017-05-16 20:24 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-10 03:26 - 2017-05-10 03:26 - 00000000 ____D C:\Users\Manuel\AppData\Local\UNP
2017-05-10 01:13 - 2017-05-16 09:41 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-05-10 01:13 - 2017-05-10 01:14 - 00000000 ____D C:\Program Files\UNP
2017-05-10 01:12 - 2017-03-04 08:26 - 00261632 ____N (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-05-03 15:03 - 2017-05-31 03:43 - 00000000 ____D C:\Users\Manuel\Desktop\WFTO
2017-05-03 14:32 - 2017-05-03 14:32 - 00002278 _____ C:\Users\Manuel\Desktop\Discord.lnk
2017-05-03 14:32 - 2017-05-03 14:32 - 00000000 ____D C:\Users\Manuel\AppData\Local\Discord
2017-05-03 14:28 - 2017-05-03 14:32 - 52553728 _____ (Hammer & Chisel, Inc.) C:\Users\Manuel\Downloads\DiscordSetup.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-06-01 08:34 - 2016-11-18 10:47 - 00000000 ____D C:\Users\Manuel\AppData\LocalLow\Mozilla
2017-06-01 08:06 - 2016-12-15 18:01 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2017-06-01 08:05 - 2017-03-18 13:40 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-06-01 08:05 - 2017-02-02 23:27 - 00000000 ____D C:\Users\Manuel\AppData\LocalLow\Temp
2017-06-01 07:49 - 2015-10-07 00:40 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-06-01 01:52 - 2015-10-07 00:11 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-31 22:04 - 2016-11-28 23:40 - 00000000 ____D C:\Users\Manuel\Desktop\MordheimBackup
2017-05-31 18:53 - 2016-05-22 02:23 - 00008045 _____ C:\Users\Manuel\Desktop\Mordheim.txt
2017-05-31 16:28 - 2010-11-21 05:27 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-31 15:59 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-31 15:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-30 18:53 - 2016-01-20 22:23 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\vlc
2017-05-30 16:17 - 2016-11-18 01:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-30 16:17 - 2015-10-06 23:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-29 18:21 - 2015-10-06 23:40 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-29 18:20 - 2015-11-13 14:09 - 00000000 ___RD C:\Users\Manuel\Desktop\Zocks
2017-05-29 16:16 - 2015-10-06 15:37 - 00000133 _____ C:\Users\Manuel\Desktop\DL.html
2017-05-28 17:25 - 2015-10-07 00:49 - 00000000 ___RD C:\Users\Manuel\Dropbox
2017-05-28 15:08 - 2016-12-14 17:51 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-05-27 14:56 - 2015-10-07 00:40 - 00000000 ____D C:\Users\Manuel\AppData\Local\Dropbox
2017-05-23 14:36 - 2016-01-06 20:14 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-23 14:36 - 2016-01-06 20:14 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 00:27 - 2017-03-20 06:35 - 00959174 _____ C:\WINDOWS\system32\perfh007.dat
2017-05-23 00:27 - 2017-03-20 06:35 - 00217864 _____ C:\WINDOWS\system32\perfc007.dat
2017-05-23 00:25 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-23 00:25 - 2015-10-07 00:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-05-22 23:47 - 2016-10-25 00:27 - 00001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-05-20 22:53 - 2015-12-29 17:44 - 00000000 ____D C:\Users\Manuel\AppData\Local\Ubisoft Game Launcher
2017-05-19 12:36 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-05-18 09:35 - 2017-04-26 01:20 - 04114248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-05-18 09:35 - 2017-04-26 01:20 - 03624784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-05-18 09:35 - 2017-04-26 01:20 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-05-18 09:35 - 2017-04-26 01:20 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-05-18 09:35 - 2017-01-24 21:56 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-05-17 18:47 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-05-17 15:00 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-17 14:59 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-05-16 20:40 - 2016-01-06 18:07 - 00000000 ____D C:\Users\Manuel\AppData\Local\Packages
2017-05-16 20:26 - 2016-01-06 18:09 - 00002426 _____ C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-05-16 20:26 - 2016-01-06 18:09 - 00000000 ___RD C:\Users\Manuel\OneDrive
2017-05-16 20:25 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-05-16 20:24 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-05-16 20:24 - 2016-01-06 18:07 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-16 10:38 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-05-16 10:37 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-16 10:37 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-05-16 10:37 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-05-16 10:36 - 2017-03-20 06:36 - 00000000 ____D C:\WINDOWS\OCR
2017-05-16 10:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-05-16 10:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-05-16 10:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2017-05-16 10:34 - 2017-03-18 22:59 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2017-05-16 10:34 - 2017-03-18 22:59 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2017-05-16 10:34 - 2017-03-18 22:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2017-05-16 10:34 - 2017-03-18 22:59 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2017-05-16 10:34 - 2017-03-18 22:59 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2017-05-16 10:34 - 2017-03-18 22:56 - 01380352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2017-05-16 10:34 - 2017-03-18 22:56 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-05-16 10:34 - 2017-03-18 22:56 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2017-05-16 10:34 - 2017-03-18 22:56 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2017-05-16 10:34 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2017-05-16 10:34 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2017-05-16 09:44 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-05-16 09:44 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-05-16 09:44 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-05-16 09:43 - 2017-03-20 06:37 - 00000000 ____D C:\WINDOWS\HoloShell
2017-05-16 09:43 - 2017-03-18 23:03 - 00000000 __RSD C:\WINDOWS\Media
2017-05-16 09:43 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-05-16 09:43 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-16 09:43 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-05-16 09:43 - 2016-01-06 18:03 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-05-16 09:41 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-16 09:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\IME
2017-05-16 09:41 - 2016-12-15 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2017-05-16 09:41 - 2016-12-15 18:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
2017-05-16 09:41 - 2016-11-06 15:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nordlandtrilogie Heldenedition
2017-05-16 09:41 - 2016-09-20 17:34 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2017-05-16 09:41 - 2016-05-12 03:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2017-05-16 09:41 - 2016-05-04 17:01 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2017-05-16 09:41 - 2016-05-04 17:01 - 00000000 ____D C:\WINDOWS\system32\vbox
2017-05-16 09:41 - 2016-03-23 23:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-05-16 09:41 - 2016-01-26 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-05-16 09:41 - 2016-01-20 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-05-16 09:41 - 2016-01-05 20:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2017-05-16 09:41 - 2016-01-03 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2017-05-16 09:41 - 2015-12-17 22:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anno Online
2017-05-16 09:41 - 2015-11-29 23:55 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-05-16 09:41 - 2015-11-04 16:39 - 00000000 ____D C:\WINDOWS\de
2017-05-16 09:41 - 2015-10-12 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2017-05-16 09:41 - 2015-10-07 00:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-05-16 09:41 - 2015-10-06 23:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonic Radar II
2017-05-16 09:40 - 2017-04-21 19:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THQ
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 __SHD C:\Program Files\Windows Sidebar
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\schemas
2017-05-16 09:40 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-16 09:40 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-05-16 09:40 - 2016-01-12 02:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2017-05-16 09:40 - 2015-12-29 17:44 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-05-16 09:40 - 2015-11-29 23:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2017-05-16 09:40 - 2015-11-25 00:17 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-05-16 09:40 - 2015-11-23 20:56 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies
2017-05-16 09:40 - 2015-10-07 02:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2017-05-16 09:40 - 2015-10-06 23:32 - 00000000 ____D C:\Program Files\Intel
2017-05-16 09:40 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Microsoft Games
2017-05-16 09:39 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-05-10 22:58 - 2016-12-15 18:01 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Exploit
2017-05-08 17:19 - 2016-02-20 19:08 - 00000000 ____D C:\Users\Manuel\AppData\Local\CrashDumps
2017-05-03 22:21 - 2017-04-25 22:26 - 00048248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-05-03 22:21 - 2016-10-25 00:27 - 01893496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 01755256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 01477240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 01317496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-05-03 22:21 - 2016-10-25 00:27 - 00121464 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-05-03 15:34 - 2016-11-07 15:31 - 00000000 ____D C:\Users\Manuel\Desktop\Präsentation
2017-05-03 15:03 - 2015-10-12 21:09 - 00000000 ____D C:\Users\Manuel\Desktop\QA Vids
2017-05-03 14:32 - 2015-11-25 00:17 - 00000000 ____D C:\Users\Manuel\AppData\Roaming\discord
2017-05-03 14:32 - 2015-11-23 20:56 - 00000000 ____D C:\Users\Manuel\AppData\Local\SquirrelTemp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-06-06 15:15 - 2016-06-06 15:16 - 0000100 _____ () C:\Users\Manuel\AppData\Roaming\ScriptStudioLayout.ini
2016-06-06 15:15 - 2016-06-06 15:16 - 0000046 _____ () C:\Users\Manuel\AppData\Roaming\ScriptStudioOptions.ini
2016-02-17 21:13 - 2016-02-17 21:13 - 0007597 _____ () C:\Users\Manuel\AppData\Local\Resmon.ResmonCfg
2017-05-16 09:39 - 2017-05-16 09:39 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-28 16:53
==================== Ende von FRST.txt ============================
|
|
01.06.2017, 08:11
| #10 |
| | Browserfenster wird schwarz wenn YT videos angesehen werden addition.txt: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 31-05-2017
durchgeführt von Manuel (01-06-2017 09:04:42)
Gestartet von C:\Users\Manuel\Desktop
Windows 10 Home Version 1703 (X64) (2017-05-16 07:45:03)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2887243570-1868036058-3993079417-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2887243570-1868036058-3993079417-503 - Limited - Disabled)
Gast (S-1-5-21-2887243570-1868036058-3993079417-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2887243570-1868036058-3993079417-1002 - Limited - Enabled)
Manuel (S-1-5-21-2887243570-1868036058-3993079417-1000 - Administrator - Enabled) => C:\Users\Manuel
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
7-Zip 16.04 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Alice: Madness Returns (HKLM-x32\...\Steam App 19680) (Version: - Spicy Horse Games)
Anno 2205 (HKLM-x32\...\Uplay Install 1253) (Version: - Ubisoft)
Anno Online - Standalone Client (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\Anno Online) (Version: - )
Ansel (Version: 382.33 - NVIDIA Corporation) Hidden
Banished (HKLM-x32\...\Steam App 242920) (Version: - Shining Rock Software LLC)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dawn of War - Dark Crusade (HKLM-x32\...\{FF39FC01-819B-42E4-AE49-1968AF12DDD4}) (Version: 1.00.0000 - THQ)
DB Browser for SQLite (HKLM-x32\...\DB Browser for SQLite) (Version: 3.9.1 - DB Browser for SQLite Team)
Die Schlacht um Mittelerde(tm) (HKLM-x32\...\{3F290582-3F4E-4B96-009C-E0BABAA40C42}) (Version: - )
Discord (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Drakensang (HKLM-x32\...\Drakensang_is1) (Version: - dtp)
Dropbox (HKLM-x32\...\Dropbox) (Version: 27.4.22 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Dungeons 2 (HKLM-x32\...\Steam App 262280) (Version: - Realmforge Studios)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
For Honor (HKLM\...\Steam App 304390) (Version: - Ubisoft Montreal)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (HKLM-x32\...\Fraps) (Version: - )
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.2.1000 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.17 - Intel(R) Corporation) Hidden
Life is Feudal: Forest Village (HKLM\...\Steam App 496460) (Version: - Mindillusion)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes Anti-Exploit version 1.9.1.1403 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.9.1.1403 - Malwarebytes)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM-x32\...\Steam App 241930) (Version: - Monolith Productions, Inc.)
Mordheim: City of the Damned (HKLM-x32\...\Steam App 276810) (Version: - Rogue Factor)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 53.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 de)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Grafiktreiber 382.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Orcs Must Die! 2 (HKLM-x32\...\Steam App 201790) (Version: - Robot Entertainment)
Ori and the Blind Forest (HKLM-x32\...\Steam App 261570) (Version: - Moon Studios GmbH)
ProtectDisc Driver, Version 11 (HKLM-x32\...\ProtectDisc Driver 11) (Version: 11.0.0.12 - ProtectDisc Software GmbH)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7335 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Slack (HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\slack) (Version: 2.5.2 - Slack Technologies)
Sonic Radar II (HKLM\...\{203BCA8D-BC00-4DD5-85DF-2F84DB803B57}) (Version: 2.1.701 - ASUSTeKcomputer.Inc)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version: - 11 bit studios)
Total War™: WARHAMMER® - Assembly Kit BETA (HKLM\...\Steam App 463690) (Version: - )
Total War™: WARHAMMER® (HKLM\...\Steam App 364360) (Version: - Creative Assembly)
Uplay (HKLM-x32\...\Uplay) (Version: 10.0 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
War for the Overworld (HKLM\...\Steam App 230190) (Version: - Subterranean Games)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0109D0B3-ED99-4BF4-95C6-FBF10EA163CC} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe
Task: {0395C049-F147-4C94-910B-C18AD3E36143} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe
Task: {115B9AA1-72CB-4888-8FE7-1F6E317C3900} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {1EB0538E-9C15-4836-8CEA-F6F7DB859869} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe
Task: {26371816-8B80-479B-86D0-1B22475AF262} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-06] (Dropbox, Inc.)
Task: {29933F0A-373C-49CD-AC74-638375FD18A4} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {383D922F-50DE-4647-AF59-3FDD8787A861} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {38B6FB3C-AF1A-4658-91BA-F4A84B39EDB4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe
Task: {3DB01EE1-84AC-46BF-96B6-C78182FA25CE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {3F0E5558-AB27-4D96-90B5-7A3CA16D210F} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {4A113117-0B96-4811-874A-129BEB8ACDD1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {4DE8110D-7D6E-4965-9F54-A99E5158D809} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {531206FF-A38C-4956-BDBA-59261DB7D7D0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {6031101C-3085-4053-9DC8-3E69E6934436} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe
Task: {62093F37-2EE1-466A-AFD6-84C6CDEF8FC5} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe
Task: {62863246-D074-4304-ACC8-0128B7F32171} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe
Task: {6568D748-194E-47B3-9786-ADEF53BDACAC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {71E59F04-A4E3-47FC-8087-ED1EE512B96D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {7A4C78C3-E804-4FCF-AA3E-1B1165A7B473} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {92351455-37A3-4D4B-AF36-CF9ED9FE03D1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-11] (Adobe Systems Incorporated)
Task: {95A467B5-D326-4192-A2ED-8DF8D249547F} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe
Task: {9CAFD9E7-FFDB-4325-8FE9-FA596FA1B497} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {9D3FC8A9-6E8B-4CDD-AF52-6E0F5CA4A780} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {A68FC644-1A62-4B0F-B911-F8016BC113D5} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe
Task: {AB956481-C9B1-40F3-9C1A-FC015C08B64C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {B3A5298F-D758-44B8-9BAF-C2722ABC32B8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe
Task: {B4707BFA-9140-429F-B902-726BD08F448B} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {BE3EC1BA-B857-4F9C-9FED-22E956EEDC41} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {CBE69FD1-C125-4006-9CFF-2BB6CCC55390} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe
Task: {ED77B198-DE42-43C0-87E8-4CD0275FC3DC} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {EF8892A7-84B5-4F8C-B19A-82126A647C34} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {F4CA7EC6-1A79-4371-AF10-915B093B882F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-05-23] (Microsoft Corporation)
Task: {FC95F454-E4B9-40C5-B23C-9BF375C30BCE} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {FE624BE6-82DE-4147-9FFC-469C3393F3E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe
Task: {FF10E023-BDA4-4B1A-B86F-EDD284932AFE} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-06] (Dropbox, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-10-25 00:27 - 2017-05-03 22:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-05-16 09:39 - 2013-07-04 04:32 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2015-10-06 23:27 - 2014-07-23 03:59 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 22:59 - 2017-03-20 06:36 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-05-26 13:01 - 2017-05-26 13:01 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-05-26 13:01 - 2017-05-26 13:01 - 00201728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-05-26 13:01 - 2017-05-26 13:01 - 43202048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-05-26 13:01 - 2017-05-26 13:01 - 02442752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\skypert.dll
2017-05-16 09:39 - 2017-06-01 08:05 - 00038544 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2017-05-16 09:39 - 2013-07-04 04:32 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2016-10-25 00:27 - 2017-05-03 22:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-25 00:27 - 2017-05-03 22:20 - 65709176 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2014-04-29 16:23 - 2014-04-29 16:23 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Manuel\Desktop\Screenshot 2017-05-09 22.17.05.png:com.dropbox.attributes [168]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2017-02-02 23:26 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Manuel\Pictures\angel_man_by_seanbean80-d4axa27.jpg
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\startupfolder: C:^Users^Manuel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Slack.lnk => C:\Windows\pss\Slack.lnk.Startup
MSCONFIG\startupreg: Discord => C:\Users\Manuel\AppData\Local\Discord\app-0.0.283\Discord.exe
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: GalaxyClient => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: THPanel => "C:\Program Files (x86)\Thunder Master\THPanel.exe" /A
HKLM\...\StartupApproved\StartupFolder: => "WinZip Preloader.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Update Benachrichtigungsdienst.lnk"
HKLM\...\StartupApproved\Run: => "Start WingMan Profiler"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\...\StartupApproved\Run: => "Discord"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{DA97865F-EBF1-4CD7-8210-6902E005EDE6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D68533AF-BA17-445B-B267-0A488104692F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{EF15C1DC-460D-4401-B8FC-16A0E992421D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B58D45E7-9F63-45BC-AEA2-C74C4D0A16E9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E14C5B23-F6F8-4298-8419-AD406DEEF14D}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A749CBA4-4458-40FD-ABAF-D91E1986BAFC}] => (Allow) E:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7F949C12-9936-45D8-B618-3A84A06E91AF}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Wiederherstellungspunkte =========================
23-05-2017 14:36:12 Windows Update
29-05-2017 18:19:39 DirectX wurde installiert
31-05-2017 16:28:04 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (06/01/2017 09:03:37 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm FRST64.exe, Version 31.5.2017.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: e64
Startzeit: 01d2daa5269befe1
Beendigungszeit: 5
Anwendungspfad: C:\Users\Manuel\Desktop\FRST64.exe
Berichts-ID: f3eb8fdb-036c-473e-b337-748551eb311e
Vollständiger Name des fehlerhaften Pakets:
Auf das fehlerhafte Paket bezogene Anwendungs-ID:
Error: (06/01/2017 09:02:15 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_108e4f62dfe5d999.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_583b8639f462029f.manifest.
Error: (06/01/2017 09:01:43 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_108e4f62dfe5d999.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_583b8639f462029f.manifest.
Error: (06/01/2017 09:01:28 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_108e4f62dfe5d999.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_583b8639f462029f.manifest.
Error: (06/01/2017 08:20:11 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_108e4f62dfe5d999.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_583b8639f462029f.manifest.
Error: (06/01/2017 08:19:56 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_108e4f62dfe5d999.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_583b8639f462029f.manifest.
Error: (06/01/2017 08:19:12 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Manuel\Desktop\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_108e4f62dfe5d999.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_583b8639f462029f.manifest.
Error: (06/01/2017 08:18:21 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Manuel\Desktop\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_108e4f62dfe5d999.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_583b8639f462029f.manifest.
Error: (06/01/2017 08:18:16 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Manuel\Downloads\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_108e4f62dfe5d999.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.0_none_583b8639f462029f.manifest.
Error: (05/31/2017 04:30:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm MSASCui.exe, Version 4.11.15063.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 18a0
Startzeit: 01d2da1a3c36c802
Beendigungszeit: 3
Anwendungspfad: C:\Program Files\Windows Defender\MSASCui.exe
Berichts-ID: 04c81a94-c7e5-47d5-bb10-9ee54cc8935a
Vollständiger Name des fehlerhaften Pakets:
Auf das fehlerhafte Paket bezogene Anwendungs-ID:
Systemfehler:
=============
Error: (06/01/2017 08:21:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (06/01/2017 08:21:17 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Manuel\AppData\Local\Temp\ehdrv.sys
Error: (06/01/2017 08:21:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (06/01/2017 08:21:16 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Manuel\AppData\Local\Temp\ehdrv.sys
Error: (06/01/2017 08:21:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (06/01/2017 08:21:16 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Manuel\AppData\Local\Temp\ehdrv.sys
Error: (06/01/2017 08:20:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (06/01/2017 08:20:18 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Manuel\AppData\Local\Temp\ehdrv.sys
Error: (06/01/2017 08:20:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (06/01/2017 08:20:18 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Manuel\AppData\Local\Temp\ehdrv.sys
CodeIntegrity:
===================================
Date: 2017-05-26 03:41:06.508
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:41:06.432
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:59.872
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:29.699
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:29.463
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-26 03:39:29.370
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:41.975
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:35.067
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:35.009
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-16 20:24:34.797
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.dll that did not meet the Store signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 19%
Installierter physikalischer RAM: 16326.87 MB
Verfügbarer physikalischer RAM: 13084.34 MB
Summe virtueller Speicher: 32710.87 MB
Verfügbarer virtueller Speicher: 29141.73 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.44 GB) (Free:48.72 GB) NTFS
Drive d: (Drasa_Pyramide) (CDROM) (Total:5.12 GB) (Free:0 GB) CDFS
Drive e: (Dateien) (Fixed) (Total:931.41 GB) (Free:625.29 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 8AB73DB5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: D9523981)
Partition 1: (Not Active) - (Size=232.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
Ich hatte seit dem Start der Behandlung (eigentlich seit meinem Post hier) das Problem mit dem schwarzen Browserfenster nicht mehr. Wenn man paranoid wäre, könnte man annehmen, jemand liest meine posts mit... EDIT: Gerade festgestellt, dass ich bei Youtube abgemeldet bin. ich meld mich erstmal nicht neu an, bis ich weis, dass das so seine Ordnung hat. Zusätzlich hatte ich nach dem Ende der letzten behandlung, die ich hier gemacht habe, ein kleines, rein kosmetisches, problem: bei allen Dateien auf meinem PC wird die Dateiendung im Namen mit angezeigt (also .txt, .exe usw.), was normalerweise nicht so sein sollte. evtl kann man das jetzt gleich mit beheben? wäre toll. Geändert von Eneachril (01.06.2017 um 08:20 Uhr) |
|
01.06.2017, 14:52
| #11 | |
| /// TB-Ausbilder | Browserfenster wird schwarz wenn YT videos angesehen werden Servus, ich konnte keine Malware bei dir entdecken, nur HitmanPro hat einen Schlüssel von unerwünschte Software gefunden, den entfernen wir noch.  Zitat:
Umstellen kannst du das so:
Reste entfernen
Die Fixlog von FRST gleich posten, da diese sonst mit DelFix (siehe weiter unten) automatisch entfernt wird! Dann wären wir durch! Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.  Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...  Vielleicht möchtest du das Forum mit einer kleinen Spende  unterstützen.  Hinweise: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern. Cleanup Alle Logs gepostet? Dann lade Dir bitte  DelFix herunter.
DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte deinen Rechner anschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst du diese bedenkenlos löschen. Virenscanner + Firewall Vorab sei erwähnt, dass man niemals die Schutzwirkung eines Virenscanners überbewerten darf! Kein Antivirusprogramm erkennt 100% der Schadsoftware. Sofern du noch unentschieden bist, verwende MAXIMAL EIN EINZIGES der folgenden Antivirusprogramme mit Echtzeitscanner und stets aktueller Signaturendatenbank:
Microsoft Security Essentials (MSE) / Windows Defender (WD) ist ab Windows 8 fest eingebaut, wenn du also Windows 8, 8.1 oder 10 und dich für MSE/WD entschieden hast, brauchst du nicht extra MSE/WD zu installieren. Bei Windows 7 muss es aber manuell installiert oder über die Windows Updates als optionales Update bezogen werden. Selbstverständlich ist ein legales/aktiviertes Windows Voraussetzung dafür. Verwende immer nur reine Virenscanner (keine Produkte mit "Suite", "Internet Security", "Endpoint" oder "Total Security" in Namen, denn diese bringen kontraproduktive Firewalls mit - die Windows-Firewall ist alles was benötigt wird) Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware , AdwCleaner und mit dem ESET Online Scanner scannen. Diese Programme sind alle kostenlos und stören nicht den Betrieb deines Antivirenprogramms. Absicherungen Beim Betriebsystem Windows ist es wichtig, die automatischen Updates zu aktivieren. Auch sicherheitsrelevante Software sollte immer in aktueller Version vorliegen. Das zeitnahe Einspielen von Updates ist erforderlich, damit Sicherheitslücken geschlossen werden. Sicherheitslücken werden beispielsweise dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Besonders aufpassen bzgl. der Aktualität musst du insbesondere bei folgender Software - sofern diese überhaupt benötigt wird:
Optionale Browsererweiterungen
Grundsätzliches
Lesestoff:Backup-/Image-Tools Damit man sinnvolle Backups hat, muss man regelmäßig (z. B. wöchentlich) ein Image auf eine separate externe Festplatte erstellen. Diese externe Festplatte wird nur dann angeschlossen, wenn man das Backup erstellen will (oder etwas wiederherstellen muss), ansonsten bleibt sie aus Sicherheitsgründen sicher im Schrank verwahrt - allein schon aus dem Grund, die Backups vor "Verschlüsselungstrojanern" zu schützen. Du solltest dich für eines der folgenden Programmen entscheiden und damit regelmäßig deine Daten sichern. Optioin 1 - Drivesnapshot Drive Snapshot - Disk Image Backup for Windows NT/2000/XP/2003/X64 Download (32-Bit) => http://www.drivesnapshot.de/download/snapshot.exe Download (64-Bit) => http://www.drivesnapshot.de/download/snapshot64.exe Screenshots: http://www.drivesnapshot.de/images/startup.png http://www.drivesnapshot.de/images/save3.png Option 2 - Seagate DiscWizard Seagate DiscWizard - Download - Filepony Screenshots: http://filepony.de/screenshot/seagate_discwizard5.jpg http://filepony.de/screenshot/seagate_discwizard4.png http://filepony.de/screenshot/seagate_discwizard3.jpg Option 3 - Acronis TrueImage WD Edition Acronis True Image WD Edition - Download - Filepony Screenshots: http://filepony.de/screenshot/acroni...d_edition1.jpg http://filepony.de/screenshot/acroni...d_edition2.jpg |
|
04.06.2017, 13:07
| #12 |
| | Browserfenster wird schwarz wenn YT videos angesehen werden Sorry, ich war die letzten Tage ziemlich beschäftigt. ich mach mich jetzt ran. Ich hoffe du bist noch da? Fixlist: Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 02-06-2017
durchgeführt von Manuel (04-06-2017 13:51:00) Run:2
Gestartet von C:\Users\Manuel\Desktop
Geladene Profile: Manuel (Verfügbare Profile: Manuel & DefaultAppPool)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
ExportKey: HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\Software\IM
DeleteKey: HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\Software\IM
*****************
================== ExportKey: ===================
[HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\Software\IM]
"2294"="16-11-06 15:54:42"
[HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\Software\IM\shortcuts]
=== Ende von ExportKey ===
HKU\S-1-5-21-2887243570-1868036058-3993079417-1000\Software\IM => Schlüssel erfolgreich entfernt
==== Ende von Fixlog 13:51:00 ====
Eine Frage hätte ich noch: Gibt es ein gutes, sicheres Programm, dass mir die von dir genannten Programme aktuell hält, damit ich da nichts übersehe? In Windows habe ich die entsprechende Funktion nicht gefunden, und das wäre ziemlich hilfreich. Mein altes Virenprogramm hat das früher gemacht, aber da ich auf euren Rat hintzu Windows essentials gewechselt bin bräuichte ich für diese Funktion einen Ersatz. Nochmal Danke für die Hilfe! P.S.: Das Problem mit dem schwarzen Bildschirm beim ansehen von Videos hatte ich gestern Abend nochmal. Hast du, wenn es offenbar kein Virus ist, eine Idee, woher das kommen könnte? Ich hab nämlich keine... |
|
05.06.2017, 08:47
| #13 | |||
| /// TB-Ausbilder | Browserfenster wird schwarz wenn YT videos angesehen werden Servus, Zitat:
 Zitat:
Zitat:
Ich bin froh, dass wir helfen konnten  In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest: Lob, Kritik und Wünsche Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank! Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine Profilnachricht inklusive Link zum Thema. Jeder andere bitte hier klicken und einen eigenen Thread erstellen. |
|
| Themen zu Browserfenster wird schwarz wenn YT videos angesehen werden |
| browserfenster, bösartige, code, defender, direkt, domain, erkannt, kostenlose, malwarebytes, nvidia, problem, recht, sache, sachen, schwarz, screenshot, seite, seiten, systemsteuerung, treiber, verlauf, verschwindet, videos, websites, windows |
und 
und speichere die Logdatei auf Deinem Desktop.
Linear-Darstellung
