Disk beinahe immer bei 100% , auch wenn nur ein Program läuft.

mamarazzii · 07.12.2017, 14:53

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2017
Ran by sandr (administrator) on THING (07-12-2017 13:36:11)
Running from C:\Users\sandr\Downloads
Loaded Profiles: sandr (Available Profiles: anita & sandr & r0711 & SQLTELEMETRY & MSSQLSERVER)
Platform: Windows 10 Home Version 1703 15063.726 (X64) Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\IntegratedOffice.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.9.604.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SnippingTool.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [TODDMain] => C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [213136 2012-08-04] ()
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [170848 2013-01-28] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [356776 2012-07-11] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2717176 2013-01-04] (TOSHIBA Corporation)
HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2012-12-18] (Intel Corporation)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-01-16] (Alcor Micro Corp.)
HKLM-x32\...\Run: [1.TPUReg] => C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2216800 2013-03-27] (TOSHIBA)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [467360 2013-03-08] (TOSHIBA)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [73216 2017-05-29] ()
HKLM-x32\...\Run: [FileZilla Server Interface] => C:\Program Files (x86)\FileZilla Server\FileZilla Server Interface.exe [2770088 2017-02-08] (FileZilla Project)
HKU\S-1-5-21-4243993546-206752626-989636995-1006\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832272 2017-08-25] (Skype Technologies S.A.)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\Users\r0711\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2017-09-29]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5c1fcfe4-6d89-4d5b-a311-5cfd886ad3c6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bc5c21d2-a59a-481d-8436-34614f90b56e}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-4243993546-206752626-989636995-1006\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://toshiba13.msn.com/
HKU\S-1-5-21-4243993546-206752626-989636995-1006\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com
SearchScopes: HKU\S-1-5-21-4243993546-206752626-989636995-1006 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKU\S-1-5-21-4243993546-206752626-989636995-1006 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKU\S-1-5-21-4243993546-206752626-989636995-1006 -> {7D494A7D-CF3B-447D-BA10-E6AEF8351B6F} URL = 
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-11-16] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-11-07] (Microsoft Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-10-22] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-11-07] (Microsoft Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-30] (Microsoft Corporation)

Edge: 
======
Edge Extension: (LastPass: Free Password Manager) -> hdokiejnpimakedhajhdlcegeplioahd_LastPassLastPassFreePasswordManager_qq0fmhteeht3j => C:\Program Files\WindowsApps\LastPass.LastPassFreePasswordManager_4.1.45.0_neutral__qq0fmhteeht3j [2017-08-29]

FireFox:
========
FF DefaultProfile: ojhxb9p9.default
FF ProfilePath: C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default [2017-12-07]
FF Homepage: Mozilla\Firefox\Profiles\ojhxb9p9.default -> www.google.be
FF Extension: (eidReader Plugin Extension) - C:\Users\sandr\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\kcnofmiceklfkodhdhhjcfjhdepfobaf@unifiedpost.com.xpi [2017-09-19]
FF Extension: (eID Belgium) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\belgiumeid@eid.belgium.be.xpi [2017-11-22]
FF Extension: (Click&Clean) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\clickclean@hotcleaner.com [2017-07-30] [Lagacy]
FF Extension: (No Name) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\d.lehr@chello.at.xpi [2017-12-06]
FF Extension: (Ghostery) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\firefox@ghostery.com.xpi [2017-12-07]
FF Extension: (Self-Destructing Cookies) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi [2017-07-30] [Lagacy]
FF Extension: (Print Friendly & PDF) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\jid0-YQz0l1jthOIz179ehuitYAOdBEs@jetpack.xpi [2017-07-30]
FF Extension: (DuckDuckGo Plus) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2017-12-06]
FF Extension: (LastPass: Free Password Manager) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\support@lastpass.com.xpi [2017-12-06]
FF Extension: (Take Webpage Screenshots Entirely - FireShot) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}.xpi [2017-11-22]
FF Extension: (Capture & Print) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\{146f1820-2b0d-49ef-acbf-d85a6986e10c}.xpi [2017-07-30] [Lagacy]
FF Extension: (Adblock Plus) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-11-12]
FF Extension: (Disable Media WMF NV12 format) - C:\Users\sandr\AppData\Roaming\Mozilla\Firefox\Profiles\ojhxb9p9.default\features\{8c1ac8d0-7725-40e5-94ca-8523ebf0c11d}\disable-media-wmf-nv12@mozilla.org.xpi [2017-12-06] [Lagacy]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll [2017-11-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-14] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-10-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-10-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4243993546-206752626-989636995-1006: unifiedpost.com/eidReader_ -> C:\Program Files\eid-reader\plugin_win\eidReader.plugin\npeidReader.dll [2017-09-19] (UnifiedPost)

Chrome: 
=======
CHR Profile: C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default [2017-12-07]
CHR Extension: (Slides) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Docs) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Google Drive) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-26]
CHR Extension: (YouTube) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-26]
CHR Extension: (Sheets) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (Google Docs Offline) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-10-08]
CHR Extension: (eidReader Plugin Chrome Extension) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcnofmiceklfkodhdhhjcfjhdepfobaf [2017-10-14]
CHR Extension: (Skype) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-26]
CHR Extension: (Gmail) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-26]
CHR Extension: (Chrome Media Router) - C:\Users\sandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-30]
CHR HKU\S-1-5-21-4243993546-206752626-989636995-1006\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kcnofmiceklfkodhdhhjcfjhdepfobaf] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8063664 2017-11-22] (Microsoft Corporation)
S2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [16720 2013-04-10] ()
S4 FileZilla Server; C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe [859304 2017-02-08] (FileZilla Project)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2017-06-22] (Macrovision Europe Ltd.) [File not signed]
S2 GFNEXSrv; C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe [163168 2013-03-27] ()
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-05] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S3 MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL13.MSSQLSERVER\MSSQL\Binn\sqlservr.exe [392384 2017-07-06] (Microsoft Corporation)
S4 SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL13.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE [565952 2017-07-06] (Microsoft Corporation)
S3 SQLTELEMETRY; C:\Program Files\Microsoft SQL Server\MSSQL13.MSSQLSERVER\MSSQL\Binn\sqlceip.exe [198848 2016-04-30] (Microsoft Corporation)
S3 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2013-03-13] (IDT, Inc.) [File not signed]
S4 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-05-04] (Synaptics Incorporated)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [187904 2017-09-28] (Microsoft Corporation) [File not signed]
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116240 2013-01-04] (Toshiba Europe GmbH)
S4 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1001920 2017-06-26] (McAfee, Inc.)
S4 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2017-06-26] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2017-06-26] (McAfee, Inc.)
S4 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2016-08-26] (Popcorn Time) [File not signed]
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [129144 2017-08-23] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-23] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-09-20] (Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-09-20] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-11-01] ()
R0 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193464 2017-12-03] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2017-12-07] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [46008 2017-12-07] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-12-07] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2017-12-07] (Malwarebytes)
R1 MpKsl21d9d2b8; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E92FF9D2-919C-4151-BE78-68AB3FCD7E0C}\MpKsl21d9d2b8.sys [58120 2017-12-07] (Microsoft Corporation)
R1 MpKsl6d7c21ee; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B9E66B71-4F94-46AF-9D13-C415AFBF1681}\MpKsl6d7c21ee.sys [58120 2017-12-03] (Microsoft Corporation)
R1 MpKslb9793864; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B8FA4739-8EBC-48E0-B335-A285CF0074AF}\MpKslb9793864.sys [58120 2017-12-06] (Microsoft Corporation)
R2 PEGAGFN; C:\Program Files (x86)\TOSHIBA\PasswordUtility\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
S4 RsFx0401; C:\WINDOWS\System32\DRIVERS\RsFx0401.sys [260816 2016-03-29] (Microsoft Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [220672 2017-03-18] (Microsoft Corporation)
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [51392 2015-10-08] (Synaptics Incorporated)
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [45928 2017-06-29] (SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [54424 2015-07-29] (Toshiba Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation)
S3 MREMP50; \??\C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [X]
S3 MREMP50a64; \??\C:\Program Files\Common Files\Motive\MREMP50a64.sys [X]
S3 MRESP50; \??\C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [X]
S3 MRESP50a64; \??\C:\Program Files\Common Files\Motive\MRESP50a64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-12-07 13:36 - 2017-12-07 13:39 - 000023821 _____ C:\Users\sandr\Downloads\FRST.txt
2017-12-07 13:35 - 2017-12-07 13:36 - 000000000 ____D C:\FRST
2017-12-07 13:34 - 2017-12-07 13:34 - 002390528 _____ (Farbar) C:\Users\sandr\Downloads\FRST64.exe
2017-12-07 11:46 - 2017-12-07 11:46 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\1165F390.sys
2017-12-07 11:45 - 2017-12-07 13:23 - 000000000 ____D C:\Users\sandr\Desktop\mbar
2017-12-07 11:45 - 2017-12-07 13:23 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-12-07 11:45 - 2017-12-07 11:45 - 014178840 _____ (Malwarebytes Corp.) C:\Users\sandr\Downloads\mbar-1.10.3.1001.exe
2017-12-06 12:07 - 2017-12-06 12:08 - 000000000 ___HD C:\$WINDOWS.~BT
2017-12-06 12:07 - 2017-12-06 12:07 - 000000000 ____D C:\Windows.old
2017-12-05 15:40 - 2017-12-05 15:40 - 000056580 _____ C:\Users\r0711\Downloads\WPF_Noten.zip
2017-12-05 10:03 - 2017-12-05 10:03 - 000233981 _____ C:\Users\r0711\Downloads\Foutjes.zip
2017-12-04 10:12 - 2017-12-04 10:12 - 000000000 ____D C:\Users\r0711\Downloads\FireShot
2017-12-04 10:02 - 2017-12-04 10:03 - 000172306 _____ C:\Users\r0711\Downloads\eXComfort-Canvanizer-wk3AN15AxOIt2.zip
2017-12-03 22:20 - 2017-12-03 22:20 - 000193464 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2017-12-02 23:41 - 2017-12-02 23:41 - 000000000 ____D C:\ProgramData\Git
2017-12-02 22:07 - 2017-12-02 22:07 - 000274316 _____ C:\Users\r0711\Downloads\hfdst 2 (1).zip
2017-12-02 20:31 - 2017-12-06 10:30 - 000000000 ____D C:\Users\r0711\AppData\Local\Spotify
2017-12-02 20:31 - 2017-12-02 20:31 - 000001897 _____ C:\Users\r0711\Desktop\Spotify.lnk
2017-12-02 20:31 - 2017-12-02 20:31 - 000001883 _____ C:\Users\r0711\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2017-12-02 20:30 - 2017-12-06 10:28 - 000000000 ____D C:\Users\r0711\AppData\Roaming\Spotify
2017-12-02 20:30 - 2017-12-02 20:30 - 000723152 _____ (Spotify Ltd) C:\Users\r0711\Downloads\SpotifySetup.exe
2017-11-30 13:02 - 2017-11-30 14:19 - 000000000 ____D C:\Users\sandr\Documents\2017_11_30
2017-11-28 10:10 - 2017-11-28 10:10 - 003460764 _____ C:\Users\r0711\Downloads\Business Model Canvas (2).pptx
2017-11-27 19:56 - 2017-11-27 19:56 - 000014626 _____ C:\Users\r0711\Downloads\p2p_27112017.xlsx
2017-11-27 14:38 - 2017-11-27 14:39 - 003460764 _____ C:\Users\r0711\Downloads\Business Model Canvas (1).pptx
2017-11-26 14:22 - 2017-11-26 14:22 - 003460764 _____ C:\Users\r0711\Downloads\Business Model Canvas.pptx
2017-11-24 22:56 - 2017-11-24 22:56 - 000022007 _____ C:\Users\r0711\Downloads\Punten Databases (1).xlsx
2017-11-24 22:55 - 2017-11-24 22:55 - 000022007 _____ C:\Users\r0711\Downloads\Punten Databases.xlsx
2017-11-23 21:15 - 2017-11-23 21:16 - 010315153 _____ C:\Users\r0711\Downloads\Code (2).zip
2017-11-23 21:14 - 2017-11-23 21:15 - 010315153 _____ C:\Users\r0711\Downloads\Code.zip
2017-11-22 18:48 - 2017-11-22 18:48 - 000000000 ____D C:\Users\sandr\AppData\Local\Transcend Elite
2017-11-22 16:34 - 2017-11-22 16:34 - 000000000 ____D C:\Program Files (x86)\Transcend
2017-11-22 16:33 - 2017-11-22 16:33 - 004510688 _____ (Transcend Information, Inc. ) C:\Users\sandr\Downloads\TranscendElite_Win_v3.2.0_setup.exe
2017-11-21 17:57 - 2017-11-21 17:57 - 000118879 _____ C:\Users\r0711\Downloads\Oefening 1.pdf
2017-11-16 16:50 - 2017-11-16 16:50 - 010315153 _____ C:\Users\r0711\Downloads\Code (1).zip
2017-11-16 11:54 - 2017-11-02 06:16 - 002398696 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-11-16 11:54 - 2017-11-02 06:15 - 001239448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-11-16 11:54 - 2017-11-02 06:13 - 000546712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-11-16 11:54 - 2017-11-02 06:13 - 000095640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2017-11-16 11:54 - 2017-11-02 06:10 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-11-16 11:54 - 2017-11-02 06:03 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-11-16 11:54 - 2017-11-02 05:49 - 001838848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-11-16 11:54 - 2017-11-02 05:45 - 000613136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-11-16 11:54 - 2017-11-02 05:45 - 000362144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-11-16 11:54 - 2017-11-02 05:45 - 000354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-11-16 11:54 - 2017-11-02 05:45 - 000283544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-11-16 11:54 - 2017-11-02 05:45 - 000172952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-11-16 11:54 - 2017-11-02 05:45 - 000133896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-11-16 11:54 - 2017-11-02 05:44 - 023680000 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-11-16 11:54 - 2017-11-02 05:44 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-11-16 11:54 - 2017-11-02 05:44 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-11-16 11:54 - 2017-11-02 05:43 - 020372896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-11-16 11:54 - 2017-11-02 05:36 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2017-11-16 11:54 - 2017-11-02 05:35 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2017-11-16 11:54 - 2017-11-02 05:35 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-11-16 11:54 - 2017-11-02 05:34 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-11-16 11:54 - 2017-11-02 05:34 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-11-16 11:54 - 2017-11-02 05:34 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-11-16 11:54 - 2017-11-02 05:34 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2017-11-16 11:54 - 2017-11-02 05:32 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-11-16 11:54 - 2017-11-02 05:31 - 020512256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-11-16 11:54 - 2017-11-02 05:30 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-11-16 11:54 - 2017-11-02 05:29 - 019338240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-11-16 11:54 - 2017-11-02 05:29 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-11-16 11:54 - 2017-11-02 05:29 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-11-16 11:54 - 2017-11-02 05:28 - 023684096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-11-16 11:54 - 2017-11-02 05:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-11-16 11:54 - 2017-11-02 05:27 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-11-16 11:54 - 2017-11-02 05:26 - 008197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-11-16 11:54 - 2017-11-02 05:26 - 005963776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-11-16 11:54 - 2017-11-02 05:26 - 001937408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2017-11-16 11:54 - 2017-11-02 05:26 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-11-16 11:54 - 2017-11-02 05:26 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-11-16 11:54 - 2017-11-02 05:26 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2017-11-16 11:54 - 2017-11-02 05:25 - 004727808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-11-16 11:54 - 2017-11-02 05:25 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-11-16 11:54 - 2017-11-02 05:24 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-11-16 11:54 - 2017-11-02 05:24 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2017-11-16 11:54 - 2017-11-02 05:23 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-11-16 11:54 - 2017-11-02 05:23 - 000680960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-11-16 11:54 - 2017-11-02 05:22 - 006254080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-11-16 11:54 - 2017-11-02 05:22 - 001494528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-11-16 11:54 - 2017-11-02 05:21 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-11-16 11:54 - 2017-11-02 05:21 - 003653120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-11-16 11:54 - 2017-11-02 05:21 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-11-16 11:54 - 2017-10-15 16:09 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-11-16 11:54 - 2017-10-15 16:01 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-11-16 11:54 - 2017-10-15 15:49 - 000094616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-11-16 11:54 - 2017-10-15 15:49 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-11-16 11:54 - 2017-10-15 15:45 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-11-16 11:54 - 2017-10-15 15:45 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-11-16 11:54 - 2017-10-15 15:44 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-11-16 11:54 - 2017-10-15 15:42 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-11-16 11:54 - 2017-10-15 15:42 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-11-16 11:54 - 2017-10-15 15:41 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-11-16 11:54 - 2017-10-15 15:10 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-11-16 11:53 - 2017-11-02 06:21 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-11-16 11:53 - 2017-11-02 06:21 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-11-16 11:53 - 2017-11-02 06:21 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-11-16 11:53 - 2017-11-02 06:21 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-11-16 11:53 - 2017-11-02 06:21 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-11-16 11:53 - 2017-11-02 06:21 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-11-16 11:53 - 2017-11-02 06:20 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-11-16 11:53 - 2017-11-02 06:20 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-11-16 11:53 - 2017-11-02 06:20 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-11-16 11:53 - 2017-11-02 06:20 - 000965016 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-11-16 11:53 - 2017-11-02 06:20 - 000821656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-11-16 11:53 - 2017-11-02 06:20 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-11-16 11:53 - 2017-11-02 06:20 - 000543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-11-16 11:53 - 2017-11-02 06:20 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-11-16 11:53 - 2017-11-02 06:20 - 000469568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2017-11-16 11:53 - 2017-11-02 06:20 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-11-16 11:53 - 2017-11-02 06:20 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-11-16 11:53 - 2017-11-02 06:16 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-11-16 11:53 - 2017-11-02 06:16 - 002327448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-11-16 11:53 - 2017-11-02 06:15 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-11-16 11:53 - 2017-11-02 06:14 - 000667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-11-16 11:53 - 2017-11-02 06:14 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2017-11-16 11:53 - 2017-11-02 06:13 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-11-16 11:53 - 2017-11-02 06:13 - 002443672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-11-16 11:53 - 2017-11-02 06:13 - 001345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-11-16 11:53 - 2017-11-02 06:13 - 000212888 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-11-16 11:53 - 2017-11-02 06:12 - 000727336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-11-16 11:53 - 2017-11-02 06:12 - 000714648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-11-16 11:53 - 2017-11-02 06:12 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-11-16 11:53 - 2017-11-02 06:12 - 000643192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-11-16 11:53 - 2017-11-02 06:12 - 000430848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-11-16 11:53 - 2017-11-02 06:12 - 000412752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-11-16 11:53 - 2017-11-02 06:12 - 000319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-11-16 11:53 - 2017-11-02 06:12 - 000144248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-11-16 11:53 - 2017-11-02 06:12 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2017-11-16 11:53 - 2017-11-02 06:12 - 000026472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-11-16 11:53 - 2017-11-02 06:11 - 021353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-11-16 11:53 - 2017-11-02 06:05 - 000871408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-11-16 11:53 - 2017-11-02 06:05 - 000187800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-11-16 11:53 - 2017-11-02 05:37 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-11-16 11:53 - 2017-11-02 05:37 - 001278976 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-11-16 11:53 - 2017-11-02 05:37 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-11-16 11:53 - 2017-11-02 05:37 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-11-16 11:53 - 2017-11-02 05:37 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-11-16 11:53 - 2017-11-02 05:36 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-11-16 11:53 - 2017-11-02 05:35 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-11-16 11:53 - 2017-11-02 05:35 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2017-11-16 11:53 - 2017-11-02 05:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-11-16 11:53 - 2017-11-02 05:34 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-11-16 11:53 - 2017-11-02 05:34 - 000438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2017-11-16 11:53 - 2017-11-02 05:34 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2017-11-16 11:53 - 2017-11-02 05:34 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-11-16 11:53 - 2017-11-02 05:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-11-16 11:53 - 2017-11-02 05:33 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-11-16 11:53 - 2017-11-02 05:33 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
2017-11-16 11:53 - 2017-11-02 05:33 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2017-11-16 11:53 - 2017-11-02 05:33 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-11-16 11:53 - 2017-11-02 05:33 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertPKICmdlet.dll
2017-11-16 11:53 - 2017-11-02 05:32 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-11-16 11:53 - 2017-11-02 05:32 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2017-11-16 11:53 - 2017-11-02 05:31 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-11-16 11:53 - 2017-11-02 05:31 - 000411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-11-16 11:53 - 2017-11-02 05:31 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2017-11-16 11:53 - 2017-11-02 05:30 - 013381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-11-16 11:53 - 2017-11-02 05:30 - 007339008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-11-16 11:53 - 2017-11-02 05:30 - 000719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-11-16 11:53 - 2017-11-02 05:30 - 000635392 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-11-16 11:53 - 2017-11-02 05:30 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2017-11-16 11:53 - 2017-11-02 05:30 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-11-16 11:53 - 2017-11-02 05:30 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-11-16 11:53 - 2017-11-02 05:30 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-11-16 11:53 - 2017-11-02 05:29 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-11-16 11:53 - 2017-11-02 05:29 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-11-16 11:53 - 2017-11-02 05:29 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-11-16 11:53 - 2017-11-02 05:28 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-11-16 11:53 - 2017-11-02 05:28 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-11-16 11:53 - 2017-11-02 05:28 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-11-16 11:53 - 2017-11-02 05:28 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-11-16 11:53 - 2017-11-02 05:27 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-11-16 11:53 - 2017-11-02 05:27 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-11-16 11:53 - 2017-11-02 05:27 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2017-11-16 11:53 - 2017-11-02 05:27 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-11-16 11:53 - 2017-11-02 05:26 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-11-16 11:53 - 2017-11-02 05:26 - 003060224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-11-16 11:53 - 2017-11-02 05:26 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-11-16 11:53 - 2017-11-02 05:26 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-11-16 11:53 - 2017-11-02 05:25 - 012227072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-11-16 11:53 - 2017-11-02 05:25 - 011888128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-11-16 11:53 - 2017-11-02 05:25 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-11-16 11:53 - 2017-11-02 05:25 - 002052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-11-16 11:53 - 2017-11-02 05:25 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-11-16 11:53 - 2017-11-02 05:25 - 001713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-11-16 11:53 - 2017-11-02 05:25 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-11-16 11:53 - 2017-11-02 05:25 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2017-11-16 11:53 - 2017-11-02 05:25 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-11-16 11:53 - 2017-11-02 05:24 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-11-16 11:53 - 2017-11-02 05:23 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-11-16 11:53 - 2017-11-02 05:23 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-11-16 11:53 - 2017-11-02 05:23 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-11-16 11:53 - 2017-11-02 05:19 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2017-11-16 11:53 - 2017-10-15 15:59 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-11-16 11:53 - 2017-10-15 15:57 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-11-16 11:53 - 2017-10-15 15:57 - 000409496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-11-16 11:53 - 2017-10-15 15:56 - 000872464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-11-16 11:53 - 2017-10-15 15:55 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-11-16 11:53 - 2017-10-15 15:53 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-11-16 11:53 - 2017-10-15 15:53 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-11-16 11:53 - 2017-10-15 15:15 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-11-16 11:53 - 2017-10-15 15:14 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
2017-11-16 11:53 - 2017-10-15 15:13 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-11-16 11:53 - 2017-10-15 15:09 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-11-16 11:53 - 2017-10-15 15:09 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-11-16 11:53 - 2017-10-15 15:08 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-11-16 11:53 - 2017-10-15 15:08 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-11-16 11:53 - 2017-10-15 15:07 - 005776384 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2017-11-16 11:53 - 2017-10-15 15:07 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-11-16 11:53 - 2017-10-15 15:05 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-11-16 11:53 - 2017-10-15 15:05 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-11-16 11:53 - 2017-10-15 15:04 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-11-16 11:53 - 2017-10-15 15:02 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-11-16 11:53 - 2017-10-15 15:00 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-11-16 11:53 - 2017-07-07 07:15 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2017-11-16 11:53 - 2017-04-19 07:07 - 002617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2017-11-16 11:52 - 2017-11-02 05:27 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertPKICmdlet.dll
2017-11-16 11:52 - 2017-11-02 05:24 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-11-16 11:52 - 2017-11-02 05:23 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-11-16 11:52 - 2017-11-02 05:22 - 001884160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2017-11-16 11:52 - 2017-10-25 08:40 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-11-16 11:52 - 2017-10-15 15:38 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-11-16 11:51 - 2017-11-02 06:04 - 001292360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-11-16 11:51 - 2017-11-02 05:45 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-11-16 11:51 - 2017-11-02 05:30 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-11-16 11:51 - 2017-11-02 05:30 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-11-16 11:51 - 2017-11-02 05:30 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-11-16 11:51 - 2017-11-02 05:27 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-11-16 11:51 - 2017-11-02 05:26 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-11-16 11:51 - 2017-11-02 05:25 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2017-11-16 11:51 - 2017-11-02 05:25 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-11-16 11:51 - 2017-11-02 05:25 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-11-16 11:51 - 2017-11-02 05:24 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2017-11-16 11:51 - 2017-11-02 05:24 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-11-16 11:51 - 2017-11-02 05:23 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-11-16 11:51 - 2017-11-02 05:22 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-11-16 11:51 - 2017-11-02 05:22 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-11-16 11:51 - 2017-11-02 05:21 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-11-16 11:51 - 2017-10-15 16:03 - 006765728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-11-16 11:51 - 2017-10-15 15:51 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-11-16 11:51 - 2017-10-15 15:46 - 004544000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2017-11-16 11:51 - 2017-10-15 15:44 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-11-16 11:51 - 2017-10-15 15:41 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-11-16 11:51 - 2017-07-07 07:03 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2017-11-16 11:51 - 2017-06-20 05:35 - 005141504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12warp.dll
2017-11-16 11:51 - 2017-04-19 06:30 - 002102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2017-11-16 10:15 - 2017-11-16 10:15 - 000966739 _____ C:\Users\r0711\Downloads\C.zip
2017-11-16 09:54 - 2017-11-16 09:54 - 000000000 ____D C:\Users\r0711\AppData\Roaming\NuGet
2017-11-16 09:45 - 2017-12-05 22:41 - 000000000 ____D C:\Users\r0711\Documents\Programmeren
2017-11-15 13:11 - 2017-11-15 13:11 - 000037549 _____ C:\Users\r0711\Desktop\tarife_schneepaesse_winter_17_18.pdf
2017-11-15 13:11 - 2017-11-15 13:11 - 000027679 _____ C:\Users\r0711\Desktop\tarife_wandern_schlitteln_wahlschneepaesse_17_01.pdf
2017-11-15 10:36 - 2017-11-15 10:36 - 000000000 ____D C:\Users\r0711\source
2017-11-14 18:17 - 2017-11-14 19:41 - 000000000 ____D C:\Users\r0711\AppData\Local\.IdentityService
2017-11-14 17:08 - 2017-11-14 17:08 - 000000000 ____D C:\Program Files (x86)\Entity Framework Tools
2017-11-14 17:00 - 2017-11-14 17:00 - 000000000 ____D C:\Program Files (x86)\Windows Phone Kits
2017-11-14 16:56 - 2017-03-17 22:48 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2017-11-14 16:56 - 2017-03-17 22:08 - 017777152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2017-11-14 16:56 - 2017-03-17 22:05 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2017-11-14 16:56 - 2017-03-17 22:02 - 000393216 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2017-11-14 16:56 - 2017-03-17 21:59 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2017-11-14 16:56 - 2017-03-17 21:59 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARP12Debug.dll
2017-11-14 16:56 - 2017-03-17 21:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2017-11-14 16:56 - 2017-03-17 21:53 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2017-11-14 16:56 - 2017-03-17 21:52 - 004897280 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2017-11-14 16:56 - 2017-03-17 21:49 - 001309184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2017-11-14 16:56 - 2017-03-17 21:48 - 013785600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2017-11-14 16:56 - 2017-03-17 21:47 - 006806016 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12warp.dll
2017-11-14 16:56 - 2017-03-17 21:46 - 000370176 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2017-11-14 16:56 - 2017-03-17 21:44 - 001977344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2017-11-14 16:56 - 2017-03-17 21:44 - 001174528 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2017-11-14 16:56 - 2017-03-17 21:44 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2017-11-14 16:56 - 2017-03-17 21:44 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2017-11-14 16:56 - 2017-03-17 21:43 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2017-11-14 16:56 - 2017-03-17 21:43 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2017-11-14 16:56 - 2017-03-17 21:43 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARP12Debug.dll
2017-11-14 16:56 - 2017-03-17 21:43 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2017-11-14 16:56 - 2017-03-17 21:41 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2017-11-14 16:56 - 2017-03-17 21:39 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2017-11-14 16:56 - 2017-03-17 21:38 - 000348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2017-11-14 16:56 - 2017-03-17 21:35 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2017-11-14 16:56 - 2017-03-17 21:33 - 003648000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2017-11-14 16:56 - 2017-03-17 21:30 - 001480704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2017-11-14 16:56 - 2017-03-17 21:30 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2017-11-14 16:56 - 2017-03-17 21:30 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2017-11-14 16:56 - 2017-03-17 21:30 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2017-11-14 16:56 - 2017-03-17 21:29 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2017-11-14 16:56 - 2017-03-17 21:29 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2017-11-14 16:56 - 2017-03-17 21:25 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2017-11-14 16:53 - 2017-11-14 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2017-11-14 16:53 - 2017-11-14 16:53 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2017-11-14 16:53 - 2017-11-14 16:53 - 000000000 ____D C:\Program Files\Application Verifier
2017-11-14 16:53 - 2017-11-14 16:53 - 000000000 ____D C:\Program Files (x86)\Application Verifier
2017-11-14 16:50 - 2017-11-14 16:50 - 000000000 ____D C:\Program Files (x86)\NuGet
2017-11-14 16:33 - 2017-11-14 16:33 - 000000000 ____D C:\Program Files (x86)\Microsoft Web Tools
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\3082
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\2052
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1055
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1049
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1046
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1045
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1042
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1041
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1040
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1036
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1031
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1029
2017-11-14 13:34 - 2017-11-14 13:34 - 000000000 ____D C:\WINDOWS\system32\1028
2017-11-14 12:54 - 2017-11-14 12:54 - 000001807 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2017.lnk
2017-11-14 12:54 - 2017-11-14 12:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017
2017-11-14 12:39 - 2017-12-07 10:43 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-11-14 12:39 - 2017-12-07 09:33 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-11-14 12:30 - 2017-12-01 13:58 - 000000000 ____D C:\Users\r0711\Documents\Visual Studio 2017
2017-11-14 12:26 - 2017-11-14 12:26 - 000001495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017.lnk
2017-11-14 10:15 - 2017-12-03 13:32 - 000000000 ____D C:\Users\r0711\AppData\Roaming\Visual Studio Setup
2017-11-14 10:15 - 2017-11-14 10:15 - 000001366 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2017-11-14 10:15 - 2017-11-14 10:15 - 000000000 ____D C:\Users\r0711\AppData\Roaming\vstelemetry
2017-11-14 10:15 - 2017-11-14 10:15 - 000000000 ____D C:\Users\r0711\AppData\Local\ServiceHub
2017-11-14 10:14 - 2017-11-14 13:31 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2017-11-13 13:55 - 2017-11-13 13:55 - 000000000 ____D C:\Users\r0711\AppData\LocalLow\Temp
2017-11-13 13:48 - 2017-11-14 10:15 - 003524254 _____ C:\Users\r0711\Downloads\H1 MF- Marketing (1).pptx
2017-11-13 11:41 - 2017-11-13 11:41 - 001077176 _____ (Microsoft Corporation) C:\Users\r0711\Downloads\vs_community__267358142.1510567460 (1).exe
2017-11-13 11:06 - 2017-11-13 11:06 - 001077176 _____ (Microsoft Corporation) C:\Users\r0711\Downloads\vs_community__267358142.1510567460.exe
2017-11-13 09:43 - 2017-11-13 09:43 - 001868010 _____ C:\Users\r0711\Downloads\H1 (1).zip
2017-11-12 11:46 - 2017-11-12 11:46 - 001002232 _____ C:\Users\sandr\Desktop\lemo report.pdf
2017-11-10 17:29 - 2017-11-10 17:29 - 000011339 _____ C:\Users\r0711\Downloads\SandraRichener ScottProfile.pdf
2017-11-10 13:39 - 2017-12-07 09:33 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2017-11-10 13:39 - 2017-12-07 09:33 - 000046008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-11-10 13:39 - 2017-11-10 13:39 - 000001923 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-11-10 13:39 - 2017-11-10 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-11-10 13:38 - 2017-11-10 13:38 - 000000000 ____D C:\ProgramData\MB3CoreBackup
2017-11-10 11:46 - 2017-11-10 11:46 - 003666284 _____ C:\Users\r0711\Downloads\Elien_Osselaer_Sandra_Richener Scott.zip
2017-11-08 17:32 - 2017-11-08 17:32 - 000630272 _____ C:\Users\r0711\Downloads\Module 1(1).ppt
2017-11-07 10:44 - 2017-11-07 10:44 - 001033286 _____ C:\Users\r0711\Downloads\B 01_Richener_Scott_Sandra.zip

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-12-07 13:24 - 2017-07-23 12:39 - 000000000 ___DC C:\WINDOWS\Panther
2017-12-07 11:51 - 2017-07-23 16:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-12-07 11:46 - 2017-07-30 16:44 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-07 11:35 - 2017-07-29 23:44 - 000000000 ____D C:\Users\sandr\AppData\LocalLow\Mozilla
2017-12-07 10:43 - 2017-09-20 09:34 - 000000000 ____D C:\Users\SQLTELEMETRY
2017-12-07 10:43 - 2017-09-20 09:33 - 000000000 ____D C:\Users\MSSQLSERVER
2017-12-07 09:51 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-12-07 09:51 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-12-07 09:43 - 2017-09-01 12:16 - 000004144 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F5F79084-2EAF-451F-B660-2C3158FDDC27}
2017-12-07 09:39 - 2017-08-22 21:22 - 001253768 _____ C:\WINDOWS\system32\perfh00C.dat
2017-12-07 09:39 - 2017-08-22 21:22 - 000353138 _____ C:\WINDOWS\system32\perfc00C.dat
2017-12-07 09:39 - 2017-08-22 20:37 - 001205050 _____ C:\WINDOWS\system32\perfh007.dat
2017-12-07 09:39 - 2017-08-22 20:37 - 000353148 _____ C:\WINDOWS\system32\perfc007.dat
2017-12-07 09:39 - 2017-07-23 16:57 - 003817108 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-07 09:34 - 2017-07-29 23:39 - 000000000 __SHD C:\Users\sandr\IntelGraphicsProfiles
2017-12-07 09:32 - 2017-07-29 23:39 - 000000000 ____D C:\Users\sandr
2017-12-07 09:31 - 2017-07-23 16:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-12-07 09:17 - 2017-08-22 22:07 - 000000000 ____D C:\Users\sandr\Documents\Outlook-Dateien
2017-12-06 21:00 - 2017-09-04 13:51 - 000000000 ____D C:\Users\sandr\Documents\Outlook Files
2017-12-06 11:49 - 2017-08-20 19:27 - 000000000 ____D C:\Users\sandr\Documents\Rechnungen_Belgie
2017-12-06 10:39 - 2017-09-17 15:11 - 000000000 ____D C:\Users\r0711\AppData\LocalLow\Mozilla
2017-12-06 10:30 - 2017-09-17 15:26 - 000004144 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{4918E4BC-9ABC-4011-A041-E3DE80445A79}
2017-12-06 10:25 - 2017-09-17 15:00 - 000000000 __SHD C:\Users\r0711\IntelGraphicsProfiles
2017-12-05 13:19 - 2017-10-16 19:42 - 000000000 ____D C:\Users\r0711\Documents\System Security Fundamentals
2017-12-05 13:18 - 2017-09-22 08:29 - 000000000 ____D C:\Users\r0711\Documents\System Netwerk Architecture
2017-12-05 13:14 - 2017-09-17 15:00 - 000000000 ____D C:\Users\r0711\AppData\Local\Packages
2017-12-04 20:28 - 2017-09-19 18:36 - 000000000 ____D C:\Users\r0711\Documents\Entrepreneurship
2017-12-04 09:23 - 2017-03-18 12:40 - 001835008 _____ C:\WINDOWS\system32\config\BBI
2017-12-04 09:21 - 2017-09-17 15:00 - 000000000 ____D C:\Users\r0711
2017-12-04 09:21 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-12-03 22:40 - 2017-03-18 22:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-12-03 22:35 - 2013-05-09 18:36 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-12-03 22:17 - 2017-05-21 18:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-12-03 22:17 - 2017-04-19 12:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-02 23:41 - 2017-09-20 10:23 - 000000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2017-11-30 12:58 - 2017-10-22 19:54 - 000000000 ____D C:\ProgramData\CanonIJPLM
2017-11-30 10:25 - 2017-04-19 12:43 - 000001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-11-30 09:16 - 2017-07-29 23:39 - 000000000 ____D C:\Users\sandr\AppData\Local\Packages
2017-11-29 22:34 - 2017-09-01 11:42 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-26 17:24 - 2017-09-22 12:49 - 000000000 ____D C:\Users\r0711\Documents\Database
2017-11-26 16:40 - 2017-09-30 15:51 - 000000000 ____D C:\Users\r0711\Documents\Philip School
2017-11-23 15:41 - 2017-09-17 15:10 - 000000000 ____D C:\Users\r0711\AppData\Roaming\Mozilla
2017-11-22 21:01 - 2017-07-29 23:44 - 000000000 ____D C:\Users\sandr\AppData\Roaming\Mozilla
2017-11-22 18:14 - 2017-08-20 19:32 - 000000000 ____D C:\Users\sandr\Documents\Sandra
2017-11-22 16:24 - 2017-09-11 14:39 - 000000000 ____D C:\Users\sandr\Documents\Money
2017-11-22 16:24 - 2017-09-11 14:37 - 000000000 ____D C:\Users\sandr\Documents\Holidays Uitstaps
2017-11-22 16:23 - 2017-08-20 16:30 - 000000000 ____D C:\Users\sandr\Documents\CV
2017-11-22 16:01 - 2017-08-20 19:22 - 000000000 ____D C:\Users\sandr\Documents\Mattenstrasse
2017-11-22 14:09 - 2016-11-23 00:36 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-11-21 14:19 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache
2017-11-21 09:45 - 2017-09-20 10:44 - 000000000 ____D C:\Users\r0711\Documents\Visual Studio 2015
2017-11-21 09:15 - 2013-10-31 11:48 - 000545440 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-11-20 14:42 - 2017-03-18 12:40 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-11-20 14:18 - 2017-07-23 17:04 - 000028578 _____ C:\WINDOWS\diagwrn.xml
2017-11-20 14:18 - 2017-07-23 17:04 - 000028578 _____ C:\WINDOWS\diagerr.xml
2017-11-20 11:58 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\Registration
2017-11-20 11:56 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
2017-11-20 08:36 - 2017-09-19 18:36 - 000000000 ____D C:\Users\r0711\Documents\Marketing
2017-11-18 19:38 - 2013-10-31 11:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-11-18 19:29 - 2017-10-13 16:43 - 127017032 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-11-18 19:29 - 2013-10-31 11:49 - 127017032 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-11-16 20:22 - 2017-07-23 16:31 - 000405136 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-11-16 20:19 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\en-GB
2017-11-16 20:19 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\en-GB
2017-11-16 20:19 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-11-16 20:19 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-11-16 20:19 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\Provisioning
2017-11-16 20:19 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-11-16 20:19 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-11-16 12:09 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-16 11:48 - 2017-09-01 11:44 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-11-16 09:21 - 2017-09-20 17:41 - 000002283 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-16 09:21 - 2017-09-20 17:41 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-11-14 17:07 - 2016-01-23 15:22 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-14 17:03 - 2017-09-20 10:19 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2017-11-14 16:53 - 2017-09-20 10:22 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2017-11-14 16:51 - 2017-07-23 16:56 - 000003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-14 16:51 - 2017-07-23 16:56 - 000003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-14 13:34 - 2017-09-20 09:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2017-11-14 13:34 - 2017-09-20 09:25 - 000000000 ____D C:\WINDOWS\system32\1033
2017-11-14 12:54 - 2017-07-23 17:51 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-11-14 12:53 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-11-14 12:42 - 2017-10-09 08:59 - 000000000 ____D C:\Users\r0711\AppData\Local\CrashDumps
2017-11-14 10:56 - 2017-07-23 16:56 - 000004422 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-11-14 10:56 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-11-14 10:56 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-11-13 22:52 - 2017-07-29 23:44 - 000000000 ___RD C:\Users\sandr\OneDrive
2017-11-13 09:26 - 2017-09-20 10:44 - 000000000 ____D C:\Users\r0711\Documents\SQL Server Management Studio
2017-11-12 11:27 - 2017-07-29 23:46 - 000003354 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4243993546-206752626-989636995-1006
2017-11-12 11:27 - 2017-07-29 23:44 - 000002410 _____ C:\Users\sandr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-11-10 09:45 - 2017-09-17 15:26 - 000000000 ____D C:\Users\r0711\AppData\Local\MicrosoftEdge
2017-11-07 08:52 - 2017-09-19 09:00 - 000000000 ____D C:\Users\r0711\Documents\Business Intelligence

==================== Files in the root of some directories =======

2017-09-03 12:29 - 2017-09-04 13:56 - 000037669 _____ () C:\Users\sandr\AppData\Roaming\Comma Separated Values.ADR
2017-09-01 14:18 - 2017-09-03 11:54 - 000036881 _____ () C:\Users\sandr\AppData\Roaming\Durch Trennzeichen getrennte Werte.ADR

Some files in TEMP:
====================
2017-10-22 18:09 - 2014-05-15 17:40 - 001122384 ____N (CANON INC.) C:\Users\r0711\AppData\Local\Temp\MSETUP4.EXE
2017-10-14 09:48 - 2017-10-14 09:48 - 000035680 _____ () C:\Users\sandr\AppData\Local\Temp\i4jdel0.exe
2017-08-29 15:26 - 2013-05-30 08:18 - 000750880 _____ (Alcatel-Lucent) C:\Users\sandr\AppData\Local\Temp\IHU15F0.tmp.exe
2017-08-29 15:26 - 2013-02-14 15:56 - 000751440 _____ (Alcatel-Lucent) C:\Users\sandr\AppData\Local\Temp\IHU8A07.tmp.exe
2017-08-29 15:26 - 2013-02-14 15:56 - 000751440 _____ (Alcatel-Lucent) C:\Users\sandr\AppData\Local\Temp\IHU8B6F.tmp.exe
2017-08-29 15:26 - 2013-02-14 15:56 - 000751440 _____ (Alcatel-Lucent) C:\Users\sandr\AppData\Local\Temp\IHUDD1D.tmp.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-11-30 17:42

==================== End of FRST.txt ============================

--- --- ---

[/CODE]

Disk beinahe immer bei 100% , auch wenn nur ein Program läuft.

Plagegeister aller Art und deren Bekämpfung: Disk beinahe immer bei 100% , auch wenn nur ein Program läuft.

Disk beinahe immer bei 100% , auch wenn nur ein Program läuft.

Ähnliche Themen: Disk beinahe immer bei 100% , auch wenn nur ein Program läuft.