Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 19.10.2016, 22:42   #1
Sebow
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Hallo liebe Forenmitglieder,

ich habe hier etwas mitgelesen und versucht mein Fehler zu beheben. Da aber jeder Fehler gleich ist, sah ich mich gezwungen ein neues Thema zu erstellen.
PS: Ich war von euren bisherigen "Leistungen" mehr als begeistert, ich hoffe ihr könnt mir ebenso helfen.

Ich besitze einen HP Windows 10 x64 mit einem i7 Prozessor und 6gb RAM.

Mein Problem ist ziemlich genau das in diesem beschriebenen Thema:

http://www.trojaner-board.de/158842-...-id-100-a.html

Jedoch unterscheidet sich meine Ereignisliste vermutlich von der obigen. Aber auch mein Rechner ist nach dem Start ein paar Minuten unbrauchbar und läuft erst dann stabil und schneller.

Hier meine Log-files & weiteren Infos:

Ich habe mir in der Ereignissliste einen Filter erstellt, der nur Fehler der ID 100 anzeigt:



FRST Log-File

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17-10-2016
durchgeführt von Kristina (Administrator) auf KRISSY-PC (19-10-2016 22:20:47)
Gestartet von C:\Users\Kristina\Desktop
Geladene Profile: Kristina (Verfügbare Profile: UpdatusUser & Kristina)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McT5F74.tmp
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SETDBCA.tmp
(Bitdefender) C:\Bitdefender\Bitdefender 2017\vsservp.exe
(Bitdefender) C:\Bitdefender\Bitdefender 2017\updatesrv.exe
(Bitdefender) C:\Bitdefender\Bitdefender 2017\vsserv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SETCCFD.tmp
(AuthenTec Inc.) C:\Program Files (x86)\HP SimplePass\TouchControl.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SETDB1C.tmp
() C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Intel Security) C:\Program Files\Intel Security\True Key\application\truekey.exe
(Intel Security) C:\Program Files\Intel Security\True Key\application\truekey.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Bitdefender) C:\Bitdefender\Bitdefender 2017\bdagent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Bitdefender) C:\Bitdefender\Bitdefender 2017\bdwtxag.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Bitdefender) C:\Bitdefender\Bitdefender 2017\bdwtxcr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [396688 2015-07-18] ()
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-07-11] (Apple Inc.)
HKLM\...\Run: [GoPro Tray App] => C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [1088944 2016-05-12] ()
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-04-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [509192 2014-10-09] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\Run: [GoogleChromeAutoLaunch_E4ECC421CB85415135FC0490EDDAF29A] => C:\Users\Kristina\AppData\Local\Chromium\Application\chrome.exe [666624 2015-07-30] (The Chromium Authors)
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\RunOnce: [Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\RunOnce: [Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\RunOnce: [Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\RunOnce: [Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\RunOnce: [Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll [2016-09-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll [2016-09-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll [2016-09-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncShell.dll [2016-09-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncShell.dll [2016-09-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncShell.dll [2016-09-05] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk [2013-06-09]
ShortcutTarget: iSCTsysTray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
GroupPolicy: Beschränkung <======= ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
CHR HKU\S-1-5-21-987662335-2921229888-1834634612-1002\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Winsock: Catalog9-x64 01 C:\WINDOWS\system32\LavasoftTcpService64.dll [422400 2015-08-16] (Lavasoft Limited)
Winsock: Catalog9-x64 02 C:\WINDOWS\system32\LavasoftTcpService64.dll [422400 2015-08-16] (Lavasoft Limited)
Winsock: Catalog9-x64 03 C:\WINDOWS\system32\LavasoftTcpService64.dll [422400 2015-08-16] (Lavasoft Limited)
Winsock: Catalog9-x64 04 C:\WINDOWS\system32\LavasoftTcpService64.dll [422400 2015-08-16] (Lavasoft Limited)
Winsock: Catalog9-x64 05 C:\WINDOWS\system32\LavasoftTcpService64.dll [422400 2015-08-16] (Lavasoft Limited)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{d82828ad-b27e-4796-9540-10870538adc3}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131176603816965614&GUID=8C60FC27-DF65-4EA8-BBD7-709A914A422D
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131176603816989254&GUID=8C60FC27-DF65-4EA8-BBD7-709A914A422D
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131176603816994848&GUID=8C60FC27-DF65-4EA8-BBD7-709A914A422D
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPNOT13/4
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = 
SearchScopes: HKLM -> {888F3639-2AA4-4214-A042-64D447BE580F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {888F3639-2AA4-4214-A042-64D447BE580F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=ir_14_16_ie&cd=2XzuyEtN2Y1L1Qzu0B0CzzyDyDyCtA0E0B0A0EyBtCzyyE0FtN0D0Tzu0SzztAzztN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyEyBtA0F0B0E0AzytGtD0F0B0CtG0EtDtAyEtGyB0E0FzytGtD0AtBtB0CzyyDyByD0AyB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtDzyyB0A0Bzy0AtGyDzzzyyEtGtB0BzyyCtGzytByDyCtGtCzyyEtCtCtC0Bzz0CtByCtD2Q&cr=327683202&ir=
SearchScopes: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3317209&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP85E91191-768C-4971-B34D-3AC118503D40&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> {888F3639-2AA4-4214-A042-64D447BE580F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Bitdefender\Bitdefender 2017\pmbxie.dll [2016-09-14] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-10-07] (Intel Security)
BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2016-09-14] (Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Bitdefender\Bitdefender 2017\pmbxie.dll [2016-09-14] (Bitdefender)
Toolbar: HKLM-x32 - Kein Name - {3004627E-F8E9-4E8B-909D-316753CBA923} -  Keine Datei
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-10-07] (Intel Security)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2016-09-14] (Bitdefender)
Toolbar: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
Toolbar: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Bitdefender\Bitdefender 2017\pmbxie.dll [2016-09-14] (Bitdefender)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-08-16] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Bitdefender\Bitdefender 2017\antispam32\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Bitdefender\Bitdefender 2017\antispam32\bdwteff [2016-10-10]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Bitdefender\Bitdefender 2017\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Bitdefender\Bitdefender 2017\bdtbext [2016-10-10] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Bitdefender\Bitdefender 2017\antispam32\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Bitdefender\Bitdefender 2017\bdtbext
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [2012-08-08] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll [2013-02-07] ( HP)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-02-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-02-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-05] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> ""
CHR Profile: C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default [2016-10-19]
CHR Extension: (Bitdefender Wallet) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2016-10-15]
CHR Extension: (AdBlock) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-10-15]
CHR Extension: (Website Logon) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmbkhknacohfhbmmpnmbkgdffdbildof [2015-02-10]
CHR Extension: (Home Tab) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kofkpgiaknijknhajbhnghkodiccblkg [2016-05-29]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-29]
CHR Extension: (Chrome Media Router) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-15]
CHR HKLM\...\Chrome\Extension: [iagcajndpnfncplednpbnkahadegklfa] - C:\Users\Kristina\AppData\Local\speedial.crx [2014-04-18]
CHR HKLM\...\Chrome\Extension: [kofkpgiaknijknhajbhnghkodiccblkg] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-987662335-2921229888-1834634612-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kofkpgiaknijknhajbhnghkodiccblkg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hmbkhknacohfhbmmpnmbkgdffdbildof] - C:\Program Files (x86)\HP SimplePass\tschrome.crx [2012-12-12]
CHR HKLM-x32\...\Chrome\Extension: [kofkpgiaknijknhajbhnghkodiccblkg] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [100448 2016-10-06] (Bitdefender)
R2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641768 2013-02-07] (HP)
S4 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2016-05-12] ()
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [569608 2014-10-09] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [351120 2015-07-18] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129848 2013-02-22] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [180200 2013-02-13] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-02-22] (Intel Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1088944 2016-09-13] (Bitdefender)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269400 2016-10-19] (Synaptics Incorporated)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [987048 2016-09-30] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-09-30] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-09-30] (McAfee, Inc.)
S3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401856 2013-01-07] (AuthenTec, Inc.)
R2 UPDATESRV; C:\Bitdefender\Bitdefender 2017\updatesrv.exe [216880 2016-08-24] (Bitdefender)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [61968 2015-11-11] (Synaptics Incorporated)
S3 vmicvss; C:\WINDOWS\System32\ICSvc.dll [506880 2016-09-30] (Microsoft Corporation)
R2 vsserv; C:\Bitdefender\Bitdefender 2017\vsserv.exe [1306832 2016-10-04] (Bitdefender)
R2 vsservp; C:\Bitdefender\Bitdefender 2017\vsservp.exe [524872 2016-08-25] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362920 2016-09-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-09-30] (Microsoft Corporation)
S2 0153141476902031mcinstcleanup; C:\WINDOWS\TEMP\015314~1.EXE -cleanup -nolog [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1603264 2016-06-29] (BitDefender)
R3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [850464 2016-06-03] (BitDefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-24] (BitDefender LLC)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
S3 bthhfhid; C:\WINDOWS\System32\drivers\BthHFHid.sys [12 2016-10-02] () [Datei ist nicht signiert]
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182936 2015-12-16] (BitDefender LLC)
R0 ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [300840 2016-08-11] (Bitdefender)
R3 ikbevent; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [21048 2013-02-13] ()
R3 imsevent; C:\WINDOWS\system32\DRIVERS\imsevent.sys [21048 2013-02-13] ()
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [46568 2013-02-13] ()
R3 netr28x; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-02-06] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [79960 2016-10-19] (Synaptics Incorporated)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-03-10] (BitDefender S.R.L.)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Apple, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R2 WinDivert64; C:\WINDOWS\system32\drivers\WinDivert64.sys [35376 2013-12-02] (Basil Projects)
R3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
R3 WPRO_41_2001; C:\WINDOWS\System32\drivers\WPRO_41_2001.sys [34752 2016-10-16] ()
S3 STHDA; \SystemRoot\system32\DRIVERS\stwrt64.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-19 22:20 - 2016-10-19 22:21 - 00028367 _____ C:\Users\Kristina\Desktop\FRST.txt
2016-10-19 22:20 - 2016-10-19 22:20 - 00000000 ____D C:\FRST
2016-10-19 22:19 - 2016-10-19 22:19 - 02407424 _____ (Farbar) C:\Users\Kristina\Desktop\FRST64.exe
2016-10-19 21:32 - 2016-10-19 21:32 - 00000000 ____D C:\WINDOWS\LastGood
2016-10-19 21:31 - 2016-10-19 21:31 - 00444000 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2016-10-19 21:31 - 2016-10-19 21:31 - 00079960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2016-10-19 21:31 - 2016-10-19 21:31 - 00076376 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2016-10-19 21:31 - 2016-10-19 21:31 - 00074840 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2016-10-19 21:12 - 2016-10-19 21:12 - 00016148 _____ C:\WINDOWS\system32\KRISSY-PC_Kristina_HistoryPrediction.bin
2016-10-16 01:47 - 2016-10-16 01:47 - 00094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2016-10-16 01:24 - 2016-10-16 01:24 - 00000000 ___HD C:\$WINDOWS.~BT
2016-10-16 01:24 - 2016-10-16 01:24 - 00000000 ____D C:\WINDOWS\Panther
2016-10-16 01:10 - 2016-10-16 01:10 - 00000000 ____D C:\Users\Kristina\AppData\Temp
2016-10-16 01:10 - 2016-09-30 08:00 - 08015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-16 01:10 - 2016-09-30 08:00 - 01538168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-16 01:10 - 2016-09-30 07:50 - 06525424 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-16 01:10 - 2016-09-30 07:50 - 01134792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-16 01:10 - 2016-09-30 06:19 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-16 01:10 - 2016-09-30 06:17 - 24596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-16 01:10 - 2016-09-30 06:07 - 14243840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-16 01:10 - 2016-09-30 06:05 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-16 01:10 - 2016-09-30 06:04 - 02839040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-10-16 01:10 - 2016-09-30 05:58 - 02405888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-16 01:10 - 2016-09-30 05:57 - 07527936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-16 01:10 - 2016-09-30 05:57 - 01670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-16 01:10 - 2016-09-30 05:56 - 04791808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-16 01:10 - 2016-09-30 05:54 - 03549696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-10-16 01:10 - 2016-09-30 05:36 - 19334656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-10-16 01:10 - 2016-09-30 05:22 - 18799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-10-16 01:10 - 2016-09-30 05:22 - 12591104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-10-16 01:10 - 2016-09-30 05:16 - 05455872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-10-16 01:10 - 2016-09-30 05:15 - 11270656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-10-16 01:09 - 2016-09-30 08:01 - 03467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-10-16 01:09 - 2016-09-30 08:01 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-10-16 01:09 - 2016-09-30 08:01 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-16 01:09 - 2016-09-30 08:01 - 00552288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-10-16 01:09 - 2016-09-30 08:00 - 02816016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-10-16 01:09 - 2016-09-30 08:00 - 02495776 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-16 01:09 - 2016-09-30 08:00 - 02147072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-10-16 01:09 - 2016-09-30 08:00 - 01563480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-10-16 01:09 - 2016-09-30 08:00 - 01298008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-16 01:09 - 2016-09-30 08:00 - 01270104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-10-16 01:09 - 2016-09-30 08:00 - 01127024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-16 01:09 - 2016-09-30 08:00 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-16 01:09 - 2016-09-30 08:00 - 00652864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-16 01:09 - 2016-09-30 08:00 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-16 01:09 - 2016-09-30 08:00 - 00143600 _____ (Microsoft Corporation) C:\WINDOWS\system32\cabinet.dll
2016-10-16 01:09 - 2016-09-30 08:00 - 00123744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-10-16 01:09 - 2016-09-30 07:59 - 02115936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-10-16 01:09 - 2016-09-30 07:58 - 02640872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2016-10-16 01:09 - 2016-09-30 07:58 - 02601152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-16 01:09 - 2016-09-30 07:58 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-16 01:09 - 2016-09-30 07:58 - 01150304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-16 01:09 - 2016-09-30 07:58 - 00862064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-10-16 01:09 - 2016-09-30 07:58 - 00807832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-10-16 01:09 - 2016-09-30 07:58 - 00588832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2016-10-16 01:09 - 2016-09-30 07:58 - 00388888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-10-16 01:09 - 2016-09-30 07:58 - 00305816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-10-16 01:09 - 2016-09-30 07:51 - 03643480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-16 01:09 - 2016-09-30 07:51 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-10-16 01:09 - 2016-09-30 07:51 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-10-16 01:09 - 2016-09-30 07:50 - 00724168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-10-16 01:09 - 2016-09-30 07:50 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-10-16 01:09 - 2016-09-30 07:46 - 00672096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-10-16 01:09 - 2016-09-30 07:46 - 00224712 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-10-16 01:09 - 2016-09-30 07:45 - 00613120 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-10-16 01:09 - 2016-09-30 07:43 - 00244064 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmipnpinstall.dll
2016-10-16 01:09 - 2016-09-30 07:41 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-10-16 01:09 - 2016-09-30 07:41 - 00984448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-10-16 01:09 - 2016-09-30 07:41 - 00850272 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-10-16 01:09 - 2016-09-30 06:31 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-10-16 01:09 - 2016-09-30 06:25 - 00365128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-10-16 01:09 - 2016-09-30 06:24 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-10-16 01:09 - 2016-09-30 06:24 - 01766496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-10-16 01:09 - 2016-09-30 06:24 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-10-16 01:09 - 2016-09-30 06:24 - 01106872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-10-16 01:09 - 2016-09-30 06:24 - 00877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-10-16 01:09 - 2016-09-30 06:24 - 00439648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-10-16 01:09 - 2016-09-30 06:24 - 00125032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cabinet.dll
2016-10-16 01:09 - 2016-09-30 06:23 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-16 01:09 - 2016-09-30 06:23 - 01895576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-10-16 01:09 - 2016-09-30 06:22 - 02369696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2016-10-16 01:09 - 2016-09-30 06:22 - 01811360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-10-16 01:09 - 2016-09-30 06:22 - 00524800 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-16 01:09 - 2016-09-30 06:22 - 00374784 _____ C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-16 01:09 - 2016-09-30 06:22 - 00253600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-10-16 01:09 - 2016-09-30 06:21 - 00714808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-10-16 01:09 - 2016-09-30 06:21 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-10-16 01:09 - 2016-09-30 06:18 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-10-16 01:09 - 2016-09-30 06:16 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-16 01:09 - 2016-09-30 06:16 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-16 01:09 - 2016-09-30 06:15 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-10-16 01:09 - 2016-09-30 06:14 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
2016-10-16 01:09 - 2016-09-30 06:13 - 02898112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-10-16 01:09 - 2016-09-30 06:13 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2016-10-16 01:09 - 2016-09-30 06:13 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-10-16 01:09 - 2016-09-30 06:12 - 00565656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-10-16 01:09 - 2016-09-30 06:12 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-10-16 01:09 - 2016-09-30 06:12 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-10-16 01:09 - 2016-09-30 06:11 - 03793408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-10-16 01:09 - 2016-09-30 06:11 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-10-16 01:09 - 2016-09-30 06:10 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-10-16 01:09 - 2016-09-30 06:10 - 01123840 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-10-16 01:09 - 2016-09-30 06:10 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-10-16 01:09 - 2016-09-30 06:09 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-10-16 01:09 - 2016-09-30 06:08 - 01418752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-16 01:09 - 2016-09-30 06:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-16 01:09 - 2016-09-30 06:08 - 00814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2016-10-16 01:09 - 2016-09-30 06:08 - 00185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-10-16 01:09 - 2016-09-30 06:07 - 12514304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-16 01:09 - 2016-09-30 06:07 - 00545400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-10-16 01:09 - 2016-09-30 06:06 - 00345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-10-16 01:09 - 2016-09-30 06:06 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-10-16 01:09 - 2016-09-30 06:06 - 00322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-10-16 01:09 - 2016-09-30 06:06 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-10-16 01:09 - 2016-09-30 06:06 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmgp.dll
2016-10-16 01:09 - 2016-09-30 06:06 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-10-16 01:09 - 2016-09-30 06:05 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-10-16 01:09 - 2016-09-30 06:05 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2016-10-16 01:09 - 2016-09-30 06:05 - 00192344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmipnpinstall.dll
2016-10-16 01:09 - 2016-09-30 06:04 - 02253824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-10-16 01:09 - 2016-09-30 06:04 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-10-16 01:09 - 2016-09-30 06:04 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationHost.exe
2016-10-16 01:09 - 2016-09-30 06:03 - 03170816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-16 01:09 - 2016-09-30 06:03 - 01686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-16 01:09 - 2016-09-30 06:03 - 01601024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-16 01:09 - 2016-09-30 06:03 - 01040384 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-10-16 01:09 - 2016-09-30 06:03 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2016-10-16 01:09 - 2016-09-30 06:03 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-16 01:09 - 2016-09-30 06:02 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-10-16 01:09 - 2016-09-30 06:02 - 00775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-16 01:09 - 2016-09-30 06:02 - 00528384 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-10-16 01:09 - 2016-09-30 06:01 - 05448704 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-10-16 01:09 - 2016-09-30 06:00 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-16 01:09 - 2016-09-30 06:00 - 00819712 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-10-16 01:09 - 2016-09-30 06:00 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-10-16 01:09 - 2016-09-30 05:59 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-10-16 01:09 - 2016-09-30 05:59 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2016-10-16 01:09 - 2016-09-30 05:59 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-10-16 01:09 - 2016-09-30 05:58 - 04168704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-10-16 01:09 - 2016-09-30 05:57 - 07502848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-10-16 01:09 - 2016-09-30 05:57 - 03584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-16 01:09 - 2016-09-30 05:57 - 01718272 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-16 01:09 - 2016-09-30 05:57 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-16 01:09 - 2016-09-30 05:55 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-10-16 01:09 - 2016-09-30 05:55 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-10-16 01:09 - 2016-09-30 05:55 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-10-16 01:09 - 2016-09-30 05:55 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2016-10-16 01:09 - 2016-09-30 05:54 - 03420160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2016-10-16 01:09 - 2016-09-30 05:54 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-10-16 01:09 - 2016-09-30 05:54 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\devmgr.dll
2016-10-16 01:09 - 2016-09-30 05:54 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2016-10-16 01:09 - 2016-09-30 05:54 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-10-16 01:09 - 2016-09-30 05:54 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2016-10-16 01:09 - 2016-09-30 05:53 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2016-10-16 01:09 - 2016-09-30 05:53 - 00939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-10-16 01:09 - 2016-09-30 05:53 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-10-16 01:09 - 2016-09-30 05:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-10-16 01:09 - 2016-09-30 05:51 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-10-16 01:09 - 2016-09-30 05:43 - 13027328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-10-16 01:09 - 2016-09-30 05:38 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-10-16 01:09 - 2016-09-30 05:34 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-10-16 01:09 - 2016-09-30 05:31 - 02599424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-10-16 01:09 - 2016-09-30 05:31 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-10-16 01:09 - 2016-09-30 05:31 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2016-10-16 01:09 - 2016-09-30 05:31 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-10-16 01:09 - 2016-09-30 05:30 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-10-16 01:09 - 2016-09-30 05:29 - 04398592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-10-16 01:09 - 2016-09-30 05:29 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-10-16 01:09 - 2016-09-30 05:29 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-10-16 01:09 - 2016-09-30 05:27 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-10-16 01:09 - 2016-09-30 05:27 - 03873280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-10-16 01:09 - 2016-09-30 05:27 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provcore.dll
2016-10-16 01:09 - 2016-09-30 05:26 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-10-16 01:09 - 2016-09-30 05:25 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-10-16 01:09 - 2016-09-30 05:25 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-10-16 01:09 - 2016-09-30 05:25 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-10-16 01:09 - 2016-09-30 05:25 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-10-16 01:09 - 2016-09-30 05:25 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmgp.dll
2016-10-16 01:09 - 2016-09-30 05:25 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-10-16 01:09 - 2016-09-30 05:24 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-10-16 01:09 - 2016-09-30 05:23 - 02198016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-10-16 01:09 - 2016-09-30 05:22 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-10-16 01:09 - 2016-09-30 05:22 - 02638336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-10-16 01:09 - 2016-09-30 05:22 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-10-16 01:09 - 2016-09-30 05:22 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-10-16 01:09 - 2016-09-30 05:22 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationHost.exe
2016-10-16 01:09 - 2016-09-30 05:21 - 00679936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-10-16 01:09 - 2016-09-30 05:21 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-10-16 01:09 - 2016-09-30 05:21 - 00486912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-10-16 01:09 - 2016-09-30 05:21 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-10-16 01:09 - 2016-09-30 05:19 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-10-16 01:09 - 2016-09-30 05:19 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2016-10-16 01:09 - 2016-09-30 05:18 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-10-16 01:09 - 2016-09-30 05:18 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-10-16 01:09 - 2016-09-30 05:18 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-10-16 01:09 - 2016-09-30 05:17 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2016-10-16 01:09 - 2016-09-30 05:17 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-16 01:09 - 2016-09-30 05:16 - 01467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-10-16 01:09 - 2016-09-30 05:15 - 06713856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-10-16 01:09 - 2016-09-30 05:15 - 00565760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-10-16 01:09 - 2016-09-30 05:13 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devmgr.dll
2016-10-16 01:09 - 2016-09-30 05:13 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2016-10-16 01:09 - 2016-09-30 05:12 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-10-16 01:09 - 2016-09-30 05:12 - 01189888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2016-10-16 01:09 - 2016-09-30 05:12 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-10-16 01:09 - 2016-09-30 05:12 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-10-16 01:09 - 2016-09-30 05:11 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-10-16 01:09 - 2016-09-30 03:13 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-16 01:08 - 2016-09-30 06:28 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2016-10-16 01:08 - 2016-09-30 06:23 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-10-16 01:08 - 2016-09-30 06:23 - 00422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-10-16 01:08 - 2016-09-30 06:12 - 00596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2016-10-16 01:08 - 2016-09-30 06:12 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-10-16 01:08 - 2016-09-30 06:11 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-16 01:08 - 2016-09-30 06:10 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-10-16 01:08 - 2016-09-30 06:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-10-16 01:08 - 2016-09-30 06:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-10-16 01:08 - 2016-09-30 06:10 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-10-16 01:08 - 2016-09-30 06:09 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2016-10-16 01:08 - 2016-09-30 06:09 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassvcs.dll
2016-10-16 01:08 - 2016-09-30 06:07 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\verifiergui.exe
2016-10-16 01:08 - 2016-09-30 06:06 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsnp.dll
2016-10-16 01:08 - 2016-09-30 06:06 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-16 01:08 - 2016-09-30 06:06 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2016-10-16 01:08 - 2016-09-30 06:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmdl32.exe
2016-10-16 01:08 - 2016-09-30 06:05 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\blackbox.dll
2016-10-16 01:08 - 2016-09-30 06:05 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscp.dll
2016-10-16 01:08 - 2016-09-30 06:05 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3gpui.dll
2016-10-16 01:08 - 2016-09-30 06:05 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\msnetobj.dll
2016-10-16 01:08 - 2016-09-30 06:05 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2016-10-16 01:08 - 2016-09-30 06:05 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\genericusbfn.sys
2016-10-16 01:08 - 2016-09-30 06:04 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-10-16 01:08 - 2016-09-30 06:04 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2016-10-16 01:08 - 2016-09-30 06:03 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-10-16 01:08 - 2016-09-30 06:03 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtckrm.dll
2016-10-16 01:08 - 2016-09-30 06:03 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationHostProxy.dll
2016-10-16 01:08 - 2016-09-30 06:02 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate_isv.exe
2016-10-16 01:08 - 2016-09-30 06:01 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-10-16 01:08 - 2016-09-30 06:01 - 01797632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-10-16 01:08 - 2016-09-30 06:01 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate_ssp.exe
2016-10-16 01:08 - 2016-09-30 06:01 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-10-16 01:08 - 2016-09-30 06:00 - 00577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate.exe
2016-10-16 01:08 - 2016-09-30 06:00 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate_ssp_isv.exe
2016-10-16 01:08 - 2016-09-30 06:00 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-10-16 01:08 - 2016-09-30 06:00 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-10-16 01:08 - 2016-09-30 06:00 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2016-10-16 01:08 - 2016-09-30 05:59 - 04453888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-16 01:08 - 2016-09-30 05:59 - 01729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-10-16 01:08 - 2016-09-30 05:59 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-10-16 01:08 - 2016-09-30 05:59 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-10-16 01:08 - 2016-09-30 05:59 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2016-10-16 01:08 - 2016-09-30 05:58 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\certmgr.dll
2016-10-16 01:08 - 2016-09-30 05:58 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2016-10-16 01:08 - 2016-09-30 05:58 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mycomput.dll
2016-10-16 01:08 - 2016-09-30 05:58 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\els.dll
2016-10-16 01:08 - 2016-09-30 05:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-16 01:08 - 2016-09-30 05:56 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-10-16 01:08 - 2016-09-30 05:56 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-16 01:08 - 2016-09-30 05:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnification.dll
2016-10-16 01:08 - 2016-09-30 05:55 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskmgr.dll
2016-10-16 01:08 - 2016-09-30 05:55 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2016-10-16 01:08 - 2016-09-30 05:54 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2016-10-16 01:08 - 2016-09-30 05:53 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-10-16 01:08 - 2016-09-30 05:53 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\makecab.exe
2016-10-16 01:08 - 2016-09-30 05:53 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\expand.exe
2016-10-16 01:08 - 2016-09-30 05:53 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\extrac32.exe
2016-10-16 01:08 - 2016-09-30 05:52 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-10-16 01:08 - 2016-09-30 05:51 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgcore.dll
2016-10-16 01:08 - 2016-09-30 05:39 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-10-16 01:08 - 2016-09-30 05:39 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcfile.dll
2016-10-16 01:08 - 2016-09-30 05:30 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-10-16 01:08 - 2016-09-30 05:30 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2016-10-16 01:08 - 2016-09-30 05:30 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-10-16 01:08 - 2016-09-30 05:29 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-16 01:08 - 2016-09-30 05:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-10-16 01:08 - 2016-09-30 05:28 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2016-10-16 01:08 - 2016-09-30 05:28 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-10-16 01:08 - 2016-09-30 05:27 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassvcs.dll
2016-10-16 01:08 - 2016-09-30 05:26 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\verifiergui.exe
2016-10-16 01:08 - 2016-09-30 05:25 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2016-10-16 01:08 - 2016-09-30 05:25 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmdl32.exe
2016-10-16 01:08 - 2016-09-30 05:24 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ipsecsnp.dll
2016-10-16 01:08 - 2016-09-30 05:24 - 00640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\blackbox.dll
2016-10-16 01:08 - 2016-09-30 05:24 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-10-16 01:08 - 2016-09-30 05:24 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscp.dll
2016-10-16 01:08 - 2016-09-30 05:24 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3gpui.dll
2016-10-16 01:08 - 2016-09-30 05:24 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msnetobj.dll
2016-10-16 01:08 - 2016-09-30 05:22 - 01492992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-10-16 01:08 - 2016-09-30 05:22 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-10-16 01:08 - 2016-09-30 05:22 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationHostProxy.dll
2016-10-16 01:08 - 2016-09-30 05:20 - 01350144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2016-10-16 01:08 - 2016-09-30 05:19 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_isv.exe
2016-10-16 01:08 - 2016-09-30 05:19 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate.exe
2016-10-16 01:08 - 2016-09-30 05:19 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_ssp_isv.exe
2016-10-16 01:08 - 2016-09-30 05:19 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_ssp.exe
2016-10-16 01:08 - 2016-09-30 05:19 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-10-16 01:08 - 2016-09-30 05:19 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-10-16 01:08 - 2016-09-30 05:19 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-10-16 01:08 - 2016-09-30 05:17 - 03692032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-10-16 01:08 - 2016-09-30 05:17 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certmgr.dll
2016-10-16 01:08 - 2016-09-30 05:17 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\filemgmt.dll
2016-10-16 01:08 - 2016-09-30 05:17 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mycomput.dll
2016-10-16 01:08 - 2016-09-30 05:17 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\els.dll
2016-10-16 01:08 - 2016-09-30 05:17 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pwrshplugin.dll
2016-10-16 01:08 - 2016-09-30 05:15 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-10-16 01:08 - 2016-09-30 05:15 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-10-16 01:08 - 2016-09-30 05:15 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnification.dll
2016-10-16 01:08 - 2016-09-30 05:14 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll
2016-10-16 01:08 - 2016-09-30 05:12 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\makecab.exe
2016-10-16 01:08 - 2016-09-30 05:12 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\expand.exe
2016-10-16 01:08 - 2016-09-30 05:12 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\extrac32.exe
2016-10-16 01:08 - 2016-09-30 05:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgcore.dll
2016-10-16 01:08 - 2016-09-30 05:00 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-10-16 00:27 - 2016-10-16 00:27 - 00000000 ____D C:\WINDOWS\UpdateAssistant
2016-10-15 15:14 - 2016-10-16 00:47 - 00000000 ____D C:\Program Files (x86)\AVG
2016-10-15 15:13 - 2016-10-16 00:47 - 00000000 ____D C:\Users\Kristina\AppData\Local\AvgSetupLog
2016-10-15 15:13 - 2016-10-15 15:15 - 00000000 ____D C:\Users\Kristina\AppData\Local\Avg
2016-10-15 15:13 - 2016-10-15 15:15 - 00000000 ____D C:\ProgramData\Avg
2016-10-15 15:03 - 2016-10-15 15:03 - 00054567 _____ C:\ProgramData\dm.1476536622.bdinstall.bin
2016-10-15 15:03 - 2016-10-15 15:03 - 00000000 ____D C:\ProgramData\Bitdefender Device Management
2016-10-15 15:01 - 2016-10-15 15:01 - 00384450 _____ C:\ProgramData\cl.1476535903.bdinstall.bin
2016-10-15 14:59 - 2016-10-15 14:59 - 00001887 _____ C:\Users\Public\Desktop\Bitdefender 2017.lnk
2016-10-15 14:59 - 2016-10-15 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2017
2016-10-15 14:58 - 2016-06-29 18:07 - 01603264 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2016-10-15 14:58 - 2016-06-03 17:05 - 00850464 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2016-10-15 14:58 - 2016-03-14 22:04 - 00023672 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2016-10-15 14:58 - 2015-12-04 19:27 - 00087912 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2016-10-15 14:57 - 2016-10-15 15:03 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\Bitdefender
2016-10-15 14:57 - 2016-08-11 17:42 - 00300840 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys
2016-10-15 14:52 - 2016-10-15 14:52 - 00000000 ____D C:\Bitdefender
2016-10-15 14:52 - 2016-03-10 07:41 - 00520032 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2016-10-15 14:52 - 2015-12-16 05:53 - 00182936 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2016-10-15 14:40 - 2016-10-15 14:40 - 00003794 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2016-10-15 14:38 - 2016-10-19 22:13 - 00000000 ____D C:\Program Files\Bitdefender Agent
2016-10-15 14:38 - 2016-10-15 14:38 - 00045959 _____ C:\ProgramData\agent.1476535135.bdinstall.bin
2016-10-15 14:19 - 2016-10-19 22:18 - 00002234 ____H C:\Users\Kristina\Documents\Default.rdp
2016-10-15 14:05 - 2016-10-15 14:05 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\Avira
2016-10-15 14:02 - 2016-10-15 14:55 - 00000000 ____D C:\ProgramData\Avira
2016-10-03 14:36 - 2016-10-19 20:35 - 00000000 ____D C:\Users\Kristina\AppData\Local\tkdata
2016-10-03 14:35 - 2016-10-19 20:35 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-10-03 14:35 - 2016-10-03 14:35 - 00001232 _____ C:\Users\Public\Desktop\True Key.lnk
2016-10-03 14:35 - 2016-10-03 14:35 - 00000000 ____D C:\ProgramData\TrueKey
2016-10-03 14:35 - 2016-10-03 14:35 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-10-03 14:34 - 2016-10-19 20:32 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-10-03 14:34 - 2016-10-03 14:34 - 00000000 ____D C:\Program Files\Intel Security
2016-10-03 14:34 - 2016-10-03 14:34 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-10-03 14:26 - 2016-10-15 14:01 - 00000000 ____D C:\ProgramData\McAfee
2016-10-03 14:25 - 2016-10-19 22:05 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-10-03 14:25 - 2016-10-19 20:36 - 00000000 ____D C:\Program Files\TrueKey
2016-10-03 14:25 - 2016-10-16 01:28 - 00000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-10-03 14:25 - 2016-10-15 14:05 - 00004030 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-10-03 14:25 - 2016-10-15 14:05 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-10-03 14:25 - 2016-10-03 14:27 - 00000000 ____D C:\Users\Kristina\AppData\Local\Adobe
2016-10-02 14:52 - 2016-10-01 02:18 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-02 14:52 - 2016-10-01 02:18 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-19 10:44 - 2016-09-07 07:55 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-09-19 10:44 - 2016-09-07 07:54 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-09-19 10:44 - 2016-09-07 07:44 - 20862488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-09-19 10:44 - 2016-09-07 07:35 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2016-09-19 10:44 - 2016-09-07 07:25 - 06487792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-09-19 10:44 - 2016-09-07 07:25 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-09-19 10:44 - 2016-09-07 07:23 - 01147128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-09-19 10:44 - 2016-09-07 07:21 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-09-19 10:44 - 2016-09-07 07:17 - 22326752 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-09-19 10:44 - 2016-09-07 06:37 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-09-19 10:44 - 2016-09-07 06:37 - 01112576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-09-19 10:44 - 2016-09-07 06:33 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-09-19 10:44 - 2016-09-07 06:31 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-09-19 10:44 - 2016-09-07 06:29 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-09-19 10:44 - 2016-09-07 06:27 - 06305280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-09-19 10:44 - 2016-09-07 06:27 - 01775104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-19 10:44 - 2016-09-07 06:26 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-09-19 10:44 - 2016-09-07 06:26 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-09-19 10:44 - 2016-09-07 06:25 - 06791168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-19 10:44 - 2016-09-07 06:24 - 03782656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-19 10:44 - 2016-09-07 06:24 - 01276928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-19 10:44 - 2016-09-07 06:22 - 02663424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-19 10:44 - 2016-09-07 06:19 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-09-19 10:44 - 2016-09-07 06:18 - 05510656 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-09-19 10:44 - 2016-09-07 06:17 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-09-19 10:44 - 2016-09-07 06:16 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-09-19 10:44 - 2016-09-07 06:16 - 02559488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-09-19 10:44 - 2016-09-07 06:16 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-09-19 10:44 - 2016-09-07 06:15 - 01889280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-09-19 10:44 - 2016-09-07 06:13 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-09-19 10:44 - 2016-09-07 06:11 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-09-19 10:44 - 2016-09-07 06:11 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-09-19 10:44 - 2016-09-07 06:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-09-19 10:44 - 2016-09-07 06:07 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-09-19 10:44 - 2016-09-07 06:02 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-09-19 10:44 - 2016-09-07 06:00 - 04737024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-09-19 10:44 - 2016-09-07 05:58 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-09-19 10:44 - 2016-09-07 05:58 - 01148928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2016-09-19 10:43 - 2016-09-07 07:55 - 04047280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-09-19 10:43 - 2016-09-07 07:54 - 01531880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-09-19 10:43 - 2016-09-07 07:54 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-09-19 10:43 - 2016-09-07 07:54 - 00602256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-09-19 10:43 - 2016-09-07 07:54 - 00408160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-09-19 10:43 - 2016-09-07 07:53 - 00998416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-09-19 10:43 - 2016-09-07 07:52 - 00507736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-09-19 10:43 - 2016-09-07 07:52 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-09-19 10:43 - 2016-09-07 07:52 - 00243792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-09-19 10:43 - 2016-09-07 07:51 - 00496360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmdev.dll
2016-09-19 10:43 - 2016-09-07 07:50 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-09-19 10:43 - 2016-09-07 07:44 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-09-19 10:43 - 2016-09-07 07:43 - 00301920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-09-19 10:43 - 2016-09-07 07:39 - 02158960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-09-19 10:43 - 2016-09-07 07:38 - 01516448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-09-19 10:43 - 2016-09-07 07:37 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2016-09-19 10:43 - 2016-09-07 07:25 - 01951872 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-09-19 10:43 - 2016-09-07 07:25 - 01101784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-09-19 10:43 - 2016-09-07 07:25 - 00838808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-09-19 10:43 - 2016-09-07 07:24 - 01550056 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2016-09-19 10:43 - 2016-09-07 07:24 - 00786112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-09-19 10:43 - 2016-09-07 07:24 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-09-19 10:43 - 2016-09-07 07:23 - 02543272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-09-19 10:43 - 2016-09-07 07:23 - 01860944 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-09-19 10:43 - 2016-09-07 07:23 - 01587240 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-09-19 10:43 - 2016-09-07 07:23 - 01420392 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-09-19 10:43 - 2016-09-07 07:23 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-09-19 10:43 - 2016-09-07 07:23 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-09-19 10:43 - 2016-09-07 07:23 - 00535560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-09-19 10:43 - 2016-09-07 07:23 - 00291336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-09-19 10:43 - 2016-09-07 07:18 - 00660320 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-09-19 10:43 - 2016-09-07 07:16 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-09-19 10:43 - 2016-09-07 07:16 - 00364896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-09-19 10:43 - 2016-09-07 07:14 - 00779928 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-09-19 10:43 - 2016-09-07 07:12 - 02749872 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-09-19 10:43 - 2016-09-07 07:11 - 01780904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-19 10:43 - 2016-09-07 07:09 - 28851224 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-09-19 10:43 - 2016-09-07 06:44 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-09-19 10:43 - 2016-09-07 06:37 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-19 10:43 - 2016-09-07 06:37 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-19 10:43 - 2016-09-07 06:29 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-09-19 10:43 - 2016-09-07 06:28 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-09-19 10:43 - 2016-09-07 06:28 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-09-19 10:43 - 2016-09-07 06:27 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-09-19 10:43 - 2016-09-07 06:27 - 01012736 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-09-19 10:43 - 2016-09-07 06:27 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-09-19 10:43 - 2016-09-07 06:25 - 00849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-09-19 10:43 - 2016-09-07 06:25 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-09-19 10:43 - 2016-09-07 06:24 - 01353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-09-19 10:43 - 2016-09-07 06:23 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-09-19 10:43 - 2016-09-07 06:23 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-09-19 10:43 - 2016-09-07 06:22 - 04645888 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-09-19 10:43 - 2016-09-07 06:22 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-09-19 10:43 - 2016-09-07 06:22 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2016-09-19 10:43 - 2016-09-07 06:21 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-09-19 10:43 - 2016-09-07 06:21 - 01094144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-19 10:43 - 2016-09-07 06:20 - 03046400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2016-09-19 10:43 - 2016-09-07 06:20 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll
2016-09-19 10:43 - 2016-09-07 06:20 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-19 10:43 - 2016-09-07 06:19 - 01676288 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2016-09-19 10:43 - 2016-09-07 06:19 - 01649152 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-09-19 10:43 - 2016-09-07 06:19 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-09-19 10:43 - 2016-09-07 06:19 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-09-19 10:43 - 2016-09-07 06:18 - 02181120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-09-19 10:43 - 2016-09-07 06:18 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-19 10:43 - 2016-09-07 06:18 - 00596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-09-19 10:43 - 2016-09-07 06:18 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-09-19 10:43 - 2016-09-07 06:17 - 02222080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-09-19 10:43 - 2016-09-07 06:17 - 01044992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-09-19 10:43 - 2016-09-07 06:17 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-09-19 10:43 - 2016-09-07 06:16 - 02875392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2016-09-19 10:43 - 2016-09-07 06:16 - 02556928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-09-19 10:43 - 2016-09-07 06:16 - 01965568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2016-09-19 10:43 - 2016-09-07 06:15 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-09-19 10:43 - 2016-09-07 06:15 - 01787904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-09-19 10:43 - 2016-09-07 06:15 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-09-19 10:43 - 2016-09-07 06:14 - 02926592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-19 10:43 - 2016-09-07 06:14 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-09-19 10:43 - 2016-09-07 06:13 - 01444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2016-09-19 10:43 - 2016-09-07 06:12 - 01794560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-09-19 10:43 - 2016-09-07 06:12 - 01122304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-09-19 10:43 - 2016-09-07 06:12 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-09-19 10:43 - 2016-09-07 06:11 - 01213952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-09-19 10:43 - 2016-09-07 06:11 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-09-19 10:43 - 2016-09-07 06:08 - 05163008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-09-19 10:43 - 2016-09-07 06:07 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-09-19 10:43 - 2016-09-07 06:07 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2016-09-19 10:43 - 2016-09-07 06:04 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-09-19 10:43 - 2016-09-07 06:03 - 01821696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-09-19 10:43 - 2016-09-07 06:01 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-09-19 10:43 - 2016-09-07 06:01 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2016-09-19 10:43 - 2016-09-07 06:00 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-09-19 10:43 - 2016-09-07 05:59 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc.dll
2016-09-19 10:43 - 2016-09-07 05:58 - 02362368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2016-09-19 10:43 - 2016-09-07 05:58 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2016-09-19 10:43 - 2016-09-07 05:57 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-09-19 10:43 - 2016-09-07 05:57 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-09-19 10:43 - 2016-09-07 05:57 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-09-19 10:43 - 2016-09-07 05:55 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-09-19 10:43 - 2016-09-07 05:53 - 01422336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2016-09-19 10:43 - 2016-09-07 05:53 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-09-19 10:43 - 2016-09-07 05:52 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-09-19 10:42 - 2016-09-07 07:54 - 01178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2016-09-19 10:42 - 2016-09-07 07:54 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-09-19 10:42 - 2016-09-07 07:54 - 00809328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-09-19 10:42 - 2016-09-07 07:54 - 00324896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2016-09-19 10:42 - 2016-09-07 07:54 - 00253120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-09-19 10:42 - 2016-09-07 07:53 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-09-19 10:42 - 2016-09-07 07:52 - 01734424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2016-09-19 10:42 - 2016-09-07 07:52 - 01321224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2016-09-19 10:42 - 2016-09-07 07:52 - 01180704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-09-19 10:42 - 2016-09-07 07:52 - 01083648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2016-09-19 10:42 - 2016-09-07 07:52 - 00624304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2016-09-19 10:42 - 2016-09-07 07:52 - 00380256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-09-19 10:42 - 2016-09-07 07:44 - 00700248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-09-19 10:42 - 2016-09-07 07:40 - 00568176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2016-09-19 10:42 - 2016-09-07 07:38 - 00630120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2016-09-19 10:42 - 2016-09-07 07:36 - 00517568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2016-09-19 10:42 - 2016-09-07 07:25 - 01085768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-09-19 10:42 - 2016-09-07 07:25 - 01022184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-09-19 10:42 - 2016-09-07 07:25 - 00862024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-09-19 10:42 - 2016-09-07 07:25 - 00409072 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2016-09-19 10:42 - 2016-09-07 07:25 - 00405008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-09-19 10:42 - 2016-09-07 07:25 - 00329064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-09-19 10:42 - 2016-09-07 07:24 - 00380224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-09-19 10:42 - 2016-09-07 07:23 - 02641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-09-19 10:42 - 2016-09-07 07:23 - 01824872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-09-19 10:42 - 2016-09-07 07:23 - 01238584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-09-19 10:42 - 2016-09-07 07:23 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-09-19 10:42 - 2016-09-07 07:23 - 00779928 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-09-19 10:42 - 2016-09-07 07:23 - 00702504 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2016-09-19 10:42 - 2016-09-07 07:23 - 00595016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-09-19 10:42 - 2016-09-07 07:23 - 00503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-09-19 10:42 - 2016-09-07 07:23 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-19 10:42 - 2016-09-07 07:23 - 00426664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-09-19 10:42 - 2016-09-07 07:23 - 00372504 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-09-19 10:42 - 2016-09-07 07:23 - 00172016 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-09-19 10:42 - 2016-09-07 07:10 - 00618272 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2016-09-19 10:42 - 2016-09-07 07:09 - 00723648 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-09-19 10:42 - 2016-09-07 07:09 - 00508768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-09-19 10:42 - 2016-09-07 07:08 - 01085632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-09-19 10:42 - 2016-09-07 06:46 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-09-19 10:42 - 2016-09-07 06:42 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-09-19 10:42 - 2016-09-07 06:42 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-09-19 10:42 - 2016-09-07 06:40 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-09-19 10:42 - 2016-09-07 06:38 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-09-19 10:42 - 2016-09-07 06:38 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-09-19 10:42 - 2016-09-07 06:37 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-09-19 10:42 - 2016-09-07 06:34 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2016-09-19 10:42 - 2016-09-07 06:30 - 00507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2016-09-19 10:42 - 2016-09-07 06:29 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-09-19 10:42 - 2016-09-07 06:27 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-09-19 10:42 - 2016-09-07 06:23 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-09-19 10:42 - 2016-09-07 06:23 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-09-19 10:42 - 2016-09-07 06:23 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-19 10:42 - 2016-09-07 06:23 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-09-19 10:42 - 2016-09-07 06:23 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-09-19 10:42 - 2016-09-07 06:23 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-09-19 10:42 - 2016-09-07 06:22 - 04213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2016-09-19 10:42 - 2016-09-07 06:22 - 01811456 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-09-19 10:42 - 2016-09-07 06:22 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-09-19 10:42 - 2016-09-07 06:22 - 01055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-09-19 10:42 - 2016-09-07 06:22 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-09-19 10:42 - 2016-09-07 06:21 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-09-19 10:42 - 2016-09-07 06:20 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2016-09-19 10:42 - 2016-09-07 06:19 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-09-19 10:42 - 2016-09-07 06:18 - 02727936 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-09-19 10:42 - 2016-09-07 06:18 - 01016832 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-09-19 10:42 - 2016-09-07 06:18 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-09-19 10:42 - 2016-09-07 06:18 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-09-19 10:42 - 2016-09-07 06:18 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-09-19 10:42 - 2016-09-07 06:17 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-09-19 10:42 - 2016-09-07 06:17 - 00918016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2016-09-19 10:42 - 2016-09-07 06:17 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2016-09-19 10:42 - 2016-09-07 06:17 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Vault.dll
2016-09-19 10:42 - 2016-09-07 06:17 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-09-19 10:42 - 2016-09-07 06:17 - 00689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-19 10:42 - 2016-09-07 06:17 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-09-19 10:42 - 2016-09-07 06:17 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2016-09-19 10:42 - 2016-09-07 06:16 - 01744384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-09-19 10:42 - 2016-09-07 06:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-09-19 10:42 - 2016-09-07 06:15 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-09-19 10:42 - 2016-09-07 06:14 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-09-19 10:42 - 2016-09-07 06:14 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2016-09-19 10:42 - 2016-09-07 06:14 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2016-09-19 10:42 - 2016-09-07 06:14 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-09-19 10:42 - 2016-09-07 06:13 - 01522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-09-19 10:42 - 2016-09-07 06:13 - 01489408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Pimstore.dll
2016-09-19 10:42 - 2016-09-07 06:13 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-09-19 10:42 - 2016-09-07 06:12 - 01566208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-09-19 10:42 - 2016-09-07 06:12 - 01034752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-19 10:42 - 2016-09-07 06:12 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-09-19 10:42 - 2016-09-07 06:12 - 00665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2016-09-19 10:42 - 2016-09-07 06:12 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-09-19 10:42 - 2016-09-07 06:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-09-19 10:42 - 2016-09-07 06:11 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-09-19 10:42 - 2016-09-07 06:11 - 01871872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-09-19 10:42 - 2016-09-07 06:11 - 00528896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-09-19 10:42 - 2016-09-07 06:11 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll
2016-09-19 10:42 - 2016-09-07 06:09 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-09-19 10:42 - 2016-09-07 06:07 - 01048064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-09-19 10:42 - 2016-09-07 06:07 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-09-19 10:42 - 2016-09-07 06:07 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-19 10:42 - 2016-09-07 06:06 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-09-19 10:42 - 2016-09-07 06:05 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmsdk.dll
2016-09-19 10:42 - 2016-09-07 06:04 - 01074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-09-19 10:42 - 2016-09-07 06:03 - 03555328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-09-19 10:42 - 2016-09-07 06:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-09-19 10:42 - 2016-09-07 06:01 - 01123328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2016-09-19 10:42 - 2016-09-07 06:01 - 00609792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-09-19 10:42 - 2016-09-07 06:01 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-09-19 10:42 - 2016-09-07 06:01 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-09-19 10:42 - 2016-09-07 06:00 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-09-19 10:42 - 2016-09-07 05:59 - 01744384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-09-19 10:42 - 2016-09-07 05:59 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2016-09-19 10:42 - 2016-09-07 05:58 - 01447936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2016-09-19 10:42 - 2016-09-07 05:57 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-09-19 10:42 - 2016-09-07 05:56 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2016-09-19 10:42 - 2016-09-07 05:55 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Pimstore.dll
2016-09-19 10:42 - 2016-09-07 05:55 - 01138688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-09-19 10:42 - 2016-09-07 05:53 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-09-19 10:42 - 2016-09-07 05:53 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2016-09-19 10:41 - 2016-09-07 07:55 - 00953472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-09-19 10:41 - 2016-09-07 07:54 - 00363656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-09-19 10:41 - 2016-09-07 07:54 - 00301640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-09-19 10:41 - 2016-09-07 07:54 - 00031528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-09-19 10:41 - 2016-09-07 07:52 - 00645144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-09-19 10:41 - 2016-09-07 07:52 - 00635312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-09-19 10:41 - 2016-09-07 07:52 - 00366768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-09-19 10:41 - 2016-09-07 07:52 - 00116216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-09-19 10:41 - 2016-09-07 07:45 - 00468832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-09-19 10:41 - 2016-09-07 07:38 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2016-09-19 10:41 - 2016-09-07 07:36 - 00111456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SSShim.dll
2016-09-19 10:41 - 2016-09-07 07:25 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-09-19 10:41 - 2016-09-07 07:25 - 01248896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-09-19 10:41 - 2016-09-07 07:25 - 00630152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-09-19 10:41 - 2016-09-07 07:25 - 00432352 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-09-19 10:41 - 2016-09-07 07:25 - 00384280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-09-19 10:41 - 2016-09-07 07:25 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-09-19 10:41 - 2016-09-07 07:25 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-09-19 10:41 - 2016-09-07 07:24 - 00501000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-09-19 10:41 - 2016-09-07 07:23 - 02429792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-09-19 10:41 - 2016-09-07 07:23 - 00772448 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-09-19 10:41 - 2016-09-07 07:23 - 00468832 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-09-19 10:41 - 2016-09-07 07:23 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-09-19 10:41 - 2016-09-07 07:21 - 00092000 _____ (Microsoft Corporation) C:\WINDOWS\system32\apisetschema.dll
2016-09-19 10:41 - 2016-09-07 07:15 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-09-19 10:41 - 2016-09-07 07:11 - 00983904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-09-19 10:41 - 2016-09-07 07:11 - 00441696 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-09-19 10:41 - 2016-09-07 07:10 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-09-19 10:41 - 2016-09-07 07:09 - 00135520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SSShim.dll
2016-09-19 10:41 - 2016-09-07 07:08 - 00056336 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-09-19 10:41 - 2016-09-07 06:39 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-09-19 10:41 - 2016-09-07 06:38 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-09-19 10:41 - 2016-09-07 06:38 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2016-09-19 10:41 - 2016-09-07 06:37 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-09-19 10:41 - 2016-09-07 06:36 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-09-19 10:41 - 2016-09-07 06:36 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-09-19 10:41 - 2016-09-07 06:36 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-09-19 10:41 - 2016-09-07 06:36 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-19 10:41 - 2016-09-07 06:34 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-09-19 10:41 - 2016-09-07 06:30 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2016-09-19 10:41 - 2016-09-07 06:28 - 00637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-09-19 10:41 - 2016-09-07 06:28 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-09-19 10:41 - 2016-09-07 06:27 - 01389056 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-09-19 10:41 - 2016-09-07 06:27 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2016-09-19 10:41 - 2016-09-07 06:27 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-09-19 10:41 - 2016-09-07 06:27 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2016-09-19 10:41 - 2016-09-07 06:26 - 03014144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-09-19 10:41 - 2016-09-07 06:26 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-19 10:41 - 2016-09-07 06:26 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-09-19 10:41 - 2016-09-07 06:23 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-09-19 10:41 - 2016-09-07 06:23 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2016-09-19 10:41 - 2016-09-07 06:22 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-09-19 10:41 - 2016-09-07 06:22 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-09-19 10:41 - 2016-09-07 06:22 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-09-19 10:41 - 2016-09-07 06:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-09-19 10:41 - 2016-09-07 06:22 - 00668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-09-19 10:41 - 2016-09-07 06:22 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-09-19 10:41 - 2016-09-07 06:22 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-09-19 10:41 - 2016-09-07 06:22 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2016-09-19 10:41 - 2016-09-07 06:21 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-09-19 10:41 - 2016-09-07 06:19 - 00873984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-09-19 10:41 - 2016-09-07 06:19 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-09-19 10:41 - 2016-09-07 06:19 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-09-19 10:41 - 2016-09-07 06:19 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-09-19 10:41 - 2016-09-07 06:18 - 03415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-09-19 10:41 - 2016-09-07 06:18 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-09-19 10:41 - 2016-09-07 06:18 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-09-19 10:41 - 2016-09-07 06:18 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-09-19 10:41 - 2016-09-07 06:18 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-09-19 10:41 - 2016-09-07 06:18 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-09-19 10:41 - 2016-09-07 06:17 - 01119744 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-09-19 10:41 - 2016-09-07 06:17 - 00732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2016-09-19 10:41 - 2016-09-07 06:17 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-09-19 10:41 - 2016-09-07 06:16 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2016-09-19 10:41 - 2016-09-07 06:16 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-09-19 10:41 - 2016-09-07 06:16 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-09-19 10:41 - 2016-09-07 06:16 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
         
Fortsetzung folgt...

Alt 19.10.2016, 22:43   #2
Sebow
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Code:
ATTFilter
2016-09-19 10:41 - 2016-09-07 06:15 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2016-09-19 10:41 - 2016-09-07 06:15 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-09-19 10:41 - 2016-09-07 06:15 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-09-19 10:41 - 2016-09-07 06:14 - 01370112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-09-19 10:41 - 2016-09-07 06:14 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2016-09-19 10:41 - 2016-09-07 06:14 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-09-19 10:41 - 2016-09-07 06:13 - 01570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-09-19 10:41 - 2016-09-07 06:13 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-09-19 10:41 - 2016-09-07 06:13 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2016-09-19 10:41 - 2016-09-07 06:13 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-09-19 10:41 - 2016-09-07 06:13 - 00437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-09-19 10:41 - 2016-09-07 06:13 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-09-19 10:41 - 2016-09-07 06:12 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-09-19 10:41 - 2016-09-07 06:12 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-19 10:41 - 2016-09-07 06:11 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-09-19 10:41 - 2016-09-07 06:11 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2016-09-19 10:41 - 2016-09-07 06:10 - 03292672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-09-19 10:41 - 2016-09-07 06:10 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-19 10:41 - 2016-09-07 06:10 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-09-19 10:41 - 2016-09-07 06:10 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-09-19 10:41 - 2016-09-07 06:10 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-09-19 10:41 - 2016-09-07 06:09 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-09-19 10:41 - 2016-09-07 06:09 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-09-19 10:41 - 2016-09-07 06:09 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-19 10:41 - 2016-09-07 06:04 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-09-19 10:41 - 2016-09-07 06:04 - 00307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-09-19 10:41 - 2016-09-07 06:03 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-09-19 10:41 - 2016-09-07 06:02 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2016-09-19 10:41 - 2016-09-07 06:02 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-09-19 10:41 - 2016-09-07 06:01 - 03300864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2016-09-19 10:41 - 2016-09-07 06:01 - 02576384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-09-19 10:41 - 2016-09-07 06:01 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-09-19 10:41 - 2016-09-07 06:00 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2016-09-19 10:41 - 2016-09-07 06:00 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-09-19 10:41 - 2016-09-07 06:00 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2016-09-19 10:41 - 2016-09-07 05:59 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-09-19 10:41 - 2016-09-07 05:58 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2016-09-19 10:41 - 2016-09-07 05:57 - 02405376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-09-19 10:41 - 2016-09-07 05:56 - 02027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-09-19 10:41 - 2016-09-07 05:56 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-09-19 10:41 - 2016-09-07 05:56 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-09-19 10:41 - 2016-09-07 05:56 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-09-19 10:41 - 2016-09-07 05:56 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2016-09-19 10:41 - 2016-09-07 05:55 - 00776192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-09-19 10:41 - 2016-09-07 05:55 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-09-19 10:41 - 2016-09-07 05:54 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-09-19 10:41 - 2016-09-07 05:53 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2016-09-19 10:41 - 2016-09-07 05:51 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-09-19 10:40 - 2016-09-07 06:40 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-09-19 10:40 - 2016-09-07 06:39 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-09-19 10:40 - 2016-09-07 06:39 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2016-09-19 10:40 - 2016-09-07 06:38 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-09-19 10:40 - 2016-09-07 06:37 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUX.dll
2016-09-19 10:40 - 2016-09-07 06:36 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-09-19 10:40 - 2016-09-07 06:36 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-09-19 10:40 - 2016-09-07 06:36 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-09-19 10:40 - 2016-09-07 06:36 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2016-09-19 10:40 - 2016-09-07 06:36 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-19 10:40 - 2016-09-07 06:35 - 00918016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-09-19 10:40 - 2016-09-07 06:34 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-09-19 10:40 - 2016-09-07 06:34 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-09-19 10:40 - 2016-09-07 06:31 - 00728576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-09-19 10:40 - 2016-09-07 06:30 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2016-09-19 10:40 - 2016-09-07 06:29 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-09-19 10:40 - 2016-09-07 06:29 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-09-19 10:40 - 2016-09-07 06:27 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-09-19 10:40 - 2016-09-07 06:26 - 02550784 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-09-19 10:40 - 2016-09-07 06:26 - 00672256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-09-19 10:40 - 2016-09-07 06:26 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-09-19 10:40 - 2016-09-07 06:26 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-09-19 10:40 - 2016-09-07 06:26 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-09-19 10:40 - 2016-09-07 06:25 - 01710592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-09-19 10:40 - 2016-09-07 06:24 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-09-19 10:40 - 2016-09-07 06:23 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-09-19 10:40 - 2016-09-07 06:23 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-09-19 10:40 - 2016-09-07 06:22 - 00493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-09-19 10:40 - 2016-09-07 06:22 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\authfwcfg.dll
2016-09-19 10:40 - 2016-09-07 06:22 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2016-09-19 10:40 - 2016-09-07 06:22 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-09-19 10:40 - 2016-09-07 06:22 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-09-19 10:40 - 2016-09-07 06:22 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2016-09-19 10:40 - 2016-09-07 06:22 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fphc.dll
2016-09-19 10:40 - 2016-09-07 06:22 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2016-09-19 10:40 - 2016-09-07 06:22 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-09-19 10:40 - 2016-09-07 06:22 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2016-09-19 10:40 - 2016-09-07 06:21 - 01672192 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-09-19 10:40 - 2016-09-07 06:21 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-09-19 10:40 - 2016-09-07 06:21 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-09-19 10:40 - 2016-09-07 06:21 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-09-19 10:40 - 2016-09-07 06:21 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-09-19 10:40 - 2016-09-07 06:21 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-09-19 10:40 - 2016-09-07 06:21 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndfapi.dll
2016-09-19 10:40 - 2016-09-07 06:21 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2016-09-19 10:40 - 2016-09-07 06:21 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-09-19 10:40 - 2016-09-07 06:20 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetworkCollectionAgent.dll
2016-09-19 10:40 - 2016-09-07 06:20 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-09-19 10:40 - 2016-09-07 06:20 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-09-19 10:40 - 2016-09-07 06:20 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-09-19 10:40 - 2016-09-07 06:19 - 02119680 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-09-19 10:40 - 2016-09-07 06:19 - 00536064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-09-19 10:40 - 2016-09-07 06:19 - 00440832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-09-19 10:40 - 2016-09-07 06:19 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-09-19 10:40 - 2016-09-07 06:18 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-19 10:40 - 2016-09-07 06:18 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-09-19 10:40 - 2016-09-07 06:18 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-09-19 10:40 - 2016-09-07 06:17 - 01211392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2016-09-19 10:40 - 2016-09-07 06:17 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-09-19 10:40 - 2016-09-07 06:17 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-09-19 10:40 - 2016-09-07 06:17 - 00601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2016-09-19 10:40 - 2016-09-07 06:17 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-09-19 10:40 - 2016-09-07 06:17 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-09-19 10:40 - 2016-09-07 06:17 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2016-09-19 10:40 - 2016-09-07 06:17 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-09-19 10:40 - 2016-09-07 06:17 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-09-19 10:40 - 2016-09-07 06:17 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2016-09-19 10:40 - 2016-09-07 06:16 - 03363328 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-09-19 10:40 - 2016-09-07 06:16 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2016-09-19 10:40 - 2016-09-07 06:16 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-09-19 10:40 - 2016-09-07 06:16 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2016-09-19 10:40 - 2016-09-07 06:15 - 02950656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-09-19 10:40 - 2016-09-07 06:15 - 00577024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2016-09-19 10:40 - 2016-09-07 06:15 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2016-09-19 10:40 - 2016-09-07 06:15 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-09-19 10:40 - 2016-09-07 06:15 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll
2016-09-19 10:40 - 2016-09-07 06:15 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-09-19 10:40 - 2016-09-07 06:15 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-09-19 10:40 - 2016-09-07 06:14 - 01381376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-09-19 10:40 - 2016-09-07 06:14 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-09-19 10:40 - 2016-09-07 06:14 - 00829952 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-09-19 10:40 - 2016-09-07 06:14 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-09-19 10:40 - 2016-09-07 06:14 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-09-19 10:40 - 2016-09-07 06:14 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-09-19 10:40 - 2016-09-07 06:14 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2016-09-19 10:40 - 2016-09-07 06:14 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-19 10:40 - 2016-09-07 06:14 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-09-19 10:40 - 2016-09-07 06:13 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-09-19 10:40 - 2016-09-07 06:13 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-09-19 10:40 - 2016-09-07 06:13 - 00740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-09-19 10:40 - 2016-09-07 06:13 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-09-19 10:40 - 2016-09-07 06:13 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2016-09-19 10:40 - 2016-09-07 06:13 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2016-09-19 10:40 - 2016-09-07 06:13 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2016-09-19 10:40 - 2016-09-07 06:12 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2016-09-19 10:40 - 2016-09-07 06:12 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-09-19 10:40 - 2016-09-07 06:12 - 00297984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2016-09-19 10:40 - 2016-09-07 06:12 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-19 10:40 - 2016-09-07 06:12 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-09-19 10:40 - 2016-09-07 06:12 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-09-19 10:40 - 2016-09-07 06:11 - 01049088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-09-19 10:40 - 2016-09-07 06:11 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-09-19 10:40 - 2016-09-07 06:11 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2016-09-19 10:40 - 2016-09-07 06:11 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2016-09-19 10:40 - 2016-09-07 06:11 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2016-09-19 10:40 - 2016-09-07 06:10 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-09-19 10:40 - 2016-09-07 06:10 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2016-09-19 10:40 - 2016-09-07 06:10 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2016-09-19 10:40 - 2016-09-07 06:10 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-09-19 10:40 - 2016-09-07 06:09 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-09-19 10:40 - 2016-09-07 06:07 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2016-09-19 10:40 - 2016-09-07 06:06 - 04143104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2016-09-19 10:40 - 2016-09-07 06:06 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-09-19 10:40 - 2016-09-07 06:06 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-09-19 10:40 - 2016-09-07 06:06 - 00486400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-09-19 10:40 - 2016-09-07 06:06 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-09-19 10:40 - 2016-09-07 06:06 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2016-09-19 10:40 - 2016-09-07 06:06 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-09-19 10:40 - 2016-09-07 06:06 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2016-09-19 10:40 - 2016-09-07 06:06 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2016-09-19 10:40 - 2016-09-07 06:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-09-19 10:40 - 2016-09-07 06:05 - 02508800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-09-19 10:40 - 2016-09-07 06:05 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ipsmsnap.dll
2016-09-19 10:40 - 2016-09-07 06:05 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndfapi.dll
2016-09-19 10:40 - 2016-09-07 06:04 - 01252864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-09-19 10:40 - 2016-09-07 06:04 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-09-19 10:40 - 2016-09-07 06:02 - 02042368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-09-19 10:40 - 2016-09-07 06:02 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-09-19 10:40 - 2016-09-07 06:01 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2016-09-19 10:40 - 2016-09-07 06:01 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2016-09-19 10:40 - 2016-09-07 06:01 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2016-09-19 10:40 - 2016-09-07 06:00 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2016-09-19 10:40 - 2016-09-07 06:00 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2016-09-19 10:40 - 2016-09-07 06:00 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2016-09-19 10:40 - 2016-09-07 05:59 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vault.dll
2016-09-19 10:40 - 2016-09-07 05:59 - 00624128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2016-09-19 10:40 - 2016-09-07 05:59 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2016-09-19 10:40 - 2016-09-07 05:59 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2016-09-19 10:40 - 2016-09-07 05:59 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-09-19 10:40 - 2016-09-07 05:59 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-09-19 10:40 - 2016-09-07 05:59 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-09-19 10:40 - 2016-09-07 05:59 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-09-19 10:40 - 2016-09-07 05:59 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-09-19 10:40 - 2016-09-07 05:59 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SCardDlg.dll
2016-09-19 10:40 - 2016-09-07 05:58 - 02181120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-09-19 10:40 - 2016-09-07 05:58 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2016-09-19 10:40 - 2016-09-07 05:57 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2016-09-19 10:40 - 2016-09-07 05:57 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcbase.dll
2016-09-19 10:40 - 2016-09-07 05:57 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2016-09-19 10:40 - 2016-09-07 05:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcshext.dll
2016-09-19 10:40 - 2016-09-07 05:56 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-19 10:40 - 2016-09-07 05:56 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-09-19 10:40 - 2016-09-07 05:54 - 01495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-09-19 10:40 - 2016-09-07 05:53 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-09-19 10:40 - 2016-09-07 05:53 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-09-19 10:40 - 2016-09-07 05:53 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-09-19 10:40 - 2016-09-07 05:53 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-09-19 10:40 - 2016-09-07 05:51 - 03064320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-09-19 10:40 - 2016-09-07 05:51 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-09-19 10:40 - 2016-08-17 08:58 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2016-09-19 10:39 - 2016-09-07 06:42 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-09-19 10:39 - 2016-09-07 06:40 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-09-19 10:39 - 2016-09-07 06:38 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-09-19 10:39 - 2016-09-07 06:37 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-09-19 10:39 - 2016-09-07 06:34 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-09-19 10:39 - 2016-09-07 06:34 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-09-19 10:39 - 2016-09-07 06:34 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-09-19 10:39 - 2016-09-07 06:34 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-09-19 10:39 - 2016-09-07 06:29 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2016-09-19 10:39 - 2016-09-07 06:29 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2016-09-19 10:39 - 2016-09-07 06:29 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-09-19 10:39 - 2016-09-07 06:29 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2016-09-19 10:39 - 2016-09-07 06:28 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-09-19 10:39 - 2016-09-07 06:28 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2016-09-19 10:39 - 2016-09-07 06:26 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-09-19 10:39 - 2016-09-07 06:25 - 00354816 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-09-19 10:39 - 2016-09-07 06:25 - 00326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-09-19 10:39 - 2016-09-07 06:24 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2016-09-19 10:39 - 2016-09-07 06:23 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-09-19 10:39 - 2016-09-07 06:22 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-09-19 10:39 - 2016-09-07 06:22 - 00529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-09-19 10:39 - 2016-09-07 06:22 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-09-19 10:39 - 2016-09-07 06:22 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwcfg.dll
2016-09-19 10:39 - 2016-09-07 06:22 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2016-09-19 10:39 - 2016-09-07 06:22 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-09-19 10:39 - 2016-09-07 06:21 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CheckNetIsolation.exe
2016-09-19 10:39 - 2016-09-07 06:19 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-09-19 10:39 - 2016-09-07 06:19 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2016-09-19 10:39 - 2016-09-07 06:19 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtc.exe
2016-09-19 10:39 - 2016-09-07 06:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-09-19 10:39 - 2016-09-07 06:18 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-09-19 10:39 - 2016-09-07 06:18 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-09-19 10:39 - 2016-09-07 06:17 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\secproc.dll
2016-09-19 10:39 - 2016-09-07 06:17 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\secproc_isv.dll
2016-09-19 10:39 - 2016-09-07 06:17 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-09-19 10:39 - 2016-09-07 06:17 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-09-19 10:39 - 2016-09-07 06:16 - 00931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-09-19 10:39 - 2016-09-07 06:16 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2016-09-19 10:39 - 2016-09-07 06:15 - 00429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2016-09-19 10:39 - 2016-09-07 06:15 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-09-19 10:39 - 2016-09-07 06:15 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2016-09-19 10:39 - 2016-09-07 06:15 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2016-09-19 10:39 - 2016-09-07 06:15 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-09-19 10:39 - 2016-09-07 06:14 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\f3ahvoas.dll
2016-09-19 10:39 - 2016-09-07 06:13 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmiEngine.dll
2016-09-19 10:39 - 2016-09-07 06:13 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-09-19 10:39 - 2016-09-07 06:13 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-09-19 10:39 - 2016-09-07 06:12 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-09-19 10:39 - 2016-09-07 06:12 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-09-19 10:39 - 2016-09-07 06:12 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2016-09-19 10:39 - 2016-09-07 06:11 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2016-09-19 10:39 - 2016-09-07 06:11 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-09-19 10:39 - 2016-09-07 06:10 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2016-09-19 10:39 - 2016-09-07 06:10 - 00322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-09-19 10:39 - 2016-09-07 06:08 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2016-09-19 10:39 - 2016-09-07 06:06 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-09-19 10:39 - 2016-09-07 06:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-09-19 10:39 - 2016-09-07 06:06 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2016-09-19 10:39 - 2016-09-07 06:06 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authfwcfg.dll
2016-09-19 10:39 - 2016-09-07 06:06 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwcfg.dll
2016-09-19 10:39 - 2016-09-07 06:06 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2016-09-19 10:39 - 2016-09-07 06:05 - 01541632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-09-19 10:39 - 2016-09-07 06:05 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-09-19 10:39 - 2016-09-07 06:05 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2016-09-19 10:39 - 2016-09-07 06:05 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-09-19 10:39 - 2016-09-07 06:05 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll
2016-09-19 10:39 - 2016-09-07 06:05 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drmmgrtn.dll
2016-09-19 10:39 - 2016-09-07 06:05 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2016-09-19 10:39 - 2016-09-07 06:05 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-09-19 10:39 - 2016-09-07 06:05 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CheckNetIsolation.exe
2016-09-19 10:39 - 2016-09-07 06:04 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-09-19 10:39 - 2016-09-07 06:04 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-09-19 10:39 - 2016-09-07 06:04 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usbceip.dll
2016-09-19 10:39 - 2016-09-07 06:02 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-09-19 10:39 - 2016-09-07 06:02 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-09-19 10:39 - 2016-09-07 06:01 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-09-19 10:39 - 2016-09-07 06:00 - 00768000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-09-19 10:39 - 2016-09-07 06:00 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2016-09-19 10:39 - 2016-09-07 06:00 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc_isv.dll
2016-09-19 10:39 - 2016-09-07 06:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2016-09-19 10:39 - 2016-09-07 06:00 - 00182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-09-19 10:39 - 2016-09-07 05:58 - 03680256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-09-19 10:39 - 2016-09-07 05:58 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2016-09-19 10:39 - 2016-09-07 05:58 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-09-19 10:39 - 2016-09-07 05:58 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2016-09-19 10:39 - 2016-09-07 05:58 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2016-09-19 10:39 - 2016-09-07 05:57 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2016-09-19 10:39 - 2016-09-07 05:57 - 00474624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-09-19 10:39 - 2016-09-07 05:57 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2016-09-19 10:39 - 2016-09-07 05:57 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll
2016-09-19 10:39 - 2016-09-07 05:57 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2016-09-19 10:39 - 2016-09-07 05:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-09-19 10:39 - 2016-09-07 05:55 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-09-19 10:39 - 2016-09-07 05:55 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-09-19 10:39 - 2016-09-07 05:55 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-09-19 10:39 - 2016-09-07 05:54 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-09-19 10:39 - 2016-09-07 05:54 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2016-09-19 10:39 - 2016-09-07 05:54 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-09-19 10:39 - 2016-09-07 05:53 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbrand.dll
2016-09-19 10:39 - 2016-09-07 05:52 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-09-19 10:39 - 2016-09-07 05:52 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-09-19 10:39 - 2016-09-07 05:52 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-09-19 10:39 - 2016-08-17 08:25 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-19 22:08 - 2013-12-28 18:49 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-19 21:32 - 2015-07-31 00:40 - 00000000 ____D C:\WINDOWS\INF
2016-10-19 21:31 - 2016-07-12 22:09 - 00296536 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo41.dll
2016-10-19 21:31 - 2014-11-30 18:59 - 01813392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2016-10-19 21:31 - 2014-11-30 18:59 - 00872024 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2016-10-19 21:31 - 2014-11-30 18:59 - 00815200 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2016-10-19 21:31 - 2014-11-30 18:59 - 00294488 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2016-10-19 21:31 - 2014-11-30 18:59 - 00079960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2016-10-19 21:14 - 2015-07-31 00:42 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-10-19 21:14 - 2015-07-31 00:42 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2016-10-19 20:42 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-19 20:41 - 2015-07-31 00:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-19 20:37 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-10-19 20:35 - 2013-12-28 18:49 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-19 20:32 - 2013-12-28 18:41 - 00000000 ____D C:\Users\Kristina\AppData\LocalLow\AuthenTec
2016-10-19 20:31 - 2015-11-11 16:35 - 00000000 __SHD C:\Users\Kristina\IntelGraphicsProfiles
2016-10-19 20:31 - 2015-11-11 15:58 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-10-16 01:53 - 2015-11-11 16:02 - 01997626 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-16 01:53 - 2015-09-10 07:10 - 00850366 _____ C:\WINDOWS\system32\perfh007.dat
2016-10-16 01:53 - 2015-09-10 07:10 - 00187104 _____ C:\WINDOWS\system32\perfc007.dat
2016-10-16 01:47 - 2015-07-30 23:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-16 01:47 - 2013-06-09 02:20 - 00034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys
2016-10-16 01:47 - 2013-06-09 02:18 - 00000000 ____D C:\ProgramData\Validity
2016-10-16 01:46 - 2015-07-30 23:49 - 00388792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-16 01:45 - 2015-07-28 20:46 - 00012496 _____ C:\bdlog.txt
2016-10-16 01:45 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-10-16 01:43 - 2015-07-31 00:42 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-10-16 01:43 - 2015-07-31 00:42 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-16 01:43 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-16 01:43 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\Provisioning
2016-10-16 01:43 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-16 01:43 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows Defender
2016-10-16 01:43 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-10-16 01:43 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-10-16 01:34 - 2014-04-18 12:49 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-10-16 01:33 - 2015-07-31 00:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-16 01:31 - 2013-12-30 21:25 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-16 01:28 - 2013-12-30 21:25 - 143495576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-10-16 01:27 - 2013-08-22 15:25 - 00000167 _____ C:\WINDOWS\win.ini
2016-10-16 00:44 - 2015-09-20 18:16 - 00003426 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-10-16 00:44 - 2015-07-28 21:16 - 00002642 _____ C:\WINDOWS\System32\Tasks\Apple Diagnostics
2016-10-16 00:44 - 2013-12-28 18:49 - 00003650 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-10-15 21:11 - 2015-04-26 14:00 - 00000000 __SHD C:\found.000
2016-10-15 21:09 - 2014-02-12 21:09 - 00000000 ____D C:\Users\Kristina\Documents\Krankenpflegeschule
2016-10-15 20:35 - 2015-07-10 11:47 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-10-15 20:35 - 2014-01-19 17:54 - 00000000 ____D C:\Users\Kristina\.thumbnails
2016-10-15 20:35 - 2013-12-29 18:11 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\hpqlog
2016-10-15 20:35 - 2013-12-28 19:38 - 00000000 ____D C:\Users\Kristina\Documents\Youcam
2016-10-15 20:35 - 2013-06-09 02:24 - 00000000 ____D C:\ProgramData\Temp
2016-10-15 20:35 - 2013-04-22 15:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2016-10-15 20:34 - 2014-01-06 18:08 - 00004164 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{50C46283-7A2B-4AF1-B4C4-0957B3B315D9}
2016-10-15 20:25 - 2013-04-22 15:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-15 18:02 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\rescache
2016-10-15 15:14 - 2015-11-11 20:40 - 00000000 ____D C:\ProgramData\Bitdefender
2016-10-15 15:12 - 2015-03-04 22:15 - 00000000 _____ C:\WINDOWS\wiso.ini
2016-10-15 15:12 - 2015-03-04 22:12 - 00000000 ____D C:\Program Files (x86)\WISO
2016-10-15 15:10 - 2015-08-16 17:00 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\Opera Software
2016-10-15 15:10 - 2015-08-16 17:00 - 00000000 ____D C:\Users\Kristina\AppData\Local\Opera Software
2016-10-15 15:10 - 2015-08-16 16:59 - 00000000 ____D C:\Program Files (x86)\Opera
2016-10-15 15:03 - 2015-07-07 11:18 - 00000000 ____D C:\Program Files\Bitdefender
2016-10-15 15:01 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-10-15 15:01 - 2014-02-16 16:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2016-10-15 15:01 - 2014-02-16 16:53 - 00000000 ____D C:\ProgramData\EPSON
2016-10-15 15:00 - 2013-06-09 02:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2016-10-15 14:55 - 2013-06-09 02:12 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-15 14:52 - 2015-07-07 11:17 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2016-10-15 14:43 - 2014-10-14 22:15 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-10-15 14:43 - 2013-06-09 02:08 - 00000000 ____D C:\ProgramData\Apple
2016-10-15 14:05 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-10-15 14:05 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-10-15 13:57 - 2015-07-28 21:16 - 00000000 ___RD C:\Users\Kristina\iCloudDrive
2016-10-15 13:52 - 2015-11-11 16:03 - 00000000 ____D C:\Users\Kristina
2016-10-10 20:37 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\ELAMBKUP
2016-10-03 15:05 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-10-03 14:34 - 2015-07-28 19:44 - 00000000 ____D C:\Program Files\Common Files\AV
2016-10-03 14:15 - 2015-09-10 07:37 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-02 15:55 - 2015-07-10 05:21 - 00000012 _____ C:\WINDOWS\system32\Drivers\BthhfHid.sys
2016-10-02 14:45 - 2015-09-10 07:21 - 00000000 ____D C:\WINDOWS\ShellNew
2016-10-02 14:44 - 2015-07-31 00:42 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-10-02 14:44 - 2015-07-31 00:42 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-10-02 14:44 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-10-02 14:44 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\setup
2016-10-02 14:44 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-02 14:44 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-10-02 14:44 - 2015-07-10 11:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-10-02 14:44 - 2015-07-10 11:47 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2016-10-02 14:44 - 2015-07-10 11:47 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-10-02 14:44 - 2015-07-10 11:47 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-10-02 14:43 - 2015-07-31 00:42 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-10-02 14:43 - 2015-07-31 00:42 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-10-02 14:42 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-09-30 06:45 - 2015-09-10 07:33 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-09-19 10:17 - 2015-07-10 05:36 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-09-19 10:17 - 2015-07-10 05:36 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-09-19 10:17 - 2015-07-10 05:25 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-09-19 10:17 - 2015-07-10 05:25 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-10-27 20:20 - 2014-10-27 20:20 - 0000000 _____ () C:\Program Files (x86)\GUT2A99.tmp
2016-06-17 22:30 - 2016-06-17 22:30 - 2428436 _____ () C:\Users\Kristina\AppData\Roaming\sb156.dat
2014-04-19 13:30 - 2016-09-06 08:30 - 0000263 _____ () C:\Users\Kristina\AppData\Roaming\WB.CFG
2014-02-13 14:16 - 2016-03-10 23:12 - 0005330 _____ () C:\Users\Kristina\AppData\Roaming\wklnhst.dat
2014-05-22 20:36 - 2014-05-22 20:36 - 0001517 _____ () C:\Users\Kristina\AppData\Local\recently-used.xbel
2014-04-18 12:29 - 2014-04-18 12:29 - 0358193 _____ () C:\Users\Kristina\AppData\Local\speedial.crx
2015-11-11 20:40 - 2015-11-11 20:40 - 0251273 _____ () C:\ProgramData\1447267170.bdinstall.bin
2015-11-11 21:35 - 2015-11-11 21:35 - 0093452 _____ () C:\ProgramData\1447270453.bdinstall.bin
2016-05-29 17:34 - 2016-05-29 17:34 - 0025650 _____ () C:\ProgramData\1464536054.bdinstall.bin
2016-10-15 14:38 - 2016-10-15 14:38 - 0045959 _____ () C:\ProgramData\agent.1476535135.bdinstall.bin
2016-10-15 15:01 - 2016-10-15 15:01 - 0384450 _____ () C:\ProgramData\cl.1476535903.bdinstall.bin
2016-10-15 15:03 - 2016-10-15 15:03 - 0054567 _____ () C:\ProgramData\dm.1476536622.bdinstall.bin

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-19 20:53

==================== Ende von FRST.txt ============================
         
Und die Addition:FRST Additions Logfile:
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 17-10-2016
durchgeführt von Kristina (19-10-2016 22:22:19)
Gestartet von C:\Users\Kristina\Desktop
Windows 10 Home (X64) (2015-11-11 14:34:02)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-987662335-2921229888-1834634612-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-987662335-2921229888-1834634612-503 - Limited - Disabled)
Gast (S-1-5-21-987662335-2921229888-1834634612-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-987662335-2921229888-1834634612-1006 - Limited - Enabled)
Kristina (S-1-5-21-987662335-2921229888-1834634612-1002 - Administrator - Enabled) => C:\Users\Kristina
UpdatusUser (S-1-5-21-987662335-2921229888-1834634612-1001 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Virenschutz (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.185 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
AuthenTec TrueAPI 64-bit (Version: 1.6.0.87 - AuthenTec, Inc.) Hidden
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.18.898 - Bitdefender)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 21.0.18.937 - Bitdefender)
Bitdefender Total Security 2017 (HKLM\...\Bitdefender) (Version: 21.0.18.898 - Bitdefender)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GoPro (Version: 0.1.2733 - GoPro, Inc.) Hidden
GoPro for Desktop (HKLM-x32\...\{88734dc7-c200-4ad3-b29f-bb5e436cb30f}) (Version: 1.4.0.2733 - GoPro, Inc.)
GoPro Studio (x32 Version: 5.9.2733 - GoPro, Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{13133E99-B0D5-4143-B832-AAD55C62A41C}) (Version: 6.0.19.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}) (Version: 2.10.51 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{0FEE0C28-850D-4AC0-92E7-57D214134102}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Quick Start (HKLM-x32\...\{BB27C290-AB30-4D9E-A5D1-88745AAE42E9}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\{34C821CA-6B55-44A0-8A9B-2EF471D6019E}) (Version: 6.0.100.272 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.0.30.219 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{C39A7F0F-89A6-44BB-B1BF-5F96569B5345}) (Version: 1.2.9 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{73237EBB-B26F-4628-8754-4EFE563D72E9}) (Version: 2.1.5 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.8.103.1 - Intel Security)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3379 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
Intel(R) Smart Connect Technology 4.0 x64 (HKLM\...\{B0CA78DB-745A-4857-A73F-9ACD95E62BD0}) (Version: 4.0.41.2072 - Intel)
iTunes (HKLM\...\{6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3}) (Version: 12.2.1.16 - Apple Inc.)
Mediatek Bluetooth (HKLM\...\{904C579C-9366-D3B7-7F31-4879401DBD4A}) (Version: 11.0.756.0 - Mediatek)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32\...\{172423F9-522A-483A-AD65-03600CE4CA4F}) (Version: 9.7.0000 - Microsoft Corporation)
NVIDIA Grafiktreiber 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.45.0 - Mediatek)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21239 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.2.4.10 - Synaptics Incorporated)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUSR_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version:  - Microsoft)
UpdateAssistant (x32 Version: 1.2.0.0 - Microsoft Corporation) Hidden
VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices  (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012  - GoPro)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-987662335-2921229888-1834634612-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {022BB3D7-882E-433F-ACBB-7BFEE02CA891} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-10-12] (HP Inc.)
Task: {062058FE-D2EA-4F14-AF74-F29BF23BAB47} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {077E8565-E6FC-4755-9ADC-857A37A167E3} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT.exe [2016-10-16] (Microsoft Corporation)
Task: {0791E533-6D44-42C6-8868-0BB88441B6C8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {29AB8E8D-1B01-4D7D-BF1E-BEB27D127240} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {2B064DD3-4D85-4E2C-BA0E-7386E484AA3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {2EF0CCE4-2DE0-4AB3-A6DD-270C4DED9406} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {38075255-9A54-4AD8-8E06-943F4F7B0DE4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {3D6DCCE8-0211-4844-B257-25C3F649F71B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-10-12] (HP Inc.)
Task: {3FEC06C4-2E2E-46BC-9D41-0DBD5963DB12} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {5A1EF5EF-79EA-4A1F-B54B-D22A0628B4B4} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-09-05] (Microsoft Corporation)
Task: {5C4592E2-57F8-4397-A9C1-438A7D1AA4E7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {68AAE063-3CAD-484B-A222-8459D88258BB} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-09-13] (Bitdefender)
Task: {6A607535-D517-4097-BFDB-62490FAC85FC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {6D42F727-2E37-41A8-8C74-F515AC89CF5A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {794E9FAA-F8C7-4078-BC8D-38D41A4F2FB5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {79E92B0F-5E47-41E2-94DD-9667EA6FAE88} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {7AE626EE-4C99-4430-9EBB-98A6B9018BA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-10] (Google Inc.)
Task: {88D05C9C-3EC9-4C2D-88DD-3F55411C5B12} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {8942D63C-9D27-4434-923F-9C27D0398945} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {8E6026B4-6542-4A5C-936D-9B6A79ED7031} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {961F2718-86A2-4E10-85B5-4088CF9066B5} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-15] (Adobe Systems Incorporated)
Task: {A5A88FC5-DF9F-481C-BE92-6E00C0EFDD2A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {A710DAB4-E0A8-4B81-8555-B7B1E3B6EA53} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_185_pepper.exe [2016-10-15] (Adobe Systems Incorporated)
Task: {C0191BA1-1152-45C2-8A6C-EDF6921CE9A4} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {C9A2F038-2C78-4B74-AC63-B537C69BD6CB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {CDCBB4D3-720F-418D-BC4A-BFD7BB506E67} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {D3973680-1E35-4D83-AD41-84263DB3C9AA} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {D8AB4C67-1391-4C42-B826-63F23776FF7A} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2015-04-26] (Apple Inc.)
Task: {E2017880-54B1-45D8-814C-B94EE886B29B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [2016-09-12] (Microsoft Corporation)
Task: {E9A897B5-CF08-4FB0-A5B0-2DAA2806BB7C} - System32\Tasks\Microsoft\Office\Office First Run Task => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
Task: {FB04FD18-960D-49DC-95AA-7042AAF31D6C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-10] (Google Inc.)
Task: {FC33DBE7-C910-4F1C-B383-007FD7E6ABC7} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_185_pepper.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-10 07:12 - 2015-09-10 07:12 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2016-09-19 10:39 - 2016-09-07 06:29 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2013-02-13 10:35 - 2013-02-13 10:35 - 00180200 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2013-02-13 10:35 - 2013-02-13 10:35 - 00060392 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2016-10-15 14:58 - 2013-09-03 14:29 - 00111832 _____ () C:\Bitdefender\Bitdefender 2017\bdmetrics.dll
2016-10-15 14:58 - 2016-08-24 19:02 - 00134152 _____ () C:\Bitdefender\Bitdefender 2017\ECEvents.dll
2016-10-15 14:58 - 2016-09-21 19:47 - 00113944 _____ () C:\Bitdefender\Bitdefender 2017\ThreatReporter.dll
2016-10-15 14:58 - 2016-05-09 11:29 - 01006336 _____ () C:\Bitdefender\Bitdefender 2017\otengines_001_001\ashttpbr.mdl
2016-10-15 14:58 - 2016-05-09 11:29 - 00541952 _____ () C:\Bitdefender\Bitdefender 2017\otengines_001_001\ashttpdsp.mdl
2016-10-15 14:58 - 2016-05-09 11:29 - 03035488 _____ () C:\Bitdefender\Bitdefender 2017\otengines_001_001\ashttpph.mdl
2016-10-15 14:58 - 2016-05-09 11:29 - 01541440 _____ () C:\Bitdefender\Bitdefender 2017\otengines_001_001\ashttprbl.mdl
2015-11-11 15:59 - 2015-07-23 03:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-10-16 01:09 - 2016-09-30 08:00 - 02495776 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-18 01:35 - 2015-07-18 01:35 - 00396688 _____ () C:\WINDOWS\system32\igfxTray.exe
2013-02-07 09:19 - 2013-02-07 09:19 - 04073768 _____ () C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
2016-10-16 01:09 - 2016-09-30 08:00 - 02495776 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-05 16:00 - 2016-09-05 16:00 - 01864384 _____ () C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2015-11-11 15:47 - 2015-11-11 15:47 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 05:13 - 2015-07-10 05:13 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2016-09-19 10:39 - 2016-09-07 06:13 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-19 10:39 - 2016-09-07 06:10 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-19 10:43 - 2016-09-07 06:10 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-11-11 15:47 - 2015-11-11 15:47 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 05:13 - 2015-09-10 07:12 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2016-09-16 22:11 - 2016-09-16 22:11 - 66162440 _____ () C:\Program Files\Intel Security\True Key\Application\libcef.dll
2016-10-15 14:58 - 2016-10-08 07:24 - 00023840 _____ () C:\Bitdefender\Bitdefender 2017\lang\de-DE\bdsystray.txtui
2013-06-09 02:06 - 2013-02-16 02:17 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-10-02 15:26 - 2016-09-25 05:47 - 01805416 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\libglesv2.dll
2016-10-02 15:26 - 2016-09-25 05:47 - 00093288 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Temp:054203E4 [312]
AlternateDataStreams: C:\Users\Kristina\Desktop\FRST64.exe:BDU [0]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2016-10-19 21:31 - 00000826 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Kristina\Pictures\GoPro-photos-1.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\StartupFolder: => "GoPro Importer.lnk"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run: => "SysTrayApp"
HKLM\...\StartupApproved\Run: => "GoPro Tray App"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "Bitdefender-Geldbörse-Agent"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_E4ECC421CB85415135FC0490EDDAF29A"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "iCloudDrive"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "Web Companion"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{F5B9CF8F-48A8-4245-9604-EA79B4DA59D2}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{FE211366-FC5D-42F3-82F7-D26611E7D268}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{669BC26C-0EE0-4893-9B62-4A8EA3AA6FE0}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [UDP Query User{0FE0644C-F6AD-405C-878F-D9F43271C35D}C:\users\kristina\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\kristina\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{71BF7BFD-27F6-40C5-BAC6-A969639D42B0}C:\users\kristina\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\kristina\appdata\roaming\spotify\spotify.exe
FirewallRules: [{711AB0DD-F0E5-480C-BACB-3AFE5FA5D976}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPSOCKSVC.exe
FirewallRules: [{1C93C57D-B749-4874-A87A-0DC95C677015}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{14622961-F218-4D9A-B403-EFBC2651FC35}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{C4375514-5DB8-4AB8-B468-CDA411FC4048}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{2EDDEBA0-2A35-4079-B798-9FC7899809F5}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{E161D831-21E6-4FC3-AF75-818E0E31DA45}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{CC3D8C9F-DCD6-4F30-91BB-EDCDD7BA8F35}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{2D6C2C26-85EE-4AE8-88EA-6B97E9F032E8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4D6FAAA4-0EF6-4082-846A-4BEA6ADA31B4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{34B9450F-3DFB-4B90-B3E6-1D5BC8723724}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{06AFDDD3-C835-4E5C-BBA0-CA442E23A780}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D00C13EC-CFEA-4CA9-9077-D30AD8EF3D4C}] => (Allow) C:\Users\Kristina\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{24085C47-F563-40AB-B11E-89CBD727BFF0}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro.exe
FirewallRules: [{0F0C95FF-7A7E-40C9-9468-42F17CBC9769}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe
FirewallRules: [{12CDE464-75CD-403D-89F5-5A9A5A5E631D}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe
FirewallRules: [{DF48F92D-3B31-472A-9754-DE9B02A1949A}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe
FirewallRules: [{D5227773-C631-4366-8D8A-324CEE2A9F4B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{D7F4CD49-1B71-4C82-9019-44979F8B2588}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe

==================== Wiederherstellungspunkte =========================

03-10-2016 15:02:05 Windows Update
15-10-2016 14:14:25 Konfiguriert PhotoDirector
19-10-2016 21:30:31 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: High Definition Audio-Gerät
Description: High Definition Audio-Gerät
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HdAudAddService
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/19/2016 09:30:51 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (10/19/2016 08:54:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: rundll32.exe_invagent.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f39d6
Name des fehlerhaften Moduls: aeinv.dll, Version: 10.0.10240.17146, Zeitstempel: 0x57ede14a
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000000b9b7
ID des fehlerhaften Prozesses: 0x1f90
Startzeit der fehlerhaften Anwendung: 0x01d22a3a08645828
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\rundll32.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\aeinv.dll
Berichtskennung: d5b2e488-b2ee-4b23-8148-db4501edd6ce
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/19/2016 08:41:20 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/19/2016 08:39:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm explorer.exe, Version 10.0.10240.17113 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1d98

Startzeit: 01d22a37108d3d57

Beendigungszeit: 0

Anwendungspfad: C:\Windows\explorer.exe

Berichts-ID: 896b0bc9-962a-11e6-bef4-bc85563ebae6

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (10/19/2016 08:34:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KRISSY-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/19/2016 08:34:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm SearchUI.exe, Version 10.0.10240.17113 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 23d8

Startzeit: 01d22a3758df563e

Beendigungszeit: 4294967295

Anwendungspfad: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

Berichts-ID: a0891d6b-962a-11e6-bef4-bc85563ebae6

Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy

Auf das fehlerhafte Paket bezogene Anwendungs-ID: CortanaUI

Error: (10/19/2016 08:34:11 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: KRISSY-PC)
Description: Die App „Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.

Error: (10/16/2016 01:54:54 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KRISSY-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/16/2016 01:41:44 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KRISSY-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/16/2016 01:14:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: rundll32.exe_invagent.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f39d6
Name des fehlerhaften Moduls: aeinv.dll, Version: 10.0.10240.17113, Zeitstempel: 0x57cf9313
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000000b9b7
ID des fehlerhaften Prozesses: 0x2114
Startzeit der fehlerhaften Anwendung: 0x01d22739c1580225
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\rundll32.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\aeinv.dll
Berichtskennung: 047799ce-2862-49e9-aa23-e949912db47d
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:


Systemfehler:
=============
Error: (10/19/2016 08:35:08 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
Unzulässige Funktion.

Error: (10/16/2016 01:54:54 AM) (Source: DCOM) (EventID: 10010) (User: KRISSY-PC)
Description: Der Server "CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/16/2016 01:54:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/16/2016 01:54:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/16/2016 01:54:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/16/2016 01:54:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/16/2016 01:53:02 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst konnte wegen einer fehlerhaften Anmeldung nicht gestartet werden.

Error: (10/16/2016 01:53:02 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
Der Benutzername oder das Kennwort ist falsch.


Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (10/16/2016 01:50:10 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{752073A1-23F2-4396-85F0-8FDB879ED0ED}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/16/2016 01:45:09 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1115" in DCOM, als der Dienst "TrustedInstaller" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{752073A1-23F2-4396-85F0-8FDB879ED0ED}


CodeIntegrity:
===================================
  Date: 2016-10-16 01:48:35.011
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-16 01:04:03.437
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-16 00:16:46.897
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-15 15:00:52.871
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-03 15:01:18.708
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-03 15:01:18.006
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-02 15:02:17.052
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-02 15:02:14.571
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-09-07 20:58:25.605
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-09-07 20:58:25.481
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-4700MQ CPU @ 2.40GHz
Prozentuale Nutzung des RAM: 49%
Installierter physikalischer RAM: 6076.02 MB
Verfügbarer physikalischer RAM: 3045.91 MB
Summe virtueller Speicher: 8060.02 MB
Verfügbarer virtueller Speicher: 4626.07 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:678.28 GB) (Free:393.84 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (RECOVERY) (Fixed) (Total:18.46 GB) (Free:1.78 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 1E1F4777)

Partition: GPT.

==================== Ende von Addition.txt ============================
         
--- --- ---

Leider habe ich keine Log-File von den Programmen: Tuneup Utilies & BitDefender.
Diese beiden Programme habe ich in Vollem Umfang laufen und "prüfen" lassen, allerdings mit wenig Erfolg.

Ich würde mich sehr über eine Rückmeldung freuen!!

Vielen Dank schon einmal vorab!
__________________


Alt 25.10.2016, 11:45   #3
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Zitat:
Leider habe ich keine Log-File von den Programmen: Tuneup Utilies & BitDefender.
Nix gegen Bitdefender, aber wer sein System mit TuneUp bearbeiten lässt, darf sich über Probleme nicht wundern. Man beobachtet es immer wieder: tw. extrem planlos zugekleisterte System sind natürlich langsam, wenn dann alles noch kaputtoptimiert wird mit TuneUp setzt man dem ganzen damit die Krone auf.

TuneUp ist das Beispiel schlechthin für Schlangenöl und sollte weit weit weggeworfen oder so tief wie möglich verbuddelt werden

Bitte umgehend TuneUp deinstallieren. Anschließend das hier tun:



1. Schritt: Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers




2. Schritt: Kaspersky TDSS-Killer

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
__________________

Alt 01.11.2016, 07:28   #4
Sebow
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Hallo erstmal und vielen Dank für die schnelle Rückmeldung!

Das Problem bei TuneUp ist, dass man in der Not alles versucht und dann zum "bekanntesten" Tool greift

Nun denn...

Nachfolgend die Log-files:

Mbar:

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2016.11.01.03
  rootkit: v2016.10.31.01

Windows 10 x64 NTFS
Internet Explorer 11.0.10240.17146
Kristina :: KRISSY-PC [administrator]

01.11.2016 06:53:14
mbar-log-2016-11-01 (06-53-14).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 368995
Time elapsed: 23 minute(s), 29 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
Tdsskiller:

TDSSKILLER:

Code:
ATTFilter
07:17:12.0952 0x1004  TDSS rootkit removing tool 3.1.0.11 Aug  5 2016 12:13:31
07:17:12.0952 0x1004  UEFI system
07:17:20.0287 0x1004  ============================================================
07:17:20.0287 0x1004  Current date / time: 2016/11/01 07:17:20.0287
07:17:20.0287 0x1004  SystemInfo:
07:17:20.0287 0x1004  
07:17:20.0287 0x1004  OS Version: 10.0.10240 ServicePack: 0.0
07:17:20.0287 0x1004  Product type: Workstation
07:17:20.0287 0x1004  ComputerName: KRISSY-PC
07:17:20.0287 0x1004  UserName: Kristina
07:17:20.0287 0x1004  Windows directory: C:\WINDOWS
07:17:20.0287 0x1004  System windows directory: C:\WINDOWS
07:17:20.0287 0x1004  Running under WOW64
07:17:20.0287 0x1004  Processor architecture: Intel x64
07:17:20.0287 0x1004  Number of processors: 8
07:17:20.0287 0x1004  Page size: 0x1000
07:17:20.0287 0x1004  Boot type: Normal boot
07:17:20.0287 0x1004  CodeIntegrityOptions = 0x00000001
07:17:20.0287 0x1004  ============================================================
07:17:21.0334 0x1004  KLMD registered as C:\WINDOWS\system32\drivers\57304542.sys
07:17:21.0334 0x1004  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 10240.17146, osProperties = 0x19
07:17:21.0756 0x1004  System UUID: {FBFD73C6-5B61-F0B7-C10F-7B489356B1BD}
07:17:22.0412 0x1004  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
07:17:22.0412 0x1004  ============================================================
07:17:22.0412 0x1004  \Device\Harddisk0\DR0:
07:17:22.0412 0x1004  GPT partitions:
07:17:22.0412 0x1004  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {421BC157-F5D7-44A8-B48C-517FF9584C14}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
07:17:22.0412 0x1004  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {A3C1DA9A-2A6B-4A1D-BEFA-7D171B5ABA1B}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x82000
07:17:22.0412 0x1004  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {555BCB08-34B6-4026-A565-301E95B37315}, Name: Microsoft reserved partition, StartLBA 0x14A800, BlocksNum 0x40000
07:17:22.0412 0x1004  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {D7DFECE1-CA9A-47D9-86F6-32E1CAA45417}, Name: Basic data partition, StartLBA 0x18A800, BlocksNum 0x54C90467
07:17:22.0412 0x1004  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {C0E31EB9-B0F5-46CA-97CB-DD3B265DDFDE}, Name: , StartLBA 0x54E1B000, BlocksNum 0x18C800
07:17:22.0412 0x1004  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {09C628B4-B18C-414D-B553-4AE9FDC8D62B}, Name: , StartLBA 0x54FA7800, BlocksNum 0xAF000
07:17:22.0412 0x1004  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {1411130B-5BED-475D-A813-67F2AC6492C3}, Name: Basic data partition, StartLBA 0x55056800, BlocksNum 0x24ED000
07:17:22.0412 0x1004  MBR partitions:
07:17:22.0412 0x1004  ============================================================
07:17:22.0428 0x1004  C: <-> \Device\Harddisk0\DR0\Partition4
07:17:22.0475 0x1004  D: <-> \Device\Harddisk0\DR0\Partition7
07:17:22.0521 0x1004  ============================================================
07:17:22.0521 0x1004  Initialize success
07:17:22.0521 0x1004  ============================================================
07:17:30.0969 0x25d0  ============================================================
07:17:30.0969 0x25d0  Scan started
07:17:30.0969 0x25d0  Mode: Manual; 
07:17:30.0969 0x25d0  ============================================================
07:17:30.0969 0x25d0  KSN ping started
07:17:31.0078 0x25d0  KSN ping finished: true
07:17:39.0847 0x25d0  ================ Scan system memory ========================
07:17:39.0847 0x25d0  System memory - ok
07:17:39.0848 0x25d0  ================ Scan services =============================
07:17:39.0949 0x25d0  0251941477978733mcinstcleanup - ok
07:17:40.0581 0x25d0  [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
07:17:40.0581 0x25d0  1394ohci - ok
07:17:40.0628 0x25d0  [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
07:17:40.0644 0x25d0  3ware - ok
07:17:40.0659 0x25d0  [ F39180029723D7779C80360F9E255709, F4831FEE79AAF4DB66BF58D3F89B8A6DD8F38CD546B3C653BFF7052DDA112CC6 ] Accelerometer   C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
07:17:40.0659 0x25d0  Accelerometer - ok
07:17:40.0691 0x25d0  [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
07:17:40.0706 0x25d0  ACPI - ok
07:17:40.0738 0x25d0  [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
07:17:40.0738 0x25d0  acpiex - ok
07:17:40.0753 0x25d0  [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
07:17:40.0753 0x25d0  acpipagr - ok
07:17:40.0769 0x25d0  [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
07:17:40.0769 0x25d0  AcpiPmi - ok
07:17:40.0784 0x25d0  [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
07:17:40.0784 0x25d0  acpitime - ok
07:17:40.0909 0x25d0  [ C3D6244407B9A4FAD5C2D831A7B19F21, 0DEB9CFB91ED16B5B3F84F2BFFDF0E11392B5508D51B5C913097ED67E02CC33E ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
07:17:40.0909 0x25d0  AdobeFlashPlayerUpdateSvc - ok
07:17:40.0941 0x25d0  [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
07:17:40.0988 0x25d0  ADP80XX - ok
07:17:41.0019 0x25d0  [ A3D96563BF46FC8A0E5756B796127D14, BAD3C30714F6514D2AF725077A79FF671CC022E415786E1666C0B7C24CE3670A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
07:17:41.0034 0x25d0  AFD - ok
07:17:41.0066 0x25d0  [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
07:17:41.0066 0x25d0  agp440 - ok
07:17:41.0097 0x25d0  [ D9C5A492A28F4DBA9B2B2EA157B46B58, 52E4F9AFF7C79BBE98B83409551AD54C7D9F5F59DC7A91ACB5040D0562C3D67A ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
07:17:41.0097 0x25d0  ahcache - ok
07:17:41.0128 0x25d0  [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
07:17:41.0128 0x25d0  AJRouter - ok
07:17:41.0159 0x25d0  [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG             C:\WINDOWS\System32\alg.exe
07:17:41.0159 0x25d0  ALG - ok
07:17:41.0175 0x25d0  [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
07:17:41.0175 0x25d0  AmdK8 - ok
07:17:41.0206 0x25d0  [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
07:17:41.0206 0x25d0  AmdPPM - ok
07:17:41.0222 0x25d0  [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
07:17:41.0222 0x25d0  amdsata - ok
07:17:41.0238 0x25d0  [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
07:17:41.0255 0x25d0  amdsbs - ok
07:17:41.0269 0x25d0  [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
07:17:41.0270 0x25d0  amdxata - ok
07:17:41.0434 0x25d0  [ E4AFE476D9F758514A8A571DF6A24372, A37055A2CDB577CC8B76D4B020924A6C68D94166C1C9A64F7C0E9E16692709FC ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
07:17:41.0437 0x25d0  AppHostSvc - ok
07:17:41.0503 0x25d0  [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
07:17:41.0506 0x25d0  AppID - ok
07:17:41.0556 0x25d0  [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
07:17:41.0593 0x25d0  AppIDSvc - ok
07:17:41.0624 0x25d0  [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
07:17:41.0626 0x25d0  Appinfo - ok
07:17:41.0666 0x25d0  [ B0129B6D84EA4945F9A0F92772E1B4F0, 5AAF913AAE686D3CB1FC957B22E8FEC4E4469CE83FCBABC1A416FF53670379B7 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
07:17:41.0681 0x25d0  AppReadiness - ok
07:17:41.0760 0x25d0  [ 51C8B67103D1F5B2E063F8B8971E7328, 022D91741055B0E6051D055734996C31FCF9ABDD6C97E11D63DA159591B6381D ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
07:17:41.0822 0x25d0  AppXSvc - ok
07:17:41.0853 0x25d0  [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
07:17:41.0916 0x25d0  arcsas - ok
07:17:42.0010 0x25d0  [ BD63768F58666341BE007DAA21B3A063, 1D6112E97042E19E4D916AA22F8AEB7FCC2F36CA45F55049D77042DAF3B8847C ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
07:17:42.0010 0x25d0  aspnet_state - ok
07:17:42.0041 0x25d0  [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
07:17:42.0041 0x25d0  AsyncMac - ok
07:17:42.0041 0x25d0  [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
07:17:42.0041 0x25d0  atapi - ok
07:17:42.0176 0x25d0  [ 65944F658F651587F0679D8D92C4F05F, E095BE3E67BAA2AD2D05568C3235656A350515C06D3D22B5CE44998E580AE598 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
07:17:42.0223 0x25d0  AudioEndpointBuilder - ok
07:17:42.0286 0x25d0  [ DB550B3D42AA3DC2A4808044119C2CF9, D2833C580D01D37307BEC197AAB2A06BDC58DBD64C1DA2C8F83A26C8E0A04DCA ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
07:17:42.0332 0x25d0  Audiosrv - ok
07:17:42.0426 0x25d0  [ ED9D271CDC32C4EDCD86835372BAB74E, 639D2BCE1FD143DAE61DD5F0FE4E5C38942FCE9AEB5C7201EA431FA511CEC676 ] avc3            C:\WINDOWS\system32\DRIVERS\avc3.sys
07:17:42.0551 0x25d0  avc3 - ok
07:17:42.0598 0x25d0  [ 6917D3C8923ABF7EBC68029A1E15C1AE, 6EBFE25343026E2AE62F195CC2164566F0C8FF7ACAA8FA5B2713766C4C7877BF ] avckf           C:\WINDOWS\system32\DRIVERS\avckf.sys
07:17:42.0613 0x25d0  avckf - ok
07:17:42.0645 0x25d0  [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
07:17:42.0645 0x25d0  AxInstSV - ok
07:17:42.0692 0x25d0  [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
07:17:42.0707 0x25d0  b06bdrv - ok
07:17:42.0723 0x25d0  [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
07:17:42.0723 0x25d0  BasicDisplay - ok
07:17:42.0738 0x25d0  [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
07:17:42.0738 0x25d0  BasicRender - ok
07:17:42.0754 0x25d0  [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
07:17:42.0754 0x25d0  bcmfn2 - ok
07:17:42.0785 0x25d0  [ 4B190ACAE90EC79AD4D43EFCD3743DA0, 9D5187D4E1DF1672DEA2EF5C910FCA08BD8ED0573A55DF774E5300312ED87E05 ] bdelam          C:\WINDOWS\system32\drivers\bdelam.sys
07:17:42.0785 0x25d0  bdelam - ok
07:17:42.0832 0x25d0  [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
07:17:42.0832 0x25d0  BDESVC - ok
07:17:42.0988 0x25d0  [ 14F686FA27C2914128031504B70D2B5E, BED77F4A6DC8B30ADB698FBCC00153D924310188EFBE22ADD2BAA3321C746556 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
07:17:43.0004 0x25d0  bdfwfpf - ok
07:17:43.0035 0x25d0  [ D8FAF7CFBC81E5E15CA7A7EC8EE1B409, 75E60DF2147DFB109E628FDF80EB1BFA5360E5935BB9237B67053588F906E1B1 ] BDVEDISK        C:\WINDOWS\system32\DRIVERS\bdvedisk.sys
07:17:43.0035 0x25d0  BDVEDISK - ok
07:17:43.0082 0x25d0  [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
07:17:43.0082 0x25d0  Beep - ok
07:17:43.0145 0x25d0  [ 41E6CD314C0090E483952C8170CA6CC1, E002964FA760B873FDDBF1388875FC8DA6DAF3587D1160C7A4D1D947BCADC1B7 ] BFE             C:\WINDOWS\System32\bfe.dll
07:17:43.0176 0x25d0  BFE - ok
07:17:43.0363 0x25d0  [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS            C:\WINDOWS\System32\qmgr.dll
07:17:43.0426 0x25d0  BITS - ok
07:17:43.0457 0x25d0  [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
07:17:43.0457 0x25d0  bowser - ok
07:17:43.0507 0x25d0  [ C95ABE2794B113A471D0D0C5EDCECD76, E3FCB2D89F0153A2926FC7385ED071D803EBAD57D2414059DD30C41A738E66C0 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
07:17:43.0515 0x25d0  BrokerInfrastructure - ok
07:17:43.0547 0x25d0  [ B88731761FF66380303BEE550C5ED5B9, 8DB89CEDA511E199527CC7682262D80C7EEE77F92C76A6F9291BC24D1DC31318 ] Browser         C:\WINDOWS\System32\browser.dll
07:17:43.0547 0x25d0  Browser - ok
07:17:43.0593 0x25d0  [ 23146B48025E0C873FF10931F181589D, D55736C61A875551671981F76F8BAEF37560D8994EC17FBFFCDC0DB5206E8E65 ] BthA2DP         C:\WINDOWS\system32\drivers\BthA2DP.sys
07:17:43.0593 0x25d0  BthA2DP - ok
07:17:43.0640 0x25d0  [ 20EE9320D385FE575E13189606F135D7, 4A61918D7DAF723527F84F3DB950CC601D7C9EA92BFBA880B6ECE8B5DD6EE247 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
07:17:43.0640 0x25d0  BthAvrcpTg - ok
07:17:43.0656 0x25d0  [ 74C9D52F3F594529465E18B2BFF80487, F1ECD8B730AD8B90673735FD6D2D9F6F0754F8BAB7135B16A41128145D5F9377 ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
07:17:43.0656 0x25d0  BthEnum - ok
07:17:43.0687 0x25d0  [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
07:17:43.0687 0x25d0  BthHFEnum - ok
07:17:43.0703 0x25d0  [ DF41E4863583CCF89D60B3C8E71F0B24, A6C0A9687CA4EADCF697A29AE2B671FB902FA5C417AF3A5A597835DE68F17B12 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
07:17:43.0703 0x25d0  bthhfhid - ok
07:17:43.0734 0x25d0  [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
07:17:43.0734 0x25d0  BthHFSrv - ok
07:17:43.0765 0x25d0  [ 10C7E03E6DF231F26136C5C7BADEF3FC, F1712E1D95C7443613482451564C91D333D3F9B772F8954939E23247CAE65C35 ] BthLEEnum       C:\WINDOWS\System32\drivers\BthLEEnum.sys
07:17:43.0781 0x25d0  BthLEEnum - ok
07:17:43.0812 0x25d0  [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
07:17:43.0812 0x25d0  BTHMODEM - ok
07:17:43.0828 0x25d0  [ 38C97371F058E889F730BF35530732F4, 7CD16DF9C51D40CF80392E6DF444D6F5546B0E8B6A6DAC6DFD70BB45E014FA27 ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
07:17:43.0828 0x25d0  BthPan - ok
07:17:43.0859 0x25d0  [ FCC211B0F46D831506D0D76539203899, A2609658AE36EB0FE4CFAA00684986193FEACED7BA8D869A9DF8D03312E53169 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
07:17:43.0875 0x25d0  BTHPORT - ok
07:17:43.0906 0x25d0  [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv         C:\WINDOWS\system32\bthserv.dll
07:17:43.0922 0x25d0  bthserv - ok
07:17:43.0953 0x25d0  [ 5866AE46EEF644E6DE5C95942AE419D7, 0726C0845D2BA4247AB26ACF05006F6FA96015158CD49795801BB906DA80C007 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
07:17:44.0047 0x25d0  BTHUSB - ok
07:17:44.0066 0x25d0  [ 854AF190F55E6D70EC65A85798F896E2, 6D39F9131BE93F934502BA1DB109E7AD35D3987B636F7B32F9C34823DF25746B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
07:17:44.0068 0x25d0  buttonconverter - ok
07:17:44.0081 0x25d0  [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
07:17:44.0083 0x25d0  CapImg - ok
07:17:44.0096 0x25d0  [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
07:17:44.0098 0x25d0  cdfs - ok
07:17:44.0121 0x25d0  [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
07:17:44.0124 0x25d0  CDPSvc - ok
07:17:44.0131 0x25d0  [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
07:17:44.0131 0x25d0  cdrom - ok
07:17:44.0162 0x25d0  [ B222DA754F119FC153D341594C7D1B9B, 33EB99259DCA6FD00E45E1729C4FD59E58F736205AD9BA722CDFF02258CE7F35 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
07:17:44.0162 0x25d0  CertPropSvc - ok
07:17:44.0178 0x25d0  [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
07:17:44.0178 0x25d0  circlass - ok
07:17:44.0209 0x25d0  [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
07:17:44.0225 0x25d0  CLFS - ok
07:17:44.0331 0x25d0  [ 8A77D56FC66CF8096ADC030F5702AF59, 47E271CF7499E6D37684C8D9A698A0342C035BCF812CBE7EBD54B2E8DC549155 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
07:17:44.0346 0x25d0  ClipSVC - ok
07:17:44.0362 0x25d0  [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
07:17:44.0378 0x25d0  CmBatt - ok
07:17:44.0393 0x25d0  [ 5C6B3E60C7CA9C13CC159F479EBC96F3, 0075F0131CCD58EAC42C996703AF5000664389DFFC9933D9C7D91BE3A533AE2E ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
07:17:44.0424 0x25d0  CNG - ok
07:17:44.0440 0x25d0  [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
07:17:44.0440 0x25d0  cnghwassist - ok
07:17:44.0502 0x25d0  [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
07:17:44.0502 0x25d0  CompositeBus - ok
07:17:44.0502 0x25d0  COMSysApp - ok
07:17:44.0549 0x25d0  [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
07:17:44.0549 0x25d0  condrv - ok
07:17:44.0596 0x25d0  [ CEC3788364B73240C63D6E1AD773F18D, 42C53C11AE6BABC6CC320D870EC6993E9D93CDF23351EF91335B79E9F70ED90B ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
07:17:44.0612 0x25d0  CoreMessagingRegistrar - ok
07:17:44.0740 0x25d0  [ A6B9FD89353D6005DD74485F591F2A83, 1148FDAC0C4B01E9F7C925E22F0E13CA0ECA3DB8AE13F3303E99AB03D4E7B644 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
07:17:44.0781 0x25d0  cphs - ok
07:17:44.0816 0x25d0  [ 1220E010F1ECE4CD5E4F60D169281F59, E6F4FF421C16D70ED7D7BBD8D8F0DEBD9303194113A94C22182DFA4A59BD44A8 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
07:17:44.0816 0x25d0  CryptSvc - ok
07:17:44.0831 0x25d0  [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam             C:\WINDOWS\system32\drivers\dam.sys
07:17:44.0831 0x25d0  dam - ok
07:17:44.0878 0x25d0  [ 3F4DF1BEDF0B92E750646EA7F66D8E4E, D5DF0502E71F938C25E36C59093EEDCDF5F0FC3B29DE5FC8E8E947F0EF7DA546 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
07:17:44.0928 0x25d0  DcomLaunch - ok
07:17:44.0981 0x25d0  [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
07:17:44.0986 0x25d0  DcpSvc - ok
07:17:45.0077 0x25d0  [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
07:17:45.0086 0x25d0  defragsvc - ok
07:17:45.0111 0x25d0  [ 7779B27347FC7AF13D144CD614CE85C8, 887C14523B3C48BC66F5A3009D36196CE78CF1EA12CD0904B2E63E9F4C6E7096 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
07:17:45.0119 0x25d0  DeviceAssociationService - ok
07:17:45.0260 0x25d0  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
07:17:45.0272 0x25d0  DeviceInstall - ok
07:17:45.0413 0x25d0  [ 34CA1928EDF11796AA6CD8A2BBAF2A07, B394A6163E6CA56EB21D7F469EA5861FD035745169345F28720DD3AD8ECFA405 ] DevMgmtService  C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
07:17:45.0414 0x25d0  DevMgmtService - ok
07:17:45.0431 0x25d0  [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
07:17:45.0431 0x25d0  DevQueryBroker - ok
07:17:45.0464 0x25d0  [ AF9D343C52B7E825D0AE55741A7C927F, F63DC62D2D7D0692B3F5B47E2969D24E311A3D9E217ED331D203103D9798D758 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
07:17:45.0468 0x25d0  Dfsc - ok
07:17:45.0483 0x25d0  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
07:17:45.0483 0x25d0  dg_ssudbus - ok
07:17:45.0514 0x25d0  [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
07:17:45.0532 0x25d0  Dhcp - ok
07:17:45.0626 0x25d0  [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
07:17:45.0626 0x25d0  diagnosticshub.standardcollector.service - ok
07:17:45.0693 0x25d0  [ 1E1F7F3AE61C1E2F8C917F996DF8336C, CEDBE9B9F7BC552CA9DE21A1DD642703C6880FD987603B3975DC869128015D91 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
07:17:45.0761 0x25d0  DiagTrack - ok
07:17:45.0808 0x25d0  [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk            C:\WINDOWS\system32\drivers\disk.sys
07:17:45.0879 0x25d0  disk - ok
07:17:45.0948 0x25d0  [ 1F96EBD0ABE418B5152A5123CA3B0D60, AD7DA7CE06F362A66FA78433E7FFFA0F53F8540045D3D558FE1CB9ABA4ADF0A6 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
07:17:45.0956 0x25d0  DmEnrollmentSvc - ok
07:17:45.0978 0x25d0  [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
07:17:45.0979 0x25d0  dmvsc - ok
07:17:46.0012 0x25d0  [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
07:17:46.0014 0x25d0  dmwappushservice - ok
07:17:46.0046 0x25d0  [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
07:17:46.0052 0x25d0  Dnscache - ok
07:17:46.0150 0x25d0  [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
07:17:46.0155 0x25d0  dot3svc - ok
07:17:46.0184 0x25d0  [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS             C:\WINDOWS\system32\dps.dll
07:17:46.0188 0x25d0  DPS - ok
07:17:46.0216 0x25d0  [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
07:17:46.0217 0x25d0  drmkaud - ok
07:17:46.0245 0x25d0  [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
07:17:46.0248 0x25d0  DsmSvc - ok
07:17:46.0375 0x25d0  [ 5E649D3A3A6F72B1EF062E023308D08E, FF6EFA58AD293707CC0394B747EA059F24D35A85987BBC68BABBD84DF1B3FD3A ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
07:17:46.0375 0x25d0  DsSvc - ok
07:17:46.0469 0x25d0  [ 6E99FB1F0F10CC9BDA27CA1626C0E4AD, 09DA2AB3E0B1E8E6EA68115DBCA7BE110DDEA8722673D95A6DCA690A7EE18127 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
07:17:46.0531 0x25d0  DXGKrnl - ok
07:17:46.0563 0x25d0  [ 32A22D08054D049DAF160561555B1979, F7FCB7AAAFB319D2A11B6181DB9ACAB0D6B01EC7703452008DE806AC66069219 ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
07:17:46.0566 0x25d0  Eaphost - ok
07:17:46.0843 0x25d0  [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
07:17:46.0964 0x25d0  ebdrv - ok
07:17:46.0987 0x25d0  [ BA6613AD1345BA9250BBE3C2425CA55E, CA176B32589AE38D689F8730856CF10F4BD63CDA04BDC17A700D02D32C2AA3E9 ] EFS             C:\WINDOWS\System32\lsass.exe
07:17:46.0989 0x25d0  EFS - ok
07:17:47.0032 0x25d0  [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
07:17:47.0032 0x25d0  EhStorClass - ok
07:17:47.0048 0x25d0  [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
07:17:47.0048 0x25d0  EhStorTcgDrv - ok
07:17:47.0079 0x25d0  [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
07:17:47.0079 0x25d0  embeddedmode - ok
07:17:47.0110 0x25d0  [ 2BC7892BBEC305CEA38E09C07F3F36F7, CB9480CEB5263C32A59F37F9DC02D1C347D7D16EDD5CFC8156530226A6A75C0C ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
07:17:47.0110 0x25d0  EntAppSvc - ok
07:17:47.0141 0x25d0  [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
07:17:47.0141 0x25d0  ErrDev - ok
07:17:47.0188 0x25d0  [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem     C:\WINDOWS\system32\es.dll
07:17:47.0188 0x25d0  EventSystem - ok
07:17:47.0251 0x25d0  [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
07:17:47.0266 0x25d0  exfat - ok
07:17:47.0301 0x25d0  [ A85D2E507558ADBCD4668E3D842409D2, 2D5A270D996AD420DA41090EFEEFCFDD9B8D7B39665D8BF77EEA0E14479A6C7C ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
07:17:47.0307 0x25d0  fastfat - ok
07:17:47.0358 0x25d0  [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
07:17:47.0380 0x25d0  Fax - ok
07:17:47.0389 0x25d0  [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
07:17:47.0391 0x25d0  fdc - ok
07:17:47.0418 0x25d0  [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
07:17:47.0419 0x25d0  fdPHost - ok
07:17:47.0429 0x25d0  [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
07:17:47.0431 0x25d0  FDResPub - ok
07:17:47.0448 0x25d0  [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
07:17:47.0452 0x25d0  fhsvc - ok
07:17:47.0481 0x25d0  [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
07:17:47.0484 0x25d0  FileCrypt - ok
07:17:47.0513 0x25d0  [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
07:17:47.0515 0x25d0  FileInfo - ok
07:17:47.0534 0x25d0  [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
07:17:47.0535 0x25d0  Filetrace - ok
07:17:47.0544 0x25d0  [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
07:17:47.0545 0x25d0  flpydisk - ok
07:17:47.0570 0x25d0  [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
07:17:47.0576 0x25d0  FltMgr - ok
07:17:47.0783 0x25d0  [ A3D3492194695FD46111740B25274EF7, E73688769023751F48084FE4FA6F0B68C57D349D21AB44E8AD3D08CD1272F74A ] FontCache       C:\WINDOWS\system32\FntCache.dll
07:17:47.0832 0x25d0  FontCache - ok
07:17:47.0941 0x25d0  [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:17:47.0941 0x25d0  FontCache3.0.0.0 - ok
07:17:48.0269 0x25d0  [ 3A5C8F2F3500833F614BB509A1270971, 8B48B9F7C194831FA003B7ABD34BA7ECB05417338A3CADDBAAB8BB58ADBDC396 ] FPLService      C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
07:17:48.0289 0x25d0  FPLService - ok
07:17:48.0311 0x25d0  [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
07:17:48.0313 0x25d0  FsDepends - ok
07:17:48.0329 0x25d0  [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
07:17:48.0330 0x25d0  Fs_Rec - ok
07:17:48.0360 0x25d0  [ F7101D3B4E00800E6CEE69F9795B7B62, FB6F7119D3977D4E8C4D2C5BA87CBE9F56F54AF5622DC0D07E042449C17C959F ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
07:17:48.0379 0x25d0  fvevol - ok
07:17:48.0412 0x25d0  [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
07:17:48.0413 0x25d0  gagp30kx - ok
07:17:48.0442 0x25d0  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
07:17:48.0443 0x25d0  GEARAspiWDM - ok
07:17:48.0465 0x25d0  [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
07:17:48.0465 0x25d0  gencounter - ok
07:17:48.0496 0x25d0  [ AE309D8BE2E7D8CCB09D2DD3CA4DAEBD, C789DBDA62248D63DDBBC70CA0E9D2959AC2BFD624D961DF34A138C4FBA96894 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
07:17:48.0497 0x25d0  genericusbfn - ok
07:17:48.0532 0x25d0  [ BDA6549A7E5255396A5CB41CE2905668, 1877F31F184AFACF24A92C4956307E40C745F36ACD8488F2DCBA0FAE2B0484AD ] GoProDeviceDetectionService C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
07:17:48.0532 0x25d0  GoProDeviceDetectionService - ok
07:17:48.0564 0x25d0  [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
07:17:48.0564 0x25d0  GPIOClx0101 - ok
07:17:48.0642 0x25d0  [ B685A9D05B5ECC3BEB664C7C460BC85C, C2CA4995A3E4AFC8A4C525584EA5F1F8A703B035ED6553F699671AA1078F4217 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
07:17:48.0704 0x25d0  gpsvc - ok
07:17:48.0735 0x25d0  [ 7BF844D362EB746BC7A6DC3F57FA3E32, C07007CF6A0A2BA953FC40A5031931131CC953A8CF3B5AFA86C8811F9C4D43C4 ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
07:17:48.0735 0x25d0  GpuEnergyDrv - ok
07:17:48.0782 0x25d0  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:17:48.0798 0x25d0  gupdate - ok
07:17:48.0798 0x25d0  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:17:48.0814 0x25d0  gupdatem - ok
07:17:48.0860 0x25d0  [ E4B7F2553A127E86E11343ED15320A99, A4EA52DF5D24EF8210192669934D3D0DD1A0E4CCAAD014D52F58D58A9D3C886A ] gzflt           C:\WINDOWS\system32\DRIVERS\gzflt.sys
07:17:48.0876 0x25d0  gzflt - ok
07:17:48.0907 0x25d0  [ 16255846494071F5D9C120360158D6EB, 58F9087772233A4F2DC11ABF2691340B6986F0A35828147F9343E90A133C00E1 ] HdAudAddService C:\WINDOWS\System32\drivers\HdAudio.sys
07:17:48.0907 0x25d0  HdAudAddService - ok
07:17:49.0031 0x25d0  [ 0915B65E73B9C73ED11243111C512A4D, F1D7A65889E6D82FE2219C4F51360444F361E78AA0E47C9F8B51774A1FF29A5F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
07:17:49.0033 0x25d0  HDAudBus - ok
07:17:49.0091 0x25d0  [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
07:17:49.0092 0x25d0  HidBatt - ok
07:17:49.0129 0x25d0  [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
07:17:49.0131 0x25d0  HidBth - ok
07:17:49.0145 0x25d0  [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
07:17:49.0147 0x25d0  hidi2c - ok
07:17:49.0161 0x25d0  [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
07:17:49.0162 0x25d0  hidinterrupt - ok
07:17:49.0180 0x25d0  [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
07:17:49.0182 0x25d0  HidIr - ok
07:17:49.0203 0x25d0  [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv         C:\WINDOWS\system32\hidserv.dll
07:17:49.0205 0x25d0  hidserv - ok
07:17:49.0215 0x25d0  [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
07:17:49.0217 0x25d0  HidUsb - ok
07:17:49.0253 0x25d0  [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
07:17:49.0259 0x25d0  HomeGroupListener - ok
07:17:49.0302 0x25d0  [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
07:17:49.0312 0x25d0  HomeGroupProvider - ok
07:17:49.0423 0x25d0  [ 2A8B93A01621E100A578E83C768AFA2C, 6637D260AF180D1F200D219796FCE6D524FC6BF57C0CEEF9E1B3616E85865AD1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
07:17:49.0425 0x25d0  HP Support Assistant Service - ok
07:17:49.0442 0x25d0  [ 8B8E6BD988EAF18C1B86704BF05E5C03, 84052C116032F3DC47B0D3A7A8FC8E86DF94DDB3136C866D8FC8A3DF23209DEC ] hpdskflt        C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
07:17:49.0444 0x25d0  hpdskflt - ok
07:17:49.0509 0x25d0  [ D2946D9F020AE76E9CEF9B4A6DF838C0, C29CE594879385DA12B8EAA90B258905827B613839CCD820DE49215B68676995 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
07:17:49.0523 0x25d0  hpqwmiex - ok
07:17:49.0550 0x25d0  [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
07:17:49.0550 0x25d0  HpSAMD - ok
07:17:49.0595 0x25d0  [ 0865F178E272C682B0689F1AA269128D, F8CC23EA339F0C917C3948FF35BEFE10664CCFF8796954898E41F4EC1618E5E1 ] hpsrv           C:\WINDOWS\system32\Hpservice.exe
07:17:49.0597 0x25d0  hpsrv - ok
07:17:49.0662 0x25d0  [ CB5A8B34FA37AE53053F2D3DF05AC1E6, 2C7357079A66AE609F49900181B013E735B4A01C45DA316CD1E8698F93DE6EA8 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
07:17:49.0662 0x25d0  HPSupportSolutionsFrameworkService - ok
07:17:49.0755 0x25d0  [ E3BCE46BFD31B2D199151A72F658C988, A8633E044E243F5E097BC6658EDDF1DDF4E09C9ABB0F9BE6A3E84384092CEB5F ] HPWMISVC        c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
07:17:49.0755 0x25d0  HPWMISVC - ok
07:17:49.0880 0x25d0  [ 870DB31C41E4D04BCDDFC297F64D63D7, 1ACA966DB568E13F17E38D1F904B3FE9ED36EAAA85E0243C8B817083D7D85903 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
07:17:49.0896 0x25d0  HTTP - ok
07:17:49.0927 0x25d0  [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
07:17:49.0943 0x25d0  hwpolicy - ok
07:17:49.0943 0x25d0  [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
07:17:49.0943 0x25d0  hyperkbd - ok
07:17:49.0959 0x25d0  [ B2DC6C2F313EBB967B556B4E73A75451, B1816A0AE15705F0325F167EA76166779607D6086EC36A4A960E3BA47B4EBC4B ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
07:17:49.0959 0x25d0  HyperVideo - ok
07:17:49.0990 0x25d0  [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
07:17:49.0990 0x25d0  i8042prt - ok
07:17:50.0005 0x25d0  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
07:17:50.0005 0x25d0  iaLPSSi_GPIO - ok
07:17:50.0021 0x25d0  [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
07:17:50.0021 0x25d0  iaLPSSi_I2C - ok
07:17:50.0052 0x25d0  [ 71341219FBB4BAB7F2462C4267DAB594, 0C6B684781D27F423D20186A40D7513DD6ABC38AD286D013791B37CBF5477A55 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
07:17:50.0068 0x25d0  iaStorA - ok
07:17:50.0193 0x25d0  [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
07:17:50.0208 0x25d0  iaStorAV - ok
07:17:50.0287 0x25d0  [ B64E1D5BABD095C13A382838F9DCC77F, D8FF4E1BBA7EF5EE136CC5892C72E0774D0AAE40CD9EB3368A698DA6C078BBAA ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
07:17:50.0287 0x25d0  IAStorDataMgrSvc - ok
07:17:50.0410 0x25d0  [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
07:17:50.0419 0x25d0  iaStorV - ok
07:17:50.0442 0x25d0  [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
07:17:50.0449 0x25d0  ibbus - ok
07:17:50.0485 0x25d0  [ 88E6A429944544346EC3AE1FD7D24BCC, B6B8D51E5491C91D2FCDC77C1D82A5168B0C860252208E1B4612D8D5C19401AD ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
07:17:50.0490 0x25d0  icssvc - ok
07:17:50.0492 0x25d0  IEEtwCollectorService - ok
07:17:51.0072 0x25d0  [ 6FFC445E0D38C3C880125F2C201C9BC6, 488A427239B55394359751FCB8CBAEA8E2AE1CB2AE03C04590E7B8C80EF3F709 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
07:17:51.0259 0x25d0  igfx - ok
07:17:51.0416 0x25d0  [ AC4F72ABB5ED596A0F3D9D1EDDC4B27C, F48BFF192B523709DEF64578EA7217EED59E2C1D2627E7BD54E59DABC25B8C36 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
07:17:51.0416 0x25d0  igfxCUIService2.0.0.0 - ok
07:17:51.0509 0x25d0  [ 2C3928A343E2F29A7770BD429331DDCF, 5F376C4E7F097C410EC44E8EABA415B145939292713841AFF77702FF1BC57B61 ] ignis           C:\WINDOWS\system32\DRIVERS\ignis.sys
07:17:51.0572 0x25d0  ignis - ok
07:17:51.0619 0x25d0  [ E18725531054FE222115873AC1CCB02B, 0FC4B9D5DF77E19E4732759B848B4BCBBD44A124304FA8333BB3B7BC37E15FB8 ] ikbevent        C:\WINDOWS\system32\DRIVERS\ikbevent.sys
07:17:51.0619 0x25d0  ikbevent - ok
07:17:51.0669 0x25d0  [ 8B13F27A949D2BD4C37ADA45E9730C37, D517A18877715A2F9CCE5E081F64C9E1055354F5F7B3B42D8FE403EAE7AEB27C ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
07:17:51.0780 0x25d0  IKEEXT - ok
07:17:51.0806 0x25d0  [ 45060257BCA3D60204FEC29F6E6DE458, C9FB92FEEFC0DC5386B545A8E429D60B932360B9044A920F6F2EDD5CF3B7B5A0 ] imsevent        C:\WINDOWS\system32\DRIVERS\imsevent.sys
07:17:51.0808 0x25d0  imsevent - ok
07:17:51.0813 0x25d0  Scan was interrupted by user!
07:17:51.0813 0x25d0  Waiting for KSN requests completion. In queue: 150
07:17:52.0983 0x25d0  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.17113 ), 0x60100 ( disabled : updated )
07:17:53.0014 0x25d0  AV detected via SS2: Bitdefender Virenschutz, C:\Bitdefender\Bitdefender 2017\wscfix.exe ( 21.0.17.874 ), 0x41010 ( enabled : outofdate )
07:17:53.0030 0x25d0  FW detected via SS2: Bitdefender Firewall, C:\Bitdefender\Bitdefender 2017\wscfix.exe ( 21.0.17.874 ), 0x41010 ( enabled )
07:17:53.0139 0x25d0  ============================================================
07:17:53.0139 0x25d0  Scan finished
07:17:53.0139 0x25d0  ============================================================
07:17:53.0139 0x26e4  Detected object count: 0
07:17:53.0139 0x26e4  Actual detected object count: 0
07:18:06.0994 0x1c80  ============================================================
07:18:06.0994 0x1c80  Scan started
07:18:06.0994 0x1c80  Mode: Manual; SigCheck; TDLFS; 
07:18:06.0994 0x1c80  ============================================================
07:18:06.0994 0x1c80  KSN ping started
07:18:07.0026 0x1c80  KSN ping finished: true
07:18:09.0887 0x1c80  ================ Scan system memory ========================
07:18:09.0887 0x1c80  System memory - ok
07:18:09.0887 0x1c80  ================ Scan services =============================
07:18:09.0919 0x1c80  0251941477978733mcinstcleanup - ok
07:18:10.0170 0x1c80  [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
07:18:10.0315 0x1c80  1394ohci - ok
07:18:10.0344 0x1c80  [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
07:18:10.0355 0x1c80  3ware - ok
07:18:10.0416 0x1c80  [ F39180029723D7779C80360F9E255709, F4831FEE79AAF4DB66BF58D3F89B8A6DD8F38CD546B3C653BFF7052DDA112CC6 ] Accelerometer   C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
07:18:10.0416 0x1c80  Accelerometer - ok
07:18:10.0495 0x1c80  [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
07:18:10.0526 0x1c80  ACPI - ok
07:18:10.0526 0x1c80  [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
07:18:10.0551 0x1c80  acpiex - ok
07:18:10.0600 0x1c80  [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
07:18:10.0634 0x1c80  acpipagr - ok
07:18:10.0675 0x1c80  [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
07:18:10.0728 0x1c80  AcpiPmi - ok
07:18:10.0755 0x1c80  [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
07:18:10.0794 0x1c80  acpitime - ok
07:18:10.0931 0x1c80  [ C3D6244407B9A4FAD5C2D831A7B19F21, 0DEB9CFB91ED16B5B3F84F2BFFDF0E11392B5508D51B5C913097ED67E02CC33E ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
07:18:10.0953 0x1c80  AdobeFlashPlayerUpdateSvc - ok
07:18:11.0001 0x1c80  [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
07:18:11.0031 0x1c80  ADP80XX - ok
07:18:11.0068 0x1c80  [ A3D96563BF46FC8A0E5756B796127D14, BAD3C30714F6514D2AF725077A79FF671CC022E415786E1666C0B7C24CE3670A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
07:18:11.0084 0x1c80  AFD - ok
07:18:11.0131 0x1c80  [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
07:18:11.0162 0x1c80  agp440 - ok
07:18:11.0193 0x1c80  [ D9C5A492A28F4DBA9B2B2EA157B46B58, 52E4F9AFF7C79BBE98B83409551AD54C7D9F5F59DC7A91ACB5040D0562C3D67A ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
07:18:11.0255 0x1c80  ahcache - ok
07:18:11.0287 0x1c80  [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
07:18:11.0334 0x1c80  AJRouter - ok
07:18:11.0365 0x1c80  [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG             C:\WINDOWS\System32\alg.exe
07:18:11.0427 0x1c80  ALG - ok
07:18:11.0443 0x1c80  [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
07:18:11.0506 0x1c80  AmdK8 - ok
07:18:11.0537 0x1c80  [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
07:18:11.0568 0x1c80  AmdPPM - ok
07:18:11.0584 0x1c80  [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
07:18:11.0615 0x1c80  amdsata - ok
07:18:11.0646 0x1c80  [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
07:18:11.0662 0x1c80  amdsbs - ok
07:18:11.0677 0x1c80  [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
07:18:11.0677 0x1c80  amdxata - ok
07:18:11.0755 0x1c80  [ E4AFE476D9F758514A8A571DF6A24372, A37055A2CDB577CC8B76D4B020924A6C68D94166C1C9A64F7C0E9E16692709FC ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
07:18:12.0084 0x1c80  AppHostSvc - ok
07:18:12.0131 0x1c80  [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
07:18:12.0146 0x1c80  AppID - ok
07:18:12.0177 0x1c80  [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
07:18:12.0287 0x1c80  AppIDSvc - ok
07:18:12.0302 0x1c80  [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
07:18:12.0334 0x1c80  Appinfo - ok
07:18:12.0380 0x1c80  [ B0129B6D84EA4945F9A0F92772E1B4F0, 5AAF913AAE686D3CB1FC957B22E8FEC4E4469CE83FCBABC1A416FF53670379B7 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
07:18:12.0537 0x1c80  AppReadiness - ok
07:18:12.0615 0x1c80  [ 51C8B67103D1F5B2E063F8B8971E7328, 022D91741055B0E6051D055734996C31FCF9ABDD6C97E11D63DA159591B6381D ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
07:18:12.0803 0x1c80  AppXSvc - ok
07:18:12.0846 0x1c80  [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
07:18:12.0897 0x1c80  arcsas - ok
07:18:13.0013 0x1c80  [ BD63768F58666341BE007DAA21B3A063, 1D6112E97042E19E4D916AA22F8AEB7FCC2F36CA45F55049D77042DAF3B8847C ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
07:18:13.0022 0x1c80  aspnet_state - ok
07:18:13.0055 0x1c80  [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
07:18:13.0169 0x1c80  AsyncMac - ok
07:18:13.0199 0x1c80  [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
07:18:13.0207 0x1c80  atapi - ok
07:18:13.0295 0x1c80  [ 65944F658F651587F0679D8D92C4F05F, E095BE3E67BAA2AD2D05568C3235656A350515C06D3D22B5CE44998E580AE598 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
07:18:13.0693 0x1c80  AudioEndpointBuilder - ok
07:18:13.0928 0x1c80  [ DB550B3D42AA3DC2A4808044119C2CF9, D2833C580D01D37307BEC197AAB2A06BDC58DBD64C1DA2C8F83A26C8E0A04DCA ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
07:18:14.0021 0x1c80  Audiosrv - ok
07:18:14.0271 0x1c80  [ ED9D271CDC32C4EDCD86835372BAB74E, 639D2BCE1FD143DAE61DD5F0FE4E5C38942FCE9AEB5C7201EA431FA511CEC676 ] avc3            C:\WINDOWS\system32\DRIVERS\avc3.sys
07:18:14.0365 0x1c80  avc3 - ok
07:18:14.0568 0x1c80  [ 6917D3C8923ABF7EBC68029A1E15C1AE, 6EBFE25343026E2AE62F195CC2164566F0C8FF7ACAA8FA5B2713766C4C7877BF ] avckf           C:\WINDOWS\system32\DRIVERS\avckf.sys
07:18:14.0600 0x1c80  avckf - ok
07:18:14.0631 0x1c80  [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
07:18:14.0771 0x1c80  AxInstSV - ok
07:18:14.0850 0x1c80  [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
07:18:14.0865 0x1c80  b06bdrv - ok
07:18:14.0912 0x1c80  [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
07:18:15.0029 0x1c80  BasicDisplay - ok
07:18:15.0087 0x1c80  [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
07:18:15.0161 0x1c80  BasicRender - ok
07:18:15.0191 0x1c80  [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
07:18:15.0197 0x1c80  bcmfn2 - ok
07:18:15.0301 0x1c80  [ 4B190ACAE90EC79AD4D43EFCD3743DA0, 9D5187D4E1DF1672DEA2EF5C910FCA08BD8ED0573A55DF774E5300312ED87E05 ] bdelam          C:\WINDOWS\system32\drivers\bdelam.sys
07:18:15.0312 0x1c80  bdelam - ok
07:18:15.0358 0x1c80  [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
07:18:15.0593 0x1c80  BDESVC - ok
07:18:15.0804 0x1c80  [ 14F686FA27C2914128031504B70D2B5E, BED77F4A6DC8B30ADB698FBCC00153D924310188EFBE22ADD2BAA3321C746556 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
07:18:15.0813 0x1c80  bdfwfpf - ok
07:18:15.0871 0x1c80  [ D8FAF7CFBC81E5E15CA7A7EC8EE1B409, 75E60DF2147DFB109E628FDF80EB1BFA5360E5935BB9237B67053588F906E1B1 ] BDVEDISK        C:\WINDOWS\system32\DRIVERS\bdvedisk.sys
07:18:15.0879 0x1c80  BDVEDISK - ok
07:18:15.0918 0x1c80  [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
07:18:15.0975 0x1c80  Beep - ok
07:18:16.0013 0x1c80  [ 41E6CD314C0090E483952C8170CA6CC1, E002964FA760B873FDDBF1388875FC8DA6DAF3587D1160C7A4D1D947BCADC1B7 ] BFE             C:\WINDOWS\System32\bfe.dll
07:18:16.0097 0x1c80  BFE - ok
07:18:16.0157 0x1c80  [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS            C:\WINDOWS\System32\qmgr.dll
07:18:16.0267 0x1c80  BITS - ok
07:18:16.0298 0x1c80  [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
07:18:16.0345 0x1c80  bowser - ok
07:18:16.0407 0x1c80  [ C95ABE2794B113A471D0D0C5EDCECD76, E3FCB2D89F0153A2926FC7385ED071D803EBAD57D2414059DD30C41A738E66C0 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
07:18:16.0563 0x1c80  BrokerInfrastructure - ok
07:18:16.0595 0x1c80  [ B88731761FF66380303BEE550C5ED5B9, 8DB89CEDA511E199527CC7682262D80C7EEE77F92C76A6F9291BC24D1DC31318 ] Browser         C:\WINDOWS\System32\browser.dll
07:18:16.0673 0x1c80  Browser - ok
07:18:16.0720 0x1c80  [ 23146B48025E0C873FF10931F181589D, D55736C61A875551671981F76F8BAEF37560D8994EC17FBFFCDC0DB5206E8E65 ] BthA2DP         C:\WINDOWS\system32\drivers\BthA2DP.sys
07:18:16.0817 0x1c80  BthA2DP - ok
07:18:16.0864 0x1c80  [ 20EE9320D385FE575E13189606F135D7, 4A61918D7DAF723527F84F3DB950CC601D7C9EA92BFBA880B6ECE8B5DD6EE247 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
07:18:16.0942 0x1c80  BthAvrcpTg - ok
07:18:16.0973 0x1c80  [ 74C9D52F3F594529465E18B2BFF80487, F1ECD8B730AD8B90673735FD6D2D9F6F0754F8BAB7135B16A41128145D5F9377 ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
07:18:17.0144 0x1c80  BthEnum - ok
07:18:17.0160 0x1c80  [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
07:18:17.0269 0x1c80  BthHFEnum - ok
07:18:17.0269 0x1c80  [ DF41E4863583CCF89D60B3C8E71F0B24, A6C0A9687CA4EADCF697A29AE2B671FB902FA5C417AF3A5A597835DE68F17B12 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
07:18:17.0457 0x1c80  bthhfhid - detected UnsignedFile.Multi.Generic ( 1 )
07:18:17.0457 0x1c80  Detect skipped due to KSN trusted
07:18:17.0457 0x1c80  bthhfhid - ok
07:18:17.0488 0x1c80  [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
07:18:17.0613 0x1c80  BthHFSrv - ok
07:18:17.0644 0x1c80  [ 10C7E03E6DF231F26136C5C7BADEF3FC, F1712E1D95C7443613482451564C91D333D3F9B772F8954939E23247CAE65C35 ] BthLEEnum       C:\WINDOWS\System32\drivers\BthLEEnum.sys
07:18:17.0691 0x1c80  BthLEEnum - ok
07:18:17.0722 0x1c80  [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
07:18:17.0753 0x1c80  BTHMODEM - ok
07:18:17.0753 0x1c80  [ 38C97371F058E889F730BF35530732F4, 7CD16DF9C51D40CF80392E6DF444D6F5546B0E8B6A6DAC6DFD70BB45E014FA27 ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
07:18:17.0800 0x1c80  BthPan - ok
07:18:17.0832 0x1c80  [ FCC211B0F46D831506D0D76539203899, A2609658AE36EB0FE4CFAA00684986193FEACED7BA8D869A9DF8D03312E53169 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
07:18:17.0910 0x1c80  BTHPORT - ok
07:18:17.0941 0x1c80  [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv         C:\WINDOWS\system32\bthserv.dll
07:18:17.0972 0x1c80  bthserv - ok
07:18:18.0019 0x1c80  [ 5866AE46EEF644E6DE5C95942AE419D7, 0726C0845D2BA4247AB26ACF05006F6FA96015158CD49795801BB906DA80C007 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
07:18:18.0035 0x1c80  BTHUSB - ok
07:18:18.0066 0x1c80  [ 854AF190F55E6D70EC65A85798F896E2, 6D39F9131BE93F934502BA1DB109E7AD35D3987B636F7B32F9C34823DF25746B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
07:18:18.0238 0x1c80  buttonconverter - ok
07:18:18.0238 0x1c80  [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
07:18:18.0269 0x1c80  CapImg - ok
07:18:18.0285 0x1c80  [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
07:18:18.0363 0x1c80  cdfs - ok
07:18:18.0410 0x1c80  [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
07:18:18.0488 0x1c80  CDPSvc - ok
07:18:18.0535 0x1c80  [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
07:18:18.0566 0x1c80  cdrom - ok
07:18:18.0597 0x1c80  [ B222DA754F119FC153D341594C7D1B9B, 33EB99259DCA6FD00E45E1729C4FD59E58F736205AD9BA722CDFF02258CE7F35 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
07:18:18.0660 0x1c80  CertPropSvc - ok
07:18:18.0660 0x1c80  [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
07:18:18.0707 0x1c80  circlass - ok
07:18:18.0753 0x1c80  [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
07:18:18.0769 0x1c80  CLFS - ok
07:18:18.0847 0x1c80  [ 8A77D56FC66CF8096ADC030F5702AF59, 47E271CF7499E6D37684C8D9A698A0342C035BCF812CBE7EBD54B2E8DC549155 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
07:18:18.0894 0x1c80  ClipSVC - ok
07:18:18.0910 0x1c80  [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
07:18:18.0988 0x1c80  CmBatt - ok
07:18:19.0019 0x1c80  [ 5C6B3E60C7CA9C13CC159F479EBC96F3, 0075F0131CCD58EAC42C996703AF5000664389DFFC9933D9C7D91BE3A533AE2E ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
07:18:19.0035 0x1c80  CNG - ok
07:18:19.0066 0x1c80  [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
07:18:19.0082 0x1c80  cnghwassist - ok
07:18:19.0191 0x1c80  [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
07:18:19.0207 0x1c80  CompositeBus - ok
07:18:19.0207 0x1c80  COMSysApp - ok
07:18:19.0222 0x1c80  [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
07:18:19.0300 0x1c80  condrv - ok
07:18:19.0347 0x1c80  [ CEC3788364B73240C63D6E1AD773F18D, 42C53C11AE6BABC6CC320D870EC6993E9D93CDF23351EF91335B79E9F70ED90B ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
07:18:19.0378 0x1c80  CoreMessagingRegistrar - ok
07:18:19.0628 0x1c80  [ A6B9FD89353D6005DD74485F591F2A83, 1148FDAC0C4B01E9F7C925E22F0E13CA0ECA3DB8AE13F3303E99AB03D4E7B644 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
07:18:19.0691 0x1c80  cphs - ok
07:18:19.0707 0x1c80  [ 1220E010F1ECE4CD5E4F60D169281F59, E6F4FF421C16D70ED7D7BBD8D8F0DEBD9303194113A94C22182DFA4A59BD44A8 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
07:18:19.0769 0x1c80  CryptSvc - ok
07:18:19.0785 0x1c80  [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam             C:\WINDOWS\system32\drivers\dam.sys
07:18:19.0800 0x1c80  dam - ok
07:18:19.0832 0x1c80  [ 3F4DF1BEDF0B92E750646EA7F66D8E4E, D5DF0502E71F938C25E36C59093EEDCDF5F0FC3B29DE5FC8E8E947F0EF7DA546 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
07:18:19.0925 0x1c80  DcomLaunch - ok
07:18:19.0957 0x1c80  [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
07:18:19.0988 0x1c80  DcpSvc - ok
07:18:20.0035 0x1c80  [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
07:18:20.0097 0x1c80  defragsvc - ok
07:18:20.0128 0x1c80  [ 7779B27347FC7AF13D144CD614CE85C8, 887C14523B3C48BC66F5A3009D36196CE78CF1EA12CD0904B2E63E9F4C6E7096 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
07:18:20.0207 0x1c80  DeviceAssociationService - ok
07:18:20.0238 0x1c80  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
07:18:20.0269 0x1c80  DeviceInstall - ok
07:18:20.0410 0x1c80  [ 34CA1928EDF11796AA6CD8A2BBAF2A07, B394A6163E6CA56EB21D7F469EA5861FD035745169345F28720DD3AD8ECFA405 ] DevMgmtService  C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
07:18:20.0410 0x1c80  DevMgmtService - ok
07:18:20.0441 0x1c80  [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
07:18:20.0582 0x1c80  DevQueryBroker - ok
07:18:20.0597 0x1c80  [ AF9D343C52B7E825D0AE55741A7C927F, F63DC62D2D7D0692B3F5B47E2969D24E311A3D9E217ED331D203103D9798D758 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
07:18:20.0660 0x1c80  Dfsc - ok
07:18:20.0691 0x1c80  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
07:18:20.0691 0x1c80  dg_ssudbus - ok
07:18:20.0738 0x1c80  [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
07:18:20.0847 0x1c80  Dhcp - ok
07:18:20.0941 0x1c80  [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
07:18:21.0050 0x1c80  diagnosticshub.standardcollector.service - ok
07:18:21.0113 0x1c80  [ 1E1F7F3AE61C1E2F8C917F996DF8336C, CEDBE9B9F7BC552CA9DE21A1DD642703C6880FD987603B3975DC869128015D91 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
07:18:21.0144 0x1c80  DiagTrack - ok
07:18:21.0191 0x1c80  [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk            C:\WINDOWS\system32\drivers\disk.sys
07:18:21.0207 0x1c80  disk - ok
07:18:21.0253 0x1c80  [ 1F96EBD0ABE418B5152A5123CA3B0D60, AD7DA7CE06F362A66FA78433E7FFFA0F53F8540045D3D558FE1CB9ABA4ADF0A6 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
07:18:21.0332 0x1c80  DmEnrollmentSvc - ok
07:18:21.0363 0x1c80  [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
07:18:21.0425 0x1c80  dmvsc - ok
07:18:21.0457 0x1c80  [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
07:18:21.0503 0x1c80  dmwappushservice - ok
07:18:21.0535 0x1c80  [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
07:18:21.0597 0x1c80  Dnscache - ok
07:18:21.0660 0x1c80  [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
07:18:21.0707 0x1c80  dot3svc - ok
07:18:21.0738 0x1c80  [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS             C:\WINDOWS\system32\dps.dll
07:18:21.0785 0x1c80  DPS - ok
07:18:21.0816 0x1c80  [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
07:18:21.0832 0x1c80  drmkaud - ok
07:18:21.0925 0x1c80  [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
07:18:21.0988 0x1c80  DsmSvc - ok
07:18:22.0019 0x1c80  [ 5E649D3A3A6F72B1EF062E023308D08E, FF6EFA58AD293707CC0394B747EA059F24D35A85987BBC68BABBD84DF1B3FD3A ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
07:18:22.0066 0x1c80  DsSvc - ok
07:18:22.0128 0x1c80  [ 6E99FB1F0F10CC9BDA27CA1626C0E4AD, 09DA2AB3E0B1E8E6EA68115DBCA7BE110DDEA8722673D95A6DCA690A7EE18127 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
07:18:22.0222 0x1c80  DXGKrnl - ok
07:18:22.0253 0x1c80  [ 32A22D08054D049DAF160561555B1979, F7FCB7AAAFB319D2A11B6181DB9ACAB0D6B01EC7703452008DE806AC66069219 ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
07:18:22.0316 0x1c80  Eaphost - ok
07:18:22.0566 0x1c80  [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
07:18:22.0644 0x1c80  ebdrv - ok
07:18:22.0753 0x1c80  [ BA6613AD1345BA9250BBE3C2425CA55E, CA176B32589AE38D689F8730856CF10F4BD63CDA04BDC17A700D02D32C2AA3E9 ] EFS             C:\WINDOWS\System32\lsass.exe
07:18:22.0785 0x1c80  EFS - ok
07:18:22.0816 0x1c80  [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
07:18:22.0816 0x1c80  EhStorClass - ok
07:18:22.0847 0x1c80  [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
07:18:22.0847 0x1c80  EhStorTcgDrv - ok
07:18:22.0894 0x1c80  [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
07:18:23.0175 0x1c80  embeddedmode - ok
07:18:23.0207 0x1c80  [ 2BC7892BBEC305CEA38E09C07F3F36F7, CB9480CEB5263C32A59F37F9DC02D1C347D7D16EDD5CFC8156530226A6A75C0C ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
07:18:23.0285 0x1c80  EntAppSvc - ok
07:18:23.0285 0x1c80  [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
07:18:23.0316 0x1c80  ErrDev - ok
07:18:23.0363 0x1c80  [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem     C:\WINDOWS\system32\es.dll
07:18:23.0510 0x1c80  EventSystem - ok
07:18:23.0557 0x1c80  [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
07:18:23.0604 0x1c80  exfat - ok
07:18:23.0635 0x1c80  [ A85D2E507558ADBCD4668E3D842409D2, 2D5A270D996AD420DA41090EFEEFCFDD9B8D7B39665D8BF77EEA0E14479A6C7C ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
07:18:23.0635 0x1c80  fastfat - ok
07:18:23.0713 0x1c80  [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
07:18:23.0791 0x1c80  Fax - ok
07:18:23.0807 0x1c80  [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
07:18:23.0838 0x1c80  fdc - ok
07:18:23.0854 0x1c80  [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
07:18:23.0869 0x1c80  fdPHost - ok
07:18:23.0900 0x1c80  [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
07:18:23.0932 0x1c80  FDResPub - ok
07:18:23.0963 0x1c80  [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
07:18:24.0010 0x1c80  fhsvc - ok
07:18:24.0041 0x1c80  [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
07:18:24.0072 0x1c80  FileCrypt - ok
07:18:24.0104 0x1c80  [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
07:18:24.0104 0x1c80  FileInfo - ok
07:18:24.0135 0x1c80  [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
07:18:24.0291 0x1c80  Filetrace - ok
07:18:24.0322 0x1c80  [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
07:18:24.0354 0x1c80  flpydisk - ok
07:18:24.0385 0x1c80  [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
07:18:24.0400 0x1c80  FltMgr - ok
07:18:24.0682 0x1c80  [ A3D3492194695FD46111740B25274EF7, E73688769023751F48084FE4FA6F0B68C57D349D21AB44E8AD3D08CD1272F74A ] FontCache       C:\WINDOWS\system32\FntCache.dll
07:18:24.0791 0x1c80  FontCache - ok
07:18:24.0932 0x1c80  [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:18:24.0947 0x1c80  FontCache3.0.0.0 - ok
07:18:25.0260 0x1c80  [ 3A5C8F2F3500833F614BB509A1270971, 8B48B9F7C194831FA003B7ABD34BA7ECB05417338A3CADDBAAB8BB58ADBDC396 ] FPLService      C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
07:18:25.0307 0x1c80  FPLService - ok
07:18:25.0479 0x1c80  [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
07:18:25.0541 0x1c80  FsDepends - ok
07:18:25.0557 0x1c80  [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
07:18:25.0572 0x1c80  Fs_Rec - ok
07:18:25.0604 0x1c80  [ F7101D3B4E00800E6CEE69F9795B7B62, FB6F7119D3977D4E8C4D2C5BA87CBE9F56F54AF5622DC0D07E042449C17C959F ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
07:18:25.0619 0x1c80  fvevol - ok
07:18:25.0666 0x1c80  [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
07:18:25.0666 0x1c80  gagp30kx - ok
07:18:25.0776 0x1c80  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
07:18:25.0791 0x1c80  GEARAspiWDM - ok
07:18:25.0854 0x1c80  [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
07:18:25.0947 0x1c80  gencounter - ok
07:18:25.0979 0x1c80  [ AE309D8BE2E7D8CCB09D2DD3CA4DAEBD, C789DBDA62248D63DDBBC70CA0E9D2959AC2BFD624D961DF34A138C4FBA96894 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
07:18:26.0025 0x1c80  genericusbfn - ok
07:18:26.0057 0x1c80  [ BDA6549A7E5255396A5CB41CE2905668, 1877F31F184AFACF24A92C4956307E40C745F36ACD8488F2DCBA0FAE2B0484AD ] GoProDeviceDetectionService C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
07:18:26.0072 0x1c80  GoProDeviceDetectionService - ok
07:18:26.0131 0x1c80  [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
07:18:26.0143 0x1c80  GPIOClx0101 - ok
07:18:26.0225 0x1c80  [ B685A9D05B5ECC3BEB664C7C460BC85C, C2CA4995A3E4AFC8A4C525584EA5F1F8A703B035ED6553F699671AA1078F4217 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
07:18:26.0341 0x1c80  gpsvc - ok
07:18:26.0372 0x1c80  [ 7BF844D362EB746BC7A6DC3F57FA3E32, C07007CF6A0A2BA953FC40A5031931131CC953A8CF3B5AFA86C8811F9C4D43C4 ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
07:18:26.0441 0x1c80  GpuEnergyDrv - ok
07:18:26.0488 0x1c80  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:18:26.0495 0x1c80  gupdate - ok
07:18:26.0523 0x1c80  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:18:26.0523 0x1c80  gupdatem - ok
07:18:26.0679 0x1c80  [ E4B7F2553A127E86E11343ED15320A99, A4EA52DF5D24EF8210192669934D3D0DD1A0E4CCAAD014D52F58D58A9D3C886A ] gzflt           C:\WINDOWS\system32\DRIVERS\gzflt.sys
07:18:26.0694 0x1c80  gzflt - ok
07:18:26.0773 0x1c80  [ 16255846494071F5D9C120360158D6EB, 58F9087772233A4F2DC11ABF2691340B6986F0A35828147F9343E90A133C00E1 ] HdAudAddService C:\WINDOWS\System32\drivers\HdAudio.sys
07:18:26.0857 0x1c80  HdAudAddService - ok
07:18:26.0878 0x1c80  [ 0915B65E73B9C73ED11243111C512A4D, F1D7A65889E6D82FE2219C4F51360444F361E78AA0E47C9F8B51774A1FF29A5F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
07:18:26.0909 0x1c80  HDAudBus - ok
07:18:26.0938 0x1c80  [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
07:18:26.0960 0x1c80  HidBatt - ok
07:18:26.0987 0x1c80  [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
07:18:27.0042 0x1c80  HidBth - ok
07:18:27.0059 0x1c80  [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
07:18:27.0083 0x1c80  hidi2c - ok
07:18:27.0109 0x1c80  [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
07:18:27.0117 0x1c80  hidinterrupt - ok
07:18:27.0139 0x1c80  [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
07:18:27.0212 0x1c80  HidIr - ok
07:18:27.0239 0x1c80  [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv         C:\WINDOWS\system32\hidserv.dll
07:18:27.0269 0x1c80  hidserv - ok
07:18:27.0285 0x1c80  [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
07:18:27.0354 0x1c80  HidUsb - ok
07:18:27.0386 0x1c80  [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
07:18:27.0457 0x1c80  HomeGroupListener - ok
07:18:27.0494 0x1c80  [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
07:18:27.0558 0x1c80  HomeGroupProvider - ok
07:18:27.0637 0x1c80  [ 2A8B93A01621E100A578E83C768AFA2C, 6637D260AF180D1F200D219796FCE6D524FC6BF57C0CEEF9E1B3616E85865AD1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
07:18:28.0010 0x1c80  HP Support Assistant Service - detected UnsignedFile.Multi.Generic ( 1 )
07:18:28.0010 0x1c80  Detect skipped due to KSN trusted
07:18:28.0010 0x1c80  HP Support Assistant Service - ok
07:18:28.0089 0x1c80  [ 8B8E6BD988EAF18C1B86704BF05E5C03, 84052C116032F3DC47B0D3A7A8FC8E86DF94DDB3136C866D8FC8A3DF23209DEC ] hpdskflt        C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
07:18:28.0089 0x1c80  hpdskflt - ok
07:18:28.0320 0x1c80  [ D2946D9F020AE76E9CEF9B4A6DF838C0, C29CE594879385DA12B8EAA90B258905827B613839CCD820DE49215B68676995 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
07:18:28.0377 0x1c80  hpqwmiex - ok
07:18:28.0416 0x1c80  [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
07:18:28.0425 0x1c80  HpSAMD - ok
07:18:28.0476 0x1c80  [ 0865F178E272C682B0689F1AA269128D, F8CC23EA339F0C917C3948FF35BEFE10664CCFF8796954898E41F4EC1618E5E1 ] hpsrv           C:\WINDOWS\system32\Hpservice.exe
07:18:28.0483 0x1c80  hpsrv - ok
07:18:28.0642 0x1c80  [ CB5A8B34FA37AE53053F2D3DF05AC1E6, 2C7357079A66AE609F49900181B013E735B4A01C45DA316CD1E8698F93DE6EA8 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
07:18:28.0674 0x1c80  HPSupportSolutionsFrameworkService - ok
07:18:28.0977 0x1c80  [ E3BCE46BFD31B2D199151A72F658C988, A8633E044E243F5E097BC6658EDDF1DDF4E09C9ABB0F9BE6A3E84384092CEB5F ] HPWMISVC        c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
07:18:29.0003 0x1c80  HPWMISVC - ok
07:18:29.0040 0x1c80  [ 870DB31C41E4D04BCDDFC297F64D63D7, 1ACA966DB568E13F17E38D1F904B3FE9ED36EAAA85E0243C8B817083D7D85903 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
07:18:29.0087 0x1c80  HTTP - ok
07:18:29.0123 0x1c80  [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
07:18:29.0131 0x1c80  hwpolicy - ok
07:18:29.0179 0x1c80  [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
07:18:29.0206 0x1c80  hyperkbd - ok
07:18:29.0227 0x1c80  [ B2DC6C2F313EBB967B556B4E73A75451, B1816A0AE15705F0325F167EA76166779607D6086EC36A4A960E3BA47B4EBC4B ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
07:18:29.0255 0x1c80  HyperVideo - ok
07:18:29.0289 0x1c80  [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
07:18:29.0357 0x1c80  i8042prt - ok
07:18:29.0382 0x1c80  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
07:18:29.0389 0x1c80  iaLPSSi_GPIO - ok
07:18:29.0419 0x1c80  [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
07:18:29.0427 0x1c80  iaLPSSi_I2C - ok
07:18:29.0511 0x1c80  [ 71341219FBB4BAB7F2462C4267DAB594, 0C6B684781D27F423D20186A40D7513DD6ABC38AD286D013791B37CBF5477A55 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
07:18:29.0529 0x1c80  iaStorA - ok
07:18:29.0558 0x1c80  [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
07:18:29.0573 0x1c80  iaStorAV - ok
07:18:29.0659 0x1c80  [ B64E1D5BABD095C13A382838F9DCC77F, D8FF4E1BBA7EF5EE136CC5892C72E0774D0AAE40CD9EB3368A698DA6C078BBAA ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
07:18:29.0667 0x1c80  IAStorDataMgrSvc - ok
07:18:29.0787 0x1c80  [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
07:18:29.0802 0x1c80  iaStorV - ok
07:18:29.0865 0x1c80  [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
07:18:29.0881 0x1c80  ibbus - ok
07:18:29.0944 0x1c80  [ 88E6A429944544346EC3AE1FD7D24BCC, B6B8D51E5491C91D2FCDC77C1D82A5168B0C860252208E1B4612D8D5C19401AD ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
07:18:30.0284 0x1c80  icssvc - ok
07:18:30.0287 0x1c80  IEEtwCollectorService - ok
07:18:30.0650 0x1c80  [ 6FFC445E0D38C3C880125F2C201C9BC6, 488A427239B55394359751FCB8CBAEA8E2AE1CB2AE03C04590E7B8C80EF3F709 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
07:18:30.0767 0x1c80  igfx - ok
07:18:30.0819 0x1c80  [ AC4F72ABB5ED596A0F3D9D1EDDC4B27C, F48BFF192B523709DEF64578EA7217EED59E2C1D2627E7BD54E59DABC25B8C36 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
07:18:30.0832 0x1c80  igfxCUIService2.0.0.0 - ok
07:18:30.0882 0x1c80  [ 2C3928A343E2F29A7770BD429331DDCF, 5F376C4E7F097C410EC44E8EABA415B145939292713841AFF77702FF1BC57B61 ] ignis           C:\WINDOWS\system32\DRIVERS\ignis.sys
07:18:30.0908 0x1c80  ignis - ok
07:18:30.0930 0x1c80  [ E18725531054FE222115873AC1CCB02B, 0FC4B9D5DF77E19E4732759B848B4BCBBD44A124304FA8333BB3B7BC37E15FB8 ] ikbevent        C:\WINDOWS\system32\DRIVERS\ikbevent.sys
07:18:30.0937 0x1c80  ikbevent - ok
07:18:31.0015 0x1c80  [ 8B13F27A949D2BD4C37ADA45E9730C37, D517A18877715A2F9CCE5E081F64C9E1055354F5F7B3B42D8FE403EAE7AEB27C ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
07:18:31.0062 0x1c80  IKEEXT - ok
07:18:31.0062 0x1c80  [ 45060257BCA3D60204FEC29F6E6DE458, C9FB92FEEFC0DC5386B545A8E429D60B932360B9044A920F6F2EDD5CF3B7B5A0 ] imsevent        C:\WINDOWS\system32\DRIVERS\imsevent.sys
07:18:31.0062 0x1c80  imsevent - ok
07:18:31.0093 0x1c80  [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
07:18:31.0109 0x1c80  intaud_WaveExtensible - ok
07:18:31.0172 0x1c80  [ C6128F2E3DC6156C6F8828F9F1B96010, 612C1191AFB8F69BA5634E8C52BDDE608F57D98FA4C76C5A337676A5F1E8191D ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
07:18:31.0372 0x1c80  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
07:18:31.0428 0x1c80  Detect skipped due to KSN trusted
07:18:31.0428 0x1c80  Intel(R) Capability Licensing Service Interface - ok
07:18:31.0484 0x1c80  [ 729AB4F0608E95EFF8FDEF23596283E2, 62A2091FF440C65505AB3E38436A86D9B0978BCB9485960EFCE0C5CBC8E06201 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
07:18:31.0516 0x1c80  Intel(R) Capability Licensing Service TCP IP Interface - ok
07:18:31.0755 0x1c80  [ 6D37299FC92A009D841A10AF60B751C0, E9F040FDD50E198EF35306762BDA69A556CD96AF00841CC20091CFFA897A8AD4 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
07:18:31.0793 0x1c80  Intel(R) ME Service - ok
07:18:31.0806 0x1c80  [ 498759139F71142888CF7EFA1ABE18C8, 9CD0CD748B143F947B4DEDE39344A8C284717CC8AC97E25827EB73CF10831419 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
07:18:31.0815 0x1c80  intelide - ok
07:18:31.0829 0x1c80  [ DC270DDCDDC2EF65D484A65CC5166222, A88BEAD819ABEFE28B6F9A10586ADCB0EE2A5ED9273F176E9313750609C7892F ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
07:18:31.0838 0x1c80  intelpep - ok
07:18:31.0856 0x1c80  [ B4D9C777762B1F7356958B9C0AA93BEB, F11B07FE939A107AB4EED4857854DF269C2D86A80C8507C8B1E95F7805975EDB ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
07:18:31.0954 0x1c80  intelppm - ok
07:18:32.0007 0x1c80  [ 22BD83268B80A8C89AAC0BDF46E4EB5D, E7DC0C2E4104B51EA545BA8D0CFF11FD6A15BFD8EE16E546E8FC220853402CB3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
07:18:32.0070 0x1c80  IoQos - ok
07:18:32.0091 0x1c80  [ A49E47A6E1429123F46A7CA9C05AEFC1, FFD68CA46DFAA4954FD76145808E2C74BDC34FFD6979BB3FB6A3EE4DC33CDC78 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
07:18:32.0185 0x1c80  IpFilterDriver - ok
07:18:32.0255 0x1c80  [ 7B9DBA4BA37C0964D8B90B4DFE505FDF, DA5399E4B086A2D7EFFAB78DF43F794F5CC65BC31FABD48F47EC8EF2B2C4CE93 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
07:18:32.0339 0x1c80  iphlpsvc - ok
07:18:32.0355 0x1c80  [ E0C276985AF968CE295B8E09C121321F, 07B54165E80D4254C29A6CF00CC634E70F190EF0EB8EEF73EC14F38B841087A5 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
07:18:32.0412 0x1c80  IPMIDRV - ok
07:18:32.0433 0x1c80  [ 5D3744E6FDEC1A6FB3FA9B1DD4AF0694, 209BE9FC25C8BF8CE058B7E993B6A902B881380DADC69F5208733077DA7F4382 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
07:18:32.0462 0x1c80  IPNAT - ok
07:18:32.0512 0x1c80  [ 2208D673C5D4B22EB0235EA1EC6269CC, 3E73032D67B3B740E11CEA0748CDFFBE35619CBF1AC1C3D86EF089CA326D7918 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
07:18:32.0547 0x1c80  iPod Service - ok
07:18:32.0554 0x1c80  [ B18202D72C0EF4B53CEC6F59E3E1B955, 6DA244E6485372C16CF0B38838DC90B48079A85F5D22B0F2F197C8DA37F0A293 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
07:18:32.0591 0x1c80  IRENUM - ok
07:18:32.0595 0x1c80  [ CD04CBCCCB4C0E4BB06B98E0F45C888A, 106B3E823C188BD14328F2BEA28559D2F637C270064B2FD214522FAC4E616F4C ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
07:18:32.0610 0x1c80  isapnp - ok
07:18:32.0626 0x1c80  [ 5D90E942C94B20E0F321015C0ABF3EEA, 4110551B172D4A5524DD857D7CB65FAF2594310BE7883D5641BC0DF5EF49C82C ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
07:18:32.0642 0x1c80  iScsiPrt - ok
07:18:32.0689 0x1c80  [ 4EE2423C38F43D37F8497A672FD10BDC, 031C5272DD28809255CF4FA8E6DE45DBFBD9A363BBD5156D0AEE0787C4297980 ] ISCT            C:\WINDOWS\System32\drivers\ISCTD64.sys
07:18:32.0689 0x1c80  ISCT - ok
07:18:32.0736 0x1c80  [ 3DD3B19BB2981F459482D664DA9C7F16, BCA3AAE5A5C4DF04B2C5776BF1E2E805107BDD504CA4B725C3EDAF862DCCDF11 ] ISCTAgent       C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
07:18:32.0751 0x1c80  ISCTAgent - ok
07:18:32.0907 0x1c80  [ EE03564B7FAFE2E44EDA33D52E83B4A3, 53C917EEC92B813EB0C86B225E9887C9CDFDD7708AEA71BFAC0A3039E26D7BEB ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
07:18:32.0954 0x1c80  iwdbus - ok
07:18:32.0985 0x1c80  [ 7B207A14735265EDED1BAE4792CB525D, 608BA66030324469EDBCEBF85358AB3F14256C70BCE9F17CABA2D27BEB7361DF ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
07:18:33.0001 0x1c80  jhi_service - ok
07:18:33.0118 0x1c80  [ 4192DFE6CA143C0AD8AF42C51A82BECA, 31FB3A261D0D5241CC87EF7DFF8BFC1A1EACE8CEC42138918EC5958DAEE100CD ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
07:18:33.0125 0x1c80  kbdclass - ok
07:18:33.0141 0x1c80  [ B63C0DB341DCB46CF7AA259333A737DD, F1B43BA68707F3F99CD31AB2035F5E86CD967AE4E5393928C69861785E960872 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
07:18:33.0156 0x1c80  kbdhid - ok
07:18:33.0391 0x1c80  [ 53C79A7FABDAAFD11EAB31963FB2CED7, 357418645DDCEFA5546AE78EDCAE86D50928710CA7A3F65F01CF721AADA36623 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
07:18:33.0453 0x1c80  kdnic - ok
07:18:33.0453 0x1c80  [ BA6613AD1345BA9250BBE3C2425CA55E, CA176B32589AE38D689F8730856CF10F4BD63CDA04BDC17A700D02D32C2AA3E9 ] KeyIso          C:\WINDOWS\system32\lsass.exe
07:18:33.0469 0x1c80  KeyIso - ok
07:18:33.0547 0x1c80  [ EDB81E910FC08DB0A02289D9EC7E4058, 75FA2607F235E6024679B0D99A4B5E197AA307DECAC58EA61DB94C582A3469AC ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
07:18:33.0594 0x1c80  KSecDD - ok
07:18:33.0625 0x1c80  [ FE2DCBAD8EB963C2EE25DF8232ABB0B1, F4345D409E46B21B5901B38372BEDE78693866C7DC1217CEC420D182D5AA4DE6 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
07:18:33.0641 0x1c80  KSecPkg - ok
         

Alt 01.11.2016, 07:29   #5
Sebow
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



[CODE]

Code:
ATTFilter
07:18:33.0683 0x1c80  [ 503597D9B72DBD9998F722F12A51ACFC, 9B3585282191163AA70243BAD921ED8725A98454E0D3879E0F671E0E4F56AB4F ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
07:18:33.0707 0x1c80  ksthunk - ok
07:18:33.0754 0x1c80  [ 7FFB46A87F17AB17ED5B710DD23F3990, 42D84BB6FAB8B40758B973BF5DE1F67CF87E4BC2D444FF87A541A27E30099BB0 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
07:18:33.0817 0x1c80  KtmRm - ok
07:18:33.0863 0x1c80  [ C529DA0AD5A21878E318801B024AF8E7, A14E8ADCA33C37B1D256CB4926A19F56D2D19B94EDF314A4ED34A8B5AB62CA5A ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
07:18:33.0942 0x1c80  LanmanServer - ok
07:18:33.0973 0x1c80  [ D6D9F4CAFD3F1A7E30AD02E508552CD2, F0D225E5951CFE1D8349F634CC91BDD5B3F9DCF6233CCB965E99BFEAFE642265 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
07:18:34.0082 0x1c80  LanmanWorkstation - ok
07:18:34.0113 0x1c80  [ 24881F16D2829764681F5FAE7B86D7D3, 290348CFAF3165847E4B53965D22E9D417EE20FFD23293B5C1855C57E6328599 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
07:18:34.0145 0x1c80  lfsvc - ok
07:18:34.0160 0x1c80  [ 6ED675774BDC3735AB6DA12D29F825CF, 4317C7CF491F4E806975E7A973CFF11CFEE9E94730DDABCC67C3D693691DDDE5 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
07:18:34.0192 0x1c80  LicenseManager - ok
07:18:34.0207 0x1c80  [ DB789F57CE94C827FBFF709CA5ABD29E, 4CA4DD079A63649C36F76A31C4081F11F5CF6574AC573B63EF930DB19B1D1C95 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
07:18:34.0238 0x1c80  lltdio - ok
07:18:34.0270 0x1c80  [ FECBC6C4981772E5D0F517B34A5496EE, 15DB097BFB221B91E580E5CD1DD6B34A9A2C78A1A6FCE4162A855BB4AFE673E9 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
07:18:34.0301 0x1c80  lltdsvc - ok
07:18:34.0348 0x1c80  [ 24C87BDC66AB192FEB273BEE5FD5AA38, BFAAE1F2450DEBD1A14877C046C6EBA91014DB0B5D0FB95EC14CB714B773B3C0 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
07:18:34.0426 0x1c80  lmhosts - ok
07:18:34.0473 0x1c80  [ A31FE15F4556AA5BA516E5C408E952CF, 42813AB1F792563EA0FD240F92579C7BB8549C5FBF296E8ECAABDC549B9DDE22 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
07:18:34.0488 0x1c80  LMS - ok
07:18:34.0582 0x1c80  [ 3BB39166E446D456C277C17DFEA3DAC6, 1A08E1D017BBCE91E508D876835FA7AD2DA0859A8CFE8F8F31B4F12B48E2573D ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
07:18:34.0629 0x1c80  LSI_SAS - ok
07:18:34.0660 0x1c80  [ 25CF625E46307A5D6674C8DFA1A289AA, 1D00EB70B6B0157013A7C15EF194F51B8596612066EF31B337D8134D6BD0BBBE ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
07:18:34.0692 0x1c80  LSI_SAS2i - ok
07:18:34.0738 0x1c80  [ 722C52B12EA4C198D56994934C9DDAB6, 5F4AB818251C770821BAF41C19B1C483A31CCC28EB96F2084D4092E33EAF906B ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
07:18:34.0770 0x1c80  LSI_SAS3i - ok
07:18:34.0785 0x1c80  [ 3371FF1D5D745C3306C6A2C4E99C25A9, DD6F0099001501BAEDDF8411FBCD930BD6472662D209199249203CB2FDAA23FB ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
07:18:34.0785 0x1c80  LSI_SSS - ok
07:18:34.0832 0x1c80  [ E2EEF074F5260378F9AAFBCD592319A3, DC56674A08FA03FA7AF7DD8B3CC55D8324D1CB51546092A990A935FF9AB48A3C ] LSM             C:\WINDOWS\System32\lsm.dll
07:18:34.0926 0x1c80  LSM - ok
07:18:34.0957 0x1c80  [ C692B9C0352315417CF49FFA664957A3, C2D4F9A936B809889F7C51FE48214A1923175913A6C5D0B72D3BA469214B5174 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
07:18:34.0988 0x1c80  luafv - ok
07:18:35.0020 0x1c80  [ B24F25BA5BAC91F1E603AFA90D65EAAB, BE08668CC5B2179FEA8E30D6B3D1565D5E587ED436E92546540BA699F232271D ] MapsBroker      C:\WINDOWS\System32\moshost.dll
07:18:35.0067 0x1c80  MapsBroker - ok
07:18:35.0098 0x1c80  [ B2ED9A7A5587A128A0EFD0DBE7662E95, 63070AAFD44E3CD2A4B262DF27222B103455A4D8C2E45914502BFA03D84D32C9 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
07:18:35.0098 0x1c80  megasas - ok
07:18:35.0129 0x1c80  [ 083F71488E6780A67290273180256EA5, 5F43CE66F5A48850BABB70F4D219FDD002F9BC2B2F0E58E66FE2C492AA335E50 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
07:18:35.0160 0x1c80  megasr - ok
07:18:35.0176 0x1c80  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
07:18:35.0192 0x1c80  MEIx64 - ok
07:18:35.0207 0x1c80  [ 5907A10D46747A2B6DBFD6A198254DC2, 6C283E9DC75C7ABFD270D6FABBF4F54628A1786E7CE2F603BF664CBB9E4FE583 ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
07:18:35.0238 0x1c80  mlx4_bus - ok
07:18:35.0273 0x1c80  [ 91ED6F0EDF4158D63C52194F17D4F42E, ACF543978E253650C167C6C370699AEA7340EBCECF7CAB904CBDD334D1BD6928 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
07:18:35.0322 0x1c80  MMCSS - ok
07:18:35.0338 0x1c80  [ 2C4CC9F6ADBED5A6D131FDB97A78FF68, 04DC76E3F0959C0A9B00DF2133B075194FB7DCBD76832B9D25B0E37223D300DC ] Modem           C:\WINDOWS\system32\drivers\modem.sys
07:18:35.0385 0x1c80  Modem - ok
07:18:35.0401 0x1c80  [ D8DB13529C8AD6FBAF8E2F382024374F, 13025035C479E2EF76EDCB90D83BE65B4ADD9F7000AD31FEAD628D5DDFE69158 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
07:18:35.0464 0x1c80  monitor - ok
07:18:35.0477 0x1c80  [ 2DAAF1EE1C30F2FCF59851A64ADA0422, 08CD801E63E2862DE058CD732C3DB3D87B1A2898732365440E3F8919932E96FC ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
07:18:35.0486 0x1c80  mouclass - ok
07:18:35.0543 0x1c80  [ D30FE074503283829ED194BCAE6239C3, A3A127381ECC798417D01F6B8A1894EED7D71989047BC4D1D74D0E7C8394AD65 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
07:18:35.0657 0x1c80  mouhid - ok
07:18:35.0701 0x1c80  [ D5EC9413527B286CFEEB0294C53ABB95, B094C611F5A7E33D2F8667B2A4D6260E1D57BD135867F984EE5B674C7EE72B95 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
07:18:35.0880 0x1c80  mountmgr - ok
07:18:35.0959 0x1c80  [ 989A1BBD9C49B107B4A47D06E6827A69, 62D90B22AE13AC84324DFD5FEBA595813AD07469B7FEC41380CE223D93020CCA ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
07:18:36.0105 0x1c80  mpsdrv - ok
07:18:36.0261 0x1c80  [ A655EB90B78C22B7F24E032FC2D1CECD, DF0DF92DEA0D697DCB2ED21FB9C5F8008332E899406905B1A2EFD16B44406B66 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
07:18:36.0385 0x1c80  MpsSvc - ok
07:18:36.0496 0x1c80  [ 7A6C4AD2402E69B00F193C12AA6AF5F6, F38C0A41576F86D0129B07C00ACB369A200816A26A0B122B38462A3AAE0032B2 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
07:18:36.0622 0x1c80  MRxDAV - ok
07:18:36.0661 0x1c80  [ 059C5C8D8F80EB88170B28605EFC7788, 0645B645FD245C1EE45CD40601EA4C6354A73827A1B6ED238B52ABFA265E52B5 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
07:18:36.0706 0x1c80  mrxsmb - ok
07:18:36.0744 0x1c80  [ 520E1075E2718D4FBD04ACF39AA69309, 4102340687B3A41B8799B8F6DBBEFA2A05D25FE866E6E424B97CC16CD0E8F1C7 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
07:18:36.0771 0x1c80  mrxsmb10 - ok
07:18:36.0805 0x1c80  [ C4D9DF6CD2C2132D0C8DD464047BBEF8, B0156E89B1DC34D2077E807A7B2CA670EE208C2C3496888CEFC5B294DE14A535 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
07:18:36.0820 0x1c80  mrxsmb20 - ok
07:18:36.0842 0x1c80  [ E94821F71F63033F78D8A6284A820890, 360C7976D1C4803709BA3245BE59F3CE7FC84EC48A6E12C63AD3100696F96444 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
07:18:36.0894 0x1c80  MsBridge - ok
07:18:36.0923 0x1c80  [ 61AC258EFB8B6E91FFE06A47342A2816, 13BF3A57756AD2F9D84164E9235CAB1E8932A2D3133902F7D73220EF60AAC10F ] MSDTC           C:\WINDOWS\System32\msdtc.exe
07:18:36.0947 0x1c80  MSDTC - ok
07:18:36.0990 0x1c80  [ 7C55F1751CAC199680D4489D1EE46544, 967EC8137D321F6139C3382D19A338FD97A3023EB654747AC57C2008BE4AF677 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
07:18:37.0011 0x1c80  Msfs - ok
07:18:37.0033 0x1c80  [ 988588C16A53C2581488C15FF18934BF, F021FD31163CB5C7012CF96EF642C5E551708C835039075268F4CBED002D441D ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
07:18:37.0059 0x1c80  msgpiowin32 - ok
07:18:37.0077 0x1c80  [ 09622DBC24D0178F15DB8461BB6970DF, C0B3F9B2219AAF87E417EE9FF54C64B8AD9944E101EA79B5DC81D99E8C2ECF30 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
07:18:37.0106 0x1c80  mshidkmdf - ok
07:18:37.0124 0x1c80  [ 34BB07495C0159BE4189841E16F3BC2F, 264B5735D9A68C85BEDE363D4C0AE1FCC381B39EA884B4BAEE185EB8A873184A ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
07:18:37.0152 0x1c80  mshidumdf - ok
07:18:37.0171 0x1c80  [ 7BF3F0DA362C053918F5F2EC43CE39E2, AA773FA3F83C0C572160D3D0286A697DC628FF4F3655EF21D01C6D1B7BE5DF1C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
07:18:37.0180 0x1c80  msisadrv - ok
07:18:37.0207 0x1c80  [ 669DA2006C0B9D882D2014617E1E88F5, 090F558818806CAEF6C81D369F8BFFE4A8240295EF37CAA7102A18F4CD20D868 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
07:18:37.0222 0x1c80  MSiSCSI - ok
07:18:37.0224 0x1c80  msiserver - ok
07:18:37.0248 0x1c80  [ B2D0FD21FE67D6434769CC6F7A7883CA, B2368BD72952C6EE6DAF1AA006DF575A3019E4721BEFB108D3DF1B9E07B2BC5D ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
07:18:37.0263 0x1c80  MSKSSRV - ok
07:18:37.0295 0x1c80  [ FB3801F176376286A3F8F20FFB8CDC53, EEF89081665B9BBA93AE9F5912C40C1698E8BA8DBBCCC3BBE0BAB5A86B7E05D4 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
07:18:37.0326 0x1c80  MsLldp - ok
07:18:37.0342 0x1c80  [ 8CBDF0E7A6CD824352F37A682A33DF7E, 4567FF4C73648FF26EA68EAE2B524B767099789086C158875C97768C77B81359 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
07:18:37.0357 0x1c80  MSPCLOCK - ok
07:18:37.0357 0x1c80  [ 33E5B6261D69ACD4948A5C64B9D8F29F, 1D32340640312372E52E59AFB5DB872E6F9DFE3AC16B56F9D928AE230DA02B8A ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
07:18:37.0388 0x1c80  MSPQM - ok
07:18:37.0420 0x1c80  [ 557DF8C0DBBBF518AC395C6EB1B179AE, B294B5A7882C0C60D91FB853FC87505B6E7638D25E360FDAE002AEBB714ED471 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
07:18:37.0435 0x1c80  MsRPC - ok
07:18:37.0467 0x1c80  [ 0A29AFA668F5DD50482A98ECE70C77A7, 4C1F23B062361D97B1C8D864AB227E5F398F774A99B5E60A1149A4F78D5BEC20 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
07:18:37.0498 0x1c80  mssmbios - ok
07:18:37.0513 0x1c80  [ 30CE30877FD5BFADE74FA27D7829BF89, B5EA1F8C91E75722DB1E3E2172C8607FEDBF35BDC4141258A3E6D29D8B0E193B ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
07:18:37.0576 0x1c80  MSTEE - ok
07:18:37.0607 0x1c80  [ 13D88C0B8A2FA001CD72D454955A6974, 19DD5C8BBD07B64F355737436BF702FFC209D84A8855D2224D3377E233D4BB34 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
07:18:37.0638 0x1c80  MTConfig - ok
07:18:37.0654 0x1c80  [ 00C7F0F06A0A48B9CDB6B3AC3BE288F0, BF469A2DDF495ACB9FEE9063C6680C95BCC8686682C9EDAE6D1893D4058E8AA6 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
07:18:37.0670 0x1c80  Mup - ok
07:18:37.0685 0x1c80  [ 8E237527CA260C71D39ED4081BDF3419, CA52DD174C756A404B1FAD3F2A70E50085C2820BF12369259F61DA649101A179 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
07:18:37.0685 0x1c80  mvumis - ok
07:18:37.0717 0x1c80  [ 51D48DE5622F2712A351AC64FA78F6AA, 5AA46632FAE164A9A1632F5243AE4D92C61C267D1146263824C1F04C7242A614 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
07:18:37.0795 0x1c80  NativeWifiP - ok
07:18:37.0842 0x1c80  [ 11BE8117653C542D264788A700AC5BFE, 87EAAC2DF62BB26619DA72950F5EE41DCA1DBDF93F098647F9D200D588F14003 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
07:18:37.0888 0x1c80  NcaSvc - ok
07:18:37.0904 0x1c80  [ 286C6276B2BA86F29A0F687D05466277, AC8551536F37717A0ACE4A260F5696D1276F7AC62F669E8F12AA158DD86F71A5 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
07:18:37.0967 0x1c80  NcbService - ok
07:18:37.0982 0x1c80  [ C55DA734ED2A831E0BACAAFA01CEB7FF, 9D989B03D07BBAD287B317D238691664B0694331D6A69B7A1AA3D8AB7D1323FC ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
07:18:38.0082 0x1c80  NcdAutoSetup - ok
07:18:38.0108 0x1c80  [ CF8296427834CF8BBB3EE1444C17362D, 6EFBE1F015DFFA0704C66DF5C88089DD5771E1542018E4AE98389CFF3D0B2309 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
07:18:38.0118 0x1c80  ndfltr - ok
07:18:38.0355 0x1c80  [ 616F40B897DA651221F86A1741E9609B, 22D66029726313D92FC8E074BCC51C1E1560CB5FE36DCB735E7E063EA53E299A ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
07:18:38.0596 0x1c80  NDIS - ok
07:18:38.0655 0x1c80  [ A0719D1EBA971DFC5DF5F7CC010385F8, A982487D3A74E66F3C29AAA5B46CE9A0969F07F267DDEFE58C58573573AB0024 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
07:18:38.0753 0x1c80  NdisCap - ok
07:18:38.0797 0x1c80  [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
07:18:38.0894 0x1c80  NdisImPlatform - ok
07:18:38.0930 0x1c80  [ 56F9345D1945826135FBAB7589592B1F, 6BC2A5900076B917823C7392C582A2648D0C8000F2F65D309D5B48E36D4FB4D6 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
07:18:38.0968 0x1c80  NdisTapi - ok
07:18:39.0009 0x1c80  [ AADFC340939D99E5D756E713E1D452EB, EFEFDBB2188DE82C2C5E67929861B269FD4C127D34D1DE6D0596ABC33E2C2B51 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
07:18:39.0034 0x1c80  Ndisuio - ok
07:18:39.0060 0x1c80  [ 312DFD787D99D3BF1427B0388BC04F71, C082CA1F332AD57FF2100748518D3D7B3D0F1B042F69BD7401C44B77AFE97462 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
07:18:39.0102 0x1c80  NdisVirtualBus - ok
07:18:39.0196 0x1c80  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
07:18:39.0235 0x1c80  NdisWan - ok
07:18:39.0265 0x1c80  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
07:18:39.0280 0x1c80  ndiswanlegacy - ok
07:18:39.0343 0x1c80  [ 6E98F16983C4AE8703FF9F90AB4B31DD, BB8BD5DB4B5FB31F3A257747C27CBEFA4B7837EC5C0CF3D4F408E626E4003F4C ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
07:18:39.0393 0x1c80  ndproxy - ok
07:18:39.0561 0x1c80  [ F1B7CC77F412C8D45B2DDCF76EDA4F9D, 25F2AA76E675D9BCC0B1FD47AFEC6DF2D0B47E7B1C8AF6FB27C1ED2FB902961A ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
07:18:39.0670 0x1c80  Ndu - ok
07:18:39.0819 0x1c80  [ 824FDC990A3F79069BE468A132EB6888, D09F7A9EC04E37DA504CE54EEC25C312B407B6A8B214CBB074BEB50DE420F52A ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
07:18:39.0828 0x1c80  NetBIOS - ok
07:18:39.0915 0x1c80  [ 1BD49789354B1CFE28D96DC232071A02, 199EF7CD79221455F975AE954DAABFC7F88343569CFCBBE3FFDFFCCACAB3A851 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
07:18:40.0033 0x1c80  NetBT - ok
07:18:40.0080 0x1c80  [ BA6613AD1345BA9250BBE3C2425CA55E, CA176B32589AE38D689F8730856CF10F4BD63CDA04BDC17A700D02D32C2AA3E9 ] Netlogon        C:\WINDOWS\system32\lsass.exe
07:18:40.0090 0x1c80  Netlogon - ok
07:18:40.0179 0x1c80  [ A8F708036ADD3984597A7DC9C50CF9B1, FD0ADE37504FD73341D2B0E44435078B650E4D33E3169CCDE3BF1CB0F4A3A208 ] Netman          C:\WINDOWS\System32\netman.dll
07:18:40.0355 0x1c80  Netman - ok
07:18:40.0400 0x1c80  [ BBE9D72EFC7BD66B28309C3607683DBA, FC372EFBC650CE0BDB117858D840A1FB361947B1C67D1DD16BABA95D0286856A ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
07:18:40.0461 0x1c80  netprofm - ok
07:18:40.0603 0x1c80  [ 152E946E60EEF45088D7D1E74D9F1779, A0330BBE51E900F5956BA92BD04C54CC6CB57A611AF1A3FF2454FEB852E105BA ] netr28x         C:\WINDOWS\system32\DRIVERS\netr28x.sys
07:18:40.0799 0x1c80  netr28x - ok
07:18:40.0840 0x1c80  [ 32CB05D96736A0C01107F0946A6E168B, D4A4C9DF5E1B40330179379B4180E9B8BBDFD562E5F332DE61B2CAADA5D77037 ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
07:18:40.0915 0x1c80  NetSetupSvc - ok
07:18:40.0995 0x1c80  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:18:41.0011 0x1c80  NetTcpPortSharing - ok
07:18:41.0033 0x1c80  [ 46E862DA2CF8F351375EF537276B69B5, AC0FE0977E56380849DCE668AC0F5AF183AAB115ED84ADD964E390CC0BEDF6D3 ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
07:18:41.0080 0x1c80  netvsc - ok
07:18:41.0095 0x1c80  [ 88CE4AC85F36B6347C1D820FA373B998, E10B5DF8883928A2062FC6180DE4CF0DE33C68622C2E3E4E1AFC56A0682F8E75 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
07:18:41.0159 0x1c80  NgcCtnrSvc - ok
07:18:41.0174 0x1c80  [ BA6613AD1345BA9250BBE3C2425CA55E, CA176B32589AE38D689F8730856CF10F4BD63CDA04BDC17A700D02D32C2AA3E9 ] NgcSvc          C:\WINDOWS\system32\lsass.exe
07:18:41.0174 0x1c80  NgcSvc - ok
07:18:41.0237 0x1c80  [ EA1C2DAB8A63712B94897A58557B086C, 98DD7E5C84F3CDF2DAA89484892D6B439F5D14297B5243436925BEEAA0C02EE1 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
07:18:41.0393 0x1c80  NlaSvc - ok
07:18:41.0409 0x1c80  [ 41557BE174E9EC6AC703A8A4ADBC6650, 8CF6DF3FDC3C7C44B32851538A67BF86A54AB6444A424D7A20B7A9A94B4158D8 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
07:18:41.0440 0x1c80  Npfs - ok
07:18:41.0471 0x1c80  [ AC3F70FCFBCE97AA2F12BA43EE13B86E, D0AC50FB022C0F3031531CEE210D47FC3244C6FB55FAAD4AAB04081F0A21DAE4 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
07:18:41.0518 0x1c80  npsvctrig - ok
07:18:41.0534 0x1c80  [ 0AF4872D3D6FD3A030E836DAC2B3EF2D, 03EE7B6FAFC0BB5C26793BC5FF8BD1019AC96B3104688009C1E062C3F4F34D6D ] nsi             C:\WINDOWS\system32\nsisvc.dll
07:18:41.0924 0x1c80  nsi - ok
07:18:41.0987 0x1c80  [ 66A98C407085B8920DF1E6D722F1ADB8, 3FE307E4A9E41B08E0453507E50D6D0C67FA6F4245A863D90181463C749C83B5 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
07:18:42.0049 0x1c80  nsiproxy - ok
07:18:42.0150 0x1c80  [ 655A6C92FA97C95FEB1D3EBCFA70D49E, 145ED5D2A94F589C7E3055AC539EE5FEB341FB0F9CFAF7F01E36B1E104A03F02 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
07:18:42.0228 0x1c80  NTFS - ok
07:18:42.0259 0x1c80  [ 383E546EF4982262A0EF6CC2B6E9D525, 3C6C90B62E8EB094E6928C388E5081A3F73DF87B0F34F716B72EA7B6EF71FBB7 ] Null            C:\WINDOWS\system32\drivers\Null.sys
07:18:42.0291 0x1c80  Null - ok
07:18:42.0766 0x1c80  [ DF0BB2C179476D312B7BC0056CEC50A6, 64CC3201FA903E0EC9C99BE167C439C14A4C9AC2A88898B64789EEB381DB97B6 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
07:18:43.0117 0x1c80  nvlddmkm - ok
07:18:43.0174 0x1c80  [ 2328DC3622412EE112868645DA013075, 361A3D2FDE53F5EAF3068A64F7848020C62B256C3F08BE5F863544A0747DD2D6 ] nvpciflt        C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
07:18:43.0205 0x1c80  nvpciflt - ok
07:18:43.0236 0x1c80  [ 466F875F1D4C6ABB46AF28007009237C, 26F5A5579737A7CF2267F79DDE5A551149C682D5FD24663B53FCEC5AA6B448CE ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
07:18:43.0274 0x1c80  nvraid - ok
07:18:43.0308 0x1c80  [ 76F19EAE7A52CBAF7B8EC428BE6E0DA0, CF1E55D92FA32744A20AB75D466A3E05E6FACF4694F9265C41F5C27C1E7243DC ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
07:18:43.0324 0x1c80  nvstor - ok
07:18:43.0387 0x1c80  [ DFCCA437717EACA8418F47992A41B39A, E587A629B894EE6A16AC414747D492FFC6B6E9F051B40F7D25F0D4406E2FF919 ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
07:18:43.0402 0x1c80  nvsvc - ok
07:18:43.0757 0x1c80  [ AA130938A27BB80A8B6438EF83232275, 7C5A4863CD22413723C9F7658855E34088A2F89DF740531ED7986F67A30935E0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
07:18:43.0845 0x1c80  nvUpdatusService - ok
07:18:43.0876 0x1c80  [ 0D0CB77D74B38E0EC62341C19E469D8D, A05D3CC67FEEB2FD219BFAA34BF98CB3F3718042124AF28F0E9FDFB9F132DD76 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
07:18:43.0887 0x1c80  nv_agp - ok
07:18:43.0930 0x1c80  [ 40CAC4ECC95F954EE0E476D23749E5F7, 3626512ACAE4E47D200164825BE14220843CF5E0C034ABFB6CD7A49E9B124C8B ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
07:18:43.0974 0x1c80  OneSyncSvc - ok
07:18:44.0074 0x1c80  [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:18:44.0086 0x1c80  ose64 - ok
07:18:44.0340 0x1c80  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
07:18:44.0428 0x1c80  p2pimsvc - ok
07:18:44.0458 0x1c80  [ 3612CE3432E0A2BE0081E6B488ACF84C, F1A641735FD374CA293FB98FADA2C41E2033B17FECCA3B6D225D0E591AFFF413 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
07:18:44.0481 0x1c80  p2psvc - ok
07:18:44.0496 0x1c80  [ 38F1AE32339731F6E5A7281AE8042545, 308954518C45D29FC199525F0CC7FE4EA805322EC0B871DDDCBEEC15355514C8 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
07:18:44.0576 0x1c80  Parport - ok
07:18:44.0598 0x1c80  [ 707889D2F95AAE8C9DD254D8767AD908, BE7BD94728D7629F8B7567523FFB42B8979941CEA2EA03E11BFCD51CF119FC27 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
07:18:44.0622 0x1c80  partmgr - ok
07:18:44.0669 0x1c80  [ A6057E05460B5075F781E65CE5FA03D9, 301319DFC4FF808F005CF59E558DEF1F1B5FB48BC806226EE787040E8423FFB3 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
07:18:44.0690 0x1c80  PcaSvc - ok
07:18:44.0774 0x1c80  [ B580CD1FAA762E0C1C95C43BF0E58FD7, 3773223AA0EE435AB9BAD3690F9D86CD73E2D3CF39032C3582206755AD45F971 ] pci             C:\WINDOWS\system32\drivers\pci.sys
07:18:44.0834 0x1c80  pci - ok
07:18:44.0892 0x1c80  [ 3D587E4295B11B8480F7ACB09A89D718, 8C3BD62B3451E1B2E7197EDAE381785406DF86C03BEEC486602C642FDD37DBC1 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
07:18:44.0969 0x1c80  pciide - ok
07:18:45.0007 0x1c80  [ B8F07002B5F1DA23CFF979C2806B09F3, AD5C589A02BB8185AA070420BF30E78BC8BE3C6F9B0F66319A8CA05B70A5ED32 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
07:18:45.0039 0x1c80  pcmcia - ok
07:18:45.0065 0x1c80  [ FF588077D0C6AC2EA3FCBF1903CE08D0, 64BE1646FB6D8CC902B6F386255F7C0420E3C334E14DECD527DD541B43A1DCD6 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
07:18:45.0093 0x1c80  pcw - ok
07:18:45.0136 0x1c80  [ 70469C8AC4AD367295E70CFDD81B754C, 3EC6FD742C7C60363939E5343477810D751D91D32A2F24285976C08A7C4477AB ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
07:18:45.0147 0x1c80  pdc - ok
07:18:45.0214 0x1c80  [ 688F47C342E1BBC87A48AB71D316233E, CE99AB67C7E7A11AC69C2F4513AEBDACA385BA7F8CC49BE6313CE04ED404A0E7 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
07:18:45.0469 0x1c80  PEAUTH - ok
07:18:45.0500 0x1c80  [ 189265498945593D5256CFF7FEBB9665, 9CB88CC3C726BFE6EDCE8D9E4544306AACD3FB9E969E3A438D9FD533F25C1281 ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
07:18:45.0509 0x1c80  percsas2i - ok
07:18:45.0523 0x1c80  [ 9B86965114F6831A5130EFE6657B17D9, 4C5B657DB9A9F96BFD3EAFA756ED60D911EB58857C439F5FA6E495A473ED1145 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
07:18:45.0534 0x1c80  percsas3i - ok
07:18:45.0584 0x1c80  [ 8A5A52C855FB5BFEF019AE9938AEA8AE, 77CB8A09B209DB5895319BA9D073A67148926E22C47836343050DFC178AFAEEE ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
07:18:45.0690 0x1c80  PerfHost - ok
07:18:45.0721 0x1c80  [ B0BACDC36CF5D615E8DB4FF8DC269F1E, 10AC96254BD103B55656D1BAF9841615C60A6175B339F8A079F8C2743D09A03A ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
07:18:45.0758 0x1c80  PimIndexMaintenanceSvc - ok
07:18:45.0855 0x1c80  [ 82FDEC2A262728F62F2111A84CC04B16, A1FCE38D4F55F10BB9B3BFB7D9E3EF7C27D499D9C8882218C8A9A73487798188 ] pla             C:\WINDOWS\system32\pla.dll
07:18:45.0964 0x1c80  pla - ok
07:18:46.0020 0x1c80  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
07:18:46.0037 0x1c80  PlugPlay - ok
07:18:46.0065 0x1c80  [ F1E9C35A8DFD4D64382CFB9019A950F9, 24E0381C6909F9876D6DC4697DC6405FE18DF91531891B2CCA6DB0191B9C6DF4 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
07:18:46.0077 0x1c80  PNRPAutoReg - ok
07:18:46.0116 0x1c80  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
07:18:46.0170 0x1c80  PNRPsvc - ok
07:18:46.0205 0x1c80  [ 5349620E4495815D4AB48D49CFEE464F, CF9709573F07B34679E97B484AFCA53134ED7C21C86481965964DC63AC60939C ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
07:18:46.0272 0x1c80  PolicyAgent - ok
07:18:46.0290 0x1c80  [ 6390391EDFC43DD11CE9E6AADCAC20EA, C8BC222FFBB9E47489D16BB5248E0E2E594011C46CFF71F5DBCC4D5CC6788098 ] Power           C:\WINDOWS\system32\umpo.dll
07:18:46.0319 0x1c80  Power - ok
07:18:46.0358 0x1c80  [ 1433EB7908E5E1E20FFD50E4126C3484, 34D81680C8F2F2C5892FC0E0A6DFCBB241AFF493267A1FE182ED28AE9F712456 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
07:18:46.0388 0x1c80  PptpMiniport - ok
07:18:46.0652 0x1c80  [ 806B188036EF5F4111EDB471CCCBEA82, 2B8C5370076F153C54E6F3268AB537F2039F6EBA86346D291AADB3A4A87FC740 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
07:18:46.0832 0x1c80  PrintNotify - ok
07:18:46.0884 0x1c80  [ 22DE54C3974E4FD98F61D095C22C59B7, 64E78D6DEC4A28ABB0A23F2CF078459D81796EC79235AE45976ABB4F72B1D1E6 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
07:18:46.0905 0x1c80  Processor - ok
07:18:46.0985 0x1c80  [ F6ACBFD52A3BEC4B73DAE66997489101, 74E58A30B77ECD1CFAA059BC5EB6B2E352B8341F14CE8CA9095307C35EC08CAD ] ProductAgentService C:\Program Files\Bitdefender Agent\ProductAgentService.exe
07:18:47.0017 0x1c80  ProductAgentService - ok
07:18:47.0100 0x1c80  [ 44406AB6CDCA5BD1195273F07F656D9A, 7DB13FC6512C732DC39DEE52EF6A5257268309F818609E999DEC360BA4277AD4 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
07:18:47.0172 0x1c80  ProfSvc - ok
07:18:47.0193 0x1c80  [ EDD52C352CBAAAD13FD7BD5DCEA309B3, EC7D294B23FD5C309E5C4C455896937B85DC615E1B36C9F8F3BDC90E75EBF9CF ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
07:18:47.0205 0x1c80  Psched - ok
07:18:47.0279 0x1c80  [ DD3FF2053356D11C785999BBC633F3E0, E9A5B7C657F4523E5DEF7AEE7ECFCC94E911FC65F1D491BEF01239F357B8D8E0 ] QWAVE           C:\WINDOWS\system32\qwave.dll
07:18:47.0500 0x1c80  QWAVE - ok
07:18:47.0522 0x1c80  [ 51590F442C6E5D43244BA30DDB0CE79D, 9C7FD0A19753C13FD4A27EBFD60703A2414D5A2F6F451F0B32769C8D7C953980 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
07:18:47.0533 0x1c80  QWAVEdrv - ok
07:18:47.0556 0x1c80  [ E951E70019865B06126AF850BCCA2026, C590DE38C7603149AFA0271D57EEBAF956F18F50584FCF04BC2C8D8CEC5C5932 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
07:18:47.0587 0x1c80  RasAcd - ok
07:18:47.0619 0x1c80  [ 0BF8607133AE264BC3C41A5BAA5FFB7B, 9A4F6AC6013AB5C2A99BCFC2CCF161DD225DE8D85D61579655ADBF04A4383A61 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
07:18:47.0643 0x1c80  RasAgileVpn - ok
07:18:47.0671 0x1c80  [ FE0976379F9E7DB6F7945FCEB88C7E29, BA331CE55C02E86478714DA87FAC547B50D53BC7D02BCA5A64D484DED44BFAA5 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
07:18:47.0709 0x1c80  RasAuto - ok
07:18:47.0746 0x1c80  [ 2521520142F7853E39028AE6BD66E072, 7A7E18E886781B4984826C1FC4BEDABEC62D906063EE2781FD799B0097616B9F ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
07:18:47.0842 0x1c80  Rasl2tp - ok
07:18:47.0882 0x1c80  [ 9AD8FCCC95B68BC3129AA2318CE55717, 57227EBF2C1D42063B95AC92F380BAA95E0C6F2E6556F887AACBF63A0482FD24 ] RasMan          C:\WINDOWS\System32\rasmans.dll
07:18:47.0987 0x1c80  RasMan - ok
07:18:48.0000 0x1c80  [ E5FA41160F5A3D78D8F7765E5C5F6BB0, 31BA423FFFC3206717DC34B482149421EE28B27A4A3BA2DC78C3B3A9EE0C1365 ] RasPppoe        C:\WINDOWS\System32\drivers\raspppoe.sys
07:18:48.0032 0x1c80  RasPppoe - ok
07:18:48.0065 0x1c80  [ DF0834AE921E633E05D1FDC55C318957, 851A00961224DACBEF9DA427122F6B4B73BB99849D5ECB55DBBD311B2EA84C33 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
07:18:48.0097 0x1c80  RasSstp - ok
07:18:48.0184 0x1c80  [ FC9B7AC6E2B837EF7CD6C64F7068D41D, 9B0DD842033E82BC7EE80416A62B084BF5200923EB7A6C80415BB28004E9B5E3 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
07:18:48.0295 0x1c80  rdbss - ok
07:18:48.0312 0x1c80  [ FB7375657F8A5932C35EAA45E9B4B416, 99594708BFD6DC9F8CECBF092058D4D0D4F1BC3204E86F9FDAD5207ED5ECF194 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
07:18:48.0342 0x1c80  rdpbus - ok
07:18:48.0371 0x1c80  [ A32AED8C644734B283A7C9D08D76064D, A12F67C57E43B6A2FE6449EA3822B1108FE70C66AF9911798777F85D760E384C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
07:18:48.0416 0x1c80  RDPDR - ok
07:18:48.0449 0x1c80  [ 37CC7E41243EFBB4FBC0510E5CA32A02, 634E2F81D61F937F30E5ECE01FB581E090C6DA073EF7B1A3F6083ECAF363CB46 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
07:18:48.0457 0x1c80  RdpVideoMiniport - ok
07:18:48.0479 0x1c80  [ DAF957B25A35757E9D814611FAE8FE3B, 5244A427B2DEB5349B9F336A4A39A6834A6E8118A8EDA00738C6CE09F2452C24 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
07:18:48.0512 0x1c80  rdyboost - ok
07:18:48.0552 0x1c80  [ 2C72E029C153D25325CA182A669E4ADE, 5CE0E04A6B53A1F11E8159DFD1E59F2AE6631E3B5BD27BAAEC4A35BC02A55722 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
07:18:48.0587 0x1c80  ReFSv1 - ok
07:18:48.0633 0x1c80  [ A1477EC9D14A655828C42356D7AFA990, 0A4C02612DEB13B3ABC382DE07C38A87D5DC71AE63CA3F912C8C509E93ED8B96 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
07:18:48.0716 0x1c80  RemoteAccess - ok
07:18:48.0749 0x1c80  [ 066062967A77867BDCF665960EFDAD32, 68143DBDFA7C68786C22F5CC4E80200255C663A844069C080E7816F423ABB1F4 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
07:18:48.0789 0x1c80  RemoteRegistry - ok
07:18:48.0877 0x1c80  [ A49F3E36FB7A766F4C042057600659DD, 03182975C7B70FF581AD794AAD1EED76FB2A662476560EEC6D8065B4E7091DB5 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
07:18:48.0994 0x1c80  RetailDemo - ok
07:18:49.0015 0x1c80  [ 67E83C0C9A2B5ACEE9EF690E6B7E9189, 63D2A73B2031B52C66EF0455393BF05C55F9F7B0B9E48C54A39E547D46E090F6 ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
07:18:49.0036 0x1c80  RFCOMM - ok
07:18:49.0065 0x1c80  [ 6451FE42C35FDE3862D99579444F4A8F, BD56A1120AACF6143E6EB739E12BEE86DF142F1159865608BDF1BBE54B66AFCE ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
07:18:49.0100 0x1c80  RpcEptMapper - ok
07:18:49.0149 0x1c80  [ F24131EAD1D0B73463052BB042A37B6C, 43B5772310B200DF1914C8E4D10401A0BCE9082BDEAC34736AFB2920B39D7956 ] RpcLocator      C:\WINDOWS\system32\locator.exe
07:18:49.0199 0x1c80  RpcLocator - ok
07:18:49.0244 0x1c80  [ 3F4DF1BEDF0B92E750646EA7F66D8E4E, D5DF0502E71F938C25E36C59093EEDCDF5F0FC3B29DE5FC8E8E947F0EF7DA546 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
07:18:49.0277 0x1c80  RpcSs - ok
07:18:49.0368 0x1c80  [ DC66C1D262D64E30A30B68E9F21AC74B, A5ED3D31BCD68DBC00A956787517ACA167C86F5FFDAF7C9A85505FA2B705C6CB ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
07:18:49.0381 0x1c80  rspndr - ok
07:18:49.0447 0x1c80  [ 0679EB7A97B66619FE4120AD372E4691, 7C95A95FF8AA1F09B20C331115543F0EE75743B22902462D01B0E00CFB7449F8 ] rtbth           C:\WINDOWS\System32\drivers\rtbth.sys
07:18:49.0503 0x1c80  rtbth - ok
07:18:49.0545 0x1c80  [ D2768897FCEA8EEFAD3D69BAC9DC4180, 81E23AA9E13C06BD417C34566766A9F98FD3A8F916123F282CB6E52AB1A10A1D ] RTL8168         C:\WINDOWS\System32\drivers\Rt630x64.sys
07:18:49.0585 0x1c80  RTL8168 - ok
07:18:49.0764 0x1c80  [ 53FC65C60661B26BB8A47750306FEDF5, E376096556B29DB9726800DDFCDD6FFF281EFB94F4EE64F794ACC851AB3954B9 ] RTSPER          C:\WINDOWS\system32\DRIVERS\RtsPer.sys
07:18:49.0849 0x1c80  RTSPER - ok
07:18:49.0925 0x1c80  [ 88F7703F2A4677C828124AE2110D3EBC, 529F6A5815806F2EA2235802BD28AF8D7A40E7799356BD3EC337C9E71B6B53E6 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
07:18:50.0169 0x1c80  s3cap - ok
07:18:50.0192 0x1c80  [ BA6613AD1345BA9250BBE3C2425CA55E, CA176B32589AE38D689F8730856CF10F4BD63CDA04BDC17A700D02D32C2AA3E9 ] SamSs           C:\WINDOWS\system32\lsass.exe
07:18:50.0202 0x1c80  SamSs - ok
07:18:50.0252 0x1c80  [ B467E932FE4E16E201DC7E56870CB559, 6FCE9A2DFC5D222BBEA4AA271A17B830FCF8EAE44B07BEE5FF34AE50CABCBB6A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
07:18:50.0263 0x1c80  sbp2port - ok
07:18:50.0315 0x1c80  [ 3E115C63649402D321D396F8D606C9B0, F4BA7FE0E89D563A57B6865E4CF1334998987D11A0D70FF7491726A507B40DF4 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
07:18:50.0353 0x1c80  SCardSvr - ok
07:18:50.0373 0x1c80  [ 67EFFD3D1BB6D2B67DF7F8FDCB1A51FC, DE41539FAC730F5CFF6C8754ECFF1253AFDC1C86743AE71B61D716B7A84E85FD ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
07:18:50.0413 0x1c80  ScDeviceEnum - ok
07:18:50.0429 0x1c80  [ 18F9E8B835D706C365246DC8F8A81224, 154B8973191F99F83A4048B0EAD71BE31349BCF2973B44116A8F3858BFBD3F90 ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
07:18:50.0440 0x1c80  scfilter - ok
07:18:50.0479 0x1c80  [ 9971F5D3997338D7282C540FBDFE7E80, 2928681354402C67625963110F272FABF1F55D2584FA0AF28B2FF9D10C147E85 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
07:18:50.0577 0x1c80  Schedule - ok
07:18:50.0613 0x1c80  [ B222DA754F119FC153D341594C7D1B9B, 33EB99259DCA6FD00E45E1729C4FD59E58F736205AD9BA722CDFF02258CE7F35 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
07:18:50.0626 0x1c80  SCPolicySvc - ok
07:18:50.0676 0x1c80  [ 004C66464D8FE76D5DA78BE6777D61AF, 58B5C436798EEBBE7081D54B55B70DEB15331856802CD45E3FF8BDE794F06A27 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
07:18:50.0690 0x1c80  sdbus - ok
07:18:50.0719 0x1c80  [ B7E3E699C7C89C4E839D7EEAA1617C8C, 3F0F50282470133427A4A2DF047272FE27BAC823BF44E471BB1F96F37876CC80 ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
07:18:50.0758 0x1c80  SDRSVC - ok
07:18:50.0789 0x1c80  [ F4BF50A7D16A97A887BFA0F193693C42, EEBF5AAC149C72F490BAC954B25BB6882B10FC38F93CA4F4829A06702B1ECEF9 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
07:18:50.0799 0x1c80  sdstor - ok
07:18:50.0815 0x1c80  [ F2F1E2B5E253A91BD0A623A674A48CD2, EB5982DF138731BFA0411BC21279F35240DDCA2B3101213D99D2A0605ED1BDD0 ] seclogon        C:\WINDOWS\system32\seclogon.dll
07:18:50.0879 0x1c80  seclogon - ok
07:18:50.0904 0x1c80  [ 29452A9DA3E3482F0C2963312F979053, E1782D36C336C4B4C261AD665C1E9051905AA86020E08FC94069972AF4C4DB4B ] SENS            C:\WINDOWS\System32\sens.dll
07:18:50.0939 0x1c80  SENS - ok
07:18:50.0998 0x1c80  [ BF9A3CCAC3E6787EC782DD8996C22C38, 707FD81148CEA45630212F73FCC22CC3C1C2116F8FC582C93745853E2E9816CC ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
07:18:51.0088 0x1c80  SensorDataService - ok
07:18:51.0126 0x1c80  [ 01C2EEA7870FE26A4A6CCBA5421CC7E5, 9E643AB6BCBECE4F2A5FD4C96547A4E3F2BDFEFC5FE24B802467718EC69929F8 ] SensorService   C:\WINDOWS\system32\SensorService.dll
07:18:51.0222 0x1c80  SensorService - ok
07:18:51.0252 0x1c80  [ D2FEE824B4AA0BE377F1353E5F915BF4, 00D754C62F3482BBD0EA72C896139C39D15192B2D9FCC7B755D1FB9DF9FCFD9B ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
07:18:51.0309 0x1c80  SensrSvc - ok
07:18:51.0324 0x1c80  [ 9DB0BBE3ABE1F49651AE51EC5BCABE58, 0B46C1F231F41766AB73EE7E9834D3CDACA602D12E702D9277E28B47417D9CA4 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
07:18:51.0334 0x1c80  SerCx - ok
07:18:51.0362 0x1c80  [ C4AF79C37334D995D95C22C14FDBF7FD, 4D4985921261909F2123467A22EDB102B490710F60AB935624435E5BB808A0E9 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
07:18:51.0373 0x1c80  SerCx2 - ok
07:18:51.0406 0x1c80  [ FC541A272F47BE03E67A9FCB87FA8C3E, 730A3616FD67E9F2832442144B2655A8EF78B9AFCB204113E73E257256491354 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
07:18:51.0427 0x1c80  Serenum - ok
07:18:51.0456 0x1c80  [ 997B78F8E312450C6CF31FA58EDDC84F, BB03E85EB844C0F12CB15F8ACE70E6A0B17B49034484E0AF94335C481F6CE8A0 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
07:18:51.0483 0x1c80  Serial - ok
07:18:51.0499 0x1c80  [ C8738887228B7BFA3B1A906816A8BB12, 328283569201791891D5E9FB3028DB5B9FD93A7BEFC00C7DEBC2CC5731DE64D5 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
07:18:51.0537 0x1c80  sermouse - ok
07:18:51.0570 0x1c80  [ B1CB58853153397DFFA2D13A81451D09, CC9B3B064711E9B5CB38DC1C84DC410033939848BD31BB0D12F990E8154F357E ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
07:18:51.0627 0x1c80  SessionEnv - ok
07:18:51.0657 0x1c80  [ 67832B68752CDF7FDE56949E4A2E70BF, A72320EA8575A751DF86A1EE7969AD9D548D6185F2520197262E11B79FF8222B ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
07:18:51.0728 0x1c80  sfloppy - ok
07:18:51.0812 0x1c80  [ F10E5536E1C753E01CF19FA4F466CE90, C9897F22B176D84CA233F864078895E3DAD4DAD090FACBB01BD6E59EE337B47C ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
07:18:51.0865 0x1c80  SharedAccess - ok
07:18:51.0915 0x1c80  [ 4AC12D495B3CB4275F74C68A7A017561, DC53EBD606ECCD8BCF6D618C0EB58B03F5C20F09E0F0AEDE9B8082D6B208B19A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
07:18:51.0977 0x1c80  ShellHWDetection - ok
07:18:52.0001 0x1c80  [ ED058030296CF9B79C8D48BF43724323, 01DC7C2590DF48116CD1A126F207FE5DE439A53286BAE3736E22EE3D1CA80BE3 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
07:18:52.0010 0x1c80  SiSRaid2 - ok
07:18:52.0025 0x1c80  [ 633D3D1581E9DCCD5A2D8F039104C9A5, C44B5097016C2AEC8B41F77425FE44413562F9DCF0C0C11CA69D8178970B4706 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
07:18:52.0036 0x1c80  SiSRaid4 - ok
07:18:52.0062 0x1c80  [ 3E76F338E42616A22CA3AC379F95F2CB, 8EFE03420FF5BB518D1B9A38770A4A3FF19979D19F023F3C07C21E26676D9317 ] SmbDrv          C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
07:18:52.0070 0x1c80  SmbDrv - ok
07:18:52.0089 0x1c80  [ A7051C5B7E27695DAF22224B1EE0E3F2, B796668470FF1905F86679E116814357AA1AB7916E5D7BE608FA209699175074 ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
07:18:52.0098 0x1c80  SmbDrvI - ok
07:18:52.0128 0x1c80  [ 35B8FC714C2E7F07F7DC7C64452153F8, 6D45EB01B5F972ED0E5520E771F007FFEE892054FABDB3DD00D3E9915D3A0A31 ] smphost         C:\WINDOWS\System32\smphost.dll
07:18:52.0211 0x1c80  smphost - ok
07:18:52.0251 0x1c80  [ 88D70F8401CE82AB0B546FB58334AE2A, D29E9108A34E4E8EF53649D9B011AB2A03012D8051AC20FFAE051D696B26783F ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
07:18:52.0321 0x1c80  SmsRouter - ok
07:18:52.0351 0x1c80  [ CD1056818A6FCEF4D32BD1D6E34070D5, F5BFB61ACB220A73B0DC4487B049F52E9F9FA2D4188C001E7A5838D47CEA6343 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
07:18:52.0380 0x1c80  SNMPTRAP - ok
07:18:52.0408 0x1c80  [ 187B4AD4446C59F8FCC4A10F473EE3D1, 0AAD961B3D7B3484DC89CB86F3EC96CEBFABB7224A5BFB48083DE8F1805EA7B4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
07:18:52.0427 0x1c80  spaceport - ok
07:18:52.0442 0x1c80  [ 2799FCA215919FDC9A87C5FCAB530828, BDE968BF26693AA4D70AB669896BCA49C6F533EA226386B35B0EA589A55227B5 ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
07:18:52.0452 0x1c80  SpbCx - ok
07:18:52.0499 0x1c80  [ C6DA1A25DC995103184F4F24544F0C59, 2AE262E13D2A59E1EDC3FA23900F0C0AD93D5CA8E6B0AFEDAED9FC623CB0BD69 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
07:18:52.0699 0x1c80  Spooler - ok
07:18:53.0194 0x1c80  [ 5C5F5D69E3EC1799F06B235ECB7C6FDF, A2CDD3EB6378B826375A84DFEB12A42E462CDA95E98264AB262AD0EB988C6E45 ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
07:18:53.0420 0x1c80  sppsvc - ok
07:18:53.0500 0x1c80  [ 86591FA27AE5EE10709FE7017B9918D1, 70C89CDE112513B12434311BF6E94E9C993D90E85906D970E287BFE718096C4E ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
07:18:53.0550 0x1c80  srv - ok
07:18:53.0587 0x1c80  [ AB962D9FC6EE52CAB3C5E65955EDA633, 63C20DD5565C1EB1A0DF7C010B43141AC39DC73970D94C7C79BE25051E9CA765 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
07:18:53.0659 0x1c80  srv2 - ok
07:18:53.0674 0x1c80  [ 7711E47227A2BEFACD45688E6E4FCB00, 3F3F052B1AB021EFD56F26FABB9E57B58F6A5D978122A1E922E91C91DFB1A86B ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
07:18:53.0720 0x1c80  srvnet - ok
07:18:53.0750 0x1c80  [ BF71B3FB5B7557CB740CDB09C5FB50D9, D6F9E65FDC9C4ADAFE82D94F71A1F5960DB3BEEBF4FE5B2D087515C4FAA5F287 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
07:18:53.0786 0x1c80  SSDPSRV - ok
07:18:53.0809 0x1c80  [ EF1BC04215C201ADA3F7F5A2F034EA21, E1A7A0FA2032B9E7D3951100E74C04D93CD848C88D23D57FBA0BFA2816B29C61 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
07:18:53.0839 0x1c80  SstpSvc - ok
07:18:53.0873 0x1c80  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
07:18:53.0884 0x1c80  ssudmdm - ok
07:18:54.0027 0x1c80  [ 7A5BF2BE275D19DB887FAAFD040BD687, F55FD2669A153F283980DCFE18512BB6B576812B0A388E4F06D7FCB40F494D95 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
07:18:54.0214 0x1c80  StateRepository - ok
07:18:54.0238 0x1c80  [ DDE064A4298FD1FBF804D3ED691E7EDB, B0D117B1FC0DA2CB76F5F63699E2F108930B6C6721AC443111D48215ED624278 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
07:18:54.0246 0x1c80  stexstor - ok
07:18:54.0249 0x1c80  STHDA - ok
07:18:54.0312 0x1c80  [ 60F04DF1AB55D6D4BDA02052DD20537E, 52996EDF2C06968DADC9BDF24E4039929B81643493C7193B8CC4A6BD1A3AE761 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
07:18:54.0399 0x1c80  stisvc - ok
07:18:54.0479 0x1c80  [ 32C95F44108C3E7DB58F773346E3C9D0, F852D8ECA06080EA6DE1A90509071965A750D9CFC9627F0D4DB8ECC57133B0B5 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
07:18:54.0490 0x1c80  storahci - ok
07:18:54.0532 0x1c80  [ 8883C8CE4942A99B84E1CC6EFA19738E, 60C1CDA4382F8EE70D810DBB1BCAF5F389433563FF23EEB84859612F396D8CE6 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
07:18:54.0540 0x1c80  storflt - ok
07:18:54.0551 0x1c80  [ AE7B7E1E95BFB9340B1956C98CA52C81, 3E0214A0C486C1CD05D9BC57E58A998A3CEADDC1D24AE2A75098F56B37069160 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
07:18:54.0561 0x1c80  stornvme - ok
07:18:54.0581 0x1c80  [ 63513EF3121689B3A59BD217618A2E42, DE9B89732801DEC60BD116D58CFB427F7E37F093BE8A9F6E0CAC729B5346B314 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
07:18:54.0663 0x1c80  storqosflt - ok
07:18:54.0692 0x1c80  [ CC96FF061C772340F2ED89ABBA567ADC, 028CD44405B7FAFC7BF331DD729E44E0594A63386F48CF39D7725A58B3DE22D6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
07:18:54.0760 0x1c80  StorSvc - ok
07:18:54.0767 0x1c80  [ 000F5CFCEF0F06DC8FD1D2F568E48AE4, C1FE485E57A1B912CE79556E0EFF03CC11362E7966D250E3AA4962DCCB8F8EE6 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
07:18:54.0796 0x1c80  storufs - ok
07:18:54.0814 0x1c80  [ 7415087F9006D6818F85F3CBD79B1A50, C768EBB2263375D285D689FEEF546147D42D7376977424A4D6FD655CC78EA7CD ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
07:18:54.0822 0x1c80  storvsc - ok
07:18:54.0838 0x1c80  [ E49858EA5865A015EB78B7F7C1C07DE2, 1ADBBAC2D2E2E3C40AB0BDDE068001E76A8DAB79C54F06479F7A4567DAD7A7A8 ] svsvc           C:\WINDOWS\system32\svsvc.dll
07:18:54.0853 0x1c80  svsvc - ok
07:18:54.0951 0x1c80  [ 802278EE4ACCE9EA1F1481DF20EB1667, E78F0DA2CA0B2C2DF3B7E3B2A22C03380FE649813EE6EB31067C5FB6727DB7BD ] swenum          C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys
07:18:54.0960 0x1c80  swenum - ok
07:18:55.0012 0x1c80  [ 313D2C0DBA0B23A8302254FD317D2EC8, 20B98D6F33FEC7ACBCEED9757A3FEAD837FA7BA378BA25575A33EA45E076FC6B ] swprv           C:\WINDOWS\System32\swprv.dll
07:18:55.0083 0x1c80  swprv - ok
07:18:55.0106 0x1c80  [ 12D0CB1DCAE6725B6CA54CC2038C4C8C, 7D224298E440B8C5FDD99A52485A6245DE5109C9A02E65AD38F1EC6DBF4AEEF2 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
07:18:55.0146 0x1c80  Synth3dVsc - ok
07:18:55.0217 0x1c80  [ 3E037D5745F65380230F74A7F4F85622, B5FB14AD9D7A14FBEBE6B2F7E9A88933948766D08D60D93B8ACAC09CA0C3DBD3 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
07:18:55.0242 0x1c80  SynTP - ok
07:18:55.0451 0x1c80  [ 9904310EBFD7A5A647DB12827D505078, 8B5E833A72E85A39F91CF67676543CEA14029BA882B27A5D419596A69AC9EFC7 ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
07:18:55.0589 0x1c80  SynTPEnhService - ok
07:18:55.0645 0x1c80  [ D5B31B2F14848015C211F1D674A82F3A, 58C18254C817693DB727090D1CC518032B3A67C5B3FC7F2F8CE4613A33790CFA ] SysMain         C:\WINDOWS\system32\sysmain.dll
07:18:55.0840 0x1c80  SysMain - ok
07:18:55.0873 0x1c80  [ D5AAA188C70146977CFEE8D128599F3F, 9ABC30982E552EAF41FE84397EEEE5A3187444062C662D7CF35A03E3B274AFB8 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
07:18:56.0010 0x1c80  SystemEventsBroker - ok
07:18:56.0041 0x1c80  [ 95875059929EF91B55EA612D7967DD3D, 5F734209C8C9725376F7C146ED84999CC6D019C4C10B1795F53E72BE8853E2DD ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
07:18:56.0170 0x1c80  TabletInputService - ok
07:18:56.0255 0x1c80  [ FE33F417DFD9847CB571D3C7EE5FA7E3, B3C7BE7998B9B093DD969A2588EE8CEBD9771331A63D4B1D86A188317B5EE71C ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
07:18:56.0300 0x1c80  TapiSrv - ok
07:18:56.0381 0x1c80  [ F7C2E1AFC4E657BF78D273BF5BB2BA41, A7E26EAB5BB7FC741EB5331FAC09CB8A6A9389F26DC4D13408E089B00F8F2398 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
07:18:56.0493 0x1c80  Tcpip - ok
07:18:56.0727 0x1c80  [ F7C2E1AFC4E657BF78D273BF5BB2BA41, A7E26EAB5BB7FC741EB5331FAC09CB8A6A9389F26DC4D13408E089B00F8F2398 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
07:18:56.0791 0x1c80  Tcpip6 - ok
07:18:56.0817 0x1c80  [ D378A1AF58AFA84BB6AC753F2C1BE9F4, 8BBA623193D51E6A8DD0627FA08C93B918EF1BA2EEBA46CDBB86FE6A1007FDEE ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
07:18:56.0867 0x1c80  tcpipreg - ok
07:18:56.0898 0x1c80  [ D42AC03ACF9CA67693D1D9BB4D2A0BC8, D39D5180F3CDB23B4551A8C98F3C92A960B4CC9FA48E0FE11A6D89B0C247783F ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
07:18:56.0909 0x1c80  tdx - ok
07:18:56.0925 0x1c80  [ CCDBD2817C10A4F631280CBB3AE44FFB, A022DEF4D3CF75F41FA26275347F4BA38A513AD32FF18385C2E756DECB61D404 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
07:18:56.0934 0x1c80  terminpt - ok
07:18:56.0981 0x1c80  [ A0608264209A836821D6AB8C67B108AB, 7912C75F72BCAB7426A2E00C597C8D94C185B5DD31BD6C4BE5D56FECD5B0D9EA ] TermService     C:\WINDOWS\System32\termsrv.dll
07:18:57.0017 0x1c80  TermService - ok
07:18:57.0035 0x1c80  [ 261830B1E3650E4471E1F98850B929B7, D281B8A93315E64C7AF5002E5BFBE6AFF8B35FD6AA747AE07D7AA96F4AFAA613 ] Themes          C:\WINDOWS\system32\themeservice.dll
07:18:57.0071 0x1c80  Themes - ok
07:18:57.0105 0x1c80  [ 71272A308BB4011F72C8481F4FD49243, 1C2C7FD5EE69087F0217D89A7B9BCF3481677265F54B6826E09659D68A2FB4E8 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
07:18:57.0182 0x1c80  tiledatamodelsvc - ok
07:18:57.0212 0x1c80  [ 354DAA630928CD4DA2BC84A0DA4ADA9D, AFAE4948EA4F899267DC52DF9A06450FC3E77083B563E541581DA90685C7E98C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
07:18:57.0269 0x1c80  TimeBroker - ok
07:18:57.0300 0x1c80  [ F4AEDABC8F3A9D632F8206D0C7F8CA09, 6E76749CD4B857B4D930267E3CF448AF4D14FAC851873C5E71572E62CAD2FA36 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
07:18:57.0313 0x1c80  TPM - ok
07:18:57.0331 0x1c80  [ 2D0338A3009075FCCB119CB7F3280F82, F42F3B8DA0F8B2C99892E66CDEF471A1CD30A30CF437ADFF464A2C786A6B87A6 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
07:18:57.0379 0x1c80  TrkWks - ok
07:18:57.0537 0x1c80  [ 8B7BB7343E89C7965352C482919192E2, 5EDEE11CB0739EF8C7A6A01D090BB47F61343BD0DC057682A4C4325035C1D9D3 ] TrueKey         C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
07:18:57.0560 0x1c80  TrueKey - ok
07:18:57.0630 0x1c80  [ 233114076A6AFE21FE8D8B2938B7003D, A061162B19EA75861F5CD6597C41FE29DCF8841B270E6AD91FEE65EA7B61B9FC ] TrueKeyScheduler C:\Program Files\TrueKey\McTkSchedulerService.exe
07:18:57.0637 0x1c80  TrueKeyScheduler - ok
07:18:57.0667 0x1c80  [ FD6835FA6ED82F7729703D979200F8B6, 8D11769AABD83C1E5FD5F668A6DE3F3791245C440BB31A611F42DB582A653DAD ] TrueKeyServiceHelper C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
07:18:57.0676 0x1c80  TrueKeyServiceHelper - ok
07:18:57.0789 0x1c80  [ 6BFB75B76411CC57A72FCC1D0201E166, 8F3A97E7651501F58018EB6081178B2A05ADFBF48C6126E0176FE231A261893E ] TrueService     C:\Program Files\Common Files\AuthenTec\TrueService.exe
07:18:57.0804 0x1c80  TrueService - ok
07:18:57.0839 0x1c80  [ ADD8AFDAB539AF2B1FB75F6DB2CD7B71, 46BA69DA6114A167D6C467AB9BA583514475509184C6FF056460ADE76D0A76B1 ] trufos          C:\WINDOWS\system32\DRIVERS\trufos.sys
07:18:57.0871 0x1c80  trufos - ok
07:18:57.0914 0x1c80  [ 62D6A900C5DFF2ECF131384E5A5C85AB, 1AF1FB868C59DFF452E3351EE5070B2C746DE606B9E2F1834CE2256F41ABE7A9 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
07:18:57.0969 0x1c80  TrustedInstaller - ok
07:18:57.0986 0x1c80  [ 676C801CAA61AADD0C918CC536A74B78, DB5DEC9445272E46D32DC2A9A99A9AE45729E424E61C679ECFD973AA88457BE6 ] TsUsbFlt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
07:18:58.0060 0x1c80  TsUsbFlt - ok
07:18:58.0088 0x1c80  [ 2BB6CC0DD1CEE86330743B56FA9FE91F, EE71E3DEECA7599947AB09E8967FE8066348D82B4C17D8CBE800FCDE9CF4989D ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
07:18:58.0115 0x1c80  TsUsbGD - ok
07:18:58.0136 0x1c80  [ 14B46248612DF1B1A695040FFFBCFAFC, 8C373A3C416FC9AB3872A187E64AC7A6E69FF605BD8784E8F2B1C28C293A0495 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
07:18:58.0245 0x1c80  tunnel - ok
07:18:58.0264 0x1c80  [ D0BE5EA1652D55029C9A898FB8ACFCE0, 80C4BC30B967C79B3457F43EB9B530CA2571C6158958879AC55E5A81F71CFF15 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
07:18:58.0290 0x1c80  uagp35 - ok
07:18:58.0307 0x1c80  [ 13C15E4B238895FE4731DB1D612EEB5F, 211E4B05AA09F7FBE2487C3241A98D1F970FEE5B9B1BAED2788B57233BFC4104 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
07:18:58.0317 0x1c80  UASPStor - ok
07:18:58.0345 0x1c80  [ BEBB8B55C5F99B69EEE39A9D7BADB21E, 08A094EA38AB58CC70108A3BDFDD3251897DC4B13FDDAD54C1B063137836EF34 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
07:18:58.0388 0x1c80  UcmCx0101 - ok
07:18:58.0420 0x1c80  [ DE3EDAF609D00EA2E54986E6459796A6, 61A9AB51869F38300CC5CC5D302B962FB966F54CBB2E393954F36372B3A479FE ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
07:18:58.0598 0x1c80  UcmUcsi - ok
07:18:58.0618 0x1c80  [ FB1C1D8B96A482F3581338D6752E1D6C, 0FFAEE3E088614B3483C459513BB9D78EB76B574696FD877A3CDF6A11378F46C ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
07:18:58.0651 0x1c80  Ucx01000 - ok
07:18:58.0674 0x1c80  [ 4E1543ACE2F6E2846713E5123D9D4159, 1A6AFC525A80D1F19B14CDAD38790DF7293911C4D0E8301161D92201B934C3D4 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
07:18:58.0718 0x1c80  UdeCx - ok
07:18:58.0739 0x1c80  [ CDCA9CC1D8293E75218D8FF85F2337A4, 173086C08DDC7625E026E425F1E2B5D6C795771BEAE9BFF6093E3592FBEBD323 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
07:18:58.0771 0x1c80  udfs - ok
07:18:58.0797 0x1c80  [ BC683E19307C533C7161DB7A58051347, 5553BE3421986FDD9992EBFD883CDA151F7166C01BBFA3E9183A3C93E41D79B6 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
07:18:58.0806 0x1c80  UEFI - ok
07:18:58.0818 0x1c80  [ D14B42C26DE402F316D49667D15446F0, 61CC9FF03EF78631C800EFD8D587975CB94D53DB80E6F60BD13BA52EC5690D3D ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
07:18:58.0832 0x1c80  Ufx01000 - ok
07:18:58.0852 0x1c80  [ 192470BE4321791FBB25F379D0141D6F, AD120F8F98BD99014471CE60630B5FEE7555AB261C98B7D9819FE23C386655F7 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
07:18:58.0861 0x1c80  UfxChipidea - ok
07:18:58.0881 0x1c80  [ F7BD838E84E6B286DBCE068EFB8C0800, A55188C8F8BDC739A7ED7D29CDCB2A17468BBB158E13D804963B31ED73449520 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
07:18:58.0891 0x1c80  ufxsynopsys - ok
07:18:58.0924 0x1c80  [ C844E39B900FFA46CA8DD2BBA670A077, 0CB6232BCE47C59821DF25D6ED33E85C3E32DDAB101AA8A2C22B5401E73F5D5B ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
07:18:58.0955 0x1c80  UI0Detect - ok
07:18:58.0972 0x1c80  [ A25842AC180F0E8B02380ECB8ADA1AF5, AF22E7559C5EF8DC22A2B9E27FFFFF075B1D1B68A8307266BD9473E0FAF36BEF ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
07:18:58.0982 0x1c80  uliagpkx - ok
07:18:59.0011 0x1c80  [ 21088F43172525C7E02D335A3327F46C, B04AD471A7DFE83AB557DB4540616B7DF4A1904F8BDDCB920D449FCEE6F36FD5 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
07:18:59.0042 0x1c80  umbus - ok
07:18:59.0056 0x1c80  [ 294A291B5D48FE8F38DD94B7272442C5, 66C9139636760C92C1E04FCF440C432FF6C5A94E1577CAFE1D61FCF2D30472ED ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
07:18:59.0103 0x1c80  UmPass - ok
07:18:59.0167 0x1c80  [ 3427889AECC3B6912A0A01D095E32B98, 322AE14B74295ACFC124719BBEF8809201150A184E262EC55E26D2B45787BF9D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
07:18:59.0220 0x1c80  UmRdpService - ok
07:18:59.0286 0x1c80  [ B21DEA1F5F1636B82B0DAED7D04222F6, A8A6F7FAA7432682CCE1EB99FED951B4F83C4D0997E5870E9775AB4B6A2B558E ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
07:18:59.0355 0x1c80  UnistoreSvc - ok
07:18:59.0441 0x1c80  [ 88E54041480637C2E424AF9E593C904C, 07CD209474C04EFFB8CE6FE5060ABAACE963051B76E3A9E330F1D9A083C60A71 ] UPDATESRV       C:\Bitdefender\Bitdefender 2017\updatesrv.exe
07:18:59.0451 0x1c80  UPDATESRV - ok
07:18:59.0529 0x1c80  [ A2A9620079DAE3280B1E993AACF17EC5, 42DDFEA460886A2D38AC7F6F20540398FB06CD8627F997444FB2CD83748E7D4D ] upnphost        C:\WINDOWS\System32\upnphost.dll
07:18:59.0567 0x1c80  upnphost - ok
07:18:59.0586 0x1c80  [ A7A52EDDC3FAF183D6AC4774690ADF13, 630A0331F2EFA2DC7EFDACD08D8DF5C85BFDA30FF1525050FF54E069AFA45F6C ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
07:18:59.0594 0x1c80  UrsChipidea - ok
07:18:59.0612 0x1c80  [ 2EEA0897DD9E30E958B508D557F0B5E4, BE051A3AA5DFF56310FAB67AD19AC0443A3580542886EF3554EBE18F1323596F ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
07:18:59.0621 0x1c80  UrsCx01000 - ok
07:18:59.0635 0x1c80  [ DC54D775A3A61E4CDE871B4E38A1459A, CC996A9D293201BBD285E7B629B12EE88574702B8AC7BB4149439D6A25A07F7E ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
07:18:59.0643 0x1c80  UrsSynopsys - ok
07:18:59.0661 0x1c80  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
07:18:59.0699 0x1c80  USBAAPL64 - detected UnsignedFile.Multi.Generic ( 1 )
07:18:59.0755 0x1c80  Detect skipped due to KSN trusted
07:18:59.0755 0x1c80  USBAAPL64 - ok
07:18:59.0804 0x1c80  [ 18B63A0980F4AA1E6D7879B253980E37, 05F96DBE0A3DE2A685DEEBA8B6838A47AEB7CE2EBE8EB6BAD67B36DCF7E73589 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
07:18:59.0816 0x1c80  usbccgp - ok
07:18:59.0853 0x1c80  [ 1C60A1A3C8E1E819E16F12BAEB1C83F8, E255BD173DBF091C5EA07381862E23C1FD761489EC396E312974FBC124E1F33A ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
07:18:59.0889 0x1c80  usbcir - ok
07:18:59.0931 0x1c80  [ 9A3E39F85DC6E3B9F792F1095ACFF788, 66B8E137A5232E9F717907CFD49FE624AE101F4DE14E2960849DABF7A877E87A ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
07:18:59.0941 0x1c80  usbehci - ok
07:18:59.0978 0x1c80  [ 0A368247A900656CC0678117DFC3A87C, 9BEAD14DA067439D913F609955E95CFA0B88ED4F1BC60B473E00F9D9CBC01B9C ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
07:18:59.0997 0x1c80  usbhub - ok
07:19:00.0033 0x1c80  [ 1BDA1FD02783566F0B20EB0E2517F85C, 4C86DC962BBE4CA5AE466A37CF647D84CE2A34DA7F861751587841FC10CFA09D ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
07:19:00.0088 0x1c80  USBHUB3 - ok
07:19:00.0095 0x1c80  [ 72EA850B59F40C25A4FEDDA5FE84EFEB, FB4801AA1FB72FC1C41024916368823E88D53E338640E3BEA865B0F0E7B8EE91 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
07:19:00.0412 0x1c80  usbohci - ok
07:19:00.0474 0x1c80  [ 47B2B2DE152E25546944049CA1170BB1, DDA0A806D3108B2475AB13F584EA8CE6F0932C5E394C2C3FA691DFAB8A2BCAC0 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
07:19:00.0631 0x1c80  usbprint - ok
07:19:00.0738 0x1c80  [ 6D12FF8801832846542FD2B078B6E05F, 531AE5210012806A34698256EEF19A31329751198EA44FBB142244607D0CDE57 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
07:19:00.0806 0x1c80  usbser - ok
07:19:00.0833 0x1c80  [ 3EB26D5963844FFAE63A93024D502BAE, 383872A864DCE13BF08A841000640FA61DFCA21E431D3AE044DD05DADFF911E6 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
07:19:00.0844 0x1c80  USBSTOR - ok
07:19:00.0868 0x1c80  [ DFA92EA105DD1073B43FB210EEB03DD4, D940432458F0A04F5013B48197CEA0412C8A909C50605AA21DD08271C90E2FE3 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
07:19:00.0904 0x1c80  usbuhci - ok
07:19:00.0947 0x1c80  [ B1484D4BBC6B7B424F1CD1554B0AFB84, C9432978603360182AAA983248FFA97576B3C59BE5DA45473DFA17E2940479C8 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
07:19:00.0985 0x1c80  usbvideo - ok
07:19:01.0030 0x1c80  [ C67A03F54A1EA683F4880A481EE5FF6C, 346185B378577FF14EFAD01ECB7DFC9AFC0D50F16DF081C3BA99AEFF710A0EE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
07:19:01.0047 0x1c80  USBXHCI - ok
07:19:01.0207 0x1c80  [ 281C3CDEACB34250471B02DFE4E6A7DF, 726D7A201EC53A830AF03C3E12D40D6922C26A263CE050028CC41333A2F69794 ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
07:19:01.0304 0x1c80  UserDataSvc - ok
07:19:01.0440 0x1c80  [ A2FD4588F579F8671E4AB1064633CB46, A2BBF6AF7D84F5AE01BFFF69F6CCBACFC0651A2DE2BBD226C6D90208298333D5 ] UserManager     C:\WINDOWS\System32\usermgr.dll
07:19:01.0524 0x1c80  UserManager - ok
07:19:01.0558 0x1c80  [ 2E87E50FC2B2656C3A32610B1E7664DE, F47F07FD8BA69E18EDC33AC1B691783A1B903F73B17492944658A1E8B74F37D1 ] UsoSvc          C:\WINDOWS\system32\usocore.dll
07:19:01.0624 0x1c80  UsoSvc - ok
07:19:01.0660 0x1c80  [ 91916DA3F4A51ED8D955AC7D9ECE6D67, 8C2D8538174C93D152E55A5C107C3EEA488A202CF25F9E20717624337A4050B2 ] valWBFPolicyService C:\WINDOWS\system32\valWBFPolicyService.exe
07:19:01.0673 0x1c80  valWBFPolicyService - ok
07:19:01.0726 0x1c80  [ BA6613AD1345BA9250BBE3C2425CA55E, CA176B32589AE38D689F8730856CF10F4BD63CDA04BDC17A700D02D32C2AA3E9 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
07:19:01.0736 0x1c80  VaultSvc - ok
07:19:01.0753 0x1c80  [ 26223003DDFB347B5CF3EC0B56DB066B, 78848BE1334C05F28FA431B08225EAE8345B2C66E7D677F9936892FC941EA961 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
07:19:01.0762 0x1c80  vdrvroot - ok
07:19:01.0801 0x1c80  [ 5E7F52C3B9EF94BC792661ACE3350245, F54CE101794900674A1791E570A71BAEFBAAEF6F2FBDC1F6E36C718D4AF8C05D ] vds             C:\WINDOWS\System32\vds.exe
07:19:01.0906 0x1c80  vds - ok
07:19:01.0930 0x1c80  [ A417284BC6B5C2EEF63F2C5154473530, 55146660CDDD829630C216038E6500CFAC906E67C82881047B665BFEEB286D10 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
07:19:01.0942 0x1c80  VerifierExt - ok
07:19:01.0976 0x1c80  [ B3685F8026F1DFFE0EBC3CE935F00C21, 3131C254235FBADAD5CE3FC9A05555E4663A5844102611ED8C9AE200C8D56A4A ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
07:19:02.0010 0x1c80  vhdmp - ok
07:19:02.0042 0x1c80  [ C42206A15078596FDE8E89BB629DE342, B95F9EC2413ADE658A7CE4A9BB57A0E125C29205C24BBB120153DACAF4CF9482 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
07:19:02.0092 0x1c80  vhf - ok
07:19:02.0109 0x1c80  [ 248D9F911A5C94CF8477125DD0C3A291, 418C7285184BCC9DE4E56175960585867A5DB21FEF761C49FF6F1AF1C07D8088 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
07:19:02.0121 0x1c80  vmbus - ok
07:19:02.0130 0x1c80  [ 3E98DD4E0CBD6B4F9CBD0E9E0EDF541E, 2B5CF364F4D1D3359FBEA8BB2E72A1FCE1277E8D893977B751D9AC10A27DF018 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
07:19:02.0153 0x1c80  VMBusHID - ok
07:19:02.0206 0x1c80  [ C425ABD71AD775A4A81FF4A28E433C5F, 263AC4C7B14DA8AE579592D6E3B9FA50915346FF99A3EFCBB63BE95BD8C75DDA ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
07:19:02.0270 0x1c80  vmicguestinterface - ok
07:19:02.0296 0x1c80  [ C425ABD71AD775A4A81FF4A28E433C5F, 263AC4C7B14DA8AE579592D6E3B9FA50915346FF99A3EFCBB63BE95BD8C75DDA ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
07:19:02.0320 0x1c80  vmicheartbeat - ok
07:19:02.0352 0x1c80  [ C425ABD71AD775A4A81FF4A28E433C5F, 263AC4C7B14DA8AE579592D6E3B9FA50915346FF99A3EFCBB63BE95BD8C75DDA ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
07:19:02.0375 0x1c80  vmickvpexchange - ok
07:19:02.0386 0x1c80  [ C425ABD71AD775A4A81FF4A28E433C5F, 263AC4C7B14DA8AE579592D6E3B9FA50915346FF99A3EFCBB63BE95BD8C75DDA ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
07:19:02.0409 0x1c80  vmicrdv - ok
07:19:02.0420 0x1c80  [ C425ABD71AD775A4A81FF4A28E433C5F, 263AC4C7B14DA8AE579592D6E3B9FA50915346FF99A3EFCBB63BE95BD8C75DDA ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
07:19:02.0443 0x1c80  vmicshutdown - ok
07:19:02.0460 0x1c80  [ C425ABD71AD775A4A81FF4A28E433C5F, 263AC4C7B14DA8AE579592D6E3B9FA50915346FF99A3EFCBB63BE95BD8C75DDA ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
07:19:02.0514 0x1c80  vmictimesync - ok
07:19:02.0541 0x1c80  [ C425ABD71AD775A4A81FF4A28E433C5F, 263AC4C7B14DA8AE579592D6E3B9FA50915346FF99A3EFCBB63BE95BD8C75DDA ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
07:19:02.0564 0x1c80  vmicvmsession - ok
07:19:02.0585 0x1c80  [ C425ABD71AD775A4A81FF4A28E433C5F, 263AC4C7B14DA8AE579592D6E3B9FA50915346FF99A3EFCBB63BE95BD8C75DDA ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
07:19:02.0609 0x1c80  vmicvss - ok
07:19:02.0623 0x1c80  [ 91F165C5D71D9DCB18D4661CF10D1084, 1D55C1FF0F5D860E6DB60EEFE303C0797C98BB0B053ECC255F9B316872288818 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
07:19:02.0634 0x1c80  volmgr - ok
07:19:02.0657 0x1c80  [ 17042748AC05862A0283D32575220080, A85B480CB969CB7678545D2A9EE99CBD2ADFF210FA016A43E092D0711FBB633D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
07:19:02.0674 0x1c80  volmgrx - ok
07:19:02.0706 0x1c80  [ 823A237D871CD652C6BFD47BECB6810A, 99310521451CB54C29A5DEA54C3A666F95E2A1FF0979D5F9792885A161E90C65 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
07:19:02.0722 0x1c80  volsnap - ok
07:19:02.0749 0x1c80  [ 78727FA284C2095EED660D71CD3C9AEF, 323F0BD5A624DF77973F28C7CF31EC6B3A525496EBF063666623A62B1DB0EA65 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
07:19:02.0776 0x1c80  vpci - ok
07:19:02.0800 0x1c80  [ 2415961D561E02F5E46B7C1C687A6788, 68A54B9595A0D15D410D5F1656B6EBE3B913A4BA5F71C658C9B99420E6ED327A ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
07:19:02.0811 0x1c80  vsmraid - ok
07:19:02.0882 0x1c80  [ CC31B15495D5BC27E753B26E2B3CF2B5, 9C62E3E1C3D1986133CB30A03DB1B4398BD86B5BCFB1EAA94DFB24127230AB30 ] VSS             C:\WINDOWS\system32\vssvc.exe
07:19:02.0957 0x1c80  VSS - ok
07:19:03.0031 0x1c80  [ E474CA91B9F0BA84F16B24465594BB4D, B2E8F0DE277690DA8A1069350D4547E16C45133E35648017E1AC6716AF99E6E4 ] vsserv          C:\Bitdefender\Bitdefender 2017\vsserv.exe
07:19:03.0060 0x1c80  vsserv - ok
07:19:03.0090 0x1c80  [ 4889BF61752AD05C2AC73CF72A7C8F16, 9B2FF0CAF57855AA1F37933F2B9DC2B845D6BAD80C5DD400BD688DF343AFCDF5 ] vsservp         C:\Bitdefender\Bitdefender 2017\vsservp.exe
07:19:03.0106 0x1c80  vsservp - ok
07:19:03.0144 0x1c80  [ 6AE9A843AE979F2DCCA5A25C07C7A5F8, 3CEC26DE2EEC97929A0FBBD87FF75F8DC387C0988B2047074C8F069ACBEF2587 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
07:19:03.0160 0x1c80  VSTXRAID - ok
07:19:03.0185 0x1c80  [ BD232C761C59FA8D8EF626CA630E2D2E, E494EFDCE8F6343F49F33F1F03DCD5DEC9CB6F349B1AD302B4D3333B5F6BD8E5 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
07:19:03.0225 0x1c80  vwifibus - ok
07:19:03.0236 0x1c80  [ 3039687AB65CEE26CF478C1F42FFCD7D, 40E140C6F94B6203767A1493DF8CAE6BA1FB67FBD0C13789444F72410D0E6FF1 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
07:19:03.0260 0x1c80  vwififlt - ok
07:19:03.0276 0x1c80  [ 37C868DDE3103130B00AD1313DAB5ACB, BF9C30817A3502F5C0673FD462B18FE1BF37963B29DF09D84B66BDCBF8ECBA81 ] vwifimp         C:\WINDOWS\System32\drivers\vwifimp.sys
07:19:03.0330 0x1c80  vwifimp - ok
07:19:03.0374 0x1c80  [ EC9B6544C569E8D7FAB91772BD7D23F2, 06CC5F21E9A9DD35099CB3E44C3E2BF2F944CE5B71284E6A85E1B681F12BD31B ] W32Time         C:\WINDOWS\system32\w32time.dll
07:19:03.0434 0x1c80  W32Time - ok
07:19:03.0500 0x1c80  [ 9776E4816D92B766F461957FBDA84360, 048F6ADC97767AFAB50582D0AE1E67A15B038A1C02F7982A6AD30B61AC5C7369 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
07:19:03.0536 0x1c80  w3logsvc - ok
07:19:03.0551 0x1c80  [ FC40A7527D39F06D032A6553D22E4BF6, F572FCB5EB3DE16FD6222A5B6A43C81E3A1F838890667D9F0453F82FFCA772FF ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
07:19:03.0577 0x1c80  WacomPen - ok
07:19:03.0615 0x1c80  [ 79EB17A2E23DD59944B18D91427089E7, 36F2EC145509AF7F0F77B83434EB1CF4D8C0E2BAD85F01E4524C0137E197BF6C ] WalletService   C:\WINDOWS\system32\WalletService.dll
07:19:03.0685 0x1c80  WalletService - ok
07:19:03.0716 0x1c80  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
07:19:03.0745 0x1c80  wanarp - ok
07:19:03.0748 0x1c80  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
07:19:03.0761 0x1c80  wanarpv6 - ok
07:19:03.0834 0x1c80  [ F61FA0EDBE913DFCA0CF012FDD9E99EE, DE8685230D49F940640F400D2EC4F10E677AF6D57B3FAB0342AA98BEA779D6AD ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
07:19:03.0862 0x1c80  WAS - ok
07:19:03.0942 0x1c80  [ 0EB9D0EC891F2927EC78EF9A068E281B, 2713F5490527F65AE6A68D7D59642A64D0225F78B3E8C3F7D5B0B86F09B49641 ] wbengine        C:\WINDOWS\system32\wbengine.exe
07:19:04.0137 0x1c80  wbengine - ok
07:19:04.0177 0x1c80  [ 5EEAC979AD94847538317DFECB2CF505, 4E4E07C0C598C6E3BA24E8CCF22AAF4A2CC1D21440452C014771E3F0A8B803B2 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
07:19:04.0280 0x1c80  WbioSrvc - ok
07:19:04.0321 0x1c80  [ D434333202E9AA4DDC747F9109565665, 252ADDD15BFFF0DB1A7A44A2B825836AA0994F68BE0C2D51A75F41DC2849CB6A ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
07:19:04.0397 0x1c80  Wcmsvc - ok
07:19:04.0427 0x1c80  [ 8E7FD07D2C82ACBCA52C4100C20F6542, FB2CD88557ABB5EBE6555CD4E41BF4BDC6FE6BCF26288338F2FB034B966FCBD3 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
07:19:04.0548 0x1c80  wcncsvc - ok
07:19:04.0578 0x1c80  [ 9C776ED423CD03F8ABD54C2557E34416, 282C1208977070EC0280D5ABA0E03A847AEAEE31F35CDAA3C7A02D8477614EB1 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
07:19:04.0679 0x1c80  WcsPlugInService - ok
07:19:04.0706 0x1c80  [ C8BA574B3BA6AE88741AC86B1FE3C1DC, B2422CDE3A6A27B52D270D24298FF69D91D389C68456EC1805BA30AA59BAB839 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
07:19:04.0716 0x1c80  WdBoot - ok
07:19:04.0763 0x1c80  [ 927AD29D7F91B9A0C5294932374DA15E, ABB2722EF4153771D15683B5CE603D2B7D8A585357F64A3DC26114F37BE2906E ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
07:19:04.0807 0x1c80  Wdf01000 - ok
07:19:04.0821 0x1c80  [ C5BB7C612B4C852836BEA39593BA5F46, 1E2B123F34500C2A8E983AAAF7F14E409B88DC396A655F19F3E7F15D0C51A762 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
07:19:04.0846 0x1c80  WdFilter - ok
07:19:04.0875 0x1c80  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
07:19:04.0892 0x1c80  WdiServiceHost - ok
07:19:04.0896 0x1c80  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
07:19:04.0912 0x1c80  WdiSystemHost - ok
07:19:04.0997 0x1c80  [ E77B04475C1C02BA31CB87FDFB4C95AC, 1F52F619A9A7F610B54CB49DC51339823ACDB4512BBDD5614C988065E4E0405D ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
07:19:05.0039 0x1c80  wdiwifi - ok
07:19:05.0060 0x1c80  [ BD193A7BD34B2E829FAF56306FEE3B09, ADD746D198E21242CEFA01840952B792074EFC473113CD3E7F1ABBA6A4E26AF6 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
07:19:05.0071 0x1c80  WdNisDrv - ok
07:19:05.0110 0x1c80  WdNisSvc - ok
07:19:05.0177 0x1c80  [ 6A3B5013D5C7840E8CABD63DD021C112, 371CCEEAC7816CFE79ACA8A218CDA16469D9567CB63CC9D18C55FF047011EF25 ] WebClient       C:\WINDOWS\System32\webclnt.dll
07:19:05.0217 0x1c80  WebClient - ok
07:19:05.0234 0x1c80  [ EED4043BC3C2D00067411730EE118354, 5E268DA4DB78C06D8F181E9408B4769F8A12C38DA52C1E986EE0CEE1101E9485 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
07:19:05.0298 0x1c80  Wecsvc - ok
07:19:05.0315 0x1c80  [ 6ECD7A49AFC6533821BEEA1876CEB21D, 2E972245F56F589EF1AB9DABB9214B9DE6E290878735476323A3357D8CDFC71F ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
07:19:05.0347 0x1c80  WEPHOSTSVC - ok
07:19:05.0374 0x1c80  [ 09B434867028AF4895A87959EA668686, 26A7DB82E42DCBF3A77092D58AC6392754FD7C538B9EAAEFA88E9AF81DFE8E96 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
07:19:05.0437 0x1c80  wercplsupport - ok
07:19:05.0462 0x1c80  [ DE4E417B867841EE55114E588098B8D5, 878708C93FC1D919E2B9E1C5F94A0EAFC5F28BDAA58D3F29DEEDC8EC3F72D9ED ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
07:19:05.0616 0x1c80  WerSvc - ok
07:19:05.0619 0x1c80  wfpcapture - ok
07:19:05.0645 0x1c80  [ DBF5255B759212E5217A2748567A0B5C, 5E81A9289EC39702179038B686A35FADF9974651E74222F3354B4CBE919887B0 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
07:19:05.0658 0x1c80  WFPLWFS - ok
07:19:05.0716 0x1c80  [ CA9D4D9893A5303E0EAA997A790BA0A4, B207CEE69BC55E406D61A1FABD1CF95F88040B20CA121A486641ADCDEF68C788 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
07:19:05.0753 0x1c80  WiaRpc - ok
07:19:05.0775 0x1c80  [ 4375BCBA419D19695CF566082CEF27D3, 6F86FA14B41A03F2BA51B8702F3D59B85FD488405601FA177495E4B7C576850D ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
07:19:05.0784 0x1c80  WIMMount - ok
07:19:05.0786 0x1c80  WinDefend - ok
07:19:05.0837 0x1c80  [ A0D15D8727D0780C51628DF46B7268B3, 5E23F3ED1D6620C39A644F9879404A22DED86B3B076EC4A898B4B6BE244AFD64 ] WinDivert64     C:\WINDOWS\system32\drivers\WinDivert64.sys
07:19:05.0892 0x1c80  WinDivert64 - ok
07:19:05.0936 0x1c80  [ 037BC6DE5F58D4A74A5BB0C12DCECDCA, 92921A2615A41C434BADEB33594DABC166FC9418FBD311A3B2022410B14BFDAC ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
07:19:06.0029 0x1c80  WindowsTrustedRT - ok
07:19:06.0055 0x1c80  [ 70BCD70BD53F2FE660ED94B025A043EB, B23B96DCAB30C62CB1651B3A2292155AEE8217CE3120574F5158D5E7DA09DE56 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
07:19:06.0088 0x1c80  WindowsTrustedRTProxy - ok
07:19:06.0140 0x1c80  [ B9916FF45730799D2B786DB2044E0CF3, E493B800A95A24BC669C540E867186EAE6CB202169D36DC3FDDE702EF9CD1040 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
07:19:06.0237 0x1c80  WinHttpAutoProxySvc - ok
07:19:06.0256 0x1c80  [ 7792AE5403BF8975B6460DFC3428D129, D88F77E973D58C2CA629CC9249877A34ABF31CA1DC2A570666921A8A0DC8DEC7 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
07:19:06.0265 0x1c80  WinMad - ok
07:19:06.0320 0x1c80  [ 73B5230F03DC7002A70F11EA1B0BAA37, DFE8BBE52B58589686E402ACED51021E298A491F907EBA5689DF9DAFC3002BA5 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
07:19:06.0393 0x1c80  Winmgmt - ok
07:19:06.0528 0x1c80  [ F396D5644BB71603AA3728DFF2F60493, 4EDBA0301252810F0DB06A74A89DF0601BBC2CA38C11B36FA30994EBC6041DE9 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
07:19:06.0681 0x1c80  WinRM - ok
07:19:06.0752 0x1c80  [ 811F30EB6EE8318C4171CB95AE30B9BD, 765F6BEA3D35D523B5D7ED7356EC0C97A48066A5C4D77C1E6EDAC6F220153385 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
07:19:06.0814 0x1c80  WINUSB - ok
07:19:06.0850 0x1c80  [ DF00381AB8665D48DE3FF794BC6760AB, 749AC7048601061A34BFF507B574AF028FC662C0A98692E7331E667D105EC09D ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
07:19:06.0859 0x1c80  WinVerbs - ok
07:19:06.0899 0x1c80  [ 4F2A80D65AE6F845776E2F06AE6782ED, 2455537C048115435D9EDE4B18F9F54C43912076AEF36BDEFEC35AF2140B8B2E ] WirelessButtonDriver C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys
07:19:06.0906 0x1c80  WirelessButtonDriver - ok
07:19:06.0971 0x1c80  [ E3D049A8358955A0C5395E17D589761C, E1798010DCA09C261271547D9EE72760AD1CF03D65943C9E943A09DA4AC31DC9 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
07:19:07.0125 0x1c80  WlanSvc - ok
07:19:07.0194 0x1c80  [ E540909F44FFEC579ABF110648EC7F77, 323E53586111238178846C6A89C4ACEA23527F5FA95D50E9D4E74EC00234A9D2 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
07:19:07.0376 0x1c80  wlidsvc - ok
07:19:07.0399 0x1c80  [ 623ED8E10DFEEAB7AE2CD11A0451DB79, 7DDE15F22FD24556D4765F6CFD0F8E2F27370A89A962919646DE2613B33D43D6 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
07:19:07.0428 0x1c80  WmiAcpi - ok
07:19:07.0462 0x1c80  [ B2BB87531C4127ED4120E9BF5566827F, 1DDC0F00F215D77D3698F81B56D4488F384E9D017267840EDFA4846742B99B6A ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
07:19:07.0496 0x1c80  wmiApSrv - ok
07:19:07.0523 0x1c80  WMPNetworkSvc - ok
07:19:07.0559 0x1c80  [ 78CA1FF6FE37EEFAFF99DD1C956AF60A, 883C7890C83BAB3B846A0C969D7B67031BD2EF65FA58A0620DD0CD1655C5B2C5 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
07:19:07.0572 0x1c80  Wof - ok
07:19:07.0664 0x1c80  [ 00137C84D6C282EF4E833499E2536499, AA7BB7FE4B7886AB63BF1352BF4751779978C98B4387824D689F47B997606440 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
07:19:07.0826 0x1c80  workfolderssvc - ok
07:19:07.0858 0x1c80  [ 388F2A3C771B8BEE76FD1AAF9614D08E, C064EC6136CC20C4EE19C86E91CA071974933BB52C9EF8521DF4AFD060FED4A2 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
07:19:07.0868 0x1c80  wpcfltr - ok
07:19:07.0894 0x1c80  [ A6FCFE1F691B4A4D266F5D487FADB9FE, 2135D0C13C1295A2F76885E380CD72CB71CEB8E0D9F1C183A35935B27737D423 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
07:19:07.0940 0x1c80  WPDBusEnum - ok
07:19:07.0957 0x1c80  [ 37DCE976B3935380F2F6E39ABB6BF40D, B14E875F6D6503DF0DB6D9D2363316073AEEF394D830EA2270A0DCDA56E1CEC4 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
07:19:07.0966 0x1c80  WpdUpFltr - ok
07:19:07.0980 0x1c80  [ 80F0154FD4293E562D54E97811E03499, EDE920F7F95EFBE542FE3CE066B6F7CDE3B9A37DDF3411DC86EACE9EEF294C1D ] WpnService      C:\WINDOWS\system32\WpnService.dll
07:19:08.0050 0x1c80  WpnService - ok
07:19:08.0080 0x1c80  [ 7CA09731EB7FC99B910C7F239E57720F, 502F8917A0811F37C39B2B3F5E9B4F38A0E899C30CB29D3ECD87A50FF228E536 ] WPRO_41_2001    C:\WINDOWS\system32\drivers\WPRO_41_2001.sys
07:19:08.0087 0x1c80  WPRO_41_2001 - ok
07:19:08.0119 0x1c80  [ 3CD22DD5A790CF7C24D65455E565EA83, 49DB06DF6F38940E7F8691C16586A78BB20E702FD48A34E50987C06B08BDF4DB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
07:19:08.0130 0x1c80  ws2ifsl - ok
07:19:08.0160 0x1c80  [ EBA916109A176714E6A7BD152387F13C, 7B38B1708B83271ADA8D1CEC7F5F0A75C7F2572185C0961EFC749D5DF16A03F0 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
07:19:08.0192 0x1c80  wscsvc - ok
07:19:08.0206 0x1c80  [ E392DFAF6D0DEFC812ECC727A61F91C5, C28B6CC8AD034157CE92C7F098A9C12ADED2769E6AF954A9AAD10CC0E811DD2A ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
07:19:08.0217 0x1c80  WSDPrintDevice - ok
07:19:08.0238 0x1c80  [ 0902C63D8C836EA4D0876FCD8D627701, 0173F83CF8DA9C6D40C64CE88BF1A40EB634008D3D48F74E4E3BBBB11F1CA8D1 ] WSDScan         C:\WINDOWS\system32\DRIVERS\WSDScan.sys
07:19:08.0248 0x1c80  WSDScan - ok
07:19:08.0251 0x1c80  WSearch - ok
07:19:08.0460 0x1c80  [ 5B1C177EEEE17E758C34261641D8BA54, 6B443045969E49E4EAA9D2EE3357481EFE4562E36159C850480ED0DE0FEDDC32 ] WSService       C:\WINDOWS\System32\WSService.dll
07:19:08.0598 0x1c80  WSService - ok
07:19:08.0853 0x1c80  [ 842DD42327E1EE35588AB682B80EEE51, DABF23C0C8F1869EE25EB42C6418DA3FF02D71F3D9AE8B7F03C660175D9D3649 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
07:19:09.0039 0x1c80  wuauserv - ok
07:19:09.0059 0x1c80  [ 835F60262E7E310080EA05F6752BF248, 3010B731DF3D52B56EA16FD29B66F5D3AB9412E49CA4C547BAAECA3225C5DC40 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
07:19:09.0125 0x1c80  WudfPf - ok
07:19:09.0146 0x1c80  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
07:19:09.0177 0x1c80  WUDFRd - ok
07:19:09.0218 0x1c80  [ 44CF3130AEC8914705487C4AEF756A19, 30B09E32DEC02141F9B99ED012E441056C1663A72E4130EF4221ECC0ED87BF4B ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
07:19:09.0249 0x1c80  wudfsvc - ok
07:19:09.0256 0x1c80  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
07:19:09.0271 0x1c80  WUDFWpdMtp - ok
07:19:09.0382 0x1c80  [ 55CB073CD0942ACB0C5010A7F37BBFA5, 672D3D518E702B5B062C6021C3156816C1E87E0C1A8B35EC618959FD5521E01D ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
07:19:09.0428 0x1c80  WwanSvc - ok
07:19:09.0480 0x1c80  [ 7E90E1A00B597DC5424A31538C3D1DE6, 30E1FEF51B6054410286222959D2B89511270E98ABAB46EDA9407180D88B9506 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
07:19:09.0611 0x1c80  XblAuthManager - ok
07:19:09.0661 0x1c80  [ 3EDB6162310EA223890C2DF44C68358B, 12053291809CA9C38A30EA4B2DE7115F535531F0925220C63B0312979F9CC707 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
07:19:09.0798 0x1c80  XblGameSave - ok
07:19:09.0834 0x1c80  [ 30021D1E0407B71E8D5D4F8DAE4E656A, EE2E366A1CC033C068176C7E9F876FFA0EF86A15A482B6964E170DE863CFF542 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
07:19:09.0947 0x1c80  xboxgip - ok
07:19:10.0047 0x1c80  [ DB021BEA2061C61604222DECBDF260C7, F86ED8FA11087ABB1BAE2A34F6ED496B761EB294286631319453423A3BD1801A ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
07:19:10.0163 0x1c80  XboxNetApiSvc - ok
07:19:10.0190 0x1c80  [ 6851673B90D8CB332439E0339F81A6B6, 4E95F1A63E6DD58BB5BD6FC1D9784837D5E6F5BCF870C7ECC92DCA1AF20B6A4C ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
07:19:10.0216 0x1c80  xinputhid - ok
07:19:10.0218 0x1c80  ================ Scan global ===============================
07:19:10.0264 0x1c80  [ 14627B8C27BBD16474846D289AFBD216, ADE75FF9F300B87804C3882C7E3EAA74ED58574EA8A390FF4AA4736B4E091547 ] C:\WINDOWS\system32\basesrv.dll
07:19:10.0290 0x1c80  [ 2C5893D7E912958454634F8892728BFE, 88E18C01F518D0762FDDF16E24F7F598E2B9EAE5276D4D2321A7CEE892422259 ] C:\WINDOWS\system32\winsrv.dll
07:19:10.0325 0x1c80  [ F435AFA375ACBAEE44324DD464EDCC11, 815DE470439AE5D96348BEBF971A14FBDCA1D36F31CA0D25F69E5F41817D43D5 ] C:\WINDOWS\system32\sxssrv.dll
07:19:10.0365 0x1c80  [ BB3D8E1C108F7244613FF3993291A922, 1642AF23F200D46F54239C3BA743F1D5ADDC6A32D5F6481264D0C1D7F3E9D533 ] C:\WINDOWS\system32\services.exe
07:19:10.0373 0x1c80  [ Global ] - ok
07:19:10.0373 0x1c80  ================ Scan MBR ==================================
07:19:10.0399 0x1c80  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
07:19:11.0513 0x1c80  \Device\Harddisk0\DR0 - ok
07:19:11.0513 0x1c80  ================ Scan VBR ==================================
07:19:11.0552 0x1c80  [ E4DFBC7FDC9C5F169B68CC0A20143D08 ] \Device\Harddisk0\DR0\Partition1
07:19:11.0553 0x1c80  \Device\Harddisk0\DR0\Partition1 - ok
07:19:11.0563 0x1c80  [ A4EA60B3E201A16C4CA119BADF0E0E66 ] \Device\Harddisk0\DR0\Partition2
07:19:11.0565 0x1c80  \Device\Harddisk0\DR0\Partition2 - ok
07:19:11.0573 0x1c80  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
07:19:11.0574 0x1c80  \Device\Harddisk0\DR0\Partition3 - ok
07:19:11.0589 0x1c80  [ 4D4542302806144D0A678083B48AF62A ] \Device\Harddisk0\DR0\Partition4
07:19:11.0589 0x1c80  \Device\Harddisk0\DR0\Partition4 - ok
07:19:11.0614 0x1c80  [ A6A7798842948065ADB76BC6061E68F5 ] \Device\Harddisk0\DR0\Partition5
07:19:11.0615 0x1c80  \Device\Harddisk0\DR0\Partition5 - ok
07:19:11.0627 0x1c80  [ 28674C87C131434340D18C26038DCC8D ] \Device\Harddisk0\DR0\Partition6
07:19:11.0629 0x1c80  \Device\Harddisk0\DR0\Partition6 - ok
07:19:11.0642 0x1c80  [ A29301049089B643B53E79C4B629557F ] \Device\Harddisk0\DR0\Partition7
07:19:11.0643 0x1c80  \Device\Harddisk0\DR0\Partition7 - ok
07:19:11.0643 0x1c80  ================ Scan generic autorun ======================
07:19:11.0709 0x1c80  [ BA5E62B4485B83737579749DCE43EE85, 49D82BF54DEFA2505F26AC7DBD5CEC7766E23CE24F5AC887564A8AE15BC99FEC ] C:\WINDOWS\system32\igfxtray.exe
07:19:11.0723 0x1c80  IgfxTray - ok
07:19:11.0817 0x1c80  [ 02A27FC0972181EF743160BE9F62F2B4, 0E5B5684E892B1CE83C8A50A23F8478E8D01E2DD283337B5B263FDA4C2654E9F ] C:\Program Files\iTunes\iTunesHelper.exe
07:19:11.0826 0x1c80  iTunesHelper - ok
07:19:11.0920 0x1c80  [ BA973512967321769A17B5193703C229, 227DF8C8B6297271EE860B6813C7897B5EA7979B0279A9A0E8EA46689FFEF76B ] C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe
07:19:11.0977 0x1c80  GoPro Tray App - ok
07:19:12.0686 0x1c80  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
07:19:12.0930 0x1c80  OneDriveSetup - ok
07:19:13.0319 0x1c80  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
07:19:13.0448 0x1c80  OneDriveSetup - ok
07:19:13.0908 0x1c80  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
07:19:14.0079 0x1c80  OneDriveSetup - ok
07:19:14.0144 0x1c80  [ 9615F77B42907587DEBD6CA487317830, 71CB9484D079BCAD70C69D50C188A8BC07A3ED6D7EB90BE2749859E506FE696D ] C:\Program Files (x86)\Windows Mail\wab.exe
07:19:14.0244 0x1c80  WAB Migrate - ok
07:19:14.0407 0x1c80  [ F341DD6145F779CE5B732BC6BC6A3370, 67CE7E6DD5969C8DE34473E01D60D52FABC740B056287C2E261A36F97993ED0D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
07:19:14.0443 0x1c80  iCloudServices - ok
07:19:14.0454 0x1c80  [ 4016CE43255F0BE4FBE4A54F4500B021, 125A4BA4F0EF844F8320829ECED5D5CB1503A066E0D1A9D17702220F4C32F1E3 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
07:19:14.0465 0x1c80  iCloudDrive - ok
07:19:14.0601 0x1c80  [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\OneDrive.exe
07:19:14.0651 0x1c80  OneDrive - ok
07:19:14.0726 0x1c80  [ 081689430CD71A135F2FD85DE7E55702, 89F0C151918492E25EEED0E4365937366ED2486BAAAD3609A1C8343C1B65C4CB ] C:\Users\Kristina\AppData\Local\Chromium\Application\chrome.exe
07:19:14.0803 0x1c80  GoogleChromeAutoLaunch_E4ECC421CB85415135FC0490EDDAF29A - detected UnsignedFile.Multi.Generic ( 1 )
07:19:14.0859 0x1c80  Detect skipped due to KSN trusted
07:19:14.0867 0x1c80  GoogleChromeAutoLaunch_E4ECC421CB85415135FC0490EDDAF29A - ok
07:19:14.0915 0x1c80  [ A6177D080759CF4A03EF837A38F62401, 79D1FFABDD7841D9043D4DDF1F93721BCD35D823614411FD4EAB5D2C16A86F35 ] C:\WINDOWS\system32\cmd.exe
07:19:14.0934 0x1c80  Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64 - ok
07:19:14.0944 0x1c80  [ A6177D080759CF4A03EF837A38F62401, 79D1FFABDD7841D9043D4DDF1F93721BCD35D823614411FD4EAB5D2C16A86F35 ] C:\WINDOWS\system32\cmd.exe
07:19:14.0961 0x1c80  Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64 - ok
07:19:14.0971 0x1c80  [ A6177D080759CF4A03EF837A38F62401, 79D1FFABDD7841D9043D4DDF1F93721BCD35D823614411FD4EAB5D2C16A86F35 ] C:\WINDOWS\system32\cmd.exe
07:19:14.0989 0x1c80  Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64 - ok
07:19:14.0998 0x1c80  [ A6177D080759CF4A03EF837A38F62401, 79D1FFABDD7841D9043D4DDF1F93721BCD35D823614411FD4EAB5D2C16A86F35 ] C:\WINDOWS\system32\cmd.exe
07:19:15.0016 0x1c80  Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64 - ok
07:19:15.0026 0x1c80  [ A6177D080759CF4A03EF837A38F62401, 79D1FFABDD7841D9043D4DDF1F93721BCD35D823614411FD4EAB5D2C16A86F35 ] C:\WINDOWS\system32\cmd.exe
07:19:15.0043 0x1c80  Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64 - ok
07:19:15.0044 0x1c80  Waiting for KSN requests completion. In queue: 82
07:19:16.0048 0x1c80  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.17113 ), 0x60100 ( disabled : updated )
07:19:16.0048 0x1c80  AV detected via SS2: Bitdefender Virenschutz, C:\Bitdefender\Bitdefender 2017\wscfix.exe ( 21.0.17.874 ), 0x41010 ( enabled : outofdate )
07:19:16.0049 0x1c80  FW detected via SS2: Bitdefender Firewall, C:\Bitdefender\Bitdefender 2017\wscfix.exe ( 21.0.17.874 ), 0x41010 ( enabled )
07:19:16.0111 0x1c80  ============================================================
07:19:16.0111 0x1c80  Scan finished
07:19:16.0111 0x1c80  ============================================================
07:19:16.0117 0x0bac  Detected object count: 0
07:19:16.0117 0x0bac  Actual detected object count: 0
         


Alt 01.11.2016, 09:00   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Da ist keine malware. Halten wir mal nach etwas Adware Ausschau:

Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!


1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

__________________
--> Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge

Alt 05.11.2016, 14:30   #7
Sebow
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Okay, danke dir schon mal!

Anbei die neuen Log-files:

AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v6.030 - Bericht erstellt am 05/11/2016 um 14:17:46
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-11-05.1 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : Kristina - KRISSY-PC
# Gestartet von : C:\Users\Kristina\Downloads\AdwCleaner_6.030.exe
# Modus: Löschen
# Unterstützung : hxxps://www.malwarebytes.com/support



***** [ Dienste ] *****

[-] Dienst gelöscht: WinDivert64


***** [ Ordner ] *****

[-] Ordner gelöscht: C:\Users\Kristina\AppData\Roaming\Mysearchdial
[-] Ordner gelöscht: C:\Users\Kristina\AppData\Roaming\RPEng
[-] Ordner gelöscht: C:\Users\Kristina\Documents\PC Speed Maximizer
[-] Ordner gelöscht: C:\ProgramData\Websteroids
[#] Ordner mit Neustart gelöscht: C:\ProgramData\Application Data\Websteroids
[-] Ordner gelöscht: C:\Program Files (x86)\Mysearchdial
[-] Ordner gelöscht: C:\WINDOWS\SysWOW64\SearchProtect
[-] Ordner gelöscht: C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\iagcajndpnfncplednpbnkahadegklfa


***** [ Dateien ] *****

[-] Datei gelöscht: C:\Users\Kristina\AppData\Local\speedial.crx
[#] Datei gelöscht: C:\WINDOWS\SysNative\LavasoftTcpService64.dll
[-] Datei gelöscht: C:\WINDOWS\SysNative\LavasoftTcpServiceOff.ini
[-] Datei gelöscht: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk
[-] Datei gelöscht: C:\WINDOWS\SysWOW64\lavasofttcpservice.dll
[-] Datei gelöscht: C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini
[-] Datei gelöscht: C:\prefs.js
[-] Datei gelöscht: C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_iagcajndpnfncplednpbnkahadegklfa_0.localstorage
[-] Datei gelöscht: C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_iagcajndpnfncplednpbnkahadegklfa_0.localstorage-journal


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\BeSecure
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\BeSecure
[-] Schlüssel gelöscht: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\BeSecure_updater_service
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\BeSecure_updater_service
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialdskBnd
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialHlpr
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialdskBnd
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialHlpr
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
[-] Schlüssel gelöscht: HKCU\Software\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}
[-] Schlüssel gelöscht: HKCU\Software\Classes\CLSID\{DB40EAF2-2025-4F74-B9EF-7C0782F26C84}
[-] Schlüssel gelöscht: HKCU\Software\Classes\CLSID\{BEBBC426-4F16-4567-8FE1-BE198C982027}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{4ED063C9-4A0B-4B44-A9DC-23AFF424A0D3}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{C358B3D0-B911-41E3-A276-E7D43A6BA56D}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{0400EBCA-042C-4000-AA89-9713FBEDB671}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{0BD19251-4B4B-4B94-AB16-617106245BB7}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{3281114F-BCAB-45E3-80D9-A6CD64D4E636}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{44533FCB-F9FB-436A-8B6B-CF637B2D465A}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{44B29DDD-CF7A-454A-A275-A322A398D93F}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{A4DE94DB-DF03-45A3-8A5D-D1B7464B242D}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{AA0F50A8-2618-4AE4-A779-9F7378555A8F}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{B2DB115C-8278-4947-9A07-57B53D1C4215}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{B97FC455-DB33-431D-84DB-6F1514110BD5}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{C67281E0-78F5-4E49-9FAE-4B1B2ADAF17B}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{E72E9312-0367-4216-BFC7-21485FA8390B}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{F6CCB6C9-127E-44AE-8552-B94356F39FFE}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{FFD25630-2734-4AE9-88E6-21BF6525F3FE}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{FBC322D5-407E-4854-8C0B-555B951FD8E3}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Wert gelöscht: HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3004627E-F8E9-4E8B-909D-316753CBA923}]
[-] Schlüssel gelöscht: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\Conduit
[-] Schlüssel gelöscht: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\InstallCore
[-] Schlüssel gelöscht: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\mysearchdial
[-] Schlüssel gelöscht: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\SweetIM
[-] Schlüssel gelöscht: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\AppDataLow\Software\DynConIE
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Conduit
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\InstallCore
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\mysearchdial
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\SweetIM
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\AppDataLow\Software\DynConIE
[-] Schlüssel gelöscht: HKLM\SOFTWARE\InstallCore
[-] Schlüssel gelöscht: HKLM\SOFTWARE\SweetIM
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Conduit
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\InstallCore
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\mysearchdial
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\SweetIM
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\AppDataLow\Software\DynConIE
[-] Schlüssel gelöscht: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[-] Schlüssel gelöscht: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\superfish.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\wajam.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.wajam.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\superfish.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\wajam.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.wajam.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
[-] Wert gelöscht: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Web Companion]
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\escort.DLL
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\esrv.EXE
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\iagcajndpnfncplednpbnkahadegklfa


***** [ Browser ] *****

[-] [C:\Users\Kristina\AppData\Local\Chromium\User Data\Default\Web data] [Search Provider] Gelöscht: search provided by yahoo
[-] [C:\Users\Kristina\AppData\Local\Chromium\User Data\Default] [startup_urls] Gelöscht: hxxps://de.search.yahoo.com/yhs/web?hspart=elm&hsimp=yhs-001&type=hdr_s_16_21_orgnl&param1=1&param2=f%3D7%26b%3Dchmm%26cc%3Dde%26pa%3DHodor%26cd%3D2XzuyEtN2Y1L1Qzu0B0CzzyDyDyCtA0E0B0A0EyBtCzyyE0FtN0D0Tzu0StCyCtCtDtN1L2XzutAtFtBtCtFtCtFtDtN1L1Czu1M1Q1CtBtBtFtCtFtDtN1L1G1B1V1N2Y1L1Qzu2StByB0CyE0BtCyBtAtGtCyCtDtAtGyDyEyBtDtGtDzyzz0FtG0FzyyEtByE0AyC0AtBzzyE0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0DyB0AzytC0C0EyDtG0D0AyByDtGyEtCtCzztGzy0B0FyDtGyEzyyCtCyC0CtBzyyDtCzy0F2QtN0A0LzuyE%26cr%3D1577444814%26a%3Dhdr_s_16_21_orgnl%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&uref=chmm
[-] [C:\Users\Kristina\AppData\Local\Chromium\User Data\Default] [homepage] Gelöscht: hxxps://de.search.yahoo.com/yhs/web?hspart=elm&hsimp=yhs-001&type=hdr_s_16_21_orgnl&param1=1&param2=f%3D1%26b%3Dchmm%26cc%3Dde%26pa%3DHodor%26cd%3D2XzuyEtN2Y1L1Qzu0B0CzzyDyDyCtA0E0B0A0EyBtCzyyE0FtN0D0Tzu0StCyCtCtDtN1L2XzutAtFtBtCtFtCtFtDtN1L1Czu1M1Q1CtBtBtFtCtFtDtN1L1G1B1V1N2Y1L1Qzu2StByB0CyE0BtCyBtAtGtCyCtDtAtGyDyEyBtDtGtDzyzz0FtG0FzyyEtByE0AyC0AtBzzyE0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0DyB0AzytC0C0EyDtG0D0AyByDtGyEtCtCzztGzy0B0FyDtGyEzyyCtCyC0CtBzyyDtCzy0F2QtN0A0LzuyE%26cr%3D1577444814%26a%3Dhdr_s_16_21_orgnl%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&uref=chmm


*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [17034 Bytes] - [05/11/2016 14:17:46]
C:\AdwCleaner\AdwCleaner[S0].txt - [15102 Bytes] - [05/11/2016 14:16:03]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [17182 Bytes] ##########
         
--- --- ---


Junkware Removal kommt gleich im nächsten Post...

JRT Logfile:
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 10 Home x64 
Ran by Kristina (Administrator) on 05.11.2016 at 14:25:40,21
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 7 

Successfully deleted: C:\ProgramData\1447267170.bdinstall.bin (File) 
Successfully deleted: C:\ProgramData\1447270453.bdinstall.bin (File) 
Successfully deleted: C:\ProgramData\1464536054.bdinstall.bin (File) 
Successfully deleted: C:\WINDOWS\system32\drivers\windivert64.sys (File) 
Successfully deleted: C:\Program Files (x86)\GUT2A99.tmp (File) 
Successfully deleted: C:\WINDOWS\prefetch\BOOTOPTIMIZER.EXE-C41696B8.pf (File) 
Successfully deleted: C:\WINDOWS\prefetch\PERFORMANCEOPTIMIZER.EXE-23A96D70.pf (File) 



Registry: 3 

Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_E4ECC421CB85415135FC0490EDDAF29A (Registry Value) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{888F3639-2AA4-4214-A042-64D447BE580F} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{888F3639-2AA4-4214-A042-64D447BE580F} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 05.11.2016 at 14:30:01,57
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
--- --- ---

Alt 06.11.2016, 11:33   #8
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 07.11.2016, 20:45   #9
Sebow
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Log Files:

Die Addition:
FRST Additions Logfile:
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 04-11-2016
durchgeführt von Kristina (07-11-2016 20:44:01)
Gestartet von C:\Users\Kristina\Desktop
Windows 10 Home (X64) (2015-11-11 14:34:02)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-987662335-2921229888-1834634612-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-987662335-2921229888-1834634612-503 - Limited - Disabled)
Gast (S-1-5-21-987662335-2921229888-1834634612-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-987662335-2921229888-1834634612-1006 - Limited - Enabled)
Kristina (S-1-5-21-987662335-2921229888-1834634612-1002 - Administrator - Enabled) => C:\Users\Kristina
UpdatusUser (S-1-5-21-987662335-2921229888-1834634612-1001 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Virenschutz (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
AuthenTec TrueAPI 64-bit (Version: 1.6.0.87 - AuthenTec, Inc.) Hidden
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.18.898 - Bitdefender)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 21.0.18.937 - Bitdefender)
Bitdefender Total Security 2017 (HKLM\...\Bitdefender) (Version: 21.0.18.898 - Bitdefender)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GoPro (Version: 0.1.2733 - GoPro, Inc.) Hidden
GoPro for Desktop (HKLM-x32\...\{88734dc7-c200-4ad3-b29f-bb5e436cb30f}) (Version: 1.4.0.2733 - GoPro, Inc.)
GoPro Studio (x32 Version: 5.9.2733 - GoPro, Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{13133E99-B0D5-4143-B832-AAD55C62A41C}) (Version: 6.0.19.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}) (Version: 2.10.51 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{0FEE0C28-850D-4AC0-92E7-57D214134102}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Quick Start (HKLM-x32\...\{BB27C290-AB30-4D9E-A5D1-88745AAE42E9}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\{34C821CA-6B55-44A0-8A9B-2EF471D6019E}) (Version: 6.0.100.272 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.5.32.37 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{C39A7F0F-89A6-44BB-B1BF-5F96569B5345}) (Version: 1.2.9 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{73237EBB-B26F-4628-8754-4EFE563D72E9}) (Version: 2.1.5 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.8.103.1 - Intel Security)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
Intel(R) Smart Connect Technology 4.0 x64 (HKLM\...\{B0CA78DB-745A-4857-A73F-9ACD95E62BD0}) (Version: 4.0.41.2072 - Intel)
iTunes (HKLM\...\{6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3}) (Version: 12.2.1.16 - Apple Inc.)
Mediatek Bluetooth (HKLM\...\{904C579C-9366-D3B7-7F31-4879401DBD4A}) (Version: 11.0.756.0 - Mediatek)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32\...\{172423F9-522A-483A-AD65-03600CE4CA4F}) (Version: 9.7.0000 - Microsoft Corporation)
NVIDIA Grafiktreiber 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.45.0 - Mediatek)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21239 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.2.4.10 - Synaptics Incorporated)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUSR_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version:  - Microsoft)
UpdateAssistant (x32 Version: 1.3.0.0 - Microsoft Corporation) Hidden
VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices  (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012  - GoPro)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-987662335-2921229888-1834634612-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-987662335-2921229888-1834634612-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {022BB3D7-882E-433F-ACBB-7BFEE02CA891} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-10-12] (HP Inc.)
Task: {062058FE-D2EA-4F14-AF74-F29BF23BAB47} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {077E8565-E6FC-4755-9ADC-857A37A167E3} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT.exe [2016-10-16] (Microsoft Corporation)
Task: {0791E533-6D44-42C6-8868-0BB88441B6C8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {29AB8E8D-1B01-4D7D-BF1E-BEB27D127240} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {2B064DD3-4D85-4E2C-BA0E-7386E484AA3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {2EF0CCE4-2DE0-4AB3-A6DD-270C4DED9406} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {38075255-9A54-4AD8-8E06-943F4F7B0DE4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {3D6DCCE8-0211-4844-B257-25C3F649F71B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-10-12] (HP Inc.)
Task: {3FEC06C4-2E2E-46BC-9D41-0DBD5963DB12} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {5C4592E2-57F8-4397-A9C1-438A7D1AA4E7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {68AAE063-3CAD-484B-A222-8459D88258BB} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-10-21] (Bitdefender)
Task: {6A607535-D517-4097-BFDB-62490FAC85FC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {6D42F727-2E37-41A8-8C74-F515AC89CF5A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {794E9FAA-F8C7-4078-BC8D-38D41A4F2FB5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {79E92B0F-5E47-41E2-94DD-9667EA6FAE88} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.)
Task: {7AE626EE-4C99-4430-9EBB-98A6B9018BA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-10] (Google Inc.)
Task: {88D05C9C-3EC9-4C2D-88DD-3F55411C5B12} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {8942D63C-9D27-4434-923F-9C27D0398945} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {8BA27EBA-B939-43B9-97EF-729E2D4B8A38} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [2016-09-12] (Microsoft Corporation)
Task: {8E6026B4-6542-4A5C-936D-9B6A79ED7031} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {961F2718-86A2-4E10-85B5-4088CF9066B5} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-01] (Adobe Systems Incorporated)
Task: {A5A88FC5-DF9F-481C-BE92-6E00C0EFDD2A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {A710DAB4-E0A8-4B81-8555-B7B1E3B6EA53} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_205_pepper.exe [2016-11-01] (Adobe Systems Incorporated)
Task: {C0191BA1-1152-45C2-8A6C-EDF6921CE9A4} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {C9A2F038-2C78-4B74-AC63-B537C69BD6CB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {CDCBB4D3-720F-418D-BC4A-BFD7BB506E67} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {D3973680-1E35-4D83-AD41-84263DB3C9AA} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {D8AB4C67-1391-4C42-B826-63F23776FF7A} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2015-04-26] (Apple Inc.)
Task: {E9A897B5-CF08-4FB0-A5B0-2DAA2806BB7C} - System32\Tasks\Microsoft\Office\Office First Run Task => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
Task: {FB04FD18-960D-49DC-95AA-7042AAF31D6C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-10] (Google Inc.)
Task: {FC33DBE7-C910-4F1C-B383-007FD7E6ABC7} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_205_pepper.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForKristina.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-10 06:12 - 2015-09-10 06:12 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2013-02-13 09:35 - 2013-02-13 09:35 - 00180200 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2013-02-13 09:35 - 2013-02-13 09:35 - 00060392 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2016-10-15 13:58 - 2013-09-03 13:29 - 00111832 _____ () C:\Bitdefender\Bitdefender 2017\bdmetrics.dll
2016-10-15 13:58 - 2016-11-05 13:53 - 00134152 _____ () C:\Bitdefender\Bitdefender 2017\ECEvents.dll
2016-10-15 13:58 - 2016-05-09 10:29 - 01006336 _____ () C:\Bitdefender\Bitdefender 2017\otengines_001_001\ashttpbr.mdl
2016-10-15 13:58 - 2016-05-09 10:29 - 00541952 _____ () C:\Bitdefender\Bitdefender 2017\otengines_001_001\ashttpdsp.mdl
2016-10-15 13:58 - 2016-05-09 10:29 - 03035488 _____ () C:\Bitdefender\Bitdefender 2017\otengines_001_001\ashttpph.mdl
2016-10-15 13:58 - 2016-05-09 10:29 - 01541440 _____ () C:\Bitdefender\Bitdefender 2017\otengines_001_001\ashttprbl.mdl
2016-09-19 09:39 - 2016-09-07 05:29 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2016-10-16 00:09 - 2016-09-30 07:00 - 02495776 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-16 00:09 - 2016-09-30 07:00 - 02495776 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-05 15:00 - 2016-09-05 15:00 - 01864384 _____ () C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2015-07-18 00:35 - 2016-11-05 17:01 - 00401896 _____ () C:\WINDOWS\system32\igfxTray.exe
2013-02-07 08:19 - 2013-02-07 08:19 - 04073768 _____ () C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
2015-11-11 14:47 - 2015-11-11 14:47 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-09-19 09:39 - 2016-09-07 05:13 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-19 09:39 - 2016-09-07 05:10 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-19 09:43 - 2016-09-07 05:10 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-11-11 14:47 - 2015-11-11 14:47 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-10-15 13:58 - 2016-11-05 13:55 - 00023840 _____ () C:\Bitdefender\Bitdefender 2017\lang\de-DE\bdsystray.txtui
2013-06-09 01:06 - 2013-02-16 01:17 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-11-01 07:20 - 2016-10-20 09:47 - 01819240 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libglesv2.dll
2016-11-01 07:19 - 2016-10-20 09:47 - 00093288 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Temp:054203E4 [312]
AlternateDataStreams: C:\Users\Kristina\Desktop\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Kristina\Downloads\AdwCleaner_6.030.exe:BDU [0]
AlternateDataStreams: C:\Users\Kristina\Downloads\JRT.exe:BDU [0]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\localhost -> localhost

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2016-11-07 20:29 - 00000826 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Kristina\Pictures\GoPro-photos-1.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\StartupFolder: => "GoPro Importer.lnk"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run: => "SysTrayApp"
HKLM\...\StartupApproved\Run: => "GoPro Tray App"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "Bitdefender-Geldbörse-Agent"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_E4ECC421CB85415135FC0490EDDAF29A"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "iCloudDrive"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\StartupApproved\Run: => "OneDrive"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{F5B9CF8F-48A8-4245-9604-EA79B4DA59D2}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{FE211366-FC5D-42F3-82F7-D26611E7D268}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{669BC26C-0EE0-4893-9B62-4A8EA3AA6FE0}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [UDP Query User{0FE0644C-F6AD-405C-878F-D9F43271C35D}C:\users\kristina\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\kristina\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{71BF7BFD-27F6-40C5-BAC6-A969639D42B0}C:\users\kristina\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\kristina\appdata\roaming\spotify\spotify.exe
FirewallRules: [{711AB0DD-F0E5-480C-BACB-3AFE5FA5D976}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPSOCKSVC.exe
FirewallRules: [{1C93C57D-B749-4874-A87A-0DC95C677015}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{14622961-F218-4D9A-B403-EFBC2651FC35}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{C4375514-5DB8-4AB8-B468-CDA411FC4048}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{2EDDEBA0-2A35-4079-B798-9FC7899809F5}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{E161D831-21E6-4FC3-AF75-818E0E31DA45}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{CC3D8C9F-DCD6-4F30-91BB-EDCDD7BA8F35}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{2D6C2C26-85EE-4AE8-88EA-6B97E9F032E8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4D6FAAA4-0EF6-4082-846A-4BEA6ADA31B4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{34B9450F-3DFB-4B90-B3E6-1D5BC8723724}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{06AFDDD3-C835-4E5C-BBA0-CA442E23A780}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D00C13EC-CFEA-4CA9-9077-D30AD8EF3D4C}] => (Allow) C:\Users\Kristina\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{24085C47-F563-40AB-B11E-89CBD727BFF0}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro.exe
FirewallRules: [{0F0C95FF-7A7E-40C9-9468-42F17CBC9769}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe
FirewallRules: [{12CDE464-75CD-403D-89F5-5A9A5A5E631D}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe
FirewallRules: [{DF48F92D-3B31-472A-9754-DE9B02A1949A}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe
FirewallRules: [{AAA916B9-0B98-45A9-ACF6-97B730A2A923}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{041CE585-6BB5-4B46-8B72-FBAFF990C19F}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe

==================== Wiederherstellungspunkte =========================

03-10-2016 14:02:05 Windows Update
15-10-2016 13:14:25 Konfiguriert PhotoDirector
19-10-2016 20:30:31 Windows Update
01-11-2016 06:42:36 Windows Update
05-11-2016 13:57:52 Windows Update
05-11-2016 14:26:04 JRT Pre-Junkware Removal

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/07/2016 08:39:53 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/05/2016 05:42:41 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KRISSY-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (11/05/2016 05:04:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SearchUI.exe, Version: 10.0.10240.17113, Zeitstempel: 0x57cf960e
Name des fehlerhaften Moduls: Windows.UI.Xaml.dll, Version: 10.0.10240.17146, Zeitstempel: 0x57ede8bf
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000225e59
ID des fehlerhaften Prozesses: 0x1f58
Startzeit der fehlerhaften Anwendung: 0x01d2377da9716fdf
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\Windows.UI.Xaml.dll
Berichtskennung: ee5d638f-bf80-4e99-ab71-951951ada3a6
Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: CortanaUI

Error: (11/05/2016 05:04:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mstsc.exe, Version: 10.0.10240.17113, Zeitstempel: 0x57cf9340
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.17113, Zeitstempel: 0x57cf931a
Ausnahmecode: 0xc000000d
Fehleroffset: 0x00000000000f60e0
ID des fehlerhaften Prozesses: 0x17dc
Startzeit der fehlerhaften Anwendung: 0x01d2377c66f62750
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\mstsc.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: eb8b6a45-66b5-4eba-a95c-f5e451db7766
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (11/05/2016 05:01:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: rundll32.exe_invagent.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f39d6
Name des fehlerhaften Moduls: aeinv.dll, Version: 10.0.10240.17146, Zeitstempel: 0x57ede14a
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000000b9b7
ID des fehlerhaften Prozesses: 0x10bc
Startzeit der fehlerhaften Anwendung: 0x01d2377da8f13ab3
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\rundll32.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\aeinv.dll
Berichtskennung: 40fa4156-bde7-4bfd-9dc5-3bcfc6e4cfa1
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (11/05/2016 02:35:53 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KRISSY-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (11/05/2016 02:27:43 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KRISSY-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (11/05/2016 02:26:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (11/05/2016 01:58:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (11/05/2016 01:53:05 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


Systemfehler:
=============
Error: (11/05/2016 06:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/05/2016 06:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/05/2016 06:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/05/2016 06:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/05/2016 05:06:19 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8024200d fehlgeschlagen: Funktionsupdate für Windows 10 – Version 1607

Error: (11/05/2016 04:49:25 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070005 fehlgeschlagen: OneNote

Error: (11/05/2016 02:35:53 PM) (Source: DCOM) (EventID: 10010) (User: KRISSY-PC)
Description: Der Server "CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (11/05/2016 02:35:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/05/2016 02:35:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/05/2016 02:35:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2016-11-05 14:21:49.233
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-20 18:39:50.488
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-16 01:48:35.011
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-16 01:04:03.437
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-16 00:16:46.897
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-15 15:00:52.871
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume4\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-03 15:01:18.708
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-03 15:01:18.006
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-02 15:02:17.052
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-02 15:02:14.571
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-4700MQ CPU @ 2.40GHz
Prozentuale Nutzung des RAM: 50%
Installierter physikalischer RAM: 6076.02 MB
Verfügbarer physikalischer RAM: 3020.58 MB
Summe virtueller Speicher: 8060.02 MB
Verfügbarer virtueller Speicher: 4707.36 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:678.28 GB) (Free:384.73 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (RECOVERY) (Fixed) (Total:18.46 GB) (Free:1.78 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 1E1F4777)

Partition: GPT.

==================== Ende von Addition.txt ============================
         
--- --- ---

Alt 07.11.2016, 20:46   #10
Sebow
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2016
durchgeführt von Kristina (Administrator) auf KRISSY-PC (07-11-2016 20:41:53)
Gestartet von C:\Users\Kristina\Desktop
Geladene Profile: Kristina (Verfügbare Profile: UpdatusUser & Kristina)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Bitdefender) C:\Bitdefender\Bitdefender 2017\updatesrv.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Bitdefender) C:\Bitdefender\Bitdefender 2017\vsservp.exe
(Bitdefender) C:\Bitdefender\Bitdefender 2017\vsserv.exe
(Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AuthenTec Inc.) C:\Program Files (x86)\HP SimplePass\TouchControl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
() C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Bitdefender) C:\Bitdefender\Bitdefender 2017\bdwtxcr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows10Upgrade\Windows10UpgraderApp.exe
(Bitdefender) C:\Bitdefender\Bitdefender 2017\bdagent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [401896 2016-11-05] ()
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-07-11] (Apple Inc.)
HKLM\...\Run: [GoPro Tray App] => C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [1088944 2016-05-11] ()
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-04-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [509192 2014-10-09] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\RunOnce: [Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\RunOnce: [Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\RunOnce: [Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\RunOnce: [Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\...\RunOnce: [Uninstall C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll [2016-09-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll [2016-09-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll [2016-09-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncShell.dll [2016-09-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncShell.dll [2016-09-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Kristina\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncShell.dll [2016-09-05] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk [2013-06-09]
ShortcutTarget: iSCTsysTray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{d82828ad-b27e-4796-9540-10870538adc3}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131176603816965614&GUID=8C60FC27-DF65-4EA8-BBD7-709A914A422D
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131176603816989254&GUID=8C60FC27-DF65-4EA8-BBD7-709A914A422D
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131176603816994848&GUID=8C60FC27-DF65-4EA8-BBD7-709A914A422D
HKU\S-1-5-21-987662335-2921229888-1834634612-1002\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPNOT13/4
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = 
SearchScopes: HKLM -> {888F3639-2AA4-4214-A042-64D447BE580F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Bitdefender\Bitdefender 2017\pmbxie.dll [2016-11-05] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-10-07] (Intel Security)
BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2016-11-05] (Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Bitdefender\Bitdefender 2017\pmbxie.dll [2016-11-05] (Bitdefender)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-10-07] (Intel Security)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2016-11-05] (Bitdefender)
Toolbar: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
Toolbar: HKU\S-1-5-21-987662335-2921229888-1834634612-1002 -> Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Bitdefender\Bitdefender 2017\pmbxie.dll [2016-11-05] (Bitdefender)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-08-16] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Bitdefender\Bitdefender 2017\antispam32\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Bitdefender\Bitdefender 2017\antispam32\bdwteff [2016-11-05]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Bitdefender\Bitdefender 2017\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Bitdefender\Bitdefender 2017\bdtbext [2016-10-10] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Bitdefender\Bitdefender 2017\antispam32\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Bitdefender\Bitdefender 2017\bdtbext
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [2012-08-08] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll [2013-02-07] ( HP)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-02-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-02-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-05] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> ""
CHR Profile: C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default [2016-11-07]
CHR Extension: (Bitdefender Wallet) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2016-11-05]
CHR Extension: (AdBlock) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-05]
CHR Extension: (Website Logon) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmbkhknacohfhbmmpnmbkgdffdbildof [2015-02-09]
CHR Extension: (Home Tab) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\kofkpgiaknijknhajbhnghkodiccblkg [2016-05-29]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-29]
CHR Extension: (Chrome Media Router) - C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-05]
CHR HKLM\...\Chrome\Extension: [kofkpgiaknijknhajbhnghkodiccblkg] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-987662335-2921229888-1834634612-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kofkpgiaknijknhajbhnghkodiccblkg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hmbkhknacohfhbmmpnmbkgdffdbildof] - C:\Program Files (x86)\HP SimplePass\tschrome.crx [2012-12-12]
CHR HKLM-x32\...\Chrome\Extension: [kofkpgiaknijknhajbhnghkodiccblkg] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [100448 2016-10-06] (Bitdefender)
R2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641768 2013-02-07] (HP)
S4 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2016-05-11] ()
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [569608 2014-10-09] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-05] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129848 2013-02-22] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [180200 2013-02-13] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-02-22] (Intel Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1100392 2016-10-28] (Bitdefender)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269400 2016-10-19] (Synaptics Incorporated)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [987048 2016-09-30] (McAfee, Inc.)
S2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-09-30] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-09-30] (McAfee, Inc.)
S3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401856 2013-01-07] (AuthenTec, Inc.)
R2 UPDATESRV; C:\Bitdefender\Bitdefender 2017\updatesrv.exe [216880 2016-11-05] (Bitdefender)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [61968 2015-11-11] (Synaptics Incorporated)
S3 vmicguestinterface; C:\WINDOWS\System32\ICSvc.dll [506880 2016-09-30] (Microsoft Corporation)
S3 vmicheartbeat; C:\WINDOWS\System32\ICSvc.dll [506880 2016-09-30] (Microsoft Corporation)
S3 vmickvpexchange; C:\WINDOWS\System32\ICSvc.dll [506880 2016-09-30] (Microsoft Corporation)
S3 vmicshutdown; C:\WINDOWS\System32\ICSvc.dll [506880 2016-09-30] (Microsoft Corporation)
S3 vmictimesync; C:\WINDOWS\System32\ICSvc.dll [506880 2016-09-30] (Microsoft Corporation)
S3 vmicvmsession; C:\WINDOWS\System32\ICSvc.dll [506880 2016-09-30] (Microsoft Corporation)
R2 vsserv; C:\Bitdefender\Bitdefender 2017\vsserv.exe [1306832 2016-11-05] (Bitdefender)
R2 vsservp; C:\Bitdefender\Bitdefender 2017\vsservp.exe [524872 2016-08-25] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362920 2016-09-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-09-30] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1605376 2016-11-05] (BitDefender)
R3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [878072 2016-11-05] (BitDefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-24] (BitDefender LLC)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
S3 bthhfhid; C:\WINDOWS\System32\drivers\BthHFHid.sys [12 2016-10-02] () [Datei ist nicht signiert]
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182936 2015-12-16] (BitDefender LLC)
R0 ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [300840 2016-08-11] (Bitdefender)
R3 ikbevent; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [21048 2013-02-13] ()
R3 imsevent; C:\WINDOWS\system32\DRIVERS\imsevent.sys [21048 2013-02-13] ()
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [46568 2013-02-13] ()
R3 netr28x; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-02-06] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [79960 2016-10-19] (Synaptics Incorporated)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-03-10] (BitDefender S.R.L.)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Apple, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
R3 WPRO_41_2001; C:\WINDOWS\System32\drivers\WPRO_41_2001.sys [34752 2016-11-05] ()
S3 STHDA; \SystemRoot\system32\DRIVERS\stwrt64.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-07 20:41 - 2016-11-07 20:42 - 00025352 _____ C:\Users\Kristina\Desktop\FRST.txt
2016-11-07 20:41 - 2016-11-07 20:41 - 02410496 _____ (Farbar) C:\Users\Kristina\Desktop\FRST64.exe
2016-11-07 20:30 - 2016-11-07 20:30 - 00016148 _____ C:\WINDOWS\system32\KRISSY-PC_Kristina_HistoryPrediction.bin
2016-11-05 17:03 - 2016-11-07 20:30 - 00000000 ____D C:\Intel
2016-11-05 17:03 - 2016-11-05 17:03 - 00000000 ____D C:\WINDOWS\LastGood
2016-11-05 17:03 - 2016-11-05 17:03 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-11-05 17:01 - 2016-11-05 17:01 - 39862848 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 38903912 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 34823872 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 29101576 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 19861512 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 15488928 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 13483208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 12680800 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 11742216 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 08732168 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 05799386 _____ C:\WINDOWS\system32\igdclbif.bin
2016-11-05 17:01 - 2016-11-05 17:01 - 05688840 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 05262856 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 05140472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 04928528 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 04363784 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 04270680 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 04239704 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 03971592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 02393176 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 01858640 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 01816720 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 01814064 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 01590792 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 01178632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 01027056 _____ C:\WINDOWS\system32\igfxSDK.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00968168 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00964592 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00831685 _____ C:\WINDOWS\system32\DisplayAudiox64.cab
2016-11-05 17:01 - 2016-11-05 17:01 - 00705032 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00536560 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00466920 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00448496 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00439304 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00416264 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00390152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00388616 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00350184 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00318472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00312304 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00301552 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00297168 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00273416 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-05 17:01 - 2016-11-05 17:01 - 00266248 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00254984 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00242160 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00237040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00232432 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00231920 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00225288 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00223248 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00212488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4531.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00205360 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00193032 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00183984 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00182960 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00181840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00175088 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2016-11-05 17:01 - 2016-11-05 17:01 - 00174088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00160272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00160272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00111624 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00103432 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00100872 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00095240 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00084488 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00055248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00052744 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00041296 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2016-11-05 17:01 - 2016-11-05 17:01 - 00040931 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2016-11-05 17:01 - 2016-11-05 17:01 - 00040343 _____ C:\WINDOWS\system32\iglhxo64.vp
2016-11-05 17:01 - 2016-11-05 17:01 - 00040316 _____ C:\WINDOWS\system32\iglhxc64.vp
2016-11-05 17:01 - 2016-11-05 17:01 - 00039798 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2016-11-05 17:01 - 2016-11-05 17:01 - 00039658 _____ C:\WINDOWS\system32\iglhxg64.vp
2016-11-05 17:01 - 2016-11-05 17:01 - 00029192 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00029192 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00027656 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00027656 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00022536 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00022536 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2016-11-05 17:01 - 2016-11-05 17:01 - 00004862 _____ C:\WINDOWS\system32\iglhxs64.vp
2016-11-05 17:01 - 2016-11-05 17:01 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2016-11-05 14:30 - 2016-11-05 14:30 - 00001486 _____ C:\Users\Kristina\Desktop\JRT.txt
2016-11-05 14:25 - 2016-11-05 14:25 - 01631928 _____ (Malwarebytes) C:\Users\Kristina\Downloads\JRT.exe
2016-11-05 14:21 - 2016-11-05 14:21 - 00094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2016-11-05 13:59 - 2016-11-05 14:17 - 00000000 ____D C:\AdwCleaner
2016-11-05 13:57 - 2016-11-05 13:57 - 03910208 _____ C:\Users\Kristina\Downloads\AdwCleaner_6.030.exe
2016-11-05 13:45 - 2016-11-05 13:45 - 00039272 _____ C:\ProgramData\dm.1478349872.bdinstall.bin
2016-11-05 13:44 - 2016-11-05 13:44 - 00028769 _____ C:\ProgramData\agent.1478349823.bdinstall.bin
2016-11-01 07:17 - 2016-11-01 07:21 - 00352944 _____ C:\TDSSKiller.3.1.0.11_01.11.2016_07.17.12_log.txt
2016-11-01 06:53 - 2016-11-01 07:16 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-11-01 06:53 - 2016-11-01 06:53 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-01 06:53 - 2016-11-01 06:53 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-01 06:52 - 2016-11-01 06:52 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-11-01 06:43 - 2016-11-01 06:43 - 00000000 ____D C:\WINDOWS\UpdateAssistant
2016-10-20 17:49 - 2016-10-20 17:49 - 00000364 _____ C:\WINDOWS\Tasks\HPCeeScheduleForKristina.job
2016-10-20 17:42 - 2016-11-07 20:43 - 00000000 ____D C:\Windows10Upgrade
2016-10-19 21:20 - 2016-11-07 20:41 - 00000000 ____D C:\FRST
2016-10-19 20:31 - 2016-10-19 20:31 - 00444000 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2016-10-19 20:31 - 2016-10-19 20:31 - 00079960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2016-10-19 20:31 - 2016-10-19 20:31 - 00076376 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2016-10-19 20:31 - 2016-10-19 20:31 - 00074840 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2016-10-16 00:24 - 2016-11-05 17:06 - 00000000 ____D C:\WINDOWS\Panther
2016-10-16 00:24 - 2016-10-16 00:24 - 00000000 ___HD C:\$WINDOWS.~BT
2016-10-16 00:10 - 2016-10-16 00:10 - 00000000 ____D C:\Users\Kristina\AppData\Temp
2016-10-16 00:10 - 2016-09-30 07:00 - 08015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-16 00:10 - 2016-09-30 07:00 - 01538168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-16 00:10 - 2016-09-30 06:50 - 06525424 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-16 00:10 - 2016-09-30 06:50 - 01134792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-16 00:10 - 2016-09-30 05:19 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-16 00:10 - 2016-09-30 05:17 - 24596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-16 00:10 - 2016-09-30 05:07 - 14243840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-16 00:10 - 2016-09-30 05:05 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-16 00:10 - 2016-09-30 05:04 - 02839040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-10-16 00:10 - 2016-09-30 04:58 - 02405888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-16 00:10 - 2016-09-30 04:57 - 07527936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-16 00:10 - 2016-09-30 04:57 - 01670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-16 00:10 - 2016-09-30 04:56 - 04791808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-16 00:10 - 2016-09-30 04:54 - 03549696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-10-16 00:10 - 2016-09-30 04:36 - 19334656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-10-16 00:10 - 2016-09-30 04:22 - 18799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-10-16 00:10 - 2016-09-30 04:22 - 12591104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-10-16 00:10 - 2016-09-30 04:16 - 05455872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-10-16 00:10 - 2016-09-30 04:15 - 11270656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-10-16 00:09 - 2016-09-30 07:01 - 03467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-10-16 00:09 - 2016-09-30 07:01 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-10-16 00:09 - 2016-09-30 07:01 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-16 00:09 - 2016-09-30 07:01 - 00552288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-10-16 00:09 - 2016-09-30 07:00 - 02816016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-10-16 00:09 - 2016-09-30 07:00 - 02495776 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-16 00:09 - 2016-09-30 07:00 - 02147072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-10-16 00:09 - 2016-09-30 07:00 - 01563480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-10-16 00:09 - 2016-09-30 07:00 - 01298008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-16 00:09 - 2016-09-30 07:00 - 01270104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-10-16 00:09 - 2016-09-30 07:00 - 01127024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-16 00:09 - 2016-09-30 07:00 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-16 00:09 - 2016-09-30 07:00 - 00652864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-16 00:09 - 2016-09-30 07:00 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-16 00:09 - 2016-09-30 07:00 - 00143600 _____ (Microsoft Corporation) C:\WINDOWS\system32\cabinet.dll
2016-10-16 00:09 - 2016-09-30 07:00 - 00123744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-10-16 00:09 - 2016-09-30 06:59 - 02115936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-10-16 00:09 - 2016-09-30 06:58 - 02640872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2016-10-16 00:09 - 2016-09-30 06:58 - 02601152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-16 00:09 - 2016-09-30 06:58 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-16 00:09 - 2016-09-30 06:58 - 01150304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-16 00:09 - 2016-09-30 06:58 - 00862064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-10-16 00:09 - 2016-09-30 06:58 - 00807832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-10-16 00:09 - 2016-09-30 06:58 - 00588832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2016-10-16 00:09 - 2016-09-30 06:58 - 00388888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-10-16 00:09 - 2016-09-30 06:58 - 00305816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-10-16 00:09 - 2016-09-30 06:51 - 03643480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-16 00:09 - 2016-09-30 06:51 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-10-16 00:09 - 2016-09-30 06:51 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-10-16 00:09 - 2016-09-30 06:50 - 00724168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-10-16 00:09 - 2016-09-30 06:50 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-10-16 00:09 - 2016-09-30 06:46 - 00672096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-10-16 00:09 - 2016-09-30 06:46 - 00224712 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-10-16 00:09 - 2016-09-30 06:45 - 00613120 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-10-16 00:09 - 2016-09-30 06:43 - 00244064 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmipnpinstall.dll
2016-10-16 00:09 - 2016-09-30 06:41 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-10-16 00:09 - 2016-09-30 06:41 - 00984448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-10-16 00:09 - 2016-09-30 06:41 - 00850272 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-10-16 00:09 - 2016-09-30 05:31 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-10-16 00:09 - 2016-09-30 05:25 - 00365128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-10-16 00:09 - 2016-09-30 05:24 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-10-16 00:09 - 2016-09-30 05:24 - 01766496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-10-16 00:09 - 2016-09-30 05:24 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-10-16 00:09 - 2016-09-30 05:24 - 01106872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-10-16 00:09 - 2016-09-30 05:24 - 00877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-10-16 00:09 - 2016-09-30 05:24 - 00439648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-10-16 00:09 - 2016-09-30 05:24 - 00125032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cabinet.dll
2016-10-16 00:09 - 2016-09-30 05:23 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-16 00:09 - 2016-09-30 05:23 - 01895576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-10-16 00:09 - 2016-09-30 05:22 - 02369696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2016-10-16 00:09 - 2016-09-30 05:22 - 01811360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-10-16 00:09 - 2016-09-30 05:22 - 00524800 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-16 00:09 - 2016-09-30 05:22 - 00374784 _____ C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-16 00:09 - 2016-09-30 05:22 - 00253600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-10-16 00:09 - 2016-09-30 05:21 - 00714808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-10-16 00:09 - 2016-09-30 05:21 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-10-16 00:09 - 2016-09-30 05:18 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-10-16 00:09 - 2016-09-30 05:16 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-16 00:09 - 2016-09-30 05:16 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-16 00:09 - 2016-09-30 05:15 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-10-16 00:09 - 2016-09-30 05:14 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
2016-10-16 00:09 - 2016-09-30 05:13 - 02898112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-10-16 00:09 - 2016-09-30 05:13 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2016-10-16 00:09 - 2016-09-30 05:13 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-10-16 00:09 - 2016-09-30 05:12 - 00565656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-10-16 00:09 - 2016-09-30 05:12 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-10-16 00:09 - 2016-09-30 05:12 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-10-16 00:09 - 2016-09-30 05:11 - 03793408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-10-16 00:09 - 2016-09-30 05:11 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-10-16 00:09 - 2016-09-30 05:10 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-10-16 00:09 - 2016-09-30 05:10 - 01123840 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-10-16 00:09 - 2016-09-30 05:10 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-10-16 00:09 - 2016-09-30 05:09 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-10-16 00:09 - 2016-09-30 05:08 - 01418752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-16 00:09 - 2016-09-30 05:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-16 00:09 - 2016-09-30 05:08 - 00814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2016-10-16 00:09 - 2016-09-30 05:08 - 00185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-10-16 00:09 - 2016-09-30 05:07 - 12514304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-16 00:09 - 2016-09-30 05:07 - 00545400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-10-16 00:09 - 2016-09-30 05:06 - 00345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-10-16 00:09 - 2016-09-30 05:06 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-10-16 00:09 - 2016-09-30 05:06 - 00322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-10-16 00:09 - 2016-09-30 05:06 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-10-16 00:09 - 2016-09-30 05:06 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmgp.dll
2016-10-16 00:09 - 2016-09-30 05:06 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-10-16 00:09 - 2016-09-30 05:05 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-10-16 00:09 - 2016-09-30 05:05 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2016-10-16 00:09 - 2016-09-30 05:05 - 00192344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmipnpinstall.dll
2016-10-16 00:09 - 2016-09-30 05:04 - 02253824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-10-16 00:09 - 2016-09-30 05:04 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-10-16 00:09 - 2016-09-30 05:04 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationHost.exe
2016-10-16 00:09 - 2016-09-30 05:03 - 03170816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-16 00:09 - 2016-09-30 05:03 - 01686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-16 00:09 - 2016-09-30 05:03 - 01601024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-16 00:09 - 2016-09-30 05:03 - 01040384 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-10-16 00:09 - 2016-09-30 05:03 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2016-10-16 00:09 - 2016-09-30 05:03 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-16 00:09 - 2016-09-30 05:02 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-10-16 00:09 - 2016-09-30 05:02 - 00775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-16 00:09 - 2016-09-30 05:02 - 00528384 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-10-16 00:09 - 2016-09-30 05:01 - 05448704 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-10-16 00:09 - 2016-09-30 05:00 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-16 00:09 - 2016-09-30 05:00 - 00819712 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-10-16 00:09 - 2016-09-30 05:00 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-10-16 00:09 - 2016-09-30 04:59 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-10-16 00:09 - 2016-09-30 04:59 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2016-10-16 00:09 - 2016-09-30 04:59 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-10-16 00:09 - 2016-09-30 04:58 - 04168704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-10-16 00:09 - 2016-09-30 04:57 - 07502848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-10-16 00:09 - 2016-09-30 04:57 - 03584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-16 00:09 - 2016-09-30 04:57 - 01718272 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-16 00:09 - 2016-09-30 04:57 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-16 00:09 - 2016-09-30 04:55 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-10-16 00:09 - 2016-09-30 04:55 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-10-16 00:09 - 2016-09-30 04:55 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-10-16 00:09 - 2016-09-30 04:55 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2016-10-16 00:09 - 2016-09-30 04:54 - 03420160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2016-10-16 00:09 - 2016-09-30 04:54 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-10-16 00:09 - 2016-09-30 04:54 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\devmgr.dll
2016-10-16 00:09 - 2016-09-30 04:54 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2016-10-16 00:09 - 2016-09-30 04:54 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-10-16 00:09 - 2016-09-30 04:54 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2016-10-16 00:09 - 2016-09-30 04:53 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2016-10-16 00:09 - 2016-09-30 04:53 - 00939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-10-16 00:09 - 2016-09-30 04:53 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-10-16 00:09 - 2016-09-30 04:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-10-16 00:09 - 2016-09-30 04:51 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-10-16 00:09 - 2016-09-30 04:43 - 13027328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-10-16 00:09 - 2016-09-30 04:38 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-10-16 00:09 - 2016-09-30 04:34 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-10-16 00:09 - 2016-09-30 04:31 - 02599424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-10-16 00:09 - 2016-09-30 04:31 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-10-16 00:09 - 2016-09-30 04:31 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2016-10-16 00:09 - 2016-09-30 04:31 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-10-16 00:09 - 2016-09-30 04:30 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-10-16 00:09 - 2016-09-30 04:29 - 04398592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-10-16 00:09 - 2016-09-30 04:29 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-10-16 00:09 - 2016-09-30 04:29 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-10-16 00:09 - 2016-09-30 04:27 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-10-16 00:09 - 2016-09-30 04:27 - 03873280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-10-16 00:09 - 2016-09-30 04:27 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provcore.dll
2016-10-16 00:09 - 2016-09-30 04:26 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-10-16 00:09 - 2016-09-30 04:25 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-10-16 00:09 - 2016-09-30 04:25 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-10-16 00:09 - 2016-09-30 04:25 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-10-16 00:09 - 2016-09-30 04:25 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-10-16 00:09 - 2016-09-30 04:25 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmgp.dll
2016-10-16 00:09 - 2016-09-30 04:25 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-10-16 00:09 - 2016-09-30 04:24 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-10-16 00:09 - 2016-09-30 04:23 - 02198016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-10-16 00:09 - 2016-09-30 04:22 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-10-16 00:09 - 2016-09-30 04:22 - 02638336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-10-16 00:09 - 2016-09-30 04:22 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-10-16 00:09 - 2016-09-30 04:22 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-10-16 00:09 - 2016-09-30 04:22 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationHost.exe
2016-10-16 00:09 - 2016-09-30 04:21 - 00679936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-10-16 00:09 - 2016-09-30 04:21 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-10-16 00:09 - 2016-09-30 04:21 - 00486912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-10-16 00:09 - 2016-09-30 04:21 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-10-16 00:09 - 2016-09-30 04:19 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-10-16 00:09 - 2016-09-30 04:19 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2016-10-16 00:09 - 2016-09-30 04:18 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-10-16 00:09 - 2016-09-30 04:18 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-10-16 00:09 - 2016-09-30 04:18 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-10-16 00:09 - 2016-09-30 04:17 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2016-10-16 00:09 - 2016-09-30 04:17 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-16 00:09 - 2016-09-30 04:16 - 01467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-10-16 00:09 - 2016-09-30 04:15 - 06713856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-10-16 00:09 - 2016-09-30 04:15 - 00565760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-10-16 00:09 - 2016-09-30 04:13 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devmgr.dll
2016-10-16 00:09 - 2016-09-30 04:13 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2016-10-16 00:09 - 2016-09-30 04:12 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-10-16 00:09 - 2016-09-30 04:12 - 01189888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2016-10-16 00:09 - 2016-09-30 04:12 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-10-16 00:09 - 2016-09-30 04:12 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-10-16 00:09 - 2016-09-30 04:11 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-10-16 00:09 - 2016-09-30 02:13 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-16 00:08 - 2016-09-30 05:28 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2016-10-16 00:08 - 2016-09-30 05:23 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-10-16 00:08 - 2016-09-30 05:23 - 00422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-10-16 00:08 - 2016-09-30 05:12 - 00596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2016-10-16 00:08 - 2016-09-30 05:12 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-10-16 00:08 - 2016-09-30 05:11 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-16 00:08 - 2016-09-30 05:10 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-10-16 00:08 - 2016-09-30 05:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-10-16 00:08 - 2016-09-30 05:10 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-10-16 00:08 - 2016-09-30 05:10 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-10-16 00:08 - 2016-09-30 05:09 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2016-10-16 00:08 - 2016-09-30 05:09 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassvcs.dll
2016-10-16 00:08 - 2016-09-30 05:07 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\verifiergui.exe
2016-10-16 00:08 - 2016-09-30 05:06 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsnp.dll
2016-10-16 00:08 - 2016-09-30 05:06 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-16 00:08 - 2016-09-30 05:06 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2016-10-16 00:08 - 2016-09-30 05:06 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmdl32.exe
2016-10-16 00:08 - 2016-09-30 05:05 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\blackbox.dll
2016-10-16 00:08 - 2016-09-30 05:05 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscp.dll
2016-10-16 00:08 - 2016-09-30 05:05 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3gpui.dll
2016-10-16 00:08 - 2016-09-30 05:05 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\msnetobj.dll
2016-10-16 00:08 - 2016-09-30 05:05 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2016-10-16 00:08 - 2016-09-30 05:05 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\genericusbfn.sys
2016-10-16 00:08 - 2016-09-30 05:04 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-10-16 00:08 - 2016-09-30 05:04 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2016-10-16 00:08 - 2016-09-30 05:03 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-10-16 00:08 - 2016-09-30 05:03 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtckrm.dll
2016-10-16 00:08 - 2016-09-30 05:03 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationHostProxy.dll
2016-10-16 00:08 - 2016-09-30 05:02 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate_isv.exe
2016-10-16 00:08 - 2016-09-30 05:01 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-10-16 00:08 - 2016-09-30 05:01 - 01797632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-10-16 00:08 - 2016-09-30 05:01 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate_ssp.exe
2016-10-16 00:08 - 2016-09-30 05:01 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-10-16 00:08 - 2016-09-30 05:00 - 00577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate.exe
2016-10-16 00:08 - 2016-09-30 05:00 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate_ssp_isv.exe
2016-10-16 00:08 - 2016-09-30 05:00 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-10-16 00:08 - 2016-09-30 05:00 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-10-16 00:08 - 2016-09-30 05:00 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2016-10-16 00:08 - 2016-09-30 04:59 - 04453888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-16 00:08 - 2016-09-30 04:59 - 01729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-10-16 00:08 - 2016-09-30 04:59 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-10-16 00:08 - 2016-09-30 04:59 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-10-16 00:08 - 2016-09-30 04:59 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2016-10-16 00:08 - 2016-09-30 04:58 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\certmgr.dll
2016-10-16 00:08 - 2016-09-30 04:58 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2016-10-16 00:08 - 2016-09-30 04:58 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mycomput.dll
2016-10-16 00:08 - 2016-09-30 04:58 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\els.dll
2016-10-16 00:08 - 2016-09-30 04:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-16 00:08 - 2016-09-30 04:56 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-10-16 00:08 - 2016-09-30 04:56 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-16 00:08 - 2016-09-30 04:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnification.dll
2016-10-16 00:08 - 2016-09-30 04:55 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskmgr.dll
2016-10-16 00:08 - 2016-09-30 04:55 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2016-10-16 00:08 - 2016-09-30 04:54 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2016-10-16 00:08 - 2016-09-30 04:53 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-10-16 00:08 - 2016-09-30 04:53 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\makecab.exe
2016-10-16 00:08 - 2016-09-30 04:53 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\expand.exe
2016-10-16 00:08 - 2016-09-30 04:53 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\extrac32.exe
2016-10-16 00:08 - 2016-09-30 04:52 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-10-16 00:08 - 2016-09-30 04:51 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgcore.dll
2016-10-16 00:08 - 2016-09-30 04:39 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-10-16 00:08 - 2016-09-30 04:39 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcfile.dll
2016-10-16 00:08 - 2016-09-30 04:30 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-10-16 00:08 - 2016-09-30 04:30 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2016-10-16 00:08 - 2016-09-30 04:30 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-10-16 00:08 - 2016-09-30 04:29 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-16 00:08 - 2016-09-30 04:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-10-16 00:08 - 2016-09-30 04:28 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2016-10-16 00:08 - 2016-09-30 04:28 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-10-16 00:08 - 2016-09-30 04:27 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassvcs.dll
2016-10-16 00:08 - 2016-09-30 04:26 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\verifiergui.exe
2016-10-16 00:08 - 2016-09-30 04:25 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2016-10-16 00:08 - 2016-09-30 04:25 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmdl32.exe
2016-10-16 00:08 - 2016-09-30 04:24 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ipsecsnp.dll
2016-10-16 00:08 - 2016-09-30 04:24 - 00640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\blackbox.dll
2016-10-16 00:08 - 2016-09-30 04:24 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-10-16 00:08 - 2016-09-30 04:24 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscp.dll
2016-10-16 00:08 - 2016-09-30 04:24 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3gpui.dll
2016-10-16 00:08 - 2016-09-30 04:24 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msnetobj.dll
2016-10-16 00:08 - 2016-09-30 04:22 - 01492992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-10-16 00:08 - 2016-09-30 04:22 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-10-16 00:08 - 2016-09-30 04:22 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationHostProxy.dll
2016-10-16 00:08 - 2016-09-30 04:20 - 01350144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2016-10-16 00:08 - 2016-09-30 04:19 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_isv.exe
2016-10-16 00:08 - 2016-09-30 04:19 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate.exe
2016-10-16 00:08 - 2016-09-30 04:19 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_ssp_isv.exe
2016-10-16 00:08 - 2016-09-30 04:19 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_ssp.exe
2016-10-16 00:08 - 2016-09-30 04:19 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-10-16 00:08 - 2016-09-30 04:19 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-10-16 00:08 - 2016-09-30 04:19 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-10-16 00:08 - 2016-09-30 04:17 - 03692032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-10-16 00:08 - 2016-09-30 04:17 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certmgr.dll
2016-10-16 00:08 - 2016-09-30 04:17 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\filemgmt.dll
2016-10-16 00:08 - 2016-09-30 04:17 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mycomput.dll
2016-10-16 00:08 - 2016-09-30 04:17 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\els.dll
2016-10-16 00:08 - 2016-09-30 04:17 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pwrshplugin.dll
2016-10-16 00:08 - 2016-09-30 04:15 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-10-16 00:08 - 2016-09-30 04:15 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-10-16 00:08 - 2016-09-30 04:15 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnification.dll
2016-10-16 00:08 - 2016-09-30 04:14 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll
2016-10-16 00:08 - 2016-09-30 04:12 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\makecab.exe
2016-10-16 00:08 - 2016-09-30 04:12 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\expand.exe
2016-10-16 00:08 - 2016-09-30 04:12 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\extrac32.exe
2016-10-16 00:08 - 2016-09-30 04:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgcore.dll
2016-10-16 00:08 - 2016-09-30 04:00 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-10-15 14:14 - 2016-10-15 23:47 - 00000000 ____D C:\Program Files (x86)\AVG
2016-10-15 14:13 - 2016-10-15 23:47 - 00000000 ____D C:\Users\Kristina\AppData\Local\AvgSetupLog
2016-10-15 14:13 - 2016-10-15 23:47 - 00000000 ____D C:\ProgramData\Avg
2016-10-15 14:13 - 2016-10-15 14:15 - 00000000 ____D C:\Users\Kristina\AppData\Local\Avg
2016-10-15 14:03 - 2016-10-15 14:03 - 00054567 _____ C:\ProgramData\dm.1476536622.bdinstall.bin
2016-10-15 14:03 - 2016-10-15 14:03 - 00000000 ____D C:\ProgramData\Bitdefender Device Management
2016-10-15 14:01 - 2016-10-15 14:01 - 00384450 _____ C:\ProgramData\cl.1476535903.bdinstall.bin
2016-10-15 13:59 - 2016-10-15 13:59 - 00001887 _____ C:\Users\Public\Desktop\Bitdefender 2017.lnk
2016-10-15 13:59 - 2016-10-15 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2017
2016-10-15 13:58 - 2016-11-05 13:53 - 01605376 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2016-10-15 13:58 - 2016-11-05 13:53 - 00878072 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2016-10-15 13:58 - 2016-03-14 21:04 - 00023672 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2016-10-15 13:58 - 2015-12-04 18:27 - 00087912 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2016-10-15 13:57 - 2016-10-15 14:03 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\Bitdefender
2016-10-15 13:57 - 2016-08-11 16:42 - 00300840 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys
2016-10-15 13:52 - 2016-10-15 13:52 - 00000000 ____D C:\Bitdefender
2016-10-15 13:52 - 2016-03-10 06:41 - 00520032 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2016-10-15 13:52 - 2015-12-16 04:53 - 00182936 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2016-10-15 13:40 - 2016-10-15 13:40 - 00003794 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2016-10-15 13:38 - 2016-11-07 20:29 - 00000000 ____D C:\Program Files\Bitdefender Agent
2016-10-15 13:38 - 2016-10-15 13:38 - 00045959 _____ C:\ProgramData\agent.1476535135.bdinstall.bin
2016-10-15 13:19 - 2016-10-20 17:54 - 00002234 ____H C:\Users\Kristina\Documents\Default.rdp
2016-10-15 13:05 - 2016-10-15 13:05 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\Avira
2016-10-15 13:02 - 2016-10-15 13:55 - 00000000 ____D C:\ProgramData\Avira

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-07 20:42 - 2016-09-06 19:22 - 00000036 _____ C:\WINDOWS\progress.ini
2016-11-07 20:39 - 2016-09-06 19:01 - 00000000 ___HD C:\$GetCurrent
2016-11-07 20:37 - 2015-07-30 23:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-07 20:37 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-07 20:33 - 2014-01-06 17:08 - 00004164 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{50C46283-7A2B-4AF1-B4C4-0957B3B315D9}
2016-11-07 20:31 - 2013-12-28 17:49 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-07 20:30 - 2015-11-11 15:35 - 00000000 __SHD C:\Users\Kristina\IntelGraphicsProfiles
2016-11-07 20:30 - 2015-11-11 14:58 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-07 20:30 - 2013-12-28 17:41 - 00000000 ____D C:\Users\Kristina\AppData\LocalLow\AuthenTec
2016-11-05 18:08 - 2013-12-28 17:49 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-05 18:05 - 2016-10-03 13:25 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-05 17:29 - 2016-10-03 13:25 - 00000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-11-05 17:04 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-11-05 17:04 - 2015-07-30 23:40 - 00000000 ____D C:\WINDOWS\INF
2016-11-05 17:03 - 2015-11-11 14:58 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-11-05 17:01 - 2015-11-11 14:58 - 00103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-05 17:01 - 2015-11-11 14:58 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-05 17:01 - 2015-07-18 00:36 - 07966192 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2016-11-05 17:01 - 2015-07-18 00:35 - 00401896 _____ C:\WINDOWS\system32\igfxTray.exe
2016-11-05 17:01 - 2015-07-18 00:35 - 00373744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2016-11-05 17:01 - 2015-07-18 00:35 - 00354800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2016-11-05 17:01 - 2015-07-18 00:35 - 00268784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2016-11-05 17:01 - 2015-07-18 00:34 - 33479360 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2016-11-05 17:01 - 2015-07-18 00:34 - 15837984 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2016-11-05 17:01 - 2015-07-18 00:34 - 06696832 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2016-11-05 17:01 - 2015-07-18 00:28 - 02142224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2016-11-05 17:01 - 2015-07-18 00:28 - 00756744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2016-11-05 17:01 - 2015-07-18 00:28 - 00398856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2016-11-05 14:27 - 2015-11-11 15:02 - 01997626 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-05 14:27 - 2015-09-10 06:10 - 00850366 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-05 14:27 - 2015-09-10 06:10 - 00187104 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-05 14:22 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-11-05 14:21 - 2016-10-03 13:34 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-11-05 14:21 - 2013-06-09 01:20 - 00034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys
2016-11-05 14:20 - 2015-07-30 22:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-05 14:20 - 2013-06-09 01:18 - 00000000 ____D C:\ProgramData\Validity
2016-11-05 14:19 - 2016-10-03 13:25 - 00000000 ____D C:\Program Files\TrueKey
2016-11-05 14:18 - 2015-07-28 19:46 - 00014068 _____ C:\bdlog.txt
2016-11-05 14:18 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-11-05 14:17 - 2016-05-29 12:31 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-11-01 07:06 - 2016-10-03 13:25 - 00004030 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-11-01 07:06 - 2016-10-03 13:25 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-11-01 07:06 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-01 07:06 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-01 06:50 - 2015-07-30 23:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-01 06:39 - 2016-10-03 13:35 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-10-24 22:55 - 2016-10-02 13:52 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-24 22:55 - 2016-10-02 13:52 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-19 20:31 - 2016-07-12 21:09 - 00296536 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo41.dll
2016-10-19 20:31 - 2014-11-30 17:59 - 01813392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2016-10-19 20:31 - 2014-11-30 17:59 - 00872024 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2016-10-19 20:31 - 2014-11-30 17:59 - 00815200 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2016-10-19 20:31 - 2014-11-30 17:59 - 00294488 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2016-10-19 20:31 - 2014-11-30 17:59 - 00079960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2016-10-19 20:14 - 2015-07-30 23:42 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-10-19 20:14 - 2015-07-30 23:42 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2016-10-19 19:35 - 2016-10-03 13:36 - 00000000 ____D C:\Users\Kristina\AppData\Local\tkdata
2016-10-16 00:46 - 2015-07-30 22:49 - 00388792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-16 00:43 - 2015-07-30 23:42 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-10-16 00:43 - 2015-07-30 23:42 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-16 00:43 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-16 00:43 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\Provisioning
2016-10-16 00:43 - 2015-07-30 23:42 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-16 00:43 - 2015-07-30 23:42 - 00000000 ____D C:\Program Files\Windows Defender
2016-10-16 00:43 - 2015-07-30 23:42 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-10-16 00:43 - 2015-07-30 23:42 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-10-16 00:34 - 2014-04-18 11:49 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-10-16 00:31 - 2013-12-30 20:25 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-16 00:28 - 2013-12-30 20:25 - 143495576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-10-16 00:27 - 2013-08-22 14:25 - 00000167 _____ C:\WINDOWS\win.ini
2016-10-15 23:44 - 2015-09-20 17:16 - 00003426 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-10-15 23:44 - 2015-07-28 20:16 - 00002642 _____ C:\WINDOWS\System32\Tasks\Apple Diagnostics
2016-10-15 23:44 - 2013-12-28 17:49 - 00003650 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-10-15 20:11 - 2015-04-26 13:00 - 00000000 __SHD C:\found.000
2016-10-15 20:09 - 2014-02-12 20:09 - 00000000 ____D C:\Users\Kristina\Documents\Krankenpflegeschule
2016-10-15 19:35 - 2015-07-10 10:47 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-10-15 19:35 - 2014-01-19 16:54 - 00000000 ____D C:\Users\Kristina\.thumbnails
2016-10-15 19:35 - 2013-12-29 17:11 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\hpqlog
2016-10-15 19:35 - 2013-12-28 18:38 - 00000000 ____D C:\Users\Kristina\Documents\Youcam
2016-10-15 19:35 - 2013-06-09 01:24 - 00000000 ____D C:\ProgramData\Temp
2016-10-15 19:35 - 2013-04-22 14:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2016-10-15 19:25 - 2013-04-22 14:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-15 17:02 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\rescache
2016-10-15 14:14 - 2015-11-11 19:40 - 00000000 ____D C:\ProgramData\Bitdefender
2016-10-15 14:12 - 2015-03-04 21:15 - 00000000 _____ C:\WINDOWS\wiso.ini
2016-10-15 14:12 - 2015-03-04 21:12 - 00000000 ____D C:\Program Files (x86)\WISO
2016-10-15 14:10 - 2015-08-16 16:00 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\Opera Software
2016-10-15 14:10 - 2015-08-16 16:00 - 00000000 ____D C:\Users\Kristina\AppData\Local\Opera Software
2016-10-15 14:10 - 2015-08-16 15:59 - 00000000 ____D C:\Program Files (x86)\Opera
2016-10-15 14:03 - 2015-07-07 10:18 - 00000000 ____D C:\Program Files\Bitdefender
2016-10-15 14:01 - 2014-02-16 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2016-10-15 14:01 - 2014-02-16 15:53 - 00000000 ____D C:\ProgramData\EPSON
2016-10-15 14:00 - 2013-06-09 01:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2016-10-15 13:55 - 2013-06-09 01:12 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-15 13:52 - 2015-07-07 10:17 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2016-10-15 13:43 - 2014-10-14 21:15 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-10-15 13:43 - 2013-06-09 01:08 - 00000000 ____D C:\ProgramData\Apple
2016-10-15 13:01 - 2016-10-03 13:26 - 00000000 ____D C:\ProgramData\McAfee
2016-10-15 12:57 - 2015-07-28 20:16 - 00000000 ___RD C:\Users\Kristina\iCloudDrive
2016-10-15 12:52 - 2015-11-11 15:03 - 00000000 ____D C:\Users\Kristina
2016-10-10 19:37 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\ELAMBKUP

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-06-17 21:30 - 2016-06-17 21:30 - 2428436 _____ () C:\Users\Kristina\AppData\Roaming\sb156.dat
2014-04-19 12:30 - 2016-09-06 07:30 - 0000263 _____ () C:\Users\Kristina\AppData\Roaming\WB.CFG
2014-02-13 13:16 - 2016-03-10 22:12 - 0005330 _____ () C:\Users\Kristina\AppData\Roaming\wklnhst.dat
2014-05-22 19:36 - 2014-05-22 19:36 - 0001517 _____ () C:\Users\Kristina\AppData\Local\recently-used.xbel
2016-10-15 13:38 - 2016-10-15 13:38 - 0045959 _____ () C:\ProgramData\agent.1476535135.bdinstall.bin
2016-11-05 13:44 - 2016-11-05 13:44 - 0028769 _____ () C:\ProgramData\agent.1478349823.bdinstall.bin
2016-10-15 14:01 - 2016-10-15 14:01 - 0384450 _____ () C:\ProgramData\cl.1476535903.bdinstall.bin
2016-10-15 14:03 - 2016-10-15 14:03 - 0054567 _____ () C:\ProgramData\dm.1476536622.bdinstall.bin
2016-11-05 13:45 - 2016-11-05 13:45 - 0039272 _____ () C:\ProgramData\dm.1478349872.bdinstall.bin

Einige Dateien in TEMP:
====================
C:\Users\Kristina\AppData\Local\Temp\libeay32.dll
C:\Users\Kristina\AppData\Local\Temp\msvcr120.dll
C:\Users\Kristina\AppData\Local\Temp\sqlite3.dll
C:\Users\Kristina\AppData\Local\Temp\Windows10Upgrade.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-05 17:00

==================== Ende von FRST.txt ============================
         

Alt 07.11.2016, 23:37   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Kontrollscans mit (1) MBAM, (2) ESET und (3) SecurityCheck bitte:


1. Schritt: MBAM

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.




2. Schritt: ESET

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset




3. Schritt: SecurityCheck

Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 10.11.2016, 21:26   #12
Sebow
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Here we go:

Maleware:

Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 10.11.2016
Suchlaufzeit: 19:04
Protokolldatei: Malwarebytes.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2016.11.10.07
Rootkit-Datenbank: v2016.10.31.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: Kristina

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 340699
Abgelaufene Zeit: 24 Min., 33 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 23
PUP.Optional.DynConIE, HKLM\SOFTWARE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, In Quarantäne, [3867caf42971cb6b69a71091b24f8c74], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{219046AE-358F-4CF1-B1FD-2B4DE83642A8}, In Quarantäne, [ccd3b905fc9ed6605c38c6dd7a873bc5], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}, In Quarantäne, [2679bb039208c5715c3a1e85e02143bd], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{0400EBCA-042C-4000-AA89-9713FBEDB671}, In Quarantäne, [316e2d912f6bc0766e2c5d46f60bb848], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\TypeLib\{FBC322D5-407E-4854-8C0B-555B951FD8E3}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{0BD19251-4B4B-4B94-AB16-617106245BB7}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{3281114F-BCAB-45E3-80D9-A6CD64D4E636}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{44533FCB-F9FB-436A-8B6B-CF637B2D465A}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{44B29DDD-CF7A-454A-A275-A322A398D93F}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{A4DE94DB-DF03-45A3-8A5D-D1B7464B242D}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{AA0F50A8-2618-4AE4-A779-9F7378555A8F}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{B2DB115C-8278-4947-9A07-57B53D1C4215}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{B97FC455-DB33-431D-84DB-6F1514110BD5}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{C67281E0-78F5-4E49-9FAE-4B1B2ADAF17B}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{E72E9312-0367-4216-BFC7-21485FA8390B}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{F6CCB6C9-127E-44AE-8552-B94356F39FFE}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\CLASSES\INTERFACE\{FFD25630-2734-4AE9-88E6-21BF6525F3FE}, In Quarantäne, [ccd3427c019939fd0892346f46bb53ad], 
PUP.Optional.BeSecure, HKLM\SOFTWARE\MICROSOFT\TRACING\BeSecure_RASAPI32, In Quarantäne, [bbe412ac0298fa3c6bc5fccbef13a55b], 
PUP.Optional.BeSecure, HKLM\SOFTWARE\MICROSOFT\TRACING\BeSecure_RASMANCS, In Quarantäne, [841bdfdfcad02f07c7695f68a65cdf21], 
PUP.Optional.BeSecure, HKLM\SOFTWARE\MICROSOFT\TRACING\BeSecure_updater_service_RASAPI32, In Quarantäne, [059a526ce2b82c0ad65a5e69c141d22e], 
PUP.Optional.BeSecure, HKLM\SOFTWARE\MICROSOFT\TRACING\BeSecure_updater_service_RASMANCS, In Quarantäne, [158a328c5446ef47de52626507fbe21e], 
PUP.Optional.MintCast, HKLM\SOFTWARE\MICROSOFT\TRACING\InstallationStatsUploder_RASAPI32, In Quarantäne, [eab5ebd3c4d6979fc5fca3225da5be42], 
PUP.Optional.MintCast, HKLM\SOFTWARE\MICROSOFT\TRACING\InstallationStatsUploder_RASMANCS, In Quarantäne, [b0efd2ec801a74c24b764f7642c00cf4], 

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 2
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 

Dateien: 14
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\HowToRemove.html, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\chromium-min.jpg, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\control panel-min-min.JPG, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\down.png, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\ff menu.JPG, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\ff search engine-min.png, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\hp-min ff.png, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\hp-min ie.png, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\search engine.gif, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\setup pages.gif, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\sp-min.png, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\start-min.jpg, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\HowToRemove\up.png, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 
PUP.Optional.WinYahoo, C:\Users\Kristina\AppData\Local\{39260F7A-1D8E-63C2-7016-462A547EBAB2}\sari, In Quarantäne, [ebb4506e83179c9a1304bd816c97e51b], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
         
ESET:

Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=868d534bdf657549a4aeae77820884e7
# end=init
# utc_time=2016-11-10 06:38:39
# local_time=2016-11-10 07:38:39 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 31367
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=868d534bdf657549a4aeae77820884e7
# end=updated
# utc_time=2016-11-10 06:42:39
# local_time=2016-11-10 07:42:39 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=868d534bdf657549a4aeae77820884e7
# engine=31367
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-11-10 08:05:15
# local_time=2016-11-10 09:05:15 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 2233306 42309976 0 0
# scanned=249235
# found=7
# cleaned=0
# scan_time=4955
sh=31D0B125962639ACC9DF9F39782A3207099DD924 ft=1 fh=ca95fc211bc2fbc3 vn="Variante von Win32/Toolbar.Montiera.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\uolnqqpjdmkzssxykngyzwjhncatjjrp\1.8.29.0\mysearchdialApp.dll"
sh=6857BD88EA938B705EFC3FD46D5C91D2C1B3EDE9 ft=1 fh=a2f65d85debd6839 vn="Variante von Win32/Toolbar.Montiera.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\uolnqqpjdmkzssxykngyzwjhncatjjrp\1.8.29.0\mysearchdialEng.dll"
sh=7ABB587B2A0D80E1EC4B2F1E8BB0E2C194FBB4A0 ft=1 fh=9074270edfd38722 vn="Variante von Win32/Toolbar.Montiera.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\uolnqqpjdmkzssxykngyzwjhncatjjrp\1.8.29.0\mysearchdialsrv.exe"
sh=3407FB00757C71D9CB28AEC2EC7855FF5D3A6609 ft=1 fh=67364266c19decdd vn="Variante von Win32/Toolbar.Montiera.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\uolnqqpjdmkzssxykngyzwjhncatjjrp\1.8.29.0\mysearchdialTlbr.dll"
sh=89DC63472DE94DF3F12DBAE15B7EBE6C04263369 ft=1 fh=7fb9e45e0079471d vn="Variante von Win32/Toolbar.Escort.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\uolnqqpjdmkzssxykngyzwjhncatjjrp\1.8.29.0\bh\mysearchdial.dll"
sh=0CE48DA603A5E7431002CE4ACA1F1546C5D6579E ft=1 fh=a7cab65addc4a365 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Kristina\Pictures\Krissy\Band aufnahmen\FreeYouTubeToMp3Converter.exe"
sh=A09AE0BF088D5EE933496AB8F55620414A43A131 ft=1 fh=cea599c46ade7bb4 vn="Win32/Toggle evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Kristina\Pictures\Krissy\Band aufnahmen\installer_winzip_14_5_Deutsch_Deutsch.exe"
         
Security:

Code:
ATTFilter
 Results of screen317's Security Check version 1.009  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Windows Defender          
Bitdefender Virenschutz   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Google Chrome (53.0.2785.143) 
 Google Chrome (54.0.2840.71) 
 Google Chrome (SetupMetrics...) 
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 Malwarebytes Anti-Malware mbamscheduler.exe   
 Bitdefender Bitdefender Device Management DevMgmtService.exe  
 Bitdefender Agent ProductAgentService.exe   
 Bitdefender 2017 updatesrv.exe   
 Bitdefender 2017 vsserv.exe   
 Bitdefender 2017 bdwtxcr.exe   
 Bitdefender 2017 bdagent.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````
         

Alt 10.11.2016, 22:01   #13
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



FRST-Fix

Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft!


Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
C:\Users\Kristina\Pictures\Krissy\Band aufnahmen\FreeYouTubeToMp3Converter.exe
C:\Users\Kristina\Pictures\Krissy\Band aufnahmen\installer_winzip_14_5_Deutsch_Deutsch.exe
emptytemp:
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 10.11.2016, 23:03   #14
Sebow
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Vielen Dank für die schnelle Antwort...

Hier der Fixlog:

Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 04-11-2016
durchgeführt von Kristina (10-11-2016 22:38:45) Run:1
Gestartet von C:\Users\Kristina\Desktop
Geladene Profile: Kristina (Verfügbare Profile: UpdatusUser & Kristina)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
C:\Users\Kristina\Pictures\Krissy\Band aufnahmen\FreeYouTubeToMp3Converter.exe
C:\Users\Kristina\Pictures\Krissy\Band aufnahmen\installer_winzip_14_5_Deutsch_Deutsch.exe
emptytemp:
*****************

C:\Users\Kristina\Pictures\Krissy\Band aufnahmen\FreeYouTubeToMp3Converter.exe => erfolgreich verschoben
C:\Users\Kristina\Pictures\Krissy\Band aufnahmen\installer_winzip_14_5_Deutsch_Deutsch.exe => erfolgreich verschoben

=========== EmptyTemp: ==========

BITS transfer queue => 32768 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20037152 B
Java, Flash, Steam htmlcache => 8283 B
Windows/system/drivers => 47824536 B
Edge => 5487008 B
Chrome => 197815997 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 823226 B
NetworkService => 90029848 B
UpdatusUser => 0 B
Kristina => 40218420 B

RecycleBin => 58822739 B
EmptyTemp: => 439.7 MB temporäre Dateien entfernt.

================================


Das System musste neu gestartet werden.

==== Ende von Fixlog 22:38:55 ====
         

Alt 11.11.2016, 00:00   #15
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Standard

Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge



Sehr schön alles gut wieder, oder sind noch Probleme offen?
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Antwort

Themen zu Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge
administrator, adobe flash player, avast, defender, explorer, fehler, firewall, flash player, home, iexplore.exe, langsam, langsam lahm, mozilla, nvidia, ordner, problem, prozesse, prozessor, registry, router, scan, security, software, start probleme, start up repair, system, temp, windows, windows 10



Ähnliche Themen: Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge


  1. PC ist sehr langsam merkwürdige Log Einträge
    Log-Analyse und Auswertung - 16.04.2016 (8)
  2. Windows 7: Computer bootet ordentlich aber alles ist sehr langsam
    Log-Analyse und Auswertung - 31.01.2016 (1)
  3. Windows 10 bootet langsam trotz ssd
    Plagegeister aller Art und deren Bekämpfung - 29.01.2016 (11)
  4. Windows 10 bootet langsam trotz ssd
    Mülltonne - 25.01.2016 (0)
  5. Windows Vista sehr langsam, bootet teilweise gar nicht mehr hoch
    Log-Analyse und Auswertung - 07.08.2015 (9)
  6. WINDOWS 7: Rechner sehr langsam, seltsame Einträge in LOG-Files
    Log-Analyse und Auswertung - 09.06.2015 (1)
  7. Malware gelöscht, Windows bootet langsam
    Plagegeister aller Art und deren Bekämpfung - 26.11.2014 (15)
  8. Windows 7: PC bootet seit einiger Zeit sehr langsam
    Alles rund um Windows - 29.10.2014 (21)
  9. Windows-Diagnostics-Performance Ereignis-ID 100
    Log-Analyse und Auswertung - 23.09.2014 (15)
  10. Windows-Diagnostics-Performance Ereignis-ID 100
    Alles rund um Windows - 19.09.2014 (13)
  11. Windows Vista bootet sehr langsam
    Log-Analyse und Auswertung - 09.04.2014 (15)
  12. Windows XP: Computer bootet und arbeitet sehr langsam nach Viren-Befall
    Log-Analyse und Auswertung - 09.03.2014 (32)
  13. Notebook bootet sehr langsam
    Log-Analyse und Auswertung - 22.10.2011 (4)
  14. Windows 7 bootet sehr langsam. HijackThis log erstellt.
    Log-Analyse und Auswertung - 30.09.2010 (9)
  15. IE & FF sehr langsam und Windows bootet nicht alle Programme
    Plagegeister aller Art und deren Bekämpfung - 21.11.2009 (0)
  16. Win XP bootet sehr langsam, ca.5min
    Log-Analyse und Auswertung - 21.06.2008 (2)
  17. Rechner bootet sehr langsam
    Log-Analyse und Auswertung - 18.10.2007 (13)

Zum Thema Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge - Hallo liebe Forenmitglieder, ich habe hier etwas mitgelesen und versucht mein Fehler zu beheben. Da aber jeder Fehler gleich ist, sah ich mich gezwungen ein neues Thema zu erstellen. PS: - Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge...
Archiv
Du betrachtest: Windows 10 bootet sehr langsam: Windows Diagnostic Ereignis-ID 100, kritische Einträge auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.