Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Systembereinigung

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 28.10.2016, 21:15   #1
Mixer008
 
Systembereinigung - Standard

Systembereinigung



Hallo,

seit einiger Zeit kann ich ein paar Dateien nicht löschen, die ich mal runtergeladen habe.
Es steht immer dran, die Datei ist in System geöffnet, nicht löschbar.

Was kann ich da machen? Ansonsten würde ich gerne mal mein System komplett "reinigen"
Wie gehe ich da vor?

Danke schonmal für die Hilfe!

so hier noch meine Logfiles vom FRST:

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-10-2016
durchgeführt von Michael Neumann (Administrator) auf PC (28-10-2016 20:42:08)
Gestartet von C:\Users\Michael Neumann\Downloads
Geladene Profile: Michael Neumann (Verfügbare Profile: Michael Neumann)
Platform: Windows 7 Professional N Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 10 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(The Eraser Project) C:\Program Files\Eraser\Eraser.exe
(BitTorrent Inc.) C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe
() C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\MagentaCloud.App.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(InstallShield Software Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase EWA\tbmux32.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase EPC\tbmux32.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase WIS\tbmux32.exe
(Alexandria Software Consulting) C:\Program Files (x86)\EWA net\server\bin\tomcat.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(MKS Software Inc.) C:\Windows\System32\nutsrv4.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(BitTorrent Inc.) C:\Users\Michael Neumann\AppData\Roaming\uTorrent\updates\3.4.9_42606\utorrentie.exe
(BitTorrent Inc.) C:\Users\Michael Neumann\AppData\Roaming\uTorrent\updates\3.4.9_42606\utorrentie.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase EWA\tbkern32.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase EWA\tbkern32.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Transaction Software, D 81829 Munich) C:\Program Files (x86)\EWA net\database\TransBase EPC\tbkern32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13423688 2013-02-26] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2757424 2015-11-16] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1828160 2015-11-16] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-09-09] (Apple Inc.)
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1085512 2015-01-12] (The Eraser Project)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291128 2013-03-06] (Intel Corporation)
HKLM-x32\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-16] (InstallShield Software Corporation)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1284680 2014-03-25] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25424008 2016-10-24] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1209344 2016-07-10] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-05-31] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-281873479-767526044-2589904799-1000\...\Run: [uTorrent] => C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe [1977536 2016-10-12] (BitTorrent Inc.)
HKU\S-1-5-21-281873479-767526044-2589904799-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4299968 2016-08-29] (Disc Soft Ltd)
HKU\S-1-5-21-281873479-767526044-2589904799-1000\...\MountPoints2: G - G:\AUTORUN.EXE
HKU\S-1-5-21-281873479-767526044-2589904799-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> 
ShellIconOverlayIdentifiers: [  MagentaOverlayIcon1] -> {70fd746c-367b-3030-8aa3-9170bba946b5} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [  MagentaOverlayIcon2] -> {975d4594-41a0-3903-a44e-ce7109705240} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [  MagentaOverlayIcon3] -> {4e36001f-6b82-3b12-8348-64d682964de9} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [  MagentaOverlayIcon4] -> {47418e6f-8c1d-3223-bef9-2ba1bc655f28} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
Startup: C:\Users\Michael Neumann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagentaCLOUD.lnk [2016-10-21]
ShortcutTarget: MagentaCLOUD.lnk -> C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\MagentaCloud.App.exe ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: 0.0.0.1	mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{31EAC9C4-33F6-487D-9974-A221A66C6667}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{80EDD751-B7A9-4F29-8ABA-3BC5F4E53FCF}: [DhcpNameServer] 172.20.10.1
ManualProxies: 

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-281873479-767526044-2589904799-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
SearchScopes: HKU\S-1-5-21-281873479-767526044-2589904799-1000 -> DefaultScope {8BD59BC6-6B70-4860-A1EA-E9D69C187D0D} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-281873479-767526044-2589904799-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = 
SearchScopes: HKU\S-1-5-21-281873479-767526044-2589904799-1000 -> {8BD59BC6-6B70-4860-A1EA-E9D69C187D0D} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-281873479-767526044-2589904799-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\java\jre1.8.0_91\bin\ssv.dll [2016-04-26] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-26] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-21] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKU\S-1-5-21-281873479-767526044-2589904799-1000 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Michael Neumann\AppData\Roaming\Mozilla\Firefox\Profiles\6crjv80j.default [2016-10-27]
FF NewTab: Mozilla\Firefox\Profiles\6crjv80j.default -> www.google.de
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\6crjv80j.default -> Google Default
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\6crjv80j.default -> Bing
FF Homepage: Mozilla\Firefox\Profiles\6crjv80j.default -> about:home
FF Extension: (pdf shield) - C:\Users\Michael Neumann\AppData\Roaming\Mozilla\Firefox\Profiles\6crjv80j.default\Extensions\{141017b5-1eb1-4600-9f96-3238cb2c4f8c}.xpi [2015-12-18] [ist nicht signiert]
FF Extension: (Adblock Plus) - C:\Users\Michael Neumann\AppData\Roaming\Mozilla\Firefox\Profiles\6crjv80j.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-27]
FF SearchPlugin: C:\Users\Michael Neumann\AppData\Roaming\Mozilla\Firefox\Profiles\6crjv80j.default\searchplugins\google-default.xml [2015-07-03]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2016-10-26] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-26] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-05-31] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2016-10-26] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-08-13] (DivX, LLC)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-14] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-05-31] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default [2016-10-28]
CHR Extension: (Google Präsentationen) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-10]
CHR Extension: (Google Docs) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-10]
CHR Extension: (Google Drive) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (YouTube) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-23]
CHR Extension: (Google-Suche) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Google Tabellen) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-10]
CHR Extension: (Google Docs Offline) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Google Mail) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-10]
CHR Extension: (Chrome Media Router) - C:\Users\Michael Neumann\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-28]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-05-31] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-08-05] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-02] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-02] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [41576 2016-10-24] (Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
R2 EWA net DB Core; C:\Program Files (x86)\EWA net\database\TransBase EWA\tbmux32.exe [326616 2011-03-09] (Transaction Software, D 81829 Munich) [Datei ist nicht signiert]
R2 EWA net DB EPC; C:\Program Files (x86)\EWA net\database\TransBase EPC\tbmux32.exe [417792 2007-11-27] (Transaction Software, D 81829 Munich) [Datei ist nicht signiert]
R2 EWA net DB WIS; C:\Program Files (x86)\EWA net\database\TransBase WIS\tbmux32.exe [326616 2011-03-09] (Transaction Software, D 81829 Munich) [Datei ist nicht signiert]
R2 EWA net Server; C:\Program Files (x86)\EWA net\server\bin\tomcat.exe [65536 2003-07-31] (Alexandria Software Consulting) [Datei ist nicht signiert]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156400 2015-11-16] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.376\McCHSvc.exe [327944 2016-07-19] (McAfee, Inc.)
R2 NuTCRACKERService; C:\Windows\system32\nutsrv4.exe [574776 2012-10-12] (MKS Software Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-11-16] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8133424 2015-11-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5915440 2015-11-16] (NVIDIA Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2015-11-18] (SolidWorks) [Datei ist nicht signiert]
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2014-05-30] (Microsoft Corporation) [Datei ist nicht signiert]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 CoordinatorServiceHost; "C:\Program Files\SolidWorks Corp\SolidWorks (2)\swScheduler\DTSCoordinatorService.exe" [X]
S2 ewserver; "C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe" [X]
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
S2 MSSQL$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sTEW_SQLEXPRESS [X]
S2 RemoteSolverDispatcher; "C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe" "SOFTWARE\SRAC\COSMOS_FloWorks 2016" [X]
S4 SQLAgent$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE" -i TEW_SQLEXPRESS [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] ()
S1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-09-24] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-09-24] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2014-01-27] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2014-01-27] (Symantec Corporation) [Datei ist nicht signiert]
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
R1 LUMDriver; C:\Windows\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19760 2015-11-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-11-16] (NVIDIA Corporation)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation)
S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2014-01-29] (Symantec Corporation)
U5 UnlockerDriver5; C:\Users\Michael Neumann\Downloads\x64\UnlockerDriver5.sys [12352 2010-07-01] ()
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21072 2013-03-27] ()
S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52592 2014-03-12] (Cisco Systems, Inc.)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-28 20:36 - 2016-10-28 09:30 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Vorrichtung für das Eintauchen von Elektronik
2016-10-28 20:06 - 2016-10-28 20:06 - 00088438 _____ C:\Users\Michael Neumann\Desktop\FRST.txt
2016-10-28 19:38 - 2016-10-28 19:40 - 00000000 ____D C:\AdwCleaner
2016-10-28 19:38 - 2016-10-28 19:38 - 03910208 _____ C:\Users\Michael Neumann\Downloads\adwcleaner_6.030.exe
2016-10-28 18:35 - 2016-10-28 20:42 - 00034219 _____ C:\Users\Michael Neumann\Downloads\FRST.txt
2016-10-28 18:34 - 2016-10-28 20:42 - 00000000 ____D C:\FRST
2016-10-28 18:34 - 2016-10-28 18:34 - 02407936 _____ (Farbar) C:\Users\Michael Neumann\Downloads\FRST64.exe
2016-10-28 17:42 - 2016-10-28 17:42 - 00888497 _____ C:\Users\Michael Neumann\Downloads\Vorrichtung für das Eintauchen von Elektronik.zip
2016-10-27 19:55 - 2016-10-27 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-10-26 18:51 - 2016-10-26 18:51 - 00095007 _____ C:\Users\Michael Neumann\Desktop\Amazon.pdf
2016-10-26 18:01 - 2016-10-26 18:01 - 01250998 _____ C:\Users\Michael Neumann\Downloads\Renner-Einfuehrung PP KJP VL WS 2016_17_skript.pdf
2016-10-26 17:41 - 2016-10-26 17:41 - 03138887 _____ C:\Users\Michael Neumann\Downloads\Folien 01 WS 2016-17 Einfuehrung.pdf
2016-10-26 17:41 - 2016-10-26 17:41 - 00032121 _____ C:\Users\Michael Neumann\Downloads\Hinweis Klausurtermine.pdf
2016-10-26 17:40 - 2016-10-26 17:40 - 00030683 _____ C:\Users\Michael Neumann\Downloads\Hinweis Folien.pdf
2016-10-26 17:24 - 2016-10-26 17:24 - 00404980 _____ C:\Users\Michael Neumann\Downloads\Theorie-Praxis-Verhaeltnis in paedagogischen Handlungsfeldern-1.pdf
2016-10-26 17:19 - 2016-10-26 17:19 - 00109507 _____ C:\Users\Michael Neumann\Downloads\WS 2016_VL_M10_01.pdf
2016-10-26 16:57 - 2016-10-26 16:57 - 12783616 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_7_Depression_WiSe_2016_17.ajf.ppt
2016-10-26 12:13 - 2016-10-26 12:13 - 05488320 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-10-24 19:36 - 2016-10-24 19:49 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Warcraft.The.Beginning.2016.German.DL.1080p.BluRay.x264-COiNCiDENCE
2016-10-24 18:53 - 2016-10-24 18:53 - 00009726 _____ C:\Users\Michael Neumann\Downloads\studiengangNeuLPfb6a5191-ed37-4a55-bfc0-4c1909946d2f.pdf
2016-10-24 15:06 - 2016-10-24 15:06 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2016-10-24 15:06 - 2016-10-24 15:06 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2016-10-24 15:06 - 2016-10-24 15:06 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2016-10-24 15:06 - 2016-10-24 15:06 - 00041576 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2016-10-24 06:44 - 2016-10-28 20:35 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-10-24 06:41 - 2016-10-24 06:41 - 12647936 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_6_Schizophrenien_II_WiSe_2016_17.ajf.ppt
2016-10-24 06:41 - 2016-10-24 06:41 - 08606720 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_4_illegale_Drogen_Verhaltenssuechte_WiSe_2016_17.ajf.ppt
2016-10-24 06:41 - 2016-10-24 06:41 - 06607360 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_5_Schizophrenien_I_WiSe_2016_17.ajf.ppt
2016-10-23 19:56 - 2016-10-23 19:56 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Eraser 6
2016-10-23 19:37 - 2016-10-23 20:53 - 00000000 ____D C:\Users\Michael Neumann\Downloads\relink.to - Command.and.Conquer.The.Ultimate.Collection.MULTi2 UNCUT-RAF - ID9d972d4389ffab4fd1bea63af938c4
2016-10-23 19:18 - 2016-10-23 19:18 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-10-23 19:17 - 2016-10-23 19:17 - 01474568 _____ C:\Users\Michael Neumann\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2016-10-23 19:11 - 2016-10-23 19:11 - 00001759 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eraser.lnk
2016-10-23 19:11 - 2016-10-23 19:11 - 00001747 _____ C:\Users\Public\Desktop\Eraser.lnk
2016-10-23 19:11 - 2016-10-23 19:11 - 00000000 ____D C:\Program Files\Eraser
2016-10-23 19:09 - 2016-10-23 19:09 - 01474568 _____ C:\Users\Michael Neumann\Downloads\Eraser - CHIP-Installer.exe
2016-10-23 16:51 - 2016-10-23 16:51 - 05916386 _____ C:\Users\Michael Neumann\Desktop\D2_Umdruck_20161018.pdf
2016-10-23 11:07 - 2016-10-28 20:28 - 00000000 ____D C:\Users\Michael Neumann\AppData\LocalLow\uTorrent
2016-10-22 22:33 - 2016-10-22 22:51 - 00000000 ____D C:\Users\Michael Neumann\Downloads\DSW164
2016-10-22 22:11 - 2016-10-22 22:20 - 00904027 _____ C:\FilExile_log.txt
2016-10-22 22:10 - 2016-10-22 22:20 - 00000000 ____D C:\Program Files (x86)\FilExile
2016-10-22 22:10 - 2016-10-22 22:10 - 00001091 _____ C:\Users\Michael Neumann\Desktop\FilExile.lnk
2016-10-22 22:10 - 2016-10-22 22:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\FilExile
2016-10-22 22:09 - 2016-10-22 22:09 - 01332963 _____ (FilExile Team ) C:\Users\Michael Neumann\Downloads\FilExilev2.00_Setup.exe
2016-10-22 22:03 - 2016-10-22 22:04 - 00000000 ____D C:\Users\Michael Neumann\Downloads\x64
2016-10-22 22:03 - 2016-10-22 22:03 - 00113964 _____ C:\Users\Michael Neumann\Downloads\unlocker1.9.0-portable (1).zip
2016-10-22 22:03 - 2010-07-06 22:09 - 00000000 ____D C:\Users\Michael Neumann\Downloads\x86
2016-10-22 22:03 - 2010-07-04 19:32 - 00001670 _____ C:\Users\Michael Neumann\Downloads\README.TXT
2016-10-22 22:02 - 2016-10-22 22:02 - 00113964 _____ C:\Users\Michael Neumann\Downloads\unlocker1.9.0-portable.zip
2016-10-22 21:22 - 2016-10-22 21:22 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Tempzxpsign7e298ef43d20fc0d
2016-10-22 21:22 - 2016-10-22 21:22 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Tempzxpsign5c518339017e0a82
2016-10-22 21:10 - 2016-10-22 21:10 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Tempzxpsignd6d0d978b157ff23
2016-10-22 21:10 - 2016-10-22 21:10 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Tempzxpsigna0322a2d5f286b41
2016-10-22 21:08 - 2016-10-22 21:08 - 00001056 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.5.lnk
2016-10-22 21:08 - 2016-10-22 21:08 - 00000000 ____D C:\Users\Michael Neumann\Documents\Adobe
2016-10-22 21:02 - 2016-10-22 21:02 - 00001221 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-10-22 21:02 - 2016-10-22 21:02 - 00001209 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-10-21 21:34 - 2016-10-21 21:34 - 11679373 _____ C:\Users\Michael Neumann\Downloads\3658005483_Messelek.pdf
2016-10-21 21:26 - 2016-10-28 20:29 - 00000000 ____D C:\Users\Michael Neumann\MagentaCLOUD
2016-10-21 21:24 - 2016-10-21 21:24 - 00000000 __SHD C:\Users\Michael Neumann\AppData\Roaming\wyUpdate AU
2016-10-21 21:24 - 2016-10-21 21:24 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\MagentaCLOUD
2016-10-21 21:23 - 2016-10-21 21:23 - 00002436 _____ C:\Users\Michael Neumann\Desktop\MagentaCLOUD.lnk
2016-10-21 21:23 - 2016-10-21 21:23 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\Telekom
2016-10-21 21:23 - 2016-10-21 21:23 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telekom
2016-10-21 21:23 - 2016-10-21 21:23 - 00000000 ____D C:\Program Files (x86)\Telekom
2016-10-21 21:21 - 2016-10-21 21:21 - 26708712 _____ (Deutsche Telekom AG) C:\Users\Michael Neumann\Downloads\MagentaCLOUD.exe
2016-10-21 21:05 - 2016-10-21 21:05 - 00645706 _____ C:\Users\Michael Neumann\Desktop\Corporate Pass.pdf
2016-10-21 20:40 - 2016-10-21 20:51 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Warcraft.The.Beginning.2016.German.DL.AC3.1080p.BluRay.x264-MOViEADDiCTS - filecrypt.cc
2016-10-21 20:32 - 2016-10-21 20:32 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\dvdcss
2016-10-21 20:23 - 2016-10-21 20:32 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Warcraft The Beginning DVD5
2016-10-21 20:01 - 2016-08-25 21:15 - 00000000 ____D C:\Users\Michael Neumann\Downloads\UL975
2016-10-21 20:00 - 2015-03-14 17:21 - 09843413 _____ C:\Users\Michael Neumann\Downloads\Elektrokonstruktion - Gestaltung, Schaltpläne und Engineering mit EPLAN (3. Auflage).pdf
2016-10-21 19:58 - 2016-10-21 19:58 - 08572642 _____ C:\Users\Michael Neumann\Downloads\Elektrokonstruktion.3.rar
2016-10-21 19:56 - 2016-10-21 19:58 - 525336576 _____ C:\Users\Michael Neumann\Downloads\UL975.part2.rar
2016-10-21 19:56 - 2016-10-21 19:58 - 525336576 _____ C:\Users\Michael Neumann\Downloads\UL975.part1.rar
2016-10-21 19:56 - 2016-10-21 19:57 - 379641400 _____ C:\Users\Michael Neumann\Downloads\UL975.part3.rar
2016-10-20 20:34 - 2016-09-10 13:46 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Warcraft.The.Beginning.German.2016.AC3.BDRip.x264-COiNCiDENCE
2016-10-20 20:20 - 2016-10-20 20:24 - 1047527424 _____ C:\Users\Michael Neumann\Downloads\coincidence-warcraft.the.beginning-sd.part1.rar
2016-10-20 20:20 - 2016-10-20 20:23 - 607708001 _____ C:\Users\Michael Neumann\Downloads\coincidence-warcraft.the.beginning-sd.part2.rar
2016-10-19 16:14 - 2016-10-19 16:14 - 00009657 _____ C:\Users\Michael Neumann\Downloads\studiengangNeuLPc79ffda8-f323-40a1-8ad0-2bce4adfff81.pdf
2016-10-19 16:14 - 2016-10-19 16:14 - 00009657 _____ C:\Users\Michael Neumann\Downloads\studiengangNeuLP30a725bb-d79f-439a-9271-d0a31bcddca2.pdf
2016-10-17 19:17 - 2016-10-17 19:17 - 00751532 _____ C:\Users\Michael Neumann\Downloads\Präsentation nb Kolloquium Okt 2016_Kita-Behinderung_Müller.pdf
2016-10-17 19:10 - 2016-10-17 19:10 - 92123136 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_1_Einfuehrung in die Psychiatrie_WiSe_2016.ppt
2016-10-17 19:10 - 2016-10-17 19:10 - 15532544 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_2_Demenz_Delir_WiSe_2016_17.ajf.ppt
2016-10-17 19:10 - 2016-10-17 19:10 - 03117056 _____ C:\Users\Michael Neumann\Downloads\Vorlesung_3_Alkohol_WiSe_2016_17.ajf.ppt
2016-10-16 15:24 - 2016-10-16 15:25 - 00009603 _____ C:\Users\Michael Neumann\Downloads\studiengangNeuLPbf66c9d7-9c6b-4326-abcb-664a283a6c8d.pdf
2016-10-15 15:50 - 2016-10-15 15:50 - 00001122 _____ C:\Users\Michael Neumann\Desktop\EVEREST Ultimate Edition.lnk
2016-10-15 15:47 - 2016-10-15 15:47 - 01474568 _____ C:\Users\Michael Neumann\Downloads\Everest Ultimate Edition - CHIP-Installer.exe
2016-10-13 18:40 - 2016-10-13 18:44 - 02140101 _____ C:\Users\Michael Neumann\Documents\IMG_20161013_0001.pdf
2016-10-12 18:25 - 2016-09-30 17:37 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-12 18:25 - 2016-09-30 17:20 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-10-12 18:25 - 2016-09-30 17:20 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-10-12 18:25 - 2016-09-15 17:30 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-12 18:25 - 2016-09-15 17:30 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-10-12 18:25 - 2016-09-15 17:15 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-12 18:25 - 2016-09-15 17:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-10-12 18:25 - 2016-09-12 23:13 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-10-12 18:25 - 2016-09-12 23:13 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-10-12 18:25 - 2016-09-12 23:08 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-10-12 18:25 - 2016-09-12 23:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-10-12 18:25 - 2016-09-12 22:49 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-10-12 18:25 - 2016-09-12 22:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-10-12 18:25 - 2016-09-12 22:37 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-12 18:25 - 2016-09-12 22:32 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-10-12 18:25 - 2016-09-12 22:32 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-10-12 18:25 - 2016-09-12 22:32 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-10-12 18:25 - 2016-09-12 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-10-12 18:25 - 2016-09-12 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-10-12 18:25 - 2016-09-12 22:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-10-12 18:25 - 2016-09-12 21:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-12 18:25 - 2016-09-12 20:43 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-12 18:25 - 2016-09-12 20:43 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-12 18:25 - 2016-09-10 18:19 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-12 18:25 - 2016-09-10 17:53 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-12 18:25 - 2016-09-09 20:29 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-12 18:25 - 2016-09-09 20:26 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-12 18:25 - 2016-09-09 20:23 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 20:01 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-10-12 18:25 - 2016-09-09 20:00 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-10-12 18:25 - 2016-09-09 20:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-10-12 18:25 - 2016-09-09 20:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-10-12 18:25 - 2016-09-09 20:00 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:51 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-10-12 18:25 - 2016-09-09 19:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-10-12 18:25 - 2016-09-09 19:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-10-12 18:25 - 2016-09-09 19:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-10-12 18:25 - 2016-09-09 19:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-10-12 18:25 - 2016-09-09 19:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-10-12 18:25 - 2016-09-09 19:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-10-12 18:25 - 2016-09-09 19:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-10-12 18:25 - 2016-09-09 19:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-10-12 18:25 - 2016-09-09 19:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-10-12 18:25 - 2016-09-09 19:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 18:25 - 2016-09-09 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-12 18:25 - 2016-09-08 22:34 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-10-12 18:25 - 2016-09-08 22:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-10-12 18:25 - 2016-09-08 22:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-10-12 18:25 - 2016-09-08 22:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-10-12 18:25 - 2016-09-08 16:55 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-12 18:25 - 2016-09-08 16:55 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-12 18:25 - 2016-08-12 19:02 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-12 18:25 - 2016-08-12 19:02 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-12 18:25 - 2016-08-12 19:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-10-12 18:25 - 2016-08-12 19:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-10-12 18:25 - 2016-08-12 19:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-10-12 18:25 - 2016-08-12 18:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-12 18:25 - 2016-08-12 18:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-12 18:25 - 2016-08-12 18:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-10-12 18:25 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-10-12 18:25 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-10-12 18:25 - 2016-08-12 18:26 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 02023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-10-12 18:25 - 2016-08-06 17:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-10-12 18:25 - 2016-08-06 17:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-10-12 18:25 - 2016-08-06 17:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-10-12 18:25 - 2016-08-06 17:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-10-12 18:25 - 2016-08-06 17:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-10-12 18:25 - 2016-08-06 17:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2016-10-12 18:25 - 2016-08-06 17:01 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-10-12 18:25 - 2016-08-06 17:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-10-12 18:25 - 2016-08-06 16:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-10-12 18:25 - 2016-08-06 16:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-10-12 18:25 - 2016-08-06 16:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-10-12 18:25 - 2016-06-14 19:21 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-10-12 18:25 - 2016-06-14 19:16 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-10-12 18:25 - 2016-06-14 19:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-10-12 18:25 - 2016-06-14 19:11 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-10-12 18:25 - 2016-06-14 17:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-10-12 18:25 - 2016-06-14 17:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-10-12 18:25 - 2016-06-14 17:15 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-10-12 18:25 - 2016-06-14 17:15 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-10-12 18:25 - 2016-06-14 17:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-10-12 18:25 - 2016-06-14 17:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-10-12 18:25 - 2016-06-14 17:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-10-12 18:25 - 2016-06-14 17:00 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-10-12 18:25 - 2016-06-14 17:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-10-12 18:24 - 2016-09-12 23:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-12 18:24 - 2016-09-12 23:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-12 18:24 - 2016-09-09 17:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-12 18:24 - 2016-08-16 22:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-10-12 18:24 - 2016-08-16 22:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-10-12 18:23 - 2016-08-29 17:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-12 18:23 - 2016-08-29 17:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-12 18:23 - 2016-08-29 17:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-10-12 18:23 - 2016-08-29 17:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-12 18:23 - 2016-08-29 17:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-12 18:23 - 2016-08-29 17:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-10-12 18:23 - 2016-08-29 17:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-12 18:23 - 2016-08-29 16:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-10-12 18:23 - 2016-07-22 16:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-10-12 18:23 - 2016-07-22 16:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-10-07 21:19 - 2016-10-07 21:34 - 00000000 ____D C:\Users\Michael Neumann\Downloads\Schrank für die Station Antennenprüfung
2016-10-07 21:19 - 2016-10-07 21:19 - 05268434 _____ C:\Users\Michael Neumann\Downloads\Schrank für die Station Antennenprüfung.zip
2016-10-02 18:04 - 2016-10-02 18:04 - 00148734 _____ C:\Users\Michael Neumann\Downloads\Forum_2_029913_Biegen_2.SLDPRT
2016-10-02 17:32 - 2016-10-02 17:32 - 00000000 ____D C:\Program Files\Bonjour
2016-10-02 17:32 - 2016-10-02 17:32 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-10-02 17:05 - 2016-10-02 17:05 - 00027649 _____ C:\Users\Michael Neumann\Downloads\[rutracker.org].t5131411.torrent
2016-10-02 16:58 - 2016-10-02 16:58 - 00003220 _____ C:\Windows\System32\Tasks\{E0092505-F31F-455C-8BF9-97B3E5C74058}
2016-10-02 16:21 - 2016-10-02 16:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-10-02 16:21 - 2016-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-10-02 15:55 - 2016-10-02 15:55 - 00054843 _____ C:\Users\Michael Neumann\Downloads\[rutracker.org].t5208698.torrent
2016-10-02 15:55 - 2016-10-02 15:55 - 00054843 _____ C:\Users\Michael Neumann\Downloads\[rutracker.org].t5208698 (1).torrent
2016-10-02 15:47 - 2016-10-02 15:47 - 00155232 _____ C:\Users\Michael Neumann\Downloads\Forum_2_029913_Biegen.SLDPRT
2016-10-02 13:37 - 2016-10-02 13:37 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-10-02 13:37 - 2016-10-02 13:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-10-02 13:37 - 2016-10-02 13:37 - 00000000 ____D C:\Program Files\iTunes
2016-10-02 13:37 - 2016-10-02 13:37 - 00000000 ____D C:\Program Files\iPod

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-28 20:39 - 2014-09-29 14:10 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\uTorrent
2016-10-28 20:37 - 2009-07-14 06:50 - 00019920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-28 20:37 - 2009-07-14 06:50 - 00019920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-28 20:31 - 2016-04-26 13:13 - 00000510 _____ C:\Windows\Tasks\MATLAB R2016a Startup Accelerator.job
2016-10-28 20:30 - 2016-04-16 18:37 - 00000000 ___RD C:\Users\Michael Neumann\Dropbox
2016-10-28 20:28 - 2016-04-02 13:12 - 00001228 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-10-28 20:28 - 2015-07-10 11:58 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-28 20:28 - 2014-01-27 21:26 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-28 20:28 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-28 20:18 - 2016-04-02 13:13 - 00001232 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-10-28 20:13 - 2014-04-08 21:27 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-10-28 19:55 - 2014-09-03 10:21 - 00100604 _____ C:\Users\Michael Neumann\Downloads\Addition.txt
2016-10-28 19:50 - 2015-07-10 11:58 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-28 19:40 - 2015-07-02 20:37 - 00000000 ____D C:\ProgramData\Lavasoft
2016-10-28 19:40 - 2015-07-02 19:46 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2016-10-28 18:43 - 2014-04-09 15:56 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-28 09:52 - 2014-06-25 20:34 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Adobe
2016-10-27 19:56 - 2016-04-02 13:12 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-10-27 17:56 - 2015-07-10 11:58 - 00002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-26 17:29 - 2010-11-21 05:27 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-10-26 12:13 - 2014-04-08 21:27 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-10-26 12:13 - 2014-04-08 21:27 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-26 12:13 - 2014-04-08 21:27 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-10-26 12:13 - 2014-04-08 21:27 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-10-26 12:13 - 2014-04-08 21:27 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-24 20:49 - 2016-02-21 18:00 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\JDownloader 2.0
2016-10-24 20:44 - 2016-08-05 17:32 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Battle.net
2016-10-24 20:03 - 2014-02-07 15:17 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\vlc
2016-10-24 18:54 - 2014-01-27 21:45 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-10-23 19:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2016-10-23 19:18 - 2014-04-09 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-10-23 19:18 - 2014-04-09 15:56 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-10-23 15:44 - 2015-04-01 13:41 - 00000000 ____D C:\Program Files\Heroes of the Storm
2016-10-22 22:20 - 2016-04-15 18:24 - 00000000 ____D C:\Program Files\SOLIDWORKS Corp
2016-10-22 22:07 - 2014-02-03 23:18 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\CrashDumps
2016-10-22 21:50 - 2014-01-27 19:23 - 00000000 ____D C:\Users\Michael Neumann
2016-10-22 21:34 - 2016-08-13 18:43 - 00262144 _____ C:\Users\Public\SWInstallReg.swdat
2016-10-22 21:23 - 2014-02-19 13:02 - 00000000 ____D C:\ProgramData\Adobe
2016-10-22 21:23 - 2014-01-29 16:15 - 00000000 ____D C:\Users\Michael Neumann\AppData\Roaming\Adobe
2016-10-22 21:18 - 2015-12-25 20:20 - 00000000 ____D C:\Users\Michael Neumann\Documents\SolidWorks Downloads
2016-10-22 21:12 - 2015-05-25 13:57 - 00000000 ____D C:\Program Files\Adobe
2016-10-22 21:12 - 2015-05-25 13:54 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-10-22 21:10 - 2015-05-25 13:57 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-10-22 21:02 - 2015-04-22 17:14 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-22 20:57 - 2014-02-19 13:02 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-10-22 10:58 - 2014-01-27 21:49 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2016-10-19 16:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-10-15 15:50 - 2015-12-27 22:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2016-10-15 15:50 - 2015-12-27 22:58 - 00000000 ____D C:\Program Files (x86)\Lavalys
2016-10-15 13:05 - 2015-11-18 11:44 - 00000000 ____D C:\Program Files\Common Files\SOLIDWORKS Shared
2016-10-13 18:35 - 2014-12-23 16:26 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-10-13 18:34 - 2016-05-28 20:25 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-13 18:25 - 2011-04-12 10:14 - 00799598 _____ C:\Windows\system32\perfh007.dat
2016-10-13 18:25 - 2011-04-12 10:14 - 00190524 _____ C:\Windows\system32\perfc007.dat
2016-10-13 18:25 - 2009-07-14 07:12 - 01908908 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-13 18:25 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-10-13 18:19 - 2009-07-14 06:50 - 00484416 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-13 18:15 - 2014-12-27 05:18 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-13 18:15 - 2014-12-27 05:18 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-13 18:15 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-10-13 18:15 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism
2016-10-12 19:26 - 2015-02-23 11:19 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-10-12 19:25 - 2015-07-09 07:06 - 00000000 ____D C:\Windows\system32\MRT
2016-10-12 19:20 - 2015-07-09 07:06 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-12 18:16 - 2015-11-18 11:35 - 00000000 ____D C:\Windows\SolidWorks
2016-10-12 18:11 - 2016-04-14 17:28 - 00000000 ____D C:\ProgramData\COSMOS Applications
2016-10-11 12:48 - 2009-07-14 04:34 - 00000269 _____ C:\Windows\win.ini
2016-10-02 21:00 - 2016-04-26 19:42 - 00000000 ____D C:\Program Files\PTC
2016-10-02 20:46 - 2016-08-31 12:57 - 00001034 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2016-10-02 20:46 - 2016-08-31 12:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-10-02 16:59 - 2014-01-27 20:49 - 00129048 _____ C:\Users\Michael Neumann\AppData\Local\GDIPFONTCACHEV1.DAT
2016-10-02 13:37 - 2015-08-17 20:20 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-10-01 09:21 - 2016-04-02 13:12 - 00000000 ____D C:\Users\Michael Neumann\AppData\Local\Dropbox

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-04-26 12:48 - 2016-02-01 15:32 - 0084246 _____ () C:\Program Files\license_agreement.txt
2016-04-26 13:03 - 2015-02-03 15:40 - 0005199 _____ () C:\Program Files\MCR_license.txt
2016-04-26 12:48 - 2016-01-13 23:22 - 0010114 _____ () C:\Program Files\patents.txt
2016-04-26 12:48 - 2013-12-28 03:08 - 0000245 _____ () C:\Program Files\trademarks.txt
2014-02-08 20:11 - 2014-02-15 20:24 - 0000000 _____ () C:\Users\Michael Neumann\AppData\Roaming\bitlord_log.txt
2010-10-22 10:14 - 2010-10-22 10:14 - 0000870 _____ () C:\Users\Michael Neumann\AppData\Roaming\smallwindows.cfg
2015-05-30 18:28 - 2015-05-30 18:28 - 0000862 _____ () C:\Users\Michael Neumann\AppData\Local\recently-used.xbel
2016-08-27 18:37 - 2016-08-27 18:37 - 0000017 _____ () C:\Users\Michael Neumann\AppData\Local\resmon.resmoncfg
2015-04-23 09:10 - 2015-04-23 09:10 - 0000032 _____ () C:\ProgramData\Temp.log

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Michael Neumann\ewanapi.exe
C:\Users\Michael Neumann\hpwin32.dll
C:\Users\Michael Neumann\hpwin64.dll
C:\Users\Michael Neumann\wis.exe
C:\Users\Michael Neumann\wisapi.exe


Einige Dateien in TEMP:
====================
C:\Users\Michael Neumann\AppData\Local\Temp\DTLiteInstaller.exe
C:\Users\Michael Neumann\AppData\Local\Temp\libeay32.dll
C:\Users\Michael Neumann\AppData\Local\Temp\msvcr100.dll
C:\Users\Michael Neumann\AppData\Local\Temp\msvcr120.dll
C:\Users\Michael Neumann\AppData\Local\Temp\ose00001.exe
C:\Users\Michael Neumann\AppData\Local\Temp\pimuninstall.exe
C:\Users\Michael Neumann\AppData\Local\Temp\proxy_vole2129198776930472743.dll
C:\Users\Michael Neumann\AppData\Local\Temp\proxy_vole4140280378126413756.dll
C:\Users\Michael Neumann\AppData\Local\Temp\proxy_vole8147574381217899982.dll
C:\Users\Michael Neumann\AppData\Local\Temp\sqlite3.dll
C:\Users\Michael Neumann\AppData\Local\Temp\VSUSetup.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-26 20:16

==================== Ende von FRST.txt ============================
         

Alt 28.10.2016, 21:16   #2
Mixer008
 
Systembereinigung - Standard

Systembereinigung



und die

Addition:
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26-10-2016
durchgeführt von Michael Neumann (28-10-2016 20:43:09)
Gestartet von C:\Users\Michael Neumann\Downloads
Windows 7 Professional N Service Pack 1 (X64) (2014-01-27 17:23:47)
Start-Modus: Normal
==========================================================


==================== Konten: =============================


Administrator (S-1-5-21-281873479-767526044-2589904799-500 - Administrator - Disabled)
Gast (S-1-5-21-281873479-767526044-2589904799-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-281873479-767526044-2589904799-1002 - Limited - Enabled)
Michael Neumann (S-1-5-21-281873479-767526044-2589904799-1000 - Administrator - Enabled) => C:\Users\Michael Neumann

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

µTorrent (HKU\S-1-5-21-281873479-767526044-2589904799-1000\...\uTorrent) (Version: 3.4.9.42606 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.020.20039 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.270 - Adobe Systems Incorporated)
Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015.5 (HKLM-x32\...\PHSP_17_0_1) (Version: 17.0.1 - Adobe Systems Incorporated)
Apple Application Support (32-Bit) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
calibre 64bit (HKLM\...\{2E0DEF55-D1D3-493C-8673-D4B30F12B9CE}) (Version: 2.51.0 - Kovid Goyal)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MG3500 series Benutzerregistrierung (HKLM-x32\...\Canon MG3500 series Benutzerregistrierung) (Version:  - *Canon Inc.)
Canon MG3500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series) (Version: 1.01 - Canon Inc.)
Canon MG3500 series On-screen Manual (HKLM-x32\...\Canon MG3500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.4.1 - Canon Inc.)
Cisco AnyConnect Secure Mobility Client  (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.3.01095 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 4.3.01095 - Cisco Systems, Inc.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd)
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.80 - DivX, LLC)
Document_Installer (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 13.4.21 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.35.1 - Dropbox, Inc.) Hidden
Eraser 6.2.0.2962 (HKLM\...\{C6E287F1-2E47-45F0-BB51-94F815CFFB48}) (Version: 6.2.2962 - The Eraser Project)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
EWA_net_Admin (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
EWA_net_Client_Applications (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
EWA_net_Core (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
EWA_net_EPC (x32 Version: 1.00.0000 - Daimler) Hidden
EWA_net_Server (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
EWA_net_WIS (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
EWA_net_WIS_CaseOnline_Importer (x32 Version: 1.00.0000 - DaimlerChrysler AG) Hidden
FilExile (HKLM-x32\...\{1310229C-E62A-4F05-87DB-13979A5D2EFC}_is1) (Version: 2.00 - Bryan Carey)
GDR 4213 für SQL Server*2014 (KB3070446) (64-bit) (HKLM\...\KB3070446) (Version: 12.1.4213.0 - Microsoft Corporation)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Hotfix 4459 für SQL Server*2014 (KB3162659) (64-bit) (HKLM\...\KB3162659) (Version: 12.1.4459.0 - Microsoft Corporation)
IBM SPSS Statistics 22 (HKLM\...\{104875A1-D083-4A34-BC4F-3F635B7F8EF7}) (Version: 22.0.0.0 - IBM Corp)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3071 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.100 - Intel Corporation)
ISO to USB (HKLM-x32\...\{D08A30AC-A663-4EA8-8D81-B98E17F19F1C}_is1) (Version:  - isotousb.com)
iTunes (HKLM\...\{9946A4F7-E0FD-4A33-82D1-06CBFFBBB9F9}) (Version: 12.5.1.21 - Apple Inc.)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java SE Development Kit 8 Update 91 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180910}) (Version: 8.0.910.14 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
MagentaCLOUD Software (HKLM-x32\...\{D14275B4-2DBB-4F22-BDE4-1D94297DD16A}) (Version: 5.0.0.0 - Deutsche Telekom AG)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MATLAB R2016a (HKLM\...\Matlab R2016a) (Version: 9.0 - MathWorks)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.376.2 - McAfee, Inc.)
Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{980C484A-DF30-42BE-A27E-38A0038F0A97}) (Version: 12.1.4459.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{7F0B9DC8-9D2C-4BE1-BCB1-EECFFFA79B98}) (Version: 12.1.4459.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
MKS Platform Components 9.x (HKLM\...\{30276636-0000-0905-9ABB-000BDB5CF35D}) (Version: 9.5.0000 - Mortice Kern Systems)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.4 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.1 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 359.00 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Grafiktreiber 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.00 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
ON_OFF Charge 2 B13.0403.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B13.0403.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
ON_OFF Charge B13.0403.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
PTC Quality Agent (HKLM-x32\...\{57E7D63A-D1BA-4F64-A202-0E5FC6F934CA}) (Version: 2.0.0.0 - PTC)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6849 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.1 - VS Revo Group, Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Secure Download Manager (HKLM-x32\...\{E040B65B-8683-4228-8C33-D44A141E40EA}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SOLIDWORKS 2015 x64 Edition SP04 (Version: 23.140.56 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2015 x64 German Resources (Version: 23.140.56 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS 2016 x64 Edition SP03 (Version: 24.130.57 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2016 x64 German Resources (Version: 24.130.57 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Composer Player 2015 SP04 x64 Edition (Version: 23.40.56 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2015 x64 Edition SP04 (Version: 15.4.0012 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2016 x64 Edition SP03 (Version: 16.3.0030 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Electrical 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Explorer 2015 SP04 x64 Edition (Version: 23.40.56 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Flow Simulation 2016 SP03 x64 Edition  (Version: 24.30.58 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Plastics 2016 SP03 x64 Edition (Version: 24.30.57 - Dassault Systemes SolidWorks Corp) Hidden
SopCast 3.8.3 (HKLM-x32\...\SopCast) (Version: 3.8.3 - www.sopcast.com)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
SQL Server 2014 Common Files (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.89 - TuneUp Software) Hidden
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version:  - Microsoft)
VBA (3821b) (x32 Version: 6.01.00.1234 - Microsoft Corporation) Hidden
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Windows Mobile-Gerätecenter (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinToUSB Version 2.9 (HKLM\...\WinToUSB_is1) (Version: 2.9 - The EasyUEFI Development Team.)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-281873479-767526044-2589904799-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0464E076-7C2D-4D9D-9FD0-7470DF046FD7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-10] (Google Inc.)
Task: {09313367-3195-4B1E-A0C3-B620DCF5F8C0} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {14F7D72B-6259-4247-A707-B181D8809ECE} - System32\Tasks\{90779EFB-D7AC-4466-92B4-7D791211CA77} => pcalua.exe -a E:\setup.exe -d E:\
Task: {1765850B-E88B-4CF0-B688-14CE6B8D4FD2} - System32\Tasks\{7E08EB13-9408-4412-A57D-36980A4F420E} => pcalua.exe -a "C:\Program Files (x86)\HDvid-Codec V9.0\Uninstall.exe" -c /fromcontrolpanel=1
Task: {1818ADCF-8731-421B-86AD-1519C7A819FD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-04-02] (Dropbox, Inc.)
Task: {3A19688C-AA1C-44E7-9E29-5311D92E2E03} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {3ED6FF4F-FED1-4908-AAC3-76528FCDC97A} - System32\Tasks\{E0092505-F31F-455C-8BF9-97B3E5C74058} => pcalua.exe -a "C:\SOLIDWORKS Admin\SOLIDWORKS 2016 SP3.0\startswinstall.exe" -d "C:\SOLIDWORKS Admin\SOLIDWORKS 2016 SP3.0"
Task: {4739D27C-AD98-4B0E-BC12-7392DE44EC1D} - System32\Tasks\{2CA4935F-08A4-4EC1-A610-B8BD2B2E46A2} => pcalua.exe -a "C:\Users\Michael Neumann\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\57H5G1V9\jre-8u73-windows-i586.exe" -d "C:\Users\Michael Neumann\Desktop"
Task: {4D8E4017-DDC5-4B21-942D-36373E8DF2B2} - System32\Tasks\AdobeAAMUpdater-1.0-PC-Michael Neumann => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-05-05] (Adobe Systems Incorporated)
Task: {62A4C70E-4923-4932-BD83-3C4A27763403} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-04-02] (Dropbox, Inc.)
Task: {650786E9-0D94-47B5-A15F-7827DE3B1990} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe
Task: {6AAE439A-50C5-446F-9D32-616B71A4EF34} - System32\Tasks\MATLAB R2016a Startup Accelerator => C:\Program Files\bin\win64\MATLABStartupAccelerator.exe [2015-12-28] ()
Task: {74E18E0E-65DC-43A8-BC4D-855ED353117C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-10] (Google Inc.)
Task: {85ABDAD9-416B-4759-AB3F-4BB7BF538409} - System32\Tasks\{EFEEEA67-E489-49FC-9831-2C07E5FDE0DE} => pcalua.exe -a D:\setup.exe -d D:\
Task: {87DDEFD6-2E05-4EEF-B466-C664FA782BAC} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe
Task: {9736B19D-4951-417A-AA7F-EF63B78B6021} - System32\Tasks\{44A81C2F-84CA-4D6D-9832-4C8F268F5D8F} => C:\Users\Michael Neumann\Desktop\setup.exe
Task: {B088AF82-A00B-4FAD-9894-FDB8E28119BF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {CFEC6FC1-D9AA-489F-A71E-3256E75A0B31} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe
Task: {E82E6672-5D0C-4B19-BC6D-AFE4C41F6F72} - System32\Tasks\{3F662D63-DC82-4D60-8BE2-343AE19EDD32} => pcalua.exe -a "C:\Program Files (x86)\EWA net\install\manager\Setup.exe" -c /clean
Task: {F1F87033-3DC2-40D3-9143-3AF4C409F50F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {F7B3DA4F-00AB-4B56-851F-A81F9D114A78} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {FDB2942C-B82F-47E1-BFB8-197B10705364} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-26] (Adobe Systems Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MATLAB R2016a Startup Accelerator.job => C:\Program Files\bin\win64\MATLABStartupAccelerator.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-01-27 21:26 - 2015-11-14 08:06 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-05-22 19:33 - 2016-05-22 19:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-09-01 18:12 - 2016-09-01 18:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-09-01 18:12 - 2016-09-01 18:12 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-01-27 19:55 - 2013-03-19 15:25 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-05-31 16:35 - 2016-05-31 16:35 - 03576008 _____ () C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\MagentaCloud.App.exe
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2016-05-22 19:32 - 2016-05-22 19:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-07-10 13:37 - 2016-07-10 13:37 - 00073728 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2015-11-20 22:11 - 2015-11-16 05:35 - 00012080 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-05-31 16:34 - 2016-05-31 16:34 - 00327352 _____ () C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\CefSharp.dll
2016-05-31 16:35 - 2016-05-31 16:35 - 24985264 _____ () C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\libcef.dll
2016-05-31 16:34 - 2016-05-31 16:34 - 00206536 _____ () C:\Users\Michael Neumann\AppData\Roaming\Telekom\MagentaCloud\CefSharp.WinForms.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2016-04-02 13:14 - 2016-10-10 20:19 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2016-10-27 19:55 - 2016-10-10 20:19 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2016-10-27 19:55 - 2016-10-10 20:19 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2016-10-27 19:55 - 2016-10-10 20:19 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2016-04-02 13:14 - 2016-10-10 20:19 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2016-04-02 13:14 - 2016-10-10 20:19 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2016-04-02 13:14 - 2016-10-10 20:19 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2016-04-02 13:14 - 2016-10-10 20:20 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-08-05 20:12 - 2016-10-24 15:16 - 00021312 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2016-10-27 19:55 - 2016-10-10 20:19 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2016-10-27 19:55 - 2016-10-10 20:21 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-08-05 20:12 - 2016-10-24 15:16 - 00025424 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-08-05 20:12 - 2016-10-10 20:20 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
2016-04-02 13:14 - 2016-10-10 20:21 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2016-04-02 13:14 - 2016-10-24 15:16 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2016-10-27 19:55 - 2016-10-10 20:17 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2016-10-27 19:55 - 2016-10-24 15:15 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2016-10-27 19:55 - 2016-10-24 15:15 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2016-04-02 13:14 - 2016-10-10 20:19 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2016-10-27 19:55 - 2016-10-24 15:15 - 01972528 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00133424 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00224056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2016-08-05 20:12 - 2016-10-24 15:16 - 00020288 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32._winffi_user32.pyd
2016-10-27 19:55 - 2016-10-10 20:24 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2016-10-27 19:55 - 2016-10-10 20:24 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2016-04-02 13:14 - 2016-10-10 20:21 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2016-08-05 20:12 - 2016-10-24 15:16 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00042808 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2016-10-27 19:55 - 2016-10-24 15:16 - 00168760 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2016-04-02 13:14 - 2016-10-10 20:25 - 00697304 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-02-23 12:15 - 2013-06-28 17:24 - 00163840 _____ () C:\Program Files (x86)\EWA net\apps\jre\private_jre\bin\server\jvm.dll
2016-05-31 04:46 - 2016-05-31 04:46 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-02-23 12:16 - 2011-03-09 11:48 - 00036864 ____N () C:\Program Files (x86)\EWA net\database\TransBase EWA\polycsr.dll
2015-02-23 12:16 - 2011-03-09 11:48 - 00166912 ____N () C:\Program Files (x86)\EWA net\database\TransBase EWA\libmcrypt.dll
2016-05-12 22:37 - 2016-05-12 22:37 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-05-12 22:37 - 2016-05-12 22:37 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-05-12 22:37 - 2016-05-12 22:37 - 00120832 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-05-12 22:37 - 2016-05-12 22:37 - 00126464 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-05-31 04:40 - 2016-05-31 04:40 - 00109760 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-05-12 22:37 - 2016-05-12 22:37 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2015-02-24 17:19 - 2005-03-21 16:54 - 00036864 ____N () C:\Program Files (x86)\EWA net\database\TransBase EPC\polycsr.dll
2015-02-24 17:19 - 2007-11-26 17:26 - 00166912 ____N () C:\Program Files (x86)\EWA net\database\TransBase EPC\libmcrypt.dll
2016-10-27 17:56 - 2016-10-20 10:47 - 01819240 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libglesv2.dll
2016-10-27 17:56 - 2016-10-20 10:47 - 00093288 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Michael Neumann\Desktop\Praktikumsbericht Michael Neumann.docx:com.dropbox.attributes [168]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-281873479-767526044-2589904799-1000\...\localhost -> localhost

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2016-08-13 14:57 - 00000857 ____A C:\Windows\system32\Drivers\etc\hosts


0.0.0.1	mssplus.mcafee.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-281873479-767526044-2589904799-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Michael Neumann\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\Services: COMSysApp => 3
MSCONFIG\Services: CoordinatorServiceHost => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^DeskDrive.lnk => C:\Windows\pss\DeskDrive.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Finderbar.lnk => C:\Windows\pss\Finderbar.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^maComfort.lnk => C:\Windows\pss\maComfort.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Refresh.lnk => C:\Windows\pss\Refresh.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^RocketDock.lnk => C:\Windows\pss\RocketDock.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SOLIDWORKS 2016 Fast Start.lnk => C:\Windows\pss\SOLIDWORKS 2016 Fast Start.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SOLIDWORKS Hintergrund-Downloader.lnk => C:\Windows\pss\SOLIDWORKS Hintergrund-Downloader.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^UberIcon.lnk => C:\Windows\pss\UberIcon.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinLaunch.lnk => C:\Windows\pss\WinLaunch.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Winroll.lnk => C:\Windows\pss\Winroll.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^xwidget.lnk => C:\Windows\pss\xwidget.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^YzShadow.lnk => C:\Windows\pss\YzShadow.lnk.CommonStartup
MSCONFIG\startupreg: NuTCSetupEnviron => C:\PROGRA~1\PTC\MKSTOO~1\bin\ncoeenv.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{43B2A889-42F4-4A54-8477-EE6C93301EBF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{DEC67625-BF62-41CD-8B02-56E349A4290B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{869B6BCB-B483-4CF4-BD42-E6B2C9E54FBB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3BA10A79-EEFD-40C1-9411-2385F70F6B95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{42A4850B-C9A5-491D-A625-977E7BC7E820}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7399B5C4-9129-40B5-BAB9-4FD880592635}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{22BE3DD7-4B06-4C5A-AE25-2E6370632ECA}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{B1C2AD7D-D28E-401D-A5D3-C1D1B294B81A}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A6E94342-DA67-4B32-A23D-6A927EDCB22B}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{29CCA88E-F7BA-4BED-AEEA-612BCF08A2B4}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{409F68AF-D776-4C11-8F68-3F19BED5ACD3}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{A6910282-1D69-4908-B62F-013977F5D551}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{493E860A-EB57-4476-8633-1E89C93ECA8B}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{A5C8D7DA-786F-4C77-AAC0-A0A95208E0D6}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{FD998466-A213-4A6F-9563-6EE72BC90600}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{625308EF-ABC3-411D-8554-B93650090687}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{11118A62-86D5-4EA1-8FE5-0178F73E9B64}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{58BA06CD-6AA8-4677-A4B8-A37B1E66A1BB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5493E70B-9835-4451-9507-9FAEC9ADDF59}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{54251114-11AE-45BE-918B-BFDADDDEEC7E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{74261EF9-DA26-4CF0-9359-902A06C5781D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{760BA47D-D66A-4784-8A2B-E56BB210FA58}C:\users\michael neumann\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\michael neumann\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{236D54A9-D8E0-4559-855A-35EA496F1A0E}C:\users\michael neumann\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\michael neumann\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{0F5F65A9-F4DD-4200-A26F-32B0AD1D920D}C:\users\michael neumann\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\michael neumann\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{3C9FC8EE-2D3D-4ECA-9EB8-835F232AA26F}C:\users\michael neumann\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\michael neumann\appdata\local\akamai\netsession_win.exe
FirewallRules: [{8C42E33D-E9B7-4B51-9243-7246D9318080}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{3A36EC4E-DDA4-450F-912A-CF3CE643B5E8}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{676F7D55-8802-4FF9-96D8-37D751373B54}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [{4CE0C25E-6F9D-4DA5-8F2E-7698CA31959F}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{694B8B1D-CA9A-4056-9342-39F9DC96F84B}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{A7AA7DDA-83B0-47BB-9404-C53D1630A1FB}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe
FirewallRules: [{8B2E672C-B535-4334-889C-D65B7ECA71DF}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe
FirewallRules: [{46A4F262-D5F7-4717-9A44-369558864ECA}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe
FirewallRules: [{21024876-0192-43D5-839B-1037C9529980}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe
FirewallRules: [TCP Query User{D127CD0A-9C15-4039-9628-4A99B4AADF34}C:\program files (x86)\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\tera\tera-launcher.exe
FirewallRules: [UDP Query User{7F597633-001A-444A-934F-7207079F24E0}C:\program files (x86)\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\tera\tera-launcher.exe
FirewallRules: [{6006F92E-5EA1-4159-B7DB-0B1A4196EF5A}] => (Block) C:\Program Files (x86)\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [TCP Query User{5798F4AF-8D1B-45F0-A5A8-AFEAAFC23C38}C:\program files (x86)\bitlord 2\bitlord files\bitlord.exe] => (Allow) C:\program files (x86)\bitlord 2\bitlord files\bitlord.exe
FirewallRules: [UDP Query User{20CF9CE6-725D-4AB5-98F9-CC330962AAA8}C:\program files (x86)\bitlord 2\bitlord files\bitlord.exe] => (Allow) C:\program files (x86)\bitlord 2\bitlord files\bitlord.exe
FirewallRules: [{717897BA-CC83-469C-9019-01776E8F5F44}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{AF330B1E-4F4A-444E-AF72-3A3CC25711FF}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{24765642-6A9E-4B31-9B77-3EA83730E96E}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{F7EB2D12-93F2-42DE-871E-1962D66568DA}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{1EB8916C-B2DB-49B4-B969-EB4EA9234755}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{115F08F2-26B2-422E-896F-6651D04BC376}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{15B10262-27A3-447E-BB75-D2431C8BF035}] => (Allow) C:\Program Files (x86)\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [{A78E7BFF-CB72-49BD-875F-3269755D0930}] => (Allow) C:\Program Files (x86)\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [{154AFBDD-77BE-4793-B281-25699392139A}] => (Allow) C:\Program Files (x86)\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [{D2541C4F-FBB5-4671-B3E9-083FDC9E1E77}] => (Allow) C:\Program Files (x86)\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [TCP Query User{FE7D7C6C-33F3-415B-B5C7-F577A62F7DBD}C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{AA94699C-1BFB-47C3-B215-ED5D27ACD378}C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe
FirewallRules: [TCP Query User{14B18570-FD39-450A-8874-FCFAB07028F4}C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe] => (Block) C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{2CF66D2E-0ABB-4B61-BD38-1AA100E01FC0}C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe] => (Block) C:\program files\dassault systemes\b20\win_b64\code\bin\cnext.exe
FirewallRules: [TCP Query User{3CA11BED-557B-4CE4-A0AB-6FC4608D80FD}C:\program files\dassault systemes\b20\win_b64\code\bin\orbixd.exe] => (Allow) C:\program files\dassault systemes\b20\win_b64\code\bin\orbixd.exe
FirewallRules: [UDP Query User{8ED397BE-6203-4871-A43C-7A2BE1FA7536}C:\program files\dassault systemes\b20\win_b64\code\bin\orbixd.exe] => (Allow) C:\program files\dassault systemes\b20\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{631DEA02-A859-4AF2-97A1-0F7D7FBF93C7}C:\program files\dassault systemes\b21\win_b64\code\bin\orbixd.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\orbixd.exe
FirewallRules: [UDP Query User{916486C6-9E18-4184-963C-C55BC8691EB2}C:\program files\dassault systemes\b21\win_b64\code\bin\orbixd.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{78B8F484-4B0E-4646-B731-7F8CD3EA9DEB}C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{E8E46BF3-B8F6-4644-920F-83CAF6A12CFD}C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe
FirewallRules: [TCP Query User{10085B95-A8A1-4935-B434-A57DEBADEBCD}C:\program files\dassault systemes\b21\win_b64\code\bin\catutil.exe] => (Block) C:\program files\dassault systemes\b21\win_b64\code\bin\catutil.exe
FirewallRules: [UDP Query User{5104B408-92BA-4093-9224-42715CC3A22A}C:\program files\dassault systemes\b21\win_b64\code\bin\catutil.exe] => (Block) C:\program files\dassault systemes\b21\win_b64\code\bin\catutil.exe
FirewallRules: [TCP Query User{78987C3F-B9BA-4574-8EF9-825D1A563A8C}C:\program files\java\jre8\bin\javaw.exe] => (Allow) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [UDP Query User{9EA1CBB8-7F36-4E41-944F-D84BD7DA83B4}C:\program files\java\jre8\bin\javaw.exe] => (Allow) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [TCP Query User{ADE94D8B-DEA2-4CAC-94E7-0076557299C5}C:\program files (x86)\hearthstone\hearthstone.exe] => (Block) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{098F762C-0F70-4EE1-A25D-A5FE473AC740}C:\program files (x86)\hearthstone\hearthstone.exe] => (Block) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{8D86B55A-D1A9-47A3-A33B-F0D142F24977}C:\users\michael neumann\downloads\hearthcrawl v27 r338\hearthcrawler.exe] => (Allow) C:\users\michael neumann\downloads\hearthcrawl v27 r338\hearthcrawler.exe
FirewallRules: [UDP Query User{FD4A601D-3D68-44CD-A816-1E8EA4971BD3}C:\users\michael neumann\downloads\hearthcrawl v27 r338\hearthcrawler.exe] => (Allow) C:\users\michael neumann\downloads\hearthcrawl v27 r338\hearthcrawler.exe
FirewallRules: [TCP Query User{B535E2DF-E2EF-4D1B-9E46-35497C48751B}C:\windows\system32\javaw.exe] => (Allow) C:\windows\system32\javaw.exe
FirewallRules: [UDP Query User{1711BB59-FEFD-4D06-8B76-C021693B2943}C:\windows\system32\javaw.exe] => (Allow) C:\windows\system32\javaw.exe
FirewallRules: [TCP Query User{7DF1A252-31B4-452E-A3B3-E6BCD9F377B2}C:\users\michael neumann\desktop\datenbank\technische thermodynamik ws14.15\latest\hearthcrawler.exe] => (Allow) C:\users\michael neumann\desktop\datenbank\technische thermodynamik ws14.15\latest\hearthcrawler.exe
FirewallRules: [UDP Query User{00E86D78-67AC-48E4-BA31-635A00CC21AB}C:\users\michael neumann\desktop\datenbank\technische thermodynamik ws14.15\latest\hearthcrawler.exe] => (Allow) C:\users\michael neumann\desktop\datenbank\technische thermodynamik ws14.15\latest\hearthcrawler.exe
FirewallRules: [{0468DF96-E1F7-416D-A1E1-BE65D7752DFD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{F2322231-B91B-461B-957F-6897FEA81D1C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{F4304505-60FC-4FA0-97FA-B4C504D1B2B2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{4B63E26C-5134-4CBA-82E3-C7989F115958}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{5950CA76-C9D7-43E2-983B-AFED5EF69434}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{0406793B-130F-4861-B81C-D87881680404}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{BE2648EC-5DE5-40E3-A25A-6BF6F1BEA51B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{A2948A34-1900-41AD-9B77-19391D058C9B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [TCP Query User{E672DA57-BC11-4B29-9024-6FD33F8B74F3}C:\users\michael neumann\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michael neumann\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{CB5EBF70-570A-4ACF-ACC0-5D2DC9933605}C:\users\michael neumann\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michael neumann\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{08E19020-9890-45D7-A3DF-E3DF76DE4ECB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{7EE22B39-8148-4B87-BF34-5BC8AEED49E7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{26429978-1954-43A7-8349-041E9497FF24}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{3818A266-7E11-41B2-9B4A-EA89A4CD7CF2}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.com
FirewallRules: [{F22578C0-2115-4F0C-A91B-FD8C5961CD25}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\WinWrapIDE.exe
FirewallRules: [{719F33D8-B7C9-4708-8A42-B3EA229C81BC}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{76B78845-10A4-436C-BDA9-EE2AC86357F1}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.com
FirewallRules: [{1BE1491E-9482-407F-AADA-F146E30474E7}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\WinWrapIDE.exe
FirewallRules: [{7BB7BB15-C566-4217-9475-DDCE6BFC1F26}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{F882951A-C5B7-4581-B471-6ADE1C1D8F10}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{29ABACCC-BBA4-4FC1-B6BC-8DA968B205EF}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.com
FirewallRules: [{06D39A9D-1E47-44A7-856F-C06588FB2005}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\stats.com
FirewallRules: [{6D009E87-22F2-4113-8796-0CE948F02DB9}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\WinWrapIDE.exe
FirewallRules: [{8B5AE635-62A9-4FEC-8FBF-6A0AC2880A46}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\22\WinWrapIDE.exe
FirewallRules: [TCP Query User{180A38BF-E7B1-4329-9E8D-B17620E13BF0}C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe] => (Allow) C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe
FirewallRules: [UDP Query User{5E0B6DB2-8E10-4AB0-A9D4-C5B2A813A79A}C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe] => (Allow) C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe
FirewallRules: [{2FFE2951-F5AE-4E37-90E0-8B4A51295F00}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{3E766F72-12A9-4088-AC17-0AF10E8623A0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{288D127E-9FCB-47AE-8799-FF49E1588351}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{0E10193B-2834-4456-A669-03415D3FE1BD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{72C4D01E-DAEF-4686-93B3-A2D23BBF1BBD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{5011530C-B05C-49D1-8107-1EEFB353E30C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{94596D95-9829-480D-986A-252F0DC8B40D}] => (Allow) C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{11803C83-CF86-4EB2-A0B2-F3C3EB6D5C3E}] => (Allow) C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8F0814E6-EC6F-4A1F-871D-EA218FA2EF35}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{C9567DEC-FF5D-4D2A-AA75-3E2D69144F65}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{D435303B-26C9-4C5E-BB9A-4D1AAFCB356C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{6D5BD45E-FD48-439C-8D80-E62C652F48C4}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{4271F84D-859D-486F-9202-2D39D11F6047}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{FD9E37F8-B580-4925-B04D-DF0BB96D995D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{9672A879-2B51-4DEB-B5E0-4CF5A42E3126}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7F83016C-05C0-4A1A-AA1C-5ED404FAE9BC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{E562A778-B21C-4255-9E75-07112DD7FB35}C:\program files\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{558C8100-C374-4004-AA38-A4AFC73B2432}C:\program files\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{540EA966-CCB2-4D11-B0EC-A03B76F05DFA}C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A1EE2D6F-3E76-486D-A04C-B2387113DD4F}C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{85DD0C00-86A9-4F82-A27D-43DCB5CA17C7}C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{162324F1-2587-4D6A-BCF2-B73A8034DBD0}C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{DE38ACE3-21C4-45A9-AD32-CC6F60DD9EF6}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [UDP Query User{FE7B116C-AD93-491B-85B0-A089875F717B}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [TCP Query User{C4E499E6-CC15-4380-9C71-5F9F6176F286}C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{9F1E8974-48AF-43A8-8DA5-E07871506FDC}C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe] => (Allow) C:\program files\dassault systemes\b21\win_b64\code\bin\cnext.exe
FirewallRules: [TCP Query User{40EB36FE-32D2-4A21-9A46-552040569BEA}C:\program files\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{729687FB-016C-485A-8E31-E44CA195F660}C:\program files\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1C622EF4-7367-49C0-9F74-32FEE8BE7720}C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C39CBC23-B7EE-467C-A2A4-A8346CB8D2B5}C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{7A387FD3-05CD-435E-881B-A90C3068BBA5}C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{3CE16F1E-2B5C-4A74-B003-FDCA5C46A04D}C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2A894A95-66FB-49E3-8F61-5152F5E66954}C:\program files\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{932510DF-2FF5-4F92-870E-BFE0AB563644}C:\program files\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9B2EFE54-5B36-4B1B-B912-1CC272B1FEF0}C:\program files\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{BCBCA83C-717C-48F9-B469-9B92AB5B6250}C:\program files\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{DFAADE73-D7E8-41C1-9C69-08A717755505}C:\users\michael neumann\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Allow) C:\users\michael neumann\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [UDP Query User{8DC10F27-5915-4CE4-A803-790815998EB7}C:\users\michael neumann\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Allow) C:\users\michael neumann\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [TCP Query User{CB3E2305-243D-4E79-98DA-CB3CF6EF4CF7}C:\program files\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{6C240616-6CBF-47F9-B9C1-90B2A1DE3C2F}C:\program files\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37117\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{FEB12FED-5B3C-4B77-95C4-232262B31C83}C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9D39830D-47CF-4A6B-B473-6183DC257A7F}C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{EE461F22-51A3-4F04-A6FF-0D71654F8F83}C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{21BEA338-3E66-4098-89D4-FE6B454DCC34}C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{68FA026B-64A2-4A5F-A006-7ED8C96C891D}C:\program files\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9DD652BB-5BC1-4A91-AA74-81B1E0946B80}C:\program files\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{95950914-E2E7-474E-9CD1-F791C05B699F}C:\program files\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{08CF009B-5117-4A9F-BFE3-77CB62DCE955}C:\program files\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{DAA0EAFF-2863-4241-BB66-93BA41DAC96D}C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B30CF65D-84C9-4CA8-AA63-0A3363C13540}C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{22D929C5-50FF-4B06-8E1D-CB5AE507E3BE}C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E690FC13-771E-4257-9BB8-C837BD1C8F5D}C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{A5D66EB6-0D53-4168-935E-3D3CA51CFFE0}C:\program files\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D80393F1-86DF-4737-99CB-A89C9A114720}C:\program files\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D8C9D1CE-A4E0-4F06-B615-6591AA609DD4}C:\program files\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{DB950FF4-173F-48F7-BBEE-51FAA33D17BD}C:\program files\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2D1DC5E0-19E7-4DCE-AD66-704131883195}C:\program files\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{650F9C88-51C9-4E9D-AF0B-49BA7709901C}C:\program files\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{06B76F01-D5B5-4BA0-B1DF-F2D12B18A6CC}C:\program files\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{BA579104-AF17-4B97-9E47-4ED858B1F13B}C:\program files\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{008B57AE-E095-41CF-A767-D368ED11353E}C:\program files\overwatch\gameclientapp.exe] => (Allow) C:\program files\overwatch\gameclientapp.exe
FirewallRules: [UDP Query User{24BFBEED-C365-42C1-A347-A1D24E483AAE}C:\program files\overwatch\gameclientapp.exe] => (Allow) C:\program files\overwatch\gameclientapp.exe
FirewallRules: [{8287E18D-D62A-45D5-ADA4-B76641CF8595}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{466B231A-DAA1-4B38-AD68-E4E01FAE48FD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{DC3CA838-8D27-46CA-A862-78EC9BA4861E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{59AF9740-6F90-4FCA-8118-C2D88B7F45B5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DE11C5D1-A6BB-4007-A96E-C7BBE69FEE91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{CD4060F1-F301-4628-B857-866B9AD65A40}C:\program files\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{8F34C251-0757-4640-9031-F2C5655901B6}C:\program files\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{922AF628-EA57-4611-BD5E-027816B76E14}C:\program files\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F2FC73AD-92E5-4F86-8F1D-53933F85D11E}C:\program files\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe
FirewallRules: [{F641CB8A-1DF3-4221-A48C-1D27CA569FB6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5E56163F-563D-4564-99B9-85B88E0AF108}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{00E8B793-75B7-44E9-91CA-C930C82011CB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{17D67EE3-877C-4674-A8AE-DF4ACC9D15F6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{4D13D531-68A9-4062-8925-3C9BF05A4669}C:\program files\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A93DBE5D-A318-449A-B363-2D465EF18AEB}C:\program files\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base39951\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{21236521-8558-4A58-B6DE-42A704020039}C:\program files\heroes of the storm\versions\base40431\heroesofthestorm_x64.exe] => (Block) C:\program files\heroes of the storm\versions\base40431\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F6B13E36-81AC-4CC7-BABD-BEEB12793D13}C:\program files\heroes of the storm\versions\base40431\heroesofthestorm_x64.exe] => (Block) C:\program files\heroes of the storm\versions\base40431\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{70D3A7AB-E34B-4526-BBFD-64470B749D5A}C:\program files\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F2705D57-F189-41BB-8EC4-7D0F4A407351}C:\program files\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2C371E49-4524-4D9E-A41F-96D151E6023A}C:\program files\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B8EB3C8D-7924-4D93-AAA6-5F381355FDC6}C:\program files\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{170E8800-B955-4AB0-A5C0-F48CA649593D}C:\program files\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{37602442-2275-45D3-86D6-B3CBA6A8A569}C:\program files\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{6F89CDE9-EC18-432A-9206-A7D0ADF4BC70}C:\program files\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{FBA874CB-3645-402D-82CA-2A9C933A719A}C:\program files\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{60400196-EAA0-4BB5-8118-E327D2CA75DC}C:\program files\heroes of the storm\versions\base42273\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42273\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B0332209-B1FE-47AF-A91B-CE2F135494E8}C:\program files\heroes of the storm\versions\base42273\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42273\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{EA161952-B964-49C1-A6BE-A5BB2DDF77B0}C:\program files\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{265341A3-3581-49C5-93F6-AE6BA7AB5831}C:\program files\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{6A6E2600-2554-456B-AE3C-BF7F63FDFBB9}C:\program files\bin\win64\matlab.exe] => (Allow) C:\program files\bin\win64\matlab.exe
FirewallRules: [UDP Query User{4A8FB930-7679-41FF-B04D-C587B12A925B}C:\program files\bin\win64\matlab.exe] => (Allow) C:\program files\bin\win64\matlab.exe
FirewallRules: [TCP Query User{B775E788-54DC-43F6-A1FD-4D512DB50BCD}C:\program files\java\jdk1.8.0_91\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_91\bin\jmc.exe
FirewallRules: [UDP Query User{356CAE57-03CC-445F-ABE1-C54B74E4E7CB}C:\program files\java\jdk1.8.0_91\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_91\bin\jmc.exe
FirewallRules: [TCP Query User{4486FE09-7869-47EE-B53D-BDEE2B652992}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\nms\nmsd.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\nms\nmsd.exe
FirewallRules: [UDP Query User{E5000930-CE37-496A-89FB-E4710A8A75AB}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\nms\nmsd.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\nms\nmsd.exe
FirewallRules: [TCP Query User{885148C8-5E80-4819-842C-55640EDD13BC}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\xtop.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\xtop.exe
FirewallRules: [UDP Query User{F148EEC8-16D3-4E9D-B271-7E48E5228269}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\xtop.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\xtop.exe
FirewallRules: [TCP Query User{3879598B-A701-4D76-9FA3-3B99D566B48C}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\pro_comm_msg.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [UDP Query User{3EEE38ED-7296-47D9-B511-FD43F522F70A}C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\pro_comm_msg.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m110\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [TCP Query User{E7CB1A09-A78C-4C99-BCAC-D1CEAC513734}C:\program files\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{CD0FDCAD-E78A-4FB2-AABF-295EB1F0B5BA}C:\program files\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{0E4DE1D7-6CAD-452E-9637-9C4F8AECB273}C:\program files\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{60B2E018-6631-468B-9B05-BB5E325B3C0D}C:\program files\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{38832C0B-74F8-4EC0-8652-D00F73DDA450}C:\program files\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{65B93D55-87F4-470D-861C-21A97B6BD339}C:\program files\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{16C70145-2A92-4131-BCE3-607FF8882973}C:\program files\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{640DB27B-C21A-4A42-B9DB-B3E68FBE370B}C:\program files\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8E41015A-4A66-47DE-873F-3667CC96D4F5}C:\program files\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9F5B4E68-3827-4AE5-865A-08FA9E98A15C}C:\program files\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{AFC088AE-9F0B-4403-B73D-4E6AB3BF6322}C:\program files\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C141CCB0-985E-40EE-A985-4AF2604CF969}C:\program files\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{ED79A94A-5267-4A9D-93A6-BDB9F0934587}C:\program files\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4F60AFFE-9A89-4569-A68E-1A728692DFAC}C:\program files\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B959BCA7-CE75-4534-B2A9-421949A72C1D}C:\program files\heroes of the storm\versions\base44737\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44737\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{61705D89-FDC7-403C-8BCB-CA78D78C3C9D}C:\program files\heroes of the storm\versions\base44737\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44737\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{BF455E03-DB25-4E5D-897E-1FCD54CD88B7}C:\program files\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C69CC429-C017-435C-9991-88FD6341EAAF}C:\program files\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{3DEAE4B6-5D5A-4868-8959-F9F1FB91102E}C:\program files\heroes of the storm\versions\base44941\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44941\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{76EC16CB-6D96-425B-82E0-28815BC05AC3}C:\program files\heroes of the storm\versions\base44941\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base44941\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{AC82B8CA-5BD6-49A9-A85E-53E910E92E22}C:\program files\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F87C4885-6216-4EE6-ACAC-461B9FA88223}C:\program files\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base45228\heroesofthestorm_x64.exe
FirewallRules: [{3303ED34-4007-45D9-A55C-CDB97329F724}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{2311A73B-AB57-4F87-96C1-FA544115F8D8}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{A5C26631-CBB5-42B9-9CE6-4A05CE1C1C77}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\photoview\photoview360.exe
FirewallRules: [{434DF1B7-DD28-4BDC-B1E4-407322FCC555}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\photoview\photoview360.exe
FirewallRules: [{5BDCF8A5-AE98-4991-B718-70FA9158D468}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\photoview\photoview360_cl.exe
FirewallRules: [{F8A3CA50-2FAB-4CA6-A3B3-54D5A1E10340}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks\photoview\photoview360_cl.exe
FirewallRules: [TCP Query User{D1F78F60-AAB2-4D37-AE1D-F5771CFECF26}C:\program files\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{8BAEFC20-0708-4CD7-849C-85AAC411AF56}C:\program files\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46158\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D3345854-B078-4D12-AC28-09758C6F956A}C:\program files\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C5A3EAAF-54E1-4780-AF35-F35620FAB1C3}C:\program files\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46446\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{E164BD74-D016-46F7-9D53-D6490ED9CF59}C:\program files\heroes of the storm\versions\base46690\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46690\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{30ADEFEC-C905-41A0-BC87-63BBB28D8864}C:\program files\heroes of the storm\versions\base46690\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46690\heroesofthestorm_x64.exe
FirewallRules: [{1C5E0793-EADA-4F72-815F-7E1C76B50889}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{08FAFC36-B996-4F8E-A8C2-2A1F51296B9B}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\photoview\photoview360.exe
FirewallRules: [{79219C72-79B8-44CF-92E3-6065D7847147}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\photoview\photoview360.exe
FirewallRules: [{C332740B-5BB4-4D4B-BF43-0CFCA5DCC2AD}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\photoview\photoview360_cl.exe
FirewallRules: [{A66573BD-EA77-41E8-86E1-C74BEED2156B}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\photoview\photoview360_cl.exe
FirewallRules: [{A26A19B4-F533-4099-A1DB-C7D05D028303}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{87C0520E-8169-4802-87FD-642ECB81AAAF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0217674E-34B8-4157-A518-7D7481ACA28F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B05551F5-9BDE-41E0-B387-3AF681A914CC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{150B6B28-C463-4E2E-BCB9-2E59AE2B8D78}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks (3)\photoview\photoview360.exe
FirewallRules: [{239D9211-A9E0-409C-805D-C664D5AA0CAA}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks (3)\photoview\photoview360.exe
FirewallRules: [{FEABFB86-F49F-4160-8F8D-056D5A974711}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks (3)\photoview\photoview360_cl.exe
FirewallRules: [{799FFEC1-E8BA-42E2-AC58-6222F9CA5F4C}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SolidWorks (3)\photoview\photoview360_cl.exe
FirewallRules: [TCP Query User{2241B7CF-2342-498D-BB9F-05CAEC42CFDC}C:\program files\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{EECB79DE-2754-4CC7-A907-DB435CBB6098}C:\program files\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe
FirewallRules: [{044A92B6-ED6A-4389-8F88-903E66E0F070}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{86DC9B00-E41D-4B3B-807C-9C3CF47C5892}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\swScheduler\DTSCoordinatorService.exe
FirewallRules: [TCP Query User{7CFE7B6F-DC54-4F46-BB97-BE4DA009EC09}C:\program files\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{81987FA0-BBF3-4E62-AC35-EE4827B41625}C:\program files\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) C:\program files\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe
FirewallRules: [{3FF107F6-977D-4582-906A-8F280A7830A4}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{13A082BE-7408-4FA2-BFC5-B98ED1859A81}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS (2)\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{C4A5507B-BEBB-4DC4-99D7-D8A462B93C68}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{8F26D0C3-B4E5-4938-937E-71C7BDC4FC42}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

==================== Wiederherstellungspunkte =========================

25-10-2016 08:21:57 Windows Update
28-10-2016 09:52:57 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Intel(R) Active Management Technology - SOL (COM3)
Description: Intel(R) Active Management Technology - SOL
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: Serial
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Norton Internet Security Settings Manager
Description: Norton Internet Security Settings Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: ccSet_NIS
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/28/2016 08:29:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (10/28/2016 08:28:33 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.

Error: (10/28/2016 07:44:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (10/28/2016 07:43:17 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.

Error: (10/28/2016 03:57:02 PM) (Source: MsiInstaller) (EventID: 11706) (User: PC)
Description: Produkt: SOLIDWORKS 2016 x64 Edition SP03 -- Fehler 1706. Für das Produkt SOLIDWORKS 2016 x64 Edition SP03 wurde kein Installationspaket gefunden. Wiederholen Sie die Installation und verwenden Sie dabei eine gültige Kopie des Installationspakets "solidworks.msi".

Error: (10/28/2016 03:53:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (10/28/2016 03:52:14 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.

Error: (10/28/2016 09:52:14 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/28/2016 09:47:32 AM) (Source: MsiInstaller) (EventID: 11706) (User: PC)
Description: Produkt: SOLIDWORKS 2016 x64 Edition SP03 -- Fehler 1706. Für das Produkt SOLIDWORKS 2016 x64 Edition SP03 wurde kein Installationspaket gefunden. Wiederholen Sie die Installation und verwenden Sie dabei eine gültige Kopie des Installationspakets "solidworks.msi".

Error: (10/28/2016 09:44:29 AM) (Source: EWA net DB Core) (EventID: 4097) (User: )
Description: TransBase Multiplexer error report:
  Version: V6.8.1.46 (Build 719) 2011/03/09 (Release)
select()


Systemfehler:
=============
Error: (10/28/2016 08:29:42 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
ccSet_NIS
UsbCharger

Error: (10/28/2016 08:29:17 PM) (Source: DCOM) (EventID: 10016) (User: PC)
Description: Durch die Berechtigungseinstellungen (Computerstandard) wird der SID (S-1-5-21-281873479-767526044-2589904799-1000) für Benutzer PC\Michael Neumann von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID 
{9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 und APPID 
{9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden.

Error: (10/28/2016 08:29:17 PM) (Source: DCOM) (EventID: 10016) (User: PC)
Description: Durch die Berechtigungseinstellungen (Computerstandard) wird der SID (S-1-5-21-281873479-767526044-2589904799-1000) für Benutzer PC\Michael Neumann von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID 
{9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 und APPID 
{9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden.

Error: (10/28/2016 08:28:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Remote Solver for Flow Simulation 2016" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (10/28/2016 08:28:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "SQL Server (TEW_SQLEXPRESS)" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (10/28/2016 08:28:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Service Installer TrueKey" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (10/28/2016 08:28:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "SOLIDWORKS Electrical Collaborative Server" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (10/28/2016 08:28:01 PM) (Source: Serial) (EventID: 36) (User: )
Description: Bei der Überprüfung, ob "\Device\Serial0" ein serieller Anschluss ist, war der Inhalt des Divisor-Latch-Registers mit dem Interruptfreigabe- und dem Empfangsregister identisch.
Das Gerät wurde nicht als serieller Anschluss erkannt und wird gelöscht.

Error: (10/28/2016 08:19:07 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Netzwerkspeicher-Schnittstellendienst" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
Es wird bereits eine Instanz des Dienstes ausgeführt.

Error: (10/28/2016 08:17:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Diagnosediensthost" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


CodeIntegrity:
===================================
  Date: 2015-12-27 21:58:52.139
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Users\MICHAE~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-12-27 21:58:52.110
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Users\MICHAE~1\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-12-27 21:58:51.336
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-12-27 21:58:51.307
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 46%
Installierter physikalischer RAM: 8070.8 MB
Verfügbarer physikalischer RAM: 4321.88 MB
Summe virtueller Speicher: 16139.78 MB
Verfügbarer virtueller Speicher: 11757.69 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:377.39 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 8F2604F7)
Partition 1: (Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         
und der Ordner, den ich nicht löschen kann, ist SOLIDWORKS Corp.
__________________


Geändert von Mixer008 (28.10.2016 um 21:26 Uhr)

Alt 28.10.2016, 22:36   #3
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Systembereinigung - Standard

Systembereinigung



Zitat:
Ansonsten würde ich gerne mal mein System komplett "reinigen"
Und warum beauftragst du nicht damit deine Kollegen aus der IT-Abteilung?

Was ich da so seh in den Log sieht ziemlich eindeutig nach Büro-PC aus
__________________
__________________

Alt 29.10.2016, 07:02   #4
Mixer008
 
Systembereinigung - Standard

Systembereinigung



Hallo,
Nein das ist kein Büro-PC.
Das ist mein privater PC.
Vor allem wie kommst du darauf?
Und wie soll man das Gegenteil beweisen, damit du das glaubst ?

Alt 29.10.2016, 11:25   #5
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Systembereinigung - Standard

Systembereinigung



Warum ich darauf komme?
Sieh dir doch mal diese Softwarekonfig an!

Windows 7 Professional N
Adobe Creative Cloud
Adobe Photoshop CC 2015.5
Dassault Systemes Software Prerequisites x86-x64
EWA_net_Admin
IBM SPSS Statistics 22
MATLAB R2016a
Microsoft Office Professional Plus 2013
Microsoft SQL Server 2014
SOLIDWORKS Flow Simulation 2016 SP03 x64 Edition
SOLIDWORKS Plastics 2016 SP03 x64 Edition

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 29.10.2016, 11:52   #6
Mixer008
 
Systembereinigung - Standard

Systembereinigung



Hahaha ,

das ist alles Software von der Uni !!!
Ich kann die Software nutzen, weil ich an der Uni eingeschrieben bin. Auch das Betriebssystem habe ich von der Uni runtergeladen, weil es umsonst ist.
Rechner wird privat genutzt zu Studium-Zwecken, nicht gewerblich.

Wenn du mir nicht weiterhelfen wirst, weil du mir gerade nicht glaubst, dann lassen wir es.

Geändert von Mixer008 (29.10.2016 um 12:04 Uhr)

Alt 29.10.2016, 12:07   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Systembereinigung - Standard

Systembereinigung



Und das soll ich woher riechen wenn du das nicht schreibst?

Diese Software kann genauso gut kommerziell benutzt werden. Schau dir mal an was normale Lizenzen dafür kosten, da brichst du zusammen



1. Schritt: Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers




2. Schritt: Kaspersky TDSS-Killer

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 29.10.2016, 13:13   #8
Mixer008
 
Systembereinigung - Standard

Systembereinigung



Hey,

jo alles klar. Kein Thema.

hier die Log-Files:

Malwarebytes Anti-Rootkit:
Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2014.11.18.05
  rootkit: v2014.11.12.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.17609
Michael Neumann :: PC [administrator]

29.10.2016 12:42:53
mbar-log-2016-10-29 (12-42-53).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 419743
Time elapsed: 23 minute(s), 54 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
und
Kaspersky:
Code:
ATTFilter
13:07:54.0409 0x1dd8  TDSS rootkit removing tool 3.1.0.11 Aug  5 2016 12:13:31
13:07:58.0108 0x1dd8  ============================================================
13:07:58.0108 0x1dd8  Current date / time: 2016/10/29 13:07:58.0108
13:07:58.0108 0x1dd8  SystemInfo:
13:07:58.0109 0x1dd8  
13:07:58.0109 0x1dd8  OS Version: 6.1.7601 ServicePack: 1.0
13:07:58.0109 0x1dd8  Product type: Workstation
13:07:58.0109 0x1dd8  ComputerName: PC
13:07:58.0109 0x1dd8  UserName: Michael Neumann
13:07:58.0109 0x1dd8  Windows directory: C:\Windows
13:07:58.0109 0x1dd8  System windows directory: C:\Windows
13:07:58.0109 0x1dd8  Running under WOW64
13:07:58.0109 0x1dd8  Processor architecture: Intel x64
13:07:58.0109 0x1dd8  Number of processors: 4
13:07:58.0109 0x1dd8  Page size: 0x1000
13:07:58.0109 0x1dd8  Boot type: Normal boot
13:07:58.0109 0x1dd8  CodeIntegrityOptions = 0x00000001
13:07:58.0109 0x1dd8  ============================================================
13:08:00.0478 0x1dd8  KLMD registered as C:\Windows\system32\drivers\80365019.sys
13:08:00.0478 0x1dd8  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23564, osProperties = 0x1
13:08:00.0673 0x1dd8  System UUID: {C564E9FA-415F-DEA1-788F-52712B6B49AD}
13:08:01.0157 0x1dd8  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:08:01.0172 0x1dd8  ============================================================
13:08:01.0173 0x1dd8  \Device\Harddisk0\DR0:
13:08:01.0173 0x1dd8  MBR partitions:
13:08:01.0173 0x1dd8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
13:08:01.0173 0x1dd8  ============================================================
13:08:01.0198 0x1dd8  C: <-> \Device\Harddisk0\DR0\Partition1
13:08:01.0214 0x1dd8  ============================================================
13:08:01.0214 0x1dd8  Initialize success
13:08:01.0214 0x1dd8  ============================================================
13:08:03.0150 0x2634  ============================================================
13:08:03.0150 0x2634  Scan started
13:08:03.0150 0x2634  Mode: Manual; 
13:08:03.0150 0x2634  ============================================================
13:08:03.0150 0x2634  KSN ping started
13:08:03.0229 0x2634  KSN ping finished: true
13:08:04.0786 0x2634  ================ Scan system memory ========================
13:08:04.0786 0x2634  System memory - ok
13:08:04.0787 0x2634  ================ Scan services =============================
13:08:04.0907 0x2634  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
13:08:04.0911 0x2634  1394ohci - ok
13:08:04.0953 0x2634  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
13:08:04.0959 0x2634  ACPI - ok
13:08:04.0969 0x2634  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
13:08:04.0971 0x2634  AcpiPmi - ok
13:08:05.0027 0x2634  [ 4D2A45FDEBC823742B9F37DBBF99893A, E7236141B493879E2F39038A74A3E8AAEDDC56B0BF758BA4725D99B27983155F ] acsock          C:\Windows\system32\DRIVERS\acsock64.sys
13:08:05.0037 0x2634  acsock - ok
13:08:05.0112 0x2634  [ DC00FD73505DAEDD99CAF4533B0C05BD, 2863D1F0587B79254FBE093C191C73892768CF2AC59BEF97745EE66CEE3473AF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:08:05.0114 0x2634  AdobeARMservice - ok
13:08:05.0184 0x2634  [ 16D11D2CA3F2078F553E0C3A70A4F050, 51EEA7EFBE122D3FEB2F8487F5A45166A0C4963314B28840C3C404479B4E1849 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:08:05.0191 0x2634  AdobeFlashPlayerUpdateSvc - ok
13:08:05.0299 0x2634  [ 8787431643698296C440B61DD42E12BD, 8A4D81E5A8564C30444B1762E1047F550E456AF9E58865D6573C0044B8272344 ] AdobeUpdateService C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
13:08:05.0316 0x2634  AdobeUpdateService - ok
13:08:05.0357 0x2634  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
13:08:05.0364 0x2634  adp94xx - ok
13:08:05.0385 0x2634  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
13:08:05.0390 0x2634  adpahci - ok
13:08:05.0403 0x2634  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
13:08:05.0406 0x2634  adpu320 - ok
13:08:05.0443 0x2634  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
13:08:05.0444 0x2634  AeLookupSvc - ok
13:08:05.0501 0x2634  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
13:08:05.0508 0x2634  AFD - ok
13:08:05.0519 0x2634  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
13:08:05.0521 0x2634  agp440 - ok
13:08:05.0625 0x2634  [ 021D06851E7AFF5C314039DF813608F3, 081B14840F4AD428B4407AA2E639369A45D174D9507BD107F33FE3A94FB8F8EC ] AGSService      C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
13:08:05.0653 0x2634  AGSService - ok
13:08:05.0678 0x2634  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
13:08:05.0680 0x2634  ALG - ok
13:08:05.0713 0x2634  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
13:08:05.0714 0x2634  aliide - ok
13:08:05.0728 0x2634  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
13:08:05.0728 0x2634  amdide - ok
13:08:05.0740 0x2634  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
13:08:05.0742 0x2634  AmdK8 - ok
13:08:05.0750 0x2634  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
13:08:05.0752 0x2634  AmdPPM - ok
13:08:05.0797 0x2634  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
13:08:05.0799 0x2634  amdsata - ok
13:08:05.0818 0x2634  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
13:08:05.0821 0x2634  amdsbs - ok
13:08:05.0829 0x2634  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
13:08:05.0831 0x2634  amdxata - ok
13:08:05.0864 0x2634  [ 8B73FEE96B60EE597CBCAA735A842A36, AB3FC01FEC62AC115EC766770D8694DEDA2FF2286E0199DC238ABF2493EC1A22 ] AppID           C:\Windows\system32\drivers\appid.sys
13:08:05.0865 0x2634  AppID - ok
13:08:05.0896 0x2634  [ F5800413C0DF45C2CA15FD3ACBB1365F, 741E09EED0FF0152B59704729BD700E7D7A671C88F0708884AAB7A56ECCBD8AB ] AppIDSvc        C:\Windows\System32\appidsvc.dll
13:08:05.0898 0x2634  AppIDSvc - ok
13:08:05.0941 0x2634  [ B46099A534B7989D80330EA82D9092D6, 0CAC09732FAFAE805E55428B6BE001DCC39EBC599539FADE7AA68571A8A554E5 ] Appinfo         C:\Windows\System32\appinfo.dll
13:08:05.0942 0x2634  Appinfo - ok
13:08:06.0030 0x2634  [ 885888F8AAD89108A5EE2D0174690220, 9B148C117EBE400F40BF7F32B66B20AA4628BA9E233D707DFA2EB4A8A65E7C52 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:08:06.0032 0x2634  Apple Mobile Device Service - ok
13:08:06.0052 0x2634  [ 1C726705935E89FD59E652E4F09148D0, 5D72DB5C493ED48ACBD1A520283C7B16E656FB1E8B00885696C79A09FC37487D ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
13:08:06.0053 0x2634  AppleCharger - ok
13:08:06.0071 0x2634  [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
13:08:06.0072 0x2634  AppleChargerSrv - ok
13:08:06.0103 0x2634  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
13:08:06.0107 0x2634  AppMgmt - ok
13:08:06.0116 0x2634  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
13:08:06.0119 0x2634  arc - ok
13:08:06.0127 0x2634  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
13:08:06.0130 0x2634  arcsas - ok
13:08:06.0207 0x2634  [ 49C65599344CCADFD085709745761ED4, F8797F59B752A7F4BD66596DCE178BD993C73B6091A5CE7C9EFA1B557AA950E9 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:08:06.0209 0x2634  aspnet_state - ok
13:08:06.0234 0x2634  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
13:08:06.0236 0x2634  AsyncMac - ok
13:08:06.0271 0x2634  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
13:08:06.0299 0x2634  atapi - ok
13:08:06.0352 0x2634  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:08:06.0367 0x2634  AudioEndpointBuilder - ok
13:08:06.0386 0x2634  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
13:08:06.0396 0x2634  AudioSrv - ok
13:08:06.0412 0x2634  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
13:08:06.0414 0x2634  AxInstSV - ok
13:08:06.0433 0x2634  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
13:08:06.0440 0x2634  b06bdrv - ok
13:08:06.0466 0x2634  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
13:08:06.0470 0x2634  b57nd60a - ok
13:08:06.0482 0x2634  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
13:08:06.0484 0x2634  BDESVC - ok
13:08:06.0492 0x2634  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
13:08:06.0492 0x2634  Beep - ok
13:08:06.0539 0x2634  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
13:08:06.0549 0x2634  BFE - ok
13:08:06.0577 0x2634  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
13:08:06.0591 0x2634  BITS - ok
13:08:06.0600 0x2634  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
13:08:06.0602 0x2634  blbdrive - ok
13:08:06.0665 0x2634  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:08:06.0671 0x2634  Bonjour Service - ok
13:08:06.0686 0x2634  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
13:08:06.0688 0x2634  bowser - ok
13:08:06.0696 0x2634  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
13:08:06.0697 0x2634  BrFiltLo - ok
13:08:06.0709 0x2634  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
13:08:06.0709 0x2634  BrFiltUp - ok
13:08:06.0733 0x2634  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
13:08:06.0735 0x2634  Browser - ok
13:08:06.0745 0x2634  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
13:08:06.0750 0x2634  Brserid - ok
13:08:06.0755 0x2634  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
13:08:06.0756 0x2634  BrSerWdm - ok
13:08:06.0759 0x2634  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
13:08:06.0759 0x2634  BrUsbMdm - ok
13:08:06.0763 0x2634  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
13:08:06.0764 0x2634  BrUsbSer - ok
13:08:06.0775 0x2634  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
13:08:06.0777 0x2634  BTHMODEM - ok
13:08:06.0796 0x2634  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
13:08:06.0798 0x2634  bthserv - ok
13:08:06.0841 0x2634  [ 56685951208AC81CF923B9B08BEDF3B7, F5FF438B9A54AD8D54E82DE60E1771C9685A95D5E590D69EB1E4E78D3B9B7769 ] ccSet_NIS       C:\Windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys
13:08:06.0843 0x2634  ccSet_NIS - ok
13:08:06.0850 0x2634  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
13:08:06.0852 0x2634  cdfs - ok
13:08:06.0880 0x2634  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
13:08:06.0882 0x2634  cdrom - ok
13:08:06.0895 0x2634  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
13:08:06.0898 0x2634  CertPropSvc - ok
13:08:06.0901 0x2634  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
13:08:06.0902 0x2634  circlass - ok
13:08:06.0956 0x2634  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
13:08:06.0962 0x2634  CLFS - ok
13:08:07.0021 0x2634  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:08:07.0023 0x2634  clr_optimization_v2.0.50727_32 - ok
13:08:07.0078 0x2634  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:08:07.0081 0x2634  clr_optimization_v2.0.50727_64 - ok
13:08:07.0161 0x2634  [ BD2AE15EFB47E5215B4D0C59EA00C91A, E2A3FB8B606E55E843958B93EE6A5FDCE6FB4AAA6BEFD2F030BAA91ED4B5B013 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:08:07.0164 0x2634  clr_optimization_v4.0.30319_32 - ok
13:08:07.0201 0x2634  [ 30EAABE7A3B1081B6F5DDE4A1C0305D2, 14C1D9931D32A069B6E90B47476FEC3978818D040A23BE939F04DC0A5D978509 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:08:07.0205 0x2634  clr_optimization_v4.0.30319_64 - ok
13:08:07.0224 0x2634  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
13:08:07.0225 0x2634  CmBatt - ok
13:08:07.0245 0x2634  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
13:08:07.0247 0x2634  cmdide - ok
13:08:07.0298 0x2634  [ 3323F76352B0AF14B2CDC4DFBF3E980A, F8E3C3508C37E647497B6889F26819B1DB30275F48A994D1BBFBAA9454E5FD70 ] CNG             C:\Windows\system32\Drivers\cng.sys
13:08:07.0310 0x2634  CNG - ok
13:08:07.0320 0x2634  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
13:08:07.0321 0x2634  Compbatt - ok
13:08:07.0335 0x2634  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
13:08:07.0336 0x2634  CompositeBus - ok
13:08:07.0339 0x2634  COMSysApp - ok
13:08:07.0404 0x2634  [ E41C4FB1D9971409E17D61F45A228121, 5EC6139D26B7198EED2D7FF5F2E7C50E4605313C4047C4CC81F59FF147235C02 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
13:08:07.0412 0x2634  cphs - ok
13:08:07.0416 0x2634  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
13:08:07.0417 0x2634  crcdisk - ok
13:08:07.0461 0x2634  [ BB724567892383010B8436DCC0A84628, 2768F5FD7A096CB1CEA33F8818EF16F9F5E3E07BB8442949A49A9CF24B62C6E6 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
13:08:07.0466 0x2634  CryptSvc - ok
13:08:07.0500 0x2634  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
13:08:07.0512 0x2634  CSC - ok
13:08:07.0539 0x2634  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
13:08:07.0549 0x2634  CscService - ok
13:08:07.0620 0x2634  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
13:08:07.0623 0x2634  dbupdate - ok
13:08:07.0630 0x2634  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
13:08:07.0634 0x2634  dbupdatem - ok
13:08:07.0660 0x2634  dbx - ok
13:08:07.0719 0x2634  [ 566BD6ED419F7FBC88EDD579044AD5C9, EC66C10DAC23ED149545305EA25F60888C5D3675BD850C7C12275B8666D18FEF ] DbxSvc          C:\Windows\system32\DbxSvc.exe
13:08:07.0720 0x2634  DbxSvc - ok
13:08:07.0802 0x2634  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch      C:\Windows\system32\rpcss.dll
13:08:07.0809 0x2634  DcomLaunch - ok
13:08:07.0833 0x2634  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
13:08:07.0837 0x2634  defragsvc - ok
13:08:07.0878 0x2634  [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
13:08:07.0881 0x2634  DfsC - ok
13:08:07.0910 0x2634  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
13:08:07.0913 0x2634  dg_ssudbus - ok
13:08:07.0944 0x2634  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
13:08:07.0949 0x2634  Dhcp - ok
13:08:08.0062 0x2634  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
13:08:08.0092 0x2634  DiagTrack - ok
13:08:08.0169 0x2634  [ 64F6A6B21B25528F7368928C0171C8E3, B9D56EA97E57501D567D71965C1CD57C85DA1C7EAF958B38F3D199457DD4D2E3 ] Disc Soft Lite Bus Service C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
13:08:08.0193 0x2634  Disc Soft Lite Bus Service - ok
13:08:08.0215 0x2634  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
13:08:08.0217 0x2634  discache - ok
13:08:08.0281 0x2634  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys
13:08:08.0283 0x2634  Disk - ok
13:08:08.0300 0x2634  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
13:08:08.0302 0x2634  dmvsc - ok
13:08:08.0339 0x2634  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
13:08:08.0342 0x2634  Dnscache - ok
13:08:08.0356 0x2634  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
13:08:08.0360 0x2634  dot3svc - ok
13:08:08.0376 0x2634  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
13:08:08.0379 0x2634  DPS - ok
13:08:08.0420 0x2634  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
13:08:08.0421 0x2634  drmkaud - ok
13:08:08.0435 0x2634  [ 679FF716052109392D870F6A6C4A3535, BEF1784448CCA4AF1D67ED68BD0C7CFE01A7719E98CACF92C2DCBFAA916DC57E ] dtlitescsibus   C:\Windows\system32\DRIVERS\dtlitescsibus.sys
13:08:08.0437 0x2634  dtlitescsibus - ok
13:08:08.0462 0x2634  [ E23FDD696839A4790682CA66C48D3F2F, F5F0721BDA751968224E52E75D0C309A3E084C430CD98E85A55AF622D16B9A44 ] dtliteusbbus    C:\Windows\system32\DRIVERS\dtliteusbbus.sys
13:08:08.0465 0x2634  dtliteusbbus - ok
13:08:08.0536 0x2634  [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
13:08:08.0558 0x2634  DXGKrnl - ok
13:08:08.0571 0x2634  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
13:08:08.0574 0x2634  EapHost - ok
13:08:08.0643 0x2634  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
13:08:08.0712 0x2634  ebdrv - ok
13:08:08.0798 0x2634  [ 1B7AA375F711F66D5FF2B855F9EC987F, 151E3897A31F0E828D08EBBB9C10A60047B48534BB38349EF1C8D9245524CA58 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
13:08:08.0807 0x2634  eeCtrl - ok
13:08:08.0841 0x2634  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] EFS             C:\Windows\System32\lsass.exe
13:08:08.0842 0x2634  EFS - ok
13:08:08.0913 0x2634  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
13:08:08.0924 0x2634  ehRecvr - ok
13:08:08.0935 0x2634  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
13:08:08.0937 0x2634  ehSched - ok
13:08:08.0973 0x2634  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
13:08:08.0981 0x2634  elxstor - ok
13:08:09.0003 0x2634  [ 7230C8B80DDE1F0524C353240B78CC0E, 15F73EBFB9152010E7736AFE518A47C209E17DDB347A40C4CDA0D9BBD26D1176 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
13:08:09.0005 0x2634  EraserUtilRebootDrv - ok
13:08:09.0013 0x2634  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
13:08:09.0015 0x2634  ErrDev - ok
13:08:09.0053 0x2634  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
13:08:09.0059 0x2634  EventSystem - ok
13:08:09.0170 0x2634  [ 76D73A7D1DC9D01D0496912EE68F7C40, 2F9B9B99BA173F8D9E47CD52B50ACB67CEE6497ACC4FE48D75270D479FCA272D ] EWA net DB Core C:\Program Files (x86)\EWA net\database\TransBase EWA\tbmux32.exe
13:08:09.0180 0x2634  EWA net DB Core - ok
13:08:09.0243 0x2634  [ 7395E7EFBE8053E5989BC99038A6D3B0, 74A9E985A170C509E592A0195D5F18AA19EEA8D360FCF85A19C0EE03234E7136 ] EWA net DB EPC  C:\Program Files (x86)\EWA net\database\TransBase EPC\tbmux32.exe
13:08:09.0253 0x2634  EWA net DB EPC - ok
13:08:09.0323 0x2634  [ 76D73A7D1DC9D01D0496912EE68F7C40, 2F9B9B99BA173F8D9E47CD52B50ACB67CEE6497ACC4FE48D75270D479FCA272D ] EWA net DB WIS  C:\Program Files (x86)\EWA net\database\TransBase WIS\tbmux32.exe
13:08:09.0330 0x2634  EWA net DB WIS - ok
13:08:09.0419 0x2634  [ 4787EA164E01CAFBF5DA384B6EDC9FC5, 27B436E1AEC531285E883D58AE4AD2AE2154B5B31159692CCC27B2360FD5CCC3 ] EWA net Server  C:\Program Files (x86)\EWA net\server\bin\tomcat.exe
13:08:09.0421 0x2634  EWA net Server - ok
13:08:09.0451 0x2634  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
13:08:09.0456 0x2634  exfat - ok
13:08:09.0477 0x2634  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
13:08:09.0482 0x2634  fastfat - ok
13:08:09.0546 0x2634  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
13:08:09.0617 0x2634  Fax - ok
13:08:09.0685 0x2634  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
13:08:09.0686 0x2634  fdc - ok
13:08:09.0713 0x2634  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
13:08:09.0715 0x2634  fdPHost - ok
13:08:09.0724 0x2634  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
13:08:09.0727 0x2634  FDResPub - ok
13:08:09.0735 0x2634  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
13:08:09.0737 0x2634  FileInfo - ok
13:08:09.0747 0x2634  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
13:08:09.0748 0x2634  Filetrace - ok
13:08:09.0825 0x2634  [ 00EDB531DFB127197D625204B138269B, 0CE6536344CE30F06C6CD04BEB202C935B10439200B9CE792B4440D2EE3CB9D9 ] FlexNet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
13:08:09.0849 0x2634  FlexNet Licensing Service - ok
13:08:09.0976 0x2634  [ 668D43EFEB7F129584100CF6320E8A6F, 093254127A63420F93001BA63CF323AA4C17A38914D5B991E31F3B8C1971E9D7 ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
13:08:10.0009 0x2634  FlexNet Licensing Service 64 - ok
13:08:10.0019 0x2634  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
13:08:10.0020 0x2634  flpydisk - ok
13:08:10.0034 0x2634  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
13:08:10.0041 0x2634  FltMgr - ok
13:08:10.0106 0x2634  [ 700A5373FA66F1DAAECBD2CFB88C73ED, D6C1C4C846BC24EB6539ECC701A456FA53BB6679C79391F5B70580D47B6CE395 ] FontCache       C:\Windows\system32\FntCache.dll
13:08:10.0125 0x2634  FontCache - ok
13:08:10.0166 0x2634  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:08:10.0167 0x2634  FontCache3.0.0.0 - ok
13:08:10.0174 0x2634  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
13:08:10.0175 0x2634  FsDepends - ok
13:08:10.0184 0x2634  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
13:08:10.0185 0x2634  Fs_Rec - ok
13:08:10.0203 0x2634  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
13:08:10.0206 0x2634  fvevol - ok
13:08:10.0213 0x2634  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
13:08:10.0215 0x2634  gagp30kx - ok
13:08:10.0235 0x2634  gdrv - ok
13:08:10.0322 0x2634  [ 5E42BDFF22707E577AD82BE4C43C3BCE, 4C0BBF6AAA7EB30A789D91A4F29726C2A6D941D457B59CF376EF96571F3E1BB4 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
13:08:10.0337 0x2634  GfExperienceService - ok
13:08:10.0368 0x2634  [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc           C:\Windows\System32\gpsvc.dll
13:08:10.0381 0x2634  gpsvc - ok
13:08:10.0443 0x2634  [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:08:10.0446 0x2634  gupdate - ok
13:08:10.0460 0x2634  [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:08:10.0462 0x2634  gupdatem - ok
13:08:10.0475 0x2634  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
13:08:10.0476 0x2634  hcw85cir - ok
13:08:10.0508 0x2634  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:08:10.0515 0x2634  HdAudAddService - ok
13:08:10.0530 0x2634  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
13:08:10.0533 0x2634  HDAudBus - ok
13:08:10.0546 0x2634  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
13:08:10.0548 0x2634  HidBatt - ok
13:08:10.0561 0x2634  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
13:08:10.0565 0x2634  HidBth - ok
13:08:10.0574 0x2634  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
13:08:10.0575 0x2634  HidIr - ok
13:08:10.0585 0x2634  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
13:08:10.0586 0x2634  hidserv - ok
13:08:10.0633 0x2634  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
13:08:10.0634 0x2634  HidUsb - ok
13:08:10.0649 0x2634  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
13:08:10.0653 0x2634  hkmsvc - ok
13:08:10.0663 0x2634  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:08:10.0669 0x2634  HomeGroupListener - ok
13:08:10.0686 0x2634  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:08:10.0691 0x2634  HomeGroupProvider - ok
13:08:10.0713 0x2634  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
13:08:10.0716 0x2634  HpSAMD - ok
13:08:10.0776 0x2634  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
13:08:10.0791 0x2634  HTTP - ok
13:08:10.0803 0x2634  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
13:08:10.0804 0x2634  hwpolicy - ok
13:08:10.0818 0x2634  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
13:08:10.0821 0x2634  i8042prt - ok
13:08:10.0863 0x2634  [ FA4C48E36F0B24E7E33D3E7E1844B9C9, F61F448B8E305DEFDDA5D4A6FC4E57C798C11ED4DA0ACB885847DC8A9A7B4E98 ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
13:08:10.0871 0x2634  iaStorA - ok
13:08:10.0910 0x2634  [ D5854F77CEEAFC5A8405F8ECCBEC09DF, 06D94EAF55787F807FB40E95011E90B0A719AC1A1529C2C110C1EABC5BE02C5B ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
13:08:10.0910 0x2634  IAStorDataMgrSvc - ok
13:08:10.0924 0x2634  [ 05E24E2CA39C0D2FAADE8FC603345A7D, 01C519CABD3B1F003AAD1B6F1CE79C1A49408DFC2CE5A8008A7BD0A1266D783C ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
13:08:10.0925 0x2634  iaStorF - ok
13:08:10.0968 0x2634  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
13:08:10.0974 0x2634  iaStorV - ok
13:08:11.0069 0x2634  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
13:08:11.0071 0x2634  IDriverT - ok
13:08:11.0130 0x2634  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:08:11.0142 0x2634  idsvc - ok
13:08:11.0246 0x2634  [ 7209139C75C6765DFA42912B98672F0B, 7FAD24F4BD91F1192BED1C66DEA079830D7DA6D651298037E5E383EC62B53632 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
13:08:11.0368 0x2634  igfx - ok
13:08:11.0383 0x2634  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
13:08:11.0384 0x2634  iirsp - ok
13:08:11.0423 0x2634  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
13:08:11.0437 0x2634  IKEEXT - ok
13:08:11.0527 0x2634  [ 6CB00AE4D2CEF52995D420656E02C30A, EDE13D7A650022CB75318159C57161F5FF9A128DB80D055555E6CB4F5F469EA4 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:08:11.0594 0x2634  IntcAzAudAddService - ok
13:08:11.0623 0x2634  [ 0E0B99617ED3FDB6C5F0E2D62709B5DF, A656CA3A60E62BE16A015150B23136CE150F9876B4035E9E8D8E73D1707B37A4 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
13:08:11.0630 0x2634  IntcDAud - ok
13:08:11.0670 0x2634  [ DDA8E5AD97231AB50B81FED04C28F64C, 5C9E8F7CC45A9AE7FF12A02641562E271D84894DFA7C50218AC2AAA298251B60 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
13:08:11.0680 0x2634  Intel(R) Capability Licensing Service Interface - ok
13:08:11.0712 0x2634  [ 86FE509640D77FB0998FC8B1FF5523C6, 13E895DEB9B84379251699D7E52C5E3FD888994425DE01B6C4634F9E959D5584 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
13:08:11.0724 0x2634  Intel(R) Capability Licensing Service TCP IP Interface - ok
13:08:11.0739 0x2634  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
13:08:11.0740 0x2634  intelide - ok
13:08:11.0760 0x2634  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
13:08:11.0761 0x2634  intelppm - ok
13:08:11.0790 0x2634  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
13:08:11.0793 0x2634  IPBusEnum - ok
13:08:11.0808 0x2634  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:08:11.0810 0x2634  IpFilterDriver - ok
13:08:11.0839 0x2634  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
13:08:11.0847 0x2634  iphlpsvc - ok
13:08:11.0857 0x2634  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
13:08:11.0859 0x2634  IPMIDRV - ok
13:08:11.0876 0x2634  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
13:08:11.0878 0x2634  IPNAT - ok
13:08:11.0944 0x2634  [ 16A6D49E7698FC6F1730D3FF9F5561A8, 860D2601BA3A71C81A6B21F4D92A5E9C47772C9DE0F047D49000FA4A484D7932 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
13:08:11.0953 0x2634  iPod Service - ok
13:08:11.0964 0x2634  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
13:08:11.0966 0x2634  IRENUM - ok
13:08:11.0968 0x2634  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
13:08:11.0969 0x2634  isapnp - ok
13:08:12.0010 0x2634  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
13:08:12.0020 0x2634  iScsiPrt - ok
13:08:12.0042 0x2634  [ 897B93573F07C9CB1140516DAC44BC7E, C80665FEA4913DDC72F2140EC92CD4FA5D693BD8D0E4029A99DB96D63172E3D1 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
13:08:12.0043 0x2634  iusb3hcs - ok
13:08:12.0076 0x2634  [ 2D15CEDF619796002E8640F73A4BF920, FCC0137CB5AE32266A550EE46106B80F431F0B55342599951B9D032F8EA10649 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
13:08:12.0083 0x2634  iusb3hub - ok
13:08:12.0120 0x2634  [ F1E93FE111924D0BC853155AADF8048B, 2DFD5B3D042286A0FD5E482C81FAE339E4F05C0A6DFF43061D8502C4551125F7 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
13:08:12.0135 0x2634  iusb3xhc - ok
13:08:12.0168 0x2634  [ BF5D3A2624177C413680DEF19A465AF8, B9909D3E6CB6F9971293116387865AD15CB9D47513C7FAA9C36BE4D2847A41EB ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
13:08:12.0171 0x2634  jhi_service - ok
13:08:12.0174 0x2634  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
13:08:12.0176 0x2634  kbdclass - ok
13:08:12.0188 0x2634  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
13:08:12.0189 0x2634  kbdhid - ok
13:08:12.0200 0x2634  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] KeyIso          C:\Windows\system32\lsass.exe
13:08:12.0201 0x2634  KeyIso - ok
13:08:12.0236 0x2634  [ CF11CC2B73D5155533C67354F9188E09, D59C30B9651F8E0952DFF34A010BC60A1D27AE10F5705C54424BF6BB7ADF9F62 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
13:08:12.0239 0x2634  KSecDD - ok
13:08:12.0285 0x2634  [ 2E56D51B184EFB8E353B7AF446299DC8, CE7AAFF89F3A0BFE191DE90430A04C7FB899F5CF3B704AA5A96F47D5F37192B2 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
13:08:12.0294 0x2634  KSecPkg - ok
13:08:12.0308 0x2634  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
13:08:12.0309 0x2634  ksthunk - ok
13:08:12.0336 0x2634  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
13:08:12.0343 0x2634  KtmRm - ok
13:08:12.0370 0x2634  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
13:08:12.0375 0x2634  LanmanServer - ok
13:08:12.0393 0x2634  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:08:12.0397 0x2634  LanmanWorkstation - ok
13:08:12.0416 0x2634  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
13:08:12.0418 0x2634  lltdio - ok
13:08:12.0432 0x2634  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
13:08:12.0437 0x2634  lltdsvc - ok
13:08:12.0457 0x2634  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
13:08:12.0459 0x2634  lmhosts - ok
13:08:12.0480 0x2634  [ 02A9CBACE666877BBBA4FD66B22F6D4A, 0E783BA7A8F00CEC8F03CFEE03999CA5DB9E4DB7CCE62D9171CFCF36AFBE4BB1 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
13:08:12.0486 0x2634  LMS - ok
13:08:12.0508 0x2634  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
13:08:12.0510 0x2634  LSI_FC - ok
13:08:12.0522 0x2634  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
13:08:12.0525 0x2634  LSI_SAS - ok
13:08:12.0536 0x2634  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
13:08:12.0538 0x2634  LSI_SAS2 - ok
13:08:12.0552 0x2634  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
13:08:12.0555 0x2634  LSI_SCSI - ok
13:08:12.0566 0x2634  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
13:08:12.0569 0x2634  luafv - ok
13:08:12.0601 0x2634  [ 701223C663019B62029FAB1A2385EE81, 5CD7559A61954BDABE988FD316E06C4AEB24716C685E0C910B8AB03A1339EFEF ] LUMDriver       C:\Windows\system32\drivers\LUMDriver.sys
13:08:12.0602 0x2634  LUMDriver - ok
13:08:12.0636 0x2634  [ A401CFF74982D8DF851F20307C806073, 1D7BA90C9E77FAAE59F60AB5310EC41D9C5B98F1F9A89A3CDB9169E6DEF565DA ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
13:08:12.0642 0x2634  LVRS64 - ok
13:08:12.0749 0x2634  [ 13384CB5F5813E65F31078D6ABFAAF38, A6E7374C15CAECC273197BF62F8F926BA30E9509270A8470756F4710E1DEA126 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
13:08:12.0850 0x2634  LVUVC64 - ok
13:08:12.0932 0x2634  [ 6EF327DBB5DC9D6310ADE48CAB14959D, AFDC81E83E9EC9424C14431E531E976C419715754952D92BE2691186C55F0E9B ] McComponentHostService C:\Program Files\McAfee Security Scan\3.11.376\McCHSvc.exe
13:08:12.0939 0x2634  McComponentHostService - ok
13:08:12.0971 0x2634  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
13:08:12.0974 0x2634  Mcx2Svc - ok
13:08:12.0987 0x2634  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
13:08:12.0988 0x2634  megasas - ok
13:08:13.0002 0x2634  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
13:08:13.0008 0x2634  MegaSR - ok
13:08:13.0029 0x2634  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
13:08:13.0030 0x2634  MEIx64 - ok
13:08:13.0052 0x2634  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
13:08:13.0055 0x2634  MMCSS - ok
13:08:13.0065 0x2634  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
13:08:13.0066 0x2634  Modem - ok
13:08:13.0078 0x2634  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
13:08:13.0078 0x2634  monitor - ok
13:08:13.0124 0x2634  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
13:08:13.0126 0x2634  mouclass - ok
13:08:13.0134 0x2634  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
13:08:13.0136 0x2634  mouhid - ok
13:08:13.0184 0x2634  [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
13:08:13.0187 0x2634  mountmgr - ok
13:08:13.0255 0x2634  [ 9FC679D10A7377BB04ECC3D0E2E26B53, 24ACD4EC1618A052C29E4463138B28F62C8B78D442DB82F4925E64FC5849A096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:08:13.0258 0x2634  MozillaMaintenance - ok
13:08:13.0278 0x2634  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
13:08:13.0282 0x2634  mpio - ok
13:08:13.0287 0x2634  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
13:08:13.0289 0x2634  mpsdrv - ok
13:08:13.0316 0x2634  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
13:08:13.0333 0x2634  MpsSvc - ok
13:08:13.0373 0x2634  [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
13:08:13.0376 0x2634  MRxDAV - ok
13:08:13.0429 0x2634  [ FCA01B0C70DAE9BE557577E719469D17, F9868B7B50EF6323BF6690F087A83928A1E82B96A19B27F344E10BF11E520C32 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
13:08:13.0437 0x2634  mrxsmb - ok
13:08:13.0457 0x2634  [ 386BE96797C5B480AD31E8B50CEE337C, 88E826F42BEB38CAA7C84AE6ED4D8EBC4D382A8A37CF9F7B8517B297F168F1B3 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:08:13.0463 0x2634  mrxsmb10 - ok
13:08:13.0509 0x2634  [ 841474CF2EB14F826038FBCC7D85B857, 4B1BC8AFDA54D1F16AC2AAB7EDDAE07FBF1E3B65D1658F8901A3E3175AF72800 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:08:13.0515 0x2634  mrxsmb20 - ok
13:08:13.0538 0x2634  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
13:08:13.0540 0x2634  msahci - ok
13:08:13.0545 0x2634  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
13:08:13.0549 0x2634  msdsm - ok
13:08:13.0568 0x2634  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
13:08:13.0571 0x2634  MSDTC - ok
13:08:13.0593 0x2634  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
13:08:13.0594 0x2634  Msfs - ok
13:08:13.0598 0x2634  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
13:08:13.0599 0x2634  mshidkmdf - ok
13:08:13.0610 0x2634  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
13:08:13.0611 0x2634  msisadrv - ok
13:08:13.0640 0x2634  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
13:08:13.0643 0x2634  MSiSCSI - ok
13:08:13.0646 0x2634  msiserver - ok
13:08:13.0667 0x2634  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
13:08:13.0668 0x2634  MSKSSRV - ok
13:08:13.0675 0x2634  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
13:08:13.0676 0x2634  MSPCLOCK - ok
13:08:13.0689 0x2634  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
13:08:13.0690 0x2634  MSPQM - ok
13:08:13.0709 0x2634  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
13:08:13.0715 0x2634  MsRPC - ok
13:08:13.0725 0x2634  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
13:08:13.0726 0x2634  mssmbios - ok
13:08:13.0736 0x2634  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
13:08:13.0737 0x2634  MSTEE - ok
13:08:13.0750 0x2634  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
13:08:13.0752 0x2634  MTConfig - ok
13:08:13.0763 0x2634  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
13:08:13.0766 0x2634  Mup - ok
13:08:13.0781 0x2634  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
13:08:13.0791 0x2634  napagent - ok
13:08:13.0817 0x2634  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
13:08:13.0822 0x2634  NativeWifiP - ok
13:08:13.0898 0x2634  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
13:08:13.0919 0x2634  NDIS - ok
13:08:13.0929 0x2634  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
13:08:13.0930 0x2634  NdisCap - ok
13:08:13.0949 0x2634  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
13:08:13.0950 0x2634  NdisTapi - ok
13:08:13.0966 0x2634  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
13:08:13.0968 0x2634  Ndisuio - ok
13:08:13.0986 0x2634  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
13:08:13.0988 0x2634  NdisWan - ok
13:08:13.0995 0x2634  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
13:08:13.0996 0x2634  NDProxy - ok
13:08:14.0044 0x2634  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
13:08:14.0045 0x2634  Netaapl - ok
13:08:14.0064 0x2634  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
13:08:14.0065 0x2634  NetBIOS - ok
13:08:14.0094 0x2634  [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
13:08:14.0098 0x2634  NetBT - ok
13:08:14.0117 0x2634  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] Netlogon        C:\Windows\system32\lsass.exe
13:08:14.0118 0x2634  Netlogon - ok
13:08:14.0132 0x2634  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
13:08:14.0139 0x2634  Netman - ok
13:08:14.0185 0x2634  [ 2635C2A431F5F04DFFE23C2678BBA410, D6F6973B57D2ED4DC4BF097CBBECFDA3045CED2C7E970CF7E127961F196893BD ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:08:14.0187 0x2634  NetMsmqActivator - ok
13:08:14.0204 0x2634  [ 2635C2A431F5F04DFFE23C2678BBA410, D6F6973B57D2ED4DC4BF097CBBECFDA3045CED2C7E970CF7E127961F196893BD ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:08:14.0206 0x2634  NetPipeActivator - ok
13:08:14.0223 0x2634  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
13:08:14.0231 0x2634  netprofm - ok
13:08:14.0235 0x2634  [ 2635C2A431F5F04DFFE23C2678BBA410, D6F6973B57D2ED4DC4BF097CBBECFDA3045CED2C7E970CF7E127961F196893BD ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:08:14.0237 0x2634  NetTcpActivator - ok
13:08:14.0241 0x2634  [ 2635C2A431F5F04DFFE23C2678BBA410, D6F6973B57D2ED4DC4BF097CBBECFDA3045CED2C7E970CF7E127961F196893BD ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:08:14.0243 0x2634  NetTcpPortSharing - ok
13:08:14.0266 0x2634  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
13:08:14.0267 0x2634  nfrd960 - ok
13:08:14.0292 0x2634  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
13:08:14.0298 0x2634  NlaSvc - ok
13:08:14.0308 0x2634  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
13:08:14.0309 0x2634  Npfs - ok
13:08:14.0313 0x2634  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
13:08:14.0315 0x2634  nsi - ok
13:08:14.0322 0x2634  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
13:08:14.0324 0x2634  nsiproxy - ok
13:08:14.0418 0x2634  [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
13:08:14.0447 0x2634  Ntfs - ok
13:08:14.0467 0x2634  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
13:08:14.0468 0x2634  Null - ok
13:08:14.0536 0x2634  [ DA16D10F446F9F9CE3EDB395A34ED5EE, F2F7592BEDB2F5D9981C49695987C7767DA9995A5963B3483EFC7ADE6B39669D ] NuTCRACKERService C:\Windows\system32\nutsrv4.exe
13:08:14.0544 0x2634  NuTCRACKERService - ok
13:08:14.0574 0x2634  [ D812362E8AF615B521AD4DF19A93BD5A, B1F04122DFE9FCC3FC56BE327D86912D624C89F2EFB9684BE66FC22115D0E19F ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
13:08:14.0577 0x2634  NVHDA - ok
13:08:14.0815 0x2634  [ 6DDB922F08C17C342F1FB868D7EB22CD, A62E476FD377EA9974122DC7C426735B6BE5CECCD0D3DA22502DF7CBB208B49E ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:08:15.0018 0x2634  nvlddmkm - ok
13:08:15.0089 0x2634  [ 2CCD9A74A0F9C7605EAFA3F3AC8DC476, DEE95B0C0CA4525850E06AD3C1233A6C6E88D97EE874F83801686B87FD23F0BC ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
13:08:15.0112 0x2634  NvNetworkService - ok
13:08:15.0167 0x2634  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
13:08:15.0169 0x2634  nvraid - ok
13:08:15.0186 0x2634  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
13:08:15.0189 0x2634  nvstor - ok
13:08:15.0211 0x2634  [ 2F61DB46C84CCBB5D9F75065A85D2173, 79049D42F0D82BD3C5A9C8231CF2F412B50C9E6483DB14F41CD48301D85C166C ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
13:08:15.0212 0x2634  NvStreamKms - ok
13:08:15.0372 0x2634  [ 6F5AC1C495DA6D19AF99A59DC44BC13F, 61E8C0C0B9EEEF6ADE86AD4BC8D43256A6B20AEEB43BBC3C44B3B6140544259F ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
13:08:15.0470 0x2634  NvStreamNetworkSvc - ok
13:08:15.0612 0x2634  [ 73FA6B2DF3348AF05E1F98310854BD4F, F0B7CF54495C81EE4C8B44580E399F3B22E190CB553AC7BA8E2DC13A28477566 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
13:08:15.0688 0x2634  NvStreamSvc - ok
13:08:15.0752 0x2634  [ 5A3DE85307FB54C09C0D1D52B97916FE, EAE8FF99337557F60078F94F952BAC48880CA279A763FD14E098E34B4EE8534F ] nvsvc           C:\Windows\system32\nvvsvc.exe
13:08:15.0764 0x2634  nvsvc - ok
13:08:15.0770 0x2634  [ 35DFC12FD7E44B7CB8CCD7E5A2B3975A, 36E0E39646636F6E027691E5C3903C51479B3F707BDEA40F460FD27E357DA14E ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
13:08:15.0771 0x2634  nvvad_WaveExtensible - ok
13:08:15.0814 0x2634  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
13:08:15.0816 0x2634  nv_agp - ok
13:08:15.0822 0x2634  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
13:08:15.0824 0x2634  ohci1394 - ok
13:08:15.0881 0x2634  [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:08:15.0887 0x2634  ose64 - ok
13:08:16.0069 0x2634  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:08:16.0206 0x2634  osppsvc - ok
13:08:16.0240 0x2634  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
13:08:16.0245 0x2634  p2pimsvc - ok
13:08:16.0257 0x2634  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
13:08:16.0264 0x2634  p2psvc - ok
13:08:16.0272 0x2634  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
13:08:16.0274 0x2634  Parport - ok
13:08:16.0297 0x2634  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
13:08:16.0299 0x2634  partmgr - ok
13:08:16.0347 0x2634  [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc          C:\Windows\System32\pcasvc.dll
13:08:16.0354 0x2634  PcaSvc - ok
13:08:16.0367 0x2634  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
13:08:16.0372 0x2634  pci - ok
13:08:16.0387 0x2634  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
13:08:16.0388 0x2634  pciide - ok
13:08:16.0399 0x2634  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
13:08:16.0404 0x2634  pcmcia - ok
13:08:16.0415 0x2634  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
13:08:16.0417 0x2634  pcw - ok
13:08:16.0435 0x2634  [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
13:08:16.0447 0x2634  PEAUTH - ok
13:08:16.0491 0x2634  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
13:08:16.0518 0x2634  PeerDistSvc - ok
13:08:16.0573 0x2634  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
13:08:16.0574 0x2634  PerfHost - ok
13:08:16.0626 0x2634  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
13:08:16.0652 0x2634  pla - ok
13:08:16.0678 0x2634  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
13:08:16.0686 0x2634  PlugPlay - ok
13:08:16.0697 0x2634  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
13:08:16.0699 0x2634  PNRPAutoReg - ok
13:08:16.0715 0x2634  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
13:08:16.0720 0x2634  PNRPsvc - ok
13:08:16.0748 0x2634  [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
13:08:16.0756 0x2634  PolicyAgent - ok
13:08:16.0771 0x2634  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
13:08:16.0774 0x2634  Power - ok
13:08:16.0806 0x2634  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
13:08:16.0808 0x2634  PptpMiniport - ok
13:08:16.0819 0x2634  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
13:08:16.0822 0x2634  Processor - ok
13:08:16.0843 0x2634  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
13:08:16.0847 0x2634  ProfSvc - ok
13:08:16.0851 0x2634  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:08:16.0852 0x2634  ProtectedStorage - ok
13:08:16.0861 0x2634  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
13:08:16.0864 0x2634  Psched - ok
13:08:16.0914 0x2634  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
13:08:16.0936 0x2634  ql2300 - ok
13:08:16.0952 0x2634  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
13:08:16.0954 0x2634  ql40xx - ok
13:08:16.0969 0x2634  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
13:08:16.0974 0x2634  QWAVE - ok
13:08:16.0983 0x2634  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
13:08:16.0985 0x2634  QWAVEdrv - ok
13:08:17.0048 0x2634  [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
13:08:17.0055 0x2634  RapiMgr - ok
13:08:17.0071 0x2634  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
13:08:17.0073 0x2634  RasAcd - ok
13:08:17.0090 0x2634  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
13:08:17.0091 0x2634  RasAgileVpn - ok
13:08:17.0098 0x2634  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
13:08:17.0102 0x2634  RasAuto - ok
13:08:17.0114 0x2634  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
13:08:17.0117 0x2634  Rasl2tp - ok
13:08:17.0144 0x2634  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
13:08:17.0151 0x2634  RasMan - ok
13:08:17.0161 0x2634  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
13:08:17.0163 0x2634  RasPppoe - ok
13:08:17.0173 0x2634  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
13:08:17.0176 0x2634  RasSstp - ok
13:08:17.0189 0x2634  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
13:08:17.0195 0x2634  rdbss - ok
13:08:17.0201 0x2634  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
13:08:17.0202 0x2634  rdpbus - ok
13:08:17.0205 0x2634  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
13:08:17.0206 0x2634  RDPCDD - ok
13:08:17.0233 0x2634  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
13:08:17.0236 0x2634  RDPDR - ok
13:08:17.0252 0x2634  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
13:08:17.0253 0x2634  RDPENCDD - ok
13:08:17.0257 0x2634  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
13:08:17.0258 0x2634  RDPREFMP - ok
13:08:17.0302 0x2634  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
13:08:17.0306 0x2634  RDPWD - ok
13:08:17.0320 0x2634  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
13:08:17.0324 0x2634  rdyboost - ok
13:08:17.0344 0x2634  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
13:08:17.0347 0x2634  RemoteAccess - ok
13:08:17.0356 0x2634  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
13:08:17.0360 0x2634  RemoteRegistry - ok
13:08:17.0429 0x2634  [ 5BD6B1EC997FF3DD779D62E05D2079A8, BE4BDE29C134BAEDE4D35C777F2C6195F8C12FEF4583FAD2A442F8D1678B7FF7 ] RMCAST          C:\Windows\system32\DRIVERS\RMCAST.sys
13:08:17.0433 0x2634  RMCAST - ok
13:08:17.0446 0x2634  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
13:08:17.0453 0x2634  RpcEptMapper - ok
13:08:17.0465 0x2634  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
13:08:17.0468 0x2634  RpcLocator - ok
13:08:17.0525 0x2634  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs           C:\Windows\system32\rpcss.dll
13:08:17.0536 0x2634  RpcSs - ok
13:08:17.0599 0x2634  [ E2319BDFF45DC9600E3751BE690F044D, 93F7A1EB1DB5F5CD41846F8D1DD5F08569DDE55AB125A01131B4ED20C322B956 ] RsFx0310        C:\Windows\system32\DRIVERS\RsFx0310.sys
13:08:17.0605 0x2634  RsFx0310 - ok
13:08:17.0617 0x2634  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
13:08:17.0620 0x2634  rspndr - ok
13:08:17.0660 0x2634  [ B358C047E081AC70035017BD1D7ED818, D52455156F2913C5A88B18EC76C4C10B3589FE95F9735DD687A0307FA00FF500 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
13:08:17.0675 0x2634  RTL8167 - ok
13:08:17.0688 0x2634  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
13:08:17.0688 0x2634  s3cap - ok
13:08:17.0701 0x2634  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] SamSs           C:\Windows\system32\lsass.exe
13:08:17.0702 0x2634  SamSs - ok
13:08:17.0712 0x2634  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
13:08:17.0715 0x2634  sbp2port - ok
13:08:17.0726 0x2634  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
13:08:17.0731 0x2634  SCardSvr - ok
13:08:17.0739 0x2634  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
13:08:17.0740 0x2634  scfilter - ok
13:08:17.0807 0x2634  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
13:08:17.0831 0x2634  Schedule - ok
13:08:17.0857 0x2634  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
13:08:17.0858 0x2634  SCPolicySvc - ok
13:08:17.0869 0x2634  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
13:08:17.0874 0x2634  SDRSVC - ok
13:08:17.0890 0x2634  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
13:08:17.0890 0x2634  secdrv - ok
13:08:17.0930 0x2634  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
13:08:17.0932 0x2634  seclogon - ok
13:08:17.0945 0x2634  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
13:08:17.0948 0x2634  SENS - ok
13:08:17.0958 0x2634  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
13:08:17.0961 0x2634  SensrSvc - ok
13:08:17.0983 0x2634  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
13:08:17.0984 0x2634  Serenum - ok
13:08:18.0004 0x2634  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
13:08:18.0007 0x2634  Serial - ok
13:08:18.0029 0x2634  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
13:08:18.0030 0x2634  sermouse - ok
13:08:18.0044 0x2634  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
13:08:18.0048 0x2634  SessionEnv - ok
13:08:18.0057 0x2634  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
13:08:18.0058 0x2634  sffdisk - ok
13:08:18.0064 0x2634  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
13:08:18.0066 0x2634  sffp_mmc - ok
13:08:18.0069 0x2634  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
13:08:18.0069 0x2634  sffp_sd - ok
13:08:18.0072 0x2634  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
13:08:18.0073 0x2634  sfloppy - ok
13:08:18.0087 0x2634  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
13:08:18.0095 0x2634  SharedAccess - ok
13:08:18.0112 0x2634  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:08:18.0121 0x2634  ShellHWDetection - ok
13:08:18.0138 0x2634  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
13:08:18.0140 0x2634  SiSRaid2 - ok
13:08:18.0146 0x2634  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
13:08:18.0148 0x2634  SiSRaid4 - ok
13:08:18.0187 0x2634  [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
13:08:18.0192 0x2634  SkypeUpdate - ok
13:08:18.0209 0x2634  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
13:08:18.0211 0x2634  Smb - ok
13:08:18.0238 0x2634  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
13:08:18.0240 0x2634  SNMPTRAP - ok
13:08:18.0309 0x2634  [ 4945020BC094C322571184A6E8056B3A, 9E09257411F7C3631537D0198E0E64CDD1A697D80430F6379139B15A2BA8A6C9 ] SolidWorks Licensing Service C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
13:08:18.0311 0x2634  SolidWorks Licensing Service - ok
13:08:18.0317 0x2634  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
13:08:18.0318 0x2634  spldr - ok
13:08:18.0364 0x2634  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
13:08:18.0374 0x2634  Spooler - ok
13:08:18.0444 0x2634  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
13:08:18.0512 0x2634  sppsvc - ok
13:08:18.0525 0x2634  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
13:08:18.0528 0x2634  sppuinotify - ok
13:08:18.0602 0x2634  [ C386F811A5E2F87DCF3EA4A527A20AA6, D68DF4E237AC6CBE193DE3A5C48F473F332A1D3CFC7BC21AFDE3EF922DA08279 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
13:08:18.0605 0x2634  SQLWriter - ok
13:08:18.0657 0x2634  [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv             C:\Windows\system32\DRIVERS\srv.sys
13:08:18.0667 0x2634  srv - ok
13:08:18.0687 0x2634  [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
13:08:18.0696 0x2634  srv2 - ok
13:08:18.0706 0x2634  [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
13:08:18.0710 0x2634  srvnet - ok
13:08:18.0721 0x2634  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
13:08:18.0725 0x2634  SSDPSRV - ok
13:08:18.0734 0x2634  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
13:08:18.0737 0x2634  SstpSvc - ok
13:08:18.0763 0x2634  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
13:08:18.0766 0x2634  ssudmdm - ok
13:08:18.0795 0x2634  [ 117DF2CC1758A097CC30305C4B8908C6, C750E0115FC749F3D42589868F1DE5E421B18D9588A5191B7D1D6AC41DB8EC3C ] ssudobex        C:\Windows\system32\DRIVERS\ssudobex.sys
13:08:18.0798 0x2634  ssudobex - ok
13:08:18.0852 0x2634  [ 937821881026EBE17DA25285CD5461A8, 79C503798BD6CE218598229AAB417EBD43E151A2E821BE99E138BFA9F841103A ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
13:08:18.0857 0x2634  Stereo Service - ok
13:08:18.0875 0x2634  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
13:08:18.0876 0x2634  stexstor - ok
13:08:18.0897 0x2634  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
13:08:18.0907 0x2634  stisvc - ok
13:08:18.0928 0x2634  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
13:08:18.0930 0x2634  storflt - ok
13:08:18.0954 0x2634  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
13:08:18.0956 0x2634  StorSvc - ok
13:08:18.0975 0x2634  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
13:08:18.0977 0x2634  storvsc - ok
13:08:18.0983 0x2634  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
13:08:18.0985 0x2634  swenum - ok
13:08:19.0005 0x2634  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
13:08:19.0021 0x2634  swprv - ok
13:08:19.0049 0x2634  [ F19E5E37ED8134B9E5F6287F2D3A75D7, 5804D6DF529213CCF7CD2C345483940554CAA5C6EA065A1B09AA54D114C612F8 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
13:08:19.0052 0x2634  SymEvent - ok
13:08:19.0119 0x2634  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
13:08:19.0145 0x2634  SysMain - ok
13:08:19.0156 0x2634  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:08:19.0159 0x2634  TabletInputService - ok
13:08:19.0175 0x2634  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
13:08:19.0181 0x2634  TapiSrv - ok
13:08:19.0273 0x2634  [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
13:08:19.0304 0x2634  Tcpip - ok
13:08:19.0341 0x2634  [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
13:08:19.0364 0x2634  TCPIP6 - ok
13:08:19.0381 0x2634  [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
13:08:19.0383 0x2634  tcpipreg - ok
13:08:19.0399 0x2634  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
13:08:19.0400 0x2634  TDPIPE - ok
13:08:19.0424 0x2634  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
13:08:19.0426 0x2634  TDTCP - ok
13:08:19.0461 0x2634  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
13:08:19.0464 0x2634  tdx - ok
13:08:19.0478 0x2634  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
13:08:19.0480 0x2634  TermDD - ok
13:08:19.0534 0x2634  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
13:08:19.0543 0x2634  TermService - ok
13:08:19.0587 0x2634  [ 9201BE2BAB8A9FF8E20D8439AE3BB04D, D973C4FE5B8D02B15476D72B49105840A04DBFF8BCB77117C0354D046E6C02FB ] Themes          C:\Windows\system32\themeservice.dll
13:08:19.0589 0x2634  Themes - ok
13:08:19.0603 0x2634  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
13:08:19.0604 0x2634  THREADORDER - ok
13:08:19.0625 0x2634  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
13:08:19.0628 0x2634  TrkWks - ok
13:08:19.0672 0x2634  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:08:19.0676 0x2634  TrustedInstaller - ok
13:08:19.0715 0x2634  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
13:08:19.0789 0x2634  tssecsrv - ok
13:08:19.0946 0x2634  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
13:08:19.0983 0x2634  TsUsbFlt - ok
13:08:20.0022 0x2634  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
13:08:20.0023 0x2634  TsUsbGD - ok
13:08:20.0045 0x2634  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
13:08:20.0050 0x2634  tunnel - ok
13:08:20.0063 0x2634  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
13:08:20.0066 0x2634  uagp35 - ok
13:08:20.0089 0x2634  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
13:08:20.0101 0x2634  udfs - ok
13:08:20.0120 0x2634  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
13:08:20.0125 0x2634  UI0Detect - ok
13:08:20.0158 0x2634  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
13:08:20.0162 0x2634  uliagpkx - ok
13:08:20.0187 0x2634  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
13:08:20.0190 0x2634  umbus - ok
13:08:20.0195 0x2634  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
13:08:20.0197 0x2634  UmPass - ok
13:08:20.0222 0x2634  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
13:08:20.0232 0x2634  UmRdpService - ok
13:08:20.0313 0x2634  [ 9DC07E73A4ABB9ACF692113B36A5009F, CA7176FC219515D58DCFA66EC61880ECE5617275C9B83701BB74D8B60E733D34 ] UnlockerDriver5 C:\Users\Michael Neumann\Downloads\x64\UnlockerDriver5.sys
13:08:20.0314 0x2634  UnlockerDriver5 - ok
13:08:20.0332 0x2634  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
13:08:20.0345 0x2634  upnphost - ok
13:08:20.0396 0x2634  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
13:08:20.0398 0x2634  USBAAPL64 - ok
13:08:20.0453 0x2634  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
13:08:20.0458 0x2634  usbaudio - ok
13:08:20.0489 0x2634  [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
13:08:20.0493 0x2634  usbccgp - ok
13:08:20.0520 0x2634  [ BA1E9E3550F6D578FF68DA2873077C96, 40C533C1C59ADD2057F9B95D631A2540A0B246C532AE69B64C629DEEB770A238 ] UsbCharger      C:\Windows\system32\DRIVERS\UsbCharger.sys
13:08:20.0522 0x2634  UsbCharger - ok
13:08:20.0552 0x2634  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
13:08:20.0601 0x2634  usbcir - ok
13:08:20.0650 0x2634  [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
13:08:20.0653 0x2634  usbehci - ok
13:08:20.0716 0x2634  [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
13:08:20.0728 0x2634  usbhub - ok
13:08:20.0752 0x2634  [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci         C:\Windows\system32\drivers\usbohci.sys
13:08:20.0754 0x2634  usbohci - ok
13:08:20.0784 0x2634  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
13:08:20.0786 0x2634  usbprint - ok
13:08:20.0810 0x2634  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
13:08:20.0812 0x2634  usbscan - ok
13:08:20.0834 0x2634  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:08:20.0837 0x2634  USBSTOR - ok
13:08:20.0862 0x2634  [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
13:08:20.0864 0x2634  usbuhci - ok
13:08:20.0876 0x2634  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
13:08:20.0879 0x2634  UxSms - ok
13:08:20.0885 0x2634  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] VaultSvc        C:\Windows\system32\lsass.exe
13:08:20.0886 0x2634  VaultSvc - ok
13:08:20.0895 0x2634  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
13:08:20.0896 0x2634  vdrvroot - ok
13:08:20.0920 0x2634  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
13:08:20.0933 0x2634  vds - ok
13:08:20.0945 0x2634  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
13:08:20.0947 0x2634  vga - ok
13:08:20.0958 0x2634  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
13:08:20.0959 0x2634  VgaSave - ok
13:08:20.0981 0x2634  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
13:08:20.0986 0x2634  vhdmp - ok
13:08:21.0018 0x2634  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
13:08:21.0019 0x2634  viaide - ok
13:08:21.0042 0x2634  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
13:08:21.0047 0x2634  vmbus - ok
13:08:21.0056 0x2634  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
13:08:21.0057 0x2634  VMBusHID - ok
13:08:21.0087 0x2634  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
13:08:21.0089 0x2634  volmgr - ok
13:08:21.0105 0x2634  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
13:08:21.0112 0x2634  volmgrx - ok
13:08:21.0127 0x2634  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
13:08:21.0133 0x2634  volsnap - ok
13:08:21.0212 0x2634  [ 786148B4BB46040FE5DAC0E149E77AF1, D315BB4F0D12B03DE6297FFC02E106BAAD7D4045F067AE4B9B9A978F5575DFD0 ] vpnagent        C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
13:08:21.0226 0x2634  vpnagent - ok
13:08:21.0256 0x2634  [ 0F42C39016F82F345C0F2DB2D5B90EB4, 2E957E72BB8D0293F61FA7385BA9400DF7759E1E3D35FE24F3877A6460988F4D ] vpnva           C:\Windows\system32\DRIVERS\vpnva64-6.sys
13:08:21.0258 0x2634  vpnva - ok
13:08:21.0279 0x2634  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
13:08:21.0283 0x2634  vsmraid - ok
13:08:21.0330 0x2634  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
13:08:21.0355 0x2634  VSS - ok
13:08:21.0366 0x2634  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
13:08:21.0367 0x2634  vwifibus - ok
13:08:21.0392 0x2634  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
13:08:21.0398 0x2634  W32Time - ok
13:08:21.0410 0x2634  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
13:08:21.0411 0x2634  WacomPen - ok
13:08:21.0421 0x2634  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
13:08:21.0424 0x2634  WANARP - ok
13:08:21.0426 0x2634  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
13:08:21.0427 0x2634  Wanarpv6 - ok
13:08:21.0457 0x2634  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
13:08:21.0480 0x2634  wbengine - ok
13:08:21.0494 0x2634  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
13:08:21.0499 0x2634  WbioSrvc - ok
13:08:21.0548 0x2634  [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
13:08:21.0554 0x2634  WcesComm - ok
13:08:21.0572 0x2634  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
13:08:21.0578 0x2634  wcncsvc - ok
13:08:21.0588 0x2634  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:08:21.0591 0x2634  WcsPlugInService - ok
13:08:21.0597 0x2634  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
13:08:21.0598 0x2634  Wd - ok
13:08:21.0633 0x2634  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
13:08:21.0644 0x2634  Wdf01000 - ok
13:08:21.0687 0x2634  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
13:08:21.0690 0x2634  WdiServiceHost - ok
13:08:21.0692 0x2634  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
13:08:21.0694 0x2634  WdiSystemHost - ok
13:08:21.0734 0x2634  [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient       C:\Windows\System32\webclnt.dll
13:08:21.0738 0x2634  WebClient - ok
13:08:21.0753 0x2634  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
13:08:21.0758 0x2634  Wecsvc - ok
13:08:21.0771 0x2634  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
13:08:21.0774 0x2634  wercplsupport - ok
13:08:21.0794 0x2634  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
13:08:21.0797 0x2634  WerSvc - ok
13:08:21.0816 0x2634  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
13:08:21.0817 0x2634  WfpLwf - ok
13:08:21.0828 0x2634  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
13:08:21.0829 0x2634  WIMMount - ok
13:08:21.0849 0x2634  WinDefend - ok
13:08:21.0870 0x2634  WinHttpAutoProxySvc - ok
13:08:21.0921 0x2634  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
13:08:21.0928 0x2634  Winmgmt - ok
13:08:21.0995 0x2634  [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM           C:\Windows\system32\WsmSvc.dll
13:08:22.0049 0x2634  WinRM - ok
13:08:22.0091 0x2634  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUSB          C:\Windows\system32\DRIVERS\WinUsb.sys
13:08:22.0092 0x2634  WinUSB - ok
13:08:22.0130 0x2634  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
13:08:22.0155 0x2634  Wlansvc - ok
13:08:22.0272 0x2634  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:08:22.0300 0x2634  wlidsvc - ok
13:08:22.0304 0x2634  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
13:08:22.0305 0x2634  WmiAcpi - ok
13:08:22.0322 0x2634  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
13:08:22.0325 0x2634  wmiApSrv - ok
13:08:22.0343 0x2634  WMPNetworkSvc - ok
13:08:22.0351 0x2634  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
13:08:22.0353 0x2634  WPCSvc - ok
13:08:22.0376 0x2634  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
13:08:22.0379 0x2634  WPDBusEnum - ok
13:08:22.0399 0x2634  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
13:08:22.0400 0x2634  ws2ifsl - ok
13:08:22.0410 0x2634  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
13:08:22.0413 0x2634  wscsvc - ok
13:08:22.0449 0x2634  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
13:08:22.0450 0x2634  WSDPrintDevice - ok
13:08:22.0462 0x2634  [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan         C:\Windows\system32\DRIVERS\WSDScan.sys
13:08:22.0464 0x2634  WSDScan - ok
13:08:22.0468 0x2634  WSearch - ok
13:08:22.0566 0x2634  [ 31F32E0C1A8BA9A37EEC23DE5F27F847, 0180832BC6172C9A4C32B5B222BB3F91EA615A5EBDA98DB79ED4FED258C2D257 ] wuauserv        C:\Windows\system32\wuaueng.dll
13:08:22.0614 0x2634  wuauserv - ok
13:08:22.0636 0x2634  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
13:08:22.0638 0x2634  WudfPf - ok
13:08:22.0650 0x2634  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
13:08:22.0653 0x2634  WUDFRd - ok
13:08:22.0677 0x2634  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
13:08:22.0681 0x2634  wudfsvc - ok
13:08:22.0728 0x2634  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
13:08:22.0733 0x2634  WwanSvc - ok
13:08:22.0745 0x2634  ================ Scan global ===============================
13:08:22.0791 0x2634  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
13:08:22.0837 0x2634  [ 20EBCFD94E5F9C801354062991E7257B, 9CD497241559A5D6A8C2C77F1109B6D512BFFA8CC154480A3CDC36B7BB68BFAB ] C:\Windows\system32\winsrv.dll
13:08:22.0849 0x2634  [ 20EBCFD94E5F9C801354062991E7257B, 9CD497241559A5D6A8C2C77F1109B6D512BFFA8CC154480A3CDC36B7BB68BFAB ] C:\Windows\system32\winsrv.dll
13:08:22.0864 0x2634  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
13:08:22.0908 0x2634  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
13:08:22.0916 0x2634  [ Global ] - ok
13:08:22.0916 0x2634  ================ Scan MBR ==================================
13:08:22.0919 0x2634  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:08:23.0083 0x2634  \Device\Harddisk0\DR0 - ok
13:08:23.0083 0x2634  ================ Scan VBR ==================================
13:08:23.0084 0x2634  [ A060BDB29DC9D0630E2C1DCBD6F21084 ] \Device\Harddisk0\DR0\Partition1
13:08:23.0085 0x2634  \Device\Harddisk0\DR0\Partition1 - ok
13:08:23.0086 0x2634  ================ Scan generic autorun ======================
13:08:23.0117 0x2634  [ 5CB3B79FA382173035A58506CC3D398A, 5A5359D7027564923BF40FB5146428E3C2E48B20C72127B9940EBEAF01104BB1 ] C:\Windows\system32\igfxtray.exe
13:08:23.0123 0x2634  IgfxTray - ok
13:08:23.0141 0x2634  [ B28469D8C7C75D8C4A4406D4A3B48417, D351A6FB710B830FEA45273AAA27F913E2E8E3D9251051E3B657407AB794C4BF ] C:\Windows\system32\hkcmd.exe
13:08:23.0152 0x2634  HotKeysCmds - ok
13:08:23.0172 0x2634  [ 63D23C49DD66D4B65DFB50EFEC595EDA, BA9CAC8A7791B51760690F339C005EDCC79209D2A187578241203FBD5C65B0A8 ] C:\Windows\system32\igfxpers.exe
13:08:23.0183 0x2634  Persistence - ok
13:08:23.0476 0x2634  [ 635BFF7C55A68CFEEFFB155979E68EE0, 018AAC3F2F8B31078DCD35E4C543172737213DE63F0EC0A9B2A7F45E44B6842F ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
13:08:23.0635 0x2634  RTHDVCPL - ok
13:08:23.0683 0x2634  [ D94BCD3B86F5220BEFC277B395EEE845, 61D3DE5621CE855F8EA5BF2308D0DFFB3B517BF7187AEE1FEF6785C5880E7D49 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
13:08:23.0684 0x2634  IAStorIcon - ok
13:08:23.0756 0x2634  [ DD37DC13DF1224A8719208AE5CDE2B63, EA365A7358637C555D8CDEDD59BCA574C8B6EB8BB3C1B8790FEC7D76A37FC4AB ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
13:08:23.0789 0x2634  NvBackend - ok
13:08:23.0808 0x2634  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
13:08:23.0810 0x2634  ShadowPlay - ok
13:08:23.0892 0x2634  [ A0E32171EFB9432D0746F5EF728BB0FB, B468233DD9C68EBA86A3970587177CD86402212F456956D70B926875519833FA ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
13:08:23.0903 0x2634  AdobeAAMUpdater-1.0 - ok
13:08:23.0959 0x2634  [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdc.exe
13:08:23.0971 0x2634  Windows Mobile Device Center - ok
13:08:23.0974 0x2634  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
13:08:23.0976 0x2634  Logitech Download Assistant - ok
13:08:24.0023 0x2634  [ 9C3F26DCA9142F16ED3D7EE8AB4E417D, 867AD96CB5738266E5BC93E424EA1673881C5F5FBF19C7B699F800C7206CA929 ] C:\Program Files\iTunes\iTunesHelper.exe
13:08:24.0026 0x2634  iTunesHelper - ok
13:08:24.0074 0x2634  [ 5511B28C8937C4265AEBFFFFA9B03F04, 81B948E27AE4FB6BCAF64619030228DC61F914C3250652BC4E91F2E233E19991 ] C:\Program Files\Eraser\Eraser.exe
13:08:24.0087 0x2634  Eraser - ok
13:08:24.0150 0x2634  [ 70BDEE03032BF7CE279838866B25E697, 007C3AC1B4380BC56EC6E14EFC022C03F165D08447AD763854351C530E19D976 ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
13:08:24.0154 0x2634  IMSS - ok
13:08:24.0201 0x2634  [ 0436F64FD296BE331B3BB0CE446548BF, 53A8F8E58F451A7B030AE61E30DBB9BDFD5342046674177941A838B66D80FD70 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
13:08:24.0206 0x2634  USB3MON - ok
13:08:24.0228 0x2634  [ D2AEADFD998706B4216315B2BD3FA79E, D45634355B7733F9B6754A6FB80B7EC20C0D584A08E2F710DF612B393D96A8F9 ] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
13:08:24.0231 0x2634  ISUSScheduler - ok
13:08:24.0282 0x2634  [ 887E31727394E2998A471A01A521EAB4, E68D0C778BAAB307E6BDDA151787D31FC16AD83ADE3FE848353998D111A9AC0C ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
13:08:24.0291 0x2634  DivXMediaServer - ok
13:08:24.0319 0x2634  [ 8FFDB89A0FB7C8ABC3A8825E38047341, B9107FAA3A885CD9A08C20F78D31C3642FA76812E417F41C4F2ADF7D90CA8C72 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
13:08:24.0322 0x2634  LWS - ok
13:08:24.0365 0x2634  [ 16AFB34618E1286FF856DC600AC49C79, 431EC110507685A0F4472EAE35383B4C1E3DC0B56E01CDECFB18F753181DC995 ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
13:08:24.0388 0x2634  DivXUpdate - ok
13:08:24.0469 0x2634  [ 6AD64E318ED6B5F04AFAC2849DE05EA0, E71BAAC529BA31762519342303DA0AF1BD230DD1EDBACD1B0CA261041F21BEBB ] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
13:08:24.0488 0x2634  CanonQuickMenu - ok
13:08:24.0512 0x2634  [ 6B53177248AC5327FFB5CB2D5C500C94, 2F03DA955BF63BDCA979B76B263FBE4EB1BA2A76476EF0D9145E66CAB781C67C ] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
13:08:24.0517 0x2634  IJNetworkScannerSelectorEX - ok
13:08:24.0675 0x2634  Dropbox - ok
13:08:24.0758 0x2634  [ 252B20650657B7A81155FD72BBDA0C75, F70EBD07EB938CC258955088ED2CA3BC9A8220AB9EFF21578E008BA87BC610E5 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
13:08:24.0769 0x2634  SunJavaUpdateSched - ok
13:08:24.0795 0x2634  [ CD0362AEE36CFE1EF5DF973230742E67, 9F1D8AD4E09D16C39CD6A35CB298456468C1808226FFA8AD65BF9562A6ECC07D ] C:\Program Files (x86)\PDF24\pdf24.exe
13:08:24.0798 0x2634  PDFPrint - ok
13:08:24.0841 0x2634  [ A6A77A4BF2FB6AA4F8357DBFC2B9C724, 0A654E001AF5614F93FB78E5A84D48CD30AAF73F24691DCA5137DD867A9A4447 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
13:08:24.0855 0x2634  Cisco AnyConnect Secure Mobility Agent for Windows - ok
13:08:24.0980 0x2634  [ 28856A978670B7292F45EEF43978998B, 73C5FDC6C3413AF63943F0167EB2522498BC97C4A8B545BBC8E6CE1EE52A7727 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
13:08:25.0009 0x2634  Adobe Creative Cloud - ok
13:08:25.0076 0x2634  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
13:08:25.0093 0x2634  Sidebar - ok
13:08:25.0118 0x2634  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
13:08:25.0121 0x2634  mctadmin - ok
13:08:25.0141 0x2634  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
13:08:25.0154 0x2634  Sidebar - ok
13:08:25.0157 0x2634  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
13:08:25.0159 0x2634  mctadmin - ok
13:08:25.0264 0x2634  [ 4568951FA4CD0B478D01D131F25A0ECC, 2D4220DBB4B16202FF1F2809024111AA80B6DD57178EC4BE336F5C5EBD66A76F ] C:\Users\Michael Neumann\AppData\Roaming\uTorrent\uTorrent.exe
13:08:25.0287 0x2634  uTorrent - ok
13:08:25.0399 0x2634  [ B8E262F4824CD03AE58D70B33307DCD5, 74EECAD827C5C307A2A5281299C15EED24DDD54E3B8E656B830F6932A3BE7D62 ] C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe
13:08:25.0481 0x2634  DAEMON Tools Lite Automount - ok
13:08:25.0945 0x2634  [ A70E699E0B0DD9C2B3B35E9A8167F903, 6CC7AFFEED646AA9C46C709C8B36751CA9EBCDDC70438ECE1D1328E6C1A02421 ] C:\Program Files\CCleaner\CCleaner64.exe
13:08:26.0050 0x2634  CCleaner Monitoring - ok
13:08:26.0057 0x2634  Waiting for KSN requests completion. In queue: 155
13:08:27.0177 0x2634  Win FW state via NFP2: enabled ( trusted )
13:08:27.0273 0x2634  ============================================================
13:08:27.0273 0x2634  Scan finished
13:08:27.0273 0x2634  ============================================================
13:08:27.0276 0x27ac  Detected object count: 0
13:08:27.0276 0x27ac  Actual detected object count: 0
         
und was ich auch eigentlich will, ist EWA und Solidworks vom Rechner zu entfernen. Das klappt aber nicht, weil ich immer ne Meldung bekomme, dass irgendeine Datei in System geöffnet ist.

Alt 29.10.2016, 13:14   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Systembereinigung - Standard

Systembereinigung



Zitat:
Database version:
main: v2014.11.18.05
rootkit: v2014.11.12.01
Mit den alten Signaturen wird das nix...
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 29.10.2016, 14:13   #10
Mixer008
 
Systembereinigung - Standard

Systembereinigung



so,

nun mit dem aktuellen

Malwarebytes Anti-Rootkit:

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2016.10.29.05
  rootkit: v2016.09.26.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.17609
Michael Neumann :: PC [administrator]

29.10.2016 13:17:54
mbar-log-2016-10-29 (13-17-54).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 435040
Time elapsed: 52 minute(s), 47 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         

Alt 29.10.2016, 14:24   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Systembereinigung - Standard

Systembereinigung



Malware hast du keine auf dem Rechner. Dein Anliegen wäre also eigentlich besser da aufgehoben => Alles rund um Windows - Trojaner-Board


Zitat:
seit einiger Zeit kann ich ein paar Dateien nicht löschen, die ich mal runtergeladen habe.
Es steht immer dran, die Datei ist in System geöffnet, nicht löschbar.
Das ist ein typisches Windowsproblem. Deswegen will Windows auch bei vielen Kleinigkeiten immer einen Neustart haben. Linux und andere unixoide OS haben das nicht.

Vorschläge:

1. neue Adminkonto erstellen, dann abmelden und mit diesem neuen Konto anmelden, darunter versuchen die fragwürdigen Dateien zu löschen

2. Linux-Live-DVD verwenden (zB Ubuntu MATE im Ausprobiermodus) und dann von "außen" die Dateien vom Windows-NTFS-Volume löschen

3. Möglichkeit: versuchen mit FRST die Dateien wegzuscripten
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 30.10.2016, 13:10   #12
Mixer008
 
Systembereinigung - Standard

Systembereinigung



Also ich denk ich probier mal alles aus was du geschrieben hast.
Hoffentlich klappt das dann .

EDIT: Möglichkeit Nummer 1 klappt nicht.
die anderen verstehe ich nicht wie ich da vorgehen soll. Kannst es vielleicht etwas besser beschreiben?

Und die Möglichkeit, die ich mir halt noch vorstellen kann, ist das System nochmal neu draufsetzen xD

hallo cosinus,
könntest du mir bitte ein Script für das FRST schreiben?

und das mit Ubuntu probier ich heute mal aus.

EDIT 2:

Also das mit Ubuntu hat geklappt.

Damit bedanke ich recht herzlich für die Hilfe von dir cosinus!!!

Geändert von Mixer008 (29.10.2016 um 14:43 Uhr)

Antwort

Themen zu Systembereinigung
dateien, einiger, hilfe, hilfe!, komplett, löschen, nicht, nicht löschen, reinigen, runtergeladen, schonmal, system, systembereinigung, würde



Ähnliche Themen: Systembereinigung


  1. Suchen Mitarbeiter in Sachen Software-Virenbekämpfung-Systembereinigung in Berlin
    Lob, Kritik und Wünsche - 07.07.2014 (12)
  2. komplette Systembereinigung nach Virenfunden - entfenen von Popups und Malware
    Log-Analyse und Auswertung - 14.11.2013 (9)
  3. Systembereinigung nach GVU-Virus
    Log-Analyse und Auswertung - 17.05.2013 (13)
  4. Systembereinigung nach Bundestrojaner, PUP.VShareRedir
    Log-Analyse und Auswertung - 11.04.2013 (15)
  5. PUP.Blabbers - Systembereinigung benötigt
    Plagegeister aller Art und deren Bekämpfung - 22.02.2013 (17)
  6. GVU Trojaner, Systembereinigung, Logfiles
    Log-Analyse und Auswertung - 23.11.2012 (9)
  7. Bundespolizei Trojaner entfernt - Systembereinigung erfolgreich?
    Log-Analyse und Auswertung - 28.08.2011 (43)
  8. Systembereinigung nach Befall durch Trojaner Windows Vista Repair
    Log-Analyse und Auswertung - 25.07.2011 (26)
  9. Systembereinigung korrekt durchgeführt nach Malware "spyeye"?
    Plagegeister aller Art und deren Bekämpfung - 01.03.2011 (3)
  10. TR/FraudPack.kvb.3 - Systembereinigung
    Plagegeister aller Art und deren Bekämpfung - 10.11.2010 (1)
  11. CCleaner Systembereinigung nicht auf Deutsch
    Alles rund um Windows - 07.06.2009 (2)
  12. Systembereinigung oder gleich formatieren? - Eine Grundsatzdiskussion...
    Diskussionsforum - 24.07.2007 (190)
  13. Geplänkel zum Thread: Systembereinigung oder gleich formatieren? - Eine Grundsatzdiskussion...
    Mülltonne - 10.10.2005 (7)
  14. Geplänkel zu Systembereinigung oder gleich formatieren?
    Mülltonne - 22.08.2005 (8)

Zum Thema Systembereinigung - Hallo, seit einiger Zeit kann ich ein paar Dateien nicht löschen, die ich mal runtergeladen habe. Es steht immer dran, die Datei ist in System geöffnet, nicht löschbar. Was kann - Systembereinigung...
Archiv
Du betrachtest: Systembereinigung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.