| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Und mal wieder ist alles seeeehr langsam geworden...Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
06.01.2016, 01:18
| #1 |
 |  Und mal wieder ist alles seeeehr langsam geworden... Hallo zusammen, ich mal wieder. Mittlerweile habe ich Windows 10 auf meinem Laptop seit einiger Zeit, es lief auch anfangs sehr gut. Jetzt ist es allerdins so, dass wieder alles sehr langsam geworden ist und auch einige Programme die vorher hilfreich waren so wie Secunia nicht mehr funktionieren. Bin mir nicht sicher ob ich mir vielleicht was eingefangen habe, mein Virenprogramm meldet nichts aber ich merke den Unterschied sehr deutlich. Was kann ich tun? Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-12-2015
durchgeführt von Kristine (Administrator) auf BIGTOY (06-01-2016 01:12:42)
Gestartet von C:\Users\Kristine\Downloads
Geladene Profile: Kristine (Verfügbare Profile: AdMinchen & Kristine & Administrator & Gast)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Intel) C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
() C:\Users\Kristine\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\wimserv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3760456 2013-04-23] (Dell Inc.)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [396688 2015-07-17] ()
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-07-16] (Synaptics Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [102928 2012-10-23] (CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-06] (AVAST Software)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Run: [Epic Privacy Browser Update] => C:\Users\Kristine\AppData\Local\Epic Privacy Browser\Update\EpicUpdate.exe [507560 2015-01-19] (Epic Privacy Browser)
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Run: [Amazon Music] => C:\Users\Kristine\AppData\Local\Amazon Music\Amazon Music Helper.exe [5890368 2015-11-18] ()
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\RunOnce: [Uninstall C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\RunOnce: [Uninstall C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\RunOnce: [Uninstall C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\RunOnce: [Uninstall C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\RunOnce: [Uninstall C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [150528 2015-07-10] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-06] (AVAST Software)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2015-07-10] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2015-07-10] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-11-09]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2014-12-28]
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A9E5C462-FBF2-4D59-9549-9AC520EBB74E}: [DhcpNameServer] 172.168.0.2
Tcpip\..\Interfaces\{b6812221-8119-490c-b613-e8fb08fc1c41}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F71F367D-2A25-444C-8FDC-944AFC710762}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-06] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-06] (AVAST Software)
FireFox:
========
FF ProfilePath: C:\Users\Kristine\AppData\Roaming\Mozilla\Firefox\Profiles\1b0ng33u.default
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-3988005159-474404469-3811382638-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kristine\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-13] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3988005159-474404469-3811382638-1002: @updates.epicbrowser.com/Epic Privacy Browser Update;version=3 -> C:\Users\Kristine\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [2015-01-19] (Epic Privacy Browser)
FF Plugin HKU\S-1-5-21-3988005159-474404469-3811382638-1002: @updates.epicbrowser.com/Epic Privacy Browser Update;version=9 -> C:\Users\Kristine\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [2015-01-19] (Epic Privacy Browser)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-07]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-11-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
Chrome:
=======
CHR HomePage: Default -> hxxp://de.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_fsvideosft_15_16¶m1=1¶m2=f%3D1%26b%3DChrome%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzzyEyD0CyE0CzytAyEtC0FtC0BzytAtN0D0Tzu0StCtBtDtCtN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtCzzzztA0AyEyEtG0D0F0BzztGtDzyyE0BtG0CtAtD0EtGtD0BtBtCyB0E0CtBtCyCtAyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0EtA0CzzyDyE0EtGzy0CtCtBtGyEyEtBtDtG0AyBtByEtGzy0B0E0FyEzz0FyBtDzytDtD2QtN0A0LzuyE%26cr%3D1463948627%26a%3Dwny_fsvideosft_15_16%26os%3DWindows 8.1
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://de-de.facebook.com/","hxxp://www.ebay.de/"
CHR Profile: C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-29]
CHR Extension: (Google Docs) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-29]
CHR Extension: (Google Drive) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-08]
CHR Extension: (Adblock Plus) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-05]
CHR Extension: (Google-Suche) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Tabellen) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-29]
CHR Extension: (Google Docs Offline) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (Avast Online Security) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-05]
CHR Extension: (Ghostery) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2016-01-03]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
CHR Extension: (Google Mail) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-06]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-06] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-11-06] (AVAST Software)
R2 BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [101536 2013-04-16] (Intel)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3736520 2015-01-29] (devolo AG)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-07-17] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [156616 2013-06-26] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-25] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-06-24] (Realtek Semiconductor)
S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-16] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-06] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-11-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-06] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [466400 2015-11-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-06] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-06] (AVAST Software)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [253680 2015-03-19] (Intel Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3496216 2015-07-10] (Intel Corporation)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [450632 2013-02-22] (RTS Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29424 2013-06-04] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-16] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-06 01:11 - 2016-01-06 01:12 - 00023694 _____ C:\Users\Kristine\Downloads\FRST.txt
2016-01-06 01:11 - 2016-01-06 01:11 - 02370560 _____ (Farbar) C:\Users\Kristine\Downloads\FRST64.exe
2016-01-06 00:41 - 2016-01-06 00:41 - 00016148 _____ C:\WINDOWS\system32\BIGTOY_Kristine_HistoryPrediction.bin
2016-01-05 16:18 - 2016-01-05 16:24 - 00003262 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForKristine
2016-01-05 16:18 - 2016-01-05 16:24 - 00000358 _____ C:\WINDOWS\Tasks\HPCeeScheduleForKristine.job
2016-01-04 13:50 - 2016-01-04 13:50 - 00140143 _____ C:\Users\Kristine\Downloads\DHL-Marke-W5B9TDP4U4.pdf
2016-01-02 10:01 - 2016-01-02 10:01 - 00645586 _____ C:\Users\Kristine\Downloads\Produktempfehlungen neu 06.12.15.pdf
2016-01-02 09:56 - 2016-01-02 09:56 - 00838737 _____ C:\Users\Kristine\Downloads\Buchempfehlungen 13.06. 1.pdf
2015-12-25 17:34 - 2015-12-25 17:34 - 00002642 _____ C:\Users\Public\Desktop\Skype.lnk
2015-12-25 17:34 - 2015-12-25 17:34 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-25 17:34 - 2015-12-25 17:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-17 09:28 - 2015-12-17 09:28 - 05967077 _____ C:\Users\Kristine\Downloads\Supplementierung.pdf
2015-12-14 08:25 - 2015-12-14 08:25 - 00094231 _____ C:\Users\Kristine\Documents\versandetikett9.pdf
2015-12-12 09:27 - 2015-12-12 09:27 - 02798183 _____ C:\Users\Kristine\Downloads\Wasserstoffperoxid_Jenschura.pdf
2015-12-09 17:49 - 2015-11-25 05:42 - 24592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-09 17:48 - 2015-12-01 08:01 - 02115936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-09 17:48 - 2015-12-01 06:51 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-12-09 17:48 - 2015-12-01 05:59 - 05455360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-12-09 17:48 - 2015-11-25 06:42 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-12-09 17:48 - 2015-11-25 06:33 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-09 17:48 - 2015-11-25 06:27 - 01366680 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-09 17:48 - 2015-11-25 06:12 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-12-09 17:48 - 2015-11-25 06:09 - 01310880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-09 17:48 - 2015-11-25 06:01 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-09 17:48 - 2015-11-25 05:49 - 01569280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-12-09 17:48 - 2015-11-25 05:44 - 21872640 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-09 17:48 - 2015-11-25 05:37 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-09 17:48 - 2015-11-25 05:36 - 01710592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-09 17:48 - 2015-11-25 05:35 - 00929792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-09 17:48 - 2015-11-25 05:35 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2015-12-09 17:48 - 2015-11-25 05:34 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-09 17:48 - 2015-11-25 05:31 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2015-12-09 17:48 - 2015-11-25 05:30 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2015-12-09 17:48 - 2015-11-25 05:29 - 01649152 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-09 17:48 - 2015-11-25 05:29 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2015-12-09 17:48 - 2015-11-25 05:28 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-09 17:48 - 2015-11-25 05:27 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-12-09 17:48 - 2015-11-25 05:25 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-12-09 17:48 - 2015-11-25 05:23 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-09 17:48 - 2015-11-25 05:23 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-09 17:48 - 2015-11-25 05:23 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-12-09 17:48 - 2015-11-25 05:22 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-09 17:48 - 2015-11-25 05:22 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2015-12-09 17:48 - 2015-11-25 05:19 - 01795584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-12-09 17:48 - 2015-11-25 05:18 - 01233920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-12-09 17:48 - 2015-11-25 05:17 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-12-09 17:48 - 2015-11-25 05:16 - 01442816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2015-12-09 17:48 - 2015-11-25 05:16 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2015-12-09 17:48 - 2015-11-25 05:11 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2015-12-09 17:48 - 2015-11-25 05:10 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-12-09 17:48 - 2015-11-25 05:10 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-09 17:48 - 2015-11-25 05:10 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-09 17:48 - 2015-11-25 05:05 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-09 17:48 - 2015-11-25 05:04 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-09 17:48 - 2015-11-25 05:04 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2015-12-09 17:48 - 2015-11-25 05:04 - 00474624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-12-09 17:47 - 2015-12-01 07:03 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gpuenergydrv.sys
2015-12-09 17:47 - 2015-12-01 06:54 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-12-09 17:47 - 2015-12-01 06:49 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-12-09 17:47 - 2015-12-01 06:02 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-12-09 17:47 - 2015-11-25 06:42 - 00168288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2015-12-09 17:47 - 2015-11-25 06:41 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-09 17:47 - 2015-11-25 06:40 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-12-09 17:47 - 2015-11-25 06:32 - 00113184 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2015-12-09 17:47 - 2015-11-25 06:11 - 01532984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-09 17:47 - 2015-11-25 05:59 - 00092992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2015-12-09 17:47 - 2015-11-25 05:49 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-12-09 17:47 - 2015-11-25 05:49 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-09 17:47 - 2015-11-25 05:49 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2015-12-09 17:47 - 2015-11-25 05:48 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EthernetMediaManager.dll
2015-12-09 17:47 - 2015-11-25 05:48 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMediaManager.dll
2015-12-09 17:47 - 2015-11-25 05:36 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-12-09 17:47 - 2015-11-25 05:30 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-09 17:47 - 2015-11-25 05:30 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2015-12-09 17:47 - 2015-11-25 05:28 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-09 17:47 - 2015-11-25 05:26 - 00849408 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-12-09 17:47 - 2015-11-25 05:26 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-09 17:47 - 2015-11-25 05:25 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2015-12-09 17:47 - 2015-11-25 05:22 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-09 17:47 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll
2015-12-09 17:47 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL
2015-12-09 17:47 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL
2015-12-09 17:47 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL
2015-12-09 17:47 - 2015-11-25 05:19 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-12-09 17:47 - 2015-11-25 05:13 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-09 17:47 - 2015-11-25 05:10 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-09 17:47 - 2015-11-25 05:08 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-12-09 17:47 - 2015-11-25 05:07 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2015-12-09 17:47 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll
2015-12-09 17:47 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL
2015-12-09 17:47 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL
2015-12-09 17:47 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL
2015-12-09 17:47 - 2015-11-25 03:52 - 00775312 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-12-09 17:47 - 2015-11-25 03:52 - 00775312 _____ C:\WINDOWS\system32\locale.nls
2015-12-09 09:02 - 2015-12-09 09:02 - 00188416 _____ C:\Users\Kristine\Downloads\DHL-Marke-ZP92SXWD3Q.pdf
2015-12-09 08:52 - 2015-12-09 08:52 - 00141870 _____ C:\Users\Kristine\Downloads\DHL-Marke-CT62HKR464.pdf
2015-12-09 08:41 - 2016-01-04 13:51 - 00140148 _____ C:\Users\Kristine\Documents\Versandmarke.pdf
2015-12-09 08:41 - 2015-12-09 08:41 - 00142090 _____ C:\Users\Kristine\Downloads\DHL-Marke-HU9AQH2S9V.pdf
2015-12-07 13:08 - 2015-12-07 13:08 - 00118778 _____ C:\Users\Kristine\Documents\rücksendeetikettfire.pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-06 01:12 - 2015-05-26 20:36 - 00000000 ____D C:\FRST
2016-01-06 01:04 - 2015-05-29 19:37 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-06 01:03 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-06 00:21 - 2015-08-01 14:03 - 01793546 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-06 00:21 - 2015-07-10 17:34 - 00773380 _____ C:\WINDOWS\system32\perfh007.dat
2016-01-06 00:21 - 2015-07-10 17:34 - 00154706 _____ C:\WINDOWS\system32\perfc007.dat
2016-01-06 00:21 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2016-01-05 23:34 - 2015-08-01 14:35 - 00000000 ___DC C:\WINDOWS\Panther
2016-01-05 23:34 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-05 23:29 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
2016-01-05 22:38 - 2014-10-30 09:14 - 00004158 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1B06BDCF-A72F-4F75-9CF4-3227545CE179}
2016-01-05 22:13 - 2015-05-29 19:37 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-05 22:11 - 2015-08-01 13:42 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-01-05 22:11 - 2014-10-29 23:38 - 00000000 __SHD C:\Users\Kristine\IntelGraphicsProfiles
2016-01-05 16:24 - 2015-08-01 13:45 - 00000000 ____D C:\Users\Kristine
2016-01-05 16:09 - 2014-10-30 09:44 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-01-05 16:07 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-04 19:09 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-01-04 19:05 - 2015-07-10 13:20 - 00240792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-03 15:36 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-03 02:40 - 2015-07-10 12:06 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-01-03 02:40 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-02 09:53 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-25 17:35 - 2015-04-17 09:16 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Skype
2015-12-25 17:34 - 2015-04-17 09:16 - 00000000 ____D C:\Users\Kristine\AppData\Local\Skype
2015-12-25 17:34 - 2015-04-17 09:15 - 00000000 ____D C:\ProgramData\Skype
2015-12-25 17:29 - 2015-11-07 21:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-17 09:05 - 2015-05-29 19:41 - 00002254 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-14 00:14 - 2015-08-01 14:22 - 00002394 _____ C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-14 00:14 - 2015-08-01 14:22 - 00000000 ___RD C:\Users\Kristine\OneDrive
2015-12-11 19:43 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-12-11 03:36 - 2015-07-10 10:05 - 01048576 ___SH C:\WINDOWS\system32\config\BBI
2015-12-11 03:35 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-11 03:35 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-12-09 18:59 - 2014-10-29 16:42 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-09 18:52 - 2014-10-29 19:50 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-04-16 11:09 - 2015-04-16 11:09 - 0041392 _____ () C:\Users\Kristine\AppData\Local\2B763BC1_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:09 - 0000289 _____ () C:\Users\Kristine\AppData\Local\2B763BC1_stp.CIS.part
2015-04-16 11:35 - 2015-04-16 11:35 - 0045792 _____ () C:\Users\Kristine\AppData\Local\59ED2468_stp.CIS
2015-04-16 11:35 - 2015-04-16 11:35 - 0000289 _____ () C:\Users\Kristine\AppData\Local\59ED2468_stp.CIS.part
2015-04-16 11:09 - 2015-04-16 11:09 - 0385602 _____ () C:\Users\Kristine\AppData\Local\5D515C96_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:35 - 0000220 _____ () C:\Users\Kristine\AppData\Local\5D515C96_stp.CIS.part
2015-04-16 11:09 - 2015-04-16 11:10 - 5529600 _____ () C:\Users\Kristine\AppData\Local\695794C2_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:10 - 0000364 _____ () C:\Users\Kristine\AppData\Local\695794C2_stp.CIS.part
2015-04-16 11:09 - 2015-04-16 11:09 - 1509462 _____ () C:\Users\Kristine\AppData\Local\69DD7379_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:35 - 0000295 _____ () C:\Users\Kristine\AppData\Local\69DD7379_stp.CIS.part
2014-10-29 13:23 - 2014-10-29 13:23 - 0000516 _____ () C:\Users\Kristine\AppData\Local\Application.xml
2015-03-13 21:26 - 2015-03-13 21:26 - 0007601 _____ () C:\Users\Kristine\AppData\Local\resmon.resmoncfg
2015-08-01 13:40 - 2015-08-01 13:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-12-18 12:48 - 2015-11-09 09:50 - 0015271 _____ () C:\ProgramData\hpzinstall.log
2013-10-19 15:09 - 2013-10-19 15:10 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2013-10-19 15:05 - 2013-10-19 15:06 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2013-10-19 15:06 - 2013-10-19 15:08 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2013-10-19 15:04 - 2013-10-19 15:05 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2013-10-19 15:08 - 2013-10-19 15:09 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
Einige Dateien in TEMP:
====================
C:\Users\Kristine\AppData\Local\Temp\ACLMInstaller.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-01-04 15:51
==================== Ende von FRST.txt ============================
HTML-Code: Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Kristine (2016-01-06 01:13:23)
Gestartet von C:\Users\Kristine\Downloads
Windows 10 Home (X64) (2015-08-01 13:17:49)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
AdMinchen (S-1-5-21-3988005159-474404469-3811382638-1001 - Administrator - Enabled) => C:\Users\AdMinchen
Administrator (S-1-5-21-3988005159-474404469-3811382638-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-3988005159-474404469-3811382638-503 - Limited - Disabled)
Gast (S-1-5-21-3988005159-474404469-3811382638-501 - Limited - Disabled) => C:\Users\Gast
Kristine (S-1-5-21-3988005159-474404469-3811382638-1002 - Administrator - Enabled) => C:\Users\Kristine
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Amazon Music (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Amazon Amazon Music) (Version: 3.11.5.1140 - Amazon Services LLC)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.1.2241 - AVAST Software)
B110 (x32 Version: 140.0.353.000 - Hewlett-Packard) Hidden
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.4 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.4 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{693A23FB-F28B-4F7A-A720-4C1263F97F43}) (Version: 3.1.1002.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.16.1 - Dell Inc.)
Dell System Detect (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\73f463568823ebbe) (Version: 5.14.0.9 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.2 - Synaptics Incorporated)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.0.0 - devolo AG)
DSC/AA Factory Installer (Version: 3.4.6299.48 - PC-Doctor, Inc.) Hidden
Epic Privacy Browser (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Epic) (Version: 40.0.2214.91 - Epic)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free YouTube Download version 3.2.56.324 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.56.324 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{C63184F3-8343-408F-A948-DDB0AC969A99}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{8F1A441E-AD6D-4732-BD6A-F38D5F1D1E47}) (Version: 12.0.30.219 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1306-148929CC1385}) (Version: 3.1.1306.0354 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C605440F-2748-435F-9F29-EB1C8134856F}) (Version: 4.1.17.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 de)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.4.6299.48 - PC-Doctor, Inc.)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.311.0 - Tracker Software Products Ltd)
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.365.000 - Hewlett-Packard) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.12 - Dell Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C9661090-C134-46E8-90B2-76D72355C2A6}) (Version: 6.2.9200.21220 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SafeZone Stable 1.46.1990.55 (x32 Version: 1.46.1990.55 - Avast Software) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Unity Web Player (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\UnityWebPlayer) (Version: 4.6.4f1 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3988005159-474404469-3811382638-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {05798B22-85B6-43C4-9945-4D50CFB7515A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-28] (Hewlett-Packard)
Task: {1800651C-F55A-493E-9941-A5152A785DDB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {19441F42-5B9F-402D-826B-948A85242F82} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {263D96B1-9FE2-4FDD-9697-B8E3C4643680} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {28BD1CCF-F845-4D04-9AFC-837BA60D3C61} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {3CD864E3-4BAD-45B9-9648-ACE6C28746BA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
Task: {45B14A76-BE12-4C1A-827A-F7FD8665A9AE} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-12-03] (CyberLink)
Task: {4C6A8480-7B3E-4138-91A8-1892CB97F6CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-28] (Hewlett-Packard)
Task: {4E882FB7-FE43-48F9-9513-F06DFA51F11F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {5057FA2B-B885-4A2E-951A-417185B9F50D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {50AFED1F-34E0-4AE6-B91E-3D0DE993BBE6} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {6C296830-41BA-484A-9452-985370E85507} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {6F937A31-B21A-4012-8B6B-D9E46B06B044} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {782F652B-6B3F-4E8F-8192-34AADEFECC94} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
Task: {7C99A9E7-C2A3-4A34-9450-D835F2FE0820} - System32\Tasks\Dell\Dell System Registration => /boot /LSRC=autolaunch
Task: {7E375414-79D4-4E94-B291-CFF9E19B6930} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {7E9238EB-B9AA-495E-95AD-816A089EDB50} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-12-03] (CyberLink Corp.)
Task: {80D80646-FBA9-4A75-9121-E11ECC1187EC} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
Task: {875D8132-6F4A-4216-8F9A-0967E1B7463E} - \SystemToolsDailyTest -> Keine Datei <==== ACHTUNG
Task: {87B89A08-6197-4C78-8EBB-89C3861545F4} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-11-06] (AVAST Software)
Task: {8B6807D0-2EF5-47CC-A147-A04E2F3E27A2} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {96EEEA72-F2C6-4E14-9B05-CD2A4D7B5AEB} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
Task: {9A497E80-312E-410E-BDB8-36D0B9A85BAA} - System32\Tasks\SafeZone scheduled Autoupdate 1446887338 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2015-10-30] (Avast Software)
Task: {A20B2CAE-96B0-4388-B8C9-A8AC43E1FEAA} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {A20D8F84-8E02-47C1-8D65-1487750E1BDE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {B429FD9F-20EF-4F8E-B256-716FCABB16E6} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {B50A5BB8-7660-4B28-AA21-AEB5007BB8A2} - System32\Tasks\HPCeeScheduleForKristine => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {BB1A289D-30C4-42B6-AE24-B9CBC83F8489} - \PCDEventLauncherTask -> Keine Datei <==== ACHTUNG
Task: {BEFA1D73-6394-4234-AF7B-9780E81512CF} - \PCDoctorBackgroundMonitorTask -> Keine Datei <==== ACHTUNG
Task: {C60056AC-03F3-40C1-9631-B29FABE453A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {E4A66850-28BA-477B-8715-E93907E653CC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {F2B9205C-EBFB-4852-A5DC-3861B4A0068F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {F30EBA22-D988-4DE1-BB72-8CD0A86291B1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {FA1DE3F1-062B-4325-86CE-CC348B2BAB3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForKristine.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\WebReg HP Photosmart B110 series.job => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwrg.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-07-10 12:00 - 2015-07-10 12:00 - 00028160 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-08-01 14:31 - 2015-08-01 14:31 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2013-10-19 15:08 - 2012-04-25 03:43 - 00254512 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2015-10-06 14:53 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-06 14:53 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-10-06 14:53 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-09 17:48 - 2015-11-25 05:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-09 17:47 - 2015-11-25 05:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-09 17:47 - 2015-11-25 05:24 - 00884736 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2015-12-09 17:48 - 2015-11-25 05:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-06 14:53 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:45 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-07-17 23:35 - 2015-07-17 23:35 - 00396688 _____ () C:\WINDOWS\system32\igfxTray.exe
2015-01-23 20:47 - 2015-11-18 22:36 - 05890368 _____ () C:\Users\Kristine\AppData\Local\Amazon Music\Amazon Music Helper.exe
2015-12-09 17:47 - 2015-11-25 05:18 - 00928768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesBackgroundTasks.dll
2015-10-06 14:53 - 2015-09-17 06:43 - 02028544 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesService.dll
2015-12-09 17:47 - 2015-11-25 05:17 - 00619008 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SignalsManager.dll
2015-12-10 16:16 - 2015-12-10 16:16 - 00012800 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-12-10 16:16 - 2015-12-10 16:16 - 11542016 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-11-20 17:46 - 2015-11-20 17:46 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2015-08-19 22:41 - 2015-08-11 10:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-04 19:07 - 2016-01-04 19:07 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010401\algo.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 00466448 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-05 16:11 - 2016-01-05 16:11 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\16010500\algo.dll
2015-03-16 10:28 - 2015-03-16 10:28 - 00155528 _____ () C:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2015-03-13 11:41 - 2013-09-03 22:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-12-17 09:05 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 09:05 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-10-19 15:06 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 10:34 - 2012-06-08 10:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\dell.com -> dell.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2014-12-24 22:41 - 00000035 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Kristine\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\StartupApproved\Run: => "Epic Privacy Browser Update"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\StartupApproved\Run: => "Skype"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{1035C877-6498-485A-8AFD-CD12D0B4CB34}C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe] => (Allow) C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe
FirewallRules: [TCP Query User{06CD9EF3-8E06-4623-8944-B7B4C34C37A7}C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe] => (Allow) C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe
FirewallRules: [{C25A6807-195F-4B48-B270-F944E9C7492E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2ED3DE7C-F749-4DB0-9733-5B1AC4B5C4F1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{37139FD0-24C6-4C24-924E-010087E251D4}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{0DF78DE1-894E-48D9-8767-AD1C51DE6C96}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{D783AD9E-084F-43BE-911E-D0FEDF7CC01A}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{2469D16B-E57D-4842-A6C6-3CCB34488C70}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{FC098D40-6B69-42FF-B715-C5C4577AE928}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{79E5CF38-A876-4E40-A631-E8FFAF6B9256}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{B3C63F34-D962-48AE-8B46-78B0F8BBBBF8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{A34FE6C6-B9A2-479A-AB55-A0362A19864F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{F9E9A34D-ECF3-46EF-B577-1FCC222F99D2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{D10E4726-8A92-471B-823C-2504AA686222}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{2FCC3060-781E-41B9-B18A-5AD16EEC093C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{ECC5892B-225D-47FD-9C14-08F59B90A010}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{E397EFB3-5CC6-47A9-B773-290BAEC8B56D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{CC382578-655D-4642-829A-6D96F7282993}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{45D1037C-D24C-404C-B3AB-8D9CE6750D36}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{5F2AB45B-A034-41FB-951E-849A2E827EC2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{CCDB7D87-5421-40F0-A0FA-5D14A3951B9B}] => (Allow) C:\Users\AdMinchen\AppData\Local\Temp\7zS39DC\setup\hpznui40.exe
FirewallRules: [{90DD04DF-9A12-4DB0-B4D4-FC52BB2927A5}] => (Allow) C:\Users\AdMinchen\AppData\Local\Temp\7zS349A\hppiw.exe
FirewallRules: [{7BC06341-62B7-4FD7-8176-8E7F07C1F277}] => (Allow) C:\Users\AdMinchen\AppData\Local\Temp\7zS349A\hppiw.exe
FirewallRules: [{44344303-EF40-4BD7-BF97-4E08B793F8F3}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{E61FDE90-E2F3-4685-876E-980A5E9A92C6}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{EDE1EF0C-59DE-4E56-AF9E-17C38347B143}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{422AC016-C26D-441B-9A82-843432D93834}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{B730500A-96FF-473E-B907-C7B2C6F8101A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{80A0A84D-85D7-4DB3-8D3F-7B857B2EC874}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{B90F6656-F6C3-4732-9ACB-4B24BDD694AD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{354BA047-B518-43BB-8F13-B636FCD80E4A}] => (Allow) LPort=2869
FirewallRules: [{E81C6E62-6C2B-47C2-BD77-1B0906FADF5B}] => (Allow) LPort=1900
FirewallRules: [{4146153E-4758-4BA3-A7BD-FA74E1B3496E}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{50759A68-6EAD-4DD9-8BCB-13B9A3AAFF82}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{4F42101A-F72C-40A9-94A7-9161936B88F0}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{69C28607-22C3-4183-9615-F5436519C4A1}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{BA3FC1EF-64E2-4DD8-978A-53CDA64B37BB}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{1BFC5DAF-EDC3-4801-8B06-5CDFC5B514DB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F10B1630-98E9-47E9-969C-6705E2966BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8E12099F-AA65-4BA5-9105-C766C3E4BD47}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
30-11-2015 10:47:51 Geplanter Prüfpunkt
09-12-2015 18:49:47 Windows Update
09-12-2015 18:51:23 Windows Update
25-12-2015 17:29:49 ASU_MSI_TRAN
05-01-2016 16:25:32 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/06/2016 12:43:54 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/06/2016 12:42:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/06/2016 12:41:06 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/06/2016 12:31:22 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/06/2016 12:20:12 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/06/2016 12:05:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/05/2016 11:17:15 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/05/2016 04:25:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (01/05/2016 04:13:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: PSIA.exe, Version: 3.0.0.10004, Zeitstempel: 0x54784a82
Name des fehlerhaften Moduls: PSIA.exe, Version: 3.0.0.10004, Zeitstempel: 0x54784a82
Ausnahmecode: 0xc0000409
Fehleroffset: 0x00093524
ID des fehlerhaften Prozesses: 0xb30
Startzeit der fehlerhaften Anwendung: 0xPSIA.exe0
Pfad der fehlerhaften Anwendung: PSIA.exe1
Pfad des fehlerhaften Moduls: PSIA.exe2
Berichtskennung: PSIA.exe3
Vollständiger Name des fehlerhaften Pakets: PSIA.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: PSIA.exe5
Error: (01/05/2016 04:10:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_MapsBroker, Version: 10.0.10240.16384, Zeitstempel: 0x559f38cb
Name des fehlerhaften Moduls: MosHostCore.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f3908
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000096f2
ID des fehlerhaften Prozesses: 0x1250
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_MapsBroker0
Pfad der fehlerhaften Anwendung: svchost.exe_MapsBroker1
Pfad des fehlerhaften Moduls: svchost.exe_MapsBroker2
Berichtskennung: svchost.exe_MapsBroker3
Vollständiger Name des fehlerhaften Pakets: svchost.exe_MapsBroker4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe_MapsBroker5
Systemfehler:
=============
Error: (01/06/2016 12:44:10 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
Error: (01/06/2016 12:42:02 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
Error: (01/06/2016 12:07:27 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
Error: (01/05/2016 11:18:25 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
Error: (01/05/2016 10:14:38 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
Error: (01/05/2016 10:14:25 PM) (Source: DCOM) (EventID: 10016) (User: BIGTOY)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}BigToyKristineS-1-5-21-3988005159-474404469-3811382638-1002LocalHost (unter Verwendung von LRPC)Microsoft.WindowsStore_2015.25.5.0_x64__8wekyb3d8bbweS-1-15-2-1609473798-1231923017-684268153-4268514328-882773646-2760585773-1760938157
Error: (01/05/2016 04:40:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/05/2016 04:40:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/05/2016 04:40:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/05/2016 04:40:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-4500U CPU @ 1.80GHz
Prozentuale Nutzung des RAM: 37%
Installierter physikalischer RAM: 8090.57 MB
Verfügbarer physikalischer RAM: 5020.29 MB
Summe virtueller Speicher: 9370.57 MB
Verfügbarer virtueller Speicher: 5715.38 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:917.09 GB) (Free:531.99 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 26894598)
Partition: GPT.
==================== Ende von Addition.txt ============================
__________________ Gruß, Kristine  |
|
06.01.2016, 17:57
| #2 |
| /// TB-Ausbilder   | Und mal wieder ist alles seeeehr langsam geworden... Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Bitte beachte folgende Hinweise:
Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Danke für deine Mitarbeit! Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Bitte poste mit deiner nächsten Antwort
|
|
06.01.2016, 23:24
| #3 |
| | Und mal wieder ist alles seeeehr langsam geworden... Hallo Matthias,
__________________vielen Dank für deine Hilfe, hier der Reporttext in 2 Teilen: Code:
ATTFilter 23:10:50.0269 0x0a10 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
23:10:50.0274 0x0a10 UEFI system
23:10:56.0269 0x0a10 ============================================================
23:10:56.0269 0x0a10 Current date / time: 2016/01/06 23:10:56.0269
23:10:56.0269 0x0a10 SystemInfo:
23:10:56.0269 0x0a10
23:10:56.0269 0x0a10 OS Version: 10.0.10240 ServicePack: 0.0
23:10:56.0269 0x0a10 Product type: Workstation
23:10:56.0269 0x0a10 ComputerName: BIGTOY
23:10:56.0270 0x0a10 UserName: Kristine
23:10:56.0270 0x0a10 Windows directory: C:\WINDOWS
23:10:56.0270 0x0a10 System windows directory: C:\WINDOWS
23:10:56.0270 0x0a10 Running under WOW64
23:10:56.0270 0x0a10 Processor architecture: Intel x64
23:10:56.0270 0x0a10 Number of processors: 4
23:10:56.0270 0x0a10 Page size: 0x1000
23:10:56.0270 0x0a10 Boot type: Normal boot
23:10:56.0270 0x0a10 ============================================================
23:10:56.0650 0x0a10 KLMD registered as C:\WINDOWS\system32\drivers\69575060.sys
23:10:57.0204 0x0a10 System UUID: {EB801156-1E48-DF65-18EF-4F2A65B735E4}
23:10:58.0116 0x0a10 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:10:58.0131 0x0a10 ============================================================
23:10:58.0131 0x0a10 \Device\Harddisk0\DR0:
23:10:58.0131 0x0a10 GPT partitions:
23:10:58.0132 0x0a10 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {2A422644-6892-4118-8143-99835E955C64}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0xFA000
23:10:58.0132 0x0a10 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {796BADD3-6BBF-4D9F-B631-466EB71A4965}, UniqueGUID: {3C3B67F3-7195-44A6-924E-80E4606B809B}, Name: Basic data partition, StartLBA 0xFA800, BlocksNum 0x14000
23:10:58.0132 0x0a10 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {EB268754-2014-4E6C-8D51-02F353EEE079}, Name: Microsoft reserved partition, StartLBA 0x10E800, BlocksNum 0x40000
23:10:58.0132 0x0a10 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {8F7135BB-6E74-46FA-908C-41032F72A0AE}, Name: Basic data partition, StartLBA 0x14E800, BlocksNum 0xF5000
23:10:58.0132 0x0a10 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {D08A561C-6F2D-4E43-AF89-16779E72E9EA}, Name: Basic data partition, StartLBA 0x243800, BlocksNum 0x72A2F800
23:10:58.0133 0x0a10 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {20CEB13F-BF38-42A4-A1A0-4962C3CDD750}, Name: , StartLBA 0x72C73000, BlocksNum 0xE1000
23:10:58.0133 0x0a10 \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {DD558113-D4FC-4F5C-8EC4-48D7D191288B}, Name: , StartLBA 0x72D54000, BlocksNum 0xAF000
23:10:58.0133 0x0a10 \Device\Harddisk0\DR0\Partition8: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {ABABA947-3D5A-4516-B961-EFB067690CB4}, Name: Microsoft recovery partition, StartLBA 0x72E03000, BlocksNum 0x19035B0
23:10:58.0133 0x0a10 MBR partitions:
23:10:58.0133 0x0a10 ============================================================
23:10:58.0172 0x0a10 C: <-> \Device\Harddisk0\DR0\Partition5
23:10:58.0172 0x0a10 ============================================================
23:10:58.0172 0x0a10 Initialize success
23:10:58.0172 0x0a10 ============================================================
23:11:43.0815 0x1978 ============================================================
23:11:43.0815 0x1978 Scan started
23:11:43.0815 0x1978 Mode: Manual; SigCheck; TDLFS;
23:11:43.0815 0x1978 ============================================================
23:11:43.0815 0x1978 KSN ping started
23:11:46.0352 0x1978 KSN ping finished: true
23:11:50.0187 0x1978 ================ Scan system memory ========================
23:11:50.0187 0x1978 System memory - ok
23:11:50.0187 0x1978 ================ Scan services =============================
23:11:50.0377 0x1978 [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
23:11:50.0625 0x1978 1394ohci - ok
23:11:50.0656 0x1978 [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
23:11:50.0718 0x1978 3ware - ok
23:11:50.0766 0x1978 [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
23:11:50.0841 0x1978 ACPI - ok
23:11:50.0882 0x1978 [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
23:11:50.0982 0x1978 acpiex - ok
23:11:50.0992 0x1978 [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
23:11:51.0082 0x1978 acpipagr - ok
23:11:51.0124 0x1978 [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
23:11:51.0209 0x1978 AcpiPmi - ok
23:11:51.0227 0x1978 [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
23:11:51.0332 0x1978 acpitime - ok
23:11:51.0408 0x1978 [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
23:11:51.0517 0x1978 ADP80XX - ok
23:11:51.0578 0x1978 [ A3D96563BF46FC8A0E5756B796127D14, BAD3C30714F6514D2AF725077A79FF671CC022E415786E1666C0B7C24CE3670A ] AFD C:\WINDOWS\system32\drivers\afd.sys
23:11:51.0634 0x1978 AFD - ok
23:11:51.0667 0x1978 [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
23:11:51.0709 0x1978 agp440 - ok
23:11:51.0752 0x1978 [ 8A289EF0721F95267BF2404BABEE146D, E263D258F03DF3BB405D49AE7230C37E7EB8F392FDEE48059C7C1E3709520D35 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
23:11:51.0855 0x1978 ahcache - ok
23:11:51.0880 0x1978 [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter C:\WINDOWS\System32\AJRouter.dll
23:11:51.0942 0x1978 AJRouter - ok
23:11:52.0030 0x1978 [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG C:\WINDOWS\System32\alg.exe
23:11:52.0088 0x1978 ALG - ok
23:11:52.0141 0x1978 [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
23:11:52.0264 0x1978 AmdK8 - ok
23:11:52.0289 0x1978 [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
23:11:52.0364 0x1978 AmdPPM - ok
23:11:52.0381 0x1978 [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
23:11:52.0428 0x1978 amdsata - ok
23:11:52.0476 0x1978 [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
23:11:52.0517 0x1978 amdsbs - ok
23:11:52.0532 0x1978 [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
23:11:52.0567 0x1978 amdxata - ok
23:11:52.0590 0x1978 [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID C:\WINDOWS\system32\drivers\appid.sys
23:11:52.0627 0x1978 AppID - ok
23:11:52.0656 0x1978 [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
23:11:52.0759 0x1978 AppIDSvc - ok
23:11:52.0773 0x1978 [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo C:\WINDOWS\System32\appinfo.dll
23:11:52.0823 0x1978 Appinfo - ok
23:11:52.0865 0x1978 [ A8AC0B8ED134888731D1A1BCEF930FA1, 917D2C99CB28C5F20BA386148B6A93541AEF900A9A99D310D732B501322945E5 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
23:11:52.0939 0x1978 AppReadiness - ok
23:11:53.0001 0x1978 [ D6D96E20079D902243690DCBB007F997, 4E3FAED92F6434D689CCC7AE3A077819BCD2E99D7D2C293563B2E0DCF08CC42F ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
23:11:53.0105 0x1978 AppXSvc - ok
23:11:53.0126 0x1978 [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
23:11:53.0170 0x1978 arcsas - ok
23:11:53.0192 0x1978 [ D34E4A194A595FDBCBB314B68C3DC833, D62134F8D90258DAD2376C8C69BB5324AB0B2F73CB62C2CF5E2CC7370F9FC138 ] aswHwid C:\WINDOWS\system32\drivers\aswHwid.sys
23:11:53.0219 0x1978 aswHwid - ok
23:11:53.0247 0x1978 [ F3563782C54609473EA824517636AE3F, B25196458FF158E71F720BD32110C4E5DFDD579D51B228F9073BC4A4A14E844D ] aswKbd C:\WINDOWS\system32\drivers\aswKbd.sys
23:11:53.0293 0x1978 aswKbd - ok
23:11:53.0325 0x1978 [ 7B2E6767FA25540C400CFDA8E7E4FB11, 9757C56BEABBBB26BB23D125D0DE7BF954585F7E987F48B0E20D52C32A6FADC1 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
23:11:53.0388 0x1978 aswMonFlt - ok
23:11:53.0444 0x1978 [ 19E98B65B94991D150AD430BFEF81C7A, 2EC401973D43394835411D4C814DFC2408B6F175FCB663577544CC3325AB2ECA ] aswNdisFlt C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys
23:11:53.0536 0x1978 aswNdisFlt - ok
23:11:53.0560 0x1978 [ 6D1E4B74AA1E8C3C41EE601C2C8490ED, ED5AA1EB6172D57921C40422C5D44E5E6C86919880023B5FF452BD258C19A196 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr2.sys
23:11:53.0575 0x1978 aswRdr - ok
23:11:53.0602 0x1978 [ 4ACDEA0ABC0EB8519E51D370F0D036FB, 9A13DF4AAEE76C38E2D7C1382E8C225F368CD829950B20221615F81D8C40DE35 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
23:11:53.0630 0x1978 aswRvrt - ok
23:11:53.0672 0x1978 [ ED9451A5BA5940D90A9464A901D08844, 455727645069C5F87DE91D650C043954BE21024F4986AE56893A0F4B108E2CB3 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
23:11:53.0750 0x1978 aswSnx - ok
23:11:53.0778 0x1978 [ F667A04F874F39125489984F36620CC2, AB69126160FA75E10B9FEFBF1F09FB12FA3E7E597146CEAEB6C8E0FB8A84F1BD ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
23:11:53.0794 0x1978 aswSP - ok
23:11:53.0820 0x1978 [ 9F3215B03BE9F28D1F2FDBECDE5302E1, DEF40008924A7453589939D49BC24EDE3CFC3A444EA0909EBAD6961DE66211E1 ] aswStm C:\WINDOWS\system32\drivers\aswStm.sys
23:11:53.0830 0x1978 aswStm - ok
23:11:53.0856 0x1978 [ ADD0EC73AEFBC170E5B8C4734DB74AA0, D33665EB079C1BEC2CA65E97064375FB423118BD1D943B1339E9FA44F64FC4F4 ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
23:11:53.0888 0x1978 aswVmm - ok
23:11:53.0925 0x1978 [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac C:\WINDOWS\System32\drivers\asyncmac.sys
23:11:54.0016 0x1978 AsyncMac - ok
23:11:54.0034 0x1978 [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
23:11:54.0051 0x1978 atapi - ok
23:11:54.0116 0x1978 [ 240FF83DD79546B26F187FAB20F83864, C4DC0159016B4A4630357131E614814C068D07BEA94AAF6393E882A78C9FCA1E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
23:11:54.0251 0x1978 AudioEndpointBuilder - ok
23:11:54.0298 0x1978 [ 6300722E8527EC54D426FD00EE5196B2, 71376BE797E8F3E2E671167DA400239D5289DE7EE56CF29564C98715B9DB1D09 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
23:11:54.0393 0x1978 Audiosrv - ok
23:11:54.0469 0x1978 [ 199D3FA1AF32FCE46A38E8EB64FFF520, 49B15E568AAC2A7B4A322827F743BA9BC09D11E830F6C00F1F48B7C83A474626 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
23:11:54.0493 0x1978 avast! Antivirus - ok
23:11:54.0524 0x1978 [ 945697058B2A6EBB3155FB6BB3399F57, 215E83369180AC8E12B3F350EBEAAFB84E476995A1CB4DD43DD398837A058516 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
23:11:54.0534 0x1978 avast! Firewall - ok
23:11:54.0537 0x1978 AvastVBoxSvc - ok
23:11:54.0583 0x1978 [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
23:11:54.0613 0x1978 AxInstSV - ok
23:11:54.0650 0x1978 [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
23:11:54.0689 0x1978 b06bdrv - ok
23:11:54.0715 0x1978 [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
23:11:54.0814 0x1978 BasicDisplay - ok
23:11:54.0835 0x1978 [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
23:11:54.0897 0x1978 BasicRender - ok
23:11:54.0925 0x1978 [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
23:11:54.0963 0x1978 bcmfn2 - ok
23:11:55.0003 0x1978 [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
23:11:55.0082 0x1978 BDESVC - ok
23:11:55.0122 0x1978 [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
23:11:55.0187 0x1978 Beep - ok
23:11:55.0242 0x1978 [ 7FAFFFC4C59F5010D6E7CEA152076B92, 945FD6C04E109D4E5A4164BAA9A8120EC85AB809555AAD83E61B9F179F976FD7 ] BFE C:\WINDOWS\System32\bfe.dll
23:11:55.0322 0x1978 BFE - ok
23:11:55.0396 0x1978 [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS C:\WINDOWS\System32\qmgr.dll
23:11:55.0526 0x1978 BITS - ok
23:11:55.0547 0x1978 [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
23:11:55.0624 0x1978 bowser - ok
23:11:55.0702 0x1978 [ BFBA5FAC5169821FC768E96443A8B8C1, 47DEE5A62BA802A58E06BA087756903839E3DFF1555F7506712C82E5ADD34AC1 ] BrcmSetSecurity C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
23:11:55.0711 0x1978 BrcmSetSecurity - ok
23:11:55.0746 0x1978 [ 3A4A543F135DE9A06ABA9DF982D79DD7, ABA165435C27BE15D7EBD3E7D023E295CB7AE2A099DF9E253C78EC45EADD75EA ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
23:11:55.0811 0x1978 BrokerInfrastructure - ok
23:11:55.0841 0x1978 [ 2AAD720B32904B97EDD8C3211344F79E, 41B1AEA5FAA48033B2581E18D68EFC986C3D65B383847E250C054CE3133A893C ] Browser C:\WINDOWS\System32\browser.dll
23:11:55.0879 0x1978 Browser - ok
23:11:55.0905 0x1978 [ 23146B48025E0C873FF10931F181589D, D55736C61A875551671981F76F8BAEF37560D8994EC17FBFFCDC0DB5206E8E65 ] BthA2DP C:\WINDOWS\system32\drivers\BthA2DP.sys
23:11:56.0008 0x1978 BthA2DP - ok
23:11:56.0026 0x1978 [ F8DD3B0EAC1EF1D087AE47E5819540AC, 866C951B52E3202AC89552AEA72A45123367199335578F03815E2ED55DA2FDAE ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
23:11:56.0099 0x1978 BthAvrcpTg - ok
23:11:56.0121 0x1978 [ 74C9D52F3F594529465E18B2BFF80487, F1ECD8B730AD8B90673735FD6D2D9F6F0754F8BAB7135B16A41128145D5F9377 ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
23:11:56.0224 0x1978 BthEnum - ok
23:11:56.0240 0x1978 [ A0060186F66850FFA56E9CC251735679, 599C6765D8ED9BAE1AC1493B079308DFCB557B0E1F861D5D48BF893E25353A32 ] BthHFAud C:\WINDOWS\system32\DRIVERS\BthHfAud.sys
23:11:56.0313 0x1978 BthHFAud - ok
23:11:56.0342 0x1978 [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
23:11:56.0436 0x1978 BthHFEnum - ok
23:11:56.0478 0x1978 [ B95040CAD3434D9EE003065363A0FAFF, D441E0676EA1AE1ABC305732024311CA59715E6763B3D7ADB728DEEFC403E182 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
23:11:56.0528 0x1978 bthhfhid - ok
23:11:56.0581 0x1978 [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
23:11:56.0614 0x1978 BthHFSrv - ok
23:11:56.0638 0x1978 [ 986F756D10B5A2B3971A03BD6308B94F, BEDEFD7470155621365439858B35239D4474487873431E67B01A4B7D56E7CE76 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
23:11:56.0713 0x1978 BthLEEnum - ok
23:11:56.0754 0x1978 [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
23:11:56.0823 0x1978 BTHMODEM - ok
23:11:56.0839 0x1978 [ 38C97371F058E889F730BF35530732F4, 7CD16DF9C51D40CF80392E6DF444D6F5546B0E8B6A6DAC6DFD70BB45E014FA27 ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys
23:11:56.0891 0x1978 BthPan - ok
23:11:56.0955 0x1978 [ FCC211B0F46D831506D0D76539203899, A2609658AE36EB0FE4CFAA00684986193FEACED7BA8D869A9DF8D03312E53169 ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
23:11:57.0056 0x1978 BTHPORT - ok
23:11:57.0099 0x1978 [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv C:\WINDOWS\system32\bthserv.dll
23:11:57.0123 0x1978 bthserv - ok
23:11:57.0264 0x1978 [ 5866AE46EEF644E6DE5C95942AE419D7, 0726C0845D2BA4247AB26ACF05006F6FA96015158CD49795801BB906DA80C007 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
23:11:57.0375 0x1978 BTHUSB - ok
23:11:57.0405 0x1978 [ 854AF190F55E6D70EC65A85798F896E2, 6D39F9131BE93F934502BA1DB109E7AD35D3987B636F7B32F9C34823DF25746B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
23:11:57.0513 0x1978 buttonconverter - ok
23:11:57.0534 0x1978 [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg C:\WINDOWS\System32\drivers\capimg.sys
23:11:57.0584 0x1978 CapImg - ok
23:11:57.0620 0x1978 [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
23:11:57.0678 0x1978 cdfs - ok
23:11:57.0707 0x1978 [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
23:11:57.0743 0x1978 CDPSvc - ok
23:11:57.0760 0x1978 [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
23:11:57.0824 0x1978 cdrom - ok
23:11:57.0856 0x1978 [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
23:11:57.0901 0x1978 CertPropSvc - ok
23:11:57.0921 0x1978 [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass C:\WINDOWS\System32\drivers\circlass.sys
23:11:57.0979 0x1978 circlass - ok
23:11:58.0010 0x1978 [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
23:11:58.0062 0x1978 CLFS - ok
23:11:58.0107 0x1978 [ 5C4648673693724C8D4A1A92E1AA06E6, 5D548241715687BFA52E40B867EF73CB45D01B7F9A9B7F00B92BF2B4C97BE1D0 ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
23:11:58.0139 0x1978 ClipSVC - ok
23:11:58.0189 0x1978 [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
23:11:58.0211 0x1978 CLVirtualDrive - ok
23:11:58.0235 0x1978 [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
23:11:58.0317 0x1978 CmBatt - ok
23:11:58.0359 0x1978 [ 3B64DA873CEA5BEC42570BFF1054A014, 3649B25855CB9BE5BA3B3FEE4221575381FB2D488B8B050B5DD0088386AA0F7B ] CNG C:\WINDOWS\system32\Drivers\cng.sys
23:11:58.0474 0x1978 CNG - ok
23:11:58.0498 0x1978 [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
23:11:58.0529 0x1978 cnghwassist - ok
23:11:58.0622 0x1978 [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
23:11:58.0706 0x1978 CompositeBus - ok
23:11:58.0716 0x1978 COMSysApp - ok
23:11:58.0738 0x1978 [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv C:\WINDOWS\system32\drivers\condrv.sys
23:11:58.0802 0x1978 condrv - ok
23:11:58.0868 0x1978 [ 8AFDD74F2DC5BAD9B2215FB19DB65240, A2BDDA4C77C63D3D8E9F1D397D7B41EC1BF093A6399C14D311D4D230B5F1E093 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
23:11:58.0910 0x1978 CoreMessagingRegistrar - ok
23:11:59.0004 0x1978 [ A6B9FD89353D6005DD74485F591F2A83, 1148FDAC0C4B01E9F7C925E22F0E13CA0ECA3DB8AE13F3303E99AB03D4E7B644 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
23:11:59.0019 0x1978 cphs - ok
23:11:59.0061 0x1978 [ 35DB06AACD8AD5999161DA71FF0E16F0, 22AD27811AAD14666ACEF4115447B0CFAA70D1E73923059FB2A9B4C3CBE500A6 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
23:11:59.0155 0x1978 CryptSvc - ok
23:11:59.0187 0x1978 [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam C:\WINDOWS\system32\drivers\dam.sys
23:11:59.0269 0x1978 dam - ok
23:11:59.0354 0x1978 [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
23:11:59.0424 0x1978 DcomLaunch - ok
23:11:59.0465 0x1978 [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc C:\WINDOWS\system32\dcpsvc.dll
23:11:59.0536 0x1978 DcpSvc - ok
23:11:59.0588 0x1978 [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc C:\WINDOWS\System32\defragsvc.dll
23:11:59.0638 0x1978 defragsvc - ok
23:11:59.0720 0x1978 [ 188BCE1A33FAEE1F19A8D8875B0781DC, 0167783D063826325C856FC0FC0595A9E53F22D655D450EE01F04AB30EC6CECA ] DellDigitalDelivery C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
23:11:59.0749 0x1978 DellDigitalDelivery - ok
23:11:59.0785 0x1978 [ DC253191A553DACA7684CFB5B03A4268, 2D651A059F1334671E875EB4FC642383DCC00710809255DA29F96C41EC2C8205 ] DellRbtn C:\WINDOWS\System32\drivers\DellRbtn.sys
23:11:59.0842 0x1978 DellRbtn - ok
23:11:59.0901 0x1978 [ 63C9464B165D31ACC46B6B089AB36B41, DE38DE4E6331D07630B63224F8014C27368C29791EDB58CC5DAE7CBACD37160A ] DeviceAssociationService C:\WINDOWS\system32\das.dll
23:11:59.0992 0x1978 DeviceAssociationService - ok
23:12:00.0029 0x1978 [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
23:12:00.0051 0x1978 DeviceInstall - ok
23:12:00.0160 0x1978 [ AAEE621A1D14B0DFED54A3D30B08C14C, 14C923FBC59BAEB683DBE40A8785C7604035163C71AA779B8108C71F8AF60882 ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
23:12:00.0268 0x1978 DevoloNetworkService - ok
23:12:00.0298 0x1978 [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
23:12:00.0336 0x1978 DevQueryBroker - ok
23:12:00.0370 0x1978 [ 25435407D97419627F4B10653433BF2B, 5429B0DB7C5302E9A6AF92C046637183D4147D4A206963ABEA3A611214D6AB04 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
23:12:00.0405 0x1978 Dfsc - ok
23:12:00.0427 0x1978 [ 30710AEFCE721CEEE0F35EB6A01C263C, FB062EC86474D38BBC38E11E2618A9505001C287430B495C482977BBE58017C8 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
23:12:00.0454 0x1978 dg_ssudbus - ok
23:12:00.0520 0x1978 [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
23:12:00.0571 0x1978 Dhcp - ok
23:12:00.0641 0x1978 [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
23:12:00.0691 0x1978 diagnosticshub.standardcollector.service - ok
23:12:00.0766 0x1978 [ 58395E37ED838B93A56F1D089C2F53CF, 57D167B58DF5B33F7E2A98E1B8B33C8F076D34CA032D22F050AE6F83A48DC8E6 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
23:12:00.0831 0x1978 DiagTrack - ok
23:12:00.0862 0x1978 [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk C:\WINDOWS\system32\drivers\disk.sys
23:12:00.0899 0x1978 disk - ok
23:12:00.0922 0x1978 [ 43A1B8B43CA4E213E0FD920F2FD6BCBA, 839C6047FD6EA951538209C30C9D8AE68F9B47A58DA151D071C03408250B0ECD ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
23:12:00.0981 0x1978 DmEnrollmentSvc - ok
23:12:00.0995 0x1978 [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
23:12:01.0063 0x1978 dmvsc - ok
23:12:01.0101 0x1978 [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
23:12:01.0145 0x1978 dmwappushservice - ok
23:12:01.0186 0x1978 [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
23:12:01.0222 0x1978 Dnscache - ok
23:12:01.0247 0x1978 [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
23:12:01.0269 0x1978 dot3svc - ok
23:12:01.0299 0x1978 [ 27069CFFF29B7F04F4B1BB10154BE52B, 6869626F9A1D3F64224883C5E661638CEE893A3E29651C7B9302A03E52180415 ] dot4 C:\WINDOWS\system32\DRIVERS\Dot4.sys
23:12:01.0324 0x1978 dot4 - ok
23:12:01.0351 0x1978 [ 0BD906A79F9CE3013F7D9D0AC45F9F9D, 2F7D5082E7E226D5EBEA164A8ACEE0A447C96EB1829224A6EFA3E7B4EFEE1D14 ] Dot4Print C:\WINDOWS\System32\drivers\Dot4Prt.sys
23:12:01.0379 0x1978 Dot4Print - ok
23:12:01.0398 0x1978 [ B7D595F2F464F7B628AD53F06547792C, F5D06A91EF54FBF56305FCC882B854350B266B2A005D80CC77AEBC2929440729 ] dot4usb C:\WINDOWS\system32\DRIVERS\dot4usb.sys
23:12:01.0420 0x1978 dot4usb - ok
23:12:01.0459 0x1978 [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS C:\WINDOWS\system32\dps.dll
23:12:01.0528 0x1978 DPS - ok
23:12:01.0568 0x1978 [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
23:12:01.0592 0x1978 drmkaud - ok
23:12:01.0641 0x1978 [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
23:12:01.0707 0x1978 DsmSvc - ok
23:12:01.0731 0x1978 [ D920A8B070A9BA5C9DEFC3BA7C3883B5, 8EA05CDE58930EB16B4B502561AF2DB5229658FDC1948A9A8F249A7402C21398 ] DsSvc C:\WINDOWS\System32\DsSvc.dll
23:12:01.0785 0x1978 DsSvc - ok
23:12:01.0857 0x1978 [ 89C9C3745F270EF93988DA57BC6AA62B, 947886F3121919427BDCB123C6FC28E29CA73D427E92025E1BEAA743D27306D3 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
23:12:02.0054 0x1978 DXGKrnl - ok
23:12:02.0089 0x1978 [ 6E36BDBB46DF7F865D0DD30663AE3891, 98967B01EA450AD4D5FE8085F710359C022D783B839A51BD4A266718156B01EB ] Eaphost C:\WINDOWS\System32\eapsvc.dll
23:12:02.0108 0x1978 Eaphost - ok
23:12:02.0214 0x1978 [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
23:12:02.0383 0x1978 ebdrv - ok
23:12:02.0417 0x1978 [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] EFS C:\WINDOWS\System32\lsass.exe
23:12:02.0429 0x1978 EFS - ok
23:12:02.0492 0x1978 [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
23:12:02.0541 0x1978 EhStorClass - ok
23:12:02.0563 0x1978 [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
23:12:02.0602 0x1978 EhStorTcgDrv - ok
23:12:02.0635 0x1978 [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
23:12:02.0688 0x1978 embeddedmode - ok
23:12:02.0716 0x1978 [ DC2F91EAE9A28FA8C6610A9B7701B70D, 480DB509BF944AAC3617594F1245B4603069DE39186BC1FA7EDB8E0536B05E79 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
23:12:02.0801 0x1978 EntAppSvc - ok
23:12:02.0811 0x1978 [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
23:12:02.0869 0x1978 ErrDev - ok
23:12:02.0935 0x1978 [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem C:\WINDOWS\system32\es.dll
23:12:03.0026 0x1978 EventSystem - ok
23:12:03.0044 0x1978 [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
23:12:03.0106 0x1978 exfat - ok
23:12:03.0128 0x1978 [ 5A1C6AFFF6946C5C21A27AE05084C0D1, 558CB87E596E85182F6976F215EE0E35F57BF901409A2805E6A3C29D8984B048 ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
23:12:03.0175 0x1978 fastfat - ok
23:12:03.0223 0x1978 [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax C:\WINDOWS\system32\fxssvc.exe
23:12:03.0298 0x1978 Fax - ok
23:12:03.0339 0x1978 [ 4E4B7D935DBF522B2F23D3573596181D, 9D0EC9F65920EE0FFFB2D49C58E4D5151C8CEEB7AA82543D226E4B84EEE4B3F0 ] fcvsc C:\WINDOWS\System32\drivers\fcvsc.sys
23:12:03.0395 0x1978 fcvsc - ok
23:12:03.0421 0x1978 [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
23:12:03.0463 0x1978 fdc - ok
23:12:03.0494 0x1978 [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
23:12:03.0546 0x1978 fdPHost - ok
23:12:03.0571 0x1978 [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
23:12:03.0605 0x1978 FDResPub - ok
23:12:03.0628 0x1978 [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc C:\WINDOWS\system32\fhsvc.dll
23:12:03.0662 0x1978 fhsvc - ok
23:12:03.0677 0x1978 [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
23:12:03.0723 0x1978 FileCrypt - ok
23:12:03.0741 0x1978 [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
23:12:03.0777 0x1978 FileInfo - ok
23:12:03.0809 0x1978 [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
23:12:03.0909 0x1978 Filetrace - ok
23:12:03.0927 0x1978 [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
23:12:03.0990 0x1978 flpydisk - ok
23:12:04.0014 0x1978 [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
23:12:04.0067 0x1978 FltMgr - ok
23:12:04.0129 0x1978 [ C197284A9D565A38497733AF2BDFA111, C6615AF0D366C2DD6D431B073901EED02D49AA3F252230735DBB52A90BCFA833 ] FontCache C:\WINDOWS\system32\FntCache.dll
23:12:04.0236 0x1978 FontCache - ok
23:12:04.0356 0x1978 [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:12:04.0392 0x1978 FontCache3.0.0.0 - ok
23:12:04.0426 0x1978 [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
23:12:04.0453 0x1978 FsDepends - ok
23:12:04.0470 0x1978 [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
23:12:04.0507 0x1978 Fs_Rec - ok
23:12:04.0534 0x1978 [ 58013A50225174EEF1410E37795D7908, F8E557CA4110ABB203192DEAF59D91A5FEF2A5EA394637276DAB7F4D2E7BFA39 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
23:12:04.0611 0x1978 fvevol - ok
23:12:04.0627 0x1978 [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
23:12:04.0652 0x1978 gagp30kx - ok
23:12:04.0684 0x1978 [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
23:12:04.0740 0x1978 gencounter - ok
23:12:04.0777 0x1978 [ AE24452F55C6F1784CBD7489D0CDDB02, 4E13C51CBF30A8662B1180AC74E968CFC428B6EA7931F09357E7D120063D4823 ] genericusbfn C:\WINDOWS\System32\drivers\genericusbfn.sys
23:12:04.0825 0x1978 genericusbfn - ok
23:12:04.0844 0x1978 [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
23:12:04.0874 0x1978 GPIOClx0101 - ok
23:12:04.0927 0x1978 [ E50CE978F571B900D9A7E2F1C5BCC070, EA14873A5F1B700D7CDBE55B9D214DC457262866A90D80B3E8325A8EB7932CE7 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
23:12:05.0011 0x1978 gpsvc - ok
23:12:05.0039 0x1978 [ 7BF844D362EB746BC7A6DC3F57FA3E32, C07007CF6A0A2BA953FC40A5031931131CC953A8CF3B5AFA86C8811F9C4D43C4 ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
23:12:05.0095 0x1978 GpuEnergyDrv - ok
23:12:05.0146 0x1978 [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:12:05.0156 0x1978 gupdate - ok
23:12:05.0169 0x1978 [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:12:05.0177 0x1978 gupdatem - ok
23:12:05.0191 0x1978 [ 27E248CD861AFED4DF0C48F4C853E7F0, 37BEA5E9D8ACAA871A441766B5FDD32A1091C0CB8B34DFA15596AD827C5EF1A4 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
23:12:05.0248 0x1978 HDAudBus - ok
23:12:05.0287 0x1978 [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
23:12:05.0341 0x1978 HidBatt - ok
23:12:05.0374 0x1978 [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
23:12:05.0426 0x1978 HidBth - ok
23:12:05.0441 0x1978 [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
23:12:05.0505 0x1978 hidi2c - ok
23:12:05.0524 0x1978 [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
23:12:05.0556 0x1978 hidinterrupt - ok
23:12:05.0572 0x1978 [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
23:12:05.0617 0x1978 HidIr - ok
23:12:05.0651 0x1978 [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv C:\WINDOWS\system32\hidserv.dll
23:12:05.0675 0x1978 hidserv - ok
23:12:05.0703 0x1978 [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
23:12:05.0793 0x1978 HidUsb - ok
23:12:05.0863 0x1978 [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
23:12:05.0937 0x1978 HomeGroupListener - ok
23:12:05.0975 0x1978 [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
23:12:06.0002 0x1978 HomeGroupProvider - ok
23:12:06.0094 0x1978 [ 930370725FA0FE272346583A7A7D6BDB, 98195638D548A6E5E574E062FDCF4E5833DDE834399787EC51C340699B6E5E64 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
23:12:06.0135 0x1978 hpqcxs08 - ok
23:12:06.0158 0x1978 [ EE281DD6843F3F697C1AD7933EEB1E9B, 1ECE31C2150B92DDC1DCBBCECFE3E979F2C60B3F106280E3167BEC0269BF7A41 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
23:12:06.0174 0x1978 hpqddsvc - ok
23:12:06.0203 0x1978 [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
23:12:06.0228 0x1978 HpSAMD - ok
23:12:06.0287 0x1978 [ C995EA1C6915D897E06D41AF95B9312C, 65DE6599F1C735BBDCCE4728F7F98167BCA0BF1B8D4218BBF7546B025C9A38BD ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
23:12:06.0362 0x1978 HPSLPSVC - detected UnsignedFile.Multi.Generic ( 1 )
23:12:08.0831 0x1978 Detect skipped due to KSN trusted
23:12:08.0832 0x1978 HPSLPSVC - ok
23:12:08.0894 0x1978 [ CB5A8B34FA37AE53053F2D3DF05AC1E6, 2C7357079A66AE609F49900181B013E735B4A01C45DA316CD1E8698F93DE6EA8 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
23:12:08.0921 0x1978 HPSupportSolutionsFrameworkService - ok
23:12:08.0956 0x1978 [ CA6EADBB8731CA27BDA4037BF290AC14, 31EC9397D55D4EEC416AD722134E2D6B5D14E46D2150CB94889C4BFDAACBF421 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
23:12:09.0033 0x1978 HTTP - ok
23:12:09.0072 0x1978 [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
23:12:09.0127 0x1978 hwpolicy - ok
23:12:09.0160 0x1978 [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
23:12:09.0224 0x1978 hyperkbd - ok
23:12:09.0248 0x1978 [ B2DC6C2F313EBB967B556B4E73A75451, B1816A0AE15705F0325F167EA76166779607D6086EC36A4A960E3BA47B4EBC4B ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
23:12:09.0296 0x1978 HyperVideo - ok
23:12:09.0313 0x1978 [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
23:12:09.0352 0x1978 i8042prt - ok
23:12:09.0393 0x1978 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
23:12:09.0442 0x1978 iaLPSSi_GPIO - ok
23:12:09.0464 0x1978 [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
23:12:09.0482 0x1978 iaLPSSi_I2C - ok
23:12:09.0594 0x1978 [ 0A34D806EF2767E62CAFEA1A150A8830, 2C5C9C0924C6AE379E3CD071E6687885006843A17742B083CE14719F666F7FE6 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
23:12:09.0640 0x1978 iaStorA - ok
23:12:09.0723 0x1978 [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
23:12:09.0799 0x1978 iaStorAV - ok
23:12:09.0875 0x1978 [ B64E1D5BABD095C13A382838F9DCC77F, D8FF4E1BBA7EF5EE136CC5892C72E0774D0AAE40CD9EB3368A698DA6C078BBAA ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
23:12:09.0899 0x1978 IAStorDataMgrSvc - ok
23:12:09.0928 0x1978 [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
23:12:09.0973 0x1978 iaStorV - ok
23:12:10.0022 0x1978 [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
23:12:10.0059 0x1978 ibbus - ok
23:12:10.0095 0x1978 [ 78DC93872CF915831F98DD46DF6283EE, 084E6BF12835A6DABC8F6EB6A758866DE1C44396A9F5078262F89ECC27A9A1BD ] ibtusb C:\WINDOWS\system32\DRIVERS\ibtusb.sys
23:12:10.0108 0x1978 ibtusb - ok
23:12:10.0139 0x1978 [ 88E6A429944544346EC3AE1FD7D24BCC, B6B8D51E5491C91D2FCDC77C1D82A5168B0C860252208E1B4612D8D5C19401AD ] icssvc C:\WINDOWS\System32\tetheringservice.dll
23:12:10.0199 0x1978 icssvc - ok
23:12:10.0202 0x1978 IEEtwCollectorService - ok
23:12:10.0382 0x1978 [ 6FFC445E0D38C3C880125F2C201C9BC6, 488A427239B55394359751FCB8CBAEA8E2AE1CB2AE03C04590E7B8C80EF3F709 ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
23:12:10.0608 0x1978 igfx - ok
23:12:10.0655 0x1978 [ AC4F72ABB5ED596A0F3D9D1EDDC4B27C, F48BFF192B523709DEF64578EA7217EED59E2C1D2627E7BD54E59DABC25B8C36 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
23:12:10.0670 0x1978 igfxCUIService2.0.0.0 - ok
23:12:10.0725 0x1978 [ 6F9C31435DD3E3D3BC247212EA144EBF, 05C4A0BD4BABD27783CEFEE6108C1A05911A212189233F09AF1A56BDC60F60F8 ] IKEEXT C:\WINDOWS\System32\ikeext.dll
23:12:10.0780 0x1978 IKEEXT - ok
23:12:10.0796 0x1978 [ CF25067821BB89E87021E9493C178863, 1AA25378EFD977BC6CD9405A395FA2962770385FAB5A9A55FC95B5F6DFD8D1AE ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
23:12:10.0824 0x1978 intaud_WaveExtensible - ok
23:12:10.0951 0x1978 [ 622868E4BAE8FBCD22CB1A5901A2C824, C1A2264C0984DD16C83B663C9CE43E049E1356E32C5771C3ACE225F285699138 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
23:12:11.0095 0x1978 IntcAzAudAddService - ok
23:12:11.0120 0x1c3c Object required for P2P: [ 6300722E8527EC54D426FD00EE5196B2 ] Audiosrv
23:12:11.0133 0x1978 [ 0E0B99617ED3FDB6C5F0E2D62709B5DF, A656CA3A60E62BE16A015150B23136CE150F9876B4035E9E8D8E73D1707B37A4 ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
23:12:11.0193 0x1978 IntcDAud - ok
23:12:11.0292 0x1978 [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe
23:12:11.0363 0x1978 Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
23:12:13.0656 0x1c3c Object send P2P result: true
23:12:13.0657 0x1c3c Object required for P2P: [ 199D3FA1AF32FCE46A38E8EB64FFF520 ] avast! Antivirus
23:12:13.0799 0x1978 Detect skipped due to KSN trusted
23:12:13.0799 0x1978 Intel(R) Capability Licensing Service Interface - ok
23:12:13.0871 0x1978 [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
23:12:13.0909 0x1978 Intel(R) Capability Licensing Service TCP IP Interface - ok
23:12:13.0977 0x1978 [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
23:12:13.0994 0x1978 Intel(R) ME Service - ok
23:12:14.0043 0x1978 [ E06782D1698EBB491CBDD0C34516CCE4, 12BA62C0C04C67F7C9E2D9739376318D977F9549A73D7D3DF6CF6E5328EABD11 ] Intel(R) Wireless Bluetooth(R) 4.0 Radio Management C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
23:12:14.0052 0x1978 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - ok
23:12:14.0067 0x1978 [ 498759139F71142888CF7EFA1ABE18C8, 9CD0CD748B143F947B4DEDE39344A8C284717CC8AC97E25827EB73CF10831419 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
23:12:14.0092 0x1978 intelide - ok
23:12:14.0103 0x1978 [ DC270DDCDDC2EF65D484A65CC5166222, A88BEAD819ABEFE28B6F9A10586ADCB0EE2A5ED9273F176E9313750609C7892F ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
23:12:14.0130 0x1978 intelpep - ok
23:12:14.0149 0x1978 [ B4D9C777762B1F7356958B9C0AA93BEB, F11B07FE939A107AB4EED4857854DF269C2D86A80C8507C8B1E95F7805975EDB ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
23:12:14.0199 0x1978 intelppm - ok
23:12:14.0224 0x1978 [ 22BD83268B80A8C89AAC0BDF46E4EB5D, E7DC0C2E4104B51EA545BA8D0CFF11FD6A15BFD8EE16E546E8FC220853402CB3 ] IoQos C:\WINDOWS\system32\drivers\ioqos.sys
23:12:14.0311 0x1978 IoQos - ok
23:12:14.0330 0x1978 [ A49E47A6E1429123F46A7CA9C05AEFC1, FFD68CA46DFAA4954FD76145808E2C74BDC34FFD6979BB3FB6A3EE4DC33CDC78 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
23:12:14.0379 0x1978 IpFilterDriver - ok
23:12:14.0514 0x1978 [ 8FBA61B7CB44F136226BE3B346FC6D19, 2190A523AC948B18C2C7B6DC96ABB654DAB471AD5E5E13F79899416E91777AED ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
23:12:14.0580 0x1978 iphlpsvc - ok
23:12:14.0601 0x1978 [ E0C276985AF968CE295B8E09C121321F, 07B54165E80D4254C29A6CF00CC634E70F190EF0EB8EEF73EC14F38B841087A5 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
23:12:14.0688 0x1978 IPMIDRV - ok
23:12:14.0707 0x1978 [ 5D3744E6FDEC1A6FB3FA9B1DD4AF0694, 209BE9FC25C8BF8CE058B7E993B6A902B881380DADC69F5208733077DA7F4382 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
23:12:14.0757 0x1978 IPNAT - ok
23:12:14.0791 0x1978 [ B18202D72C0EF4B53CEC6F59E3E1B955, 6DA244E6485372C16CF0B38838DC90B48079A85F5D22B0F2F197C8DA37F0A293 ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
23:12:14.0847 0x1978 IRENUM - ok
23:12:14.0861 0x1978 [ CD04CBCCCB4C0E4BB06B98E0F45C888A, 106B3E823C188BD14328F2BEA28559D2F637C270064B2FD214522FAC4E616F4C ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
23:12:14.0902 0x1978 isapnp - ok
23:12:14.0941 0x1978 [ 5D90E942C94B20E0F321015C0ABF3EEA, 4110551B172D4A5524DD857D7CB65FAF2594310BE7883D5641BC0DF5EF49C82C ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
23:12:14.0976 0x1978 iScsiPrt - ok
23:12:15.0044 0x1978 [ 16B5B394028D8ED80A569123A38DC4F7, 19839364B7A48584615F0ED56D94AB6E6F8159EAD826605F74C73845CE2C5C12 ] iumsvc C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
23:12:15.0074 0x1978 iumsvc - ok
23:12:15.0129 0x1978 [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
23:12:15.0151 0x1978 jhi_service - ok
23:12:15.0188 0x1978 [ 4192DFE6CA143C0AD8AF42C51A82BECA, 31FB3A261D0D5241CC87EF7DFF8BFC1A1EACE8CEC42138918EC5958DAEE100CD ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
23:12:15.0221 0x1978 kbdclass - ok
23:12:15.0234 0x1978 [ B63C0DB341DCB46CF7AA259333A737DD, F1B43BA68707F3F99CD31AB2035F5E86CD967AE4E5393928C69861785E960872 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
23:12:15.0284 0x1978 kbdhid - ok
23:12:15.0297 0x1978 [ 53C79A7FABDAAFD11EAB31963FB2CED7, 357418645DDCEFA5546AE78EDCAE86D50928710CA7A3F65F01CF721AADA36623 ] kdnic C:\WINDOWS\System32\drivers\kdnic.sys
23:12:15.0341 0x1978 kdnic - ok
23:12:15.0369 0x1978 [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] KeyIso C:\WINDOWS\system32\lsass.exe
23:12:15.0380 0x1978 KeyIso - ok
23:12:15.0396 0x1978 [ 1E99B26BDB9B9C9BC775ED4543558560, 890870A6737B4910735D1B23F714AA73FCCD1C131D135FACBA6909F06D31B3FF ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
23:12:15.0429 0x1978 KSecDD - ok
23:12:15.0472 0x1978 [ 6198A79011C67497B324798B3D4272CE, C587F7D86837550D07918F6AACF26BF65EBAF7FF57475DC9196B4D011E83AE47 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
23:12:15.0506 0x1978 KSecPkg - ok
23:12:15.0522 0x1978 [ 503597D9B72DBD9998F722F12A51ACFC, 9B3585282191163AA70243BAD921ED8725A98454E0D3879E0F671E0E4F56AB4F ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
23:12:15.0556 0x1978 ksthunk - ok
23:12:15.0606 0x1978 [ ED5AE20C27F27F293C6C61AEC9881054, 4D5BE394D129BD559B0A9D237F3F59CB3D24C15ABDD97AE2E64931D6B9D14FF1 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
23:12:15.0799 0x1978 KtmRm - ok
23:12:15.0833 0x1978 [ C529DA0AD5A21878E318801B024AF8E7, A14E8ADCA33C37B1D256CB4926A19F56D2D19B94EDF314A4ED34A8B5AB62CA5A ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
23:12:15.0880 0x1978 LanmanServer - ok
23:12:15.0919 0x1978 [ D6D9F4CAFD3F1A7E30AD02E508552CD2, F0D225E5951CFE1D8349F634CC91BDD5B3F9DCF6233CCB965E99BFEAFE642265 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
23:12:15.0963 0x1978 LanmanWorkstation - ok
23:12:16.0008 0x1978 [ 24881F16D2829764681F5FAE7B86D7D3, 290348CFAF3165847E4B53965D22E9D417EE20FFD23293B5C1855C57E6328599 ] lfsvc C:\WINDOWS\System32\lfsvc.dll
23:12:16.0068 0x1978 lfsvc - ok
23:12:16.0107 0x1978 [ 6ED675774BDC3735AB6DA12D29F825CF, 4317C7CF491F4E806975E7A973CFF11CFEE9E94730DDABCC67C3D693691DDDE5 ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
23:12:16.0131 0x1978 LicenseManager - ok
23:12:16.0160 0x1978 [ DB789F57CE94C827FBFF709CA5ABD29E, 4CA4DD079A63649C36F76A31C4081F11F5CF6574AC573B63EF930DB19B1D1C95 ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
23:12:16.0187 0x1c3c Object send P2P result: true
23:12:16.0238 0x1978 lltdio - ok
23:12:16.0260 0x1978 [ FECBC6C4981772E5D0F517B34A5496EE, 15DB097BFB221B91E580E5CD1DD6B34A9A2C78A1A6FCE4162A855BB4AFE673E9 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
23:12:16.0300 0x1978 lltdsvc - ok
23:12:16.0330 0x1978 [ 24C87BDC66AB192FEB273BEE5FD5AA38, BFAAE1F2450DEBD1A14877C046C6EBA91014DB0B5D0FB95EC14CB714B773B3C0 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
23:12:16.0367 0x1978 lmhosts - ok
23:12:16.0445 0x1978 [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
23:12:16.0462 0x1978 LMS - ok
23:12:16.0493 0x1978 [ 3BB39166E446D456C277C17DFEA3DAC6, 1A08E1D017BBCE91E508D876835FA7AD2DA0859A8CFE8F8F31B4F12B48E2573D ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
23:12:16.0525 0x1978 LSI_SAS - ok
23:12:16.0544 0x1978 [ 25CF625E46307A5D6674C8DFA1A289AA, 1D00EB70B6B0157013A7C15EF194F51B8596612066EF31B337D8134D6BD0BBBE ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
23:12:16.0578 0x1978 LSI_SAS2i - ok
23:12:16.0598 0x1978 [ 722C52B12EA4C198D56994934C9DDAB6, 5F4AB818251C770821BAF41C19B1C483A31CCC28EB96F2084D4092E33EAF906B ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
23:12:16.0648 0x1978 LSI_SAS3i - ok
23:12:16.0665 0x1978 [ 3371FF1D5D745C3306C6A2C4E99C25A9, DD6F0099001501BAEDDF8411FBCD930BD6472662D209199249203CB2FDAA23FB ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
23:12:16.0770 0x1978 LSI_SSS - ok
23:12:16.0823 0x1978 [ E2EEF074F5260378F9AAFBCD592319A3, DC56674A08FA03FA7AF7DD8B3CC55D8324D1CB51546092A990A935FF9AB48A3C ] LSM C:\WINDOWS\System32\lsm.dll
23:12:16.0927 0x1978 LSM - ok
23:12:16.0960 0x1978 [ C692B9C0352315417CF49FFA664957A3, C2D4F9A936B809889F7C51FE48214A1923175913A6C5D0B72D3BA469214B5174 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
23:12:17.0052 0x1978 luafv - ok
23:12:17.0085 0x1978 [ 6A4C75FD28F60062FEA3DF3B15D956C0, 4FC58F3320D33BDACCF759A50C623A3E58E4320749E6691B397DF0C8EAAA8A6F ] MapsBroker C:\WINDOWS\System32\moshost.dll
23:12:17.0171 0x1978 MapsBroker - ok
23:12:17.0199 0x1978 [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
23:12:17.0220 0x1978 MBAMProtector - ok
23:12:17.0327 0x1978 [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
23:12:17.0378 0x1978 MBAMService - ok
23:12:17.0413 0x1978 [ 85CFE7AB85B43B6B7AC7961AA3983A9F, 4E88B75818FD00C0ABBDF8E02EBFB550A67B46E5E13D3B3DF52611793F7DA0DD ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
23:12:17.0445 0x1978 MBAMWebAccessControl - ok
23:12:17.0484 0x1978 [ B2ED9A7A5587A128A0EFD0DBE7662E95, 63070AAFD44E3CD2A4B262DF27222B103455A4D8C2E45914502BFA03D84D32C9 ] megasas C:\WINDOWS\system32\drivers\megasas.sys
23:12:17.0517 0x1978 megasas - ok
23:12:17.0541 0x1978 [ 083F71488E6780A67290273180256EA5, 5F43CE66F5A48850BABB70F4D219FDD002F9BC2B2F0E58E66FE2C492AA335E50 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
23:12:17.0600 0x1978 megasr - ok
23:12:17.0633 0x1978 [ E0EF6C1399A9B1AAA0B28590411BED04, 10C193D1ED434A6DC2AD8C450012B9AF1C848A0A0B3B775F13495648FB77E009 ] MEIx64 C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
23:12:17.0651 0x1978 MEIx64 - ok
23:12:17.0709 0x1978 [ 5907A10D46747A2B6DBFD6A198254DC2, 6C283E9DC75C7ABFD270D6FABBF4F54628A1786E7CE2F603BF664CBB9E4FE583 ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
23:12:17.0742 0x1978 mlx4_bus - ok
23:12:17.0757 0x1978 [ 91ED6F0EDF4158D63C52194F17D4F42E, ACF543978E253650C167C6C370699AEA7340EBCECF7CAB904CBDD334D1BD6928 ] MMCSS C:\WINDOWS\system32\drivers\mmcss.sys
23:12:17.0820 0x1978 MMCSS - ok
23:12:17.0860 0x1978 [ 2C4CC9F6ADBED5A6D131FDB97A78FF68, 04DC76E3F0959C0A9B00DF2133B075194FB7DCBD76832B9D25B0E37223D300DC ] Modem C:\WINDOWS\system32\drivers\modem.sys
23:12:17.0899 0x1978 Modem - ok
23:12:17.0915 0x1978 [ D8DB13529C8AD6FBAF8E2F382024374F, 13025035C479E2EF76EDCB90D83BE65B4ADD9F7000AD31FEAD628D5DDFE69158 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
23:12:17.0964 0x1978 monitor - ok
23:12:17.0988 0x1978 [ 2DAAF1EE1C30F2FCF59851A64ADA0422, 08CD801E63E2862DE058CD732C3DB3D87B1A2898732365440E3F8919932E96FC ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
23:12:18.0026 0x1978 mouclass - ok
23:12:18.0049 0x1978 [ D30FE074503283829ED194BCAE6239C3, A3A127381ECC798417D01F6B8A1894EED7D71989047BC4D1D74D0E7C8394AD65 ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
23:12:18.0133 0x1978 mouhid - ok
23:12:18.0171 0x1978 [ D5EC9413527B286CFEEB0294C53ABB95, B094C611F5A7E33D2F8667B2A4D6260E1D57BD135867F984EE5B674C7EE72B95 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
23:12:18.0198 0x1978 mountmgr - ok
23:12:18.0246 0x1978 [ 0DE2474F316C515482ABAD3B697F8714, 62862AE7432F5350068E96AD466093359C6CF444EB517AE6D09134FAF78C49F5 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:12:18.0257 0x1978 MozillaMaintenance - ok
23:12:18.0296 0x1978 [ 989A1BBD9C49B107B4A47D06E6827A69, 62D90B22AE13AC84324DFD5FEBA595813AD07469B7FEC41380CE223D93020CCA ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
23:12:18.0372 0x1978 mpsdrv - ok
23:12:18.0439 0x1978 [ A0DBB9386BEA8DA1A159C2A2E07081A3, 9D3F26005A76A72F9512F040D45C16124D17F8C8DA45C51FFAF74F066357D0A4 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
23:12:18.0544 0x1978 MpsSvc - ok
23:12:18.0591 0x1978 [ C1E74DD1D84861D8F12FF8BC0BA11975, 5912A0455C840F5C8AD6383823C9C7DE6FF8B5CAF1B72EA181864999891EAF30 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
23:12:18.0673 0x1978 MRxDAV - ok
23:12:18.0694 0x1978 [ 1DF2C5FD2710A13B07E663A12F0E0EEA, 8EBCA9269F52A5CF602F5DE2B0C2AB2BFD82F415465DBB74C73D43F321D9FD46 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
23:12:18.0751 0x1978 mrxsmb - ok
23:12:18.0775 0x1978 [ 185932B1149BD707F8A13174CDAB365B, BC26CB10DD6E81A94477564444E91F76D47E685E897BD77B9C1393F0D31AB718 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
23:12:18.0847 0x1978 mrxsmb10 - ok
23:12:18.0887 0x1978 [ 99E24D4DBACBC569833B9A67710D65E7, 93BC765E7B6E19E83AFF783DE8080A80A1D69A406B496F1E36C47AE6E86AFB76 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
23:12:19.0000 0x1978 mrxsmb20 - ok
23:12:19.0044 0x1978 [ 6F8BE4FB6262012E61BBADB5444628DC, E87489207AA48106C08E4BADDD8D66D14BC9DD6AD2A4CDD880BA655932CDDE60 ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
23:12:19.0102 0x1978 MsBridge - ok
23:12:19.0141 0x1978 [ 283BDF3602F442336DAF242BDD07FB98, 185F046B6AA24FFD1567F00AA70357C82002FF627E329CEF9B926645A6DDB172 ] MSDTC C:\WINDOWS\System32\msdtc.exe
23:12:19.0181 0x1978 MSDTC - ok
23:12:19.0212 0x1978 [ 7C55F1751CAC199680D4489D1EE46544, 967EC8137D321F6139C3382D19A338FD97A3023EB654747AC57C2008BE4AF677 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
23:12:19.0288 0x1978 Msfs - ok
23:12:19.0312 0x1978 [ 988588C16A53C2581488C15FF18934BF, F021FD31163CB5C7012CF96EF642C5E551708C835039075268F4CBED002D441D ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
23:12:19.0367 0x1978 msgpiowin32 - ok
23:12:19.0376 0x1978 [ 09622DBC24D0178F15DB8461BB6970DF, C0B3F9B2219AAF87E417EE9FF54C64B8AD9944E101EA79B5DC81D99E8C2ECF30 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
23:12:19.0431 0x1978 mshidkmdf - ok
23:12:19.0445 0x1978 [ 34BB07495C0159BE4189841E16F3BC2F, 264B5735D9A68C85BEDE363D4C0AE1FCC381B39EA884B4BAEE185EB8A873184A ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
23:12:19.0491 0x1978 mshidumdf - ok
23:12:19.0501 0x1978 [ 7BF3F0DA362C053918F5F2EC43CE39E2, AA773FA3F83C0C572160D3D0286A697DC628FF4F3655EF21D01C6D1B7BE5DF1C ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
23:12:19.0528 0x1978 msisadrv - ok
23:12:19.0563 0x1978 [ 669DA2006C0B9D882D2014617E1E88F5, 090F558818806CAEF6C81D369F8BFFE4A8240295EF37CAA7102A18F4CD20D868 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
23:12:19.0623 0x1978 MSiSCSI - ok
23:12:19.0629 0x1978 msiserver - ok
23:12:19.0655 0x1978 [ B2D0FD21FE67D6434769CC6F7A7883CA, B2368BD72952C6EE6DAF1AA006DF575A3019E4721BEFB108D3DF1B9E07B2BC5D ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
23:12:19.0724 0x1978 MSKSSRV - ok
23:12:19.0762 0x1978 [ FB3801F176376286A3F8F20FFB8CDC53, EEF89081665B9BBA93AE9F5912C40C1698E8BA8DBBCCC3BBE0BAB5A86B7E05D4 ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
23:12:19.0859 0x1978 MsLldp - ok
23:12:19.0871 0x1978 [ 8CBDF0E7A6CD824352F37A682A33DF7E, 4567FF4C73648FF26EA68EAE2B524B767099789086C158875C97768C77B81359 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
23:12:19.0951 0x1978 MSPCLOCK - ok
23:12:19.0995 0x1978 [ 33E5B6261D69ACD4948A5C64B9D8F29F, 1D32340640312372E52E59AFB5DB872E6F9DFE3AC16B56F9D928AE230DA02B8A ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
23:12:20.0044 0x1978 MSPQM - ok
23:12:20.0075 0x1978 [ 557DF8C0DBBBF518AC395C6EB1B179AE, B294B5A7882C0C60D91FB853FC87505B6E7638D25E360FDAE002AEBB714ED471 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
23:12:20.0100 0x1978 MsRPC - ok
23:12:20.0129 0x1978 [ 0A29AFA668F5DD50482A98ECE70C77A7, 4C1F23B062361D97B1C8D864AB227E5F398F774A99B5E60A1149A4F78D5BEC20 ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
23:12:20.0146 0x1978 mssmbios - ok
23:12:20.0176 0x1978 [ 30CE30877FD5BFADE74FA27D7829BF89, B5EA1F8C91E75722DB1E3E2172C8607FEDBF35BDC4141258A3E6D29D8B0E193B ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
23:12:20.0247 0x1978 MSTEE - ok
23:12:20.0285 0x1978 [ 13D88C0B8A2FA001CD72D454955A6974, 19DD5C8BBD07B64F355737436BF702FFC209D84A8855D2224D3377E233D4BB34 ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
23:12:20.0349 0x1978 MTConfig - ok
23:12:20.0370 0x1978 [ 00C7F0F06A0A48B9CDB6B3AC3BE288F0, BF469A2DDF495ACB9FEE9063C6680C95BCC8686682C9EDAE6D1893D4058E8AA6 ] Mup C:\WINDOWS\system32\Drivers\mup.sys
23:12:20.0423 0x1978 Mup - ok
23:12:20.0444 0x1978 [ 8E237527CA260C71D39ED4081BDF3419, CA52DD174C756A404B1FAD3F2A70E50085C2820BF12369259F61DA649101A179 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
23:12:20.0481 0x1978 mvumis - ok
23:12:20.0528 0x1978 [ 48D0587A8302FD3302CFE6F59F7345B0, 26D48AF3F7FF4867E179347CD635055DEA9A751C6C61CE2C391A7F74FC0DC1DE ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
23:12:20.0603 0x1978 NativeWifiP - ok
23:12:20.0643 0x1978 [ 11BE8117653C542D264788A700AC5BFE, 87EAAC2DF62BB26619DA72950F5EE41DCA1DBDF93F098647F9D200D588F14003 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
23:12:20.0720 0x1978 NcaSvc - ok
23:12:20.0760 0x1978 [ 286C6276B2BA86F29A0F687D05466277, AC8551536F37717A0ACE4A260F5696D1276F7AC62F669E8F12AA158DD86F71A5 ] NcbService C:\WINDOWS\System32\ncbservice.dll
23:12:20.0901 0x1978 NcbService - ok
23:12:20.0935 0x1978 [ C55DA734ED2A831E0BACAAFA01CEB7FF, 9D989B03D07BBAD287B317D238691664B0694331D6A69B7A1AA3D8AB7D1323FC ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
23:12:21.0028 0x1978 NcdAutoSetup - ok
23:12:21.0047 0x1978 [ CF8296427834CF8BBB3EE1444C17362D, 6EFBE1F015DFFA0704C66DF5C88089DD5771E1542018E4AE98389CFF3D0B2309 ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
23:12:21.0064 0x1978 ndfltr - ok
23:12:21.0240 0x1978 [ 616F40B897DA651221F86A1741E9609B, 22D66029726313D92FC8E074BCC51C1E1560CB5FE36DCB735E7E063EA53E299A ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
23:12:21.0329 0x1978 NDIS - ok
23:12:21.0378 0x1978 [ A0719D1EBA971DFC5DF5F7CC010385F8, A982487D3A74E66F3C29AAA5B46CE9A0969F07F267DDEFE58C58573573AB0024 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
23:12:21.0412 0x1978 NdisCap - ok
23:12:21.0425 0x1978 [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
23:12:21.0491 0x1978 NdisImPlatform - ok
23:12:21.0518 0x1978 [ 56F9345D1945826135FBAB7589592B1F, 6BC2A5900076B917823C7392C582A2648D0C8000F2F65D309D5B48E36D4FB4D6 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
23:12:21.0599 0x1978 NdisTapi - ok
23:12:21.0677 0x1978 [ AADFC340939D99E5D756E713E1D452EB, EFEFDBB2188DE82C2C5E67929861B269FD4C127D34D1DE6D0596ABC33E2C2B51 ] Ndisuio C:\WINDOWS\system32\drivers\ndisuio.sys
23:12:21.0767 0x1978 Ndisuio - ok
23:12:21.0780 0x1978 [ 312DFD787D99D3BF1427B0388BC04F71, C082CA1F332AD57FF2100748518D3D7B3D0F1B042F69BD7401C44B77AFE97462 ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
23:12:21.0828 0x1978 NdisVirtualBus - ok
23:12:21.0841 0x1978 [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] NdisWan C:\WINDOWS\System32\drivers\ndiswan.sys
23:12:21.0872 0x1978 NdisWan - ok
23:12:21.0885 0x1978 [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] ndiswanlegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:12:21.0909 0x1978 ndiswanlegacy - ok
23:12:21.0947 0x1978 [ 6E98F16983C4AE8703FF9F90AB4B31DD, BB8BD5DB4B5FB31F3A257747C27CBEFA4B7837EC5C0CF3D4F408E626E4003F4C ] ndproxy C:\WINDOWS\system32\DRIVERS\NDProxy.sys
23:12:22.0027 0x1978 ndproxy - ok
23:12:22.0044 0x1978 [ F1B7CC77F412C8D45B2DDCF76EDA4F9D, 25F2AA76E675D9BCC0B1FD47AFEC6DF2D0B47E7B1C8AF6FB27C1ED2FB902961A ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
23:12:22.0186 0x1978 Ndu - ok
23:12:22.0244 0x1978 [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\System32\HPZinw12.dll
23:12:22.0279 0x1978 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
23:12:24.0709 0x1978 Detect skipped due to KSN trusted
23:12:24.0709 0x1978 Net Driver HPZ12 - ok
23:12:24.0777 0x1978 [ 824FDC990A3F79069BE468A132EB6888, D09F7A9EC04E37DA504CE54EEC25C312B407B6A8B214CBB074BEB50DE420F52A ] NetBIOS C:\WINDOWS\system32\drivers\netbios.sys
23:12:24.0838 0x1978 NetBIOS - ok
23:12:24.0867 0x1978 [ F0D791348AD254360CC3C3E501CCB745, E4CAB4D3C2CD3169731283B00DEBFE26438BB66A3F0D78BDB68E876A14FC7070 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
23:12:24.0930 0x1978 NetBT - ok
23:12:24.0944 0x1978 [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] Netlogon C:\WINDOWS\system32\lsass.exe
23:12:24.0955 0x1978 Netlogon - ok
23:12:24.0996 0x1978 [ 7C8A7380CBE45DFD3DF118D8601499A7, C137280B7696F8CF4258BDC8B241C66BB3AA5708C5410D85255E46C7E8284826 ] Netman C:\WINDOWS\System32\netman.dll
23:12:25.0038 0x1978 Netman - ok
23:12:25.0099 0x1978 [ BBE9D72EFC7BD66B28309C3607683DBA, FC372EFBC650CE0BDB117858D840A1FB361947B1C67D1DD16BABA95D0286856A ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
23:12:25.0176 0x1978 netprofm - ok
23:12:25.0207 0x1978 [ 5D046D71B18BEFB2E4D164C3DEEDD672, 536834D020889973854830919B23DF22CC1B27236AFAEDEBDF42D432CE48FCDE ] NetSetupSvc C:\WINDOWS\System32\NetSetupSvc.dll
23:12:25.0269 0x1978 NetSetupSvc - ok
23:12:25.0318 0x1978 [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:12:25.0377 0x1978 NetTcpPortSharing - ok
23:12:25.0413 0x1978 [ 46E862DA2CF8F351375EF537276B69B5, AC0FE0977E56380849DCE668AC0F5AF183AAB115ED84ADD964E390CC0BEDF6D3 ] netvsc C:\WINDOWS\System32\drivers\netvsc.sys
23:12:25.0459 0x1978 netvsc - ok
23:12:25.0570 0x1978 [ BF8754D74B4B2E399D99CC96D34F6C37, 9A5B20EDFA394C9460B93AFAA8B423D4DBF873D9A4CDED27D9D783379C5700D5 ] NETwNb64 C:\WINDOWS\System32\drivers\Netwbw02.sys
23:12:25.0715 0x1978 NETwNb64 - ok
23:12:25.0762 0x1978 [ 88CE4AC85F36B6347C1D820FA373B998, E10B5DF8883928A2062FC6180DE4CF0DE33C68622C2E3E4E1AFC56A0682F8E75 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
23:12:25.0814 0x1978 NgcCtnrSvc - ok
23:12:25.0830 0x1978 [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] NgcSvc C:\WINDOWS\system32\lsass.exe
23:12:25.0841 0x1978 NgcSvc - ok
23:12:25.0864 0x1978 [ EA1C2DAB8A63712B94897A58557B086C, 98DD7E5C84F3CDF2DAA89484892D6B439F5D14297B5243436925BEEAA0C02EE1 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
23:12:25.0904 0x1978 NlaSvc - ok
23:12:25.0920 0x1978 [ 41557BE174E9EC6AC703A8A4ADBC6650, 8CF6DF3FDC3C7C44B32851538A67BF86A54AB6444A424D7A20B7A9A94B4158D8 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
23:12:25.0969 0x1978 Npfs - ok
23:12:26.0063 0x1978 [ 49697C2C761ACB5C0DE99CC8FE93E95B, 02EEA7FB21D28B235A05FE0A6061170F366470EF6E45C9B21D7C8C0E7C728FC5 ] NPF_devolo C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys
23:12:26.0111 0x1978 NPF_devolo - ok
23:12:26.0126 0x1978 [ AC3F70FCFBCE97AA2F12BA43EE13B86E, D0AC50FB022C0F3031531CEE210D47FC3244C6FB55FAAD4AAB04081F0A21DAE4 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
23:12:26.0209 0x1978 npsvctrig - ok
23:12:26.0250 0x1978 [ 0AF4872D3D6FD3A030E836DAC2B3EF2D, 03EE7B6FAFC0BB5C26793BC5FF8BD1019AC96B3104688009C1E062C3F4F34D6D ] nsi C:\WINDOWS\system32\nsisvc.dll
23:12:26.0321 0x1978 nsi - ok
23:12:26.0360 0x1978 [ 66A98C407085B8920DF1E6D722F1ADB8, 3FE307E4A9E41B08E0453507E50D6D0C67FA6F4245A863D90181463C749C83B5 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
23:12:26.0408 0x1978 nsiproxy - ok
__________________ |
|
06.01.2016, 23:25
| #4 |
| | Und mal wieder ist alles seeeehr langsam geworden... und der 2. Teil: Code:
ATTFilter 23:12:26.0473 0x1978 [ BA8DC96D1DD7785EB0589CB1777208B7, 09B486A20D9F22FE50CB4FBC0C801609F522FA99F5FBC43107336B7D98457D91 ] NTFS C:\WINDOWS\system32\drivers\NTFS.sys
23:12:26.0630 0x1978 NTFS - ok
23:12:26.0664 0x1978 [ 383E546EF4982262A0EF6CC2B6E9D525, 3C6C90B62E8EB094E6928C388E5081A3F73DF87B0F34F716B72EA7B6EF71FBB7 ] Null C:\WINDOWS\system32\drivers\Null.sys
23:12:26.0727 0x1978 Null - ok
23:12:26.0740 0x1978 [ 466F875F1D4C6ABB46AF28007009237C, 26F5A5579737A7CF2267F79DDE5A551149C682D5FD24663B53FCEC5AA6B448CE ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
23:12:26.0786 0x1978 nvraid - ok
23:12:26.0814 0x1978 [ 76F19EAE7A52CBAF7B8EC428BE6E0DA0, CF1E55D92FA32744A20AB75D466A3E05E6FACF4694F9265C41F5C27C1E7243DC ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
23:12:26.0845 0x1978 nvstor - ok
23:12:26.0867 0x1978 [ 0D0CB77D74B38E0EC62341C19E469D8D, A05D3CC67FEEB2FD219BFAA34BF98CB3F3718042124AF28F0E9FDFB9F132DD76 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
23:12:26.0899 0x1978 nv_agp - ok
23:12:26.0949 0x1978 [ EA3FFE8617B9FCA1620AD9876E92F4F1, 68D5143CA71D10A2BB44E29B3C76580596669D0624076BCF6CCBA7AF3140538E ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
23:12:26.0991 0x1978 OneSyncSvc - ok
23:12:27.0080 0x1978 [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
23:12:27.0119 0x1978 p2pimsvc - ok
23:12:27.0167 0x1978 [ 3612CE3432E0A2BE0081E6B488ACF84C, F1A641735FD374CA293FB98FADA2C41E2033B17FECCA3B6D225D0E591AFFF413 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
23:12:27.0221 0x1978 p2psvc - ok
23:12:27.0256 0x1978 [ 38F1AE32339731F6E5A7281AE8042545, 308954518C45D29FC199525F0CC7FE4EA805322EC0B871DDDCBEEC15355514C8 ] Parport C:\WINDOWS\System32\drivers\parport.sys
23:12:27.0297 0x1978 Parport - ok
23:12:27.0317 0x1978 [ 707889D2F95AAE8C9DD254D8767AD908, BE7BD94728D7629F8B7567523FFB42B8979941CEA2EA03E11BFCD51CF119FC27 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
23:12:27.0352 0x1978 partmgr - ok
23:12:27.0399 0x1978 [ A09B0D8F9F0FC17EBCE6481AC9FD5CDF, 8E8D68992D98CF3DBC4B70C7902B3EC28A1E2DA8D4DB38F0AD9D52B1A5A1D40F ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
23:12:27.0422 0x1978 PcaSvc - ok
23:12:27.0492 0x1978 [ 2834089EA4E550FF3B96E61FB4AA34ED, D25DAB47F9778675E984E0738D2014024C2758D52D7E071167A12FF466B7898E ] pci C:\WINDOWS\system32\drivers\pci.sys
23:12:27.0571 0x1978 pci - ok
23:12:27.0588 0x1978 [ 3D587E4295B11B8480F7ACB09A89D718, 8C3BD62B3451E1B2E7197EDAE381785406DF86C03BEEC486602C642FDD37DBC1 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
23:12:27.0604 0x1978 pciide - ok
23:12:27.0632 0x1978 [ B8F07002B5F1DA23CFF979C2806B09F3, AD5C589A02BB8185AA070420BF30E78BC8BE3C6F9B0F66319A8CA05B70A5ED32 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
23:12:27.0684 0x1978 pcmcia - ok
23:12:27.0701 0x1978 [ FF588077D0C6AC2EA3FCBF1903CE08D0, 64BE1646FB6D8CC902B6F386255F7C0420E3C334E14DECD527DD541B43A1DCD6 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
23:12:27.0718 0x1978 pcw - ok
23:12:27.0751 0x1978 [ 70469C8AC4AD367295E70CFDD81B754C, 3EC6FD742C7C60363939E5343477810D751D91D32A2F24285976C08A7C4477AB ] pdc C:\WINDOWS\system32\drivers\pdc.sys
23:12:27.0805 0x1978 pdc - ok
23:12:27.0875 0x1978 [ 688F47C342E1BBC87A48AB71D316233E, CE99AB67C7E7A11AC69C2F4513AEBDACA385BA7F8CC49BE6313CE04ED404A0E7 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
23:12:27.0962 0x1978 PEAUTH - ok
23:12:28.0002 0x1978 [ 189265498945593D5256CFF7FEBB9665, 9CB88CC3C726BFE6EDCE8D9E4544306AACD3FB9E969E3A438D9FD533F25C1281 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
23:12:28.0034 0x1978 percsas2i - ok
23:12:28.0052 0x1978 [ 9B86965114F6831A5130EFE6657B17D9, 4C5B657DB9A9F96BFD3EAFA756ED60D911EB58857C439F5FA6E495A473ED1145 ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
23:12:28.0075 0x1978 percsas3i - ok
23:12:28.0106 0x1978 [ 8A5A52C855FB5BFEF019AE9938AEA8AE, 77CB8A09B209DB5895319BA9D073A67148926E22C47836343050DFC178AFAEEE ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
23:12:28.0138 0x1978 PerfHost - ok
23:12:28.0221 0x1978 [ 839BD56425530973FF3F6F7C0057CD22, 9BADF39BC4628409CFCD5F1300C6040C49B2ED72D0FA389C6BB042E5B17E1A40 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
23:12:28.0285 0x1978 PimIndexMaintenanceSvc - ok
23:12:28.0368 0x1978 [ 82FDEC2A262728F62F2111A84CC04B16, A1FCE38D4F55F10BB9B3BFB7D9E3EF7C27D499D9C8882218C8A9A73487798188 ] pla C:\WINDOWS\system32\pla.dll
23:12:28.0455 0x1978 pla - ok
23:12:28.0490 0x1978 [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
23:12:28.0509 0x1978 PlugPlay - ok
23:12:28.0531 0x1978 [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\System32\HPZipm12.dll
23:12:28.0548 0x1978 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
23:12:30.0978 0x1978 Detect skipped due to KSN trusted
23:12:30.0978 0x1978 Pml Driver HPZ12 - ok
23:12:31.0045 0x1978 [ F1E9C35A8DFD4D64382CFB9019A950F9, 24E0381C6909F9876D6DC4697DC6405FE18DF91531891B2CCA6DB0191B9C6DF4 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
23:12:31.0093 0x1978 PNRPAutoReg - ok
23:12:31.0120 0x1978 [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
23:12:31.0161 0x1978 PNRPsvc - ok
23:12:31.0194 0x1978 [ 62C0BD179961132EF2C5B952210C11F5, 2473FBB3619D0DDA229D4BEC30CEFE7497C27ED3844A5B7655F6F2D328FEAF61 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
23:12:31.0241 0x1978 PolicyAgent - ok
23:12:31.0277 0x1978 [ 6390391EDFC43DD11CE9E6AADCAC20EA, C8BC222FFBB9E47489D16BB5248E0E2E594011C46CFF71F5DBCC4D5CC6788098 ] Power C:\WINDOWS\system32\umpo.dll
23:12:31.0293 0x1978 Power - ok
23:12:31.0331 0x1978 [ 1433EB7908E5E1E20FFD50E4126C3484, 34D81680C8F2F2C5892FC0E0A6DFCBB241AFF493267A1FE182ED28AE9F712456 ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
23:12:31.0380 0x1978 PptpMiniport - ok
23:12:31.0542 0x1978 [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
23:12:31.0707 0x1978 PrintNotify - ok
23:12:31.0744 0x1978 [ 22DE54C3974E4FD98F61D095C22C59B7, 64E78D6DEC4A28ABB0A23F2CF078459D81796EC79235AE45976ABB4F72B1D1E6 ] Processor C:\WINDOWS\System32\drivers\processr.sys
23:12:31.0775 0x1978 Processor - ok
23:12:31.0803 0x1978 [ 8A216BBE091DA0585F6A5E8B65980961, 7A9400AF63D1B906F48C072084CC77508C91C7E69ACC1E9957D7A9C353A67710 ] ProfSvc C:\WINDOWS\system32\profsvc.dll
23:12:31.0840 0x1978 ProfSvc - ok
23:12:31.0858 0x1978 [ EDD52C352CBAAAD13FD7BD5DCEA309B3, EC7D294B23FD5C309E5C4C455896937B85DC615E1B36C9F8F3BDC90E75EBF9CF ] Psched C:\WINDOWS\system32\drivers\pacer.sys
23:12:31.0899 0x1978 Psched - ok
23:12:31.0922 0x1978 [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI C:\WINDOWS\system32\DRIVERS\psi_mf_amd64.sys
23:12:31.0963 0x1978 PSI - ok
23:12:31.0997 0x1978 [ DD3FF2053356D11C785999BBC633F3E0, E9A5B7C657F4523E5DEF7AEE7ECFCC94E911FC65F1D491BEF01239F357B8D8E0 ] QWAVE C:\WINDOWS\system32\qwave.dll
23:12:32.0048 0x1978 QWAVE - ok
23:12:32.0080 0x1978 [ 51590F442C6E5D43244BA30DDB0CE79D, 9C7FD0A19753C13FD4A27EBFD60703A2414D5A2F6F451F0B32769C8D7C953980 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
23:12:32.0109 0x1978 QWAVEdrv - ok
23:12:32.0140 0x1978 [ E951E70019865B06126AF850BCCA2026, C590DE38C7603149AFA0271D57EEBAF956F18F50584FCF04BC2C8D8CEC5C5932 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:12:32.0199 0x1978 RasAcd - ok
23:12:32.0235 0x1978 [ 0BF8607133AE264BC3C41A5BAA5FFB7B, 9A4F6AC6013AB5C2A99BCFC2CCF161DD225DE8D85D61579655ADBF04A4383A61 ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
23:12:32.0312 0x1978 RasAgileVpn - ok
23:12:32.0345 0x1978 [ FE0976379F9E7DB6F7945FCEB88C7E29, BA331CE55C02E86478714DA87FAC547B50D53BC7D02BCA5A64D484DED44BFAA5 ] RasAuto C:\WINDOWS\System32\rasauto.dll
23:12:32.0394 0x1978 RasAuto - ok
23:12:32.0428 0x1978 [ CA60F6C03611AF1710BC903ED9F566FB, B5C9E8BAC631738761E11168AB68EB1ECC5EC96BF9A8248B9127DCF744CA4691 ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
23:12:32.0457 0x1978 Rasl2tp - ok
23:12:32.0497 0x1978 [ 586A17C10D417D889F1FF7D8636E2F34, EEDA4EE8D2BC5C8C7756AB79F1F19AF8B1C4057996748FAE4E3F37844DB0EB33 ] RasMan C:\WINDOWS\System32\rasmans.dll
23:12:32.0532 0x1978 RasMan - ok
23:12:32.0549 0x1978 [ E5FA41160F5A3D78D8F7765E5C5F6BB0, 31BA423FFFC3206717DC34B482149421EE28B27A4A3BA2DC78C3B3A9EE0C1365 ] RasPppoe C:\WINDOWS\System32\drivers\raspppoe.sys
23:12:32.0590 0x1978 RasPppoe - ok
23:12:32.0602 0x1978 [ DF0834AE921E633E05D1FDC55C318957, 851A00961224DACBEF9DA427122F6B4B73BB99849D5ECB55DBBD311B2EA84C33 ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
23:12:32.0636 0x1978 RasSstp - ok
23:12:32.0702 0x1978 [ FC9B7AC6E2B837EF7CD6C64F7068D41D, 9B0DD842033E82BC7EE80416A62B084BF5200923EB7A6C80415BB28004E9B5E3 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:12:32.0750 0x1978 rdbss - ok
23:12:32.0763 0x1978 [ FB7375657F8A5932C35EAA45E9B4B416, 99594708BFD6DC9F8CECBF092058D4D0D4F1BC3204E86F9FDAD5207ED5ECF194 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
23:12:32.0816 0x1978 rdpbus - ok
23:12:32.0837 0x1978 [ A32AED8C644734B283A7C9D08D76064D, A12F67C57E43B6A2FE6449EA3822B1108FE70C66AF9911798777F85D760E384C ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
23:12:32.0874 0x1978 RDPDR - ok
23:12:32.0907 0x1978 [ 37CC7E41243EFBB4FBC0510E5CA32A02, 634E2F81D61F937F30E5ECE01FB581E090C6DA073EF7B1A3F6083ECAF363CB46 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
23:12:32.0955 0x1978 RdpVideoMiniport - ok
23:12:32.0992 0x1978 [ DAF957B25A35757E9D814611FAE8FE3B, 5244A427B2DEB5349B9F336A4A39A6834A6E8118A8EDA00738C6CE09F2452C24 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
23:12:33.0032 0x1978 rdyboost - ok
23:12:33.0082 0x1978 [ 2C72E029C153D25325CA182A669E4ADE, 5CE0E04A6B53A1F11E8159DFD1E59F2AE6631E3B5BD27BAAEC4A35BC02A55722 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
23:12:33.0151 0x1978 ReFSv1 - ok
23:12:33.0211 0x1978 [ BABEE4A896D005BD0D205F1C932DA25E, 269FDF65BE3A226FA2A5CA25085366E32ADAD30A020484FE844962E8C61CB1D2 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
23:12:33.0290 0x1978 RemoteAccess - ok
23:12:33.0317 0x1978 [ 066062967A77867BDCF665960EFDAD32, 68143DBDFA7C68786C22F5CC4E80200255C663A844069C080E7816F423ABB1F4 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
23:12:33.0338 0x1978 RemoteRegistry - ok
23:12:33.0404 0x1978 [ DF84555A734BA2BDA55BCCCC47095ADD, 639814A7F5B758792FE6D84E3FF312F9CE9DACB21B93EA43394DC7A04526CB81 ] RetailDemo C:\WINDOWS\system32\RDXService.dll
23:12:33.0469 0x1978 RetailDemo - ok
23:12:33.0488 0x1978 [ 67E83C0C9A2B5ACEE9EF690E6B7E9189, 63D2A73B2031B52C66EF0455393BF05C55F9F7B0B9E48C54A39E547D46E090F6 ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
23:12:33.0541 0x1978 RFCOMM - ok
23:12:33.0638 0x1978 [ 41DDCF1ADD1FB7DE23DCF671740DDBE6, 87ECB5C883CEFF76D126A5B4D92E069C9298FA5B62CC981870F9ECCA13C074F1 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
23:12:33.0656 0x1978 RichVideo - ok
23:12:33.0693 0x1978 [ 6451FE42C35FDE3862D99579444F4A8F, BD56A1120AACF6143E6EB739E12BEE86DF142F1159865608BDF1BBE54B66AFCE ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
23:12:33.0723 0x1978 RpcEptMapper - ok
23:12:33.0749 0x1978 [ F24131EAD1D0B73463052BB042A37B6C, 43B5772310B200DF1914C8E4D10401A0BCE9082BDEAC34736AFB2920B39D7956 ] RpcLocator C:\WINDOWS\system32\locator.exe
23:12:33.0774 0x1978 RpcLocator - ok
23:12:33.0815 0x1978 [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] RpcSs C:\WINDOWS\system32\rpcss.dll
23:12:33.0852 0x1978 RpcSs - ok
23:12:33.0894 0x1978 [ DC66C1D262D64E30A30B68E9F21AC74B, A5ED3D31BCD68DBC00A956787517ACA167C86F5FFDAF7C9A85505FA2B705C6CB ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
23:12:33.0916 0x1978 rspndr - ok
23:12:33.0970 0x1978 [ 347E3CE270009E4C71B26E71ACF98106, E20ACC50C2B4B3FDB28A8FA144EBA02E835873123315FDB5A2C87CBAD95218F6 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
23:12:34.0004 0x1978 RtkAudioService - ok
23:12:34.0037 0x1978 [ BC1FD4C82BF2922A8A6E8661DD1B8CE8, 254A790F0F10AD15C7C585D2918D4333C577EED848BA9FE4E2C4498E32494418 ] RTL8168 C:\WINDOWS\System32\drivers\Rt630x64.sys
23:12:34.0095 0x1978 RTL8168 - ok
23:12:34.0145 0x1978 [ A66515E4B5C1EB3139705B115EC287F7, 81939AA1C66D83A501BAAE10FB438393589090DF51A17A128F7C2752659D9128 ] RTSPER C:\WINDOWS\system32\DRIVERS\RtsPer.sys
23:12:34.0183 0x1978 RTSPER - ok
23:12:34.0209 0x1978 [ 88F7703F2A4677C828124AE2110D3EBC, 529F6A5815806F2EA2235802BD28AF8D7A40E7799356BD3EC337C9E71B6B53E6 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
23:12:34.0226 0x1978 s3cap - ok
23:12:34.0243 0x1978 [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] SamSs C:\WINDOWS\system32\lsass.exe
23:12:34.0254 0x1978 SamSs - ok
23:12:34.0288 0x1978 [ B467E932FE4E16E201DC7E56870CB559, 6FCE9A2DFC5D222BBEA4AA271A17B830FCF8EAE44B07BEE5FF34AE50CABCBB6A ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
23:12:34.0319 0x1978 sbp2port - ok
23:12:34.0357 0x1978 [ 3E115C63649402D321D396F8D606C9B0, F4BA7FE0E89D563A57B6865E4CF1334998987D11A0D70FF7491726A507B40DF4 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
23:12:34.0398 0x1978 SCardSvr - ok
23:12:34.0420 0x1978 [ 67EFFD3D1BB6D2B67DF7F8FDCB1A51FC, DE41539FAC730F5CFF6C8754ECFF1253AFDC1C86743AE71B61D716B7A84E85FD ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
23:12:34.0461 0x1978 ScDeviceEnum - ok
23:12:34.0490 0x1978 [ 31DDA0716EC265CA57DAF9D2295FD76F, E6F39C1B3CF81918277DB8C6E3DF9A82812E1C9063DEB1FB85FE433DC9A16CBA ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
23:12:34.0523 0x1978 scfilter - ok
23:12:34.0571 0x1978 [ 1BFAC03B6422E878EFCDA934BF4C4823, 0BA537A4B9E8020E6B709A44F1382DB3B41CEF631B847201F812152FEB303CD3 ] Schedule C:\WINDOWS\system32\schedsvc.dll
23:12:34.0682 0x1978 Schedule - ok
23:12:34.0732 0x1978 [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
23:12:34.0764 0x1978 SCPolicySvc - ok
23:12:34.0802 0x1978 [ 004C66464D8FE76D5DA78BE6777D61AF, 58B5C436798EEBBE7081D54B55B70DEB15331856802CD45E3FF8BDE794F06A27 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
23:12:34.0837 0x1978 sdbus - ok
23:12:34.0882 0x1978 [ A906C527B838A4922611C63EBD250F91, 6BB0054A9C2408138BDF49D834FF99B5B9764E7747ABC15016F54FBA1D28394F ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
23:12:34.0914 0x1978 SDRSVC - ok
23:12:34.0953 0x1978 [ F4BF50A7D16A97A887BFA0F193693C42, EEBF5AAC149C72F490BAC954B25BB6882B10FC38F93CA4F4829A06702B1ECEF9 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
23:12:34.0972 0x1978 sdstor - ok
23:12:34.0980 0x1978 [ 648A299839E8F48A946C41DE270D28F5, EEC9A5FCBE3FF78FB5E0452FF1932A8B0C7399688041E22555703CB1977A4428 ] seclogon C:\WINDOWS\system32\seclogon.dll
23:12:35.0026 0x1978 seclogon - ok
23:12:35.0086 0x1978 [ 5E0E975998BF1612E18B898E5D17838B, 76C11C62DB8055F03F868685E8E2016D99D3FC48313CB51C69E7CEA589D80890 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
23:12:35.0131 0x1978 Secunia PSI Agent - ok
23:12:35.0154 0x1978 [ 508DD2E1D5F272B2D3196335DEA2BC26, 2BDC828DB9D9766445C345E82751FA7EF94A089EC84565675EDADE3EC7EB5748 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
23:12:35.0173 0x1978 Secunia Update Agent - ok
23:12:35.0208 0x1978 [ 29452A9DA3E3482F0C2963312F979053, E1782D36C336C4B4C261AD665C1E9051905AA86020E08FC94069972AF4C4DB4B ] SENS C:\WINDOWS\System32\sens.dll
23:12:35.0237 0x1978 SENS - ok
23:12:35.0286 0x1978 [ 919BA7E3054E4F1D61A3524ADCE6A970, 3C382673DF5AF2F38A5AE4A268F5856B0CC9E65D52213DE6D2C06E252753B73C ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
23:12:35.0355 0x1978 SensorDataService - ok
23:12:35.0385 0x1978 [ 01C2EEA7870FE26A4A6CCBA5421CC7E5, 9E643AB6BCBECE4F2A5FD4C96547A4E3F2BDFEFC5FE24B802467718EC69929F8 ] SensorService C:\WINDOWS\system32\SensorService.dll
23:12:35.0431 0x1978 SensorService - ok
23:12:35.0460 0x1978 [ D2FEE824B4AA0BE377F1353E5F915BF4, 00D754C62F3482BBD0EA72C896139C39D15192B2D9FCC7B755D1FB9DF9FCFD9B ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
23:12:35.0489 0x1978 SensrSvc - ok
23:12:35.0523 0x1978 [ 9DB0BBE3ABE1F49651AE51EC5BCABE58, 0B46C1F231F41766AB73EE7E9834D3CDACA602D12E702D9277E28B47417D9CA4 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
23:12:35.0541 0x1978 SerCx - ok
23:12:35.0578 0x1978 [ C4AF79C37334D995D95C22C14FDBF7FD, 4D4985921261909F2123467A22EDB102B490710F60AB935624435E5BB808A0E9 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
23:12:35.0615 0x1978 SerCx2 - ok
23:12:35.0628 0x1978 [ FC541A272F47BE03E67A9FCB87FA8C3E, 730A3616FD67E9F2832442144B2655A8EF78B9AFCB204113E73E257256491354 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
23:12:35.0645 0x1978 Serenum - ok
23:12:35.0662 0x1978 [ 2A5F5F95FCA123DCBF53B5F603B64789, DE5C9E1D88B2C180B137DA7839F3EF6C936A171ABA49F89C10EE9C73A2226F3F ] Serial C:\WINDOWS\System32\drivers\serial.sys
23:12:35.0718 0x1978 Serial - ok
23:12:35.0748 0x1978 [ C8738887228B7BFA3B1A906816A8BB12, 328283569201791891D5E9FB3028DB5B9FD93A7BEFC00C7DEBC2CC5731DE64D5 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
23:12:35.0784 0x1978 sermouse - ok
23:12:35.0834 0x1978 [ B1CB58853153397DFFA2D13A81451D09, CC9B3B064711E9B5CB38DC1C84DC410033939848BD31BB0D12F990E8154F357E ] SessionEnv C:\WINDOWS\system32\sessenv.dll
23:12:35.0873 0x1978 SessionEnv - ok
23:12:35.0894 0x1978 [ 67832B68752CDF7FDE56949E4A2E70BF, A72320EA8575A751DF86A1EE7969AD9D548D6185F2520197262E11B79FF8222B ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
23:12:35.0912 0x1978 sfloppy - ok
23:12:35.0969 0x1978 [ F10E5536E1C753E01CF19FA4F466CE90, C9897F22B176D84CA233F864078895E3DAD4DAD090FACBB01BD6E59EE337B47C ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
23:12:36.0020 0x1978 SharedAccess - ok
23:12:36.0114 0x1978 [ 4AC12D495B3CB4275F74C68A7A017561, DC53EBD606ECCD8BCF6D618C0EB58B03F5C20F09E0F0AEDE9B8082D6B208B19A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
23:12:36.0177 0x1978 ShellHWDetection - ok
23:12:36.0200 0x1978 [ ED058030296CF9B79C8D48BF43724323, 01DC7C2590DF48116CD1A126F207FE5DE439A53286BAE3736E22EE3D1CA80BE3 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
23:12:36.0231 0x1978 SiSRaid2 - ok
23:12:36.0267 0x1978 [ 633D3D1581E9DCCD5A2D8F039104C9A5, C44B5097016C2AEC8B41F77425FE44413562F9DCF0C0C11CA69D8178970B4706 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
23:12:36.0285 0x1978 SiSRaid4 - ok
23:12:36.0342 0x1978 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
23:12:36.0377 0x1978 SkypeUpdate - ok
23:12:36.0414 0x1978 [ D1AF43FF92053311D6567B3FCB10F322, 5E9F22738AA10F71AFD904DAEC360654F8C11122B25457602AFDB619CE450124 ] SmbDrv C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
23:12:36.0421 0x1978 SmbDrv - ok
23:12:36.0461 0x1978 [ D6704C7271F6F8F08F8CC2E1729C89C8, BE67D6E5DB9FF75E6A52E800158D400817AC4F8743CB7345AD159C15D13C4F8D ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
23:12:36.0594 0x1978 SmbDrvI - ok
23:12:36.0643 0x1978 [ 35B8FC714C2E7F07F7DC7C64452153F8, 6D45EB01B5F972ED0E5520E771F007FFEE892054FABDB3DD00D3E9915D3A0A31 ] smphost C:\WINDOWS\System32\smphost.dll
23:12:36.0705 0x1978 smphost - ok
23:12:36.0789 0x1978 [ DE3A5C27EC842A113F68A2705FF63B00, B134EF63708A892B673B539F544F7980FF72838D822E8E4CCDDB359B22CB8805 ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
23:12:36.0852 0x1978 SmsRouter - ok
23:12:36.0886 0x1978 [ CD1056818A6FCEF4D32BD1D6E34070D5, F5BFB61ACB220A73B0DC4487B049F52E9F9FA2D4188C001E7A5838D47CEA6343 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
23:12:36.0913 0x1978 SNMPTRAP - ok
23:12:36.0947 0x1978 [ 187B4AD4446C59F8FCC4A10F473EE3D1, 0AAD961B3D7B3484DC89CB86F3EC96CEBFABB7224A5BFB48083DE8F1805EA7B4 ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
23:12:36.0999 0x1978 spaceport - ok
23:12:37.0016 0x1978 [ 2799FCA215919FDC9A87C5FCAB530828, BDE968BF26693AA4D70AB669896BCA49C6F533EA226386B35B0EA589A55227B5 ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
23:12:37.0043 0x1978 SpbCx - ok
23:12:37.0108 0x1978 [ 58C17D92AD61EC7A98B05F4FAD0D205A, B881134A1BD9194145A9D18BDB34D57E2C167F06C2A9368459D0C33E6E0D6501 ] Spooler C:\WINDOWS\System32\spoolsv.exe
23:12:37.0173 0x1978 Spooler - ok
23:12:37.0326 0x1978 [ 5C31E109943E67CFC801810C00AB63EE, 9A80D7CDA1135EBCE10E753986A59CFA3D8D49F9B0BE38FDF99880B1DD88C41D ] sppsvc C:\WINDOWS\system32\sppsvc.exe
23:12:37.0534 0x1978 sppsvc - ok
23:12:37.0579 0x1978 [ AA1F23501511EFE9CF9771F6B20E8D45, E786852D9877CCFD35444F8FC694467132F868D87A8C344FD1016FFDE74695A5 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
23:12:37.0621 0x1978 srv - ok
23:12:37.0656 0x1978 [ F5B169EDF9D5E3C7200D89D30E065D13, 12BAF3A3CB76F0900FA53681C9AD16F40308F493BA22C0F60E1E268D0D6AF825 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
23:12:37.0739 0x1978 srv2 - ok
23:12:37.0755 0x1978 [ 2E142E027F0AA698BA4DCE49CBDB43CD, A21027BBBC75A55A8B302D028113A0683016E4C72790A8C561DDB1AE7FDB4289 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
23:12:37.0804 0x1978 srvnet - ok
23:12:37.0851 0x1978 [ BF71B3FB5B7557CB740CDB09C5FB50D9, D6F9E65FDC9C4ADAFE82D94F71A1F5960DB3BEEBF4FE5B2D087515C4FAA5F287 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
23:12:37.0888 0x1978 SSDPSRV - ok
23:12:37.0921 0x1978 [ EF1BC04215C201ADA3F7F5A2F034EA21, E1A7A0FA2032B9E7D3951100E74C04D93CD848C88D23D57FBA0BFA2816B29C61 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
23:12:37.0965 0x1978 SstpSvc - ok
23:12:37.0991 0x1978 [ 91310683D7B6B292B746D60734B59322, 2C56C3E4AA7356FB544B52F80ABDA39A80473390CB2059C69BDCCAD40FE56325 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
23:12:38.0002 0x1978 ssudmdm - ok
23:12:38.0083 0x1978 [ 78760751FBCB900F6F68CA1700DAE2DC, 356914797056B11745E18ECD033B8DC801C3C3DD6C5127FCD430A02C4FDD34A9 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
23:12:38.0227 0x1978 StateRepository - ok
23:12:38.0239 0x1978 [ DDE064A4298FD1FBF804D3ED691E7EDB, B0D117B1FC0DA2CB76F5F63699E2F108930B6C6721AC443111D48215ED624278 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
23:12:38.0256 0x1978 stexstor - ok
23:12:38.0275 0x1978 [ 7C4D2F167FA6153B4FE7145FE6D3DF15, F39ED9CDF323DDC57D0F64F9CC121E911EA53819A3A941A2F6EA557C35FCB372 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
23:12:38.0366 0x1978 StillCam - ok
23:12:38.0447 0x1978 [ 60F04DF1AB55D6D4BDA02052DD20537E, 52996EDF2C06968DADC9BDF24E4039929B81643493C7193B8CC4A6BD1A3AE761 ] stisvc C:\WINDOWS\System32\wiaservc.dll
23:12:38.0509 0x1978 stisvc - ok
23:12:38.0542 0x1978 [ 32C95F44108C3E7DB58F773346E3C9D0, F852D8ECA06080EA6DE1A90509071965A750D9CFC9627F0D4DB8ECC57133B0B5 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
23:12:38.0572 0x1978 storahci - ok
23:12:38.0584 0x1978 [ 8883C8CE4942A99B84E1CC6EFA19738E, 60C1CDA4382F8EE70D810DBB1BCAF5F389433563FF23EEB84859612F396D8CE6 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
23:12:38.0610 0x1978 storflt - ok
23:12:38.0644 0x1978 [ AE7B7E1E95BFB9340B1956C98CA52C81, 3E0214A0C486C1CD05D9BC57E58A998A3CEADDC1D24AE2A75098F56B37069160 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
23:12:38.0678 0x1978 stornvme - ok
23:12:38.0689 0x1978 [ 63513EF3121689B3A59BD217618A2E42, DE9B89732801DEC60BD116D58CFB427F7E37F093BE8A9F6E0CAC729B5346B314 ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
23:12:38.0769 0x1978 storqosflt - ok
23:12:38.0824 0x1978 [ CC96FF061C772340F2ED89ABBA567ADC, 028CD44405B7FAFC7BF331DD729E44E0594A63386F48CF39D7725A58B3DE22D6 ] StorSvc C:\WINDOWS\system32\storsvc.dll
23:12:38.0892 0x1978 StorSvc - ok
23:12:38.0936 0x1978 [ 000F5CFCEF0F06DC8FD1D2F568E48AE4, C1FE485E57A1B912CE79556E0EFF03CC11362E7966D250E3AA4962DCCB8F8EE6 ] storufs C:\WINDOWS\system32\drivers\storufs.sys
23:12:39.0000 0x1978 storufs - ok
23:12:39.0021 0x1978 [ 7415087F9006D6818F85F3CBD79B1A50, C768EBB2263375D285D689FEEF546147D42D7376977424A4D6FD655CC78EA7CD ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
23:12:39.0057 0x1978 storvsc - ok
23:12:39.0089 0x1978 [ E49858EA5865A015EB78B7F7C1C07DE2, 1ADBBAC2D2E2E3C40AB0BDDE068001E76A8DAB79C54F06479F7A4567DAD7A7A8 ] svsvc C:\WINDOWS\system32\svsvc.dll
23:12:39.0126 0x1978 svsvc - ok
23:12:39.0214 0x1978 [ 802278EE4ACCE9EA1F1481DF20EB1667, E78F0DA2CA0B2C2DF3B7E3B2A22C03380FE649813EE6EB31067C5FB6727DB7BD ] swenum C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys
23:12:39.0268 0x1978 swenum - ok
23:12:39.0306 0x1978 [ 313D2C0DBA0B23A8302254FD317D2EC8, 20B98D6F33FEC7ACBCEED9757A3FEAD837FA7BA378BA25575A33EA45E076FC6B ] swprv C:\WINDOWS\System32\swprv.dll
23:12:39.0357 0x1978 swprv - ok
23:12:39.0391 0x1978 [ 12D0CB1DCAE6725B6CA54CC2038C4C8C, 7D224298E440B8C5FDD99A52485A6245DE5109C9A02E65AD38F1EC6DBF4AEEF2 ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
23:12:39.0439 0x1978 Synth3dVsc - ok
23:12:39.0494 0x1978 [ 4367F58A191C778FE28892241C8D6A30, 50A82D900E14602113FA5ECFF43E82ECBA5A4DC6AABBA107B986A8CFBA0FB787 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
23:12:39.0522 0x1978 SynTP - ok
23:12:39.0575 0x1978 [ E86F7BEFA2C5404B34DDA7DE2ADAED87, 1AA166A039A4F61C75ABB282E6AD1D40E5509FC9920EBCACA433AD25924E23D7 ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
23:12:39.0606 0x1978 SynTPEnhService - ok
23:12:39.0670 0x1978 [ D5B31B2F14848015C211F1D674A82F3A, 58C18254C817693DB727090D1CC518032B3A67C5B3FC7F2F8CE4613A33790CFA ] SysMain C:\WINDOWS\system32\sysmain.dll
23:12:39.0735 0x1978 SysMain - ok
23:12:39.0757 0x1978 [ D5AAA188C70146977CFEE8D128599F3F, 9ABC30982E552EAF41FE84397EEEE5A3187444062C662D7CF35A03E3B274AFB8 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
23:12:39.0792 0x1978 SystemEventsBroker - ok
23:12:39.0832 0x1978 [ 95875059929EF91B55EA612D7967DD3D, 5F734209C8C9725376F7C146ED84999CC6D019C4C10B1795F53E72BE8853E2DD ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
23:12:39.0879 0x1978 TabletInputService - ok
23:12:39.0932 0x1978 [ FE33F417DFD9847CB571D3C7EE5FA7E3, B3C7BE7998B9B093DD969A2588EE8CEBD9771331A63D4B1D86A188317B5EE71C ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
23:12:40.0051 0x1978 TapiSrv - ok
23:12:40.0134 0x1978 [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
23:12:40.0273 0x1978 Tcpip - ok
23:12:40.0346 0x1978 [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
23:12:40.0433 0x1978 Tcpip6 - ok
23:12:40.0469 0x1978 [ D378A1AF58AFA84BB6AC753F2C1BE9F4, 8BBA623193D51E6A8DD0627FA08C93B918EF1BA2EEBA46CDBB86FE6A1007FDEE ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
23:12:40.0504 0x1978 tcpipreg - ok
23:12:40.0529 0x1978 [ D42AC03ACF9CA67693D1D9BB4D2A0BC8, D39D5180F3CDB23B4551A8C98F3C92A960B4CC9FA48E0FE11A6D89B0C247783F ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
23:12:40.0558 0x1978 tdx - ok
23:12:40.0572 0x1978 [ CCDBD2817C10A4F631280CBB3AE44FFB, A022DEF4D3CF75F41FA26275347F4BA38A513AD32FF18385C2E756DECB61D404 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
23:12:40.0588 0x1978 terminpt - ok
23:12:40.0660 0x1978 [ A0608264209A836821D6AB8C67B108AB, 7912C75F72BCAB7426A2E00C597C8D94C185B5DD31BD6C4BE5D56FECD5B0D9EA ] TermService C:\WINDOWS\System32\termsrv.dll
23:12:40.0720 0x1978 TermService - ok
23:12:40.0735 0x1978 [ 261830B1E3650E4471E1F98850B929B7, D281B8A93315E64C7AF5002E5BFBE6AFF8B35FD6AA747AE07D7AA96F4AFAA613 ] Themes C:\WINDOWS\system32\themeservice.dll
23:12:40.0776 0x1978 Themes - ok
23:12:40.0822 0x1978 [ 8D23F0819A00C547814409B734DD3747, 0E1B25A53C84486F8A57F309F3C016114F90F5AF5E576889BD230931F38594A5 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
23:12:40.0887 0x1978 tiledatamodelsvc - ok
23:12:40.0908 0x1978 [ 354DAA630928CD4DA2BC84A0DA4ADA9D, AFAE4948EA4F899267DC52DF9A06450FC3E77083B563E541581DA90685C7E98C ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
23:12:40.0926 0x1978 TimeBroker - ok
23:12:40.0970 0x1978 [ F4AEDABC8F3A9D632F8206D0C7F8CA09, 6E76749CD4B857B4D930267E3CF448AF4D14FAC851873C5E71572E62CAD2FA36 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
23:12:41.0005 0x1978 TPM - ok
23:12:41.0023 0x1978 [ 2D0338A3009075FCCB119CB7F3280F82, F42F3B8DA0F8B2C99892E66CDEF471A1CD30A30CF437ADFF464A2C786A6B87A6 ] TrkWks C:\WINDOWS\System32\trkwks.dll
23:12:41.0057 0x1978 TrkWks - ok
23:12:41.0125 0x1978 [ 62D6A900C5DFF2ECF131384E5A5C85AB, 1AF1FB868C59DFF452E3351EE5070B2C746DE606B9E2F1834CE2256F41ABE7A9 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
23:12:41.0192 0x1978 TrustedInstaller - ok
23:12:41.0214 0x1978 [ 676C801CAA61AADD0C918CC536A74B78, DB5DEC9445272E46D32DC2A9A99A9AE45729E424E61C679ECFD973AA88457BE6 ] TsUsbFlt C:\WINDOWS\system32\drivers\TsUsbFlt.sys
23:12:41.0274 0x1978 TsUsbFlt - ok
23:12:41.0310 0x1978 [ 2BB6CC0DD1CEE86330743B56FA9FE91F, EE71E3DEECA7599947AB09E8967FE8066348D82B4C17D8CBE800FCDE9CF4989D ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
23:12:41.0403 0x1978 TsUsbGD - ok
23:12:41.0434 0x1978 [ 14B46248612DF1B1A695040FFFBCFAFC, 8C373A3C416FC9AB3872A187E64AC7A6E69FF605BD8784E8F2B1C28C293A0495 ] tunnel C:\WINDOWS\System32\drivers\tunnel.sys
23:12:41.0544 0x1978 tunnel - ok
23:12:41.0585 0x1978 [ D0BE5EA1652D55029C9A898FB8ACFCE0, 80C4BC30B967C79B3457F43EB9B530CA2571C6158958879AC55E5A81F71CFF15 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
23:12:41.0602 0x1978 uagp35 - ok
23:12:41.0612 0x1978 [ 13C15E4B238895FE4731DB1D612EEB5F, 211E4B05AA09F7FBE2487C3241A98D1F970FEE5B9B1BAED2788B57233BFC4104 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
23:12:41.0645 0x1978 UASPStor - ok
23:12:41.0666 0x1978 [ BEBB8B55C5F99B69EEE39A9D7BADB21E, 08A094EA38AB58CC70108A3BDFDD3251897DC4B13FDDAD54C1B063137836EF34 ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
23:12:41.0736 0x1978 UcmCx0101 - ok
23:12:41.0779 0x1978 [ DE3EDAF609D00EA2E54986E6459796A6, 61A9AB51869F38300CC5CC5D302B962FB966F54CBB2E393954F36372B3A479FE ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
23:12:41.0824 0x1978 UcmUcsi - ok
23:12:41.0839 0x1978 [ FB1C1D8B96A482F3581338D6752E1D6C, 0FFAEE3E088614B3483C459513BB9D78EB76B574696FD877A3CDF6A11378F46C ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
23:12:41.0879 0x1978 Ucx01000 - ok
23:12:41.0907 0x1978 [ 4E1543ACE2F6E2846713E5123D9D4159, 1A6AFC525A80D1F19B14CDAD38790DF7293911C4D0E8301161D92201B934C3D4 ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
23:12:41.0982 0x1978 UdeCx - ok
23:12:42.0029 0x1978 [ CDCA9CC1D8293E75218D8FF85F2337A4, 173086C08DDC7625E026E425F1E2B5D6C795771BEAE9BFF6093E3592FBEBD323 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
23:12:42.0091 0x1978 udfs - ok
23:12:42.0106 0x1978 [ BC683E19307C533C7161DB7A58051347, 5553BE3421986FDD9992EBFD883CDA151F7166C01BBFA3E9183A3C93E41D79B6 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
23:12:42.0130 0x1978 UEFI - ok
23:12:42.0182 0x1978 [ D14B42C26DE402F316D49667D15446F0, 61CC9FF03EF78631C800EFD8D587975CB94D53DB80E6F60BD13BA52EC5690D3D ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
23:12:42.0222 0x1978 Ufx01000 - ok
23:12:42.0240 0x1978 [ 192470BE4321791FBB25F379D0141D6F, AD120F8F98BD99014471CE60630B5FEE7555AB261C98B7D9819FE23C386655F7 ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
23:12:42.0271 0x1978 UfxChipidea - ok
23:12:42.0302 0x1978 [ F7BD838E84E6B286DBCE068EFB8C0800, A55188C8F8BDC739A7ED7D29CDCB2A17468BBB158E13D804963B31ED73449520 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
23:12:42.0330 0x1978 ufxsynopsys - ok
23:12:42.0368 0x1978 [ C844E39B900FFA46CA8DD2BBA670A077, 0CB6232BCE47C59821DF25D6ED33E85C3E32DDAB101AA8A2C22B5401E73F5D5B ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
23:12:42.0424 0x1978 UI0Detect - ok
23:12:42.0450 0x1978 [ A25842AC180F0E8B02380ECB8ADA1AF5, AF22E7559C5EF8DC22A2B9E27FFFFF075B1D1B68A8307266BD9473E0FAF36BEF ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
23:12:42.0469 0x1978 uliagpkx - ok
23:12:42.0479 0x1978 [ 21088F43172525C7E02D335A3327F46C, B04AD471A7DFE83AB557DB4540616B7DF4A1904F8BDDCB920D449FCEE6F36FD5 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
23:12:42.0521 0x1978 umbus - ok
23:12:42.0537 0x1978 [ 294A291B5D48FE8F38DD94B7272442C5, 66C9139636760C92C1E04FCF440C432FF6C5A94E1577CAFE1D61FCF2D30472ED ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
23:12:42.0557 0x1978 UmPass - ok
23:12:42.0603 0x1978 [ 3427889AECC3B6912A0A01D095E32B98, 322AE14B74295ACFC124719BBEF8809201150A184E262EC55E26D2B45787BF9D ] UmRdpService C:\WINDOWS\System32\umrdp.dll
23:12:42.0645 0x1978 UmRdpService - ok
23:12:42.0696 0x1978 [ 0D5C9E27E93AAEA3E30A1E59A7AC3DFF, 31A203DA03877E6B887930990C5BB53402F0DFFB22A6F8FC5A34EF0B99CD8A7E ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
23:12:42.0769 0x1978 UnistoreSvc - ok
23:12:42.0797 0x1978 [ BD693208673F40BA21AA70B69F1D439C, E324947C2DD34386A83B09E73668F1CCED127AC91194B8BF7EC4C8E36CF8203E ] upnphost C:\WINDOWS\System32\upnphost.dll
23:12:42.0843 0x1978 upnphost - ok
23:12:42.0865 0x1978 [ A7A52EDDC3FAF183D6AC4774690ADF13, 630A0331F2EFA2DC7EFDACD08D8DF5C85BFDA30FF1525050FF54E069AFA45F6C ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
23:12:42.0889 0x1978 UrsChipidea - ok
23:12:42.0903 0x1978 [ 2EEA0897DD9E30E958B508D557F0B5E4, BE051A3AA5DFF56310FAB67AD19AC0443A3580542886EF3554EBE18F1323596F ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
23:12:42.0920 0x1978 UrsCx01000 - ok
23:12:42.0924 0x1978 [ DC54D775A3A61E4CDE871B4E38A1459A, CC996A9D293201BBD285E7B629B12EE88574702B8AC7BB4149439D6A25A07F7E ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
23:12:42.0954 0x1978 UrsSynopsys - ok
23:12:42.0998 0x1978 [ 18B63A0980F4AA1E6D7879B253980E37, 05F96DBE0A3DE2A685DEEBA8B6838A47AEB7CE2EBE8EB6BAD67B36DCF7E73589 ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
23:12:43.0032 0x1978 usbccgp - ok
23:12:43.0079 0x1978 [ 1C60A1A3C8E1E819E16F12BAEB1C83F8, E255BD173DBF091C5EA07381862E23C1FD761489EC396E312974FBC124E1F33A ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
23:12:43.0120 0x1978 usbcir - ok
23:12:43.0162 0x1978 [ 9A3E39F85DC6E3B9F792F1095ACFF788, 66B8E137A5232E9F717907CFD49FE624AE101F4DE14E2960849DABF7A877E87A ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
23:12:43.0196 0x1978 usbehci - ok
23:12:43.0227 0x1978 [ 0A368247A900656CC0678117DFC3A87C, 9BEAD14DA067439D913F609955E95CFA0B88ED4F1BC60B473E00F9D9CBC01B9C ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
23:12:43.0285 0x1978 usbhub - ok
23:12:43.0320 0x1978 [ 1BDA1FD02783566F0B20EB0E2517F85C, 4C86DC962BBE4CA5AE466A37CF647D84CE2A34DA7F861751587841FC10CFA09D ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
23:12:43.0376 0x1978 USBHUB3 - ok
23:12:43.0415 0x1978 [ 72EA850B59F40C25A4FEDDA5FE84EFEB, FB4801AA1FB72FC1C41024916368823E88D53E338640E3BEA865B0F0E7B8EE91 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
23:12:43.0501 0x1978 usbohci - ok
23:12:43.0520 0x1978 [ 47B2B2DE152E25546944049CA1170BB1, DDA0A806D3108B2475AB13F584EA8CE6F0932C5E394C2C3FA691DFAB8A2BCAC0 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
23:12:43.0550 0x1978 usbprint - ok
23:12:43.0573 0x1978 [ 923CA145CD0A9DFBA4CBBA60AB684C2C, EFAA1E730802490E9A53718D70484832A38345FE0A670937FC546FD245DF2CC9 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
23:12:43.0619 0x1978 usbscan - ok
23:12:43.0661 0x1978 [ 1F72E1A7E1858B7B3FF81522FCEBDE95, 4FAD243DA73C45CD5CA5E50F824F30EF0DC777D83957FD21FF43D8C89EC15AAC ] usbser C:\WINDOWS\System32\drivers\usbser.sys
23:12:43.0705 0x1978 usbser - ok
23:12:43.0746 0x1978 [ CD35467670DF1E6FBF36DA308F0C872B, E1F4F9B1EBD476394CBD0C934842AEE2502B030D97351B0A1E751FF23B011B57 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
23:12:43.0772 0x1978 USBSTOR - ok
23:12:43.0797 0x1978 [ DFA92EA105DD1073B43FB210EEB03DD4, D940432458F0A04F5013B48197CEA0412C8A909C50605AA21DD08271C90E2FE3 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
23:12:43.0817 0x1978 usbuhci - ok
23:12:43.0853 0x1978 [ B1484D4BBC6B7B424F1CD1554B0AFB84, C9432978603360182AAA983248FFA97576B3C59BE5DA45473DFA17E2940479C8 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
23:12:43.0897 0x1978 usbvideo - ok
23:12:43.0946 0x1978 [ C67A03F54A1EA683F4880A481EE5FF6C, 346185B378577FF14EFAD01ECB7DFC9AFC0D50F16DF081C3BA99AEFF710A0EE9 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
23:12:43.0987 0x1978 USBXHCI - ok
23:12:44.0048 0x1978 [ 32212C0FE0556915E763C29DEB6D267E, C5BC9DA3AB0C41604E8F3D01AFC2C25351FF5D3967E766DD0CDB4C0239ED6312 ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
23:12:44.0179 0x1978 UserDataSvc - ok
23:12:44.0225 0x1978 [ 19DB66E644058AA880AE20144FA40839, 3622EBD3E203C436000947666E7CDF9B075951CC1929241CCCDB123F55F93E46 ] UserManager C:\WINDOWS\System32\usermgr.dll
23:12:44.0272 0x1978 UserManager - ok
23:12:44.0326 0x1978 [ 0CFEA30C0217EE74FF853B2B0CC0BE6D, 1F0856D2D94F46D7B24B7EE18ED868C9EFAE972039D35D1FAA9058A12CF40493 ] UsoSvc C:\WINDOWS\system32\usocore.dll
23:12:44.0427 0x1978 UsoSvc - ok
23:12:44.0438 0x1978 [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] VaultSvc C:\WINDOWS\system32\lsass.exe
23:12:44.0450 0x1978 VaultSvc - ok
23:12:44.0484 0x1978 VBoxAswDrv - ok
23:12:44.0500 0x1978 [ 26223003DDFB347B5CF3EC0B56DB066B, 78848BE1334C05F28FA431B08225EAE8345B2C66E7D677F9936892FC941EA961 ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
23:12:44.0517 0x1978 vdrvroot - ok
23:12:44.0562 0x1978 [ 0C3F4E7684C1D72E85A98689E65A98A1, F7928D3EFC1A83125887ADA5F8E008022B58F0DBA8A711B4D60975D8CE82B595 ] vds C:\WINDOWS\System32\vds.exe
23:12:44.0609 0x1978 vds - ok
23:12:44.0662 0x1978 [ A417284BC6B5C2EEF63F2C5154473530, 55146660CDDD829630C216038E6500CFAC906E67C82881047B665BFEEB286D10 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
23:12:44.0715 0x1978 VerifierExt - ok
23:12:44.0750 0x1978 [ 4C39C05A72EB14C0567501C7E087E564, D3DC122B7E4A5BD345517FE3A9E9E58CD3C78887F9F327AB782BADCAD0F8F2EB ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
23:12:44.0831 0x1978 vhdmp - ok
23:12:44.0844 0x1978 [ C42206A15078596FDE8E89BB629DE342, B95F9EC2413ADE658A7CE4A9BB57A0E125C29205C24BBB120153DACAF4CF9482 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
23:12:44.0888 0x1978 vhf - ok
23:12:44.0902 0x1978 [ 248D9F911A5C94CF8477125DD0C3A291, 418C7285184BCC9DE4E56175960585867A5DB21FEF761C49FF6F1AF1C07D8088 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
23:12:44.0929 0x1978 vmbus - ok
23:12:44.0948 0x1978 [ 3E98DD4E0CBD6B4F9CBD0E9E0EDF541E, 2B5CF364F4D1D3359FBEA8BB2E72A1FCE1277E8D893977B751D9AC10A27DF018 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
23:12:45.0005 0x1978 VMBusHID - ok
23:12:45.0062 0x1978 [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
23:12:45.0103 0x1978 vmicguestinterface - ok
23:12:45.0114 0x1978 [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
23:12:45.0139 0x1978 vmicheartbeat - ok
23:12:45.0152 0x1978 [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
23:12:45.0177 0x1978 vmickvpexchange - ok
23:12:45.0191 0x1978 [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
23:12:45.0216 0x1978 vmicrdv - ok
23:12:45.0227 0x1978 [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
23:12:45.0252 0x1978 vmicshutdown - ok
23:12:45.0265 0x1978 [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
23:12:45.0289 0x1978 vmictimesync - ok
23:12:45.0301 0x1978 [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvmsession C:\WINDOWS\System32\ICSvc.dll
23:12:45.0326 0x1978 vmicvmsession - ok
23:12:45.0338 0x1978 [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
23:12:45.0363 0x1978 vmicvss - ok
23:12:45.0400 0x1978 [ 91F165C5D71D9DCB18D4661CF10D1084, 1D55C1FF0F5D860E6DB60EEFE303C0797C98BB0B053ECC255F9B316872288818 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
23:12:45.0433 0x1978 volmgr - ok
23:12:45.0455 0x1978 [ 17042748AC05862A0283D32575220080, A85B480CB969CB7678545D2A9EE99CBD2ADFF210FA016A43E092D0711FBB633D ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
23:12:45.0494 0x1978 volmgrx - ok
23:12:45.0512 0x1978 [ 823A237D871CD652C6BFD47BECB6810A, 99310521451CB54C29A5DEA54C3A666F95E2A1FF0979D5F9792885A161E90C65 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
23:12:45.0543 0x1978 volsnap - ok
23:12:45.0556 0x1978 [ 78727FA284C2095EED660D71CD3C9AEF, 323F0BD5A624DF77973F28C7CF31EC6B3A525496EBF063666623A62B1DB0EA65 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
23:12:45.0573 0x1978 vpci - ok
23:12:45.0594 0x1978 [ 2415961D561E02F5E46B7C1C687A6788, 68A54B9595A0D15D410D5F1656B6EBE3B913A4BA5F71C658C9B99420E6ED327A ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
23:12:45.0638 0x1978 vsmraid - ok
23:12:45.0713 0x1978 [ 16419CBDB04DB9FF298169AA93413822, 743AD26F08AF5EFF5DD353E75C3D659B10C3FEC2FEDABB76387B87721B5B98F8 ] VSS C:\WINDOWS\system32\vssvc.exe
23:12:45.0795 0x1978 VSS - ok
23:12:45.0828 0x1978 [ 6AE9A843AE979F2DCCA5A25C07C7A5F8, 3CEC26DE2EEC97929A0FBBD87FF75F8DC387C0988B2047074C8F069ACBEF2587 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
23:12:45.0864 0x1978 VSTXRAID - ok
23:12:45.0903 0x1978 [ BD232C761C59FA8D8EF626CA630E2D2E, E494EFDCE8F6343F49F33F1F03DCD5DEC9CB6F349B1AD302B4D3333B5F6BD8E5 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
23:12:45.0953 0x1978 vwifibus - ok
23:12:45.0971 0x1978 [ 3039687AB65CEE26CF478C1F42FFCD7D, 40E140C6F94B6203767A1493DF8CAE6BA1FB67FBD0C13789444F72410D0E6FF1 ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
23:12:45.0997 0x1978 vwififlt - ok
23:12:46.0016 0x1978 [ 37C868DDE3103130B00AD1313DAB5ACB, BF9C30817A3502F5C0673FD462B18FE1BF37963B29DF09D84B66BDCBF8ECBA81 ] vwifimp C:\WINDOWS\System32\drivers\vwifimp.sys
23:12:46.0036 0x1978 vwifimp - ok
23:12:46.0071 0x1978 [ EC9B6544C569E8D7FAB91772BD7D23F2, 06CC5F21E9A9DD35099CB3E44C3E2BF2F944CE5B71284E6A85E1B681F12BD31B ] W32Time C:\WINDOWS\system32\w32time.dll
23:12:46.0109 0x1978 W32Time - ok
23:12:46.0129 0x1978 [ FC40A7527D39F06D032A6553D22E4BF6, F572FCB5EB3DE16FD6222A5B6A43C81E3A1F838890667D9F0453F82FFCA772FF ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
23:12:46.0182 0x1978 WacomPen - ok
23:12:46.0233 0x1978 [ 2CFE8CBE358CC4D5715E010E3B13559F, 54E9BFCE202FA123EB261C226094054950429AAFA304AA714F461B003E070BD9 ] WalletService C:\WINDOWS\system32\WalletService.dll
23:12:46.0292 0x1978 WalletService - ok
23:12:46.0311 0x1978 [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:12:46.0356 0x1978 wanarp - ok
23:12:46.0359 0x1978 [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:12:46.0380 0x1978 wanarpv6 - ok
23:12:46.0440 0x1978 [ CF9EF65FA66B0F4982FD1FACAB3009B6, 681C1CD5DCAF87EF436B907534E98B0AB4F66BD62E46B8977A7880B854766A27 ] wbengine C:\WINDOWS\system32\wbengine.exe
23:12:46.0539 0x1978 wbengine - ok
23:12:46.0617 0x1978 [ 8F2B0ED6FCA72B34BEEA37E32D0EE106, A86C641A13FDF056B7BA13641551582199DDB08E9490003C74D999518B097C00 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
23:12:46.0704 0x1978 WbioSrvc - ok
23:12:46.0744 0x1978 [ A40484AC27EE08DBE7F8DA5E1F6651ED, E3259694450C4F1DEC5E0EA5E23BF3A51F1819374DF47FECF70282AFD46114A1 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
23:12:46.0819 0x1978 Wcmsvc - ok
23:12:46.0859 0x1978 [ 8E7FD07D2C82ACBCA52C4100C20F6542, FB2CD88557ABB5EBE6555CD4E41BF4BDC6FE6BCF26288338F2FB034B966FCBD3 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
23:12:46.0903 0x1978 wcncsvc - ok
23:12:46.0921 0x1978 [ 9C776ED423CD03F8ABD54C2557E34416, 282C1208977070EC0280D5ABA0E03A847AEAEE31F35CDAA3C7A02D8477614EB1 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
23:12:46.0957 0x1978 WcsPlugInService - ok
23:12:46.0987 0x1978 [ C8BA574B3BA6AE88741AC86B1FE3C1DC, B2422CDE3A6A27B52D270D24298FF69D91D389C68456EC1805BA30AA59BAB839 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
23:12:47.0016 0x1978 WdBoot - ok
23:12:47.0054 0x1978 [ 927AD29D7F91B9A0C5294932374DA15E, ABB2722EF4153771D15683B5CE603D2B7D8A585357F64A3DC26114F37BE2906E ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
23:12:47.0112 0x1978 Wdf01000 - ok
23:12:47.0138 0x1978 [ C5BB7C612B4C852836BEA39593BA5F46, 1E2B123F34500C2A8E983AAAF7F14E409B88DC396A655F19F3E7F15D0C51A762 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
23:12:47.0163 0x1978 WdFilter - ok
23:12:47.0196 0x1978 [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
23:12:47.0233 0x1978 WdiServiceHost - ok
23:12:47.0237 0x1978 [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
23:12:47.0257 0x1978 WdiSystemHost - ok
23:12:47.0308 0x1978 [ 9B2039C5673EEBF1D4E34ABC0AFB88C7, BBC85546BD86B9027426DAF148194CFE992B80FF89311B28BE0BD82C88630E8C ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
23:12:47.0356 0x1978 wdiwifi - ok
23:12:47.0381 0x1978 [ BD193A7BD34B2E829FAF56306FEE3B09, ADD746D198E21242CEFA01840952B792074EFC473113CD3E7F1ABBA6A4E26AF6 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
23:12:47.0411 0x1978 WdNisDrv - ok
23:12:47.0444 0x1978 WdNisSvc - ok
23:12:47.0488 0x1978 [ 6A3B5013D5C7840E8CABD63DD021C112, 371CCEEAC7816CFE79ACA8A218CDA16469D9567CB63CC9D18C55FF047011EF25 ] WebClient C:\WINDOWS\System32\webclnt.dll
23:12:47.0553 0x1978 WebClient - ok
23:12:47.0589 0x1978 [ EED4043BC3C2D00067411730EE118354, 5E268DA4DB78C06D8F181E9408B4769F8A12C38DA52C1E986EE0CEE1101E9485 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
23:12:47.0611 0x1978 Wecsvc - ok
23:12:47.0621 0x1978 [ 6ECD7A49AFC6533821BEEA1876CEB21D, 2E972245F56F589EF1AB9DABB9214B9DE6E290878735476323A3357D8CDFC71F ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
23:12:47.0639 0x1978 WEPHOSTSVC - ok
23:12:47.0659 0x1978 [ 09B434867028AF4895A87959EA668686, 26A7DB82E42DCBF3A77092D58AC6392754FD7C538B9EAAEFA88E9AF81DFE8E96 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
23:12:47.0717 0x1978 wercplsupport - ok
23:12:47.0738 0x1978 [ DE4E417B867841EE55114E588098B8D5, 878708C93FC1D919E2B9E1C5F94A0EAFC5F28BDAA58D3F29DEEDC8EC3F72D9ED ] WerSvc C:\WINDOWS\System32\WerSvc.dll
23:12:47.0777 0x1978 WerSvc - ok
23:12:47.0780 0x1978 wfpcapture - ok
23:12:47.0806 0x1978 [ DBF5255B759212E5217A2748567A0B5C, 5E81A9289EC39702179038B686A35FADF9974651E74222F3354B4CBE919887B0 ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
23:12:47.0828 0x1978 WFPLWFS - ok
23:12:47.0839 0x1978 [ 4CD8826BB8320741842A9E53E48AF2BC, 97B22D9DCD0FD31D3A801946173369B0E70B1850576682C8A8180874A61CAD1A ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
23:12:47.0855 0x1978 WiaRpc - ok
23:12:47.0888 0x1978 [ 4375BCBA419D19695CF566082CEF27D3, 6F86FA14B41A03F2BA51B8702F3D59B85FD488405601FA177495E4B7C576850D ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
23:12:47.0911 0x1978 WIMMount - ok
23:12:47.0913 0x1978 WinDefend - ok
23:12:47.0938 0x1978 [ 037BC6DE5F58D4A74A5BB0C12DCECDCA, 92921A2615A41C434BADEB33594DABC166FC9418FBD311A3B2022410B14BFDAC ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
23:12:47.0957 0x1978 WindowsTrustedRT - ok
23:12:47.0998 0x1978 [ 70BCD70BD53F2FE660ED94B025A043EB, B23B96DCAB30C62CB1651B3A2292155AEE8217CE3120574F5158D5E7DA09DE56 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
23:12:48.0025 0x1978 WindowsTrustedRTProxy - ok
23:12:48.0083 0x1978 [ 8921ECEC2C7D1B1333D77325C60D3AEA, 67C6B6A92B34D99165B5591D0730322C31E967E599BA44924249BF5AD505C132 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
23:12:48.0273 0x1978 WinHttpAutoProxySvc - ok
23:12:48.0318 0x1978 [ 7792AE5403BF8975B6460DFC3428D129, D88F77E973D58C2CA629CC9249877A34ABF31CA1DC2A570666921A8A0DC8DEC7 ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
23:12:48.0375 0x1978 WinMad - ok
23:12:48.0455 0x1978 [ 73B5230F03DC7002A70F11EA1B0BAA37, DFE8BBE52B58589686E402ACED51021E298A491F907EBA5689DF9DAFC3002BA5 ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
23:12:48.0549 0x1978 Winmgmt - ok
23:12:48.0716 0x1978 [ 2FE85D6AFF90F56A78743CC93B9CA684, B515765C4EE64E7EC16BD6AF037C084CCA6E81180AEF59E18F260406ABE6DF58 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
23:12:48.0832 0x1978 WinRM - ok
23:12:48.0859 0x1978 [ 811F30EB6EE8318C4171CB95AE30B9BD, 765F6BEA3D35D523B5D7ED7356EC0C97A48066A5C4D77C1E6EDAC6F220153385 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
23:12:48.0891 0x1978 WINUSB - ok
23:12:48.0914 0x1978 [ DF00381AB8665D48DE3FF794BC6760AB, 749AC7048601061A34BFF507B574AF028FC662C0A98692E7331E667D105EC09D ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
23:12:48.0925 0x1978 WinVerbs - ok
23:12:48.0989 0x1978 [ 3C096082A9232B7CEE4653B9C9031769, CFD4C7D0874097ED70735FD99206F21C12749B7956C4B5D4287F160EC6A21DCC ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
23:12:49.0084 0x1978 WlanSvc - ok
23:12:49.0150 0x1978 [ 0968D575D9108497A6DC37749D4A6C4F, 8BFEDBE642DA0FD8AC1E60180C192527F3D36E43089090A7BB6D8B27AB6E4F7F ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
23:12:49.0292 0x1978 wlidsvc - ok
23:12:49.0300 0x1978 [ 623ED8E10DFEEAB7AE2CD11A0451DB79, 7DDE15F22FD24556D4765F6CFD0F8E2F27370A89A962919646DE2613B33D43D6 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
23:12:49.0342 0x1978 WmiAcpi - ok
23:12:49.0387 0x1978 [ B2BB87531C4127ED4120E9BF5566827F, 1DDC0F00F215D77D3698F81B56D4488F384E9D017267840EDFA4846742B99B6A ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
23:12:49.0419 0x1978 wmiApSrv - ok
23:12:49.0437 0x1978 WMPNetworkSvc - ok
23:12:49.0482 0x1978 [ 78CA1FF6FE37EEFAFF99DD1C956AF60A, 883C7890C83BAB3B846A0C969D7B67031BD2EF65FA58A0620DD0CD1655C5B2C5 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
23:12:49.0564 0x1978 Wof - ok
23:12:49.0649 0x1978 [ C7503A49364DB2AF7A7DE177B233081F, 85DC6D8B5631E51FCF395A884F58571A96C8C55C38CA9ABEBD9C75BABAD21E38 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
23:12:49.0760 0x1978 workfolderssvc - ok
23:12:49.0795 0x1978 [ 388F2A3C771B8BEE76FD1AAF9614D08E, C064EC6136CC20C4EE19C86E91CA071974933BB52C9EF8521DF4AFD060FED4A2 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
23:12:49.0812 0x1978 wpcfltr - ok
23:12:49.0847 0x1978 [ A6FCFE1F691B4A4D266F5D487FADB9FE, 2135D0C13C1295A2F76885E380CD72CB71CEB8E0D9F1C183A35935B27737D423 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
23:12:49.0870 0x1978 WPDBusEnum - ok
23:12:49.0911 0x1978 [ 37DCE976B3935380F2F6E39ABB6BF40D, B14E875F6D6503DF0DB6D9D2363316073AEEF394D830EA2270A0DCDA56E1CEC4 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
23:12:49.0940 0x1978 WpdUpFltr - ok
23:12:49.0961 0x1978 [ 80F0154FD4293E562D54E97811E03499, EDE920F7F95EFBE542FE3CE066B6F7CDE3B9A37DDF3411DC86EACE9EEF294C1D ] WpnService C:\WINDOWS\system32\WpnService.dll
23:12:50.0007 0x1978 WpnService - ok
23:12:50.0037 0x1978 [ 3CD22DD5A790CF7C24D65455E565EA83, 49DB06DF6F38940E7F8691C16586A78BB20E702FD48A34E50987C06B08BDF4DB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
23:12:50.0100 0x1978 ws2ifsl - ok
23:12:50.0131 0x1978 [ EBA916109A176714E6A7BD152387F13C, 7B38B1708B83271ADA8D1CEC7F5F0A75C7F2572185C0961EFC749D5DF16A03F0 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
23:12:50.0171 0x1978 wscsvc - ok
23:12:50.0180 0x1978 [ E392DFAF6D0DEFC812ECC727A61F91C5, C28B6CC8AD034157CE92C7F098A9C12ADED2769E6AF954A9AAD10CC0E811DD2A ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
23:12:50.0217 0x1978 WSDPrintDevice - ok
23:12:50.0220 0x1978 WSearch - ok
23:12:50.0414 0x1978 [ 9EB85802AB625970E05879D15DE56335, B7DCE5E1924A5CEE76CC07FF3B8CEDBBD0DDBB4C4ED0A3BFB8D1ABCAD7C0AA23 ] WSService C:\WINDOWS\System32\WSService.dll
23:12:50.0527 0x1978 WSService - ok
23:12:50.0601 0x1978 [ B70FF53144AC4B3C7D98BFB7D7C239BD, 996F6253F24C6D734B777988CDE03CD3A32FFBAD6D7A198F1C590B762CD8DC0E ] wuauserv C:\WINDOWS\system32\wuaueng.dll
23:12:50.0740 0x1978 wuauserv - ok
23:12:50.0776 0x1978 [ 835F60262E7E310080EA05F6752BF248, 3010B731DF3D52B56EA16FD29B66F5D3AB9412E49CA4C547BAAECA3225C5DC40 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
23:12:50.0822 0x1978 WudfPf - ok
23:12:50.0838 0x1978 [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
23:12:50.0878 0x1978 WUDFRd - ok
23:12:50.0927 0x1978 [ 44CF3130AEC8914705487C4AEF756A19, 30B09E32DEC02141F9B99ED012E441056C1663A72E4130EF4221ECC0ED87BF4B ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
23:12:50.0944 0x1978 wudfsvc - ok
23:12:50.0970 0x1978 [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:12:50.0996 0x1978 WUDFWpdFs - ok
23:12:51.0026 0x1978 [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:12:51.0055 0x1978 WUDFWpdMtp - ok
23:12:51.0150 0x1978 [ D23F211E1AA0787EFEC373D172D4A1C2, 6CCAB272D121C9946B2CF6B19F50E09946F0187713D54BFBD371B5C017367204 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
23:12:51.0264 0x1978 WwanSvc - ok
23:12:51.0372 0x1978 [ 9BDC2AFCEF4CF1C630D728DE1DBD495A, 5CE19974380CCEC46C181315B349E9A7CE757E19118EC5978A2293D63268BA66 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
23:12:51.0458 0x1978 XblAuthManager - ok
23:12:51.0526 0x1978 [ 3EDB6162310EA223890C2DF44C68358B, 12053291809CA9C38A30EA4B2DE7115F535531F0925220C63B0312979F9CC707 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
23:12:51.0594 0x1978 XblGameSave - ok
23:12:51.0609 0x1978 [ 30021D1E0407B71E8D5D4F8DAE4E656A, EE2E366A1CC033C068176C7E9F876FFA0EF86A15A482B6964E170DE863CFF542 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
23:12:51.0649 0x1978 xboxgip - ok
23:12:51.0689 0x1978 [ 729B70C81F207541BC6A4ABAE3A8D594, 31F9BC41169D28B397C0D988C367C32FA9A95289E68AB8F38061DA478752A765 ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
23:12:51.0763 0x1978 XboxNetApiSvc - ok
23:12:51.0783 0x1978 [ 6851673B90D8CB332439E0339F81A6B6, 4E95F1A63E6DD58BB5BD6FC1D9784837D5E6F5BCF870C7ECC92DCA1AF20B6A4C ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
23:12:51.0809 0x1978 xinputhid - ok
23:12:51.0812 0x1978 ================ Scan global ===============================
23:12:51.0861 0x1978 [ C6BC6E49A7F76AA2BBA58CD08196755F, D02B6B285899E966D19323566A4780D51303D00E66674D7FF4B61991430A69A6 ] C:\WINDOWS\system32\basesrv.dll
23:12:51.0905 0x1978 [ 70EC9717DC3A1CDF79C703A145E0E5B7, D5ABF42063DFF799FD4099D8A347256CC79B89582B987B3DEE240AFA5BA421BE ] C:\WINDOWS\system32\winsrv.dll
23:12:51.0947 0x1978 [ F435AFA375ACBAEE44324DD464EDCC11, 815DE470439AE5D96348BEBF971A14FBDCA1D36F31CA0D25F69E5F41817D43D5 ] C:\WINDOWS\system32\sxssrv.dll
23:12:51.0986 0x1978 [ BB3D8E1C108F7244613FF3993291A922, 1642AF23F200D46F54239C3BA743F1D5ADDC6A32D5F6481264D0C1D7F3E9D533 ] C:\WINDOWS\system32\services.exe
23:12:51.0997 0x1978 [ Global ] - ok
23:12:51.0997 0x1978 ================ Scan MBR ==================================
23:12:52.0013 0x1978 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
23:12:52.0113 0x1978 \Device\Harddisk0\DR0 - ok
23:12:52.0114 0x1978 ================ Scan VBR ==================================
23:12:52.0116 0x1978 [ 046BB51D5F4614071B429AEFC4E15686 ] \Device\Harddisk0\DR0\Partition1
23:12:52.0153 0x1978 \Device\Harddisk0\DR0\Partition1 - ok
23:12:52.0163 0x1978 [ 0BEDFB7075AD48B4BD7C101FA2A8B310 ] \Device\Harddisk0\DR0\Partition2
23:12:52.0223 0x1978 \Device\Harddisk0\DR0\Partition2 - ok
23:12:52.0244 0x1978 [ EA17EC37F645E0253E1D82C7F05B5E0D ] \Device\Harddisk0\DR0\Partition3
23:12:52.0244 0x1978 \Device\Harddisk0\DR0\Partition3 - ok
23:12:52.0255 0x1978 [ 8F9CC771CE3E7627E65CD4DB7D644C4C ] \Device\Harddisk0\DR0\Partition4
23:12:52.0324 0x1978 \Device\Harddisk0\DR0\Partition4 - ok
23:12:52.0338 0x1978 [ 356F28E8F27CD8C6056B1C8DFC902FC1 ] \Device\Harddisk0\DR0\Partition5
23:12:52.0370 0x1978 \Device\Harddisk0\DR0\Partition5 - ok
23:12:52.0404 0x1978 [ 1E8CE7E897972EC13FB1915CB426C68E ] \Device\Harddisk0\DR0\Partition6
23:12:52.0405 0x1978 \Device\Harddisk0\DR0\Partition6 - ok
23:12:52.0414 0x1978 [ 7CB58E2743DE8F23BB3D899638962224 ] \Device\Harddisk0\DR0\Partition7
23:12:52.0415 0x1978 \Device\Harddisk0\DR0\Partition7 - ok
23:12:52.0430 0x1978 [ C017EBB3EAE1B5DBB126D52CB71B10C8 ] \Device\Harddisk0\DR0\Partition8
23:12:52.0431 0x1978 \Device\Harddisk0\DR0\Partition8 - ok
23:12:52.0431 0x1978 ================ Scan generic autorun ======================
23:12:52.0674 0x1978 [ 22EBD5AE3B3220D713E544D1D3AB3FEE, 9EF058B096DAA5C6242FBEB3DF509108180B1EB1EA252E63C437CF6C1B743BE0 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
23:12:52.0824 0x1978 RTHDVCPL - ok
23:12:52.0870 0x1978 [ 31821EC63BDEDE18E64C11F7248B32AB, 6982AE866F8EC7943FDB3E4B77B03542A2E3E07F080B8D806C4ED903DE3368CE ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
23:12:52.0900 0x1978 RtHDVBg - ok
23:12:52.0910 0x1978 [ 5DED2A3F11AE916C8F2724947E736261, 35402466FE6D02CC85A27171F55D9F7FD0AAF018D3CC410E46F0B43DCE7EA080 ] C:\Windows\system32\rundll32.exe
23:12:52.0950 0x1978 Logitech Download Assistant - ok
23:12:53.0003 0x1978 [ 31821EC63BDEDE18E64C11F7248B32AB, 6982AE866F8EC7943FDB3E4B77B03542A2E3E07F080B8D806C4ED903DE3368CE ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
23:12:53.0033 0x1978 RtHDVBg_PushButton - ok
23:12:53.0172 0x1978 [ 6923957178753EBC976A6D7405C691ED, FAD4AD32D7AFAE4CAB9F74BAA8F8D026CA1CB282F059FE21E5BDB5B9A463CDE8 ] c:\Program Files\Dell\QuickSet\QuickSet.exe
23:12:53.0241 0x1978 QuickSet - ok
23:12:53.0291 0x1978 [ BA5E62B4485B83737579749DCE43EE85, 49D82BF54DEFA2505F26AC7DBD5CEC7766E23CE24F5AC887564A8AE15BC99FEC ] C:\Windows\system32\igfxtray.exe
23:12:53.0305 0x1978 IgfxTray - ok
23:12:53.0365 0x1978 [ BAD24090378CD1D9D70DD21CF21D1BFB, A5FB5F8DCF33BB252304D6DA7CB62906E5A437A561A066A647C8D199EE3C57B8 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
23:12:53.0388 0x1978 IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )
23:12:55.0826 0x1978 Detect skipped due to KSN trusted
23:12:55.0826 0x1978 IAStorIcon - ok
23:12:55.0828 0x1978 SynTPEnh - ok
23:12:55.0970 0x1978 [ 139C3E683C64935D397A3A656D443E29, 56A914FC51ED13541987DBE2DE9ED28D9130DD3CF8DD90F9550A1D8818B24983 ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
23:12:55.0994 0x1978 RemoteControl10 - ok
23:12:56.0220 0x1978 [ 2F722690B624C9AD160EDC24DCA880DF, DB0D8B6A929550F8A7B0B518CEBFCAB077B07CECA55B2800C1A752F990B05E7C ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
23:12:56.0349 0x1978 AvastUI.exe - ok
23:12:56.0410 0x1978 [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
23:12:56.0418 0x1978 HP Software Update - ok
23:12:56.0662 0x1978 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:12:56.0883 0x1978 OneDriveSetup - ok
23:12:57.0074 0x1978 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:12:57.0230 0x1978 OneDriveSetup - ok
23:12:57.0406 0x1978 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:12:57.0546 0x1978 OneDriveSetup - ok
23:12:57.0621 0x1978 [ 9615F77B42907587DEBD6CA487317830, 71CB9484D079BCAD70C69D50C188A8BC07A3ED6D7EB90BE2749859E506FE696D ] C:\Program Files (x86)\Windows Mail\wab.exe
23:12:57.0700 0x1978 WAB Migrate - ok
23:12:57.0845 0x1978 [ 9603AF868C8A923A784647D77E1F4F53, EC69829D2FEBAAB825B17833B337A82AF766D258C66C11D8AF567124865E2394 ] C:\Users\Kristine\AppData\Local\Epic Privacy Browser\Update\EpicUpdate.exe
23:12:57.0874 0x1978 Epic Privacy Browser Update - detected UnsignedFile.Multi.Generic ( 1 )
23:13:00.0867 0x1978 Detect skipped due to KSN trusted
23:13:00.0868 0x1978 Epic Privacy Browser Update - ok
23:13:01.0118 0x1978 [ 2C3207CF21DF8DACB9F9DB14401844D3, 7B620331D64F95D1E6DAAC26D075A3230916D83B34D8A621DFB5EFA12E760AD8 ] C:\Users\Kristine\AppData\Local\Amazon Music\Amazon Music Helper.exe
23:13:01.0223 0x1978 Amazon Music - ok
23:13:01.0294 0x1978 [ 2010CA459E5EC8F9D5FC8B000D130294, 058FF215A3AAD04F2A4CF23B2CC62A5EA28F5A705EFA689DCE9126720CF33229 ] C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\OneDrive.exe
23:13:01.0323 0x1978 OneDrive - ok
23:13:01.0378 0x1978 [ A6177D080759CF4A03EF837A38F62401, 79D1FFABDD7841D9043D4DDF1F93721BCD35D823614411FD4EAB5D2C16A86F35 ] C:\WINDOWS\system32\cmd.exe
23:13:01.0434 0x1978 Uninstall C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64 - ok
23:13:01.0467 0x1978 [ A6177D080759CF4A03EF837A38F62401, 79D1FFABDD7841D9043D4DDF1F93721BCD35D823614411FD4EAB5D2C16A86F35 ] C:\WINDOWS\system32\cmd.exe
23:13:01.0487 0x1978 Uninstall C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64 - ok
23:13:01.0497 0x1978 [ A6177D080759CF4A03EF837A38F62401, 79D1FFABDD7841D9043D4DDF1F93721BCD35D823614411FD4EAB5D2C16A86F35 ] C:\WINDOWS\system32\cmd.exe
23:13:01.0516 0x1978 Uninstall C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64 - ok
23:13:01.0526 0x1978 [ A6177D080759CF4A03EF837A38F62401, 79D1FFABDD7841D9043D4DDF1F93721BCD35D823614411FD4EAB5D2C16A86F35 ] C:\WINDOWS\system32\cmd.exe
23:13:01.0546 0x1978 Uninstall C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64 - ok
23:13:01.0556 0x1978 [ A6177D080759CF4A03EF837A38F62401, 79D1FFABDD7841D9043D4DDF1F93721BCD35D823614411FD4EAB5D2C16A86F35 ] C:\WINDOWS\system32\cmd.exe
23:13:01.0576 0x1978 Uninstall C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64 - ok
23:13:01.0775 0x1978 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:13:01.0915 0x1978 OneDriveSetup - ok
23:13:01.0950 0x1978 [ 9615F77B42907587DEBD6CA487317830, 71CB9484D079BCAD70C69D50C188A8BC07A3ED6D7EB90BE2749859E506FE696D ] C:\Program Files (x86)\Windows Mail\wab.exe
23:13:01.0974 0x1978 WAB Migrate - ok
23:13:02.0195 0x1978 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:13:02.0335 0x1978 OneDriveSetup - ok
23:13:02.0371 0x1978 [ 9615F77B42907587DEBD6CA487317830, 71CB9484D079BCAD70C69D50C188A8BC07A3ED6D7EB90BE2749859E506FE696D ] C:\Program Files (x86)\Windows Mail\wab.exe
23:13:02.0395 0x1978 WAB Migrate - ok
23:13:02.0396 0x1978 Waiting for KSN requests completion. In queue: 259
23:13:03.0206 0x2ac0 Object required for P2P: [ 7EBD20284AC9BF9F0A020B86769BB074 ] Tcpip
23:13:03.0397 0x1978 Waiting for KSN requests completion. In queue: 160
23:13:04.0397 0x1978 Waiting for KSN requests completion. In queue: 160
23:13:04.0825 0x09dc Object required for P2P: [ 2C3207CF21DF8DACB9F9DB14401844D3 ] C:\Users\Kristine\AppData\Local\Amazon Music\Amazon Music Helper.exe
23:13:05.0398 0x1978 Waiting for KSN requests completion. In queue: 160
23:13:05.0822 0x2ac0 Object send P2P result: true
23:13:05.0822 0x2ac0 Object required for P2P: [ 7EBD20284AC9BF9F0A020B86769BB074 ] Tcpip6
23:13:06.0399 0x1978 Waiting for KSN requests completion. In queue: 159
23:13:07.0395 0x09dc Object send P2P result: true
23:13:07.0396 0x09dc Object required for P2P: [ 2010CA459E5EC8F9D5FC8B000D130294 ] C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\OneDrive.exe
23:13:07.0399 0x1978 Waiting for KSN requests completion. In queue: 158
23:13:08.0400 0x1978 Waiting for KSN requests completion. In queue: 158
23:13:08.0400 0x2ac0 Object send P2P result: true
23:13:08.0410 0x2ac0 Object required for P2P: [ 0968D575D9108497A6DC37749D4A6C4F ] wlidsvc
23:13:09.0401 0x1978 Waiting for KSN requests completion. In queue: 48
23:13:09.0926 0x09dc Object send P2P result: true
23:13:10.0402 0x1978 Waiting for KSN requests completion. In queue: 42
23:13:10.0935 0x2ac0 Object send P2P result: true
23:13:10.0945 0x2ac0 Object required for P2P: [ 2F722690B624C9AD160EDC24DCA880DF ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
23:13:11.0402 0x1978 Waiting for KSN requests completion. In queue: 10
23:13:12.0403 0x1978 Waiting for KSN requests completion. In queue: 10
23:13:13.0404 0x1978 Waiting for KSN requests completion. In queue: 10
23:13:13.0531 0x2ac0 Object send P2P result: true
23:13:14.0503 0x1978 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x60100 ( disabled : updated )
23:13:14.0517 0x1978 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.1.2241.1482 ), 0x41000 ( enabled : updated )
23:13:14.0532 0x1978 FW detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.1.2241.1482 ), 0x41010 ( enabled )
23:13:17.0170 0x1978 ============================================================
23:13:17.0170 0x1978 Scan finished
23:13:17.0170 0x1978 ============================================================
23:13:17.0194 0x2944 Detected object count: 0
23:13:17.0194 0x2944 Actual detected object count: 0
__________________ Gruß, Kristine |
|
07.01.2016, 13:51
| #5 |
| /// TB-Ausbilder | Und mal wieder ist alles seeeehr langsam geworden... Servus, Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers |
|
07.01.2016, 22:13
| #6 |
| | Und mal wieder ist alles seeeehr langsam geworden... Hallo Matthias, hier das Logfile Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.01.07.05
rootkit: v2016.01.05.01
Windows 10 x64 NTFS
Internet Explorer 11.20.10586.0
Kristine :: BIGTOY [administrator]
07.01.2016 20:44:08
mbar-log-2016-01-07 (20-44-08).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 488499
Time elapsed: 38 minute(s), 16 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
__________________ --> Und mal wieder ist alles seeeehr langsam geworden... |
|
08.01.2016, 16:26
| #7 |
| /// TB-Ausbilder | Und mal wieder ist alles seeeehr langsam geworden... Servus, alle Programme auf dem Desktop abspeichern oder dorthin verschieben und vom Desktop starten! Schritt 1 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 2 Downloade Dir bitte  Malwarebytes Anti-Malware
Schritt 3 Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Schritt 4
Bitte poste mit deiner nächsten Antwort
|
|
08.01.2016, 23:20
| #8 |
| | Und mal wieder ist alles seeeehr langsam geworden... Hallo Matthias, hier die Files in mehreren Teilen: Code:
ATTFilter # AdwCleaner v5.028 - Bericht erstellt am 08/01/2016 um 20:08:09
# Aktualisiert am 04/01/2016 von Xplode
# Datenbank : 2016-01-04.2 [Server]
# Betriebssystem : Windows 10 Home (x64)
# Benutzername : Kristine - BIGTOY
# Gestartet von : C:\Users\Kristine\Desktop\AdwCleaner_5.028.exe
# Option : Löschen
# Unterstützung : http://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
***** [ Dateien ] *****
***** [ DLLs ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}
***** [ Internetbrowser ] *****
[-] [C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Gelöscht : hxxp://de.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_fsvideosft_15_16¶m1=1¶m2=f%3D1%26b%3DChrome%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzzyEyD0CyE0CzytAyEtC0FtC0BzytAtN0D0Tzu0StCtBtDtCtN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtCzzzztA0AyEyEtG0D0F0BzztGtDzyyE0BtG0CtAtD0EtGtD0BtBtCyB0E0CtBtCyCtAyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0EtA0CzzyDyE0EtGzy0CtCtBtGyEyEtBtDtG0AyBtByEtGzy0B0E0FyEzz0FyBtDzytDtD2QtN0A0LzuyE%26cr%3D1463948627%26a%3Dwny_fsvideosft_15_16%26os%3DWindows 8.1
*************************
:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Chrome Richtlinien gelöscht
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1931 Bytes] ##########
Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 08.01.2016 Suchlaufzeit: 20:30 Protokolldatei: Mbam2016.txt Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2016.01.08.05 Rootkit-Datenbank: v2016.01.05.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: Kristine Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 491267 Abgelaufene Zeit: 25 Min., 38 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 10 Home x64
Ran by Kristine (Administrator) on 08.01.2016 at 21:05:11,92
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 08.01.2016 at 21:08:14,82
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-12-2015
durchgeführt von Kristine (Administrator) auf BIGTOY (08-01-2016 22:48:57)
Gestartet von C:\Users\Kristine\Desktop
Geladene Profile: Kristine (Verfügbare Profile: AdMinchen & Kristine & Administrator & Gast)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Intel) C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2016-01-05] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2016-01-05] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2016-01-05] (Realtek Semiconductor)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3760456 2013-04-23] (Dell Inc.)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [402344 2016-01-05] ()
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-07-16] (Synaptics Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [102928 2012-10-23] (CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-06] (AVAST Software)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Run: [Epic Privacy Browser Update] => C:\Users\Kristine\AppData\Local\Epic Privacy Browser\Update\EpicUpdate.exe [507560 2015-01-19] (Epic Privacy Browser)
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Run: [Amazon Music] => C:\Users\Kristine\AppData\Local\Amazon Music\Amazon Music Helper.exe [5890368 2015-11-18] ()
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [150528 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-06] (AVAST Software)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-11-09]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2014-12-28]
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A9E5C462-FBF2-4D59-9549-9AC520EBB74E}: [DhcpNameServer] 172.168.0.2
Tcpip\..\Interfaces\{b6812221-8119-490c-b613-e8fb08fc1c41}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F71F367D-2A25-444C-8FDC-944AFC710762}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-06] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-06] (AVAST Software)
FireFox:
========
FF ProfilePath: C:\Users\Kristine\AppData\Roaming\Mozilla\Firefox\Profiles\1b0ng33u.default
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-3988005159-474404469-3811382638-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kristine\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-13] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3988005159-474404469-3811382638-1002: @updates.epicbrowser.com/Epic Privacy Browser Update;version=3 -> C:\Users\Kristine\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [2015-01-19] (Epic Privacy Browser)
FF Plugin HKU\S-1-5-21-3988005159-474404469-3811382638-1002: @updates.epicbrowser.com/Epic Privacy Browser Update;version=9 -> C:\Users\Kristine\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [2015-01-19] (Epic Privacy Browser)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-07]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-11-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
Chrome:
=======
CHR HomePage: Default -> hxxp://de.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_fsvideosft_15_16¶m1=1¶m2=f%3D1%26b%3DChrome%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzzyEyD0CyE0CzytAyEtC0FtC0BzytAtN0D0Tzu0StCtBtDtCtN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtCzzzztA0AyEyEtG0D0F0BzztGtDzyyE0BtG0CtAtD0EtGtD0BtBtCyB0E0CtBtCyCtAyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0EtA0CzzyDyE0EtGzy0CtCtBtGyEyEtBtDtG0AyBtByEtGzy0B0E0FyEzz0FyBtDzytDtD2QtN0A0LzuyE%26cr%3D1463948627%26a%3Dwny_fsvideosft_15_16%26os%3DWindows 8.1
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://de-de.facebook.com/","hxxp://www.ebay.de/"
CHR Profile: C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-29]
CHR Extension: (Google Docs) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-29]
CHR Extension: (Google Drive) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-08]
CHR Extension: (Adblock Plus) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-06]
CHR Extension: (Google-Suche) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Tabellen) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-29]
CHR Extension: (Google Docs Offline) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (Avast Online Security) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-05]
CHR Extension: (Ghostery) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2016-01-03]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
CHR Extension: (Google Mail) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-06]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-06] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-11-06] (AVAST Software)
R2 BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [101536 2013-04-16] (Intel)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3736520 2015-01-29] (devolo AG)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373160 2016-01-05] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [156616 2013-06-26] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-25] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312056 2016-01-05] (Realtek Semiconductor)
S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-16] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-06] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-11-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-06] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [466400 2015-11-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-06] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-06] (AVAST Software)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [263952 2016-01-05] (Intel Corporation)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3485696 2015-10-30] (Intel Corporation)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [896744 2016-01-05] (Realtek )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [450632 2013-02-22] (RTS Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29424 2013-06-04] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-16] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-08 22:48 - 2016-01-08 22:49 - 00020318 _____ C:\Users\Kristine\Desktop\FRST.txt
2016-01-08 21:08 - 2016-01-08 21:08 - 00000550 _____ C:\Users\Kristine\Desktop\JRT.txt
2016-01-08 21:03 - 2016-01-08 21:04 - 01599336 _____ (Malwarebytes) C:\Users\Kristine\Desktop\JRT.exe
2016-01-08 21:02 - 2016-01-08 21:02 - 00001203 _____ C:\Users\Kristine\Desktop\Mbam2016.txt
2016-01-08 20:18 - 2016-01-08 20:21 - 22908888 _____ (Malwarebytes ) C:\Users\Kristine\Desktop\mbam-setup-2.2.0.1024.exe
2016-01-08 20:15 - 2016-01-08 20:15 - 00002013 _____ C:\Users\Kristine\Desktop\AdwCleaner[C2]2016.txt
2016-01-08 19:59 - 2016-01-08 20:02 - 01749504 _____ C:\Users\Kristine\Desktop\AdwCleaner_5.028.exe
2016-01-07 23:15 - 2016-01-07 23:16 - 00000022 _____ C:\Users\Kristine\Downloads\Photos.zip
2016-01-07 20:43 - 2016-01-07 21:49 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-01-07 20:41 - 2016-01-07 21:49 - 00000000 ____D C:\Users\Kristine\Desktop\mbar
2016-01-07 20:38 - 2016-01-07 20:40 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Kristine\Desktop\mbar-1.09.3.1001.exe
2016-01-07 15:34 - 2016-01-07 15:34 - 00000000 ____D C:\Users\Kristine\AppData\Local\ActiveSync
2016-01-07 15:32 - 2016-01-07 15:32 - 00000020 ___SH C:\Users\Kristine\ntuser.ini
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-01-07 12:40 - 2016-01-08 20:09 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-07 12:28 - 2016-01-07 12:28 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-01-07 12:24 - 2016-01-07 12:30 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-01-07 12:20 - 2016-01-08 20:08 - 00000000 ____D C:\Users\Kristine
2016-01-07 12:20 - 2016-01-07 12:39 - 00000000 ____D C:\Users\Gast
2016-01-07 12:20 - 2016-01-07 12:39 - 00000000 ____D C:\Users\AdMinchen
2016-01-07 12:20 - 2016-01-07 12:35 - 00000000 ____D C:\Users\Administrator
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Vorlagen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Startmenü
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Netzwerkumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Lokale Einstellungen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Eigene Dateien
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Druckumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Documents\Eigene Videos
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Documents\Eigene Musik
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Documents\Eigene Bilder
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\AppData\Local\Verlauf
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\AppData\Local\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Vorlagen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Startmenü
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Lokale Einstellungen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Eigene Dateien
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Videos
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Videos
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Vorlagen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Startmenü
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Netzwerkumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Lokale Einstellungen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Eigene Dateien
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Druckumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Documents\Eigene Videos
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Documents\Eigene Musik
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Documents\Eigene Bilder
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\AppData\Local\Verlauf
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\AppData\Local\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Anwendungsdaten
2016-01-07 12:17 - 2016-01-08 20:11 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-01-07 12:17 - 2016-01-07 12:17 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-01-07 12:17 - 2016-01-07 12:17 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2016-01-07 12:17 - 2016-01-07 12:17 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2016-01-07 12:17 - 2016-01-07 12:17 - 00000000 ____D C:\Program Files\Synaptics
2016-01-07 12:17 - 2016-01-05 23:22 - 00103944 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-01-07 12:17 - 2016-01-05 23:22 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-01-07 12:16 - 2016-01-07 12:24 - 00000000 ____D C:\Program Files\Intel
2016-01-07 12:16 - 2016-01-07 12:16 - 01019725 _____ C:\WINDOWS\system32\Drivers\rtwavesskdy.dat
2016-01-07 12:16 - 2016-01-07 12:16 - 00458965 _____ C:\WINDOWS\system32\Drivers\rtwavesmapro.dat
2016-01-07 12:16 - 2016-01-07 12:16 - 00031095 _____ C:\WINDOWS\system32\Drivers\rtwavesEFX.dat
2016-01-07 12:16 - 2016-01-07 12:16 - 00010945 _____ C:\WINDOWS\system32\Drivers\rtwavesMFX.dat
2016-01-07 12:16 - 2016-01-07 12:16 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-01-07 12:16 - 2016-01-07 12:16 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-01-07 12:16 - 2016-01-07 12:16 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2016-01-07 12:15 - 2016-01-07 12:15 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-01-07 12:15 - 2016-01-07 12:15 - 00000000 ____D C:\Program Files\Realtek
2016-01-07 12:15 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-01-07 12:12 - 2016-01-07 12:31 - 00234256 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-07 12:10 - 2016-01-07 20:29 - 00000000 ___DC C:\WINDOWS\Panther
2016-01-07 12:07 - 2016-01-07 12:07 - 00000000 ____D C:\Windows.old
2016-01-07 12:06 - 2016-01-07 12:06 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-01-07 12:06 - 2016-01-07 12:06 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-01-07 12:06 - 2016-01-07 12:06 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-01-07 12:06 - 2016-01-07 12:06 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-01-07 12:06 - 2016-01-07 12:06 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-07 12:06 - 2016-01-07 12:06 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-01-07 12:06 - 2016-01-07 12:06 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-01-07 12:06 - 2016-01-07 12:06 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-01-07 12:06 - 2016-01-07 12:06 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
Code:
ATTFilter 2016-01-07 12:06 - 2016-01-07 12:06 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2016-01-07 12:03 - 2016-01-07 12:03 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-01-07 11:59 - 2016-01-07 11:59 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-01-07 11:59 - 2016-01-07 11:59 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-01-07 11:59 - 2016-01-07 11:59 - 00000000 ____D C:\Program Files\MSBuild
2016-01-07 11:59 - 2016-01-07 11:59 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-01-07 11:59 - 2016-01-07 11:59 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-01-07 11:58 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-01-07 11:58 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-01-07 11:58 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-01-07 11:58 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-01-07 11:58 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-01-07 11:58 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-07 10:52 - 2016-01-08 20:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-06 23:10 - 2016-01-06 23:26 - 00278438 _____ C:\TDSSKiller.3.1.0.9_06.01.2016_23.10.50_log.txt
2016-01-06 23:07 - 2016-01-06 23:10 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Kristine\Desktop\tdsskiller.exe
2016-01-06 02:32 - 2016-01-06 02:32 - 00065156 _____ C:\Users\Kristine\Downloads\Kontoauszug_68225008__Nr.0122015_vom_31.12.2015_20160106023237.pdf
2016-01-06 02:32 - 2016-01-06 02:32 - 00050694 _____ C:\Users\Kristine\Downloads\Kontoauszug_68225407__Nr.0042015_vom_31.12.2015_20160106023241.pdf
2016-01-06 01:11 - 2016-01-06 01:14 - 00041576 _____ C:\Users\Kristine\Downloads\FRST.txt
2016-01-06 01:11 - 2016-01-06 01:11 - 02370560 _____ (Farbar) C:\Users\Kristine\Desktop\FRST64.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 72130584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCORES64.dat
2016-01-05 23:22 - 2016-01-05 23:22 - 35016296 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 34083104 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 29894272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 29101576 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 28612544 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 19861512 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 15454976 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 13928480 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 13427688 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 13242880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 12126952 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\MaxxVoiceAPO30.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 11586056 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 11441600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 08634888 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 07858088 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2016-01-05 23:22 - 2016-01-05 23:22 - 07181616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 06560024 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2016-01-05 23:22 - 2016-01-05 23:22 - 05797102 _____ C:\WINDOWS\system32\igdclbif.bin
2016-01-05 23:22 - 2016-01-05 23:22 - 05685768 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 05262864 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 05028408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 04608520 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 04518136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-01-05 23:22 - 2016-01-05 23:22 - 04482424 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 04324664 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 04123144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 03970056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 03309264 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 02999808 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 02935544 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 02880873 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-01-05 23:22 - 2016-01-05 23:22 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2016-01-05 23:22 - 2016-01-05 23:22 - 02719992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-01-05 23:22 - 2016-01-05 23:22 - 02145232 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 02052104 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 02001056 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO264.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01816720 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01814064 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01766136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01764432 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO232.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01665200 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01576968 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01351176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01167880 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01026464 _____ C:\WINDOWS\system32\igfxSDK.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 01015608 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00962464 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00958880 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00930848 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00819449 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2016-01-05 23:22 - 2016-01-05 23:22 - 00784312 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00750088 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00692520 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00659872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00657304 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBTHX64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00641530 _____ C:\WINDOWS\system32\FilmModeDetection.wmv
2016-01-05 23:22 - 2016-01-05 23:22 - 00626696 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00621472 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00591640 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBTHX32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00545824 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00535968 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00511260 _____ C:\WINDOWS\system32\cp_resources.bin
2016-01-05 23:22 - 2016-01-05 23:22 - 00466344 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00460440 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00439304 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00435088 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00433968 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00422432 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00415752 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00403671 _____ C:\WINDOWS\system32\ImageStabilization.wmv
2016-01-05 23:22 - 2016-01-05 23:22 - 00402344 _____ C:\WINDOWS\system32\igfxTray.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00399464 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00390152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00388616 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00384008 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00381936 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00379792 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00375173 _____ C:\WINDOWS\system32\ColorImageEnhancement.wmv
2016-01-05 23:22 - 2016-01-05 23:22 - 00373160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00355496 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00354216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00350224 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00333288 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00333288 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00318472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00310160 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00300968 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00295024 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00273416 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-01-05 23:22 - 2016-01-05 23:22 - 00268704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00266248 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00255496 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00242160 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00236456 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00232712 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00231848 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00231336 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00225504 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00225288 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00222736 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00220136 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00212256 _____ (Waves Audio) C:\WINDOWS\system32\MaxxAudioVienna264.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00206344 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4331.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00205360 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00193032 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00187280 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00181328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00176480 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00174632 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkXInterface64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00174504 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00173584 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00161952 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00144184 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00120720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00111624 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00103944 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00103432 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00100872 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00097976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00095248 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00094168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00084048 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00083464 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00079296 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00055248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00052744 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00041296 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00040931 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00040343 _____ C:\WINDOWS\system32\iglhxo64.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00040316 _____ C:\WINDOWS\system32\iglhxc64.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00039798 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00039658 _____ C:\WINDOWS\system32\iglhxg64.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00032392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00029192 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00029192 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00027656 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00027656 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00022536 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00022536 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00004730 _____ C:\WINDOWS\system32\iglhxs64.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00000935 _____ C:\WINDOWS\system32\Gfxv4_0.exe.config
2016-01-05 23:22 - 2016-01-05 23:22 - 00000935 _____ C:\WINDOWS\system32\DPTopologyApp.exe.config
2016-01-05 23:22 - 2016-01-05 23:22 - 00000895 _____ C:\WINDOWS\system32\Gfxv2_0.exe.config
2016-01-05 23:22 - 2016-01-05 23:22 - 00000895 _____ C:\WINDOWS\system32\DPTopologyAppv2_0.exe.config
2016-01-05 23:21 - 2016-01-05 23:21 - 07104888 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 03709056 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioMeters64.exe
2016-01-05 23:21 - 2016-01-05 23:21 - 03269440 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 02058880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01991784 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01804936 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01613720 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01530872 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01416832 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01231248 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01183352 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00896744 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2016-01-05 23:21 - 2016-01-05 23:21 - 00759208 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00742536 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00723232 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00693032 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00588120 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00517464 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00458016 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00453848 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00342280 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00339136 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00283928 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00264968 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00264896 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00263952 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\ibtusb.sys
2016-01-05 23:21 - 2016-01-05 23:21 - 00263944 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00242448 _____ (Intel Corporation) C:\WINDOWS\system32\ibtproppage.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00131024 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00128512 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00108696 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2016-01-05 16:18 - 2016-01-07 12:40 - 00002800 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForKristine
2016-01-05 16:18 - 2016-01-07 12:40 - 00000358 _____ C:\WINDOWS\Tasks\HPCeeScheduleForKristine.job
2016-01-04 13:50 - 2016-01-04 13:50 - 00140143 _____ C:\Users\Kristine\Downloads\DHL-Marke-W5B9TDP4U4.pdf
2016-01-02 10:01 - 2016-01-02 10:01 - 00645586 _____ C:\Users\Kristine\Downloads\Produktempfehlungen neu 06.12.15.pdf
2016-01-02 09:56 - 2016-01-02 09:56 - 00838737 _____ C:\Users\Kristine\Downloads\Buchempfehlungen 13.06. 1.pdf
2015-12-25 17:34 - 2016-01-07 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-25 17:34 - 2015-12-25 17:34 - 00002642 _____ C:\Users\Public\Desktop\Skype.lnk
2015-12-25 17:34 - 2015-12-25 17:34 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-17 09:28 - 2015-12-17 09:28 - 05967077 _____ C:\Users\Kristine\Downloads\Supplementierung.pdf
2015-12-14 08:25 - 2015-12-14 08:25 - 00094231 _____ C:\Users\Kristine\Documents\versandetikett9.pdf
2015-12-12 09:27 - 2015-12-12 09:27 - 02798183 _____ C:\Users\Kristine\Downloads\Wasserstoffperoxid_Jenschura.pdf
2015-12-09 09:02 - 2015-12-09 09:02 - 00188416 _____ C:\Users\Kristine\Downloads\DHL-Marke-ZP92SXWD3Q.pdf
2015-12-09 08:52 - 2015-12-09 08:52 - 00141870 _____ C:\Users\Kristine\Downloads\DHL-Marke-CT62HKR464.pdf
2015-12-09 08:41 - 2016-01-04 13:51 - 00140148 _____ C:\Users\Kristine\Documents\Versandmarke.pdf
2015-12-09 08:41 - 2015-12-09 08:41 - 00142090 _____ C:\Users\Kristine\Downloads\DHL-Marke-HU9AQH2S9V.pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-08 22:48 - 2015-05-26 20:36 - 00000000 ____D C:\FRST
2016-01-08 22:46 - 2014-10-30 09:14 - 00004158 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1B06BDCF-A72F-4F75-9CF4-3227545CE179}
2016-01-08 21:52 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-08 21:26 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2016-01-08 21:05 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-08 21:04 - 2015-05-29 19:37 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-08 20:26 - 2014-12-23 19:19 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-01-08 20:22 - 2014-12-23 19:19 - 00001173 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-01-08 20:22 - 2014-12-23 19:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-01-08 20:22 - 2014-12-23 19:19 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-01-08 20:17 - 2015-10-30 19:35 - 00777804 _____ C:\WINDOWS\system32\perfh007.dat
2016-01-08 20:17 - 2015-10-30 19:35 - 00156080 _____ C:\WINDOWS\system32\perfc007.dat
2016-01-08 20:17 - 2015-08-01 14:03 - 01802588 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-08 20:12 - 2015-05-29 19:37 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-08 20:12 - 2014-10-29 23:38 - 00000000 __SHD C:\Users\Kristine\IntelGraphicsProfiles
2016-01-08 20:09 - 2015-10-30 07:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2016-01-08 20:09 - 2015-06-06 10:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-08 20:08 - 2015-05-28 20:13 - 00000000 ____D C:\AdwCleaner
2016-01-08 19:57 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-08 16:24 - 2014-12-31 02:27 - 00000000 ____D C:\Users\Kristine\AppData\Local\ElevatedDiagnostics
2016-01-08 16:10 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-08 15:38 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat
2016-01-07 21:34 - 2015-09-18 14:18 - 00000000 ___RD C:\Users\Kristine\3D Objects
2016-01-07 20:40 - 2013-11-30 16:00 - 00000000 ____D C:\Users\Kristine\AppData\Local\Packages
2016-01-07 20:37 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-01-07 15:38 - 2015-08-01 14:22 - 00002394 _____ C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-01-07 15:38 - 2015-08-01 14:22 - 00000000 ___RD C:\Users\Kristine\OneDrive
2016-01-07 15:33 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-01-07 15:33 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-01-07 15:32 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-01-07 15:32 - 2013-11-30 08:41 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-01-07 12:50 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-01-07 12:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2016-01-07 12:49 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT
2016-01-07 12:48 - 2014-10-29 22:43 - 00100968 _____ C:\WINDOWS\diagwrn.xml
2016-01-07 12:48 - 2014-10-29 22:43 - 00100968 _____ C:\WINDOWS\diagerr.xml
2016-01-07 12:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-01-07 12:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration
2016-01-07 12:40 - 2015-11-07 10:09 - 00002638 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1446887338
2016-01-07 12:40 - 2015-07-08 18:39 - 00002616 _____ C:\WINDOWS\System32\Tasks\SmartShare
2016-01-07 12:40 - 2015-05-29 19:37 - 00003644 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-01-07 12:40 - 2015-05-29 19:37 - 00003420 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-01-07 12:40 - 2014-12-31 06:10 - 00002878 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3988005159-474404469-3811382638-1006
2016-01-07 12:40 - 2014-11-13 20:12 - 00003046 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2016-01-07 12:40 - 2014-11-13 20:12 - 00002680 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2016-01-07 12:40 - 2014-11-03 07:43 - 00002938 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3988005159-474404469-3811382638-1003
2016-01-07 12:40 - 2014-10-30 09:44 - 00003160 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-01-07 12:40 - 2014-10-30 09:08 - 00002938 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3988005159-474404469-3811382638-1002
2016-01-07 12:40 - 2014-10-29 23:03 - 00003248 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B7B305F6-DA15-4634-99D4-BF191FE76937}
2016-01-07 12:40 - 2014-10-29 22:55 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-01-07 12:40 - 2014-10-29 20:52 - 00002550 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask
2016-01-07 12:40 - 2014-10-29 18:26 - 00002878 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3988005159-474404469-3811382638-1001
2016-01-07 12:40 - 2013-10-19 15:06 - 00002350 _____ C:\WINDOWS\System32\Tasks\CLVDLauncher
2016-01-07 12:40 - 2013-10-19 15:06 - 00002350 _____ C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8
2016-01-07 12:39 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries
2016-01-07 12:36 - 2013-10-19 14:49 - 01799166 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-01-07 12:31 - 2015-10-30 07:28 - 00000000 ____D C:\Windows
2016-01-07 12:30 - 2015-12-02 13:52 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
2016-01-07 12:30 - 2015-11-09 09:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-01-07 12:30 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-01-07 12:30 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-01-07 12:30 - 2015-05-29 19:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2016-01-07 12:30 - 2015-05-29 19:16 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-01-07 12:30 - 2015-04-17 09:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2016-01-07 12:30 - 2015-04-17 08:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-01-07 12:30 - 2015-03-23 08:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2016-01-07 12:30 - 2015-03-20 12:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-01-07 12:30 - 2015-03-13 11:16 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2016-01-07 12:30 - 2015-02-21 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\devolo
2016-01-07 12:30 - 2015-01-23 20:47 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music
2016-01-07 12:30 - 2015-01-19 00:47 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Epic Privacy Browser
2016-01-07 12:30 - 2014-11-26 09:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2016-01-07 12:30 - 2014-11-02 12:49 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2016-01-07 12:30 - 2014-10-30 09:45 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2016-01-07 12:30 - 2014-10-30 09:45 - 00000000 ____D C:\WINDOWS\system32\vbox
2016-01-07 12:30 - 2014-10-30 09:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-01-07 12:30 - 2013-10-19 15:13 - 00000000 ____D C:\WINDOWS\de
2016-01-07 12:30 - 2013-10-19 15:05 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2016-01-07 12:30 - 2013-10-19 15:02 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2016-01-07 12:30 - 2013-10-19 14:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2016-01-07 12:30 - 2013-10-19 14:48 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-01-07 12:28 - 2015-07-10 10:05 - 00000000 ____D C:\Users\Default.migrated
2016-01-07 12:26 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\IME
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-01-07 12:26 - 2013-10-19 14:56 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2016-01-07 12:26 - 2013-10-19 14:49 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-01-07 12:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-01-07 12:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-01-07 12:24 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-01-07 12:24 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-01-07 12:24 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-01-07 12:24 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod
2016-01-07 12:24 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate
2016-01-07 12:24 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-07 12:24 - 2014-09-24 08:43 - 00000000 ____D C:\Program Files\Embedded Lockdown Manager
2016-01-07 12:24 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS
2016-01-07 12:23 - 2013-12-02 08:24 - 00000000 ____D C:\Users\Gast\AppData\Local\Packages
2016-01-07 12:23 - 2013-11-30 09:49 - 00000000 ____D C:\Users\AdMinchen\AppData\Local\Packages
2016-01-07 12:22 - 2015-04-17 09:14 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2016-01-07 12:21 - 2013-10-19 15:36 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2016-01-07 12:20 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-01-07 12:12 - 2015-10-30 19:55 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-01-07 12:10 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-01-07 12:07 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-01-07 12:07 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-01-07 12:07 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-01-07 12:07 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-01-07 12:07 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-01-07 12:07 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-01-07 11:59 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-01-07 11:59 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-01-07 11:45 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
2016-01-06 01:14 - 2015-05-26 20:38 - 00037857 _____ C:\Users\Kristine\Downloads\Addition.txt
2016-01-03 02:40 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-01-03 02:40 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-25 17:35 - 2015-04-17 09:16 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Skype
2015-12-25 17:34 - 2015-04-17 09:16 - 00000000 ____D C:\Users\Kristine\AppData\Local\Skype
2015-12-25 17:34 - 2015-04-17 09:15 - 00000000 ____D C:\ProgramData\Skype
2015-12-17 09:05 - 2015-05-29 19:41 - 00002254 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-09 18:59 - 2014-10-29 16:42 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-09 18:52 - 2014-10-29 19:50 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-09 04:39 - 2014-10-29 23:28 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-04-16 11:09 - 2015-04-16 11:09 - 0041392 _____ () C:\Users\Kristine\AppData\Local\2B763BC1_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:09 - 0000289 _____ () C:\Users\Kristine\AppData\Local\2B763BC1_stp.CIS.part
2015-04-16 11:35 - 2015-04-16 11:35 - 0045792 _____ () C:\Users\Kristine\AppData\Local\59ED2468_stp.CIS
2015-04-16 11:35 - 2015-04-16 11:35 - 0000289 _____ () C:\Users\Kristine\AppData\Local\59ED2468_stp.CIS.part
2015-04-16 11:09 - 2015-04-16 11:09 - 0385602 _____ () C:\Users\Kristine\AppData\Local\5D515C96_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:35 - 0000220 _____ () C:\Users\Kristine\AppData\Local\5D515C96_stp.CIS.part
2015-04-16 11:09 - 2015-04-16 11:10 - 5529600 _____ () C:\Users\Kristine\AppData\Local\695794C2_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:10 - 0000364 _____ () C:\Users\Kristine\AppData\Local\695794C2_stp.CIS.part
2015-04-16 11:09 - 2015-04-16 11:09 - 1509462 _____ () C:\Users\Kristine\AppData\Local\69DD7379_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:35 - 0000295 _____ () C:\Users\Kristine\AppData\Local\69DD7379_stp.CIS.part
2014-10-29 13:23 - 2014-10-29 13:23 - 0000516 _____ () C:\Users\Kristine\AppData\Local\Application.xml
2015-03-13 21:26 - 2015-03-13 21:26 - 0007601 _____ () C:\Users\Kristine\AppData\Local\resmon.resmoncfg
2016-01-07 12:16 - 2016-01-07 12:16 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-12-18 12:48 - 2015-11-09 09:50 - 0015271 _____ () C:\ProgramData\hpzinstall.log
2013-10-19 15:09 - 2013-10-19 15:10 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2013-10-19 15:05 - 2013-10-19 15:06 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2013-10-19 15:06 - 2013-10-19 15:08 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2013-10-19 15:04 - 2013-10-19 15:05 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2013-10-19 15:08 - 2013-10-19 15:09 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
Einige Dateien in TEMP:
====================
C:\Users\Kristine\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-01-07 12:11
==================== Ende von FRST.txt ============================
__________________ Gruß, Kristine |
|
08.01.2016, 23:22
| #9 |
| | Und mal wieder ist alles seeeehr langsam geworden...Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Kristine (2016-01-08 22:49:46)
Gestartet von C:\Users\Kristine\Desktop
Windows 10 Home (X64) (2016-01-07 11:49:49)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
AdMinchen (S-1-5-21-3988005159-474404469-3811382638-1001 - Administrator - Enabled) => C:\Users\AdMinchen
Administrator (S-1-5-21-3988005159-474404469-3811382638-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-3988005159-474404469-3811382638-503 - Limited - Disabled)
Gast (S-1-5-21-3988005159-474404469-3811382638-501 - Limited - Disabled) => C:\Users\Gast
Kristine (S-1-5-21-3988005159-474404469-3811382638-1002 - Administrator - Enabled) => C:\Users\Kristine
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Amazon Music (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Amazon Amazon Music) (Version: 3.11.5.1140 - Amazon Services LLC)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.1.2241 - AVAST Software)
B110 (x32 Version: 140.0.353.000 - Hewlett-Packard) Hidden
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.4 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.4 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{693A23FB-F28B-4F7A-A720-4C1263F97F43}) (Version: 3.1.1002.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.16.1 - Dell Inc.)
Dell System Detect (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\73f463568823ebbe) (Version: 5.14.0.9 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.2 - Synaptics Incorporated)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.0.0 - devolo AG)
DSC/AA Factory Installer (Version: 3.4.6299.48 - PC-Doctor, Inc.) Hidden
Epic Privacy Browser (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Epic) (Version: 40.0.2214.91 - Epic)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free YouTube Download version 3.2.56.324 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.56.324 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{C63184F3-8343-408F-A948-DDB0AC969A99}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{8F1A441E-AD6D-4732-BD6A-F38D5F1D1E47}) (Version: 12.0.30.219 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1306-148929CC1385}) (Version: 3.1.1306.0354 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C605440F-2748-435F-9F29-EB1C8134856F}) (Version: 4.1.17.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.4 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.4 (x86 de)) (Version: 43.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4.5848 - Mozilla)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.4.6299.48 - PC-Doctor, Inc.)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.311.0 - Tracker Software Products Ltd)
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.365.000 - Hewlett-Packard) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.12 - Dell Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C9661090-C134-46E8-90B2-76D72355C2A6}) (Version: 6.2.9200.21220 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SafeZone Stable 1.46.1990.55 (x32 Version: 1.46.1990.55 - Avast Software) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Unity Web Player (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\UnityWebPlayer) (Version: 4.6.4f1 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3988005159-474404469-3811382638-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {05798B22-85B6-43C4-9945-4D50CFB7515A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-28] (Hewlett-Packard)
Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {1800651C-F55A-493E-9941-A5152A785DDB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {19441F42-5B9F-402D-826B-948A85242F82} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {263D96B1-9FE2-4FDD-9697-B8E3C4643680} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {28BD1CCF-F845-4D04-9AFC-837BA60D3C61} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {32B739DA-D545-4842-9903-CB06D2510A34} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
Task: {3CD864E3-4BAD-45B9-9648-ACE6C28746BA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
Task: {45B14A76-BE12-4C1A-827A-F7FD8665A9AE} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-12-03] (CyberLink)
Task: {4C6A8480-7B3E-4138-91A8-1892CB97F6CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-28] (Hewlett-Packard)
Task: {4E882FB7-FE43-48F9-9513-F06DFA51F11F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {5057FA2B-B885-4A2E-951A-417185B9F50D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {50AFED1F-34E0-4AE6-B91E-3D0DE993BBE6} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {6C296830-41BA-484A-9452-985370E85507} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {6F937A31-B21A-4012-8B6B-D9E46B06B044} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {782F652B-6B3F-4E8F-8192-34AADEFECC94} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
Task: {7C99A9E7-C2A3-4A34-9450-D835F2FE0820} - System32\Tasks\Dell\Dell System Registration => /boot /LSRC=autolaunch
Task: {7E375414-79D4-4E94-B291-CFF9E19B6930} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {7E9238EB-B9AA-495E-95AD-816A089EDB50} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-12-03] (CyberLink Corp.)
Task: {80D80646-FBA9-4A75-9121-E11ECC1187EC} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
Task: {875D8132-6F4A-4216-8F9A-0967E1B7463E} - \SystemToolsDailyTest -> Keine Datei <==== ACHTUNG
Task: {87B89A08-6197-4C78-8EBB-89C3861545F4} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-11-06] (AVAST Software)
Task: {8B6807D0-2EF5-47CC-A147-A04E2F3E27A2} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {9A497E80-312E-410E-BDB8-36D0B9A85BAA} - System32\Tasks\SafeZone scheduled Autoupdate 1446887338 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2015-10-30] (Avast Software)
Task: {A20D8F84-8E02-47C1-8D65-1487750E1BDE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {B429FD9F-20EF-4F8E-B256-716FCABB16E6} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {B50A5BB8-7660-4B28-AA21-AEB5007BB8A2} - System32\Tasks\HPCeeScheduleForKristine => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {BB1A289D-30C4-42B6-AE24-B9CBC83F8489} - \PCDEventLauncherTask -> Keine Datei <==== ACHTUNG
Task: {BEFA1D73-6394-4234-AF7B-9780E81512CF} - \PCDoctorBackgroundMonitorTask -> Keine Datei <==== ACHTUNG
Task: {C60056AC-03F3-40C1-9631-B29FABE453A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {E4A66850-28BA-477B-8715-E93907E653CC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {F2B9205C-EBFB-4852-A5DC-3861B4A0068F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {F30EBA22-D988-4DE1-BB72-8CD0A86291B1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {FA1DE3F1-062B-4325-86CE-CC348B2BAB3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForKristine.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\WebReg HP Photosmart B110 series.job => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwrg.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2013-10-19 15:08 - 2012-04-25 03:43 - 00254512 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-01-07 21:23 - 2016-01-07 21:24 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00936448 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-08 15:45 - 2016-01-08 15:45 - 02821120 _____ () C:\Program Files\AVAST Software\Avast\defs\16010800\algo.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 00466448 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-07 21:23 - 2016-01-07 21:24 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2015-03-16 10:28 - 2015-03-16 10:28 - 00155528 _____ () C:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-03-13 11:41 - 2013-09-03 22:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-12-17 09:05 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 09:05 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\dell.com -> dell.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2014-12-24 22:41 - 00000035 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Kristine\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\StartupApproved\Run: => "Epic Privacy Browser Update"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\StartupApproved\Run: => "Skype"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8E12099F-AA65-4BA5-9105-C766C3E4BD47}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F10B1630-98E9-47E9-969C-6705E2966BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1BFC5DAF-EDC3-4801-8B06-5CDFC5B514DB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BA3FC1EF-64E2-4DD8-978A-53CDA64B37BB}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{69C28607-22C3-4183-9615-F5436519C4A1}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{4F42101A-F72C-40A9-94A7-9161936B88F0}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{50759A68-6EAD-4DD9-8BCB-13B9A3AAFF82}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{4146153E-4758-4BA3-A7BD-FA74E1B3496E}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{E81C6E62-6C2B-47C2-BD77-1B0906FADF5B}] => (Allow) LPort=1900
FirewallRules: [{354BA047-B518-43BB-8F13-B636FCD80E4A}] => (Allow) LPort=2869
FirewallRules: [{B90F6656-F6C3-4732-9ACB-4B24BDD694AD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{80A0A84D-85D7-4DB3-8D3F-7B857B2EC874}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{B730500A-96FF-473E-B907-C7B2C6F8101A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{422AC016-C26D-441B-9A82-843432D93834}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{EDE1EF0C-59DE-4E56-AF9E-17C38347B143}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{E61FDE90-E2F3-4685-876E-980A5E9A92C6}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{44344303-EF40-4BD7-BF97-4E08B793F8F3}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{7BC06341-62B7-4FD7-8176-8E7F07C1F277}] => (Allow) C:\Users\AdMinchen\AppData\Local\Temp\7zS349A\hppiw.exe
FirewallRules: [{90DD04DF-9A12-4DB0-B4D4-FC52BB2927A5}] => (Allow) C:\Users\AdMinchen\AppData\Local\Temp\7zS349A\hppiw.exe
FirewallRules: [{CCDB7D87-5421-40F0-A0FA-5D14A3951B9B}] => (Allow) C:\Users\AdMinchen\AppData\Local\Temp\7zS39DC\setup\hpznui40.exe
FirewallRules: [{5F2AB45B-A034-41FB-951E-849A2E827EC2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{45D1037C-D24C-404C-B3AB-8D9CE6750D36}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{CC382578-655D-4642-829A-6D96F7282993}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{E397EFB3-5CC6-47A9-B773-290BAEC8B56D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{ECC5892B-225D-47FD-9C14-08F59B90A010}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{2FCC3060-781E-41B9-B18A-5AD16EEC093C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{D10E4726-8A92-471B-823C-2504AA686222}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{F9E9A34D-ECF3-46EF-B577-1FCC222F99D2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{A34FE6C6-B9A2-479A-AB55-A0362A19864F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{B3C63F34-D962-48AE-8B46-78B0F8BBBBF8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{79E5CF38-A876-4E40-A631-E8FFAF6B9256}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{FC098D40-6B69-42FF-B715-C5C4577AE928}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{2469D16B-E57D-4842-A6C6-3CCB34488C70}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{D783AD9E-084F-43BE-911E-D0FEDF7CC01A}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [TCP Query User{0DF78DE1-894E-48D9-8767-AD1C51DE6C96}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{37139FD0-24C6-4C24-924E-010087E251D4}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{2ED3DE7C-F749-4DB0-9733-5B1AC4B5C4F1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C25A6807-195F-4B48-B270-F944E9C7492E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{06CD9EF3-8E06-4623-8944-B7B4C34C37A7}C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe] => (Allow) C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe
FirewallRules: [UDP Query User{1035C877-6498-485A-8AFD-CD12D0B4CB34}C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe] => (Allow) C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe
==================== Wiederherstellungspunkte =========================
08-01-2016 16:09:27 Windows Update
08-01-2016 21:05:44 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/08/2016 10:49:52 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/08/2016 10:43:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/08/2016 09:06:05 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (01/08/2016 09:05:09 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/08/2016 08:58:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/08/2016 08:49:56 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/08/2016 08:25:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/08/2016 08:25:46 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/08/2016 08:16:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: PSIA.exe, Version: 3.0.0.10004, Zeitstempel: 0x54784a82
Name des fehlerhaften Moduls: PSIA.exe, Version: 3.0.0.10004, Zeitstempel: 0x54784a82
Ausnahmecode: 0xc0000409
Fehleroffset: 0x00093524
ID des fehlerhaften Prozesses: 0xa20
Startzeit der fehlerhaften Anwendung: 0xPSIA.exe0
Pfad der fehlerhaften Anwendung: PSIA.exe1
Pfad des fehlerhaften Moduls: PSIA.exe2
Berichtskennung: PSIA.exe3
Vollständiger Name des fehlerhaften Pakets: PSIA.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: PSIA.exe5
Error: (01/08/2016 07:56:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Systemfehler:
=============
Error: (01/08/2016 10:49:23 PM) (Source: DCOM) (EventID: 10010) (User: BIGTOY)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}
Error: (01/08/2016 10:48:51 PM) (Source: DCOM) (EventID: 10010) (User: BIGTOY)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}
Error: (01/08/2016 10:48:21 PM) (Source: DCOM) (EventID: 10010) (User: BIGTOY)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}
Error: (01/08/2016 10:45:11 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
Error: (01/08/2016 10:44:03 PM) (Source: DCOM) (EventID: 10016) (User: BIGTOY)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}BigToyKristineS-1-5-21-3988005159-474404469-3811382638-1002LocalHost (unter Verwendung von LRPC)Microsoft.WindowsStore_2015.25.15.0_x64__8wekyb3d8bbweS-1-15-2-1609473798-1231923017-684268153-4268514328-882773646-2760585773-1760938157
Error: (01/08/2016 10:44:01 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (01/08/2016 10:43:50 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (01/08/2016 09:55:31 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (01/08/2016 09:05:56 PM) (Source: DCOM) (EventID: 10010) (User: BIGTOY)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}
Error: (01/08/2016 09:05:26 PM) (Source: DCOM) (EventID: 10010) (User: BIGTOY)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}
CodeIntegrity:
===================================
Date: 2016-01-08 16:15:50.331
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 12:49:16.667
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 12:40:02.086
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 12:36:10.906
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 12:15:32.593
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-4500U CPU @ 1.80GHz
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 8090.57 MB
Verfügbarer physikalischer RAM: 5282.39 MB
Summe virtueller Speicher: 10010.57 MB
Verfügbarer virtueller Speicher: 6992.79 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:917.09 GB) (Free:518.27 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 26894598)
Partition: GPT.
==================== Ende von Addition.txt ============================
__________________ Gruß, Kristine |
|
09.01.2016, 10:14
| #10 |
| /// TB-Ausbilder | Und mal wieder ist alles seeeehr langsam geworden... Servus, am Netzwerk haben wir nichts gemacht. Hinweis: Der Suchlauf mit ESET kann länger dauern. Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter start
CloseProcesses:
CHR HomePage: Default -> hxxp://de.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_fsvideosft_15_16¶m1=1¶m2=f%3D1%26b%3DChrome%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzzyEyD0CyE0CzytAyEtC0FtC0BzytAtN0D0Tzu0StCtBtDtCtN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtCzzzztA0AyEyEtG0D0F0BzztGtDzyyE0BtG0CtAtD0EtGtD0BtBtCyB0E0CtBtCyCtAyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0EtA0CzzyDyE0EtGzy0CtCtBtGyEyEtBtDtG0AyBtByEtGzy0B0E0FyEzz0FyBtDzytDtD2QtN0A0LzuyE%26cr%3D1463948627%26a%3Dwny_fsvideosft_15_16%26os%3DWindows 8.1
Task: {1800651C-F55A-493E-9941-A5152A785DDB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {19441F42-5B9F-402D-826B-948A85242F82} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {263D96B1-9FE2-4FDD-9697-B8E3C4643680} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {28BD1CCF-F845-4D04-9AFC-837BA60D3C61} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {4E882FB7-FE43-48F9-9513-F06DFA51F11F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {5057FA2B-B885-4A2E-951A-417185B9F50D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {6F937A31-B21A-4012-8B6B-D9E46B06B044} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {875D8132-6F4A-4216-8F9A-0967E1B7463E} - \SystemToolsDailyTest -> Keine Datei <==== ACHTUNG
Task: {8B6807D0-2EF5-47CC-A147-A04E2F3E27A2} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {A20D8F84-8E02-47C1-8D65-1487750E1BDE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {BB1A289D-30C4-42B6-AE24-B9CBC83F8489} - \PCDEventLauncherTask -> Keine Datei <==== ACHTUNG
Task: {BEFA1D73-6394-4234-AF7B-9780E81512CF} - \PCDoctorBackgroundMonitorTask -> Keine Datei <==== ACHTUNG
Task: {C60056AC-03F3-40C1-9631-B29FABE453A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {F30EBA22-D988-4DE1-BB72-8CD0A86291B1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 2 ESET Online Scanner
Schritt 3 Downloade dir bitte  Farbar Service Scanner
Poste bitte den Inhalt hier. Schritt 4
Gibt es jetzt noch Probleme mit dem PC? Wenn ja, welche?Bitte poste mit deiner nächsten Antwort
|
|
10.01.2016, 20:45
| #11 |
| | Und mal wieder ist alles seeeehr langsam geworden... Hallo Matthias, hier die Logfiles: Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Kristine (2016-01-10 16:57:19) Run:1
Gestartet von C:\Users\Kristine\Desktop
Geladene Profile: Kristine (Verfügbare Profile: AdMinchen & Kristine & Administrator & Gast)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
start
CloseProcesses:
CHR HomePage: Default -> hxxp://de.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_fsvideosft_15_16¶m1=1¶m2=f%3D1%26b%3DChrome%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzzyEyD0CyE0CzytAyEtC0FtC0BzytAtN0D0Tzu0StCtBtDtCtN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtCzzzztA0AyEyEtG0D0F0BzztGtDzyyE0BtG0CtAtD0EtGtD0BtBtCyB0E0CtBtCyCtAyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0EtA0CzzyDyE0EtGzy0CtCtBtGyEyEtBtDtG0AyBtByEtGzy0B0E0FyEzz0FyBtDzytDtD2QtN0A0LzuyE%26cr%3D1463948627%26a%3Dwny_fsvideosft_15_16%26os%3DWindows 8.1
Task: {1800651C-F55A-493E-9941-A5152A785DDB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {19441F42-5B9F-402D-826B-948A85242F82} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {263D96B1-9FE2-4FDD-9697-B8E3C4643680} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {28BD1CCF-F845-4D04-9AFC-837BA60D3C61} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {4E882FB7-FE43-48F9-9513-F06DFA51F11F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {5057FA2B-B885-4A2E-951A-417185B9F50D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {6F937A31-B21A-4012-8B6B-D9E46B06B044} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {875D8132-6F4A-4216-8F9A-0967E1B7463E} - \SystemToolsDailyTest -> Keine Datei <==== ACHTUNG
Task: {8B6807D0-2EF5-47CC-A147-A04E2F3E27A2} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {A20D8F84-8E02-47C1-8D65-1487750E1BDE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {BB1A289D-30C4-42B6-AE24-B9CBC83F8489} - \PCDEventLauncherTask -> Keine Datei <==== ACHTUNG
Task: {BEFA1D73-6394-4234-AF7B-9780E81512CF} - \PCDoctorBackgroundMonitorTask -> Keine Datei <==== ACHTUNG
Task: {C60056AC-03F3-40C1-9631-B29FABE453A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {F30EBA22-D988-4DE1-BB72-8CD0A86291B1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
*****************
Prozess erfolgreich geschlossen.
Chrome HomePage => erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1800651C-F55A-493E-9941-A5152A785DDB}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1800651C-F55A-493E-9941-A5152A785DDB}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{19441F42-5B9F-402D-826B-948A85242F82}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{19441F42-5B9F-402D-826B-948A85242F82}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{263D96B1-9FE2-4FDD-9697-B8E3C4643680}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{263D96B1-9FE2-4FDD-9697-B8E3C4643680}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{28BD1CCF-F845-4D04-9AFC-837BA60D3C61}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{28BD1CCF-F845-4D04-9AFC-837BA60D3C61}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4E882FB7-FE43-48F9-9513-F06DFA51F11F}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E882FB7-FE43-48F9-9513-F06DFA51F11F}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5057FA2B-B885-4A2E-951A-417185B9F50D}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5057FA2B-B885-4A2E-951A-417185B9F50D}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6F937A31-B21A-4012-8B6B-D9E46B06B044}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6F937A31-B21A-4012-8B6B-D9E46B06B044}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{875D8132-6F4A-4216-8F9A-0967E1B7463E}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{875D8132-6F4A-4216-8F9A-0967E1B7463E}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemToolsDailyTest" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8B6807D0-2EF5-47CC-A147-A04E2F3E27A2}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8B6807D0-2EF5-47CC-A147-A04E2F3E27A2}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A20D8F84-8E02-47C1-8D65-1487750E1BDE}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A20D8F84-8E02-47C1-8D65-1487750E1BDE}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BB1A289D-30C4-42B6-AE24-B9CBC83F8489}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB1A289D-30C4-42B6-AE24-B9CBC83F8489}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PCDEventLauncherTask" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BEFA1D73-6394-4234-AF7B-9780E81512CF}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BEFA1D73-6394-4234-AF7B-9780E81512CF}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PCDoctorBackgroundMonitorTask" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C60056AC-03F3-40C1-9631-B29FABE453A4}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C60056AC-03F3-40C1-9631-B29FABE453A4}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F30EBA22-D988-4DE1-BB72-8CD0A86291B1}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F30EBA22-D988-4DE1-BB72-8CD0A86291B1}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => Schlüssel erfolgreich entfernt
========= RemoveProxy: =========
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
========= Ende von RemoveProxy: =========
========= ipconfig /flushdns =========
Windows-IP-Konfiguration
Der DNS-Aufl�sungscache wurde geleert.
========= Ende von CMD: =========
========= netsh winsock reset =========
Der Winsock-Katalog wurde zur�ckgesetzt.
Sie m�ssen den Computer neu starten, um den Vorgang abzuschlie�en.
========= Ende von CMD: =========
EmptyTemp: => 1.1 GB temporäre Dateien entfernt.
Das System musste neu gestartet werden.
==== Ende von Fixlog 17:01:02 ====
Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9a408be36405cc4dbe172215939a8311
# end=init
# utc_time=2016-01-10 04:13:05
# local_time=2016-01-10 05:13:05 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
esets_scanner_update returned -1 esets_gle=41221
Update Finalize
Updated modules version: 0
Old modules - leave modules
Update Init
Update Download
esets_scanner_update returned -1 esets_gle=45315
Update Finalize
Updated modules version: 0
Old modules - delete modules
Update Init
Update Download
esets_scanner_update returned -1 esets_gle=45315
Update Finalize
Updated modules version: 0
'Can not update to actual engine, exiting
Update Init
Update Download
Update Finalize
Updated modules version: 27575
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9a408be36405cc4dbe172215939a8311
# end=updated
# utc_time=2016-01-10 04:37:29
# local_time=2016-01-10 05:37:29 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=9a408be36405cc4dbe172215939a8311
# engine=27575
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-01-10 07:02:33
# local_time=2016-01-10 08:02:33 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 168516 6266696 0 0
# scanned=383780
# found=0
# cleaned=0
# scan_time=8704
Code:
ATTFilter Farbar Service Scanner Version: 03-01-2016
Ran by Kristine (administrator) on 10-01-2016 at 20:25:15
Running from "C:\Users\Kristine\Desktop"
Microsoft Windows 10 Home (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Policy:
========================
Security Center:
============
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
**** End of log ****
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-12-2015
durchgeführt von Kristine (Administrator) auf BIGTOY (10-01-2016 20:26:27)
Gestartet von C:\Users\Kristine\Desktop
Geladene Profile: Kristine (Verfügbare Profile: AdMinchen & Kristine & Administrator & Gast)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Intel) C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
() C:\Users\Kristine\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.25.15.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2016-01-05] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2016-01-05] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2016-01-05] (Realtek Semiconductor)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3760456 2013-04-23] (Dell Inc.)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [402344 2016-01-05] ()
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-07-16] (Synaptics Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [102928 2012-10-23] (CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-06] (AVAST Software)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Run: [Epic Privacy Browser Update] => C:\Users\Kristine\AppData\Local\Epic Privacy Browser\Update\EpicUpdate.exe [507560 2015-01-19] (Epic Privacy Browser)
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Run: [Amazon Music] => C:\Users\Kristine\AppData\Local\Amazon Music\Amazon Music Helper.exe [5890368 2015-11-18] ()
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [150528 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-06] (AVAST Software)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2015-10-30] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-11-09]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2014-12-28]
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A9E5C462-FBF2-4D59-9549-9AC520EBB74E}: [DhcpNameServer] 172.168.0.2
Tcpip\..\Interfaces\{b6812221-8119-490c-b613-e8fb08fc1c41}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F71F367D-2A25-444C-8FDC-944AFC710762}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-06] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-06] (AVAST Software)
FireFox:
========
FF ProfilePath: C:\Users\Kristine\AppData\Roaming\Mozilla\Firefox\Profiles\1b0ng33u.default
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-10-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-3988005159-474404469-3811382638-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kristine\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-13] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3988005159-474404469-3811382638-1002: @updates.epicbrowser.com/Epic Privacy Browser Update;version=3 -> C:\Users\Kristine\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [2015-01-19] (Epic Privacy Browser)
FF Plugin HKU\S-1-5-21-3988005159-474404469-3811382638-1002: @updates.epicbrowser.com/Epic Privacy Browser Update;version=9 -> C:\Users\Kristine\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [2015-01-19] (Epic Privacy Browser)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-07]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-11-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
Chrome:
=======
CHR HomePage: Default -> hxxp://de.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_fsvideosft_15_16¶m1=1¶m2=f%3D1%26b%3DChrome%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzzyEyD0CyE0CzytAyEtC0FtC0BzytAtN0D0Tzu0StCtBtDtCtN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtCzzzztA0AyEyEtG0D0F0BzztGtDzyyE0BtG0CtAtD0EtGtD0BtBtCyB0E0CtBtCyCtAyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0EtA0CzzyDyE0EtGzy0CtCtBtGyEyEtBtDtG0AyBtByEtGzy0B0E0FyEzz0FyBtDzytDtD2QtN0A0LzuyE%26cr%3D1463948627%26a%3Dwny_fsvideosft_15_16%26os%3DWindows 8.1
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://de-de.facebook.com/","hxxp://www.ebay.de/"
CHR Profile: C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-29]
CHR Extension: (Google Docs) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-29]
CHR Extension: (Google Drive) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-08]
CHR Extension: (Adblock Plus) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-06]
CHR Extension: (Google-Suche) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Tabellen) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-29]
CHR Extension: (Google Docs Offline) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (Avast Online Security) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-05]
CHR Extension: (Ghostery) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2016-01-03]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
CHR Extension: (Google Mail) - C:\Users\Kristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-06]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-06] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-11-06] (AVAST Software)
R2 BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [101536 2013-04-16] (Intel)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3736520 2015-01-29] (devolo AG)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373160 2016-01-05] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [156616 2013-06-26] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-25] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312056 2016-01-05] (Realtek Semiconductor)
S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-16] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-06] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-11-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-06] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [466400 2015-11-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-06] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-06] (AVAST Software)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [263952 2016-01-05] (Intel Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3485696 2015-10-30] (Intel Corporation)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [896744 2016-01-05] (Realtek )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [450632 2013-02-22] (RTS Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29424 2013-06-04] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-16] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-10 20:25 - 2016-01-10 20:25 - 00002911 _____ C:\Users\Kristine\Desktop\FSS.txt
2016-01-10 20:22 - 2016-01-10 20:24 - 00899584 _____ (Farbar) C:\Users\Kristine\Desktop\FSS.exe
2016-01-10 17:12 - 2016-01-10 17:12 - 00000000 ____D C:\Program Files (x86)\ESET
2016-01-10 17:11 - 2016-01-10 17:12 - 02870984 _____ (ESET) C:\Users\Kristine\Desktop\esetsmartinstaller_deu.exe
2016-01-10 16:57 - 2016-01-10 17:01 - 00010490 _____ C:\Users\Kristine\Desktop\Fixlog.txt
2016-01-10 16:39 - 2016-01-10 16:39 - 00143644 _____ C:\Users\Kristine\Documents\DHL-Marke-9CPK9PAQYE.pdf
2016-01-10 16:39 - 2016-01-10 16:39 - 00143639 _____ C:\Users\Kristine\Downloads\DHL-Marke-9CPK9PAQYE.pdf
2016-01-10 16:26 - 2016-01-10 16:26 - 00095794 _____ C:\Users\Kristine\Documents\DEPOST_label_2016-1-10_16-26-1.pdf
2016-01-10 16:25 - 2016-01-10 16:26 - 00095709 _____ C:\Users\Kristine\Downloads\DEPOST_label_2016-1-10_16-26-1.pdf
2016-01-08 23:04 - 2016-01-08 23:04 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-01-08 22:49 - 2016-01-08 22:51 - 00037036 _____ C:\Users\Kristine\Desktop\Addition.txt
2016-01-08 22:48 - 2016-01-10 20:27 - 00021095 _____ C:\Users\Kristine\Desktop\FRST.txt
2016-01-08 21:08 - 2016-01-08 21:08 - 00000550 _____ C:\Users\Kristine\Desktop\JRT.txt
2016-01-08 21:03 - 2016-01-08 21:04 - 01599336 _____ (Malwarebytes) C:\Users\Kristine\Desktop\JRT.exe
2016-01-08 21:02 - 2016-01-08 21:02 - 00001203 _____ C:\Users\Kristine\Desktop\Mbam2016.txt
2016-01-08 20:18 - 2016-01-08 20:21 - 22908888 _____ (Malwarebytes ) C:\Users\Kristine\Desktop\mbam-setup-2.2.0.1024.exe
2016-01-08 20:15 - 2016-01-08 20:15 - 00002013 _____ C:\Users\Kristine\Desktop\AdwCleaner[C2]2016.txt
2016-01-08 19:59 - 2016-01-08 20:02 - 01749504 _____ C:\Users\Kristine\Desktop\AdwCleaner_5.028.exe
2016-01-07 23:15 - 2016-01-07 23:16 - 00000022 _____ C:\Users\Kristine\Downloads\Photos.zip
2016-01-07 20:43 - 2016-01-07 21:49 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-01-07 20:41 - 2016-01-07 21:49 - 00000000 ____D C:\Users\Kristine\Desktop\mbar
2016-01-07 20:38 - 2016-01-07 20:40 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Kristine\Desktop\mbar-1.09.3.1001.exe
2016-01-07 15:34 - 2016-01-07 15:34 - 00000000 ____D C:\Users\Kristine\AppData\Local\ActiveSync
2016-01-07 15:32 - 2016-01-07 15:32 - 00000020 ___SH C:\Users\Kristine\ntuser.ini
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-01-07 12:49 - 2016-01-07 12:49 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-01-07 12:40 - 2016-01-10 17:02 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-07 12:28 - 2016-01-07 12:28 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-01-07 12:24 - 2016-01-07 12:30 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-01-07 12:20 - 2016-01-08 20:08 - 00000000 ____D C:\Users\Kristine
2016-01-07 12:20 - 2016-01-07 12:39 - 00000000 ____D C:\Users\Gast
2016-01-07 12:20 - 2016-01-07 12:39 - 00000000 ____D C:\Users\AdMinchen
2016-01-07 12:20 - 2016-01-07 12:35 - 00000000 ____D C:\Users\Administrator
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Vorlagen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Startmenü
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Netzwerkumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Lokale Einstellungen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Eigene Dateien
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Druckumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Documents\Eigene Videos
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Documents\Eigene Musik
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Documents\Eigene Bilder
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\AppData\Local\Verlauf
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\AppData\Local\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Kristine\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Vorlagen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Startmenü
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Lokale Einstellungen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Eigene Dateien
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Videos
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Gast\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Videos
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Vorlagen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Startmenü
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Netzwerkumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Lokale Einstellungen
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Eigene Dateien
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Druckumgebung
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Documents\Eigene Videos
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Documents\Eigene Musik
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Documents\Eigene Bilder
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\AppData\Local\Verlauf
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\AppData\Local\Anwendungsdaten
2016-01-07 12:20 - 2016-01-07 12:20 - 00000000 _SHDL C:\Users\AdMinchen\Anwendungsdaten
2016-01-07 12:17 - 2016-01-10 17:04 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-01-07 12:17 - 2016-01-07 12:17 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-01-07 12:17 - 2016-01-07 12:17 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2016-01-07 12:17 - 2016-01-07 12:17 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2016-01-07 12:17 - 2016-01-07 12:17 - 00000000 ____D C:\Program Files\Synaptics
2016-01-07 12:17 - 2016-01-05 23:22 - 00103944 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-01-07 12:17 - 2016-01-05 23:22 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-01-07 12:16 - 2016-01-07 12:24 - 00000000 ____D C:\Program Files\Intel
2016-01-07 12:16 - 2016-01-07 12:16 - 01019725 _____ C:\WINDOWS\system32\Drivers\rtwavesskdy.dat
2016-01-07 12:16 - 2016-01-07 12:16 - 00458965 _____ C:\WINDOWS\system32\Drivers\rtwavesmapro.dat
2016-01-07 12:16 - 2016-01-07 12:16 - 00031095 _____ C:\WINDOWS\system32\Drivers\rtwavesEFX.dat
2016-01-07 12:16 - 2016-01-07 12:16 - 00010945 _____ C:\WINDOWS\system32\Drivers\rtwavesMFX.dat
2016-01-07 12:16 - 2016-01-07 12:16 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-01-07 12:16 - 2016-01-07 12:16 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-01-07 12:16 - 2016-01-07 12:16 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2016-01-07 12:15 - 2016-01-07 12:15 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-01-07 12:15 - 2016-01-07 12:15 - 00000000 ____D C:\Program Files\Realtek
2016-01-07 12:15 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-01-07 12:12 - 2016-01-07 12:31 - 00234256 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-07 12:10 - 2016-01-07 20:29 - 00000000 ___DC C:\WINDOWS\Panther
2016-01-07 12:07 - 2016-01-07 12:07 - 00000000 ____D C:\Windows.old
2016-01-07 12:06 - 2016-01-07 12:06 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-01-07 12:06 - 2016-01-07 12:06 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-01-07 12:06 - 2016-01-07 12:06 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-01-07 12:06 - 2016-01-07 12:06 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-01-07 12:06 - 2016-01-07 12:06 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-07 12:06 - 2016-01-07 12:06 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-01-07 12:06 - 2016-01-07 12:06 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-01-07 12:06 - 2016-01-07 12:06 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
__________________ Gruß, Kristine |
|
10.01.2016, 20:47
| #12 |
| | Und mal wieder ist alles seeeehr langsam geworden...Code:
ATTFilter 2016-01-07 12:06 - 2016-01-07 12:06 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-01-07 12:06 - 2016-01-07 12:06 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2016-01-07 12:06 - 2016-01-07 12:06 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2016-01-07 12:03 - 2016-01-07 12:03 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-01-07 11:59 - 2016-01-07 11:59 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-01-07 11:59 - 2016-01-07 11:59 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-01-07 11:59 - 2016-01-07 11:59 - 00000000 ____D C:\Program Files\MSBuild
2016-01-07 11:59 - 2016-01-07 11:59 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-01-07 11:59 - 2016-01-07 11:59 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-01-07 11:58 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-01-07 11:58 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-01-07 11:58 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-01-07 11:58 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-01-07 11:58 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-01-07 11:58 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-07 10:52 - 2016-01-08 20:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-06 23:10 - 2016-01-06 23:26 - 00278438 _____ C:\TDSSKiller.3.1.0.9_06.01.2016_23.10.50_log.txt
2016-01-06 23:07 - 2016-01-06 23:10 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Kristine\Desktop\tdsskiller.exe
2016-01-06 02:32 - 2016-01-06 02:32 - 00065156 _____ C:\Users\Kristine\Downloads\Kontoauszug_68225008__Nr.0122015_vom_31.12.2015_20160106023237.pdf
2016-01-06 02:32 - 2016-01-06 02:32 - 00050694 _____ C:\Users\Kristine\Downloads\Kontoauszug_68225407__Nr.0042015_vom_31.12.2015_20160106023241.pdf
2016-01-06 01:11 - 2016-01-06 01:14 - 00041576 _____ C:\Users\Kristine\Downloads\FRST.txt
2016-01-06 01:11 - 2016-01-06 01:11 - 02370560 _____ (Farbar) C:\Users\Kristine\Desktop\FRST64.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 72130584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCORES64.dat
2016-01-05 23:22 - 2016-01-05 23:22 - 35016296 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 34083104 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 29894272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 29101576 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 28612544 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 19861512 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 15454976 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 13928480 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 13427688 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 13242880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 12126952 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\MaxxVoiceAPO30.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 11586056 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 11441600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 08634888 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 07858088 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2016-01-05 23:22 - 2016-01-05 23:22 - 07181616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 06560024 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2016-01-05 23:22 - 2016-01-05 23:22 - 05797102 _____ C:\WINDOWS\system32\igdclbif.bin
2016-01-05 23:22 - 2016-01-05 23:22 - 05685768 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 05262864 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 05028408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 04608520 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 04518136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-01-05 23:22 - 2016-01-05 23:22 - 04482424 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 04324664 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 04123144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 03970056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 03309264 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 02999808 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 02935544 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 02880873 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-01-05 23:22 - 2016-01-05 23:22 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2016-01-05 23:22 - 2016-01-05 23:22 - 02719992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-01-05 23:22 - 2016-01-05 23:22 - 02145232 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 02052104 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 02001056 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO264.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01816720 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01814064 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01766136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01764432 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO232.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01665200 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01576968 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01351176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01167880 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 01026464 _____ C:\WINDOWS\system32\igfxSDK.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 01015608 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00962464 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00958880 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00930848 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00819449 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2016-01-05 23:22 - 2016-01-05 23:22 - 00784312 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00750088 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00692520 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00659872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00657304 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBTHX64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00641530 _____ C:\WINDOWS\system32\FilmModeDetection.wmv
2016-01-05 23:22 - 2016-01-05 23:22 - 00626696 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00621472 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00591640 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBTHX32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00545824 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00535968 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00511260 _____ C:\WINDOWS\system32\cp_resources.bin
2016-01-05 23:22 - 2016-01-05 23:22 - 00466344 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00460440 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00439304 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00435088 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00433968 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00422432 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00415752 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00403671 _____ C:\WINDOWS\system32\ImageStabilization.wmv
2016-01-05 23:22 - 2016-01-05 23:22 - 00402344 _____ C:\WINDOWS\system32\igfxTray.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00399464 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00390152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00388616 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00384008 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00381936 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00379792 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00375173 _____ C:\WINDOWS\system32\ColorImageEnhancement.wmv
2016-01-05 23:22 - 2016-01-05 23:22 - 00373160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00355496 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00354216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00350224 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00333288 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00333288 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00318472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00310160 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00300968 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00295024 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00273416 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-01-05 23:22 - 2016-01-05 23:22 - 00268704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00266248 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00255496 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00242160 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00236456 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00232712 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00231848 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00231336 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00225504 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00225288 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00222736 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00220136 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00212256 _____ (Waves Audio) C:\WINDOWS\system32\MaxxAudioVienna264.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00206344 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4331.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00205360 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00193032 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00187280 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00181328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00176480 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00174632 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkXInterface64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00174504 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00173584 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00161952 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00144184 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00120720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00111624 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00103944 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00103432 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00100872 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00097976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00095248 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00094168 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00084048 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00083464 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00079296 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00055248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00052744 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00041296 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00040931 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00040343 _____ C:\WINDOWS\system32\iglhxo64.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00040316 _____ C:\WINDOWS\system32\iglhxc64.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00039798 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00039658 _____ C:\WINDOWS\system32\iglhxg64.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00032392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00029192 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00029192 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00027656 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00027656 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00022536 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00022536 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2016-01-05 23:22 - 2016-01-05 23:22 - 00004730 _____ C:\WINDOWS\system32\iglhxs64.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2016-01-05 23:22 - 2016-01-05 23:22 - 00000935 _____ C:\WINDOWS\system32\Gfxv4_0.exe.config
2016-01-05 23:22 - 2016-01-05 23:22 - 00000935 _____ C:\WINDOWS\system32\DPTopologyApp.exe.config
2016-01-05 23:22 - 2016-01-05 23:22 - 00000895 _____ C:\WINDOWS\system32\Gfxv2_0.exe.config
2016-01-05 23:22 - 2016-01-05 23:22 - 00000895 _____ C:\WINDOWS\system32\DPTopologyAppv2_0.exe.config
2016-01-05 23:21 - 2016-01-05 23:21 - 07104888 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 03709056 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioMeters64.exe
2016-01-05 23:21 - 2016-01-05 23:21 - 03269440 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 02058880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01991784 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01804936 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01613720 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01530872 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01416832 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01231248 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 01183352 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00896744 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2016-01-05 23:21 - 2016-01-05 23:21 - 00759208 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00742536 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00723232 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00693032 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00588120 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00517464 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00458016 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00453848 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00342280 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00339136 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00283928 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00264968 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00264896 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00263952 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\ibtusb.sys
2016-01-05 23:21 - 2016-01-05 23:21 - 00263944 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00242448 _____ (Intel Corporation) C:\WINDOWS\system32\ibtproppage.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00131024 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00128512 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2016-01-05 23:21 - 2016-01-05 23:21 - 00108696 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2016-01-05 16:18 - 2016-01-07 12:40 - 00002800 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForKristine
2016-01-05 16:18 - 2016-01-07 12:40 - 00000358 _____ C:\WINDOWS\Tasks\HPCeeScheduleForKristine.job
2016-01-04 13:50 - 2016-01-04 13:50 - 00140143 _____ C:\Users\Kristine\Downloads\DHL-Marke-W5B9TDP4U4.pdf
2016-01-02 10:01 - 2016-01-02 10:01 - 00645586 _____ C:\Users\Kristine\Downloads\Produktempfehlungen neu 06.12.15.pdf
2016-01-02 09:56 - 2016-01-02 09:56 - 00838737 _____ C:\Users\Kristine\Downloads\Buchempfehlungen 13.06. 1.pdf
2015-12-25 17:34 - 2016-01-07 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-25 17:34 - 2015-12-25 17:34 - 00002642 _____ C:\Users\Public\Desktop\Skype.lnk
2015-12-25 17:34 - 2015-12-25 17:34 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-17 09:28 - 2015-12-17 09:28 - 05967077 _____ C:\Users\Kristine\Downloads\Supplementierung.pdf
2015-12-14 08:25 - 2015-12-14 08:25 - 00094231 _____ C:\Users\Kristine\Documents\versandetikett9.pdf
2015-12-12 09:27 - 2015-12-12 09:27 - 02798183 _____ C:\Users\Kristine\Downloads\Wasserstoffperoxid_Jenschura.pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-10 20:26 - 2015-05-26 20:36 - 00000000 ____D C:\FRST
2016-01-10 20:16 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-10 20:04 - 2015-05-29 19:37 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-10 17:05 - 2015-05-29 19:37 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-10 17:04 - 2014-10-29 23:38 - 00000000 __SHD C:\Users\Kristine\IntelGraphicsProfiles
2016-01-10 17:01 - 2015-10-30 07:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2016-01-10 16:28 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-10 16:28 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-10 16:25 - 2014-10-30 09:14 - 00004158 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1B06BDCF-A72F-4F75-9CF4-3227545CE179}
2016-01-08 22:51 - 2015-10-30 07:28 - 00000000 ____D C:\Windows
2016-01-08 21:26 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2016-01-08 20:26 - 2014-12-23 19:19 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-01-08 20:22 - 2014-12-23 19:19 - 00001173 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-01-08 20:22 - 2014-12-23 19:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-01-08 20:22 - 2014-12-23 19:19 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-01-08 20:17 - 2015-10-30 19:35 - 00777804 _____ C:\WINDOWS\system32\perfh007.dat
2016-01-08 20:17 - 2015-10-30 19:35 - 00156080 _____ C:\WINDOWS\system32\perfc007.dat
2016-01-08 20:17 - 2015-08-01 14:03 - 01802588 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-08 20:09 - 2015-06-06 10:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-08 20:08 - 2015-05-28 20:13 - 00000000 ____D C:\AdwCleaner
2016-01-08 16:24 - 2014-12-31 02:27 - 00000000 ____D C:\Users\Kristine\AppData\Local\ElevatedDiagnostics
2016-01-08 16:10 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-08 15:38 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\appcompat
2016-01-07 21:34 - 2015-09-18 14:18 - 00000000 ___RD C:\Users\Kristine\3D Objects
2016-01-07 20:40 - 2013-11-30 16:00 - 00000000 ____D C:\Users\Kristine\AppData\Local\Packages
2016-01-07 20:37 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-01-07 15:38 - 2015-08-01 14:22 - 00002394 _____ C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-01-07 15:38 - 2015-08-01 14:22 - 00000000 ___RD C:\Users\Kristine\OneDrive
2016-01-07 15:33 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-01-07 15:33 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-01-07 15:32 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-01-07 15:32 - 2013-11-30 08:41 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-01-07 12:50 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-01-07 12:49 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2016-01-07 12:49 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT
2016-01-07 12:48 - 2014-10-29 22:43 - 00100968 _____ C:\WINDOWS\diagwrn.xml
2016-01-07 12:48 - 2014-10-29 22:43 - 00100968 _____ C:\WINDOWS\diagerr.xml
2016-01-07 12:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-01-07 12:44 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Registration
2016-01-07 12:40 - 2015-11-07 10:09 - 00002638 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1446887338
2016-01-07 12:40 - 2015-07-08 18:39 - 00002616 _____ C:\WINDOWS\System32\Tasks\SmartShare
2016-01-07 12:40 - 2015-05-29 19:37 - 00003644 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-01-07 12:40 - 2015-05-29 19:37 - 00003420 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-01-07 12:40 - 2014-12-31 06:10 - 00002878 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3988005159-474404469-3811382638-1006
2016-01-07 12:40 - 2014-11-13 20:12 - 00003046 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2016-01-07 12:40 - 2014-11-13 20:12 - 00002680 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2016-01-07 12:40 - 2014-11-03 07:43 - 00002938 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3988005159-474404469-3811382638-1003
2016-01-07 12:40 - 2014-10-30 09:44 - 00003160 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-01-07 12:40 - 2014-10-30 09:08 - 00002938 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3988005159-474404469-3811382638-1002
2016-01-07 12:40 - 2014-10-29 23:03 - 00003248 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B7B305F6-DA15-4634-99D4-BF191FE76937}
2016-01-07 12:40 - 2014-10-29 22:55 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-01-07 12:40 - 2014-10-29 20:52 - 00002550 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask
2016-01-07 12:40 - 2014-10-29 18:26 - 00002878 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3988005159-474404469-3811382638-1001
2016-01-07 12:40 - 2013-10-19 15:06 - 00002350 _____ C:\WINDOWS\System32\Tasks\CLVDLauncher
2016-01-07 12:40 - 2013-10-19 15:06 - 00002350 _____ C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8
2016-01-07 12:39 - 2015-10-30 08:24 - 00000000 __RHD C:\Users\Public\Libraries
2016-01-07 12:36 - 2013-10-19 14:49 - 01799166 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-01-07 12:30 - 2015-12-02 13:52 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
2016-01-07 12:30 - 2015-11-09 09:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-01-07 12:30 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-01-07 12:30 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-01-07 12:30 - 2015-05-29 19:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2016-01-07 12:30 - 2015-05-29 19:16 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-01-07 12:30 - 2015-04-17 09:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2016-01-07 12:30 - 2015-04-17 08:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-01-07 12:30 - 2015-03-23 08:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2016-01-07 12:30 - 2015-03-20 12:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-01-07 12:30 - 2015-03-13 11:16 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2016-01-07 12:30 - 2015-02-21 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\devolo
2016-01-07 12:30 - 2015-01-23 20:47 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music
2016-01-07 12:30 - 2015-01-19 00:47 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Epic Privacy Browser
2016-01-07 12:30 - 2014-11-26 09:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2016-01-07 12:30 - 2014-11-02 12:49 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2016-01-07 12:30 - 2014-10-30 09:45 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2016-01-07 12:30 - 2014-10-30 09:45 - 00000000 ____D C:\WINDOWS\system32\vbox
2016-01-07 12:30 - 2014-10-30 09:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-01-07 12:30 - 2013-10-19 15:13 - 00000000 ____D C:\WINDOWS\de
2016-01-07 12:30 - 2013-10-19 15:05 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2016-01-07 12:30 - 2013-10-19 15:02 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2016-01-07 12:30 - 2013-10-19 14:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
2016-01-07 12:30 - 2013-10-19 14:48 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-01-07 12:28 - 2015-07-10 10:05 - 00000000 ____D C:\Users\Default.migrated
2016-01-07 12:26 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\spool
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\IME
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-01-07 12:26 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-01-07 12:26 - 2013-10-19 14:56 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2016-01-07 12:26 - 2013-10-19 14:49 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-01-07 12:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-01-07 12:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-01-07 12:24 - 2015-10-30 19:35 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-01-07 12:24 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-01-07 12:24 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-01-07 12:24 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\InputMethod
2016-01-07 12:24 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate
2016-01-07 12:24 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-07 12:24 - 2014-09-24 08:43 - 00000000 ____D C:\Program Files\Embedded Lockdown Manager
2016-01-07 12:24 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS
2016-01-07 12:23 - 2013-12-02 08:24 - 00000000 ____D C:\Users\Gast\AppData\Local\Packages
2016-01-07 12:23 - 2013-11-30 09:49 - 00000000 ____D C:\Users\AdMinchen\AppData\Local\Packages
2016-01-07 12:22 - 2015-04-17 09:14 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2016-01-07 12:21 - 2013-10-19 15:36 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2016-01-07 12:20 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-01-07 12:12 - 2015-10-30 19:55 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-01-07 12:10 - 2015-10-30 08:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-01-07 12:07 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-01-07 12:07 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-01-07 12:07 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-01-07 12:07 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-01-07 12:07 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-01-07 12:07 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-01-07 11:59 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-01-07 11:59 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-01-07 11:45 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
2016-01-06 01:14 - 2015-05-26 20:38 - 00037857 _____ C:\Users\Kristine\Downloads\Addition.txt
2016-01-04 13:51 - 2015-12-09 08:41 - 00140148 _____ C:\Users\Kristine\Documents\Versandmarke.pdf
2016-01-03 02:40 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-01-03 02:40 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-25 17:35 - 2015-04-17 09:16 - 00000000 ____D C:\Users\Kristine\AppData\Roaming\Skype
2015-12-25 17:34 - 2015-04-17 09:16 - 00000000 ____D C:\Users\Kristine\AppData\Local\Skype
2015-12-25 17:34 - 2015-04-17 09:15 - 00000000 ____D C:\ProgramData\Skype
2015-12-17 09:05 - 2015-05-29 19:41 - 00002254 _____ C:\Users\Public\Desktop\Google Chrome.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-04-16 11:09 - 2015-04-16 11:09 - 0041392 _____ () C:\Users\Kristine\AppData\Local\2B763BC1_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:09 - 0000289 _____ () C:\Users\Kristine\AppData\Local\2B763BC1_stp.CIS.part
2015-04-16 11:35 - 2015-04-16 11:35 - 0045792 _____ () C:\Users\Kristine\AppData\Local\59ED2468_stp.CIS
2015-04-16 11:35 - 2015-04-16 11:35 - 0000289 _____ () C:\Users\Kristine\AppData\Local\59ED2468_stp.CIS.part
2015-04-16 11:09 - 2015-04-16 11:09 - 0385602 _____ () C:\Users\Kristine\AppData\Local\5D515C96_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:35 - 0000220 _____ () C:\Users\Kristine\AppData\Local\5D515C96_stp.CIS.part
2015-04-16 11:09 - 2015-04-16 11:10 - 5529600 _____ () C:\Users\Kristine\AppData\Local\695794C2_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:10 - 0000364 _____ () C:\Users\Kristine\AppData\Local\695794C2_stp.CIS.part
2015-04-16 11:09 - 2015-04-16 11:09 - 1509462 _____ () C:\Users\Kristine\AppData\Local\69DD7379_stp.CIS
2015-04-16 11:09 - 2015-04-16 11:35 - 0000295 _____ () C:\Users\Kristine\AppData\Local\69DD7379_stp.CIS.part
2014-10-29 13:23 - 2014-10-29 13:23 - 0000516 _____ () C:\Users\Kristine\AppData\Local\Application.xml
2015-03-13 21:26 - 2015-03-13 21:26 - 0007601 _____ () C:\Users\Kristine\AppData\Local\resmon.resmoncfg
2016-01-07 12:16 - 2016-01-07 12:16 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-12-18 12:48 - 2015-11-09 09:50 - 0015271 _____ () C:\ProgramData\hpzinstall.log
2013-10-19 15:09 - 2013-10-19 15:10 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2013-10-19 15:05 - 2013-10-19 15:06 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2013-10-19 15:06 - 2013-10-19 15:08 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2013-10-19 15:04 - 2013-10-19 15:05 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2013-10-19 15:08 - 2013-10-19 15:09 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-01-07 12:11
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-12-2015
durchgeführt von Kristine (2016-01-10 20:27:55)
Gestartet von C:\Users\Kristine\Desktop
Windows 10 Home (X64) (2016-01-07 11:49:49)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
AdMinchen (S-1-5-21-3988005159-474404469-3811382638-1001 - Administrator - Enabled) => C:\Users\AdMinchen
Administrator (S-1-5-21-3988005159-474404469-3811382638-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-3988005159-474404469-3811382638-503 - Limited - Disabled)
Gast (S-1-5-21-3988005159-474404469-3811382638-501 - Limited - Disabled) => C:\Users\Gast
Kristine (S-1-5-21-3988005159-474404469-3811382638-1002 - Administrator - Enabled) => C:\Users\Kristine
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Amazon Music (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Amazon Amazon Music) (Version: 3.11.5.1140 - Amazon Services LLC)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.1.2241 - AVAST Software)
B110 (x32 Version: 140.0.353.000 - Hewlett-Packard) Hidden
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.4 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.4 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{693A23FB-F28B-4F7A-A720-4C1263F97F43}) (Version: 3.1.1002.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.16.1 - Dell Inc.)
Dell System Detect (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\73f463568823ebbe) (Version: 5.14.0.9 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.2 - Synaptics Incorporated)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.0.0 - devolo AG)
DSC/AA Factory Installer (Version: 3.4.6299.48 - PC-Doctor, Inc.) Hidden
Epic Privacy Browser (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\Epic) (Version: 40.0.2214.91 - Epic)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free YouTube Download version 3.2.56.324 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.56.324 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{C63184F3-8343-408F-A948-DDB0AC969A99}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{8F1A441E-AD6D-4732-BD6A-F38D5F1D1E47}) (Version: 12.0.30.219 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1306-148929CC1385}) (Version: 3.1.1306.0354 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C605440F-2748-435F-9F29-EB1C8134856F}) (Version: 4.1.17.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.4 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.4 (x86 de)) (Version: 43.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4.5848 - Mozilla)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.4.6299.48 - PC-Doctor, Inc.)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.311.0 - Tracker Software Products Ltd)
PS_AIO_07_B110_SW_Min (x32 Version: 140.0.365.000 - Hewlett-Packard) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.12 - Dell Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C9661090-C134-46E8-90B2-76D72355C2A6}) (Version: 6.2.9200.21220 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SafeZone Stable 1.46.1990.55 (x32 Version: 1.46.1990.55 - Avast Software) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Unity Web Player (HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\UnityWebPlayer) (Version: 4.6.4f1 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3988005159-474404469-3811382638-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Kristine\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {05798B22-85B6-43C4-9945-4D50CFB7515A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-28] (Hewlett-Packard)
Task: {096AF9ED-B194-46D7-9085-5EBA06766164} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {3CD864E3-4BAD-45B9-9648-ACE6C28746BA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
Task: {45B14A76-BE12-4C1A-827A-F7FD8665A9AE} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-12-03] (CyberLink)
Task: {4C6A8480-7B3E-4138-91A8-1892CB97F6CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-28] (Hewlett-Packard)
Task: {50AFED1F-34E0-4AE6-B91E-3D0DE993BBE6} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {6C296830-41BA-484A-9452-985370E85507} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {782F652B-6B3F-4E8F-8192-34AADEFECC94} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
Task: {7C99A9E7-C2A3-4A34-9450-D835F2FE0820} - System32\Tasks\Dell\Dell System Registration => /boot /LSRC=autolaunch
Task: {7E375414-79D4-4E94-B291-CFF9E19B6930} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {7E9238EB-B9AA-495E-95AD-816A089EDB50} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-12-03] (CyberLink Corp.)
Task: {80D80646-FBA9-4A75-9121-E11ECC1187EC} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
Task: {87B89A08-6197-4C78-8EBB-89C3861545F4} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-11-06] (AVAST Software)
Task: {9A497E80-312E-410E-BDB8-36D0B9A85BAA} - System32\Tasks\SafeZone scheduled Autoupdate 1446887338 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2015-10-30] (Avast Software)
Task: {B429FD9F-20EF-4F8E-B256-716FCABB16E6} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {B50A5BB8-7660-4B28-AA21-AEB5007BB8A2} - System32\Tasks\HPCeeScheduleForKristine => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {E4A66850-28BA-477B-8715-E93907E653CC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {F2B9205C-EBFB-4852-A5DC-3861B4A0068F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {FA1DE3F1-062B-4325-86CE-CC348B2BAB3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForKristine.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\WebReg HP Photosmart B110 series.job => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwrg.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2013-10-19 15:08 - 2012-04-25 03:43 - 00254512 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-01-07 21:23 - 2016-01-07 21:24 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-01-05 23:22 - 2016-01-05 23:22 - 00402344 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-01-07 12:06 - 2016-01-07 12:06 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 00936448 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-01-07 12:06 - 2016-01-07 12:06 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-01-23 20:47 - 2015-11-18 22:36 - 05890368 _____ () C:\Users\Kristine\AppData\Local\Amazon Music\Amazon Music Helper.exe
2016-01-08 19:54 - 2016-01-08 19:54 - 09737216 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.25.15.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-08 15:45 - 2016-01-08 15:45 - 02821120 _____ () C:\Program Files\AVAST Software\Avast\defs\16010800\algo.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 00466448 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-10 17:03 - 2016-01-10 17:03 - 02821120 _____ () C:\Program Files\AVAST Software\Avast\defs\16011000\algo.dll
2016-01-07 21:23 - 2016-01-07 21:24 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-01-07 21:23 - 2016-01-07 21:24 - 21845504 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2013-10-19 15:06 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 10:34 - 2012-06-08 10:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2015-11-06 21:08 - 2015-11-06 21:08 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-03-13 11:41 - 2013-09-03 22:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-12-17 09:05 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 09:05 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\dell.com -> dell.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2014-12-24 22:41 - 00000035 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Kristine\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\StartupApproved\Run: => "Epic Privacy Browser Update"
HKU\S-1-5-21-3988005159-474404469-3811382638-1002\...\StartupApproved\Run: => "Skype"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8E12099F-AA65-4BA5-9105-C766C3E4BD47}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F10B1630-98E9-47E9-969C-6705E2966BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1BFC5DAF-EDC3-4801-8B06-5CDFC5B514DB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BA3FC1EF-64E2-4DD8-978A-53CDA64B37BB}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{69C28607-22C3-4183-9615-F5436519C4A1}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{4F42101A-F72C-40A9-94A7-9161936B88F0}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{50759A68-6EAD-4DD9-8BCB-13B9A3AAFF82}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{4146153E-4758-4BA3-A7BD-FA74E1B3496E}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{E81C6E62-6C2B-47C2-BD77-1B0906FADF5B}] => (Allow) LPort=1900
FirewallRules: [{354BA047-B518-43BB-8F13-B636FCD80E4A}] => (Allow) LPort=2869
FirewallRules: [{B90F6656-F6C3-4732-9ACB-4B24BDD694AD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{80A0A84D-85D7-4DB3-8D3F-7B857B2EC874}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{B730500A-96FF-473E-B907-C7B2C6F8101A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{422AC016-C26D-441B-9A82-843432D93834}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{EDE1EF0C-59DE-4E56-AF9E-17C38347B143}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{E61FDE90-E2F3-4685-876E-980A5E9A92C6}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{44344303-EF40-4BD7-BF97-4E08B793F8F3}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{7BC06341-62B7-4FD7-8176-8E7F07C1F277}] => (Allow) C:\Users\AdMinchen\AppData\Local\Temp\7zS349A\hppiw.exe
FirewallRules: [{90DD04DF-9A12-4DB0-B4D4-FC52BB2927A5}] => (Allow) C:\Users\AdMinchen\AppData\Local\Temp\7zS349A\hppiw.exe
FirewallRules: [{CCDB7D87-5421-40F0-A0FA-5D14A3951B9B}] => (Allow) C:\Users\AdMinchen\AppData\Local\Temp\7zS39DC\setup\hpznui40.exe
FirewallRules: [{5F2AB45B-A034-41FB-951E-849A2E827EC2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{45D1037C-D24C-404C-B3AB-8D9CE6750D36}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{CC382578-655D-4642-829A-6D96F7282993}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{E397EFB3-5CC6-47A9-B773-290BAEC8B56D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{ECC5892B-225D-47FD-9C14-08F59B90A010}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{2FCC3060-781E-41B9-B18A-5AD16EEC093C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{D10E4726-8A92-471B-823C-2504AA686222}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{F9E9A34D-ECF3-46EF-B577-1FCC222F99D2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{A34FE6C6-B9A2-479A-AB55-A0362A19864F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{B3C63F34-D962-48AE-8B46-78B0F8BBBBF8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{79E5CF38-A876-4E40-A631-E8FFAF6B9256}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{FC098D40-6B69-42FF-B715-C5C4577AE928}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{2469D16B-E57D-4842-A6C6-3CCB34488C70}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{D783AD9E-084F-43BE-911E-D0FEDF7CC01A}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [TCP Query User{0DF78DE1-894E-48D9-8767-AD1C51DE6C96}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{37139FD0-24C6-4C24-924E-010087E251D4}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{2ED3DE7C-F749-4DB0-9733-5B1AC4B5C4F1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C25A6807-195F-4B48-B270-F944E9C7492E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{06CD9EF3-8E06-4623-8944-B7B4C34C37A7}C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe] => (Allow) C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe
FirewallRules: [UDP Query User{1035C877-6498-485A-8AFD-CD12D0B4CB34}C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe] => (Allow) C:\program files (x86)\lg software\lg smart share\dms\smartsharedms.exe
==================== Wiederherstellungspunkte =========================
08-01-2016 16:09:27 Windows Update
08-01-2016 21:05:44 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/10/2016 08:28:59 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (01/10/2016 08:16:28 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/10/2016 07:52:54 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/10/2016 06:44:33 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BIGTOY)
Description: Bei der Aktivierung der App „Microsoft.XboxApp_8wekyb3d8bbwe!Microsoft.XboxApp“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/10/2016 05:12:51 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (01/10/2016 05:12:50 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (01/10/2016 05:12:49 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (01/10/2016 05:12:48 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (01/10/2016 05:12:37 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (01/10/2016 05:12:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Systemfehler:
=============
Error: (01/10/2016 08:26:48 PM) (Source: DCOM) (EventID: 10010) (User: BIGTOY)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}
Error: (01/10/2016 08:25:57 PM) (Source: DCOM) (EventID: 10010) (User: BIGTOY)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}
Error: (01/10/2016 08:25:27 PM) (Source: DCOM) (EventID: 10010) (User: BIGTOY)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}
Error: (01/10/2016 08:24:57 PM) (Source: DCOM) (EventID: 10010) (User: BIGTOY)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}
Error: (01/10/2016 08:23:47 PM) (Source: DCOM) (EventID: 10010) (User: BIGTOY)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}
Error: (01/10/2016 07:52:36 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT-AUTORITÄT)
Description: Bei der automatischen WLAN-Konfiguration wurde eine eingeschränkte Konnektivität erkannt, "Reset/Recover.adapter" wird ausgeführt.
Code: 8 0x0 0x0
Error: (01/10/2016 07:52:34 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT-AUTORITÄT)
Description: Bei der automatischen WLAN-Konfiguration wurde eine eingeschränkte Konnektivität erkannt, "Reset/Recover.adapter" wird ausgeführt.
Code: 2 0xdeaddeed 0xeeec
Error: (01/10/2016 07:52:34 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT-AUTORITÄT)
Description: Bei der automatischen WLAN-Konfiguration wurde eine eingeschränkte Konnektivität erkannt, "Reset/Recover.adapter" wird ausgeführt.
Code: 1 0xc 0x4
Error: (01/10/2016 06:44:44 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
Error: (01/10/2016 06:43:26 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.
CodeIntegrity:
===================================
Date: 2016-01-10 16:25:35.650
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-08 16:15:50.331
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 12:49:16.667
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 12:40:02.086
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 12:36:10.906
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 12:15:32.593
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-4500U CPU @ 1.80GHz
Prozentuale Nutzung des RAM: 33%
Installierter physikalischer RAM: 8090.57 MB
Verfügbarer physikalischer RAM: 5411.53 MB
Summe virtueller Speicher: 10010.57 MB
Verfügbarer virtueller Speicher: 7174.42 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:917.09 GB) (Free:519.01 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 26894598)
Partition: GPT.
==================== Ende von Addition.txt ============================
Ansonsten muss ich noch testen ob noch ein Problem besteht. Hast du denn was entdeckt? Und wenn ja, was?
__________________ Gruß, Kristine |
|
11.01.2016, 14:14
| #13 | ||||||||
| /// TB-Ausbilder | Und mal wieder ist alles seeeehr langsam geworden... Servus, Logdateien sieht gut aus.  Wir haben nur ein paar Adwarereste entfernt. Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.  Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern.  Cleanup: Alle Logs gepostet? Dann lade Dir bitte  DelFix herunter.
DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner anschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.  Absicherung: Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen: Browser Java Flash-Player PDF-Reader Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen. Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig. Sofern du noch unentschieden bist, verwende ein einziges der folgenden Antivirusprogramme mit Echtzeitscanner und stets aktueller Signaturendatenbank:
Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen. Optional:  Adblock Plus Kann Banner, Pop-ups, Videowerbung, Tracking und Malware-Seiten blockieren. NoScript Verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen. Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.Lade Software von einem sauberen Portal wie  .Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen. Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner . Abschließend noch ein paar grundsätzliche Bemerkungen:
Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...  und/oder das Forum mit einer kleinen Spende  unterstützen.  Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
12.01.2016, 21:16
| #14 |
| | Und mal wieder ist alles seeeehr langsam geworden... Hallo Matthias, vielen Dank für deine Hilfe und deine Tipps. Momentan läuft alles sehr rund. Also viel besser. Super!! Antivirus habe ich Avast, sogar eine gekaufte Version. Ist das ausreichend? Ansonsten habe ich dann keine Fragen mehr soweit.
__________________ Gruß, Kristine |
|
13.01.2016, 14:33
| #15 | |
| /// TB-Ausbilder | Und mal wieder ist alles seeeehr langsam geworden...Zitat:
Ich bin froh, dass wir helfen konnten  In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest: Lob, Kritik und Wünsche Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank! Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM. Jeder andere bitte hier klicken und einen eigenen Thread erstellen. |
|
| Themen zu Und mal wieder ist alles seeeehr langsam geworden... |
| adobe, antivirus, avast, converter, cpu, defender, desktop, dnsapi.dll, explorer, firefox, google, home, homepage, langsam, mozilla, onedrive, prozesse, realtek, registry, rundll, scan, services.exe, software, system, udp, usb, windows, windowsapps |
Linear-Darstellung
