internet seiten laden trotz voller inet geschwindigkeit nicht richtig

zatokabi · 21.11.2016, 15:37

also ich habe nen acer v3 mit 8 gb ram nen i7 mit 2.3 ghz mit win10
und folgendes problem auf youtube zb. laden videos ewig und der seiten aufbau is auch extrem langsam.
bekomme aber nach wieistmeineip.de 8000kbits rein
malware hatte ich drauf aber is schon dank Malwarebytes verschwunden
nun meinte jemand das es ein trojaner sein könnte und ich mich an euch wenden soll
mfg zato

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 21.11.2016
Suchlaufzeit: 14:50
Protokolldatei: 
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2016.02.16.06
Rootkit-Datenbank: v2016.02.08.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: tobias

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 365209
Abgelaufene Zeit: 13 Min., 22 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 6
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\CCLEANER64.EXE, In Quarantäne, [f96d93ce55441c1ad9c6f423927235cb], 
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE, In Quarantäne, [570fc69be0b9f93da2df62880ef52ed2], 
RiskWare.IFEOHijack, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\UPDATER.EXE, In Quarantäne, [8dd993ceb0e91d19baf5c46cbf453ec2], 
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\CCLEANER64.EXE, In Quarantäne, [f96d3e2322770c2afba444d307fd3ec2], 
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE, In Quarantäne, [a5c11f420198e94d30510cdec63d4fb1], 
RiskWare.IFEOHijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\UPDATER.EXE, In Quarantäne, [6105b1b0bddc42f4dfd0052be81c8e72], 

Registrierungswerte: 6
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\CCLEANER64.EXE|Debugger, "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe", In Quarantäne, [f96d93ce55441c1ad9c6f423927235cb]
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE|Debugger, "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe", In Quarantäne, [570fc69be0b9f93da2df62880ef52ed2]
RiskWare.IFEOHijack, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\UPDATER.EXE|Debugger, "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe", In Quarantäne, [8dd993ceb0e91d19baf5c46cbf453ec2]
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\CCLEANER64.EXE|Debugger, "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe", In Quarantäne, [f96d3e2322770c2afba444d307fd3ec2]
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE|Debugger, "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe", In Quarantäne, [a5c11f420198e94d30510cdec63d4fb1]
RiskWare.IFEOHijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\UPDATER.EXE|Debugger, "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe", In Quarantäne, [6105b1b0bddc42f4dfd0052be81c8e72]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

und nochma der log ausm adw cleaner

Code:

ATTFilter

# AdwCleaner v6.030 - Bericht erstellt am 21/11/2016 um 16:24:43
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-11-20.1 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : tobias - PCLOL
# Gestartet von : C:\Users\tobias\Downloads\adwcleaner_6.030.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****

Keine schädlichen Dienste gefunden.


***** [ Ordner ] *****

Ordner Gefunden: C:\Users\tobias\AppData\Local\pokki
Ordner Gefunden: C:\Users\tobias\AppData\Local\Pokki
Ordner Gefunden: C:\Users\Default User\AppData\Local\Pokki
Ordner Gefunden: C:\Users\Default\AppData\Local\Pokki
Ordner Gefunden: C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Dateien ] *****

Datei Gefunden: C:\END


***** [ DLL ] *****

Keine infizierten DLLs gefunden.


***** [ WMI ] *****

Keine schädlichen Schlüssel gefunden.


***** [ Verknüpfungen ] *****

Keine infizierten Verknüpfungen gefunden.


***** [ Aufgabenplanung ] *****

Keine schädlichen Aufgaben gefunden.


***** [ Registrierungsdatenbank ] *****

Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_03d432a7e610c3e908213e7689d4342ce2111caf
Schlüssel Gefunden: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Pokki
Schlüssel Gefunden: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\PRODUCTSETUP
Schlüssel Gefunden: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\csastats
Schlüssel Gefunden: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Schlüssel Gefunden: HKCU\Software\Pokki
Schlüssel Gefunden: HKCU\Software\PRODUCTSETUP
Schlüssel Gefunden: HKCU\Software\csastats
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Schlüssel Gefunden: [x64] HKCU\Software\Pokki
Schlüssel Gefunden: [x64] HKCU\Software\PRODUCTSETUP
Schlüssel Gefunden: [x64] HKCU\Software\csastats
Schlüssel Gefunden: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Schlüssel Gefunden: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
Schlüssel Gefunden: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
Schlüssel Gefunden: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
Schlüssel Gefunden: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
Schlüssel Gefunden: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Schlüssel Gefunden: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Schlüssel Gefunden: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\winamp.com
Schlüssel Gefunden: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\land.pckeeper.sof
Schlüssel Gefunden: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pckeeper.software
Schlüssel Gefunden: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\land.pckeeper.softwa
Schlüssel Gefunden: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pckeeper.software
Schlüssel Gefunden: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Schlüssel Gefunden: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Schlüssel Gefunden: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\winamp.com
Schlüssel Gefunden: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\land.pckeeper.s
Schlüssel Gefunden: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pckeeper.softwa
Schlüssel Gefunden: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\land.pckeeper.soft
Schlüssel Gefunden: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pckeeper.software
Wert Gefunden: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
Schlüssel Gefunden: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Schlüssel Gefunden: [x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Internetbrowser ] *****

Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Chrome pref Gefunden: [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - hxxp://search.babylon.com/?affID=110808&tt=3512_6&babsrc=HP_ss&mntrId=08721db9000000000000082e5f28a357
Chrome pref Gefunden: [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - hxxp://mystart.incredibar.com/mb216?a=6R8Rxmvi7E&i=26
Chrome pref Gefunden: [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - hxxp://www.sweet-page.com/?type=hppp&ts=1405015183&from=cor&uid=ST750LM022XHN-M750MBB_S2Y1J9CDA02913
Chrome pref Gefunden: [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - hxxp://www.mystartsearch.com/?type=hp&ts=1414853978&from=smt&uid=ST750LM022XHN-M750MBB_S2Y1J9CDA02913
Chrome pref Gefunden: [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - fcfenmboojpjinhpgggodefccipikbpd
Chrome pref Gefunden: [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - lfmhcpmkbdkbgbmkjoiopeeegenkdikp

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [6697 Bytes] - [21/11/2016 16:24:43]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6770 Bytes] ##########

cosinus · 21.11.2016, 16:26

+++ WICHTIGER HINWEIS +++

Während der Analyse und Bereinigung nimmst du KEINERLEI Änderungen auf eigene Faust vor, d.h. du installierst oder deinstallierst keine Software ohne Absprache.
Auch veränderst du keine Systemeinstellungen, solange wir deinen Fall bearbeiten. Änderungen, Installationen oder Deinstallationen machst du AUSSCHLIESSLICH nur auf Anweisung!
Es wird erforderlich sein, deinen Virenscanner zu deaktivieren und in bestimmten Fällen auch zu deinstallieren, damit vernünftig bereinigt werden kann. Dein System ist daher erst wenn wir hier fertig sind wieder für den alltäglichen Gebrauch wie surfen oder mailen von mir freigegeben.

Gelesen und verstanden?

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

zatokabi · 21.11.2016, 16:47

FRST:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2016 01
durchgeführt von tobias (Administrator) auf PCLOL (21-11-2016 16:29:33)
Gestartet von C:\Users\tobias\Downloads
Geladene Profile: tobias (Verfügbare Profile: tobias)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.5.0.9\ARA.exe
() C:\Users\tobias\Desktop\DS4Windows.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11610.1001.10.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft® Windows® Operating System) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\tobias\Downloads\adwcleaner_6.030.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [415128 2015-09-30] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-04] (Synaptics Incorporated)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-25] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [RzWizard] => C:\Program Files (x86)\Razer\RzWizard\RzWizard.exe [254976 2015-07-23] (Razer Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [595616 2016-04-21] (Razer Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [218896 2016-09-13] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25366584 2016-10-10] (Dropbox, Inc.)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8641240 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2860832 2016-10-13] (Valve Corporation)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-06-16] (Electronic Arts)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27011712 2016-10-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [BingSvc] => C:\Users\tobias\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [247344 2016-11-07] ()
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1104384 2014-01-15] (Spotify Ltd)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [806400 2016-07-16] (Microsoft Corporation)
IFEO\acpanel_win.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dragonage2.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dropbox.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\epowerui.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\htcsyncmanager.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\nfs13.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\origin.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\originer.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\qastart.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\rzsynapse.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: 0.0.0.1	mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{4e87234e-79e4-455e-82a7-4eb665808732}: [DhcpNameServer] 127.0.0.1
Tcpip\..\Interfaces\{899332fa-f43b-4a92-a616-bbb80bf9b737}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1706370716-399708057-1175344942-1002 -> {9D491FCF-6300-48B2-8851-B829F1D62296} URL = 
SearchScopes: HKU\S-1-5-21-1706370716-399708057-1175344942-1002 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}

FireFox:
========
FF ProfilePath: C:\Users\tobias\AppData\Roaming\Mozilla\Firefox\Profiles\ni6sxjIq.default [2016-06-15]
FF Extension: (Avira Browser Safety) - C:\Users\tobias\AppData\Roaming\Mozilla\Firefox\Profiles\ni6sxjIq.default\Extensions\abs@avira.com [2016-06-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-11] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-11] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-07-12] ()

Chrome: 
=======
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=de-de
CHR StartupUrls: Default -> "hxxp://search.babylon.com/?affID=110808&tt=3512_6&babsrc=HP_ss&mntrId=08721db9000000000000082e5f28a357","hxxp://mystart.incredibar.com/mb216?a=6R8Rxmvi7E&i=26","","hxxp://www.google.com","hxxp://www.sweet-page.com/?type=hppp&ts=1405015183&from=cor&uid=ST750LM022XHN-M750MBB_S2Y1J9CDA02913","hxxp://www.mystartsearch.com/?type=hp&ts=1414853978&from=smt&uid=ST750LM022XHN-M750MBB_S2Y1J9CDA02913"
CHR Profile: C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default [2016-11-21]
CHR Extension: (ProxFlow) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-10-10]
CHR Extension: (Google Präsentationen) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-15]
CHR Extension: (Google Docs) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-15]
CHR Extension: (Google Drive) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-15]
CHR Extension: (YouTube) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-15]
CHR Extension: (WGT Golf Challenge) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcilimldmomiaihcfkmaldanopfejefg [2016-03-17]
CHR Extension: (Xdebug helper) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\eadndfjplgieldjbigjakmdgkmoaaaoc [2016-10-25]
CHR Extension: (Bing) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2016-09-01]
CHR Extension: (Google Tabellen) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-15]
CHR Extension: (Avira Browserschutz) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-09-23]
CHR Extension: (Google Docs Offline) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (AdBlock) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-08]
CHR Extension: (Ad.Block Plus) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\hapegbniiaedpdjilamlnefaafflfefc [2016-03-15]
CHR Extension: (CloudConvert) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfpmbfgodkfcebpgheiedaddoikmljkk [2016-03-17]
CHR Extension: (Video Downloader All) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpaglkhbmbmhlnpnehlffkgaaapoicnk [2016-04-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (Google Mail) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-15]
CHR Extension: (Chrome Media Router) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-21]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1706370716-399708057-1175344942-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1149712 2016-09-13] (AVG Technologies CZ, s.r.o.)
S4 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe [2650696 2013-07-26] (Acer Incorporated)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [38000 2016-10-10] (Dropbox, Inc.)
S4 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [663592 2013-07-05] (Acer Incorporated)
S4 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] ()
S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [235008 2013-07-16] (TODO: <Company name>) [Datei ist nicht signiert]
S4 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370064 2015-09-30] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
S4 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [457768 2013-08-03] (Acer Incorporate)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-03-07] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-04-01] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-03-07] (McAfee, Inc.)
S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4278112 2013-08-01] (Symantec Corporation)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [5660512 2016-08-16] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-10-25] (NVIDIA Corporation)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-06-16] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1316080 2016-11-07] (Overwolf LTD)
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Datei ist nicht signiert]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2016-06-19] ()
S4 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [457768 2013-08-02] (Acer Incorporate)
S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
S4 RzWizardService; C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe [368128 2015-07-23] (Razer Inc.) [Datei ist nicht signiert]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-04] (Synaptics Incorporated)
S4 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [118424 2016-03-09] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [4788496 2016-11-02] (AVG Technologies CZ, s.r.o.)
S4 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 ALSysIO; C:\Users\tobias\AppData\Local\Temp\ALSysIO64.sys [35320 2016-11-14] (Arthur Liberman)
R3 ccSet_NARA; C:\WINDOWS\system32\drivers\NARAx64\0405000.009\ccSetx64.sys [150104 2013-07-30] (Symantec Corporation)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-03-11] (McAfee, Inc.)
S3 HtcVCom32; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [419624 2016-03-11] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-03-11] (McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-03-11] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-03-11] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [842536 2016-03-11] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243496 2016-03-11] (McAfee, Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_33c9216502148e52\nvlddmkm.sys [14159928 2016-10-26] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-10-25] (NVIDIA Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-22] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-14] (Razer, Inc.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-03-09] ()
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-04] (Synaptics Incorporated)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2016-02-15] (AVG Netherlands B.V.)
R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [127432 2015-09-16] (BigNox Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 XQHDrv; C:\WINDOWS\system32\DRIVERS\XQHDrv.sys [253384 2015-09-16] (BigNox Corporation)
R1 XQHDrv; C:\Windows\SysWOW64\DRIVERS\XQHDrv.sys [253384 2015-09-16] (BigNox Corporation)
U0 aswVmm; kein ImagePath
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-21 16:29 - 2016-11-21 16:34 - 00027529 _____ C:\Users\tobias\Downloads\FRST.txt
2016-11-21 16:28 - 2016-11-21 16:29 - 00000000 ____D C:\FRST
2016-11-21 16:28 - 2016-11-21 16:28 - 02412544 _____ (Farbar) C:\Users\tobias\Downloads\FRST64.exe
2016-11-21 16:19 - 2016-11-21 16:24 - 00000000 ____D C:\AdwCleaner
2016-11-21 16:18 - 2016-11-21 16:19 - 03910208 _____ C:\Users\tobias\Downloads\adwcleaner_6.030.exe
2016-11-21 14:48 - 2016-11-21 15:38 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-21 14:47 - 2016-11-21 14:47 - 00001174 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-11-21 14:47 - 2016-11-21 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-11-21 14:47 - 2016-11-21 14:47 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-21 14:47 - 2016-11-21 14:47 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-11-21 14:47 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-11-21 14:47 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-11-21 14:47 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-11-21 14:44 - 2016-11-21 14:47 - 22851472 _____ (Malwarebytes ) C:\Users\tobias\Downloads\mbam-setup-2.2.1.1043.exe
2016-11-21 14:36 - 2016-11-21 14:36 - 01065376 _____ (Google Inc.) C:\Users\tobias\Downloads\ChromeSetup.exe
2016-11-21 14:32 - 2016-11-21 14:32 - 00000219 _____ C:\Users\tobias\Desktop\Counter-Strike Global Offensive.url
2016-11-21 13:50 - 2016-11-21 13:50 - 00000789 _____ C:\Users\tobias\Desktop\GDMO.lnk
2016-11-21 13:50 - 2016-11-21 13:50 - 00000000 ____D C:\Users\tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MoveGames
2016-11-21 13:46 - 2016-11-21 13:46 - 00000000 ____D C:\MoveGames
2016-11-21 13:19 - 2016-11-21 13:46 - 1159994280 _____ C:\Users\tobias\Downloads\GDMO_Install_20160906_ver239.exe
2016-11-20 18:09 - 2016-08-16 11:40 - 05660512 _____ (INCA Internet Co., Ltd.) C:\WINDOWS\SysWOW64\GameMon.des
2016-11-20 18:08 - 2016-11-20 18:08 - 00000000 ____D C:\Program Files\Common Files\INCA Shared
2016-11-20 18:08 - 2005-01-03 07:43 - 00004682 _____ (INCA Internet Co., Ltd.) C:\WINDOWS\SysWOW64\npptNT2.sys
2016-11-20 18:08 - 2003-07-18 22:17 - 00005174 _____ C:\WINDOWS\SysWOW64\nppt9x.vxd
2016-11-20 13:27 - 2016-11-20 13:27 - 00000000 ____D C:\WINDOWS\Panther
2016-11-20 13:20 - 2016-11-20 13:20 - 00000276 _____ C:\Users\tobias\Desktop\Actions.xml
2016-11-20 13:20 - 2016-11-20 13:20 - 00000120 _____ C:\Users\tobias\Desktop\Auto Profiles.xml
2016-11-16 12:32 - 2016-11-16 12:32 - 00000222 _____ C:\Users\tobias\Desktop\Dishonored.url
2016-11-16 11:20 - 2016-11-16 11:21 - 06001376 _____ (Wargaming.net ) C:\Users\tobias\Downloads\WoWS_internet_install_eu.exe
2016-11-11 21:26 - 2016-11-11 21:26 - 00000219 _____ C:\Users\tobias\Desktop\Dota 2.url
2016-11-11 19:24 - 2016-11-09 21:22 - 00000000 ____D C:\Users\tobias\Desktop\tratape
2016-11-11 19:23 - 2016-11-11 19:23 - 22893850 _____ C:\Users\tobias\Downloads\tramald00r-tratape_tapez.eu.rar
2016-11-10 15:35 - 2016-11-10 15:36 - 03870449 _____ C:\Users\tobias\Downloads\bc3f6d75311aadecf3ad701b91b152ca.mpga
2016-11-10 13:23 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-10 13:23 - 2016-11-02 13:01 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-10 13:23 - 2016-11-02 12:13 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-10 13:23 - 2016-11-02 12:12 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-10 13:23 - 2016-11-02 12:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-10 13:23 - 2016-11-02 12:10 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-10 13:23 - 2016-11-02 12:09 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-10 13:23 - 2016-11-02 12:08 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-10 13:23 - 2016-11-02 12:08 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-10 13:23 - 2016-11-02 12:05 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-10 13:23 - 2016-11-02 12:05 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-10 13:23 - 2016-11-02 12:05 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-10 13:23 - 2016-11-02 12:02 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-10 13:23 - 2016-11-02 12:02 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-10 13:23 - 2016-11-02 12:01 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-10 13:23 - 2016-11-02 12:01 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-10 13:23 - 2016-11-02 12:00 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-10 13:23 - 2016-11-02 12:00 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-10 13:23 - 2016-11-02 11:49 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-10 13:23 - 2016-11-02 11:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-10 13:23 - 2016-11-02 11:46 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-10 13:23 - 2016-11-02 11:39 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-10 13:23 - 2016-11-02 11:33 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-10 13:23 - 2016-11-02 11:33 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-10 13:23 - 2016-11-02 11:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-10 13:23 - 2016-11-02 11:31 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-10 13:23 - 2016-11-02 11:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-10 13:23 - 2016-11-02 11:30 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-10 13:23 - 2016-11-02 11:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-10 13:23 - 2016-11-02 11:29 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-10 13:23 - 2016-11-02 11:29 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-10 13:23 - 2016-11-02 11:28 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-10 13:23 - 2016-11-02 11:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-10 13:23 - 2016-11-02 11:28 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-10 13:23 - 2016-11-02 11:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-10 13:23 - 2016-11-02 11:28 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-10 13:23 - 2016-11-02 11:27 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-10 13:23 - 2016-11-02 11:26 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-10 13:23 - 2016-11-02 11:26 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-10 13:23 - 2016-11-02 11:26 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-10 13:23 - 2016-11-02 11:25 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-10 13:23 - 2016-11-02 11:23 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-10 13:23 - 2016-11-02 11:22 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-10 13:23 - 2016-11-02 11:19 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-10 13:23 - 2016-11-02 11:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-10 13:23 - 2016-11-02 11:18 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-10 13:23 - 2016-11-02 11:17 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-10 13:23 - 2016-11-02 11:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-10 13:23 - 2016-11-02 11:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-10 13:23 - 2016-11-02 09:20 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-10 13:22 - 2016-11-02 12:22 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-10 13:22 - 2016-11-02 12:22 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-10 13:22 - 2016-11-02 12:20 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-10 13:22 - 2016-11-02 12:15 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-10 13:22 - 2016-11-02 12:15 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-10 13:22 - 2016-11-02 12:14 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-10 13:22 - 2016-11-02 12:13 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-10 13:22 - 2016-11-02 12:13 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-10 13:22 - 2016-11-02 12:13 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-10 13:22 - 2016-11-02 12:13 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-10 13:22 - 2016-11-02 12:12 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-10 13:22 - 2016-11-02 12:08 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-10 13:22 - 2016-11-02 12:08 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-10 13:22 - 2016-11-02 12:05 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-10 13:22 - 2016-11-02 12:05 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-10 13:22 - 2016-11-02 12:04 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-10 13:22 - 2016-11-02 12:04 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-10 13:22 - 2016-11-02 12:03 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-10 13:22 - 2016-11-02 12:03 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-10 13:22 - 2016-11-02 12:01 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-10 13:22 - 2016-11-02 12:01 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-10 13:22 - 2016-11-02 12:01 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-10 13:22 - 2016-11-02 12:01 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-10 13:22 - 2016-11-02 12:00 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-10 13:22 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-10 13:22 - 2016-11-02 11:59 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-10 13:22 - 2016-11-02 11:56 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-10 13:22 - 2016-11-02 11:50 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-10 13:22 - 2016-11-02 11:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-10 13:22 - 2016-11-02 11:48 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-10 13:22 - 2016-11-02 11:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-10 13:22 - 2016-11-02 11:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-10 13:22 - 2016-11-02 11:44 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-10 13:22 - 2016-11-02 11:44 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-10 13:22 - 2016-11-02 11:43 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-10 13:22 - 2016-11-02 11:43 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-10 13:22 - 2016-11-02 11:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-10 13:22 - 2016-11-02 11:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-10 13:22 - 2016-11-02 11:42 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-10 13:22 - 2016-11-02 11:42 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-10 13:22 - 2016-11-02 11:42 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-10 13:22 - 2016-11-02 11:42 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-10 13:22 - 2016-11-02 11:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-10 13:22 - 2016-11-02 11:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-10 13:22 - 2016-11-02 11:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-10 13:22 - 2016-11-02 11:40 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-10 13:22 - 2016-11-02 11:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-10 13:22 - 2016-11-02 11:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-10 13:22 - 2016-11-02 11:38 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-10 13:22 - 2016-11-02 11:38 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-10 13:22 - 2016-11-02 11:37 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-10 13:22 - 2016-11-02 11:36 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-10 13:22 - 2016-11-02 11:36 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-10 13:22 - 2016-11-02 11:36 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-10 13:22 - 2016-11-02 11:35 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-10 13:22 - 2016-11-02 11:34 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-10 13:22 - 2016-11-02 11:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-10 13:22 - 2016-11-02 11:27 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-10 13:22 - 2016-11-02 11:27 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-10 13:22 - 2016-11-02 11:24 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-10 13:22 - 2016-11-02 11:23 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-10 13:22 - 2016-11-02 11:23 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-10 13:22 - 2016-11-02 11:23 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-10 13:22 - 2016-11-02 11:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-10 13:22 - 2016-11-02 11:23 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-10 13:22 - 2016-11-02 11:22 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-10 13:22 - 2016-11-02 11:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-10 13:22 - 2016-11-02 11:22 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-10 13:22 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-10 13:22 - 2016-11-02 11:21 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-10 13:22 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-10 13:22 - 2016-11-02 11:20 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-10 13:22 - 2016-11-02 11:20 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-10 13:22 - 2016-11-02 11:18 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-10 13:22 - 2016-11-02 11:18 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-10 13:22 - 2016-11-02 11:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-10 13:22 - 2016-11-02 11:17 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-10 13:22 - 2016-11-02 11:17 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-10 13:22 - 2016-11-02 11:17 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-10 13:22 - 2016-11-02 11:17 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-10 13:22 - 2016-11-02 11:17 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-10 13:22 - 2016-11-02 11:15 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-10 13:22 - 2016-11-02 11:14 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-10 13:22 - 2016-11-02 11:13 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-10 13:22 - 2016-11-02 11:13 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-10 13:22 - 2016-11-02 11:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-10 13:22 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-10 13:22 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-10 13:22 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-10 13:21 - 2016-11-02 12:20 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-10 13:21 - 2016-11-02 12:05 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-10 13:21 - 2016-11-02 12:04 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-10 13:21 - 2016-11-02 12:02 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-10 13:21 - 2016-11-02 12:02 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-10 13:21 - 2016-11-02 12:00 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-10 13:21 - 2016-11-02 12:00 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-10 13:21 - 2016-11-02 11:56 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-10 13:21 - 2016-11-02 11:56 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-10 13:21 - 2016-11-02 11:56 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-10 13:21 - 2016-11-02 11:56 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-10 13:21 - 2016-11-02 11:55 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-10 13:21 - 2016-11-02 11:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-10 13:21 - 2016-11-02 11:47 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-10 13:21 - 2016-11-02 11:47 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-10 13:21 - 2016-11-02 11:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-10 13:21 - 2016-11-02 11:45 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-10 13:21 - 2016-11-02 11:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-10 13:21 - 2016-11-02 11:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-10 13:21 - 2016-11-02 11:43 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-10 13:21 - 2016-11-02 11:42 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-10 13:21 - 2016-11-02 11:42 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-10 13:21 - 2016-11-02 11:40 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-10 13:21 - 2016-11-02 11:34 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-10 13:21 - 2016-11-02 11:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-10 13:21 - 2016-11-02 11:32 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-10 13:21 - 2016-11-02 11:31 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-10 13:21 - 2016-11-02 11:30 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-10 13:21 - 2016-11-02 11:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-10 13:21 - 2016-11-02 11:28 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-10 13:21 - 2016-11-02 11:28 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-10 13:21 - 2016-11-02 11:28 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-10 13:21 - 2016-11-02 11:26 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-10 13:21 - 2016-11-02 11:26 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-10 13:21 - 2016-11-02 11:24 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-10 13:21 - 2016-11-02 11:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-10 13:21 - 2016-11-02 11:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-10 13:21 - 2016-11-02 11:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-10 13:21 - 2016-11-02 11:15 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-09 19:06 - 2016-11-09 19:06 - 00002179 _____ C:\Users\tobias\Desktop\League of Legends.lnk
2016-11-08 17:34 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-11-08 17:34 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-11-08 17:34 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-11-08 17:34 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-11-08 17:34 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-11-08 17:34 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-11-08 17:34 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-11-08 17:34 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-11-08 17:00 - 2016-11-08 17:45 - 138997893 _____ C:\Users\tobias\Downloads\KarAnd_Turb0.zip
2016-11-08 16:58 - 2016-11-08 17:54 - 171300295 _____ C:\Users\tobias\Downloads\KarAn-PilPla2CNO.zip
2016-11-08 13:49 - 2016-11-09 15:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League client alpha
2016-11-08 13:43 - 2016-11-08 13:46 - 113651192 _____ (Riot Games, Inc) C:\Users\tobias\Downloads\League client alpha installer EUW.exe
2016-11-07 20:34 - 2016-11-07 20:34 - 00000222 _____ C:\Users\tobias\Desktop\DmC Devil May Cry.url
2016-11-07 10:19 - 2016-11-07 10:19 - 00001488 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-11-07 10:18 - 2016-11-07 10:18 - 00003920 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:18 - 2016-11-07 10:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-07 10:18 - 2016-10-25 21:19 - 01852352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-11-07 10:18 - 2016-10-25 21:19 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-11-07 10:18 - 2016-10-25 21:19 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-11-07 10:18 - 2016-10-25 21:19 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-11-07 10:18 - 2016-10-25 21:19 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-11-07 10:16 - 2016-11-07 10:16 - 00003984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:16 - 2016-11-07 10:16 - 00003956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:16 - 2016-11-07 10:16 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:16 - 2016-11-07 10:16 - 00003732 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:16 - 2016-11-07 10:16 - 00003690 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:15 - 2016-10-25 21:17 - 06386232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-11-07 10:15 - 2016-10-25 21:17 - 02475968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-11-07 10:15 - 2016-10-25 21:17 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-11-07 10:15 - 2016-10-25 21:17 - 00548408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-11-07 10:15 - 2016-10-25 21:17 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-11-07 10:15 - 2016-10-25 21:17 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-11-07 10:15 - 2016-10-25 21:17 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-11-07 10:15 - 2016-10-25 20:12 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2016-11-07 10:15 - 2016-10-24 07:31 - 07507695 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-11-07 10:14 - 2016-11-21 09:53 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-07 10:05 - 2016-10-26 23:17 - 00048704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2016-11-07 10:05 - 2016-10-25 22:40 - 40123840 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 35224632 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 34711096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 28202040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 10912232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 10782952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 10332664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 09120512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 08913512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 08723968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 03927288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 03468736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 02940352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 02574784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 01953336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437570.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 01586744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437570.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 01037248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00975296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00943552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00897080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00802768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00683640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00644112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00572888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00438208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00394704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00390200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00327224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-11-07 10:05 - 2016-10-25 22:40 - 00042296 _____ C:\WINDOWS\system32\nvinfo.pb
2016-11-07 10:05 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-11-07 10:05 - 2016-10-25 22:40 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2016-11-07 10:05 - 2016-10-25 21:19 - 00104384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-11-07 10:05 - 2016-10-25 21:19 - 00094144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-11-07 10:05 - 2016-10-25 21:19 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-11-07 09:52 - 2016-11-07 09:52 - 00000000 ____D C:\Users\tobias\Documents\EA Games
2016-11-07 08:52 - 2016-11-07 08:57 - 00000000 ____D C:\Users\tobias\AppData\Local\Skyrim
2016-11-07 08:51 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-11-06 21:08 - 2016-11-07 09:53 - 00000000 ____D C:\Users\tobias\AppData\Roaming\Spotify
2016-11-06 21:08 - 2016-11-06 21:09 - 00000000 ____D C:\Users\tobias\AppData\Local\Spotify
2016-11-06 20:15 - 2016-11-06 20:15 - 00000221 _____ C:\Users\tobias\Desktop\Mirror's Edge.url
2016-11-06 14:47 - 2016-11-06 14:47 - 00000221 _____ C:\Users\tobias\Desktop\The Elder Scrolls V Skyrim.url
2016-11-05 12:14 - 2016-11-05 12:14 - 00000872 _____ C:\Users\Public\Desktop\REAPER (x64).lnk
2016-11-05 12:14 - 2016-11-05 12:14 - 00000000 ____D C:\Users\tobias\AppData\Roaming\REAPER
2016-11-05 12:14 - 2016-11-05 12:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)
2016-11-05 12:14 - 2016-11-05 12:14 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2016-11-05 12:13 - 2016-11-05 12:19 - 00000000 ____D C:\Program Files\REAPER (x64)
2016-11-01 22:11 - 2016-11-01 22:11 - 00000000 ____D C:\Program Files (x86)\Sony
2016-10-31 12:25 - 2016-11-20 17:08 - 00001092 _____ C:\Users\tobias\Desktop\Profiles.xml
2016-10-31 12:25 - 2013-05-19 01:02 - 00039168 _____ (Scarlet.Crush Productions) C:\WINDOWS\system32\Drivers\ScpVBus.sys
2016-10-31 12:24 - 2016-11-02 16:51 - 00573952 _____ () C:\Users\tobias\Desktop\DS4Updater.exe
2016-10-31 12:24 - 2016-10-31 12:24 - 03168256 _____ () C:\Users\tobias\Desktop\DS4Windows.exe
2016-10-30 22:29 - 2016-10-30 22:29 - 00000585 _____ C:\Users\Public\Desktop\Street Fighter V.lnk
2016-10-30 20:07 - 2016-10-30 20:07 - 00000221 _____ C:\Users\tobias\Desktop\The Last Remnant.url
2016-10-30 19:54 - 2016-11-08 17:34 - 00000000 ____D C:\Users\tobias\Documents\My Games
2016-10-29 12:27 - 2016-10-15 05:48 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-29 12:27 - 2016-10-15 05:26 - 01990648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-29 12:27 - 2016-10-15 05:26 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-29 12:27 - 2016-10-15 05:15 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-10-29 12:27 - 2016-10-15 04:53 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-29 12:27 - 2016-10-15 04:52 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-29 12:27 - 2016-08-27 06:12 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00595296 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00283488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-29 12:26 - 2016-10-15 05:51 - 00232800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-29 12:26 - 2016-10-15 05:43 - 01356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-29 12:26 - 2016-10-15 05:41 - 05622088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-29 12:26 - 2016-10-15 05:38 - 00500064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-10-29 12:26 - 2016-10-15 05:37 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-10-29 12:26 - 2016-10-15 05:34 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-10-29 12:26 - 2016-10-15 05:33 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2016-10-29 12:26 - 2016-10-15 05:31 - 02827864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-10-29 12:26 - 2016-10-15 05:31 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-29 12:26 - 2016-10-15 05:31 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-29 12:26 - 2016-10-15 05:30 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-10-29 12:26 - 2016-10-15 05:30 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-10-29 12:26 - 2016-10-15 05:30 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-10-29 12:26 - 2016-10-15 05:29 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-29 12:26 - 2016-10-15 05:29 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-29 12:26 - 2016-10-15 05:29 - 00908640 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-10-29 12:26 - 2016-10-15 05:29 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-29 12:26 - 2016-10-15 05:29 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-10-29 12:26 - 2016-10-15 05:26 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-29 12:26 - 2016-10-15 05:26 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-10-29 12:26 - 2016-10-15 05:26 - 00691080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-10-29 12:26 - 2016-10-15 05:25 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-29 12:26 - 2016-10-15 05:25 - 00742704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-29 12:26 - 2016-10-15 05:22 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-10-29 12:26 - 2016-10-15 05:21 - 00292872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-10-29 12:26 - 2016-10-15 05:18 - 00749920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-10-29 12:26 - 2016-10-15 05:10 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-10-29 12:26 - 2016-10-15 05:06 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-10-29 12:26 - 2016-10-15 05:05 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-29 12:26 - 2016-10-15 05:01 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-29 12:26 - 2016-10-15 05:00 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-10-29 12:26 - 2016-10-15 05:00 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-10-29 12:26 - 2016-10-15 05:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2016-10-29 12:26 - 2016-10-15 04:59 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-10-29 12:26 - 2016-10-15 04:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-10-29 12:26 - 2016-10-15 04:59 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-29 12:26 - 2016-10-15 04:58 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-10-29 12:26 - 2016-10-15 04:57 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-10-29 12:26 - 2016-10-15 04:57 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-29 12:26 - 2016-10-15 04:57 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-10-29 12:26 - 2016-10-15 04:57 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2016-10-29 12:26 - 2016-10-15 04:56 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2016-10-29 12:26 - 2016-10-15 04:56 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2016-10-29 12:26 - 2016-10-15 04:56 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-29 12:26 - 2016-10-15 04:56 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-10-29 12:26 - 2016-10-15 04:56 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-29 12:26 - 2016-10-15 04:56 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-10-29 12:26 - 2016-10-15 04:56 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-10-29 12:26 - 2016-10-15 04:56 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-10-29 12:26 - 2016-10-15 04:55 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2016-10-29 12:26 - 2016-10-15 04:55 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-10-29 12:26 - 2016-10-15 04:55 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-29 12:26 - 2016-10-15 04:55 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2016-10-29 12:26 - 2016-10-15 04:55 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingFolder.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-10-29 12:26 - 2016-10-15 04:53 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-10-29 12:26 - 2016-10-15 04:52 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-10-29 12:26 - 2016-10-15 04:52 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-10-29 12:26 - 2016-10-15 04:52 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2016-10-29 12:26 - 2016-10-15 04:52 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2016-10-29 12:26 - 2016-10-15 04:51 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-10-29 12:26 - 2016-10-15 04:51 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-10-29 12:26 - 2016-10-15 04:50 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-10-29 12:26 - 2016-10-15 04:49 - 01913344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-29 12:26 - 2016-10-15 04:49 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-10-29 12:26 - 2016-10-15 04:49 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-10-29 12:26 - 2016-10-15 04:49 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-29 12:26 - 2016-10-15 04:49 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-10-29 12:26 - 2016-10-15 04:49 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-29 12:26 - 2016-10-15 04:48 - 01554944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-29 12:26 - 2016-10-15 04:48 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-10-29 12:26 - 2016-10-15 04:48 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-29 12:26 - 2016-10-15 04:47 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-29 12:26 - 2016-10-15 04:47 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-10-29 12:26 - 2016-10-15 04:47 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-29 12:26 - 2016-10-15 04:47 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-10-29 12:26 - 2016-10-15 04:46 - 03287552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-29 12:26 - 2016-10-15 04:46 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-29 12:26 - 2016-10-15 04:46 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-10-29 12:26 - 2016-10-15 04:45 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-29 12:26 - 2016-10-15 04:45 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-29 12:26 - 2016-10-15 04:44 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-10-29 12:26 - 2016-10-15 04:44 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-29 12:26 - 2016-10-15 04:44 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2016-10-29 12:26 - 2016-10-15 04:43 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-10-29 12:26 - 2016-10-15 04:43 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-10-29 12:26 - 2016-10-15 04:43 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2016-10-29 12:26 - 2016-10-15 04:43 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-10-29 12:26 - 2016-10-15 04:42 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-10-29 12:26 - 2016-10-15 04:42 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-10-29 12:26 - 2016-10-15 04:42 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-10-29 12:26 - 2016-10-15 04:41 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-29 12:26 - 2016-10-15 04:41 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-10-29 12:26 - 2016-10-15 04:41 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-29 12:26 - 2016-10-15 04:41 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-10-29 12:26 - 2016-10-15 04:38 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-10-29 12:26 - 2016-10-15 04:38 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-29 12:26 - 2016-10-15 04:38 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-10-29 12:26 - 2016-10-15 04:37 - 01980416 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-29 12:26 - 2016-10-15 04:37 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-29 12:26 - 2016-10-15 04:37 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-29 12:26 - 2016-10-15 04:37 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-10-29 12:26 - 2016-10-15 04:37 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2016-10-29 12:26 - 2016-10-15 04:36 - 02290176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-29 12:26 - 2016-10-15 04:36 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-29 12:26 - 2016-10-15 04:36 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-10-29 12:26 - 2016-10-15 04:36 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-10-29 12:26 - 2016-10-15 04:36 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-10-29 12:26 - 2016-10-15 04:36 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-10-29 12:26 - 2016-10-15 04:36 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmifw.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 03054080 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 02708992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-10-29 12:26 - 2016-10-15 04:34 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-29 12:26 - 2016-10-15 04:34 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-10-29 12:26 - 2016-10-15 04:32 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-29 12:26 - 2016-10-15 04:31 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-10-29 12:26 - 2016-09-10 14:21 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-10-29 12:26 - 2016-08-06 05:17 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-29 12:25 - 2016-10-15 05:38 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-10-29 12:25 - 2016-10-15 05:31 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-29 12:25 - 2016-10-15 05:30 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-10-29 12:25 - 2016-10-15 05:26 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-29 12:25 - 2016-10-15 05:26 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-29 12:25 - 2016-10-15 05:21 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-10-29 12:25 - 2016-10-15 05:21 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-10-29 12:25 - 2016-10-15 05:21 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-10-29 12:25 - 2016-10-15 05:20 - 02276736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-10-29 12:25 - 2016-10-15 05:19 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-10-29 12:25 - 2016-10-15 05:18 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-10-29 12:25 - 2016-10-15 05:18 - 01556712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-10-29 12:25 - 2016-10-15 05:18 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-10-29 12:25 - 2016-10-15 05:15 - 01853776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-10-29 12:25 - 2016-10-15 05:15 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-10-29 12:25 - 2016-10-15 05:15 - 00687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-10-29 12:25 - 2016-10-15 05:11 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-10-29 12:25 - 2016-10-15 05:00 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2016-10-29 12:25 - 2016-10-15 04:59 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2016-10-29 12:25 - 2016-10-15 04:56 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2016-10-29 12:25 - 2016-10-15 04:56 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-10-29 12:25 - 2016-10-15 04:56 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-10-29 12:25 - 2016-10-15 04:55 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-10-29 12:25 - 2016-10-15 04:54 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2016-10-29 12:25 - 2016-10-15 04:52 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-29 12:25 - 2016-10-15 04:51 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-10-29 12:25 - 2016-10-15 04:47 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-10-29 12:25 - 2016-10-15 04:45 - 01790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-10-29 12:25 - 2016-10-15 04:44 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-10-29 12:25 - 2016-10-15 04:42 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-29 12:25 - 2016-10-15 04:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2016-10-29 12:25 - 2016-10-15 04:41 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-10-29 12:25 - 2016-10-15 04:39 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-10-29 12:25 - 2016-10-15 04:39 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-10-29 12:25 - 2016-10-15 04:37 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-10-29 12:25 - 2016-10-15 04:37 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-10-29 12:25 - 2016-10-15 04:36 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-10-29 12:25 - 2016-10-15 04:36 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-29 12:25 - 2016-10-15 04:34 - 02476544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-27 19:07 - 2016-11-04 20:10 - 00000000 ____D C:\Users\tobias\AppData\Roaming\NVIDIA
2016-10-27 09:11 - 2016-10-27 09:11 - 00000000 ____D C:\ProgramData\AVAST Software
2016-10-27 09:11 - 2016-10-27 09:11 - 00000000 ____D C:\Program Files\AVAST Software
2016-10-27 09:09 - 2016-10-27 09:10 - 00000000 ____D C:\Users\tobias\AppData\Roaming\uTorrent
2016-10-27 09:07 - 2016-10-27 09:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2016-10-27 08:59 - 2016-10-27 09:10 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2016-10-27 08:53 - 2016-10-27 08:53 - 00000000 ____D C:\Users\tobias\AppData\Local\Blizzard Entertainment
2016-10-27 08:53 - 2016-10-27 08:53 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2016-10-27 08:50 - 2016-10-27 08:51 - 00000000 ____D C:\ProgramData\Battle.net

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-21 14:39 - 2016-03-15 18:50 - 00002339 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-21 13:09 - 2016-03-14 12:55 - 00000000 ____D C:\Program Files (x86)\Steam
2016-11-21 12:53 - 2016-09-25 18:26 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-21 11:26 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-20 18:10 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-20 13:40 - 2016-09-25 19:07 - 00003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2016-11-20 13:33 - 2016-07-16 23:51 - 00957494 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-20 13:33 - 2016-07-16 23:51 - 00216786 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-20 13:33 - 2016-04-17 16:29 - 02311786 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-20 13:31 - 2016-09-25 18:37 - 00000000 ____D C:\Users\tobias
2016-11-20 13:29 - 2016-09-25 18:30 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-20 13:29 - 2016-04-17 16:45 - 00000000 __SHD C:\Users\tobias\IntelGraphicsProfiles
2016-11-20 13:26 - 2016-09-25 19:07 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-20 13:25 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-11-20 10:42 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-19 00:04 - 2016-07-26 19:27 - 00000000 ____D C:\Users\tobias\AppData\Roaming\Skype
2016-11-18 21:47 - 2016-08-09 20:28 - 00000000 ____D C:\Users\tobias\AppData\Local\Overwolf
2016-11-18 21:01 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-11-17 21:13 - 2016-08-09 20:28 - 00000000 ____D C:\Users\tobias\AppData\Roaming\TS3Client
2016-11-16 08:35 - 2016-08-09 20:30 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-11-15 20:31 - 2016-08-09 20:30 - 00000002 _____ C:\END
2016-11-14 00:39 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-12 23:21 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-12 12:44 - 2016-03-14 13:20 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-12 06:12 - 2016-10-03 09:33 - 00000000 ____D C:\WINDOWS\Minidump
2016-11-11 11:32 - 2016-03-14 07:59 - 00000000 ____D C:\Users\tobias\AppData\Local\Packages
2016-11-11 08:34 - 2016-02-13 18:30 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-11 01:43 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-11 01:43 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-11 01:11 - 2016-09-25 18:26 - 00203376 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-10 15:24 - 2016-07-27 13:31 - 00000000 ____D C:\Users\tobias\Documents\Unbenannt_Aufgenommen
2016-11-10 15:06 - 2016-07-27 13:31 - 00585813 _____ C:\Users\tobias\Documents\Unbenannt.ses
2016-11-10 14:47 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-09 20:03 - 2016-06-30 21:12 - 00010506 _____ C:\Users\tobias\Desktop\Neues Textdokument.txt
2016-11-09 15:03 - 2016-06-16 15:13 - 00002167 _____ C:\Users\tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\League of Legends.lnk
2016-11-09 13:48 - 2016-04-08 07:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 13:45 - 2016-04-08 07:28 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-09 02:43 - 2016-09-25 19:07 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-11-08 13:46 - 2016-04-03 08:36 - 00000000 ____D C:\Users\tobias\AppData\Local\CrashDumps
2016-11-07 15:44 - 2016-06-16 14:39 - 00000000 ____D C:\Users\tobias\AppData\Local\Ubisoft Game Launcher
2016-11-07 12:25 - 2016-03-17 21:43 - 00000000 ____D C:\Users\tobias\AppData\Local\NVIDIA Corporation
2016-11-07 10:22 - 2016-03-17 21:42 - 00000000 ____D C:\Users\tobias\AppData\Local\NVIDIA
2016-11-07 10:19 - 2016-09-25 18:31 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-07 10:18 - 2016-09-25 18:30 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-07 10:17 - 2016-09-25 18:30 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-07 10:16 - 2016-05-07 18:37 - 00000000 ____D C:\Temp
2016-11-07 10:16 - 2016-04-19 11:25 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-07 10:15 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Help
2016-11-04 20:09 - 2016-09-25 19:07 - 00002668 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
2016-11-02 13:19 - 2016-03-14 12:03 - 00053008 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\TURegOpt.exe
2016-11-01 22:11 - 2016-08-20 16:08 - 00002153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PS4 Remote Play.lnk
2016-11-01 22:11 - 2016-08-20 16:08 - 00002141 _____ C:\Users\Public\Desktop\PS4 Remote Play.lnk
2016-10-29 12:35 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-29 12:34 - 2016-07-16 12:47 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-10-29 00:56 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-28 18:47 - 2016-06-02 12:06 - 00066932 ____H C:\WINDOWS\SysWOW64\mlfcache.dat
2016-10-28 16:39 - 2016-03-15 18:50 - 00000000 ____D C:\Users\tobias\AppData\Local\Google
2016-10-28 11:24 - 2016-09-27 07:51 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-10-27 09:29 - 2016-09-19 18:44 - 00001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-10-27 09:29 - 2016-09-19 18:44 - 00001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-10-27 09:26 - 2016-07-26 19:27 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-27 09:26 - 2016-07-26 19:27 - 00000000 ____D C:\ProgramData\Skype
2016-10-27 09:24 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-10-27 09:18 - 2016-09-25 19:07 - 00003800 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2016-10-27 09:18 - 2016-09-25 19:07 - 00003576 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2016-10-24 19:23 - 2016-09-19 18:53 - 00000000 ___RD C:\Users\tobias\Dropbox

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-09-25 18:31 - 2016-09-25 18:31 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-17 22:36

==================== Ende von FRST.txt ============================

zatokabi · 21.11.2016, 16:48

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
durchgeführt von tobias (21-11-2016 16:37:02)
Gestartet von C:\Users\tobias\Downloads
Windows 10 Home Version 1607 (X64) (2016-09-25 18:12:58)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1706370716-399708057-1175344942-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1706370716-399708057-1175344942-503 - Limited - Disabled)
Gast (S-1-5-21-1706370716-399708057-1175344942-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1706370716-399708057-1175344942-1004 - Limited - Enabled)
tobias (S-1-5-21-1706370716-399708057-1175344942-1002 - Administrator - Enabled) => C:\Users\tobias

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Acer Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.3006 - Acer Incorporated)
Acer Games (HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Pokki_03d432a7e610c3e908213e7689d4342ce2111caf) (Version: 1.1.9.43466 - Pokki)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8101 - Acer Incorporated)
Acer Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.3104.3 - Acer Incorporated)
Acer Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.3104.6 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.3104 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8100 - Acer Incorporated)
Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.00.3000 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8100 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.00.3007 - Acer Incorporated)
Adobe Audition 3.0 (HKLM-x32\...\Adobe Audition 3.0) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Ansel (Version: 375.70 - NVIDIA Corporation) Hidden
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach)
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.62.2.46691 - AVG Technologies)
AVG PC TuneUp (x32 Version: 16.62.4 - AVG Technologies) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform)
CoolNovo (HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\ChromePlus) (Version: 2.0.9.20 - The Maple Studio)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3126.57 - CyberLink Corp.)
Dark Souls: Prepare to Die Edition (HKLM\...\Steam App 211420) (Version:  - FromSoftware)
Dishonored (HKLM\...\Steam App 205100) (Version:  - Arkane Studios)
DmC Devil May Cry (HKLM\...\Steam App 220440) (Version:  - Ninja Theory)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.3.2.2 - Dolby Laboratories Inc)
Dota 2 (HKLM\...\Steam App 570) (Version:  - Valve)
Dragon Age™ II (HKLM-x32\...\{4D565319-8B91-41CB-961C-0DDC86101AC5}) (Version: 1.04.8524.0 - Electronic Arts)
Dropbox (HKLM-x32\...\Dropbox) (Version: 12.4.22 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.47.1 - Dropbox, Inc.) Hidden
eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.10.2.18195 - Steinberg Media Technologies GmbH)
FMW 1 (Version: 1.132.1 - AVG Technologies) Hidden
GDMO (HKLM-x32\...\DMO_GSP) (Version:  - Movegames)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.17.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.69.5 - HTC)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8100 - Acer Incorporated)
Intel(R) Driver Update Utility 2.5 (x32 Version: 2.5.0.22 - Intel) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel(R) Product Improvement Program (x32 Version: 2.1.27.3 - Intel) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{aa1dec3b-dc4b-4db0-8c18-9157457eff1f}) (Version: 2.5.0.22 - Intel)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Mirror's Edge (HKLM\...\Steam App 17410) (Version:  - DICE)
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
Norton Online Backup (HKLM-x32\...\{E625FCA0-E43E-4D3B-92FF-4851308A0366}) (Version: 2.8.0.44 - Symantec Corporation)
Norton Online Backup (x32 Version: 4.5.0.9 - Symantec Corporation) Hidden
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.02.2009 - Acer)
OnTopReplica (HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\OnTopReplica) (Version: 3.4 - Lorenz Cuno Klopfenstein)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.99.218.0 - Overwolf Ltd.)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Pokki (HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Pokki) (Version: 0.265.14.261 - Pokki)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PS4 Remote Play (HKLM-x32\...\{A8AEF812-611C-4580-9193-ECFB30B1A411}) (Version: 1.5.0.08251 - Sony Interactive Entertainment Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.07 - Qualcomm Atheros)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.20.15.29092 - Razer Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.28145 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7027 - Realtek Semiconductor Corp.)
REAPER (x64) (HKLM\...\REAPER) (Version:  - )
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.1.57.ge7405149 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Street Fighter V (HKLM-x32\...\Street Fighter V_is1) (Version:  - )
Street Fighter X Tekken (HKLM-x32\...\{43430FA5-AF68-4A2D-A7D4-891000008200}) (Version: 1.0.0.0 - CAPCOM U.S.A., INC)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.4 - Synaptics Incorporated)
TeamSpeak 3 Client (HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
The Chronicles of Emerland Solitaire (x32 Version: 3.0.2.32 - WildTangent) Hidden
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - Ubisoft)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Last Remnant (HKLM\...\Steam App 23310) (Version:  - SQUARE ENIX)
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 20.0 - Ubisoft)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.10.20 - WildTangent) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0EB4FDED-361D-45ED-8F15-6E1BC064CFFF} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {0F3F95BC-245B-4991-B2CD-6816DD744440} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {14E9FC72-533E-43B9-A13F-0F6AFFF45636} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {1E39E9D2-CEDF-4156-9C36-F8C6F2B0EADC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-02-12] (Piriform Ltd)
Task: {23EE57EC-5ABD-42B8-8E41-DCF44BC8D73E} - \McAfee\McAfee Idle Detection Task -> Keine Datei <==== ACHTUNG
Task: {262646C1-913C-4130-BD4E-1DC84B9C8397} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {2D2D1FAF-716A-43F4-A1BD-89D417C7AAB9} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3581E7A9-37F1-41BF-9458-927A879C4AB6} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {3665BFAC-F238-4010-87EC-AF716DFC0C17} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2016-11-02] (AVG Technologies CZ, s.r.o.)
Task: {36A434AB-207E-40C3-989E-DCF0E9097530} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-08-03] (Acer Incorporate)
Task: {3C99614F-42FF-4A7A-965E-A5F499B2F042} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [2013-07-26] (Acer Incorporated)
Task: {41235514-2B67-4E2E-9D7D-3ABCB38668EB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-15] (Google Inc.)
Task: {43ACF8C8-A288-4406-85DC-BB40351E1BCC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {470443B1-4ED4-430B-BEC4-1DF05C0DD8A7} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {47E53981-B580-4EB9-8D73-38029FE0AE90} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2013-08-02] (Acer Incorporate)
Task: {48E98EF4-08EE-45C4-806F-48B05E44B479} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {5105A66C-0F2D-4DA8-9140-3770A73FC66A} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.5.0.9\\Ara.exe [2013-08-07] (Symantec Corporation)
Task: {63C42C91-034D-4051-871E-6C6D9ADC734F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {6D250451-E34D-4830-9AC5-C455A5658F46} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {759EAE5C-C44D-442E-AF75-13C5AB19B592} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-10-25] (NVIDIA Corporation)
Task: {763FDF22-7254-4D8F-9B23-1C527DD4ECE7} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-11-07] (Overwolf LTD)
Task: {83F5F324-6A13-4465-9795-BB53CAF1E0FE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-19] (Dropbox, Inc.)
Task: {8412C015-FFF3-4645-9DDB-CB53279A5BD1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {862A78BD-E4E7-4E8B-AD5F-BFCDC516C681} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {89DDD916-99B9-4754-8EC0-4F584E4817A9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {8C7A8F3A-F23F-41EE-B5CD-5A5570DE30A8} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {98D1596B-75B7-4117-BB1E-F90324D00225} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {A5099432-A615-4E9D-9A2B-9F9B98CB1A5B} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-10-25] (NVIDIA Corporation)
Task: {AB35E83D-2BB4-4919-8D9A-667AB43C75C4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {AF0A92BE-1F6B-4ABD-A067-2390A7D0E916} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {BF9C267D-3F13-4AC1-BA2B-975775E12EB5} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {C8B26F75-8E3A-478F-91B5-FD1CE207A280} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {CB43B97A-C600-4BC8-9067-E77A57420A4E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-19] (Dropbox, Inc.)
Task: {D25D0621-4F37-47DA-AB1C-7F62564CF90C} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {D67E1D69-5D2B-414C-929D-BA2230DE3264} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {D9DEC8AB-B1BF-42FF-908A-46E8452A77E7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {DC389096-0403-47C7-BBE1-8450FE294CFB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {E30F24A3-3F7F-44CE-B5B7-A912BE31627D} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
Task: {EB50EAB8-5CE9-4FD6-AFEF-E8BC3007A428} - System32\Tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeReminderTask => C:\WINDOWS\System32\GWX\GWX.exe
Task: {EC86323B-9008-49A9-A52C-2E1EBE03E8E0} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-07-10] (Acer Incorporated)
Task: {F15BA4BB-AAB7-479A-A6C4-4DBE57F50EDE} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-08] ()
Task: {F7CE6FFA-F2DF-48C6-B1DD-C1C30AC10960} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-11] (Adobe Systems Incorporated)
Task: {F83F44B7-EDD4-4FFD-84C3-BD4FB78BF51C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-15] (Google Inc.)
Task: {FAA86C73-9224-442F-8069-FAD3AD681A45} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-07-05] (Acer Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MoveGames\DMO_GSP\GameKing.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://dmo.gameking.com
ShortcutWithArgument: C:\Users\tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Ad.Block Plus.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=hapegbniiaedpdjilamlnefaafflfefc

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

cosinus · 21.11.2016, 21:47

1. Schritt: Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

2. Schritt: Kaspersky TDSS-Killer

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

zatokabi · 21.11.2016, 22:48

mbar log1

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2014.11.18.05
  rootkit: v2014.11.12.01

Windows 10 x64 NTFS
Internet Explorer 11.447.14393.0
tobias :: PCLOL [administrator]

21.11.2016 22:03:21
mbar-log-2016-11-21 (22-03-21).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 361934
Time elapsed: 13 minute(s), 36 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 6
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MRT.exe (Trojan.Agent) -> Delete on reboot. [7cc1ad90d5a7999d17b61fd5c04316ea]
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MsMpEng.exe (Security.Hijack) -> Delete on reboot. [4eef013c027a5fd7e105767e5ba85ca4]
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\svchost.exe (Security.Hijack) -> Delete on reboot. [a29b5fdeaece71c57e88d6210bf8f20e]
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MRT.exe (Trojan.Agent) -> Delete on reboot. [85b818259fdd191dddf04ba9a95a2cd4]
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MsMpEng.exe (Security.Hijack) -> Delete on reboot. [68d5023b91eb2313b92d3aba2cd7c838]
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\svchost.exe (Security.Hijack) -> Delete on reboot. [ee4f1d2092eafe38b056d91e927152ae]

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

mbar log2

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2014.11.18.05
  rootkit: v2014.11.12.01

Windows 10 x64 NTFS
Internet Explorer 11.447.14393.0
tobias :: PCLOL [administrator]

21.11.2016 22:26:29
mbar-log-2016-11-21 (22-26-29).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 361077
Time elapsed: 15 minute(s), 23 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

Code:

ATTFilter

22:42:23.0288 0x2798  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
22:42:23.0288 0x2798  UEFI system
22:42:27.0579 0x2798  ============================================================
22:42:27.0579 0x2798  Current date / time: 2016/11/21 22:42:27.0579
22:42:27.0603 0x2798  SystemInfo:
22:42:27.0603 0x2798  
22:42:27.0603 0x2798  OS Version: 10.0.14393 ServicePack: 0.0
22:42:27.0603 0x2798  Product type: Workstation
22:42:27.0603 0x2798  ComputerName: PCLOL
22:42:27.0603 0x2798  UserName: tobias
22:42:27.0603 0x2798  Windows directory: C:\WINDOWS
22:42:27.0603 0x2798  System windows directory: C:\WINDOWS
22:42:27.0603 0x2798  Running under WOW64
22:42:27.0603 0x2798  Processor architecture: Intel x64
22:42:27.0603 0x2798  Number of processors: 8
22:42:27.0603 0x2798  Page size: 0x1000
22:42:27.0603 0x2798  Boot type: Normal boot
22:42:27.0603 0x2798  CodeIntegrityOptions = 0x00000001
22:42:27.0603 0x2798  ============================================================
22:42:28.0553 0x2798  KLMD registered as C:\WINDOWS\system32\drivers\94609770.sys
22:42:28.0553 0x2798  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.447, osProperties = 0x19
22:42:31.0061 0x2798  System UUID: {66E7FB18-EA63-B243-9309-C2083080A6C8}
22:42:31.0974 0x2798  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:42:31.0980 0x2798  Drive \Device\Harddisk1\DR1 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:42:31.0999 0x2798  ============================================================
22:42:31.0999 0x2798  \Device\Harddisk0\DR0:
22:42:31.0999 0x2798  MBR partitions:
22:42:31.0999 0x2798  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A18A82
22:42:31.0999 0x2798  \Device\Harddisk1\DR1:
22:42:31.0999 0x2798  GPT partitions:
22:42:32.0000 0x2798  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {A886FF32-D0FE-485D-96A4-3ED2360DC0F1}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
22:42:32.0000 0x2798  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {1F6B2220-F748-476F-A66C-D43E571A8A28}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x96000
22:42:32.0000 0x2798  \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {098BAF92-499C-429C-B69D-D34878592540}, Name: Microsoft reserved partition, StartLBA 0x15E800, BlocksNum 0x40000
22:42:32.0000 0x2798  \Device\Harddisk1\DR1\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {4B72D3C0-BD8E-478E-B72E-BCBD93A37081}, Name: Basic data partition, StartLBA 0x19E800, BlocksNum 0x551A7000
22:42:32.0000 0x2798  \Device\Harddisk1\DR1\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {8BB2B1DA-1200-416F-A9DE-152BB6A506E2}, Name: Basic data partition, StartLBA 0x55345800, BlocksNum 0x2200800
22:42:32.0000 0x2798  MBR partitions:
22:42:32.0000 0x2798  ============================================================
22:42:32.0017 0x2798  C: <-> \Device\Harddisk1\DR1\Partition4
22:42:32.0033 0x2798  F: <-> \Device\Harddisk0\DR0\Partition1
22:42:32.0033 0x2798  ============================================================
22:42:32.0033 0x2798  Initialize success
22:42:32.0033 0x2798  ============================================================
22:43:14.0504 0x2868  ============================================================
22:43:14.0504 0x2868  Scan started
22:43:14.0504 0x2868  Mode: Manual; 
22:43:14.0504 0x2868  ============================================================
22:43:14.0504 0x2868  KSN ping started
22:43:14.0639 0x2868  KSN ping finished: true
22:43:19.0165 0x2868  ================ Scan system memory ========================
22:43:19.0165 0x2868  System memory - ok
22:43:19.0165 0x2868  ================ Scan services =============================
22:43:19.0312 0x2868  1394ohci - ok
22:43:19.0312 0x2868  3ware - ok
22:43:19.0331 0x2868  ACPI - ok
22:43:19.0334 0x2868  AcpiDev - ok
22:43:19.0334 0x2868  acpiex - ok
22:43:19.0334 0x2868  acpipagr - ok
22:43:19.0349 0x2868  AcpiPmi - ok
22:43:19.0365 0x2868  acpitime - ok
22:43:19.0428 0x2868  [ 9BAF21BA600EC4E5FD9A66AD3E4FF5A6, 5E02E5E80557F6EC870EB7CC2DE95169D4225B87A2FE7E796736205F51C15816 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:43:19.0433 0x2868  AdobeFlashPlayerUpdateSvc - ok
22:43:19.0449 0x2868  ADP80XX - ok
22:43:19.0449 0x2868  AFD - ok
22:43:19.0496 0x2868  ahcache - ok
22:43:19.0512 0x2868  AJRouter - ok
22:43:19.0512 0x2868  ALG - ok
22:43:19.0636 0x2868  [ 23CB92EE5654BA92619D796E3AC7DB86, DD4536B55F021990DDAD8864F9BAECCDE40B2B532F6FB0D6CF9EB1A6B112A983 ] ALSysIO         C:\Users\tobias\AppData\Local\Temp\ALSysIO64.sys
22:43:19.0636 0x2868  ALSysIO - ok
22:43:19.0636 0x2868  AmdK8 - ok
22:43:19.0636 0x2868  AmdPPM - ok
22:43:19.0636 0x2868  amdsata - ok
22:43:19.0636 0x2868  amdsbs - ok
22:43:19.0652 0x2868  amdxata - ok
22:43:19.0652 0x2868  AppID - ok
22:43:19.0652 0x2868  AppIDSvc - ok
22:43:19.0668 0x2868  Appinfo - ok
22:43:19.0668 0x2868  applockerfltr - ok
22:43:19.0683 0x2868  AppReadiness - ok
22:43:19.0715 0x2868  AppXSvc - ok
22:43:19.0715 0x2868  arcsas - ok
22:43:19.0715 0x2868  AsyncMac - ok
22:43:19.0733 0x2868  atapi - ok
22:43:19.0736 0x2868  athr - ok
22:43:19.0752 0x2868  AudioEndpointBuilder - ok
22:43:19.0752 0x2868  Audiosrv - ok
22:43:19.0883 0x2868  [ B890E8C5CBECEB1158D52B2B2842B4EF, FD6D0A95C27433F9BBC2D730BD2B86AE263092FBFF12589E5EEEFB577685C777 ] avgsvc          C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
22:43:19.0898 0x2868  avgsvc - ok
22:43:19.0898 0x2868  AxInstSV - ok
22:43:19.0898 0x2868  b06bdrv - ok
22:43:19.0898 0x2868  BasicDisplay - ok
22:43:19.0914 0x2868  BasicRender - ok
22:43:19.0914 0x2868  bcmfn - ok
22:43:19.0914 0x2868  bcmfn2 - ok
22:43:19.0936 0x2868  BDESVC - ok
22:43:19.0936 0x2868  Beep - ok
22:43:19.0951 0x2868  BFE - ok
22:43:19.0967 0x2868  BITS - ok
22:43:19.0983 0x2868  bowser - ok
22:43:19.0998 0x2868  BrokerInfrastructure - ok
22:43:19.0998 0x2868  Browser - ok
22:43:20.0014 0x2868  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS       C:\WINDOWS\System32\drivers\btath_bus.sys
22:43:20.0014 0x2868  BTATH_BUS - ok
22:43:20.0035 0x2868  [ C8BF11D79B29BB23A461B65B58BA8593, 35AFAD5ED40304976287E6C982085DF7A91FF48F0320DAC32370FA039AA03C69 ] BtFilter        C:\WINDOWS\system32\DRIVERS\btfilter.sys
22:43:20.0051 0x2868  BtFilter - ok
22:43:20.0067 0x2868  BthAvrcpTg - ok
22:43:20.0082 0x2868  BthEnum - ok
22:43:20.0082 0x2868  BthHFEnum - ok
22:43:20.0082 0x2868  bthhfhid - ok
22:43:20.0098 0x2868  BthHFSrv - ok
22:43:20.0136 0x2868  BthLEEnum - ok
22:43:20.0136 0x2868  BTHMODEM - ok
22:43:20.0136 0x2868  BthPan - ok
22:43:20.0152 0x2868  BTHPORT - ok
22:43:20.0152 0x2868  bthserv - ok
22:43:20.0167 0x2868  BTHUSB - ok
22:43:20.0183 0x2868  buttonconverter - ok
22:43:20.0183 0x2868  CapImg - ok
22:43:20.0352 0x2868  [ 0979E21A43F8F53945818D0E54FDF4C0, 1689C2F0FA646432814FC4FFA3D4514BC406E7E7DF11619B47C3EFF540809F94 ] CCDMonitorService C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe
22:43:20.0383 0x2868  CCDMonitorService - ok
22:43:20.0436 0x2868  [ A5C16A0BE89EE409732178BEB62F7EA7, D4B993F63CFD9B487BD53B532AB9435084B4C752F2731E189FA1420D516A4E95 ] ccSet_NARA      C:\WINDOWS\system32\drivers\NARAx64\0405000.009\ccSetx64.sys
22:43:20.0436 0x2868  ccSet_NARA - ok
22:43:20.0452 0x2868  cdfs - ok
22:43:20.0483 0x2868  CDPSvc - ok
22:43:20.0499 0x2868  CDPUserSvc - ok
22:43:20.0567 0x2868  cdrom - ok
22:43:20.0583 0x2868  CertPropSvc - ok
22:43:20.0614 0x2868  [ 8030844CFB108E9E26385FC0CC3A8340, 74DE72D76510D3C5290B03FB90AED134A42A35176A1F080405FCBDAB0CD493B7 ] cfwids          C:\WINDOWS\system32\drivers\cfwids.sys
22:43:20.0614 0x2868  cfwids - ok
22:43:20.0614 0x2868  cht4iscsi - ok
22:43:20.0614 0x2868  cht4vbd - ok
22:43:20.0638 0x2868  circlass - ok
22:43:20.0654 0x2868  CLFS - ok
22:43:20.0654 0x2868  ClipSVC - ok
22:43:20.0670 0x2868  clreg - ok
22:43:20.0670 0x2868  CmBatt - ok
22:43:20.0685 0x2868  CNG - ok
22:43:20.0685 0x2868  cnghwassist - ok
22:43:20.0738 0x2868  CompositeBus - ok
22:43:20.0738 0x2868  COMSysApp - ok
22:43:20.0754 0x2868  condrv - ok
22:43:20.0754 0x2868  CoreMessagingRegistrar - ok
22:43:20.0839 0x2868  [ 700A193A1555B083E3A08F5D3A844925, 974F7F0C78289EFE821407E418EB65A022D6445DED8EA112B9866784AF0221EE ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
22:43:20.0917 0x2868  cphs - ok
22:43:20.0933 0x2868  CryptSvc - ok
22:43:20.0942 0x2868  dam - ok
22:43:20.0992 0x2868  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
22:43:20.0995 0x2868  dbupdate - ok
22:43:20.0999 0x2868  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
22:43:21.0001 0x2868  dbupdatem - ok
22:43:21.0002 0x2868  dbx - ok
22:43:21.0017 0x2868  [ A8352D11F8E2F7E8FA0BD6F8EF599C61, 72B9F8B96433CCFE5CC9FB786BF976068BDDC04D39F9F3BCFA5132E61A97C3FD ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
22:43:21.0017 0x2868  DbxSvc - ok
22:43:21.0040 0x2868  DcomLaunch - ok
22:43:21.0042 0x2868  DcpSvc - ok
22:43:21.0058 0x2868  defragsvc - ok
22:43:21.0073 0x2868  DeviceAssociationService - ok
22:43:21.0073 0x2868  DeviceInstall - ok
22:43:21.0089 0x2868  DevQueryBroker - ok
22:43:21.0089 0x2868  Dfsc - ok
22:43:21.0104 0x2868  Dhcp - ok
22:43:21.0145 0x2868  diagnosticshub.standardcollector.service - ok
22:43:21.0176 0x2868  DiagTrack - ok
22:43:21.0192 0x2868  disk - ok
22:43:21.0207 0x2868  DmEnrollmentSvc - ok
22:43:21.0207 0x2868  dmvsc - ok
22:43:21.0207 0x2868  dmwappushservice - ok
22:43:21.0223 0x2868  Dnscache - ok
22:43:21.0223 0x2868  dot3svc - ok
22:43:21.0239 0x2868  DPS - ok
22:43:21.0244 0x2868  drmkaud - ok
22:43:21.0244 0x2868  DsmSvc - ok
22:43:21.0244 0x2868  DsSvc - ok
22:43:21.0260 0x2868  DXGKrnl - ok
22:43:21.0276 0x2868  EapHost - ok
22:43:21.0276 0x2868  ebdrv - ok
22:43:21.0291 0x2868  EFS - ok
22:43:21.0291 0x2868  EhStorClass - ok
22:43:21.0307 0x2868  EhStorTcgDrv - ok
22:43:21.0323 0x2868  embeddedmode - ok
22:43:21.0323 0x2868  EntAppSvc - ok
22:43:21.0508 0x2868  [ B5B5FC68BFB3F01267E54B236660E610, 103F90343B207AFB9151CDA71E70884FEB56E8596754D2AB8B3F46C045642F10 ] ePowerSvc       C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
22:43:21.0524 0x2868  ePowerSvc - ok
22:43:21.0524 0x2868  ErrDev - ok
22:43:21.0541 0x2868  EventSystem - ok
22:43:21.0543 0x2868  exfat - ok
22:43:21.0546 0x2868  fastfat - ok
22:43:21.0562 0x2868  Fax - ok
22:43:21.0562 0x2868  fdc - ok
22:43:21.0562 0x2868  fdPHost - ok
22:43:21.0562 0x2868  FDResPub - ok
22:43:21.0577 0x2868  fhsvc - ok
22:43:21.0608 0x2868  FileCrypt - ok
22:43:21.0608 0x2868  FileInfo - ok
22:43:21.0608 0x2868  Filetrace - ok
22:43:21.0624 0x2868  flpydisk - ok
22:43:21.0624 0x2868  FltMgr - ok
22:43:21.0661 0x2868  FontCache - ok
22:43:21.0745 0x2868  FontCache3.0.0.0 - ok
22:43:21.0761 0x2868  FrameServer - ok
22:43:21.0761 0x2868  FsDepends - ok
22:43:21.0777 0x2868  Fs_Rec - ok
22:43:21.0808 0x2868  fvevol - ok
22:43:21.0861 0x2868  [ 61ABC13A9A44E6D6793BAC4F35045025, 44B58E98CC0F87B79FAD0D1CA04447F9401E2467C238CB07295A53EE72771633 ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
22:43:21.0908 0x2868  GamesAppIntegrationService - ok
22:43:21.0944 0x2868  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
22:43:21.0946 0x2868  GamesAppService - ok
22:43:21.0962 0x2868  gencounter - ok
22:43:21.0962 0x2868  genericusbfn - ok
22:43:21.0962 0x2868  GPIOClx0101 - ok
22:43:21.0993 0x2868  gpsvc - ok
22:43:22.0009 0x2868  GpuEnergyDrv - ok
22:43:22.0046 0x2868  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:43:22.0046 0x2868  gupdate - ok
22:43:22.0062 0x2868  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:43:22.0062 0x2868  gupdatem - ok
22:43:22.0062 0x2868  HDAudBus - ok
22:43:22.0062 0x2868  HidBatt - ok
22:43:22.0062 0x2868  HidBth - ok
22:43:22.0077 0x2868  hidi2c - ok
22:43:22.0077 0x2868  hidinterrupt - ok
22:43:22.0077 0x2868  HidIr - ok
22:43:22.0093 0x2868  hidserv - ok
22:43:22.0124 0x2868  HidUsb - ok
22:43:22.0145 0x2868  HomeGroupListener - ok
22:43:22.0146 0x2868  HomeGroupProvider - ok
22:43:22.0162 0x2868  HpSAMD - ok
22:43:22.0178 0x2868  [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64        C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys
22:43:22.0178 0x2868  HTCAND64 - ok
22:43:22.0246 0x2868  [ 5C8BC8A28798FD010E7ABC4E0D588CAA, 622CAFD3DCBB05E15539589FDD4002DA6F24790FC55BDF05AA3D043E8A34E53E ] HTCMonitorService C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
22:43:22.0246 0x2868  HTCMonitorService - ok
22:43:22.0293 0x2868  [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot        C:\WINDOWS\system32\DRIVERS\htcnprot.sys
22:43:22.0308 0x2868  htcnprot - ok
22:43:22.0324 0x2868  [ 7C7C986776D00E575BFBDE5DCBDC615D, 4CF12851A5A45917C3A9139B19D79434F2038611B617F83A714506CC7A1A6C61 ] HtcVCom32       C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys
22:43:22.0346 0x2868  HtcVCom32 - ok
22:43:22.0362 0x2868  HTTP - ok
22:43:22.0477 0x2868  HvHost - ok
22:43:22.0493 0x2868  hvservice - ok
22:43:22.0493 0x2868  hwpolicy - ok
22:43:22.0508 0x2868  hyperkbd - ok
22:43:22.0524 0x2868  i8042prt - ok
22:43:22.0524 0x2868  iagpio - ok
22:43:22.0524 0x2868  iai2c - ok
22:43:22.0524 0x2868  iaLPSS2i_GPIO2 - ok
22:43:22.0524 0x2868  iaLPSS2i_I2C - ok
22:43:22.0542 0x2868  iaLPSSi_GPIO - ok
22:43:22.0546 0x2868  iaLPSSi_I2C - ok
22:43:22.0577 0x2868  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
22:43:22.0593 0x2868  iaStorA - ok
22:43:22.0593 0x2868  iaStorAV - ok
22:43:22.0593 0x2868  iaStorV - ok
22:43:22.0593 0x2868  ibbus - ok
22:43:22.0608 0x2868  icssvc - ok
22:43:22.0793 0x2868  [ 548712979B0BA12ECE2D8549797593D4, 6809412A76DE30C914A65BB8546E436AD540E00610D5D13FDE486C4446E95C24 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
22:43:22.0893 0x2868  igfx - ok
22:43:22.0924 0x2868  [ BA1BA1C9E40BCEB88678747C1E7C256F, C85CC690D353FCEBFD243304C25EEAA2BC13DB1E2A4C8C65371F455511540959 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
22:43:22.0941 0x2868  igfxCUIService2.0.0.0 - ok
22:43:22.0946 0x2868  IKEEXT - ok
22:43:22.0962 0x2868  IndirectKmd - ok
22:43:22.0993 0x2868  [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
22:43:22.0993 0x2868  intaud_WaveExtensible - ok
22:43:23.0124 0x2868  [ 8EB4D1D7806D05E5AB39D96464D801CA, 73853F56CD05243B1CABED2CA2420DFC8BA53F951030EECCD0D2A0E26D8A0D1B ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
22:43:23.0177 0x2868  IntcAzAudAddService - ok
22:43:23.0208 0x2868  [ D6A22510D795928E8840619900D672B4, 296F232B0A6D42840A745E4706D2815F6D2E4279DBD90112CBFBFF8833B724AF ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
22:43:23.0224 0x2868  IntcDAud - ok
22:43:23.0361 0x2868  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
22:43:23.0377 0x2868  Intel(R) Capability Licensing Service Interface - ok
22:43:23.0424 0x2868  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
22:43:24.0280 0x2868  Intel(R) Capability Licensing Service TCP IP Interface - ok
22:43:24.0328 0x2868  intelide - ok
22:43:24.0328 0x2868  intelpep - ok
22:43:24.0328 0x2868  intelppm - ok
22:43:24.0343 0x2868  iorate - ok
22:43:24.0359 0x2868  IpFilterDriver - ok
22:43:24.0374 0x2868  iphlpsvc - ok
22:43:24.0396 0x2868  IPMIDRV - ok
22:43:24.0396 0x2868  IPNAT - ok
22:43:24.0396 0x2868  irda - ok
22:43:24.0396 0x2868  IRENUM - ok
22:43:24.0412 0x2868  irmon - ok
22:43:24.0412 0x2868  isapnp - ok
22:43:24.0412 0x2868  iScsiPrt - ok
22:43:24.0475 0x2868  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
22:43:24.0475 0x2868  jhi_service - ok
22:43:24.0496 0x2868  k57nd60a - ok
22:43:24.0512 0x2868  kbdclass - ok
22:43:24.0528 0x2868  kbdhid - ok
22:43:24.0543 0x2868  kdnic - ok
22:43:24.0543 0x2868  KeyIso - ok
22:43:24.0575 0x2868  KSecDD - ok
22:43:24.0575 0x2868  KSecPkg - ok
22:43:24.0575 0x2868  ksthunk - ok
22:43:24.0594 0x2868  KtmRm - ok
22:43:24.0597 0x2868  LanmanServer - ok
22:43:24.0612 0x2868  LanmanWorkstation - ok
22:43:24.0628 0x2868  lfsvc - ok
22:43:24.0644 0x2868  LicenseManager - ok
22:43:24.0644 0x2868  lltdio - ok
22:43:24.0644 0x2868  lltdsvc - ok
22:43:24.0659 0x2868  [ 4ACC60B4CBC911F3F34A1D66213BBBF5, C09A87ACAE0D41FD425BAF076FFE9B601DB89BB66199E5BD72FC59C6A8E449DB ] LMDriver        C:\WINDOWS\System32\drivers\LMDriver.sys
22:43:24.0659 0x2868  LMDriver - ok
22:43:24.0675 0x2868  lmhosts - ok
22:43:24.0713 0x2868  [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:43:24.0713 0x2868  LMS - ok
22:43:24.0775 0x2868  [ FFDF8F07A900659CF927A273942926F8, BE27505B77404F18A0C1E57645211CC2D6CC83DEA60352A68B837E0E2D1847B5 ] LMSvc           C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
22:43:24.0775 0x2868  LMSvc - ok
22:43:24.0797 0x2868  LSI_SAS - ok
22:43:24.0797 0x2868  LSI_SAS2i - ok
22:43:24.0797 0x2868  LSI_SAS3i - ok
22:43:24.0813 0x2868  LSI_SSS - ok
22:43:24.0813 0x2868  LSM - ok
22:43:24.0828 0x2868  luafv - ok
22:43:24.0828 0x2868  MapsBroker - ok
22:43:24.0828 0x2868  megasas - ok
22:43:24.0859 0x2868  megasas2i - ok
22:43:24.0859 0x2868  megasr - ok
22:43:24.0891 0x2868  [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64          C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
22:43:24.0894 0x2868  MEIx64 - ok
22:43:24.0913 0x2868  MessagingService - ok
22:43:24.0975 0x2868  [ B235528D48B67CCA29454C28071048DF, CBAD7449C4F471CB5F9AF5C35C70233A0937A722174D5252D6104C39F83D4F93 ] mfeaack         C:\WINDOWS\system32\drivers\mfeaack.sys
22:43:24.0975 0x2868  mfeaack - ok
22:43:25.0044 0x2868  [ 8F736C2F4E5C42BB57F5F7A5506FF5F3, 8CC813AD04FFAFBF729EC88147C29BC6EA5F10C0E813DB6F249AB1879E9F30EB ] mfeavfk         C:\WINDOWS\system32\drivers\mfeavfk.sys
22:43:25.0044 0x2868  mfeavfk - ok
22:43:25.0097 0x2868  [ 91F6C485F22E653C6C43ED4194B68B6F, 98A0ECD9D0E6D1E1ECB0E34C15695B00C33059FC858541DB445A9264AF1F1F6C ] mfeelamk        C:\WINDOWS\system32\drivers\mfeelamk.sys
22:43:25.0097 0x2868  mfeelamk - ok
22:43:25.0228 0x2868  [ FF8A2CC149A42A2CE6A600DE6EF9CB1E, BD4EE5AAE0637D0AFBD35FF35BB46C2E519652E50CC787EA7812C3D0436FFEB2 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:43:25.0228 0x2868  mfefire - ok
22:43:25.0243 0x2868  [ 324167EB03FA753C04F8DB69A2413DD9, AC40C5654B2AED44E9EDE135715F9D831279DDC5435AFBED2789D971E1C402FC ] mfefirek        C:\WINDOWS\system32\drivers\mfefirek.sys
22:43:25.0243 0x2868  mfefirek - ok
22:43:25.0297 0x2868  [ 7A1C9D04DD7A0EFEB6ED26FBA10F86ED, C1335A8E60EFB110214297E9977AF436D44B705561FEED30954D57EBDF3D2A9C ] mfehidk         C:\WINDOWS\system32\drivers\mfehidk.sys
22:43:25.0297 0x2868  mfehidk - ok
22:43:25.0328 0x2868  [ ADDC6C846D95A2D2E60C5213B6FD6A2E, 8FFFD7E5F24D74D105F3D1C5120B66D4AFDDAE07EA59DD70B616F035AB77F252 ] mfemms          C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
22:43:25.0344 0x2868  mfemms - ok
22:43:25.0428 0x2868  [ 8A6784EE831673A404B5A9ADB927D3BB, B60F62087FEE4F44BD933F4A634B65FEEEF3D946A124BCE295A04248B758306F ] mfevtp          C:\Windows\system32\mfevtps.exe
22:43:25.0443 0x2868  mfevtp - ok
22:43:25.0474 0x2868  [ 957611C32C6A0D8225E41D0BD07BF35B, F4D8C1727382F4B0744D92D77D02CE381E03DA4ECFCF601D5E70F3C40B6513E9 ] mfewfpk         C:\WINDOWS\system32\drivers\mfewfpk.sys
22:43:25.0474 0x2868  mfewfpk - ok
22:43:25.0474 0x2868  mlx4_bus - ok
22:43:25.0474 0x2868  MMCSS - ok
22:43:25.0474 0x2868  Modem - ok
22:43:25.0497 0x2868  monitor - ok
22:43:25.0497 0x2868  mouclass - ok
22:43:25.0497 0x2868  mouhid - ok
22:43:25.0497 0x2868  mountmgr - ok
22:43:25.0512 0x2868  mpsdrv - ok
22:43:25.0528 0x2868  MpsSvc - ok
22:43:25.0559 0x2868  MRxDAV - ok
22:43:25.0559 0x2868  mrxsmb - ok
22:43:25.0575 0x2868  mrxsmb10 - ok
22:43:25.0597 0x2868  mrxsmb20 - ok
22:43:25.0612 0x2868  MsBridge - ok
22:43:25.0612 0x2868  MSDTC - ok
22:43:25.0612 0x2868  Msfs - ok
22:43:25.0628 0x2868  msgpiowin32 - ok
22:43:25.0628 0x2868  mshidkmdf - ok
22:43:25.0628 0x2868  mshidumdf - ok
22:43:25.0644 0x2868  msisadrv - ok
22:43:25.0659 0x2868  MSiSCSI - ok
22:43:25.0659 0x2868  msiserver - ok
22:43:25.0659 0x2868  MSKSSRV - ok
22:43:25.0659 0x2868  MsLldp - ok
22:43:25.0659 0x2868  MSPCLOCK - ok
22:43:25.0659 0x2868  MSPQM - ok
22:43:25.0675 0x2868  MsRPC - ok
22:43:25.0675 0x2868  mssmbios - ok
22:43:25.0675 0x2868  MSTEE - ok
22:43:25.0675 0x2868  MTConfig - ok
22:43:25.0694 0x2868  Mup - ok
22:43:25.0697 0x2868  mvumis - ok
22:43:25.0713 0x2868  NativeWifiP - ok
22:43:25.0775 0x2868  [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
22:43:25.0795 0x2868  NAUpdate - ok
22:43:25.0813 0x2868  NcaSvc - ok
22:43:25.0813 0x2868  NcbService - ok
22:43:25.0828 0x2868  NcdAutoSetup - ok
22:43:25.0828 0x2868  ndfltr - ok
22:43:25.0828 0x2868  NDIS - ok
22:43:25.0828 0x2868  NdisCap - ok
22:43:25.0828 0x2868  NdisImPlatform - ok
22:43:25.0828 0x2868  NdisTapi - ok
22:43:25.0844 0x2868  Ndisuio - ok
22:43:25.0844 0x2868  NdisVirtualBus - ok
22:43:25.0844 0x2868  NdisWan - ok
22:43:25.0844 0x2868  ndiswanlegacy - ok
22:43:25.0844 0x2868  ndproxy - ok
22:43:25.0844 0x2868  Ndu - ok
22:43:25.0860 0x2868  NetAdapterCx - ok
22:43:25.0860 0x2868  NetBIOS - ok
22:43:25.0860 0x2868  NetBT - ok
22:43:25.0860 0x2868  Netlogon - ok
22:43:25.0860 0x2868  Netman - ok
22:43:25.0896 0x2868  netprofm - ok
22:43:25.0912 0x2868  NetSetupSvc - ok
22:43:25.0996 0x2868  NetTcpPortSharing - ok
22:43:25.0996 0x2868  NgcCtnrSvc - ok
22:43:25.0996 0x2868  NgcSvc - ok
22:43:25.0996 0x2868  NlaSvc - ok
22:43:26.0175 0x2868  [ 4CA6E1F6A83D74A86850726475DC4462, 9BF8D917141A5736E72A9F51F827D24393509896E866F43FFB079F5BF8EF3F81 ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
22:43:26.0229 0x2868  NOBU - ok
22:43:26.0244 0x2868  Npfs - ok
22:43:26.0260 0x2868  npggsvc - ok
22:43:26.0295 0x2868  npsvctrig - ok
22:43:26.0313 0x2868  nsi - ok
22:43:26.0313 0x2868  nsiproxy - ok
22:43:26.0329 0x2868  NTFS - ok
22:43:26.0329 0x2868  Null - ok
22:43:26.0413 0x2868  [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
22:43:26.0413 0x2868  NvContainerLocalSystem - ok
22:43:26.0413 0x2868  Scan was interrupted by user!
22:43:26.0413 0x2868  Waiting for KSN requests completion. In queue: 17
22:43:27.0427 0x2868  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x61100 ( enabled : updated )
22:43:27.0427 0x2868  Win FW state via NFP2: enabled ( trusted )
22:43:27.0573 0x2868  ============================================================
22:43:27.0573 0x2868  Scan finished
22:43:27.0573 0x2868  ============================================================
22:43:27.0573 0x2908  Detected object count: 0
22:43:27.0573 0x2908  Actual detected object count: 0
22:43:36.0720 0x08c4  ============================================================
22:43:36.0720 0x08c4  Scan started
22:43:36.0720 0x08c4  Mode: Manual; SigCheck; TDLFS; 
22:43:36.0720 0x08c4  ============================================================
22:43:36.0720 0x08c4  KSN ping started
22:43:36.0772 0x08c4  KSN ping finished: true
22:43:37.0561 0x08c4  ================ Scan system memory ========================
22:43:37.0561 0x08c4  System memory - ok
22:43:37.0561 0x08c4  ================ Scan services =============================
22:43:37.0693 0x08c4  1394ohci - ok
22:43:37.0693 0x08c4  3ware - ok
22:43:37.0708 0x08c4  ACPI - ok
22:43:37.0708 0x08c4  AcpiDev - ok
22:43:37.0708 0x08c4  acpiex - ok
22:43:37.0708 0x08c4  acpipagr - ok
22:43:37.0746 0x08c4  AcpiPmi - ok
22:43:37.0746 0x08c4  acpitime - ok
22:43:37.0808 0x08c4  [ 9BAF21BA600EC4E5FD9A66AD3E4FF5A6, 5E02E5E80557F6EC870EB7CC2DE95169D4225B87A2FE7E796736205F51C15816 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:43:37.0830 0x08c4  AdobeFlashPlayerUpdateSvc - ok
22:43:37.0830 0x08c4  ADP80XX - ok
22:43:37.0846 0x08c4  AFD - ok
22:43:37.0893 0x08c4  ahcache - ok
22:43:37.0909 0x08c4  AJRouter - ok
22:43:37.0909 0x08c4  ALG - ok
22:43:38.0008 0x08c4  [ 23CB92EE5654BA92619D796E3AC7DB86, DD4536B55F021990DDAD8864F9BAECCDE40B2B532F6FB0D6CF9EB1A6B112A983 ] ALSysIO         C:\Users\tobias\AppData\Local\Temp\ALSysIO64.sys
22:43:38.0076 0x08c4  ALSysIO - ok
22:43:38.0076 0x08c4  AmdK8 - ok
22:43:38.0076 0x08c4  AmdPPM - ok
22:43:38.0076 0x08c4  amdsata - ok
22:43:38.0091 0x08c4  amdsbs - ok
22:43:38.0091 0x08c4  amdxata - ok
22:43:38.0091 0x08c4  AppID - ok
22:43:38.0091 0x08c4  AppIDSvc - ok
22:43:38.0107 0x08c4  Appinfo - ok
22:43:38.0107 0x08c4  applockerfltr - ok
22:43:38.0129 0x08c4  AppReadiness - ok
22:43:38.0147 0x08c4  AppXSvc - ok
22:43:38.0147 0x08c4  arcsas - ok
22:43:38.0147 0x08c4  AsyncMac - ok
22:43:38.0178 0x08c4  atapi - ok
22:43:38.0194 0x08c4  athr - ok
22:43:38.0194 0x08c4  AudioEndpointBuilder - ok
22:43:38.0210 0x08c4  Audiosrv - ok
22:43:38.0331 0x08c4  [ B890E8C5CBECEB1158D52B2B2842B4EF, FD6D0A95C27433F9BBC2D730BD2B86AE263092FBFF12589E5EEEFB577685C777 ] avgsvc          C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
22:43:38.0347 0x08c4  avgsvc - ok
22:43:38.0363 0x08c4  AxInstSV - ok
22:43:38.0378 0x08c4  b06bdrv - ok
22:43:38.0378 0x08c4  BasicDisplay - ok
22:43:38.0378 0x08c4  BasicRender - ok
22:43:38.0394 0x08c4  bcmfn - ok
22:43:38.0394 0x08c4  bcmfn2 - ok
22:43:38.0409 0x08c4  BDESVC - ok
22:43:38.0409 0x08c4  Beep - ok
22:43:38.0427 0x08c4  BFE - ok
22:43:38.0434 0x08c4  BITS - ok
22:43:38.0450 0x08c4  bowser - ok
22:43:38.0465 0x08c4  BrokerInfrastructure - ok
22:43:38.0465 0x08c4  Browser - ok
22:43:38.0481 0x08c4  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS       C:\WINDOWS\System32\drivers\btath_bus.sys
22:43:38.0481 0x08c4  BTATH_BUS - ok
22:43:38.0496 0x08c4  [ C8BF11D79B29BB23A461B65B58BA8593, 35AFAD5ED40304976287E6C982085DF7A91FF48F0320DAC32370FA039AA03C69 ] BtFilter        C:\WINDOWS\system32\DRIVERS\btfilter.sys
22:43:38.0531 0x08c4  BtFilter - ok
22:43:38.0534 0x08c4  BthAvrcpTg - ok
22:43:38.0550 0x08c4  BthEnum - ok
22:43:38.0550 0x08c4  BthHFEnum - ok
22:43:38.0565 0x08c4  bthhfhid - ok
22:43:38.0565 0x08c4  BthHFSrv - ok
22:43:38.0581 0x08c4  BthLEEnum - ok
22:43:38.0597 0x08c4  BTHMODEM - ok
22:43:38.0597 0x08c4  BthPan - ok
22:43:38.0612 0x08c4  BTHPORT - ok
22:43:38.0612 0x08c4  bthserv - ok
22:43:38.0682 0x08c4  BTHUSB - ok
22:43:38.0698 0x08c4  buttonconverter - ok
22:43:38.0698 0x08c4  CapImg - ok
22:43:38.0837 0x08c4  [ 0979E21A43F8F53945818D0E54FDF4C0, 1689C2F0FA646432814FC4FFA3D4514BC406E7E7DF11619B47C3EFF540809F94 ] CCDMonitorService C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe
22:43:38.0884 0x08c4  CCDMonitorService - ok
22:43:38.0915 0x08c4  [ A5C16A0BE89EE409732178BEB62F7EA7, D4B993F63CFD9B487BD53B532AB9435084B4C752F2731E189FA1420D516A4E95 ] ccSet_NARA      C:\WINDOWS\system32\drivers\NARAx64\0405000.009\ccSetx64.sys
22:43:38.0937 0x08c4  ccSet_NARA - ok
22:43:38.0937 0x08c4  cdfs - ok
22:43:38.0953 0x08c4  CDPSvc - ok
22:43:38.0968 0x08c4  CDPUserSvc - ok
22:43:38.0984 0x08c4  cdrom - ok
22:43:39.0000 0x08c4  CertPropSvc - ok
22:43:39.0035 0x08c4  [ 8030844CFB108E9E26385FC0CC3A8340, 74DE72D76510D3C5290B03FB90AED134A42A35176A1F080405FCBDAB0CD493B7 ] cfwids          C:\WINDOWS\system32\drivers\cfwids.sys
22:43:39.0037 0x08c4  cfwids - ok
22:43:39.0037 0x08c4  cht4iscsi - ok
22:43:39.0037 0x08c4  cht4vbd - ok
22:43:39.0069 0x08c4  circlass - ok
22:43:39.0069 0x08c4  CLFS - ok
22:43:39.0069 0x08c4  ClipSVC - ok
22:43:39.0084 0x08c4  clreg - ok
22:43:39.0100 0x08c4  CmBatt - ok
22:43:39.0100 0x08c4  CNG - ok
22:43:39.0100 0x08c4  cnghwassist - ok
22:43:39.0165 0x08c4  CompositeBus - ok
22:43:39.0168 0x08c4  COMSysApp - ok
22:43:39.0169 0x08c4  condrv - ok
22:43:39.0169 0x08c4  CoreMessagingRegistrar - ok
22:43:39.0255 0x08c4  [ 700A193A1555B083E3A08F5D3A844925, 974F7F0C78289EFE821407E418EB65A022D6445DED8EA112B9866784AF0221EE ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
22:43:39.0286 0x08c4  cphs - ok
22:43:39.0302 0x08c4  CryptSvc - ok
22:43:39.0333 0x08c4  dam - ok
22:43:39.0373 0x08c4  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
22:43:39.0373 0x08c4  dbupdate - ok
22:43:39.0373 0x08c4  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
22:43:39.0389 0x08c4  dbupdatem - ok
22:43:39.0389 0x08c4  dbx - ok
22:43:39.0404 0x08c4  [ A8352D11F8E2F7E8FA0BD6F8EF599C61, 72B9F8B96433CCFE5CC9FB786BF976068BDDC04D39F9F3BCFA5132E61A97C3FD ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
22:43:39.0420 0x08c4  DbxSvc - ok
22:43:39.0442 0x08c4  DcomLaunch - ok
22:43:39.0457 0x08c4  DcpSvc - ok
22:43:39.0473 0x08c4  defragsvc - ok
22:43:39.0489 0x08c4  DeviceAssociationService - ok
22:43:39.0489 0x08c4  DeviceInstall - ok
22:43:39.0504 0x08c4  DevQueryBroker - ok
22:43:39.0504 0x08c4  Dfsc - ok
22:43:39.0520 0x08c4  Dhcp - ok
22:43:39.0573 0x08c4  diagnosticshub.standardcollector.service - ok
22:43:39.0589 0x08c4  DiagTrack - ok
22:43:39.0604 0x08c4  disk - ok
22:43:39.0620 0x08c4  DmEnrollmentSvc - ok
22:43:39.0620 0x08c4  dmvsc - ok
22:43:39.0637 0x08c4  dmwappushservice - ok
22:43:39.0642 0x08c4  Dnscache - ok
22:43:39.0642 0x08c4  dot3svc - ok
22:43:39.0657 0x08c4  DPS - ok
22:43:39.0673 0x08c4  drmkaud - ok
22:43:39.0673 0x08c4  DsmSvc - ok
22:43:39.0688 0x08c4  DsSvc - ok
22:43:39.0704 0x08c4  DXGKrnl - ok
22:43:39.0704 0x08c4  EapHost - ok
22:43:39.0704 0x08c4  ebdrv - ok
22:43:39.0720 0x08c4  EFS - ok
22:43:39.0720 0x08c4  EhStorClass - ok
22:43:39.0742 0x08c4  EhStorTcgDrv - ok
22:43:39.0757 0x08c4  embeddedmode - ok
22:43:39.0757 0x08c4  EntAppSvc - ok
22:43:39.0876 0x08c4  [ B5B5FC68BFB3F01267E54B236660E610, 103F90343B207AFB9151CDA71E70884FEB56E8596754D2AB8B3F46C045642F10 ] ePowerSvc       C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
22:43:39.0891 0x08c4  ePowerSvc - ok
22:43:39.0891 0x08c4  ErrDev - ok
22:43:39.0907 0x08c4  EventSystem - ok
22:43:39.0907 0x08c4  exfat - ok
22:43:39.0939 0x08c4  fastfat - ok
22:43:39.0942 0x08c4  Fax - ok
22:43:39.0942 0x08c4  fdc - ok
22:43:39.0958 0x08c4  fdPHost - ok
22:43:39.0958 0x08c4  FDResPub - ok
22:43:39.0973 0x08c4  fhsvc - ok
22:43:39.0989 0x08c4  FileCrypt - ok
22:43:39.0989 0x08c4  FileInfo - ok
22:43:40.0005 0x08c4  Filetrace - ok
22:43:40.0005 0x08c4  flpydisk - ok
22:43:40.0005 0x08c4  FltMgr - ok
22:43:40.0040 0x08c4  FontCache - ok
22:43:40.0120 0x08c4  FontCache3.0.0.0 - ok
22:43:40.0141 0x08c4  FrameServer - ok
22:43:40.0141 0x08c4  FsDepends - ok
22:43:40.0141 0x08c4  Fs_Rec - ok
22:43:40.0157 0x08c4  fvevol - ok
22:43:40.0204 0x08c4  [ 61ABC13A9A44E6D6793BAC4F35045025, 44B58E98CC0F87B79FAD0D1CA04447F9401E2467C238CB07295A53EE72771633 ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
22:43:40.0257 0x08c4  GamesAppIntegrationService - detected UnsignedFile.Multi.Generic ( 1 )
22:43:40.0257 0x08c4  Detect skipped due to KSN trusted
22:43:40.0257 0x08c4  GamesAppIntegrationService - ok
22:43:40.0288 0x08c4  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
22:43:40.0288 0x08c4  GamesAppService - ok
22:43:40.0320 0x08c4  gencounter - ok
22:43:40.0320 0x08c4  genericusbfn - ok
22:43:40.0320 0x08c4  GPIOClx0101 - ok
22:43:40.0342 0x08c4  gpsvc - ok
22:43:40.0357 0x08c4  GpuEnergyDrv - ok
22:43:40.0404 0x08c4  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:43:40.0404 0x08c4  gupdate - ok
22:43:40.0420 0x08c4  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:43:40.0420 0x08c4  gupdatem - ok
22:43:40.0420 0x08c4  HDAudBus - ok
22:43:40.0420 0x08c4  HidBatt - ok
22:43:40.0436 0x08c4  HidBth - ok
22:43:40.0439 0x08c4  hidi2c - ok
22:43:40.0441 0x08c4  hidinterrupt - ok
22:43:40.0442 0x08c4  HidIr - ok
22:43:40.0457 0x08c4  hidserv - ok
22:43:40.0489 0x08c4  HidUsb - ok
22:43:40.0504 0x08c4  HomeGroupListener - ok
22:43:40.0504 0x08c4  HomeGroupProvider - ok
22:43:40.0520 0x08c4  HpSAMD - ok
22:43:40.0544 0x08c4  [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64        C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys
22:43:40.0607 0x08c4  HTCAND64 - ok
22:43:40.0676 0x08c4  [ 5C8BC8A28798FD010E7ABC4E0D588CAA, 622CAFD3DCBB05E15539589FDD4002DA6F24790FC55BDF05AA3D043E8A34E53E ] HTCMonitorService C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
22:43:40.0676 0x08c4  HTCMonitorService - ok
22:43:40.0723 0x08c4  [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot        C:\WINDOWS\system32\DRIVERS\htcnprot.sys
22:43:40.0723 0x08c4  htcnprot - ok
22:43:40.0745 0x08c4  [ 7C7C986776D00E575BFBDE5DCBDC615D, 4CF12851A5A45917C3A9139B19D79434F2038611B617F83A714506CC7A1A6C61 ] HtcVCom32       C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys
22:43:40.0846 0x08c4  HtcVCom32 - ok
22:43:40.0861 0x08c4  HTTP - ok
22:43:40.0877 0x08c4  HvHost - ok
22:43:40.0893 0x08c4  hvservice - ok
22:43:40.0908 0x08c4  hwpolicy - ok
22:43:40.0908 0x08c4  hyperkbd - ok
22:43:40.0924 0x08c4  i8042prt - ok
22:43:40.0924 0x08c4  iagpio - ok
22:43:40.0940 0x08c4  iai2c - ok
22:43:40.0942 0x08c4  iaLPSS2i_GPIO2 - ok
22:43:40.0945 0x08c4  iaLPSS2i_I2C - ok
22:43:40.0946 0x08c4  iaLPSSi_GPIO - ok
22:43:40.0946 0x08c4  iaLPSSi_I2C - ok
22:43:40.0993 0x08c4  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
22:43:41.0009 0x08c4  iaStorA - ok
22:43:41.0009 0x08c4  iaStorAV - ok
22:43:41.0009 0x08c4  iaStorV - ok
22:43:41.0009 0x08c4  ibbus - ok
22:43:41.0024 0x08c4  icssvc - ok
22:43:41.0178 0x08c4  [ 548712979B0BA12ECE2D8549797593D4, 6809412A76DE30C914A65BB8546E436AD540E00610D5D13FDE486C4446E95C24 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
22:43:41.0298 0x08c4  igfx - ok
22:43:41.0332 0x08c4  [ BA1BA1C9E40BCEB88678747C1E7C256F, C85CC690D353FCEBFD243304C25EEAA2BC13DB1E2A4C8C65371F455511540959 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
22:43:41.0342 0x08c4  igfxCUIService2.0.0.0 - ok
22:43:41.0358 0x08c4  IKEEXT - ok
22:43:41.0374 0x08c4  IndirectKmd - ok
22:43:41.0417 0x08c4  [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
22:43:41.0417 0x08c4  intaud_WaveExtensible - ok
22:43:41.0549 0x08c4  [ 8EB4D1D7806D05E5AB39D96464D801CA, 73853F56CD05243B1CABED2CA2420DFC8BA53F951030EECCD0D2A0E26D8A0D1B ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
22:43:41.0612 0x08c4  IntcAzAudAddService - ok
22:43:41.0649 0x08c4  [ D6A22510D795928E8840619900D672B4, 296F232B0A6D42840A745E4706D2815F6D2E4279DBD90112CBFBFF8833B724AF ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
22:43:41.0665 0x08c4  IntcDAud - ok
22:43:41.0767 0x08c4  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
22:43:41.0814 0x08c4  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
22:43:41.0815 0x08c4  Detect skipped due to KSN trusted
22:43:41.0815 0x08c4  Intel(R) Capability Licensing Service Interface - ok
22:43:41.0851 0x08c4  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
22:43:41.0867 0x08c4  Intel(R) Capability Licensing Service TCP IP Interface - ok
22:43:41.0917 0x08c4  intelide - ok
22:43:41.0920 0x08c4  intelpep - ok
22:43:41.0921 0x08c4  intelppm - ok
22:43:41.0936 0x08c4  iorate - ok
22:43:41.0936 0x08c4  IpFilterDriver - ok
22:43:41.0952 0x08c4  iphlpsvc - ok
22:43:41.0967 0x08c4  IPMIDRV - ok
22:43:41.0967 0x08c4  IPNAT - ok
22:43:41.0967 0x08c4  irda - ok
22:43:41.0967 0x08c4  IRENUM - ok
22:43:41.0992 0x08c4  irmon - ok
22:43:41.0995 0x08c4  isapnp - ok
22:43:41.0997 0x08c4  iScsiPrt - ok
22:43:42.0038 0x08c4  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
22:43:42.0053 0x08c4  jhi_service - ok
22:43:42.0069 0x08c4  k57nd60a - ok
22:43:42.0084 0x08c4  kbdclass - ok
22:43:42.0084 0x08c4  kbdhid - ok
22:43:42.0100 0x08c4  kdnic - ok
22:43:42.0116 0x08c4  KeyIso - ok
22:43:42.0125 0x08c4  KSecDD - ok
22:43:42.0125 0x08c4  KSecPkg - ok
22:43:42.0125 0x08c4  ksthunk - ok
22:43:42.0140 0x08c4  KtmRm - ok
22:43:42.0140 0x08c4  LanmanServer - ok
22:43:42.0156 0x08c4  LanmanWorkstation - ok
22:43:42.0171 0x08c4  lfsvc - ok
22:43:42.0187 0x08c4  LicenseManager - ok
22:43:42.0187 0x08c4  lltdio - ok
22:43:42.0187 0x08c4  lltdsvc - ok
22:43:42.0203 0x08c4  [ 4ACC60B4CBC911F3F34A1D66213BBBF5, C09A87ACAE0D41FD425BAF076FFE9B601DB89BB66199E5BD72FC59C6A8E449DB ] LMDriver        C:\WINDOWS\System32\drivers\LMDriver.sys
22:43:42.0203 0x08c4  LMDriver - ok
22:43:42.0225 0x08c4  lmhosts - ok
22:43:42.0256 0x08c4  [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:43:42.0272 0x08c4  LMS - ok
22:43:42.0319 0x08c4  [ FFDF8F07A900659CF927A273942926F8, BE27505B77404F18A0C1E57645211CC2D6CC83DEA60352A68B837E0E2D1847B5 ] LMSvc           C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
22:43:42.0325 0x08c4  LMSvc - ok
22:43:42.0325 0x08c4  LSI_SAS - ok
22:43:42.0325 0x08c4  LSI_SAS2i - ok
22:43:42.0325 0x08c4  LSI_SAS3i - ok
22:43:42.0341 0x08c4  LSI_SSS - ok
22:43:42.0372 0x08c4  LSM - ok
22:43:42.0372 0x08c4  luafv - ok
22:43:42.0372 0x08c4  MapsBroker - ok
22:43:42.0388 0x08c4  megasas - ok
22:43:42.0403 0x08c4  megasas2i - ok
22:43:42.0421 0x08c4  megasr - ok
22:43:42.0441 0x08c4  [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64          C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
22:43:42.0441 0x08c4  MEIx64 - ok
22:43:42.0456 0x08c4  MessagingService - ok
22:43:42.0487 0x08c4  [ B235528D48B67CCA29454C28071048DF, CBAD7449C4F471CB5F9AF5C35C70233A0937A722174D5252D6104C39F83D4F93 ] mfeaack         C:\WINDOWS\system32\drivers\mfeaack.sys
22:43:42.0503 0x08c4  mfeaack - ok
22:43:42.0525 0x08c4  [ 8F736C2F4E5C42BB57F5F7A5506FF5F3, 8CC813AD04FFAFBF729EC88147C29BC6EA5F10C0E813DB6F249AB1879E9F30EB ] mfeavfk         C:\WINDOWS\system32\drivers\mfeavfk.sys
22:43:42.0541 0x08c4  mfeavfk - ok
22:43:42.0556 0x08c4  [ 91F6C485F22E653C6C43ED4194B68B6F, 98A0ECD9D0E6D1E1ECB0E34C15695B00C33059FC858541DB445A9264AF1F1F6C ] mfeelamk        C:\WINDOWS\system32\drivers\mfeelamk.sys
22:43:42.0572 0x08c4  mfeelamk - ok
22:43:42.0641 0x08c4  [ FF8A2CC149A42A2CE6A600DE6EF9CB1E, BD4EE5AAE0637D0AFBD35FF35BB46C2E519652E50CC787EA7812C3D0436FFEB2 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:43:42.0656 0x08c4  mfefire - ok
22:43:42.0672 0x08c4  [ 324167EB03FA753C04F8DB69A2413DD9, AC40C5654B2AED44E9EDE135715F9D831279DDC5435AFBED2789D971E1C402FC ] mfefirek        C:\WINDOWS\system32\drivers\mfefirek.sys
22:43:42.0687 0x08c4  mfefirek - ok
22:43:42.0703 0x08c4  [ 7A1C9D04DD7A0EFEB6ED26FBA10F86ED, C1335A8E60EFB110214297E9977AF436D44B705561FEED30954D57EBDF3D2A9C ] mfehidk         C:\WINDOWS\system32\drivers\mfehidk.sys
22:43:42.0725 0x08c4  mfehidk - ok
22:43:42.0756 0x08c4  [ ADDC6C846D95A2D2E60C5213B6FD6A2E, 8FFFD7E5F24D74D105F3D1C5120B66D4AFDDAE07EA59DD70B616F035AB77F252 ] mfemms          C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
22:43:42.0772 0x08c4  mfemms - ok
22:43:42.0825 0x08c4  [ 8A6784EE831673A404B5A9ADB927D3BB, B60F62087FEE4F44BD933F4A634B65FEEEF3D946A124BCE295A04248B758306F ] mfevtp          C:\Windows\system32\mfevtps.exe
22:43:42.0825 0x08c4  mfevtp - ok
22:43:42.0841 0x08c4  [ 957611C32C6A0D8225E41D0BD07BF35B, F4D8C1727382F4B0744D92D77D02CE381E03DA4ECFCF601D5E70F3C40B6513E9 ] mfewfpk         C:\WINDOWS\system32\drivers\mfewfpk.sys
22:43:42.0856 0x08c4  mfewfpk - ok
22:43:42.0856 0x08c4  mlx4_bus - ok
22:43:42.0872 0x08c4  MMCSS - ok
22:43:42.0872 0x08c4  Modem - ok
22:43:42.0888 0x08c4  monitor - ok
22:43:42.0888 0x08c4  mouclass - ok
22:43:42.0888 0x08c4  mouhid - ok
22:43:42.0888 0x08c4  mountmgr - ok
22:43:42.0888 0x08c4  mpsdrv - ok
22:43:42.0903 0x08c4  MpsSvc - ok
22:43:42.0923 0x08c4  MRxDAV - ok
22:43:42.0925 0x08c4  mrxsmb - ok
22:43:42.0941 0x08c4  mrxsmb10 - ok
22:43:42.0956 0x08c4  mrxsmb20 - ok
22:43:42.0972 0x08c4  MsBridge - ok
22:43:42.0972 0x08c4  MSDTC - ok
22:43:42.0988 0x08c4  Msfs - ok
22:43:42.0988 0x08c4  msgpiowin32 - ok
22:43:42.0988 0x08c4  mshidkmdf - ok
22:43:43.0005 0x08c4  mshidumdf - ok
22:43:43.0007 0x08c4  msisadrv - ok
22:43:43.0025 0x08c4  MSiSCSI - ok
22:43:43.0025 0x08c4  msiserver - ok
22:43:43.0025 0x08c4  MSKSSRV - ok
22:43:43.0025 0x08c4  MsLldp - ok
22:43:43.0025 0x08c4  MSPCLOCK - ok
22:43:43.0025 0x08c4  MSPQM - ok
22:43:43.0025 0x08c4  MsRPC - ok
22:43:43.0040 0x08c4  mssmbios - ok
22:43:43.0040 0x08c4  MSTEE - ok
22:43:43.0040 0x08c4  MTConfig - ok
22:43:43.0056 0x08c4  Mup - ok
22:43:43.0056 0x08c4  mvumis - ok
22:43:43.0072 0x08c4  NativeWifiP - ok
22:43:43.0140 0x08c4  [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
22:43:43.0156 0x08c4  NAUpdate - ok
22:43:43.0172 0x08c4  NcaSvc - ok
22:43:43.0187 0x08c4  NcbService - ok
22:43:43.0187 0x08c4  NcdAutoSetup - ok
22:43:43.0187 0x08c4  ndfltr - ok
22:43:43.0187 0x08c4  NDIS - ok
22:43:43.0187 0x08c4  NdisCap - ok
22:43:43.0203 0x08c4  NdisImPlatform - ok
22:43:43.0203 0x08c4  NdisTapi - ok
22:43:43.0203 0x08c4  Ndisuio - ok
22:43:43.0203 0x08c4  NdisVirtualBus - ok
22:43:43.0203 0x08c4  NdisWan - ok
22:43:43.0203 0x08c4  ndiswanlegacy - ok
22:43:43.0203 0x08c4  ndproxy - ok
22:43:43.0220 0x08c4  Ndu - ok
22:43:43.0222 0x08c4  NetAdapterCx - ok
22:43:43.0224 0x08c4  NetBIOS - ok
22:43:43.0224 0x08c4  NetBT - ok
22:43:43.0224 0x08c4  Netlogon - ok
22:43:43.0224 0x08c4  Netman - ok
22:43:43.0224 0x08c4  netprofm - ok
22:43:43.0240 0x08c4  NetSetupSvc - ok
22:43:43.0325 0x08c4  NetTcpPortSharing - ok
22:43:43.0325 0x08c4  NgcCtnrSvc - ok
22:43:43.0325 0x08c4  NgcSvc - ok
22:43:43.0325 0x08c4  NlaSvc - ok
22:43:43.0503 0x08c4  [ 4CA6E1F6A83D74A86850726475DC4462, 9BF8D917141A5736E72A9F51F827D24393509896E866F43FFB079F5BF8EF3F81 ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
22:43:43.0572 0x08c4  NOBU - ok
22:43:43.0588 0x08c4  Npfs - ok
22:43:43.0588 0x08c4  npggsvc - ok
22:43:43.0604 0x08c4  npsvctrig - ok
22:43:43.0625 0x08c4  nsi - ok
22:43:43.0641 0x08c4  nsiproxy - ok
22:43:43.0672 0x08c4  NTFS - ok
22:43:43.0703 0x08c4  Null - ok
22:43:43.0959 0x08c4  [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
22:43:43.0975 0x08c4  NvContainerLocalSystem - ok
22:43:43.0975 0x08c4  [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
22:43:43.0990 0x08c4  NvContainerNetworkService - ok
22:43:44.0059 0x08c4  [ 5409D41DFB0EAB63511FE7889B2A687E, 32E8D8622798B8F16002EE617200F0172A98D984A925F6550A1E352ACFA0BDDF ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
22:43:44.0074 0x08c4  NVIDIA Wireless Controller Service - ok
22:43:44.0487 0x08c4  [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm        C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_33c9216502148e52\nvlddmkm.sys
22:43:44.0728 0x08c4  nvlddmkm - ok
22:43:44.0815 0x08c4  [ 214CE3AF0C1ABDD3529246914663E4C1, 2668A18265FD5BC9C107D6B11BC7A7169FE3C486B1A5727825756B05B4EFE17D ] nvpciflt        C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
22:43:44.0815 0x08c4  nvpciflt - ok
22:43:44.0831 0x08c4  nvraid - ok
22:43:44.0831 0x08c4  nvstor - ok
22:43:44.0872 0x08c4  [ 37527CCD2AAF5192D825084339CA964E, B1BE990411BA80D1F9E9F86F82F2B2762F87A5C028FB79A60DB325FAFE89D059 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
22:43:44.0872 0x08c4  NvStreamKms - ok
22:43:44.0904 0x08c4  [ 66B4D2AA9C733A40B1C673402E99A7D0, DD4297CCB3527C95E52132271C296D277FC4C5FB59731AF25FCC19A523A8D20C ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
22:43:44.0919 0x08c4  nvvad_WaveExtensible - ok
22:43:44.0951 0x08c4  OneSyncSvc - ok
22:43:45.0090 0x08c4  [ 2906AF02B5D06B0EFCD32382F19B88DB, 52A57816017591AC18693095ED6877EC6187F01A1B075ECC0F7E8FA73543E9D0 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
22:43:45.0137 0x08c4  Origin Client Service - ok
22:43:45.0221 0x08c4  [ 559E102771EC599B74A19BE829D4C809, 4AF59FEFD0727BDC6BF087307EFF22EBB09B56F7B6DFFBCA9CF6A3AACBB04CA9 ] OverwolfUpdater C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
22:43:45.0237 0x08c4  OverwolfUpdater - ok
22:43:45.0253 0x08c4  p2pimsvc - ok
22:43:45.0273 0x08c4  p2psvc - ok
22:43:45.0275 0x08c4  Parport - ok
22:43:45.0306 0x08c4  partmgr - ok
22:43:45.0353 0x08c4  [ 446462BBA744DA60379574926FD51EAB, 4A79E8EF28670333F4733FA0016508DC88E9BDC566B455DA5EDEDC514612180A ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
22:43:45.0422 0x08c4  PassThru Service - detected UnsignedFile.Multi.Generic ( 1 )
22:43:45.0540 0x08c4  Detect skipped due to KSN trusted
22:43:45.0540 0x08c4  PassThru Service - ok
22:43:45.0578 0x08c4  PcaSvc - ok
22:43:45.0578 0x08c4  pci - ok
22:43:45.0609 0x08c4  pciide - ok
22:43:45.0609 0x08c4  pcmcia - ok
22:43:45.0609 0x08c4  pcw - ok
22:43:45.0625 0x08c4  pdc - ok
22:43:45.0640 0x08c4  PEAUTH - ok
22:43:45.0640 0x08c4  percsas2i - ok
22:43:45.0640 0x08c4  percsas3i - ok
22:43:45.0693 0x08c4  PerfHost - ok
22:43:45.0708 0x08c4  PhoneSvc - ok
22:43:45.0740 0x08c4  PimIndexMaintenanceSvc - ok
22:43:45.0740 0x08c4  pla - ok
22:43:45.0755 0x08c4  PlugPlay - ok
22:43:45.0755 0x08c4  PnkBstrA - ok
22:43:45.0755 0x08c4  PNRPAutoReg - ok
22:43:45.0755 0x08c4  PNRPsvc - ok
22:43:45.0774 0x08c4  PolicyAgent - ok
22:43:45.0778 0x08c4  Power - ok
22:43:45.0778 0x08c4  PptpMiniport - ok
22:43:45.0924 0x08c4  [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
22:43:46.0108 0x08c4  PrintNotify - ok
22:43:46.0124 0x08c4  Processor - ok
22:43:46.0140 0x08c4  ProfSvc - ok
22:43:46.0161 0x08c4  Psched - ok
22:43:46.0255 0x08c4  [ C99D94151EDA07D418E14158E3C54A87, 9831EAE1E7851727810FCFA5AA66B80D6CD0B5072C04A7D1091DBE24F3AC638D ] QASvc           C:\Program Files\Acer\Acer Quick Access\QASvc.exe
22:43:46.0276 0x08c4  QASvc - ok
22:43:46.0277 0x08c4  QWAVE - ok
22:43:46.0277 0x08c4  QWAVEdrv - ok
22:43:46.0293 0x08c4  [ 6A52182919E25FB56D253D389F92CE98, AE6497D5CF324CB813248ADECB0F53E5CB3D6C326774E2257319E4CE7782C591 ] RadioShim       C:\WINDOWS\System32\drivers\RadioShim.sys
22:43:46.0309 0x08c4  RadioShim - ok
22:43:46.0309 0x08c4  RasAcd - ok
22:43:46.0324 0x08c4  RasAgileVpn - ok
22:43:46.0340 0x08c4  RasAuto - ok
22:43:46.0340 0x08c4  Rasl2tp - ok
22:43:46.0340 0x08c4  RasMan - ok
22:43:46.0340 0x08c4  RasPppoe - ok
22:43:46.0340 0x08c4  RasSstp - ok
22:43:46.0410 0x08c4  [ 5332223C0D4CEC95787607906B53E861, EA1FB6373EFA303D0A69DB49D4B05BA489D1FB428E9AF948FA4FAFB94264AE4E ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
22:43:46.0425 0x08c4  Razer Game Scanner Service - ok
22:43:46.0425 0x08c4  rdbss - ok
22:43:46.0441 0x08c4  rdpbus - ok
22:43:46.0441 0x08c4  RDPDR - ok
22:43:46.0477 0x08c4  RdpVideoMiniport - ok
22:43:46.0478 0x08c4  rdyboost - ok
22:43:46.0478 0x08c4  ReFSv1 - ok
22:43:46.0478 0x08c4  RemoteAccess - ok
22:43:46.0478 0x08c4  RemoteRegistry - ok
22:43:46.0494 0x08c4  RetailDemo - ok
22:43:46.0510 0x08c4  RFCOMM - ok
22:43:46.0510 0x08c4  RmSvc - ok
22:43:46.0510 0x08c4  RpcEptMapper - ok
22:43:46.0525 0x08c4  RpcLocator - ok
22:43:46.0541 0x08c4  RpcSs - ok
22:43:46.0594 0x08c4  [ 8C00FD003B32ACFD7C054D0D7988BDF4, 72F11EE0335DB66105F5056AC7FF51D486DBB6D57353727537F53E929D3A216F ] RSPCIESTOR      C:\WINDOWS\system32\DRIVERS\RtsPStor.sys
22:43:46.0594 0x08c4  RSPCIESTOR - ok
22:43:46.0609 0x08c4  rspndr - ok
22:43:46.0641 0x08c4  [ 434A22267365AEF88B3AD451B65988AE, 75EFCFF52501E7E3E7B50C4D793DD55F085E378DA1C78772244AB27708409900 ] rzpmgrk         C:\WINDOWS\system32\drivers\rzpmgrk.sys
22:43:46.0641 0x08c4  rzpmgrk - ok
22:43:46.0694 0x08c4  [ F8A13D4413A93DD005FAD116CBD6B6F7, 8ED0C00920CE76E832701D45117ED00B12E20588CB6FE8039FBCCDFEF9841047 ] rzpnk           C:\WINDOWS\system32\drivers\rzpnk.sys
22:43:46.0694 0x08c4  rzpnk - ok
22:43:46.0725 0x08c4  [ 421497E425AFB40502013F362E4FA230, 20E2372BEE4BFB21138CA574C9806EC399DDA9D3439F3C391E34ABB2E518106D ] rzudd           C:\WINDOWS\System32\drivers\rzudd.sys
22:43:46.0725 0x08c4  rzudd - ok
22:43:46.0778 0x08c4  [ F3D67BC2EACD3975BC217EC0AB39F649, 88338DBFE8C044D9DCF47A388CFFBCC6382E8BE839FB4941DAB1A8BC988BA11A ] RzWizardService C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe
22:43:46.0841 0x08c4  RzWizardService - detected UnsignedFile.Multi.Generic ( 1 )
22:43:46.0978 0x08c4  Detect skipped due to KSN trusted
22:43:46.0978 0x08c4  RzWizardService - ok
22:43:46.0994 0x08c4  s3cap - ok
22:43:47.0009 0x08c4  SamSs - ok
22:43:47.0009 0x08c4  sbp2port - ok
22:43:47.0025 0x08c4  SCardSvr - ok
22:43:47.0041 0x08c4  ScDeviceEnum - ok
22:43:47.0041 0x08c4  scfilter - ok
22:43:47.0041 0x08c4  Schedule - ok
22:43:47.0041 0x08c4  scmbus - ok
22:43:47.0041 0x08c4  scmdisk0101 - ok
22:43:47.0078 0x08c4  SCPolicySvc - ok
22:43:47.0094 0x08c4  [ 0447065A6E10774EFCECFDD0EB970A79, 384A9AC72E756F96D43EE4B144A466564476AFD8778092C979116BB29A514433 ] ScpVBus         C:\WINDOWS\System32\drivers\ScpVBus.sys
22:43:47.0109 0x08c4  ScpVBus - ok
22:43:47.0125 0x08c4  sdbus - ok
22:43:47.0125 0x08c4  SDRSVC - ok
22:43:47.0141 0x08c4  sdstor - ok
22:43:47.0141 0x08c4  seclogon - ok
22:43:47.0180 0x08c4  [ 07F83829E7429E60298440CD1E601A6A, 9F1229CD8DD9092C27A01F5D56E3C0D59C2BB9F0139ABF042E56F343637FDA33 ] semav6msr64     C:\WINDOWS\system32\drivers\semav6msr64.sys
22:43:47.0196 0x08c4  semav6msr64 - ok
22:43:47.0311 0x08c4  SENS - ok
22:43:47.0326 0x08c4  SensorDataService - ok
22:43:47.0326 0x08c4  SensorService - ok
22:43:47.0342 0x08c4  SensrSvc - ok
22:43:47.0342 0x08c4  SerCx - ok
22:43:47.0358 0x08c4  SerCx2 - ok
22:43:47.0358 0x08c4  Serenum - ok
22:43:47.0358 0x08c4  Serial - ok
22:43:47.0358 0x08c4  sermouse - ok
22:43:47.0376 0x08c4  SessionEnv - ok
22:43:47.0379 0x08c4  sfloppy - ok
22:43:47.0380 0x08c4  SharedAccess - ok
22:43:47.0427 0x08c4  ShellHWDetection - ok
22:43:47.0427 0x08c4  shpamsvc - ok
22:43:47.0443 0x08c4  SiSRaid2 - ok
22:43:47.0443 0x08c4  SiSRaid4 - ok
22:43:47.0496 0x08c4  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:43:47.0511 0x08c4  SkypeUpdate - ok
22:43:47.0558 0x08c4  [ DC69820E1D2DC3AC0AA24D57AE355284, 24B9B9CD0A39B53FFB53C16ABB4BBE1A977E6D17D3C83846A0F551C3EA12F75B ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
22:43:47.0558 0x08c4  SmbDrvI - ok
22:43:47.0595 0x08c4  smphost - ok
22:43:47.0611 0x08c4  SmsRouter - ok
22:43:47.0626 0x08c4  SNMPTRAP - ok
22:43:47.0658 0x08c4  spaceport - ok
22:43:47.0658 0x08c4  SpbCx - ok
22:43:47.0680 0x08c4  Spooler - ok
22:43:47.0696 0x08c4  sppsvc - ok
22:43:47.0696 0x08c4  srv - ok
22:43:47.0711 0x08c4  srv2 - ok
22:43:47.0711 0x08c4  srvnet - ok
22:43:47.0727 0x08c4  SSDPSRV - ok
22:43:47.0742 0x08c4  SstpSvc - ok
22:43:47.0758 0x08c4  StateRepository - ok
22:43:47.0827 0x08c4  [ 90E22D7CDE08E07446D238A569BCAB7C, 3D4F413D0B0C9CF28D06E0476F24AC6441C8678DF786D9971B39C91C9F9B8020 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
22:43:47.0858 0x08c4  Steam Client Service - ok
22:43:47.0895 0x08c4  stexstor - ok
22:43:47.0911 0x08c4  stisvc - ok
22:43:47.0927 0x08c4  storahci - ok
22:43:47.0927 0x08c4  storflt - ok
22:43:47.0927 0x08c4  stornvme - ok
22:43:47.0942 0x08c4  storqosflt - ok
22:43:47.0958 0x08c4  StorSvc - ok
22:43:47.0958 0x08c4  storufs - ok
22:43:47.0958 0x08c4  storvsc - ok
22:43:47.0958 0x08c4  svsvc - ok
22:43:47.0958 0x08c4  swenum - ok
22:43:47.0958 0x08c4  swprv - ok
22:43:47.0996 0x08c4  Synth3dVsc - ok
22:43:48.0027 0x08c4  [ AD764FB3E172A6845465C9E89B6B36EF, 3124CE0E45414FD8304FC714F5B8AD19F500515EAEA5627DF30CEE0CCE91A42F ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
22:43:48.0043 0x08c4  SynTP - ok
22:43:48.0098 0x08c4  [ BBD8D18C84B4A6766B5D2486CDE99D16, 3CD1DE51D820FDE5B9907A90AA7F1BF3E84967C79E3B8493DA56070B349E3072 ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
22:43:48.0098 0x08c4  SynTPEnhService - ok
22:43:48.0098 0x08c4  SysMain - ok
22:43:48.0114 0x08c4  SystemEventsBroker - ok
22:43:48.0212 0x08c4  [ 328E65035DE1D2C1206B4F94AAFC1DB7, EB7EF4CD7641C96C1050AD6139C22DE35EABEDF2DAFA5CD9D8F0C129BE02891F ] SystemUsageReportSvc_WILLAMETTE C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
22:43:48.0212 0x08c4  SystemUsageReportSvc_WILLAMETTE - ok
22:43:48.0243 0x08c4  TabletInputService - ok
22:43:48.0243 0x08c4  TapiSrv - ok
22:43:48.0243 0x08c4  Tcpip - ok
22:43:48.0259 0x08c4  Tcpip6 - ok
22:43:48.0259 0x08c4  tcpipreg - ok
22:43:48.0277 0x08c4  tdx - ok
22:43:48.0279 0x08c4  terminpt - ok
22:43:48.0281 0x08c4  TermService - ok
22:43:48.0281 0x08c4  Themes - ok
22:43:48.0312 0x08c4  TieringEngineService - ok
22:43:48.0312 0x08c4  tiledatamodelsvc - ok
22:43:48.0312 0x08c4  TimeBrokerSvc - ok
22:43:48.0359 0x08c4  TPM - ok
22:43:48.0458 0x08c4  TrkWks - ok
22:43:48.0496 0x08c4  TrustedInstaller - ok
22:43:48.0496 0x08c4  tsusbflt - ok
22:43:48.0511 0x08c4  TsUsbGD - ok
22:43:48.0681 0x08c4  [ 8AF256C30CEF39CA939F9B3B9E2F2E75, 905CD1B5A7321C07CFD25DB9C871EF0F11843A5F40F16728D7F151301D4F2BEC ] TuneUp.UtilitiesSvc C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
22:43:48.0774 0x08c4  TuneUp.UtilitiesSvc - ok
22:43:48.0796 0x08c4  [ 9B5C98C9F9EF5E62806DCD58B0D8EACE, B4B8A3F943C2C401CA1ED05BDA0C6D631106B258FB40C433AC856DCA7E8D7F7A ] TuneUpUtilitiesDrv C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys
22:43:48.0812 0x08c4  TuneUpUtilitiesDrv - ok
22:43:48.0812 0x08c4  tunnel - ok
22:43:48.0827 0x08c4  tzautoupdate - ok
22:43:48.0843 0x08c4  UASPStor - ok
22:43:48.0843 0x08c4  UcmCx0101 - ok
22:43:48.0859 0x08c4  UcmTcpciCx0101 - ok
22:43:48.0859 0x08c4  UcmUcsi - ok
22:43:48.0880 0x08c4  Ucx01000 - ok
22:43:48.0880 0x08c4  UdeCx - ok
22:43:48.0880 0x08c4  udfs - ok
22:43:48.0880 0x08c4  UEFI - ok
22:43:48.0880 0x08c4  Ufx01000 - ok
22:43:48.0880 0x08c4  UfxChipidea - ok
22:43:48.0896 0x08c4  ufxsynopsys - ok
22:43:48.0912 0x08c4  UI0Detect - ok
22:43:48.0912 0x08c4  umbus - ok
22:43:48.0927 0x08c4  UmPass - ok
22:43:48.0927 0x08c4  UmRdpService - ok
22:43:48.0927 0x08c4  UnistoreSvc - ok
22:43:48.0943 0x08c4  upnphost - ok
22:43:48.0943 0x08c4  UrsChipidea - ok
22:43:48.0943 0x08c4  UrsCx01000 - ok
22:43:48.0943 0x08c4  UrsSynopsys - ok
22:43:48.0958 0x08c4  usbccgp - ok
22:43:48.0958 0x08c4  usbcir - ok
22:43:48.0958 0x08c4  usbehci - ok
22:43:48.0958 0x08c4  usbhub - ok
22:43:48.0958 0x08c4  USBHUB3 - ok
22:43:48.0975 0x08c4  usbohci - ok
22:43:48.0978 0x08c4  usbprint - ok
22:43:48.0981 0x08c4  usbser - ok
22:43:48.0983 0x08c4  USBSTOR - ok
22:43:48.0986 0x08c4  usbuhci - ok
22:43:48.0988 0x08c4  usbvideo - ok
22:43:48.0991 0x08c4  USBXHCI - ok
22:43:49.0000 0x08c4  UserDataSvc - ok
22:43:49.0018 0x08c4  UserManager - ok
22:43:49.0127 0x08c4  [ 52C696180AC8371163B268D648DCBDA5, B75925B1B8722F174862AF7554587F81C9A57EF661253F230B4EDA5E2C2AA4A6 ] USER_ESRV_SVC_WILLAMETTE C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
22:43:49.0127 0x08c4  USER_ESRV_SVC_WILLAMETTE - ok
22:43:49.0143 0x08c4  UsoSvc - ok
22:43:49.0143 0x08c4  VaultSvc - ok
22:43:49.0180 0x08c4  [ 0E3C4F20B2CE21168F3242D9CAC6CBF2, 1BD5E1A2000EBC1C335A8960ACDCD08BDC8230F533A80D086D2EE6FE4990EA02 ] VBoxUSBMon      C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
22:43:49.0196 0x08c4  VBoxUSBMon - ok
22:43:49.0196 0x08c4  vdrvroot - ok
22:43:49.0212 0x08c4  vds - ok
22:43:49.0212 0x08c4  VerifierExt - ok
22:43:49.0212 0x08c4  vhdmp - ok
22:43:49.0227 0x08c4  vhf - ok
22:43:49.0227 0x08c4  vmbus - ok
22:43:49.0227 0x08c4  VMBusHID - ok
22:43:49.0227 0x08c4  vmgid - ok
22:43:49.0243 0x08c4  vmicguestinterface - ok
22:43:49.0243 0x08c4  vmicheartbeat - ok
22:43:49.0243 0x08c4  vmickvpexchange - ok
22:43:49.0258 0x08c4  vmicrdv - ok
22:43:49.0258 0x08c4  vmicshutdown - ok
22:43:49.0258 0x08c4  vmictimesync - ok
22:43:49.0258 0x08c4  vmicvmsession - ok
22:43:49.0258 0x08c4  vmicvss - ok
22:43:49.0275 0x08c4  volmgr - ok
22:43:49.0277 0x08c4  volmgrx - ok
22:43:49.0280 0x08c4  volsnap - ok
22:43:49.0280 0x08c4  volume - ok
22:43:49.0296 0x08c4  vpci - ok
22:43:49.0296 0x08c4  vsmraid - ok
22:43:49.0296 0x08c4  VSS - ok
22:43:49.0296 0x08c4  VSTXRAID - ok
22:43:49.0312 0x08c4  vwifibus - ok
22:43:49.0312 0x08c4  vwififlt - ok
22:43:49.0312 0x08c4  vwifimp - ok
22:43:49.0328 0x08c4  W32Time - ok
22:43:49.0328 0x08c4  WacomPen - ok
22:43:49.0343 0x08c4  WalletService - ok
22:43:49.0343 0x08c4  wanarp - ok
22:43:49.0343 0x08c4  wanarpv6 - ok
22:43:49.0343 0x08c4  wbengine - ok
22:43:49.0378 0x08c4  WbioSrvc - ok
22:43:49.0381 0x08c4  wcifs - ok
22:43:49.0381 0x08c4  Wcmsvc - ok
22:43:49.0381 0x08c4  wcncsvc - ok
22:43:49.0397 0x08c4  wcnfs - ok
22:43:49.0397 0x08c4  WdBoot - ok
22:43:49.0397 0x08c4  Wdf01000 - ok
22:43:49.0397 0x08c4  WdFilter - ok
22:43:49.0397 0x08c4  WdiServiceHost - ok
22:43:49.0397 0x08c4  WdiSystemHost - ok
22:43:49.0412 0x08c4  wdiwifi - ok
22:43:49.0412 0x08c4  WdNisDrv - ok
22:43:49.0428 0x08c4  WdNisSvc - ok
22:43:49.0428 0x08c4  WebClient - ok
22:43:49.0459 0x08c4  Wecsvc - ok
22:43:49.0475 0x08c4  WEPHOSTSVC - ok
22:43:49.0478 0x08c4  wercplsupport - ok
22:43:49.0481 0x08c4  WerSvc - ok
22:43:49.0481 0x08c4  WFPLWFS - ok
22:43:49.0481 0x08c4  WiaRpc - ok
22:43:49.0481 0x08c4  WIMMount - ok
22:43:49.0481 0x08c4  WinDefend - ok
22:43:49.0497 0x08c4  WindowsTrustedRT - ok
22:43:49.0497 0x08c4  WindowsTrustedRTProxy - ok
22:43:49.0513 0x08c4  WinHttpAutoProxySvc - ok
22:43:49.0528 0x08c4  WinMad - ok
22:43:49.0660 0x08c4  Winmgmt - ok
22:43:49.0681 0x08c4  WinRM - ok
22:43:49.0697 0x08c4  WINUSB - ok
22:43:49.0697 0x08c4  WinVerbs - ok
22:43:49.0728 0x08c4  wisvc - ok
22:43:49.0744 0x08c4  WlanSvc - ok
22:43:49.0759 0x08c4  wlidsvc - ok
22:43:49.0759 0x08c4  WmiAcpi - ok
22:43:49.0776 0x08c4  wmiApSrv - ok
22:43:49.0781 0x08c4  WMPNetworkSvc - ok
22:43:49.0797 0x08c4  Wof - ok
22:43:49.0812 0x08c4  workfolderssvc - ok
22:43:49.0812 0x08c4  WPDBusEnum - ok
22:43:49.0828 0x08c4  WpdUpFltr - ok
22:43:49.0844 0x08c4  WpnService - ok
22:43:49.0844 0x08c4  WpnUserService - ok
22:43:49.0859 0x08c4  ws2ifsl - ok
22:43:49.0859 0x08c4  wscsvc - ok
22:43:49.0876 0x08c4  WSearch - ok
22:43:49.0881 0x08c4  wuauserv - ok
22:43:49.0897 0x08c4  WudfPf - ok
22:43:49.0897 0x08c4  WUDFRd - ok
22:43:49.0897 0x08c4  wudfsvc - ok
22:43:49.0897 0x08c4  WUDFWpdFs - ok
22:43:49.0913 0x08c4  WUDFWpdMtp - ok
22:43:49.0913 0x08c4  WwanSvc - ok
22:43:49.0944 0x08c4  XblAuthManager - ok
22:43:49.0981 0x08c4  XblGameSave - ok
22:43:49.0981 0x08c4  xboxgip - ok
22:43:49.0996 0x08c4  XboxNetApiSvc - ok
22:43:50.0019 0x08c4  xinputhid - ok
22:43:50.0051 0x08c4  [ D3D9CB4BA15C1854294517AA8954E201, DFBB6E1A5FF01123FEAD6EFFA67F4A0203792AFDF82EAFFC2DA981A584896542 ] XQHDrv          C:\WINDOWS\system32\DRIVERS\XQHDrv.sys
22:43:50.0051 0x08c4  XQHDrv - ok
22:43:50.0073 0x08c4  xusb22 - ok
22:43:50.0073 0x08c4  ================ Scan global ===============================
22:43:50.0131 0x08c4  [ Global ] - ok
22:43:50.0131 0x08c4  ================ Scan MBR ==================================
22:43:50.0131 0x08c4  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
22:43:50.0552 0x08c4  \Device\Harddisk0\DR0 - ok
22:43:50.0590 0x08c4  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
22:43:50.0792 0x08c4  \Device\Harddisk1\DR1 - ok
22:43:50.0792 0x08c4  ================ Scan VBR ==================================
22:43:50.0792 0x08c4  [ 0F5268551DB0136A398CB04B8679FC25 ] \Device\Harddisk0\DR0\Partition1
22:43:50.0808 0x08c4  \Device\Harddisk0\DR0\Partition1 - ok
22:43:50.0839 0x08c4  [ 7DECA1E84C6CEACE8CE7D219BB06A24C ] \Device\Harddisk1\DR1\Partition1
22:43:50.0839 0x08c4  \Device\Harddisk1\DR1\Partition1 - ok
22:43:50.0855 0x08c4  [ CD073EE7F7A6C185F0E109EC9C038D9B ] \Device\Harddisk1\DR1\Partition2
22:43:50.0855 0x08c4  \Device\Harddisk1\DR1\Partition2 - ok
22:43:50.0871 0x08c4  [ 7F32168DECCC196E6CE3E8271D2B4831 ] \Device\Harddisk1\DR1\Partition3
22:43:50.0871 0x08c4  \Device\Harddisk1\DR1\Partition3 - ok
22:43:50.0891 0x08c4  [ D993F839933B30D3A2D8811CAA7B01A8 ] \Device\Harddisk1\DR1\Partition4
22:43:50.0893 0x08c4  \Device\Harddisk1\DR1\Partition4 - ok
22:43:50.0908 0x08c4  [ 440BD6231A6AE62F10A1EBD03F85D258 ] \Device\Harddisk1\DR1\Partition5
22:43:50.0924 0x08c4  \Device\Harddisk1\DR1\Partition5 - ok
22:43:50.0924 0x08c4  ================ Scan generic autorun ======================
22:43:51.0327 0x08c4  [ 0011163AC036C71E03883DD10C626F81, CD1F55C6BC20817F69E76A2B2AB4BA30D175821A3A4EA5A34E285182584518B7 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
22:43:51.0555 0x08c4  RtHDVCpl - ok
22:43:51.0654 0x08c4  [ 59F8DA04498B80D58FD8638370C5C84F, 522F347F1F1B3991FDC60FF3CE8F8ABB2EDFE65C569D18EF5ACB690FD1BADC82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
22:43:51.0676 0x08c4  RtHDVBg_Dolby - ok
22:43:51.0723 0x08c4  [ B99D68C404A4E69FBB95E3A282091CFA, 5EAB9CF42DCB58C5067C857E79F068611AE7C4A52F06B8C5C2DD0821B6B7D318 ] C:\Windows\system32\igfxtray.exe
22:43:51.0739 0x08c4  IgfxTray - ok
22:43:51.0739 0x08c4  SynTPEnh - ok
22:43:51.0739 0x08c4  WindowsDefender - ok
22:43:51.0754 0x08c4  ShadowPlay - ok
22:43:51.0826 0x08c4  [ B08ECF1A28499D720B470CBBDC6D7EAD, 2E282611B1AD2070164098972C6722F44F1CAB00BA9A55A6F3569FFC8AAC0C0C ] C:\Program Files (x86)\Razer\RzWizard\RzWizard.exe
22:43:51.0894 0x08c4  RzWizard - detected UnsignedFile.Multi.Generic ( 1 )
22:43:52.0016 0x08c4  Detect skipped due to KSN trusted
22:43:52.0016 0x08c4  RzWizard - ok
22:43:52.0127 0x08c4  OneDriveSetup - ok
22:43:52.0127 0x08c4  OneDriveSetup - ok
22:43:52.0382 0x08c4  [ E93D62A6DB736AA82A3EEDDFDFE73311, 96EC57F66EE1A36580536518A814299DE6D5DACC0026F5A659B41918434ED8FA ] C:\Program Files\CCleaner\CCleaner64.exe
22:43:52.0520 0x08c4  CCleaner Monitoring - ok
22:43:52.0662 0x08c4  [ D2CE6EA0E9F641D7153462D40C6B4193, 3AAE5239F951E29497D759326BDC23E19644B763DC5661CA4E4980418195C37D ] C:\Program Files (x86)\Steam\steam.exe
22:43:52.0709 0x08c4  Steam - ok
22:43:52.0846 0x08c4  [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\tobias\AppData\Local\Microsoft\OneDrive\OneDrive.exe
22:43:52.0862 0x08c4  OneDrive - ok
22:43:53.0008 0x08c4  [ DAB21C14C09FA0F40DACD1A19C7A9125, DC215DAA9F79EA6B9D3B2C376A908AC4621871DC4B56374FAD7EDAED4FEB66D7 ] C:\Program Files (x86)\Origin\Origin.exe
22:43:53.0062 0x08c4  EADM - ok
22:43:53.0109 0x08c4  Skype - ok
22:43:53.0162 0x08c4  [ CC436BB2A26391F3DEBE316F6FB0474F, 2DA63827AD1449CA5F2888ADFA9645F1EAF8B39D26EC214441EE80F3A56E6E72 ] C:\Users\tobias\AppData\Local\Microsoft\BingSvc\BingSvc.exe
22:43:53.0162 0x08c4  BingSvc - ok
22:43:53.0209 0x08c4  [ F06414FDDFA07A239BD5A1D349DD0C52, 98EE1026B349551DBF998A038B5ACF027DE6A894805CDCAD653C9C5337949368 ] C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
22:43:53.0225 0x08c4  Overwolf - ok
22:43:53.0294 0x08c4  [ DD9EAE1C80561C509A8B8801E16BAA38, C688B626ADB0A7B72041DE08D0AA5930E9178C36F1FF9905124D397371B825D1 ] C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
22:43:53.0331 0x08c4  Spotify Web Helper - ok
22:43:53.0333 0x08c4  Waiting for KSN requests completion. In queue: 38
22:43:54.0343 0x08c4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x61100 ( enabled : updated )
22:43:54.0345 0x08c4  Win FW state via NFP2: enabled ( trusted )
22:43:54.0425 0x08c4  ============================================================
22:43:54.0425 0x08c4  Scan finished
22:43:54.0425 0x08c4  ============================================================
22:43:54.0425 0x0898  Detected object count: 0
22:43:54.0425 0x0898  Actual detected object count: 0
22:44:35.0474 0x0f24  ============================================================
22:44:35.0474 0x0f24  Scan started
22:44:35.0474 0x0f24  Mode: Manual; SigCheck; TDLFS; 
22:44:35.0474 0x0f24  ============================================================
22:44:35.0474 0x0f24  KSN ping started
22:44:35.0574 0x0f24  KSN ping finished: true
22:44:36.0800 0x0f24  ================ Scan system memory ========================
22:44:36.0800 0x0f24  System memory - ok
22:44:36.0800 0x0f24  ================ Scan services =============================
22:44:36.0953 0x0f24  1394ohci - ok
22:44:36.0953 0x0f24  3ware - ok
22:44:36.0968 0x0f24  ACPI - ok
22:44:36.0968 0x0f24  AcpiDev - ok
22:44:36.0968 0x0f24  acpiex - ok
22:44:36.0984 0x0f24  acpipagr - ok
22:44:37.0000 0x0f24  AcpiPmi - ok
22:44:37.0000 0x0f24  acpitime - ok
22:44:37.0069 0x0f24  [ 9BAF21BA600EC4E5FD9A66AD3E4FF5A6, 5E02E5E80557F6EC870EB7CC2DE95169D4225B87A2FE7E796736205F51C15816 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:44:37.0084 0x0f24  AdobeFlashPlayerUpdateSvc - ok
22:44:37.0084 0x0f24  ADP80XX - ok
22:44:37.0100 0x0f24  AFD - ok
22:44:37.0141 0x0f24  ahcache - ok
22:44:37.0157 0x0f24  AJRouter - ok
22:44:37.0173 0x0f24  ALG - ok
22:44:37.0260 0x0f24  [ 23CB92EE5654BA92619D796E3AC7DB86, DD4536B55F021990DDAD8864F9BAECCDE40B2B532F6FB0D6CF9EB1A6B112A983 ] ALSysIO         C:\Users\tobias\AppData\Local\Temp\ALSysIO64.sys
22:44:37.0260 0x0f24  ALSysIO - ok
22:44:37.0275 0x0f24  AmdK8 - ok
22:44:37.0275 0x0f24  AmdPPM - ok
22:44:37.0275 0x0f24  amdsata - ok
22:44:37.0275 0x0f24  amdsbs - ok
22:44:37.0275 0x0f24  amdxata - ok
22:44:37.0275 0x0f24  AppID - ok
22:44:37.0291 0x0f24  AppIDSvc - ok
22:44:37.0291 0x0f24  Appinfo - ok
22:44:37.0291 0x0f24  applockerfltr - ok
22:44:37.0307 0x0f24  AppReadiness - ok
22:44:37.0343 0x0f24  AppXSvc - ok
22:44:37.0344 0x0f24  arcsas - ok
22:44:37.0344 0x0f24  AsyncMac - ok
22:44:37.0344 0x0f24  atapi - ok
22:44:37.0360 0x0f24  athr - ok
22:44:37.0375 0x0f24  AudioEndpointBuilder - ok
22:44:37.0391 0x0f24  Audiosrv - ok
22:44:37.0522 0x0f24  [ B890E8C5CBECEB1158D52B2B2842B4EF, FD6D0A95C27433F9BBC2D730BD2B86AE263092FBFF12589E5EEEFB577685C777 ] avgsvc          C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
22:44:37.0544 0x0f24  avgsvc - ok
22:44:37.0560 0x0f24  AxInstSV - ok
22:44:37.0560 0x0f24  b06bdrv - ok
22:44:37.0560 0x0f24  BasicDisplay - ok
22:44:37.0560 0x0f24  BasicRender - ok
22:44:37.0576 0x0f24  bcmfn - ok
22:44:37.0576 0x0f24  bcmfn2 - ok
22:44:37.0591 0x0f24  BDESVC - ok
22:44:37.0591 0x0f24  Beep - ok
22:44:37.0607 0x0f24  BFE - ok
22:44:37.0623 0x0f24  BITS - ok
22:44:37.0644 0x0f24  bowser - ok
22:44:37.0644 0x0f24  BrokerInfrastructure - ok
22:44:37.0660 0x0f24  Browser - ok
22:44:37.0675 0x0f24  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS       C:\WINDOWS\System32\drivers\btath_bus.sys
22:44:37.0675 0x0f24  BTATH_BUS - ok
22:44:37.0707 0x0f24  [ C8BF11D79B29BB23A461B65B58BA8593, 35AFAD5ED40304976287E6C982085DF7A91FF48F0320DAC32370FA039AA03C69 ] BtFilter        C:\WINDOWS\system32\DRIVERS\btfilter.sys
22:44:37.0722 0x0f24  BtFilter - ok
22:44:37.0744 0x0f24  BthAvrcpTg - ok
22:44:37.0744 0x0f24  BthEnum - ok
22:44:37.0760 0x0f24  BthHFEnum - ok
22:44:37.0760 0x0f24  bthhfhid - ok
22:44:37.0775 0x0f24  BthHFSrv - ok
22:44:37.0791 0x0f24  BthLEEnum - ok
22:44:37.0807 0x0f24  BTHMODEM - ok
22:44:37.0807 0x0f24  BthPan - ok
22:44:37.0807 0x0f24  BTHPORT - ok
22:44:37.0822 0x0f24  bthserv - ok
22:44:37.0841 0x0f24  BTHUSB - ok
22:44:37.0844 0x0f24  buttonconverter - ok
22:44:37.0844 0x0f24  CapImg - ok
22:44:38.0002 0x0f24  [ 0979E21A43F8F53945818D0E54FDF4C0, 1689C2F0FA646432814FC4FFA3D4514BC406E7E7DF11619B47C3EFF540809F94 ] CCDMonitorService C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe
22:44:38.0045 0x0f24  CCDMonitorService - ok
22:44:38.0092 0x0f24  [ A5C16A0BE89EE409732178BEB62F7EA7, D4B993F63CFD9B487BD53B532AB9435084B4C752F2731E189FA1420D516A4E95 ] ccSet_NARA      C:\WINDOWS\system32\drivers\NARAx64\0405000.009\ccSetx64.sys
22:44:38.0092 0x0f24  ccSet_NARA - ok
22:44:38.0107 0x0f24  cdfs - ok
22:44:38.0123 0x0f24  CDPSvc - ok
22:44:38.0144 0x0f24  CDPUserSvc - ok
22:44:38.0276 0x0f24  cdrom - ok
22:44:38.0292 0x0f24  CertPropSvc - ok
22:44:38.0323 0x0f24  [ 8030844CFB108E9E26385FC0CC3A8340, 74DE72D76510D3C5290B03FB90AED134A42A35176A1F080405FCBDAB0CD493B7 ] cfwids          C:\WINDOWS\system32\drivers\cfwids.sys
22:44:38.0323 0x0f24  cfwids - ok
22:44:38.0323 0x0f24  cht4iscsi - ok
22:44:38.0323 0x0f24  cht4vbd - ok
22:44:38.0345 0x0f24  circlass - ok
22:44:38.0361 0x0f24  CLFS - ok
22:44:38.0361 0x0f24  ClipSVC - ok
22:44:38.0377 0x0f24  clreg - ok
22:44:38.0377 0x0f24  CmBatt - ok
22:44:38.0377 0x0f24  CNG - ok
22:44:38.0393 0x0f24  cnghwassist - ok
22:44:38.0461 0x0f24  CompositeBus - ok
22:44:38.0461 0x0f24  COMSysApp - ok
22:44:38.0461 0x0f24  condrv - ok
22:44:38.0477 0x0f24  CoreMessagingRegistrar - ok
22:44:38.0545 0x0f24  [ 700A193A1555B083E3A08F5D3A844925, 974F7F0C78289EFE821407E418EB65A022D6445DED8EA112B9866784AF0221EE ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
22:44:38.0561 0x0f24  cphs - ok
22:44:38.0577 0x0f24  CryptSvc - ok
22:44:38.0608 0x0f24  dam - ok
22:44:38.0647 0x0f24  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
22:44:38.0647 0x0f24  dbupdate - ok
22:44:38.0663 0x0f24  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
22:44:38.0663 0x0f24  dbupdatem - ok
22:44:38.0663 0x0f24  dbx - ok
22:44:38.0694 0x0f24  [ A8352D11F8E2F7E8FA0BD6F8EF599C61, 72B9F8B96433CCFE5CC9FB786BF976068BDDC04D39F9F3BCFA5132E61A97C3FD ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
22:44:38.0694 0x0f24  DbxSvc - ok
22:44:38.0725 0x0f24  DcomLaunch - ok
22:44:38.0746 0x0f24  DcpSvc - ok
22:44:38.0762 0x0f24  defragsvc - ok
22:44:38.0762 0x0f24  DeviceAssociationService - ok
22:44:38.0778 0x0f24  DeviceInstall - ok
22:44:38.0793 0x0f24  DevQueryBroker - ok
22:44:38.0793 0x0f24  Dfsc - ok
22:44:38.0809 0x0f24  Dhcp - ok
22:44:38.0846 0x0f24  diagnosticshub.standardcollector.service - ok
22:44:38.0878 0x0f24  DiagTrack - ok
22:44:38.0893 0x0f24  disk - ok
22:44:38.0909 0x0f24  DmEnrollmentSvc - ok
22:44:38.0909 0x0f24  dmvsc - ok
22:44:38.0909 0x0f24  dmwappushservice - ok
22:44:38.0925 0x0f24  Dnscache - ok
22:44:38.0941 0x0f24  dot3svc - ok
22:44:38.0943 0x0f24  DPS - ok
22:44:38.0946 0x0f24  drmkaud - ok
22:44:38.0962 0x0f24  DsmSvc - ok
22:44:38.0962 0x0f24  DsSvc - ok
22:44:38.0962 0x0f24  DXGKrnl - ok
22:44:38.0978 0x0f24  EapHost - ok
22:44:38.0978 0x0f24  ebdrv - ok
22:44:38.0993 0x0f24  EFS - ok
22:44:38.0993 0x0f24  EhStorClass - ok
22:44:39.0019 0x0f24  EhStorTcgDrv - ok
22:44:39.0019 0x0f24  embeddedmode - ok
22:44:39.0035 0x0f24  EntAppSvc - ok
22:44:39.0147 0x0f24  [ B5B5FC68BFB3F01267E54B236660E610, 103F90343B207AFB9151CDA71E70884FEB56E8596754D2AB8B3F46C045642F10 ] ePowerSvc       C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
22:44:39.0163 0x0f24  ePowerSvc - ok
22:44:39.0163 0x0f24  ErrDev - ok
22:44:39.0210 0x0f24  EventSystem - ok
22:44:39.0210 0x0f24  exfat - ok
22:44:39.0225 0x0f24  fastfat - ok
22:44:39.0225 0x0f24  Fax - ok
22:44:39.0225 0x0f24  fdc - ok
22:44:39.0242 0x0f24  fdPHost - ok
22:44:39.0245 0x0f24  FDResPub - ok
22:44:39.0263 0x0f24  fhsvc - ok
22:44:39.0294 0x0f24  FileCrypt - ok
22:44:39.0294 0x0f24  FileInfo - ok
22:44:39.0294 0x0f24  Filetrace - ok
22:44:39.0294 0x0f24  flpydisk - ok
22:44:39.0294 0x0f24  FltMgr - ok
22:44:39.0325 0x0f24  FontCache - ok
22:44:39.0410 0x0f24  FontCache3.0.0.0 - ok
22:44:39.0425 0x0f24  FrameServer - ok
22:44:39.0425 0x0f24  FsDepends - ok
22:44:39.0425 0x0f24  Fs_Rec - ok
22:44:39.0447 0x0f24  fvevol - ok
22:44:39.0525 0x0f24  [ 61ABC13A9A44E6D6793BAC4F35045025, 44B58E98CC0F87B79FAD0D1CA04447F9401E2467C238CB07295A53EE72771633 ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
22:44:39.0525 0x0f24  GamesAppIntegrationService - detected UnsignedFile.Multi.Generic ( 1 )
22:44:39.0525 0x0f24  Detect skipped due to KSN trusted
22:44:39.0525 0x0f24  GamesAppIntegrationService - ok
22:44:39.0547 0x0f24  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
22:44:39.0563 0x0f24  GamesAppService - ok
22:44:39.0594 0x0f24  gencounter - ok
22:44:39.0610 0x0f24  genericusbfn - ok
22:44:39.0610 0x0f24  GPIOClx0101 - ok
22:44:39.0643 0x0f24  gpsvc - ok
22:44:39.0645 0x0f24  GpuEnergyDrv - ok
22:44:39.0695 0x0f24  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:44:39.0695 0x0f24  gupdate - ok
22:44:39.0695 0x0f24  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:44:39.0710 0x0f24  gupdatem - ok
22:44:39.0710 0x0f24  HDAudBus - ok
22:44:39.0710 0x0f24  HidBatt - ok
22:44:39.0710 0x0f24  HidBth - ok
22:44:39.0710 0x0f24  hidi2c - ok
22:44:39.0726 0x0f24  hidinterrupt - ok
22:44:39.0726 0x0f24  HidIr - ok
22:44:39.0747 0x0f24  hidserv - ok
22:44:39.0764 0x0f24  HidUsb - ok
22:44:39.0779 0x0f24  HomeGroupListener - ok
22:44:39.0795 0x0f24  HomeGroupProvider - ok
22:44:39.0810 0x0f24  HpSAMD - ok
22:44:39.0826 0x0f24  [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64        C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys
22:44:39.0848 0x0f24  HTCAND64 - ok
22:44:39.0911 0x0f24  [ 5C8BC8A28798FD010E7ABC4E0D588CAA, 622CAFD3DCBB05E15539589FDD4002DA6F24790FC55BDF05AA3D043E8A34E53E ] HTCMonitorService C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
22:44:39.0911 0x0f24  HTCMonitorService - ok
22:44:39.0948 0x0f24  [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot        C:\WINDOWS\system32\DRIVERS\htcnprot.sys
22:44:39.0948 0x0f24  htcnprot - ok
22:44:39.0979 0x0f24  [ 7C7C986776D00E575BFBDE5DCBDC615D, 4CF12851A5A45917C3A9139B19D79434F2038611B617F83A714506CC7A1A6C61 ] HtcVCom32       C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys
22:44:39.0995 0x0f24  HtcVCom32 - ok
22:44:39.0995 0x0f24  HTTP - ok
22:44:40.0026 0x0f24  HvHost - ok
22:44:40.0047 0x0f24  hvservice - ok
22:44:40.0048 0x0f24  hwpolicy - ok
22:44:40.0048 0x0f24  hyperkbd - ok
22:44:40.0064 0x0f24  i8042prt - ok
22:44:40.0079 0x0f24  iagpio - ok
22:44:40.0095 0x0f24  iai2c - ok
22:44:40.0095 0x0f24  iaLPSS2i_GPIO2 - ok
22:44:40.0095 0x0f24  iaLPSS2i_I2C - ok
22:44:40.0148 0x0f24  iaLPSSi_GPIO - ok
22:44:40.0179 0x0f24  iaLPSSi_I2C - ok
22:44:40.0210 0x0f24  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
22:44:40.0226 0x0f24  iaStorA - ok
22:44:40.0226 0x0f24  iaStorAV - ok
22:44:40.0226 0x0f24  iaStorV - ok
22:44:40.0242 0x0f24  ibbus - ok
22:44:40.0247 0x0f24  icssvc - ok
22:44:40.0426 0x0f24  [ 548712979B0BA12ECE2D8549797593D4, 6809412A76DE30C914A65BB8546E436AD540E00610D5D13FDE486C4446E95C24 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
22:44:40.0527 0x0f24  igfx - ok
22:44:40.0580 0x0f24  [ BA1BA1C9E40BCEB88678747C1E7C256F, C85CC690D353FCEBFD243304C25EEAA2BC13DB1E2A4C8C65371F455511540959 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
22:44:40.0596 0x0f24  igfxCUIService2.0.0.0 - ok
22:44:40.0611 0x0f24  IKEEXT - ok
22:44:40.0627 0x0f24  IndirectKmd - ok
22:44:40.0651 0x0f24  [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
22:44:40.0651 0x0f24  intaud_WaveExtensible - ok
22:44:40.0783 0x0f24  [ 8EB4D1D7806D05E5AB39D96464D801CA, 73853F56CD05243B1CABED2CA2420DFC8BA53F951030EECCD0D2A0E26D8A0D1B ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
22:44:40.0852 0x0f24  IntcAzAudAddService - ok
22:44:40.0899 0x0f24  [ D6A22510D795928E8840619900D672B4, 296F232B0A6D42840A745E4706D2815F6D2E4279DBD90112CBFBFF8833B724AF ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
22:44:40.0899 0x0f24  IntcDAud - ok
22:44:40.0999 0x0f24  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
22:44:41.0030 0x0f24  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
22:44:41.0030 0x0f24  Detect skipped due to KSN trusted
22:44:41.0030 0x0f24  Intel(R) Capability Licensing Service Interface - ok
22:44:41.0083 0x0f24  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
22:44:41.0098 0x0f24  Intel(R) Capability Licensing Service TCP IP Interface - ok
22:44:41.0130 0x0f24  intelide - ok
22:44:41.0130 0x0f24  intelpep - ok
22:44:41.0130 0x0f24  intelppm - ok
22:44:41.0154 0x0f24  iorate - ok
22:44:41.0154 0x0f24  IpFilterDriver - ok
22:44:41.0170 0x0f24  iphlpsvc - ok
22:44:41.0185 0x0f24  IPMIDRV - ok
22:44:41.0185 0x0f24  IPNAT - ok
22:44:41.0185 0x0f24  irda - ok
22:44:41.0185 0x0f24  IRENUM - ok
22:44:41.0201 0x0f24  irmon - ok
22:44:41.0201 0x0f24  isapnp - ok
22:44:41.0217 0x0f24  iScsiPrt - ok
22:44:41.0270 0x0f24  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
22:44:41.0270 0x0f24  jhi_service - ok
22:44:41.0285 0x0f24  k57nd60a - ok
22:44:41.0301 0x0f24  kbdclass - ok
22:44:41.0317 0x0f24  kbdhid - ok
22:44:41.0332 0x0f24  kdnic - ok
22:44:41.0332 0x0f24  KeyIso - ok
22:44:41.0348 0x0f24  KSecDD - ok
22:44:41.0354 0x0f24  KSecPkg - ok
22:44:41.0354 0x0f24  ksthunk - ok
22:44:41.0370 0x0f24  KtmRm - ok
22:44:41.0370 0x0f24  LanmanServer - ok
22:44:41.0401 0x0f24  LanmanWorkstation - ok
22:44:41.0401 0x0f24  lfsvc - ok
22:44:41.0432 0x0f24  LicenseManager - ok
22:44:41.0432 0x0f24  lltdio - ok
22:44:41.0432 0x0f24  lltdsvc - ok
22:44:41.0453 0x0f24  [ 4ACC60B4CBC911F3F34A1D66213BBBF5, C09A87ACAE0D41FD425BAF076FFE9B601DB89BB66199E5BD72FC59C6A8E449DB ] LMDriver        C:\WINDOWS\System32\drivers\LMDriver.sys
22:44:41.0454 0x0f24  LMDriver - ok
22:44:41.0454 0x0f24  lmhosts - ok
22:44:41.0501 0x0f24  [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:44:41.0501 0x0f24  LMS - ok
22:44:41.0554 0x0f24  [ FFDF8F07A900659CF927A273942926F8, BE27505B77404F18A0C1E57645211CC2D6CC83DEA60352A68B837E0E2D1847B5 ] LMSvc           C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
22:44:41.0570 0x0f24  LMSvc - ok
22:44:41.0570 0x0f24  LSI_SAS - ok
22:44:41.0570 0x0f24  LSI_SAS2i - ok
22:44:41.0570 0x0f24  LSI_SAS3i - ok
22:44:41.0570 0x0f24  LSI_SSS - ok
22:44:41.0585 0x0f24  LSM - ok
22:44:41.0585 0x0f24  luafv - ok
22:44:41.0601 0x0f24  MapsBroker - ok
22:44:41.0601 0x0f24  megasas - ok
22:44:41.0632 0x0f24  megasas2i - ok
22:44:41.0632 0x0f24  megasr - ok
22:44:41.0654 0x0f24  [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64          C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
22:44:41.0654 0x0f24  MEIx64 - ok
22:44:41.0670 0x0f24  MessagingService - ok
22:44:41.0732 0x0f24  [ B235528D48B67CCA29454C28071048DF, CBAD7449C4F471CB5F9AF5C35C70233A0937A722174D5252D6104C39F83D4F93 ] mfeaack         C:\WINDOWS\system32\drivers\mfeaack.sys
22:44:41.0748 0x0f24  mfeaack - ok
22:44:41.0788 0x0f24  [ 8F736C2F4E5C42BB57F5F7A5506FF5F3, 8CC813AD04FFAFBF729EC88147C29BC6EA5F10C0E813DB6F249AB1879E9F30EB ] mfeavfk         C:\WINDOWS\system32\drivers\mfeavfk.sys
22:44:41.0804 0x0f24  mfeavfk - ok
22:44:41.0819 0x0f24  [ 91F6C485F22E653C6C43ED4194B68B6F, 98A0ECD9D0E6D1E1ECB0E34C15695B00C33059FC858541DB445A9264AF1F1F6C ] mfeelamk        C:\WINDOWS\system32\drivers\mfeelamk.sys
22:44:41.0835 0x0f24  mfeelamk - ok
22:44:41.0905 0x0f24  [ FF8A2CC149A42A2CE6A600DE6EF9CB1E, BD4EE5AAE0637D0AFBD35FF35BB46C2E519652E50CC787EA7812C3D0436FFEB2 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:44:41.0905 0x0f24  mfefire - ok
22:44:41.0920 0x0f24  [ 324167EB03FA753C04F8DB69A2413DD9, AC40C5654B2AED44E9EDE135715F9D831279DDC5435AFBED2789D971E1C402FC ] mfefirek        C:\WINDOWS\system32\drivers\mfefirek.sys
22:44:41.0936 0x0f24  mfefirek - ok
22:44:41.0973 0x0f24  [ 7A1C9D04DD7A0EFEB6ED26FBA10F86ED, C1335A8E60EFB110214297E9977AF436D44B705561FEED30954D57EBDF3D2A9C ] mfehidk         C:\WINDOWS\system32\drivers\mfehidk.sys
22:44:41.0989 0x0f24  mfehidk - ok
22:44:42.0020 0x0f24  [ ADDC6C846D95A2D2E60C5213B6FD6A2E, 8FFFD7E5F24D74D105F3D1C5120B66D4AFDDAE07EA59DD70B616F035AB77F252 ] mfemms          C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
22:44:42.0036 0x0f24  mfemms - ok
22:44:42.0089 0x0f24  [ 8A6784EE831673A404B5A9ADB927D3BB, B60F62087FEE4F44BD933F4A634B65FEEEF3D946A124BCE295A04248B758306F ] mfevtp          C:\Windows\system32\mfevtps.exe
22:44:42.0105 0x0f24  mfevtp - ok
22:44:42.0120 0x0f24  [ 957611C32C6A0D8225E41D0BD07BF35B, F4D8C1727382F4B0744D92D77D02CE381E03DA4ECFCF601D5E70F3C40B6513E9 ] mfewfpk         C:\WINDOWS\system32\drivers\mfewfpk.sys
22:44:42.0120 0x0f24  mfewfpk - ok
22:44:42.0120 0x0f24  mlx4_bus - ok
22:44:42.0153 0x0f24  MMCSS - ok
22:44:42.0155 0x0f24  Modem - ok
22:44:42.0160 0x0f24  monitor - ok
22:44:42.0160 0x0f24  mouclass - ok
22:44:42.0160 0x0f24  mouhid - ok
22:44:42.0160 0x0f24  mountmgr - ok
22:44:42.0160 0x0f24  mpsdrv - ok
22:44:42.0176 0x0f24  MpsSvc - ok
22:44:42.0207 0x0f24  MRxDAV - ok
22:44:42.0207 0x0f24  mrxsmb - ok
22:44:42.0223 0x0f24  mrxsmb10 - ok
22:44:42.0258 0x0f24  mrxsmb20 - ok
22:44:42.0274 0x0f24  MsBridge - ok
22:44:42.0274 0x0f24  MSDTC - ok
22:44:42.0274 0x0f24  Msfs - ok
22:44:42.0289 0x0f24  msgpiowin32 - ok
22:44:42.0305 0x0f24  mshidkmdf - ok
22:44:42.0305 0x0f24  mshidumdf - ok
22:44:42.0305 0x0f24  msisadrv - ok
22:44:42.0358 0x0f24  MSiSCSI - ok
22:44:42.0358 0x0f24  msiserver - ok
22:44:42.0358 0x0f24  MSKSSRV - ok
22:44:42.0374 0x0f24  MsLldp - ok
22:44:42.0374 0x0f24  MSPCLOCK - ok
22:44:42.0374 0x0f24  MSPQM - ok
22:44:42.0374 0x0f24  MsRPC - ok
22:44:42.0374 0x0f24  mssmbios - ok
22:44:42.0374 0x0f24  MSTEE - ok
22:44:42.0389 0x0f24  MTConfig - ok
22:44:42.0405 0x0f24  Mup - ok
22:44:42.0405 0x0f24  mvumis - ok
22:44:42.0421 0x0f24  NativeWifiP - ok
22:44:42.0489 0x0f24  [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
22:44:42.0505 0x0f24  NAUpdate - ok
22:44:42.0521 0x0f24  NcaSvc - ok
22:44:42.0536 0x0f24  NcbService - ok
22:44:42.0536 0x0f24  NcdAutoSetup - ok
22:44:42.0536 0x0f24  ndfltr - ok
22:44:42.0536 0x0f24  NDIS - ok
22:44:42.0553 0x0f24  NdisCap - ok
22:44:42.0556 0x0f24  NdisImPlatform - ok
22:44:42.0558 0x0f24  NdisTapi - ok
22:44:42.0558 0x0f24  Ndisuio - ok
22:44:42.0558 0x0f24  NdisVirtualBus - ok
22:44:42.0558 0x0f24  NdisWan - ok
22:44:42.0558 0x0f24  ndiswanlegacy - ok
22:44:42.0558 0x0f24  ndproxy - ok
22:44:42.0558 0x0f24  Ndu - ok
22:44:42.0574 0x0f24  NetAdapterCx - ok
22:44:42.0574 0x0f24  NetBIOS - ok
22:44:42.0574 0x0f24  NetBT - ok
22:44:42.0574 0x0f24  Netlogon - ok
22:44:42.0574 0x0f24  Netman - ok
22:44:42.0590 0x0f24  netprofm - ok
22:44:42.0605 0x0f24  NetSetupSvc - ok
22:44:42.0674 0x0f24  NetTcpPortSharing - ok
22:44:42.0674 0x0f24  NgcCtnrSvc - ok
22:44:42.0689 0x0f24  NgcSvc - ok
22:44:42.0689 0x0f24  NlaSvc - ok
22:44:42.0861 0x0f24  [ 4CA6E1F6A83D74A86850726475DC4462, 9BF8D917141A5736E72A9F51F827D24393509896E866F43FFB079F5BF8EF3F81 ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
22:44:42.0939 0x0f24  NOBU - ok
22:44:42.0939 0x0f24  Npfs - ok
22:44:42.0979 0x0f24  npggsvc - ok
22:44:43.0010 0x0f24  npsvctrig - ok
22:44:43.0026 0x0f24  nsi - ok
22:44:43.0026 0x0f24  nsiproxy - ok
22:44:43.0042 0x0f24  NTFS - ok
22:44:43.0042 0x0f24  Null - ok
22:44:43.0126 0x0f24  [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
22:44:43.0141 0x0f24  NvContainerLocalSystem - ok
22:44:43.0141 0x0f24  [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
22:44:43.0163 0x0f24  NvContainerNetworkService - ok
22:44:43.0210 0x0f24  [ 5409D41DFB0EAB63511FE7889B2A687E, 32E8D8622798B8F16002EE617200F0172A98D984A925F6550A1E352ACFA0BDDF ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
22:44:43.0226 0x0f24  NVIDIA Wireless Controller Service - ok
22:44:43.0626 0x0f24  [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm        C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_33c9216502148e52\nvlddmkm.sys
22:44:43.0877 0x0f24  nvlddmkm - ok
22:44:43.0932 0x0f24  [ 214CE3AF0C1ABDD3529246914663E4C1, 2668A18265FD5BC9C107D6B11BC7A7169FE3C486B1A5727825756B05B4EFE17D ] nvpciflt        C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
22:44:43.0932 0x0f24  nvpciflt - ok
22:44:43.0947 0x0f24  nvraid - ok
22:44:43.0963 0x0f24  nvstor - ok
22:44:43.0994 0x0f24  [ 37527CCD2AAF5192D825084339CA964E, B1BE990411BA80D1F9E9F86F82F2B2762F87A5C028FB79A60DB325FAFE89D059 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
22:44:43.0994 0x0f24  NvStreamKms - ok
22:44:44.0033 0x0f24  [ 66B4D2AA9C733A40B1C673402E99A7D0, DD4297CCB3527C95E52132271C296D277FC4C5FB59731AF25FCC19A523A8D20C ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
22:44:44.0033 0x0f24  nvvad_WaveExtensible - ok
22:44:44.0080 0x0f24  OneSyncSvc - ok
22:44:44.0196 0x0f24  [ 2906AF02B5D06B0EFCD32382F19B88DB, 52A57816017591AC18693095ED6877EC6187F01A1B075ECC0F7E8FA73543E9D0 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
22:44:44.0234 0x0f24  Origin Client Service - ok
22:44:44.0333 0x0f24  [ 559E102771EC599B74A19BE829D4C809, 4AF59FEFD0727BDC6BF087307EFF22EBB09B56F7B6DFFBCA9CF6A3AACBB04CA9 ] OverwolfUpdater C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
22:44:44.0349 0x0f24  OverwolfUpdater - ok
22:44:44.0365 0x0f24  p2pimsvc - ok
22:44:44.0380 0x0f24  p2psvc - ok
22:44:44.0396 0x0f24  Parport - ok
22:44:44.0396 0x0f24  partmgr - ok
22:44:44.0453 0x0f24  [ 446462BBA744DA60379574926FD51EAB, 4A79E8EF28670333F4733FA0016508DC88E9BDC566B455DA5EDEDC514612180A ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
22:44:44.0453 0x0f24  PassThru Service - detected UnsignedFile.Multi.Generic ( 1 )
22:44:44.0453 0x0f24  Detect skipped due to KSN trusted
22:44:44.0453 0x0f24  PassThru Service - ok
22:44:44.0484 0x0f24  PcaSvc - ok
22:44:44.0500 0x0f24  pci - ok
22:44:44.0523 0x0f24  pciide - ok
22:44:44.0523 0x0f24  pcmcia - ok
22:44:44.0523 0x0f24  pcw - ok
22:44:44.0538 0x0f24  pdc - ok
22:44:44.0554 0x0f24  PEAUTH - ok
22:44:44.0554 0x0f24  percsas2i - ok
22:44:44.0554 0x0f24  percsas3i - ok
22:44:44.0622 0x0f24  PerfHost - ok
22:44:44.0638 0x0f24  PhoneSvc - ok
22:44:44.0654 0x0f24  PimIndexMaintenanceSvc - ok
22:44:44.0654 0x0f24  pla - ok
22:44:44.0669 0x0f24  PlugPlay - ok
22:44:44.0669 0x0f24  PnkBstrA - ok
22:44:44.0685 0x0f24  PNRPAutoReg - ok
22:44:44.0685 0x0f24  PNRPsvc - ok
22:44:44.0685 0x0f24  PolicyAgent - ok
22:44:44.0685 0x0f24  Power - ok
22:44:44.0700 0x0f24  PptpMiniport - ok
22:44:44.0842 0x0f24  [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
22:44:44.0943 0x0f24  PrintNotify - ok
22:44:44.0949 0x0f24  Processor - ok
22:44:44.0966 0x0f24  ProfSvc - ok
22:44:44.0968 0x0f24  Psched - ok
22:44:45.0049 0x0f24  [ C99D94151EDA07D418E14158E3C54A87, 9831EAE1E7851727810FCFA5AA66B80D6CD0B5072C04A7D1091DBE24F3AC638D ] QASvc           C:\Program Files\Acer\Acer Quick Access\QASvc.exe
22:44:45.0072 0x0f24  QASvc - ok
22:44:45.0087 0x0f24  QWAVE - ok
22:44:45.0087 0x0f24  QWAVEdrv - ok
22:44:45.0103 0x0f24  [ 6A52182919E25FB56D253D389F92CE98, AE6497D5CF324CB813248ADECB0F53E5CB3D6C326774E2257319E4CE7782C591 ] RadioShim       C:\WINDOWS\System32\drivers\RadioShim.sys
22:44:45.0103 0x0f24  RadioShim - ok
22:44:45.0103 0x0f24  RasAcd - ok
22:44:45.0119 0x0f24  RasAgileVpn - ok
22:44:45.0134 0x0f24  RasAuto - ok
22:44:45.0134 0x0f24  Rasl2tp - ok
22:44:45.0134 0x0f24  RasMan - ok
22:44:45.0150 0x0f24  RasPppoe - ok
22:44:45.0150 0x0f24  RasSstp - ok
22:44:45.0305 0x0f24  [ 5332223C0D4CEC95787607906B53E861, EA1FB6373EFA303D0A69DB49D4B05BA489D1FB428E9AF948FA4FAFB94264AE4E ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
22:44:45.0321 0x0f24  Razer Game Scanner Service - ok
22:44:45.0321 0x0f24  rdbss - ok
22:44:45.0337 0x0f24  rdpbus - ok
22:44:45.0337 0x0f24  RDPDR - ok
22:44:45.0374 0x0f24  RdpVideoMiniport - ok
22:44:45.0374 0x0f24  rdyboost - ok
22:44:45.0374 0x0f24  ReFSv1 - ok
22:44:45.0374 0x0f24  RemoteAccess - ok
22:44:45.0374 0x0f24  RemoteRegistry - ok
22:44:45.0389 0x0f24  RetailDemo - ok
22:44:45.0421 0x0f24  RFCOMM - ok
22:44:45.0421 0x0f24  RmSvc - ok
22:44:45.0421 0x0f24  RpcEptMapper - ok
22:44:45.0436 0x0f24  RpcLocator - ok
22:44:45.0452 0x0f24  RpcSs - ok
22:44:45.0507 0x0f24  [ 8C00FD003B32ACFD7C054D0D7988BDF4, 72F11EE0335DB66105F5056AC7FF51D486DBB6D57353727537F53E929D3A216F ] RSPCIESTOR      C:\WINDOWS\system32\DRIVERS\RtsPStor.sys
22:44:45.0523 0x0f24  RSPCIESTOR - ok
22:44:45.0523 0x0f24  rspndr - ok
22:44:45.0554 0x0f24  [ 434A22267365AEF88B3AD451B65988AE, 75EFCFF52501E7E3E7B50C4D793DD55F085E378DA1C78772244AB27708409900 ] rzpmgrk         C:\WINDOWS\system32\drivers\rzpmgrk.sys
22:44:45.0570 0x0f24  rzpmgrk - ok
22:44:45.0606 0x0f24  [ F8A13D4413A93DD005FAD116CBD6B6F7, 8ED0C00920CE76E832701D45117ED00B12E20588CB6FE8039FBCCDFEF9841047 ] rzpnk           C:\WINDOWS\system32\drivers\rzpnk.sys
22:44:45.0621 0x0f24  rzpnk - ok
22:44:45.0637 0x0f24  [ 421497E425AFB40502013F362E4FA230, 20E2372BEE4BFB21138CA574C9806EC399DDA9D3439F3C391E34ABB2E518106D ] rzudd           C:\WINDOWS\System32\drivers\rzudd.sys
22:44:45.0652 0x0f24  rzudd - ok
22:44:45.0674 0x0f24  [ F3D67BC2EACD3975BC217EC0AB39F649, 88338DBFE8C044D9DCF47A388CFFBCC6382E8BE839FB4941DAB1A8BC988BA11A ] RzWizardService C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe
22:44:45.0690 0x0f24  RzWizardService - detected UnsignedFile.Multi.Generic ( 1 )
22:44:45.0690 0x0f24  Detect skipped due to KSN trusted
22:44:45.0690 0x0f24  RzWizardService - ok
22:44:45.0706 0x0f24  s3cap - ok
22:44:45.0721 0x0f24  SamSs - ok
22:44:45.0737 0x0f24  sbp2port - ok
22:44:45.0753 0x0f24  SCardSvr - ok
22:44:45.0753 0x0f24  ScDeviceEnum - ok
22:44:45.0753 0x0f24  scfilter - ok
22:44:45.0771 0x0f24  Schedule - ok
22:44:45.0773 0x0f24  scmbus - ok
22:44:45.0774 0x0f24  scmdisk0101 - ok
22:44:45.0774 0x0f24  SCPolicySvc - ok
22:44:45.0806 0x0f24  [ 0447065A6E10774EFCECFDD0EB970A79, 384A9AC72E756F96D43EE4B144A466564476AFD8778092C979116BB29A514433 ] ScpVBus         C:\WINDOWS\System32\drivers\ScpVBus.sys
22:44:45.0821 0x0f24  ScpVBus - ok
22:44:45.0821 0x0f24  sdbus - ok
22:44:45.0837 0x0f24  SDRSVC - ok
22:44:45.0837 0x0f24  sdstor - ok
22:44:45.0837 0x0f24  seclogon - ok
22:44:45.0872 0x0f24  [ 07F83829E7429E60298440CD1E601A6A, 9F1229CD8DD9092C27A01F5D56E3C0D59C2BB9F0139ABF042E56F343637FDA33 ] semav6msr64     C:\WINDOWS\system32\drivers\semav6msr64.sys
22:44:45.0875 0x0f24  semav6msr64 - ok
22:44:45.0890 0x0f24  SENS - ok
22:44:45.0906 0x0f24  SensorDataService - ok
22:44:45.0906 0x0f24  SensorService - ok
22:44:45.0922 0x0f24  SensrSvc - ok
22:44:45.0922 0x0f24  SerCx - ok
22:44:45.0937 0x0f24  SerCx2 - ok
22:44:45.0937 0x0f24  Serenum - ok
22:44:45.0953 0x0f24  Serial - ok
22:44:45.0953 0x0f24  sermouse - ok
22:44:45.0953 0x0f24  SessionEnv - ok
22:44:45.0953 0x0f24  sfloppy - ok
22:44:45.0975 0x0f24  SharedAccess - ok
22:44:45.0975 0x0f24  ShellHWDetection - ok
22:44:46.0008 0x0f24  shpamsvc - ok
22:44:46.0010 0x0f24  SiSRaid2 - ok
22:44:46.0013 0x0f24  SiSRaid4 - ok
22:44:46.0035 0x0f24  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:44:46.0050 0x0f24  SkypeUpdate - ok
22:44:46.0075 0x0f24  [ DC69820E1D2DC3AC0AA24D57AE355284, 24B9B9CD0A39B53FFB53C16ABB4BBE1A977E6D17D3C83846A0F551C3EA12F75B ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
22:44:46.0075 0x0f24  SmbDrvI - ok
22:44:46.0107 0x0f24  smphost - ok
22:44:46.0122 0x0f24  SmsRouter - ok
22:44:46.0138 0x0f24  SNMPTRAP - ok
22:44:46.0178 0x0f24  spaceport - ok
22:44:46.0178 0x0f24  SpbCx - ok
22:44:46.0194 0x0f24  Spooler - ok
22:44:46.0209 0x0f24  sppsvc - ok
22:44:46.0209 0x0f24  srv - ok
22:44:46.0209 0x0f24  srv2 - ok
22:44:46.0225 0x0f24  srvnet - ok
22:44:46.0241 0x0f24  SSDPSRV - ok
22:44:46.0241 0x0f24  SstpSvc - ok
22:44:46.0256 0x0f24  StateRepository - ok
22:44:46.0343 0x0f24  [ 90E22D7CDE08E07446D238A569BCAB7C, 3D4F413D0B0C9CF28D06E0476F24AC6441C8678DF786D9971B39C91C9F9B8020 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
22:44:46.0380 0x0f24  Steam Client Service - ok
22:44:46.0380 0x0f24  stexstor - ok
22:44:46.0396 0x0f24  stisvc - ok
22:44:46.0396 0x0f24  storahci - ok
22:44:46.0412 0x0f24  storflt - ok
22:44:46.0412 0x0f24  stornvme - ok
22:44:46.0412 0x0f24  storqosflt - ok
22:44:46.0427 0x0f24  StorSvc - ok
22:44:46.0427 0x0f24  storufs - ok
22:44:46.0427 0x0f24  storvsc - ok
22:44:46.0443 0x0f24  svsvc - ok
22:44:46.0443 0x0f24  swenum - ok
22:44:46.0443 0x0f24  swprv - ok
22:44:46.0458 0x0f24  Synth3dVsc - ok
22:44:46.0480 0x0f24  [ AD764FB3E172A6845465C9E89B6B36EF, 3124CE0E45414FD8304FC714F5B8AD19F500515EAEA5627DF30CEE0CCE91A42F ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
22:44:46.0496 0x0f24  SynTP - ok
22:44:46.0543 0x0f24  [ BBD8D18C84B4A6766B5D2486CDE99D16, 3CD1DE51D820FDE5B9907A90AA7F1BF3E84967C79E3B8493DA56070B349E3072 ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
22:44:46.0559 0x0f24  SynTPEnhService - ok
22:44:46.0559 0x0f24  SysMain - ok
22:44:46.0579 0x0f24  SystemEventsBroker - ok
22:44:46.0659 0x0f24  [ 328E65035DE1D2C1206B4F94AAFC1DB7, EB7EF4CD7641C96C1050AD6139C22DE35EABEDF2DAFA5CD9D8F0C129BE02891F ] SystemUsageReportSvc_WILLAMETTE C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
22:44:46.0679 0x0f24  SystemUsageReportSvc_WILLAMETTE - ok
22:44:46.0696 0x0f24  TabletInputService - ok
22:44:46.0696 0x0f24  TapiSrv - ok
22:44:46.0696 0x0f24  Tcpip - ok
22:44:46.0712 0x0f24  Tcpip6 - ok
22:44:46.0727 0x0f24  tcpipreg - ok
22:44:46.0727 0x0f24  tdx - ok
22:44:46.0727 0x0f24  terminpt - ok
22:44:46.0727 0x0f24  TermService - ok
22:44:46.0743 0x0f24  Themes - ok
22:44:46.0759 0x0f24  TieringEngineService - ok
22:44:46.0759 0x0f24  tiledatamodelsvc - ok
22:44:46.0759 0x0f24  TimeBrokerSvc - ok
22:44:46.0780 0x0f24  TPM - ok
22:44:46.0796 0x0f24  TrkWks - ok
22:44:46.0827 0x0f24  TrustedInstaller - ok
22:44:46.0827 0x0f24  tsusbflt - ok
22:44:46.0843 0x0f24  TsUsbGD - ok
22:44:46.0996 0x0f24  [ 8AF256C30CEF39CA939F9B3B9E2F2E75, 905CD1B5A7321C07CFD25DB9C871EF0F11843A5F40F16728D7F151301D4F2BEC ] TuneUp.UtilitiesSvc C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
22:44:47.0094 0x0f24  TuneUp.UtilitiesSvc - ok
22:44:47.0126 0x0f24  [ 9B5C98C9F9EF5E62806DCD58B0D8EACE, B4B8A3F943C2C401CA1ED05BDA0C6D631106B258FB40C433AC856DCA7E8D7F7A ] TuneUpUtilitiesDrv C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys
22:44:47.0126 0x0f24  TuneUpUtilitiesDrv - ok
22:44:47.0126 0x0f24  tunnel - ok
22:44:47.0142 0x0f24  tzautoupdate - ok
22:44:47.0157 0x0f24  UASPStor - ok
22:44:47.0173 0x0f24  UcmCx0101 - ok
22:44:47.0173 0x0f24  UcmTcpciCx0101 - ok
22:44:47.0173 0x0f24  UcmUcsi - ok
22:44:47.0189 0x0f24  Ucx01000 - ok
22:44:47.0206 0x0f24  UdeCx - ok
22:44:47.0209 0x0f24  udfs - ok
22:44:47.0211 0x0f24  UEFI - ok
22:44:47.0211 0x0f24  Ufx01000 - ok
22:44:47.0211 0x0f24  UfxChipidea - ok
22:44:47.0211 0x0f24  ufxsynopsys - ok
22:44:47.0242 0x0f24  UI0Detect - ok
22:44:47.0242 0x0f24  umbus - ok
22:44:47.0242 0x0f24  UmPass - ok
22:44:47.0242 0x0f24  UmRdpService - ok
22:44:47.0242 0x0f24  UnistoreSvc - ok
22:44:47.0258 0x0f24  upnphost - ok
22:44:47.0274 0x0f24  UrsChipidea - ok
22:44:47.0274 0x0f24  UrsCx01000 - ok
22:44:47.0274 0x0f24  UrsSynopsys - ok
22:44:47.0274 0x0f24  usbccgp - ok
22:44:47.0274 0x0f24  usbcir - ok
22:44:47.0289 0x0f24  usbehci - ok
22:44:47.0289 0x0f24  usbhub - ok
22:44:47.0289 0x0f24  USBHUB3 - ok
22:44:47.0289 0x0f24  usbohci - ok
22:44:47.0289 0x0f24  usbprint - ok
22:44:47.0289 0x0f24  usbser - ok
22:44:47.0306 0x0f24  USBSTOR - ok
22:44:47.0309 0x0f24  usbuhci - ok
22:44:47.0311 0x0f24  usbvideo - ok
22:44:47.0311 0x0f24  USBXHCI - ok
22:44:47.0311 0x0f24  UserDataSvc - ok
22:44:47.0327 0x0f24  UserManager - ok
22:44:47.0427 0x0f24  [ 52C696180AC8371163B268D648DCBDA5, B75925B1B8722F174862AF7554587F81C9A57EF661253F230B4EDA5E2C2AA4A6 ] USER_ESRV_SVC_WILLAMETTE C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
22:44:47.0442 0x0f24  USER_ESRV_SVC_WILLAMETTE - ok
22:44:47.0458 0x0f24  UsoSvc - ok
22:44:47.0458 0x0f24  VaultSvc - ok
22:44:47.0489 0x0f24  [ 0E3C4F20B2CE21168F3242D9CAC6CBF2, 1BD5E1A2000EBC1C335A8960ACDCD08BDC8230F533A80D086D2EE6FE4990EA02 ] VBoxUSBMon      C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
22:44:47.0507 0x0f24  VBoxUSBMon - ok
22:44:47.0511 0x0f24  vdrvroot - ok
22:44:47.0511 0x0f24  vds - ok
22:44:47.0526 0x0f24  VerifierExt - ok
22:44:47.0526 0x0f24  vhdmp - ok
22:44:47.0526 0x0f24  vhf - ok
22:44:47.0526 0x0f24  vmbus - ok
22:44:47.0542 0x0f24  VMBusHID - ok
22:44:47.0542 0x0f24  vmgid - ok
22:44:47.0558 0x0f24  vmicguestinterface - ok
22:44:47.0558 0x0f24  vmicheartbeat - ok
22:44:47.0558 0x0f24  vmickvpexchange - ok
22:44:47.0558 0x0f24  vmicrdv - ok
22:44:47.0573 0x0f24  vmicshutdown - ok
22:44:47.0573 0x0f24  vmictimesync - ok
22:44:47.0573 0x0f24  vmicvmsession - ok
22:44:47.0573 0x0f24  vmicvss - ok
22:44:47.0573 0x0f24  volmgr - ok
22:44:47.0573 0x0f24  volmgrx - ok
22:44:47.0589 0x0f24  volsnap - ok
22:44:47.0589 0x0f24  volume - ok
22:44:47.0607 0x0f24  vpci - ok
22:44:47.0610 0x0f24  vsmraid - ok
22:44:47.0611 0x0f24  VSS - ok
22:44:47.0611 0x0f24  VSTXRAID - ok
22:44:47.0611 0x0f24  vwifibus - ok
22:44:47.0611 0x0f24  vwififlt - ok
22:44:47.0627 0x0f24  vwifimp - ok
22:44:47.0643 0x0f24  W32Time - ok
22:44:47.0643 0x0f24  WacomPen - ok
22:44:47.0658 0x0f24  WalletService - ok
22:44:47.0658 0x0f24  wanarp - ok
22:44:47.0658 0x0f24  wanarpv6 - ok
22:44:47.0658 0x0f24  wbengine - ok
22:44:47.0690 0x0f24  WbioSrvc - ok
22:44:47.0710 0x0f24  wcifs - ok
22:44:47.0711 0x0f24  Wcmsvc - ok
22:44:47.0711 0x0f24  wcncsvc - ok
22:44:47.0711 0x0f24  wcnfs - ok
22:44:47.0711 0x0f24  WdBoot - ok
22:44:47.0711 0x0f24  Wdf01000 - ok
22:44:47.0727 0x0f24  WdFilter - ok
22:44:47.0727 0x0f24  WdiServiceHost - ok
22:44:47.0727 0x0f24  WdiSystemHost - ok
22:44:47.0727 0x0f24  wdiwifi - ok
22:44:47.0727 0x0f24  WdNisDrv - ok
22:44:47.0789 0x0f24  WdNisSvc - ok
22:44:47.0789 0x0f24  WebClient - ok
22:44:47.0829 0x0f24  Wecsvc - ok
22:44:47.0845 0x0f24  WEPHOSTSVC - ok
22:44:47.0845 0x0f24  wercplsupport - ok
22:44:47.0845 0x0f24  WerSvc - ok
22:44:47.0861 0x0f24  WFPLWFS - ok
22:44:47.0861 0x0f24  WiaRpc - ok
22:44:47.0861 0x0f24  WIMMount - ok
22:44:47.0861 0x0f24  WinDefend - ok
22:44:47.0876 0x0f24  WindowsTrustedRT - ok
22:44:47.0876 0x0f24  WindowsTrustedRTProxy - ok
22:44:47.0892 0x0f24  WinHttpAutoProxySvc - ok
22:44:47.0914 0x0f24  WinMad - ok
22:44:47.0945 0x0f24  Winmgmt - ok
22:44:47.0961 0x0f24  WinRM - ok
22:44:47.0976 0x0f24  WINUSB - ok
22:44:47.0992 0x0f24  WinVerbs - ok
22:44:48.0016 0x0f24  wisvc - ok
22:44:48.0016 0x0f24  WlanSvc - ok
22:44:48.0047 0x0f24  wlidsvc - ok
22:44:48.0047 0x0f24  WmiAcpi - ok
22:44:48.0063 0x0f24  wmiApSrv - ok
22:44:48.0078 0x0f24  WMPNetworkSvc - ok
22:44:48.0094 0x0f24  Wof - ok
22:44:48.0114 0x0f24  workfolderssvc - ok
22:44:48.0129 0x0f24  WPDBusEnum - ok
22:44:48.0145 0x0f24  WpdUpFltr - ok
22:44:48.0145 0x0f24  WpnService - ok
22:44:48.0145 0x0f24  WpnUserService - ok
22:44:48.0161 0x0f24  ws2ifsl - ok
22:44:48.0176 0x0f24  wscsvc - ok
22:44:48.0176 0x0f24  WSearch - ok
22:44:48.0192 0x0f24  wuauserv - ok
22:44:48.0192 0x0f24  WudfPf - ok
22:44:48.0210 0x0f24  WUDFRd - ok
22:44:48.0214 0x0f24  wudfsvc - ok
22:44:48.0214 0x0f24  WUDFWpdFs - ok
22:44:48.0230 0x0f24  WUDFWpdMtp - ok
22:44:48.0230 0x0f24  WwanSvc - ok
22:44:48.0261 0x0f24  XblAuthManager - ok
22:44:48.0292 0x0f24  XblGameSave - ok
22:44:48.0292 0x0f24  xboxgip - ok
22:44:48.0314 0x0f24  XboxNetApiSvc - ok
22:44:48.0329 0x0f24  xinputhid - ok
22:44:48.0361 0x0f24  [ D3D9CB4BA15C1854294517AA8954E201, DFBB6E1A5FF01123FEAD6EFFA67F4A0203792AFDF82EAFFC2DA981A584896542 ] XQHDrv          C:\WINDOWS\system32\DRIVERS\XQHDrv.sys
22:44:48.0361 0x0f24  XQHDrv - ok
22:44:48.0376 0x0f24  xusb22 - ok
22:44:48.0376 0x0f24  ================ Scan global ===============================
22:44:48.0445 0x0f24  [ Global ] - ok
22:44:48.0445 0x0f24  ================ Scan MBR ==================================
22:44:48.0445 0x0f24  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
22:44:48.0477 0x0f24  \Device\Harddisk0\DR0 - ok
22:44:48.0492 0x0f24  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
22:44:48.0561 0x0f24  \Device\Harddisk1\DR1 - ok
22:44:48.0561 0x0f24  ================ Scan VBR ==================================
22:44:48.0561 0x0f24  [ 0F5268551DB0136A398CB04B8679FC25 ] \Device\Harddisk0\DR0\Partition1
22:44:48.0561 0x0f24  \Device\Harddisk0\DR0\Partition1 - ok
22:44:48.0592 0x0f24  [ 7DECA1E84C6CEACE8CE7D219BB06A24C ] \Device\Harddisk1\DR1\Partition1
22:44:48.0592 0x0f24  \Device\Harddisk1\DR1\Partition1 - ok
22:44:48.0613 0x0f24  [ CD073EE7F7A6C185F0E109EC9C038D9B ] \Device\Harddisk1\DR1\Partition2
22:44:48.0613 0x0f24  \Device\Harddisk1\DR1\Partition2 - ok
22:44:48.0629 0x0f24  [ 7F32168DECCC196E6CE3E8271D2B4831 ] \Device\Harddisk1\DR1\Partition3
22:44:48.0629 0x0f24  \Device\Harddisk1\DR1\Partition3 - ok
22:44:48.0645 0x0f24  [ D993F839933B30D3A2D8811CAA7B01A8 ] \Device\Harddisk1\DR1\Partition4
22:44:48.0645 0x0f24  \Device\Harddisk1\DR1\Partition4 - ok
22:44:48.0676 0x0f24  [ 440BD6231A6AE62F10A1EBD03F85D258 ] \Device\Harddisk1\DR1\Partition5
22:44:48.0676 0x0f24  \Device\Harddisk1\DR1\Partition5 - ok
22:44:48.0676 0x0f24  ================ Scan generic autorun ======================
22:44:49.0079 0x0f24  [ 0011163AC036C71E03883DD10C626F81, CD1F55C6BC20817F69E76A2B2AB4BA30D175821A3A4EA5A34E285182584518B7 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
22:44:49.0318 0x0f24  RtHDVCpl - ok
22:44:49.0415 0x0f24  [ 59F8DA04498B80D58FD8638370C5C84F, 522F347F1F1B3991FDC60FF3CE8F8ABB2EDFE65C569D18EF5ACB690FD1BADC82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
22:44:49.0447 0x0f24  RtHDVBg_Dolby - ok
22:44:49.0510 0x0f24  [ B99D68C404A4E69FBB95E3A282091CFA, 5EAB9CF42DCB58C5067C857E79F068611AE7C4A52F06B8C5C2DD0821B6B7D318 ] C:\Windows\system32\igfxtray.exe
22:44:49.0525 0x0f24  IgfxTray - ok
22:44:49.0525 0x0f24  SynTPEnh - ok
22:44:49.0525 0x0f24  WindowsDefender - ok
22:44:49.0544 0x0f24  ShadowPlay - ok
22:44:49.0610 0x0f24  [ B08ECF1A28499D720B470CBBDC6D7EAD, 2E282611B1AD2070164098972C6722F44F1CAB00BA9A55A6F3569FFC8AAC0C0C ] C:\Program Files (x86)\Razer\RzWizard\RzWizard.exe
22:44:49.0610 0x0f24  RzWizard - detected UnsignedFile.Multi.Generic ( 1 )
22:44:49.0610 0x0f24  Detect skipped due to KSN trusted
22:44:49.0610 0x0f24  RzWizard - ok
22:44:49.0678 0x0f24  OneDriveSetup - ok
22:44:49.0678 0x0f24  OneDriveSetup - ok
22:44:49.0925 0x0f24  [ E93D62A6DB736AA82A3EEDDFDFE73311, 96EC57F66EE1A36580536518A814299DE6D5DACC0026F5A659B41918434ED8FA ] C:\Program Files\CCleaner\CCleaner64.exe
22:44:50.0076 0x0f24  CCleaner Monitoring - ok
22:44:50.0206 0x0f24  [ D2CE6EA0E9F641D7153462D40C6B4193, 3AAE5239F951E29497D759326BDC23E19644B763DC5661CA4E4980418195C37D ] C:\Program Files (x86)\Steam\steam.exe
22:44:50.0252 0x0f24  Steam - ok
22:44:50.0503 0x0f24  [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\tobias\AppData\Local\Microsoft\OneDrive\OneDrive.exe
22:44:50.0505 0x0f24  OneDrive - ok
22:44:50.0652 0x0f24  [ DAB21C14C09FA0F40DACD1A19C7A9125, DC215DAA9F79EA6B9D3B2C376A908AC4621871DC4B56374FAD7EDAED4FEB66D7 ] C:\Program Files (x86)\Origin\Origin.exe
22:44:50.0706 0x0f24  EADM - ok
22:44:50.0737 0x0f24  Skype - ok
22:44:50.0784 0x0f24  [ CC436BB2A26391F3DEBE316F6FB0474F, 2DA63827AD1449CA5F2888ADFA9645F1EAF8B39D26EC214441EE80F3A56E6E72 ] C:\Users\tobias\AppData\Local\Microsoft\BingSvc\BingSvc.exe
22:44:50.0806 0x0f24  BingSvc - ok
22:44:50.0837 0x0f24  [ F06414FDDFA07A239BD5A1D349DD0C52, 98EE1026B349551DBF998A038B5ACF027DE6A894805CDCAD653C9C5337949368 ] C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
22:44:50.0853 0x0f24  Overwolf - ok
22:44:50.0952 0x0f24  [ DD9EAE1C80561C509A8B8801E16BAA38, C688B626ADB0A7B72041DE08D0AA5930E9178C36F1FF9905124D397371B825D1 ] C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
22:44:50.0968 0x0f24  Spotify Web Helper - ok
22:44:50.0968 0x0f24  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x61100 ( enabled : updated )
22:44:50.0968 0x0f24  Win FW state via NFP2: enabled ( trusted )
22:44:51.0068 0x0f24  ============================================================
22:44:51.0068 0x0f24  Scan finished
22:44:51.0068 0x0f24  ============================================================
22:44:51.0068 0x296c  Detected object count: 0
22:44:51.0068 0x296c  Actual detected object count: 0
22:45:06.0889 0x2074  Deinitialize success

cosinus · 22.11.2016, 11:58

Beim nächsten mal die Anleitungen richtig lesen und nicht nur überfliegen

1. MBAR wurde vor dem Scan nicht aktualisiert
2. der tdsskiller wurde falsch eingestellt

Bei Tools nochmal richtig ausführen

zatokabi · 22.11.2016, 13:23

oh sry hier nochmal neu

mbar:

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2016.11.22.08
  rootkit: v2016.11.20.01

Windows 10 x64 NTFS
Internet Explorer 11.447.14393.0
tobias :: PCLOL [administrator]

22.11.2016 12:49:38
mbar-log-2016-11-22 (12-49-38).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 319128
Time elapsed: 29 minute(s), 13 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0

Code:

ATTFilter

13:22:38.0984 0x1280  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
13:22:38.0984 0x1280  UEFI system
13:22:48.0058 0x1280  ============================================================
13:22:48.0058 0x1280  Current date / time: 2016/11/22 13:22:48.0058
13:22:48.0058 0x1280  SystemInfo:
13:22:48.0058 0x1280  
13:22:48.0058 0x1280  OS Version: 10.0.14393 ServicePack: 0.0
13:22:48.0058 0x1280  Product type: Workstation
13:22:48.0058 0x1280  ComputerName: PCLOL
13:22:48.0058 0x1280  UserName: tobias
13:22:48.0058 0x1280  Windows directory: C:\WINDOWS
13:22:48.0058 0x1280  System windows directory: C:\WINDOWS
13:22:48.0058 0x1280  Running under WOW64
13:22:48.0058 0x1280  Processor architecture: Intel x64
13:22:48.0058 0x1280  Number of processors: 8
13:22:48.0058 0x1280  Page size: 0x1000
13:22:48.0058 0x1280  Boot type: Normal boot
13:22:48.0058 0x1280  CodeIntegrityOptions = 0x00000001
13:22:48.0058 0x1280  ============================================================
13:22:48.0421 0x1280  KLMD registered as C:\WINDOWS\system32\drivers\36089285.sys
13:22:48.0421 0x1280  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.447, osProperties = 0x19
13:22:49.0004 0x1280  System UUID: {66E7FB18-EA63-B243-9309-C2083080A6C8}
13:22:49.0424 0x1280  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:22:49.0442 0x1280  Drive \Device\Harddisk1\DR1 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:22:49.0446 0x1280  ============================================================
13:22:49.0446 0x1280  \Device\Harddisk0\DR0:
13:22:49.0447 0x1280  MBR partitions:
13:22:49.0447 0x1280  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A18A82
13:22:49.0447 0x1280  \Device\Harddisk1\DR1:
13:22:49.0447 0x1280  GPT partitions:
13:22:49.0447 0x1280  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {A886FF32-D0FE-485D-96A4-3ED2360DC0F1}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
13:22:49.0447 0x1280  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {1F6B2220-F748-476F-A66C-D43E571A8A28}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x96000
13:22:49.0447 0x1280  \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {098BAF92-499C-429C-B69D-D34878592540}, Name: Microsoft reserved partition, StartLBA 0x15E800, BlocksNum 0x40000
13:22:49.0447 0x1280  \Device\Harddisk1\DR1\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {4B72D3C0-BD8E-478E-B72E-BCBD93A37081}, Name: Basic data partition, StartLBA 0x19E800, BlocksNum 0x551A7000
13:22:49.0447 0x1280  \Device\Harddisk1\DR1\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {8BB2B1DA-1200-416F-A9DE-152BB6A506E2}, Name: Basic data partition, StartLBA 0x55345800, BlocksNum 0x2200800
13:22:49.0447 0x1280  MBR partitions:
13:22:49.0447 0x1280  ============================================================
13:22:49.0495 0x1280  C: <-> \Device\Harddisk1\DR1\Partition4
13:22:49.0819 0x1280  F: <-> \Device\Harddisk0\DR0\Partition1
13:22:49.0819 0x1280  ============================================================
13:22:49.0819 0x1280  Initialize success
13:22:49.0819 0x1280  ============================================================
13:23:16.0074 0x1c30  ============================================================
13:23:16.0074 0x1c30  Scan started
13:23:16.0074 0x1c30  Mode: Manual; SigCheck; TDLFS; 
13:23:16.0074 0x1c30  ============================================================
13:23:16.0074 0x1c30  KSN ping started
13:23:16.0228 0x1c30  KSN ping finished: true
13:23:18.0398 0x1c30  ================ Scan system memory ========================
13:23:18.0398 0x1c30  System memory - ok
13:23:18.0399 0x1c30  ================ Scan services =============================
13:23:18.0537 0x1c30  1394ohci - ok
13:23:18.0540 0x1c30  3ware - ok
13:23:18.0553 0x1c30  ACPI - ok
13:23:18.0558 0x1c30  AcpiDev - ok
13:23:18.0560 0x1c30  acpiex - ok
13:23:18.0563 0x1c30  acpipagr - ok
13:23:18.0585 0x1c30  AcpiPmi - ok
13:23:18.0589 0x1c30  acpitime - ok
13:23:18.0641 0x1c30  [ 9BAF21BA600EC4E5FD9A66AD3E4FF5A6, 5E02E5E80557F6EC870EB7CC2DE95169D4225B87A2FE7E796736205F51C15816 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:23:18.0671 0x1c30  AdobeFlashPlayerUpdateSvc - ok
13:23:18.0693 0x1c30  ADP80XX - ok
13:23:18.0708 0x1c30  AFD - ok
13:23:18.0744 0x1c30  ahcache - ok
13:23:18.0759 0x1c30  AJRouter - ok
13:23:18.0769 0x1c30  ALG - ok
13:23:18.0862 0x1c30  [ 23CB92EE5654BA92619D796E3AC7DB86, DD4536B55F021990DDAD8864F9BAECCDE40B2B532F6FB0D6CF9EB1A6B112A983 ] ALSysIO         C:\Users\tobias\AppData\Local\Temp\ALSysIO64.sys
13:23:18.0904 0x1c30  ALSysIO - ok
13:23:18.0907 0x1c30  AmdK8 - ok
13:23:18.0910 0x1c30  AmdPPM - ok
13:23:18.0912 0x1c30  amdsata - ok
13:23:18.0915 0x1c30  amdsbs - ok
13:23:18.0917 0x1c30  amdxata - ok
13:23:18.0920 0x1c30  AppID - ok
13:23:18.0924 0x1c30  AppIDSvc - ok
13:23:18.0942 0x1c30  Appinfo - ok
13:23:18.0944 0x1c30  applockerfltr - ok
13:23:18.0958 0x1c30  AppReadiness - ok
13:23:18.0974 0x1c30  AppXSvc - ok
13:23:18.0977 0x1c30  arcsas - ok
13:23:18.0980 0x1c30  AsyncMac - ok
13:23:19.0000 0x1c30  atapi - ok
13:23:19.0014 0x1c30  athr - ok
13:23:19.0024 0x1c30  AudioEndpointBuilder - ok
13:23:19.0033 0x1c30  Audiosrv - ok
13:23:19.0166 0x1c30  [ B890E8C5CBECEB1158D52B2B2842B4EF, FD6D0A95C27433F9BBC2D730BD2B86AE263092FBFF12589E5EEEFB577685C777 ] avgsvc          C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
13:23:19.0186 0x1c30  avgsvc - ok
13:23:19.0202 0x1c30  AxInstSV - ok
13:23:19.0202 0x1c30  b06bdrv - ok
13:23:19.0202 0x1c30  BasicDisplay - ok
13:23:19.0202 0x1c30  BasicRender - ok
13:23:19.0218 0x1c30  bcmfn - ok
13:23:19.0218 0x1c30  bcmfn2 - ok
13:23:19.0234 0x1c30  BDESVC - ok
13:23:19.0234 0x1c30  Beep - ok
13:23:19.0249 0x1c30  BFE - ok
13:23:19.0265 0x1c30  BITS - ok
13:23:19.0281 0x1c30  bowser - ok
13:23:19.0299 0x1c30  BrokerInfrastructure - ok
13:23:19.0301 0x1c30  Browser - ok
13:23:19.0303 0x1c30  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS       C:\WINDOWS\System32\drivers\btath_bus.sys
13:23:19.0318 0x1c30  BTATH_BUS - ok
13:23:19.0334 0x1c30  [ C8BF11D79B29BB23A461B65B58BA8593, 35AFAD5ED40304976287E6C982085DF7A91FF48F0320DAC32370FA039AA03C69 ] BtFilter        C:\WINDOWS\system32\DRIVERS\btfilter.sys
13:23:19.0365 0x1c30  BtFilter - ok
13:23:19.0365 0x1c30  BthAvrcpTg - ok
13:23:19.0381 0x1c30  BthEnum - ok
13:23:19.0403 0x1c30  BthHFEnum - ok
13:23:19.0403 0x1c30  bthhfhid - ok
13:23:19.0418 0x1c30  BthHFSrv - ok
13:23:19.0434 0x1c30  BthLEEnum - ok
13:23:19.0450 0x1c30  BTHMODEM - ok
13:23:19.0466 0x1c30  BthPan - ok
13:23:19.0486 0x1c30  BTHPORT - ok
13:23:19.0491 0x1c30  bthserv - ok
13:23:19.0506 0x1c30  BTHUSB - ok
13:23:19.0518 0x1c30  buttonconverter - ok
13:23:19.0522 0x1c30  CapImg - ok
13:23:19.0666 0x1c30  [ 0979E21A43F8F53945818D0E54FDF4C0, 1689C2F0FA646432814FC4FFA3D4514BC406E7E7DF11619B47C3EFF540809F94 ] CCDMonitorService C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe
13:23:19.0719 0x1c30  CCDMonitorService - ok
13:23:19.0750 0x1c30  [ A5C16A0BE89EE409732178BEB62F7EA7, D4B993F63CFD9B487BD53B532AB9435084B4C752F2731E189FA1420D516A4E95 ] ccSet_NARA      C:\WINDOWS\system32\drivers\NARAx64\0405000.009\ccSetx64.sys
13:23:19.0766 0x1c30  ccSet_NARA - ok
13:23:19.0766 0x1c30  cdfs - ok
13:23:19.0791 0x1c30  CDPSvc - ok
13:23:19.0808 0x1c30  CDPUserSvc - ok
13:23:19.0880 0x1c30  cdrom - ok
13:23:19.0894 0x1c30  CertPropSvc - ok
13:23:19.0919 0x1c30  [ 8030844CFB108E9E26385FC0CC3A8340, 74DE72D76510D3C5290B03FB90AED134A42A35176A1F080405FCBDAB0CD493B7 ] cfwids          C:\WINDOWS\system32\drivers\cfwids.sys
13:23:19.0928 0x1c30  cfwids - ok
13:23:19.0940 0x1c30  cht4iscsi - ok
13:23:19.0943 0x1c30  cht4vbd - ok
13:23:19.0964 0x1c30  circlass - ok
13:23:19.0974 0x1c30  CLFS - ok
13:23:19.0977 0x1c30  ClipSVC - ok
13:23:19.0989 0x1c30  clreg - ok
13:23:19.0998 0x1c30  CmBatt - ok
13:23:20.0001 0x1c30  CNG - ok
13:23:20.0004 0x1c30  cnghwassist - ok
13:23:20.0049 0x1c30  CompositeBus - ok
13:23:20.0052 0x1c30  COMSysApp - ok
13:23:20.0055 0x1c30  condrv - ok
13:23:20.0067 0x1c30  CoreMessagingRegistrar - ok
13:23:20.0142 0x1c30  [ 700A193A1555B083E3A08F5D3A844925, 974F7F0C78289EFE821407E418EB65A022D6445DED8EA112B9866784AF0221EE ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
13:23:20.0198 0x1c30  cphs - ok
13:23:20.0212 0x1c30  CryptSvc - ok
13:23:20.0228 0x1c30  dam - ok
13:23:20.0293 0x1c30  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
13:23:20.0302 0x1c30  dbupdate - ok
13:23:20.0307 0x1c30  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
13:23:20.0314 0x1c30  dbupdatem - ok
13:23:20.0317 0x1c30  dbx - ok
13:23:20.0336 0x1c30  [ A8352D11F8E2F7E8FA0BD6F8EF599C61, 72B9F8B96433CCFE5CC9FB786BF976068BDDC04D39F9F3BCFA5132E61A97C3FD ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
13:23:20.0352 0x1c30  DbxSvc - ok
13:23:20.0384 0x1c30  DcomLaunch - ok
13:23:20.0384 0x1c30  DcpSvc - ok
13:23:20.0404 0x1c30  defragsvc - ok
13:23:20.0435 0x1c30  DeviceAssociationService - ok
13:23:20.0435 0x1c30  DeviceInstall - ok
13:23:20.0451 0x1c30  DevQueryBroker - ok
13:23:20.0451 0x1c30  Dfsc - ok
13:23:20.0468 0x1c30  Dhcp - ok
13:23:20.0526 0x1c30  diagnosticshub.standardcollector.service - ok
13:23:20.0551 0x1c30  DiagTrack - ok
13:23:20.0568 0x1c30  disk - ok
13:23:20.0570 0x1c30  DmEnrollmentSvc - ok
13:23:20.0585 0x1c30  dmvsc - ok
13:23:20.0585 0x1c30  dmwappushservice - ok
13:23:20.0585 0x1c30  Dnscache - ok
13:23:20.0605 0x1c30  dot3svc - ok
13:23:20.0605 0x1c30  DPS - ok
13:23:20.0621 0x1c30  drmkaud - ok
13:23:20.0621 0x1c30  DsmSvc - ok
13:23:20.0621 0x1c30  DsSvc - ok
13:23:20.0636 0x1c30  DXGKrnl - ok
13:23:20.0652 0x1c30  EapHost - ok
13:23:20.0652 0x1c30  ebdrv - ok
13:23:20.0671 0x1c30  EFS - ok
13:23:20.0674 0x1c30  EhStorClass - ok
13:23:20.0695 0x1c30  EhStorTcgDrv - ok
13:23:20.0707 0x1c30  embeddedmode - ok
13:23:20.0710 0x1c30  EntAppSvc - ok
13:23:20.0805 0x1c30  [ B5B5FC68BFB3F01267E54B236660E610, 103F90343B207AFB9151CDA71E70884FEB56E8596754D2AB8B3F46C045642F10 ] ePowerSvc       C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
13:23:20.0821 0x1c30  ePowerSvc - ok
13:23:20.0836 0x1c30  ErrDev - ok
13:23:20.0852 0x1c30  EventSystem - ok
13:23:20.0852 0x1c30  exfat - ok
13:23:20.0852 0x1c30  fastfat - ok
13:23:20.0867 0x1c30  Fax - ok
13:23:20.0867 0x1c30  fdc - ok
13:23:20.0883 0x1c30  fdPHost - ok
13:23:20.0883 0x1c30  FDResPub - ok
13:23:20.0904 0x1c30  fhsvc - ok
13:23:20.0921 0x1c30  FileCrypt - ok
13:23:20.0921 0x1c30  FileInfo - ok
13:23:20.0921 0x1c30  Filetrace - ok
13:23:20.0937 0x1c30  flpydisk - ok
13:23:20.0937 0x1c30  FltMgr - ok
13:23:20.0968 0x1c30  FontCache - ok
13:23:21.0052 0x1c30  FontCache3.0.0.0 - ok
13:23:21.0068 0x1c30  FrameServer - ok
13:23:21.0068 0x1c30  FsDepends - ok
13:23:21.0068 0x1c30  Fs_Rec - ok
13:23:21.0083 0x1c30  fvevol - ok
13:23:21.0167 0x1c30  [ 61ABC13A9A44E6D6793BAC4F35045025, 44B58E98CC0F87B79FAD0D1CA04447F9401E2467C238CB07295A53EE72771633 ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
13:23:21.0222 0x1c30  GamesAppIntegrationService - detected UnsignedFile.Multi.Generic ( 1 )
13:23:21.0336 0x1c30  Detect skipped due to KSN trusted
13:23:21.0336 0x1c30  GamesAppIntegrationService - ok
13:23:21.0352 0x1c30  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
13:23:21.0368 0x1c30  GamesAppService - ok
13:23:21.0383 0x1c30  gencounter - ok
13:23:21.0383 0x1c30  genericusbfn - ok
13:23:21.0383 0x1c30  GPIOClx0101 - ok
13:23:21.0421 0x1c30  gpsvc - ok
13:23:21.0421 0x1c30  GpuEnergyDrv - ok
13:23:21.0468 0x1c30  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:23:21.0484 0x1c30  gupdate - ok
13:23:21.0484 0x1c30  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:23:21.0503 0x1c30  gupdatem - ok
13:23:21.0506 0x1c30  HDAudBus - ok
13:23:21.0506 0x1c30  HidBatt - ok
13:23:21.0506 0x1c30  HidBth - ok
13:23:21.0506 0x1c30  hidi2c - ok
13:23:21.0506 0x1c30  hidinterrupt - ok
13:23:21.0506 0x1c30  HidIr - ok
13:23:21.0522 0x1c30  hidserv - ok
13:23:21.0553 0x1c30  HidUsb - ok
13:23:21.0569 0x1c30  HomeGroupListener - ok
13:23:21.0584 0x1c30  HomeGroupProvider - ok
13:23:21.0600 0x1c30  HpSAMD - ok
13:23:21.0622 0x1c30  [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64        C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys
13:23:21.0701 0x1c30  HTCAND64 - ok
13:23:21.0763 0x1c30  [ 5C8BC8A28798FD010E7ABC4E0D588CAA, 622CAFD3DCBB05E15539589FDD4002DA6F24790FC55BDF05AA3D043E8A34E53E ] HTCMonitorService C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
13:23:21.0769 0x1c30  HTCMonitorService - ok
13:23:21.0786 0x1c30  [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot        C:\WINDOWS\system32\DRIVERS\htcnprot.sys
13:23:21.0802 0x1c30  htcnprot - ok
13:23:21.0822 0x1c30  [ 7C7C986776D00E575BFBDE5DCBDC615D, 4CF12851A5A45917C3A9139B19D79434F2038611B617F83A714506CC7A1A6C61 ] HtcVCom32       C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys
13:23:21.0903 0x1c30  HtcVCom32 - ok
13:23:21.0906 0x1c30  HTTP - ok
13:23:21.0922 0x1c30  HvHost - ok
13:23:21.0953 0x1c30  hvservice - ok
13:23:21.0968 0x1c30  hwpolicy - ok
13:23:21.0968 0x1c30  hyperkbd - ok
13:23:21.0984 0x1c30  i8042prt - ok
13:23:21.0984 0x1c30  iagpio - ok
13:23:22.0002 0x1c30  iai2c - ok
13:23:22.0004 0x1c30  iaLPSS2i_GPIO2 - ok
13:23:22.0006 0x1c30  iaLPSS2i_I2C - ok
13:23:22.0006 0x1c30  iaLPSSi_GPIO - ok
13:23:22.0006 0x1c30  iaLPSSi_I2C - ok
13:23:22.0053 0x1c30  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
13:23:22.0068 0x1c30  iaStorA - ok
13:23:22.0068 0x1c30  iaStorAV - ok
13:23:22.0068 0x1c30  iaStorV - ok
13:23:22.0084 0x1c30  ibbus - ok
13:23:22.0101 0x1c30  icssvc - ok
13:23:22.0268 0x1c30  [ 548712979B0BA12ECE2D8549797593D4, 6809412A76DE30C914A65BB8546E436AD540E00610D5D13FDE486C4446E95C24 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
13:23:22.0405 0x1c30  igfx - ok
13:23:22.0453 0x1c30  [ BA1BA1C9E40BCEB88678747C1E7C256F, C85CC690D353FCEBFD243304C25EEAA2BC13DB1E2A4C8C65371F455511540959 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
13:23:22.0469 0x1c30  igfxCUIService2.0.0.0 - ok
13:23:22.0484 0x1c30  IKEEXT - ok
13:23:22.0506 0x1c30  IndirectKmd - ok
13:23:22.0537 0x1c30  [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
13:23:22.0537 0x1c30  intaud_WaveExtensible - ok
13:23:22.0661 0x1c30  [ 8EB4D1D7806D05E5AB39D96464D801CA, 73853F56CD05243B1CABED2CA2420DFC8BA53F951030EECCD0D2A0E26D8A0D1B ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
13:23:22.0748 0x1c30  IntcAzAudAddService - ok
13:23:22.0796 0x1c30  [ D6A22510D795928E8840619900D672B4, 296F232B0A6D42840A745E4706D2815F6D2E4279DBD90112CBFBFF8833B724AF ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
13:23:22.0807 0x1c30  IntcDAud - ok
13:23:22.0919 0x1c30  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
13:23:22.0977 0x1c30  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
13:23:23.0107 0x1c30  Detect skipped due to KSN trusted
13:23:23.0107 0x1c30  Intel(R) Capability Licensing Service Interface - ok
13:23:23.0154 0x1c30  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
13:23:23.0169 0x1c30  Intel(R) Capability Licensing Service TCP IP Interface - ok
13:23:23.0207 0x1c30  intelide - ok
13:23:23.0207 0x1c30  intelpep - ok
13:23:23.0207 0x1c30  intelppm - ok
13:23:23.0223 0x1c30  iorate - ok
13:23:23.0238 0x1c30  IpFilterDriver - ok
13:23:23.0254 0x1c30  iphlpsvc - ok
13:23:23.0269 0x1c30  IPMIDRV - ok
13:23:23.0269 0x1c30  IPNAT - ok
13:23:23.0269 0x1c30  irda - ok
13:23:23.0269 0x1c30  IRENUM - ok
13:23:23.0285 0x1c30  irmon - ok
13:23:23.0285 0x1c30  isapnp - ok
13:23:23.0303 0x1c30  iScsiPrt - ok
13:23:23.0354 0x1c30  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
13:23:23.0354 0x1c30  jhi_service - ok
13:23:23.0370 0x1c30  k57nd60a - ok
13:23:23.0370 0x1c30  kbdclass - ok
13:23:23.0385 0x1c30  kbdhid - ok
13:23:23.0408 0x1c30  kdnic - ok
13:23:23.0408 0x1c30  KeyIso - ok
13:23:23.0408 0x1c30  KSecDD - ok
13:23:23.0423 0x1c30  KSecPkg - ok
13:23:23.0423 0x1c30  ksthunk - ok
13:23:23.0439 0x1c30  KtmRm - ok
13:23:23.0439 0x1c30  LanmanServer - ok
13:23:23.0454 0x1c30  LanmanWorkstation - ok
13:23:23.0470 0x1c30  lfsvc - ok
13:23:23.0486 0x1c30  LicenseManager - ok
13:23:23.0486 0x1c30  lltdio - ok
13:23:23.0486 0x1c30  lltdsvc - ok
13:23:23.0505 0x1c30  [ 4ACC60B4CBC911F3F34A1D66213BBBF5, C09A87ACAE0D41FD425BAF076FFE9B601DB89BB66199E5BD72FC59C6A8E449DB ] LMDriver        C:\WINDOWS\System32\drivers\LMDriver.sys
13:23:23.0508 0x1c30  LMDriver - ok
13:23:23.0508 0x1c30  lmhosts - ok
13:23:23.0555 0x1c30  [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
13:23:23.0570 0x1c30  LMS - ok
13:23:23.0623 0x1c30  [ FFDF8F07A900659CF927A273942926F8, BE27505B77404F18A0C1E57645211CC2D6CC83DEA60352A68B837E0E2D1847B5 ] LMSvc           C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
13:23:23.0623 0x1c30  LMSvc - ok
13:23:23.0639 0x1c30  LSI_SAS - ok
13:23:23.0655 0x1c30  LSI_SAS2i - ok
13:23:23.0655 0x1c30  LSI_SAS3i - ok
13:23:23.0655 0x1c30  LSI_SSS - ok
13:23:23.0670 0x1c30  LSM - ok
13:23:23.0670 0x1c30  luafv - ok
13:23:23.0670 0x1c30  MapsBroker - ok
13:23:23.0670 0x1c30  megasas - ok
13:23:23.0701 0x1c30  megasas2i - ok
13:23:23.0704 0x1c30  megasr - ok
13:23:23.0723 0x1c30  [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64          C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
13:23:23.0723 0x1c30  MEIx64 - ok
13:23:23.0739 0x1c30  MessagingService - ok
13:23:23.0808 0x1c30  [ B235528D48B67CCA29454C28071048DF, CBAD7449C4F471CB5F9AF5C35C70233A0937A722174D5252D6104C39F83D4F93 ] mfeaack         C:\WINDOWS\system32\drivers\mfeaack.sys
13:23:23.0823 0x1c30  mfeaack - ok
13:23:23.0870 0x1c30  [ 8F736C2F4E5C42BB57F5F7A5506FF5F3, 8CC813AD04FFAFBF729EC88147C29BC6EA5F10C0E813DB6F249AB1879E9F30EB ] mfeavfk         C:\WINDOWS\system32\drivers\mfeavfk.sys
13:23:23.0886 0x1c30  mfeavfk - ok
13:23:23.0905 0x1c30  [ 91F6C485F22E653C6C43ED4194B68B6F, 98A0ECD9D0E6D1E1ECB0E34C15695B00C33059FC858541DB445A9264AF1F1F6C ] mfeelamk        C:\WINDOWS\system32\drivers\mfeelamk.sys
13:23:23.0908 0x1c30  mfeelamk - ok
13:23:24.0004 0x1c30  [ FF8A2CC149A42A2CE6A600DE6EF9CB1E, BD4EE5AAE0637D0AFBD35FF35BB46C2E519652E50CC787EA7812C3D0436FFEB2 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
13:23:24.0013 0x1c30  mfefire - ok
13:23:24.0020 0x1c30  [ 324167EB03FA753C04F8DB69A2413DD9, AC40C5654B2AED44E9EDE135715F9D831279DDC5435AFBED2789D971E1C402FC ] mfefirek        C:\WINDOWS\system32\drivers\mfefirek.sys
13:23:24.0036 0x1c30  mfefirek - ok
13:23:24.0067 0x1c30  [ 7A1C9D04DD7A0EFEB6ED26FBA10F86ED, C1335A8E60EFB110214297E9977AF436D44B705561FEED30954D57EBDF3D2A9C ] mfehidk         C:\WINDOWS\system32\drivers\mfehidk.sys
13:23:24.0101 0x1c30  mfehidk - ok
13:23:24.0108 0x1c30  [ ADDC6C846D95A2D2E60C5213B6FD6A2E, 8FFFD7E5F24D74D105F3D1C5120B66D4AFDDAE07EA59DD70B616F035AB77F252 ] mfemms          C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
13:23:24.0124 0x1c30  mfemms - ok
13:23:24.0186 0x1c30  [ 8A6784EE831673A404B5A9ADB927D3BB, B60F62087FEE4F44BD933F4A634B65FEEEF3D946A124BCE295A04248B758306F ] mfevtp          C:\Windows\system32\mfevtps.exe
13:23:24.0202 0x1c30  mfevtp - ok
13:23:24.0208 0x1c30  [ 957611C32C6A0D8225E41D0BD07BF35B, F4D8C1727382F4B0744D92D77D02CE381E03DA4ECFCF601D5E70F3C40B6513E9 ] mfewfpk         C:\WINDOWS\system32\drivers\mfewfpk.sys
13:23:24.0208 0x1c30  mfewfpk - ok
13:23:24.0224 0x1c30  mlx4_bus - ok
13:23:24.0224 0x1c30  MMCSS - ok
13:23:24.0240 0x1c30  Modem - ok
13:23:24.0240 0x1c30  monitor - ok
13:23:24.0240 0x1c30  mouclass - ok
13:23:24.0240 0x1c30  mouhid - ok
13:23:24.0255 0x1c30  mountmgr - ok
13:23:24.0255 0x1c30  mpsdrv - ok
13:23:24.0271 0x1c30  MpsSvc - ok
13:23:24.0287 0x1c30  MRxDAV - ok
13:23:24.0306 0x1c30  mrxsmb - ok
13:23:24.0324 0x1c30  mrxsmb10 - ok
13:23:24.0324 0x1c30  mrxsmb20 - ok
13:23:24.0340 0x1c30  MsBridge - ok
13:23:24.0355 0x1c30  MSDTC - ok
13:23:24.0355 0x1c30  Msfs - ok
13:23:24.0355 0x1c30  msgpiowin32 - ok
13:23:24.0371 0x1c30  mshidkmdf - ok
13:23:24.0371 0x1c30  mshidumdf - ok
13:23:24.0371 0x1c30  msisadrv - ok
13:23:24.0386 0x1c30  MSiSCSI - ok
13:23:24.0386 0x1c30  msiserver - ok
13:23:24.0386 0x1c30  MSKSSRV - ok
13:23:24.0405 0x1c30  MsLldp - ok
13:23:24.0407 0x1c30  MSPCLOCK - ok
13:23:24.0409 0x1c30  MSPQM - ok
13:23:24.0409 0x1c30  MsRPC - ok
13:23:24.0409 0x1c30  mssmbios - ok
13:23:24.0409 0x1c30  MSTEE - ok
13:23:24.0409 0x1c30  MTConfig - ok
13:23:24.0440 0x1c30  Mup - ok
13:23:24.0440 0x1c30  mvumis - ok
13:23:24.0455 0x1c30  NativeWifiP - ok
13:23:24.0524 0x1c30  [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
13:23:24.0540 0x1c30  NAUpdate - ok
13:23:24.0555 0x1c30  NcaSvc - ok
13:23:24.0571 0x1c30  NcbService - ok
13:23:24.0571 0x1c30  NcdAutoSetup - ok
13:23:24.0571 0x1c30  ndfltr - ok
13:23:24.0571 0x1c30  NDIS - ok
13:23:24.0571 0x1c30  NdisCap - ok
13:23:24.0586 0x1c30  NdisImPlatform - ok
13:23:24.0586 0x1c30  NdisTapi - ok
13:23:24.0586 0x1c30  Ndisuio - ok
13:23:24.0586 0x1c30  NdisVirtualBus - ok
13:23:24.0586 0x1c30  NdisWan - ok
13:23:24.0586 0x1c30  ndiswanlegacy - ok
13:23:24.0603 0x1c30  ndproxy - ok
13:23:24.0606 0x1c30  Ndu - ok
13:23:24.0608 0x1c30  NetAdapterCx - ok
13:23:24.0609 0x1c30  NetBIOS - ok
13:23:24.0609 0x1c30  NetBT - ok
13:23:24.0609 0x1c30  Netlogon - ok
13:23:24.0609 0x1c30  Netman - ok
13:23:24.0625 0x1c30  netprofm - ok
13:23:24.0640 0x1c30  NetSetupSvc - ok
13:23:24.0720 0x1c30  NetTcpPortSharing - ok
13:23:24.0720 0x1c30  NgcCtnrSvc - ok
13:23:24.0720 0x1c30  NgcSvc - ok
13:23:24.0720 0x1c30  NlaSvc - ok
13:23:24.0871 0x1c30  [ 4CA6E1F6A83D74A86850726475DC4462, 9BF8D917141A5736E72A9F51F827D24393509896E866F43FFB079F5BF8EF3F81 ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
13:23:24.0956 0x1c30  NOBU - ok
13:23:24.0956 0x1c30  Npfs - ok
13:23:25.0004 0x1c30  npggsvc - ok
13:23:25.0009 0x1c30  npsvctrig - ok
13:23:25.0041 0x1c30  nsi - ok
13:23:25.0041 0x1c30  nsiproxy - ok
13:23:25.0056 0x1c30  NTFS - ok
13:23:25.0056 0x1c30  Null - ok
13:23:25.0125 0x1c30  [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
13:23:25.0141 0x1c30  NvContainerLocalSystem - ok
13:23:25.0156 0x1c30  [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
13:23:25.0172 0x1c30  NvContainerNetworkService - ok
13:23:25.0209 0x1c30  [ 5409D41DFB0EAB63511FE7889B2A687E, 32E8D8622798B8F16002EE617200F0172A98D984A925F6550A1E352ACFA0BDDF ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
13:23:25.0241 0x1c30  NVIDIA Wireless Controller Service - ok
13:23:25.0609 0x1c30  [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm        C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_33c9216502148e52\nvlddmkm.sys
13:23:26.0010 0x1c30  nvlddmkm - ok
13:23:26.0042 0x1c30  [ 214CE3AF0C1ABDD3529246914663E4C1, 2668A18265FD5BC9C107D6B11BC7A7169FE3C486B1A5727825756B05B4EFE17D ] nvpciflt        C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
13:23:26.0057 0x1c30  nvpciflt - ok
13:23:26.0057 0x1c30  nvraid - ok
13:23:26.0073 0x1c30  nvstor - ok
13:23:26.0126 0x1c30  [ 37527CCD2AAF5192D825084339CA964E, B1BE990411BA80D1F9E9F86F82F2B2762F87A5C028FB79A60DB325FAFE89D059 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
13:23:26.0126 0x1c30  NvStreamKms - ok
13:23:26.0188 0x1c30  [ 66B4D2AA9C733A40B1C673402E99A7D0, DD4297CCB3527C95E52132271C296D277FC4C5FB59731AF25FCC19A523A8D20C ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
13:23:26.0188 0x1c30  nvvad_WaveExtensible - ok
13:23:26.0226 0x1c30  OneSyncSvc - ok
13:23:26.0341 0x1c30  [ 2906AF02B5D06B0EFCD32382F19B88DB, 52A57816017591AC18693095ED6877EC6187F01A1B075ECC0F7E8FA73543E9D0 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
13:23:26.0388 0x1c30  Origin Client Service - ok
13:23:26.0472 0x1c30  [ 559E102771EC599B74A19BE829D4C809, 4AF59FEFD0727BDC6BF087307EFF22EBB09B56F7B6DFFBCA9CF6A3AACBB04CA9 ] OverwolfUpdater C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
13:23:26.0511 0x1c30  OverwolfUpdater - ok
13:23:26.0526 0x1c30  p2pimsvc - ok
13:23:26.0526 0x1c30  p2psvc - ok
13:23:26.0542 0x1c30  Parport - ok
13:23:26.0557 0x1c30  partmgr - ok
13:23:26.0589 0x1c30  [ 446462BBA744DA60379574926FD51EAB, 4A79E8EF28670333F4733FA0016508DC88E9BDC566B455DA5EDEDC514612180A ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
13:23:26.0641 0x1c30  PassThru Service - detected UnsignedFile.Multi.Generic ( 1 )
13:23:26.0726 0x1c30  Detect skipped due to KSN trusted
13:23:26.0726 0x1c30  PassThru Service - ok
13:23:26.0757 0x1c30  PcaSvc - ok
13:23:26.0773 0x1c30  pci - ok
13:23:26.0809 0x1c30  pciide - ok
13:23:26.0811 0x1c30  pcmcia - ok
13:23:26.0811 0x1c30  pcw - ok
13:23:26.0827 0x1c30  pdc - ok
13:23:26.0842 0x1c30  PEAUTH - ok
13:23:26.0842 0x1c30  percsas2i - ok
13:23:26.0842 0x1c30  percsas3i - ok
13:23:26.0889 0x1c30  PerfHost - ok
13:23:26.0911 0x1c30  PhoneSvc - ok
13:23:26.0926 0x1c30  PimIndexMaintenanceSvc - ok
13:23:26.0958 0x1c30  pla - ok
13:23:26.0973 0x1c30  PlugPlay - ok
13:23:26.0973 0x1c30  PnkBstrA - ok
13:23:26.0973 0x1c30  PNRPAutoReg - ok
13:23:26.0973 0x1c30  PNRPsvc - ok
13:23:26.0989 0x1c30  PolicyAgent - ok
13:23:26.0989 0x1c30  Power - ok
13:23:26.0989 0x1c30  PptpMiniport - ok
13:23:27.0127 0x1c30  [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
13:23:27.0259 0x1c30  PrintNotify - ok
13:23:27.0259 0x1c30  Processor - ok
13:23:27.0274 0x1c30  ProfSvc - ok
13:23:27.0290 0x1c30  Psched - ok
13:23:27.0390 0x1c30  [ C99D94151EDA07D418E14158E3C54A87, 9831EAE1E7851727810FCFA5AA66B80D6CD0B5072C04A7D1091DBE24F3AC638D ] QASvc           C:\Program Files\Acer\Acer Quick Access\QASvc.exe
13:23:27.0412 0x1c30  QASvc - ok
13:23:27.0428 0x1c30  QWAVE - ok
13:23:27.0428 0x1c30  QWAVEdrv - ok
13:23:27.0443 0x1c30  [ 6A52182919E25FB56D253D389F92CE98, AE6497D5CF324CB813248ADECB0F53E5CB3D6C326774E2257319E4CE7782C591 ] RadioShim       C:\WINDOWS\System32\drivers\RadioShim.sys
13:23:27.0443 0x1c30  RadioShim - ok
13:23:27.0443 0x1c30  RasAcd - ok
13:23:27.0459 0x1c30  RasAgileVpn - ok
13:23:27.0475 0x1c30  RasAuto - ok
13:23:27.0475 0x1c30  Rasl2tp - ok
13:23:27.0475 0x1c30  RasMan - ok
13:23:27.0490 0x1c30  RasPppoe - ok
13:23:27.0490 0x1c30  RasSstp - ok
13:23:27.0543 0x1c30  [ 5332223C0D4CEC95787607906B53E861, EA1FB6373EFA303D0A69DB49D4B05BA489D1FB428E9AF948FA4FAFB94264AE4E ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
13:23:27.0559 0x1c30  Razer Game Scanner Service - ok
13:23:27.0559 0x1c30  rdbss - ok
13:23:27.0575 0x1c30  rdpbus - ok
13:23:27.0575 0x1c30  RDPDR - ok
13:23:27.0612 0x1c30  RdpVideoMiniport - ok
13:23:27.0612 0x1c30  rdyboost - ok
13:23:27.0612 0x1c30  ReFSv1 - ok
13:23:27.0674 0x1c30  RemoteAccess - ok
13:23:27.0674 0x1c30  RemoteRegistry - ok
13:23:27.0710 0x1c30  RetailDemo - ok
13:23:27.0712 0x1c30  RFCOMM - ok
13:23:27.0712 0x1c30  RmSvc - ok
13:23:27.0727 0x1c30  RpcEptMapper - ok
13:23:27.0743 0x1c30  RpcLocator - ok
13:23:27.0759 0x1c30  RpcSs - ok
13:23:27.0790 0x1c30  [ 8C00FD003B32ACFD7C054D0D7988BDF4, 72F11EE0335DB66105F5056AC7FF51D486DBB6D57353727537F53E929D3A216F ] RSPCIESTOR      C:\WINDOWS\system32\DRIVERS\RtsPStor.sys
13:23:27.0813 0x1c30  RSPCIESTOR - ok
13:23:27.0813 0x1c30  rspndr - ok
13:23:27.0844 0x1c30  [ 434A22267365AEF88B3AD451B65988AE, 75EFCFF52501E7E3E7B50C4D793DD55F085E378DA1C78772244AB27708409900 ] rzpmgrk         C:\WINDOWS\system32\drivers\rzpmgrk.sys
13:23:27.0844 0x1c30  rzpmgrk - ok
13:23:27.0891 0x1c30  [ F8A13D4413A93DD005FAD116CBD6B6F7, 8ED0C00920CE76E832701D45117ED00B12E20588CB6FE8039FBCCDFEF9841047 ] rzpnk           C:\WINDOWS\system32\drivers\rzpnk.sys
13:23:27.0911 0x1c30  rzpnk - ok
13:23:27.0928 0x1c30  [ 421497E425AFB40502013F362E4FA230, 20E2372BEE4BFB21138CA574C9806EC399DDA9D3439F3C391E34ABB2E518106D ] rzudd           C:\WINDOWS\System32\drivers\rzudd.sys
13:23:27.0928 0x1c30  rzudd - ok
13:23:27.0991 0x1c30  [ F3D67BC2EACD3975BC217EC0AB39F649, 88338DBFE8C044D9DCF47A388CFFBCC6382E8BE839FB4941DAB1A8BC988BA11A ] RzWizardService C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe
13:23:28.0028 0x1c30  RzWizardService - detected UnsignedFile.Multi.Generic ( 1 )
13:23:28.0128 0x1c30  Detect skipped due to KSN trusted
13:23:28.0128 0x1c30  RzWizardService - ok
13:23:28.0144 0x1c30  s3cap - ok
13:23:28.0159 0x1c30  SamSs - ok
13:23:28.0159 0x1c30  sbp2port - ok
13:23:28.0175 0x1c30  SCardSvr - ok
13:23:28.0191 0x1c30  ScDeviceEnum - ok
13:23:28.0191 0x1c30  scfilter - ok
13:23:28.0191 0x1c30  Schedule - ok
13:23:28.0191 0x1c30  scmbus - ok
13:23:28.0191 0x1c30  scmdisk0101 - ok
13:23:28.0212 0x1c30  SCPolicySvc - ok
13:23:28.0244 0x1c30  [ 0447065A6E10774EFCECFDD0EB970A79, 384A9AC72E756F96D43EE4B144A466564476AFD8778092C979116BB29A514433 ] ScpVBus         C:\WINDOWS\System32\drivers\ScpVBus.sys
13:23:28.0244 0x1c30  ScpVBus - ok
13:23:28.0275 0x1c30  sdbus - ok
13:23:28.0275 0x1c30  SDRSVC - ok
13:23:28.0275 0x1c30  sdstor - ok
13:23:28.0275 0x1c30  seclogon - ok
13:23:28.0313 0x1c30  [ 07F83829E7429E60298440CD1E601A6A, 9F1229CD8DD9092C27A01F5D56E3C0D59C2BB9F0139ABF042E56F343637FDA33 ] semav6msr64     C:\WINDOWS\system32\drivers\semav6msr64.sys
13:23:28.0313 0x1c30  semav6msr64 - ok
13:23:28.0328 0x1c30  SENS - ok
13:23:28.0328 0x1c30  SensorDataService - ok
13:23:28.0344 0x1c30  SensorService - ok
13:23:28.0344 0x1c30  SensrSvc - ok
13:23:28.0344 0x1c30  SerCx - ok
13:23:28.0360 0x1c30  SerCx2 - ok
13:23:28.0360 0x1c30  Serenum - ok
13:23:28.0360 0x1c30  Serial - ok
13:23:28.0375 0x1c30  sermouse - ok
13:23:28.0375 0x1c30  SessionEnv - ok
13:23:28.0375 0x1c30  sfloppy - ok
13:23:28.0413 0x1c30  SharedAccess - ok
13:23:28.0429 0x1c30  ShellHWDetection - ok
13:23:28.0445 0x1c30  shpamsvc - ok
13:23:28.0445 0x1c30  SiSRaid2 - ok
13:23:28.0445 0x1c30  SiSRaid4 - ok
13:23:28.0491 0x1c30  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
13:23:28.0491 0x1c30  SkypeUpdate - ok
13:23:28.0529 0x1c30  [ DC69820E1D2DC3AC0AA24D57AE355284, 24B9B9CD0A39B53FFB53C16ABB4BBE1A977E6D17D3C83846A0F551C3EA12F75B ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
13:23:28.0529 0x1c30  SmbDrvI - ok
13:23:28.0560 0x1c30  smphost - ok
13:23:28.0576 0x1c30  SmsRouter - ok
13:23:28.0591 0x1c30  SNMPTRAP - ok
13:23:28.0629 0x1c30  spaceport - ok
13:23:28.0629 0x1c30  SpbCx - ok
13:23:28.0645 0x1c30  Spooler - ok
13:23:28.0660 0x1c30  sppsvc - ok
13:23:28.0660 0x1c30  srv - ok
13:23:28.0660 0x1c30  srv2 - ok
13:23:28.0676 0x1c30  srvnet - ok
13:23:28.0691 0x1c30  SSDPSRV - ok
13:23:28.0691 0x1c30  SstpSvc - ok
13:23:28.0714 0x1c30  StateRepository - ok
13:23:28.0792 0x1c30  [ 90E22D7CDE08E07446D238A569BCAB7C, 3D4F413D0B0C9CF28D06E0476F24AC6441C8678DF786D9971B39C91C9F9B8020 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
13:23:28.0814 0x1c30  Steam Client Service - ok
13:23:28.0845 0x1c30  stexstor - ok
13:23:28.0845 0x1c30  stisvc - ok
13:23:28.0861 0x1c30  storahci - ok
13:23:28.0876 0x1c30  storflt - ok
13:23:28.0876 0x1c30  stornvme - ok
13:23:28.0876 0x1c30  storqosflt - ok
13:23:28.0892 0x1c30  StorSvc - ok
13:23:28.0892 0x1c30  storufs - ok
13:23:28.0892 0x1c30  storvsc - ok
13:23:28.0892 0x1c30  svsvc - ok
13:23:28.0909 0x1c30  swenum - ok
13:23:28.0912 0x1c30  swprv - ok
13:23:28.0914 0x1c30  Synth3dVsc - ok
13:23:28.0945 0x1c30  [ AD764FB3E172A6845465C9E89B6B36EF, 3124CE0E45414FD8304FC714F5B8AD19F500515EAEA5627DF30CEE0CCE91A42F ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
13:23:28.0961 0x1c30  SynTP - ok
13:23:29.0014 0x1c30  [ BBD8D18C84B4A6766B5D2486CDE99D16, 3CD1DE51D820FDE5B9907A90AA7F1BF3E84967C79E3B8493DA56070B349E3072 ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
13:23:29.0014 0x1c30  SynTPEnhService - ok
13:23:29.0030 0x1c30  SysMain - ok
13:23:29.0030 0x1c30  SystemEventsBroker - ok
13:23:29.0114 0x1c30  [ 328E65035DE1D2C1206B4F94AAFC1DB7, EB7EF4CD7641C96C1050AD6139C22DE35EABEDF2DAFA5CD9D8F0C129BE02891F ] SystemUsageReportSvc_WILLAMETTE C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
13:23:29.0114 0x1c30  SystemUsageReportSvc_WILLAMETTE - ok
13:23:29.0130 0x1c30  TabletInputService - ok
13:23:29.0130 0x1c30  TapiSrv - ok
13:23:29.0145 0x1c30  Tcpip - ok
13:23:29.0145 0x1c30  Tcpip6 - ok
13:23:29.0145 0x1c30  tcpipreg - ok
13:23:29.0145 0x1c30  tdx - ok
13:23:29.0161 0x1c30  terminpt - ok
13:23:29.0161 0x1c30  TermService - ok
13:23:29.0177 0x1c30  Themes - ok
13:23:29.0192 0x1c30  TieringEngineService - ok
13:23:29.0192 0x1c30  tiledatamodelsvc - ok
13:23:29.0192 0x1c30  TimeBrokerSvc - ok
13:23:29.0214 0x1c30  TPM - ok
13:23:29.0230 0x1c30  TrkWks - ok
13:23:29.0276 0x1c30  TrustedInstaller - ok
13:23:29.0276 0x1c30  tsusbflt - ok
13:23:29.0276 0x1c30  TsUsbGD - ok
13:23:29.0446 0x1c30  [ 8AF256C30CEF39CA939F9B3B9E2F2E75, 905CD1B5A7321C07CFD25DB9C871EF0F11843A5F40F16728D7F151301D4F2BEC ] TuneUp.UtilitiesSvc C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
13:23:29.0531 0x1c30  TuneUp.UtilitiesSvc - ok
13:23:29.0578 0x1c30  [ 9B5C98C9F9EF5E62806DCD58B0D8EACE, B4B8A3F943C2C401CA1ED05BDA0C6D631106B258FB40C433AC856DCA7E8D7F7A ] TuneUpUtilitiesDrv C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys
13:23:29.0578 0x1c30  TuneUpUtilitiesDrv - ok
13:23:29.0578 0x1c30  tunnel - ok
13:23:29.0593 0x1c30  tzautoupdate - ok
13:23:29.0615 0x1c30  UASPStor - ok
13:23:29.0615 0x1c30  UcmCx0101 - ok
13:23:29.0631 0x1c30  UcmTcpciCx0101 - ok
13:23:29.0631 0x1c30  UcmUcsi - ok
13:23:29.0646 0x1c30  Ucx01000 - ok
13:23:29.0646 0x1c30  UdeCx - ok
13:23:29.0646 0x1c30  udfs - ok
13:23:29.0662 0x1c30  UEFI - ok
13:23:29.0662 0x1c30  Ufx01000 - ok
13:23:29.0662 0x1c30  UfxChipidea - ok
13:23:29.0662 0x1c30  ufxsynopsys - ok
13:23:29.0693 0x1c30  UI0Detect - ok
13:23:29.0693 0x1c30  umbus - ok
13:23:29.0693 0x1c30  UmPass - ok
13:23:29.0693 0x1c30  UmRdpService - ok
13:23:29.0715 0x1c30  UnistoreSvc - ok
13:23:29.0731 0x1c30  upnphost - ok
13:23:29.0746 0x1c30  UrsChipidea - ok
13:23:29.0746 0x1c30  UrsCx01000 - ok
13:23:29.0746 0x1c30  UrsSynopsys - ok
13:23:29.0762 0x1c30  usbccgp - ok
13:23:29.0762 0x1c30  usbcir - ok
13:23:29.0762 0x1c30  usbehci - ok
13:23:29.0762 0x1c30  usbhub - ok
13:23:29.0762 0x1c30  USBHUB3 - ok
13:23:29.0762 0x1c30  usbohci - ok
13:23:29.0777 0x1c30  usbprint - ok
13:23:29.0777 0x1c30  usbser - ok
13:23:29.0777 0x1c30  USBSTOR - ok
13:23:29.0777 0x1c30  usbuhci - ok
13:23:29.0777 0x1c30  usbvideo - ok
13:23:29.0793 0x1c30  USBXHCI - ok
13:23:29.0815 0x1c30  UserDataSvc - ok
13:23:29.0831 0x1c30  UserManager - ok
13:23:29.0931 0x1c30  [ 52C696180AC8371163B268D648DCBDA5, B75925B1B8722F174862AF7554587F81C9A57EF661253F230B4EDA5E2C2AA4A6 ] USER_ESRV_SVC_WILLAMETTE C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
13:23:29.0947 0x1c30  USER_ESRV_SVC_WILLAMETTE - ok
13:23:29.0947 0x1c30  UsoSvc - ok
13:23:29.0962 0x1c30  VaultSvc - ok
13:23:29.0978 0x1c30  [ 0E3C4F20B2CE21168F3242D9CAC6CBF2, 1BD5E1A2000EBC1C335A8960ACDCD08BDC8230F533A80D086D2EE6FE4990EA02 ] VBoxUSBMon      C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
13:23:29.0994 0x1c30  VBoxUSBMon - ok
13:23:29.0994 0x1c30  vdrvroot - ok
13:23:30.0016 0x1c30  vds - ok
13:23:30.0016 0x1c30  VerifierExt - ok
13:23:30.0031 0x1c30  vhdmp - ok
13:23:30.0031 0x1c30  vhf - ok
13:23:30.0031 0x1c30  vmbus - ok
13:23:30.0031 0x1c30  VMBusHID - ok
13:23:30.0031 0x1c30  vmgid - ok
13:23:30.0047 0x1c30  vmicguestinterface - ok
13:23:30.0047 0x1c30  vmicheartbeat - ok
13:23:30.0047 0x1c30  vmickvpexchange - ok
13:23:30.0063 0x1c30  vmicrdv - ok
13:23:30.0063 0x1c30  vmicshutdown - ok
13:23:30.0063 0x1c30  vmictimesync - ok
13:23:30.0063 0x1c30  vmicvmsession - ok
13:23:30.0078 0x1c30  vmicvss - ok
13:23:30.0078 0x1c30  volmgr - ok
13:23:30.0078 0x1c30  volmgrx - ok
13:23:30.0078 0x1c30  volsnap - ok
13:23:30.0078 0x1c30  volume - ok
13:23:30.0094 0x1c30  vpci - ok
13:23:30.0094 0x1c30  vsmraid - ok
13:23:30.0094 0x1c30  VSS - ok
13:23:30.0112 0x1c30  VSTXRAID - ok
13:23:30.0116 0x1c30  vwifibus - ok
13:23:30.0116 0x1c30  vwififlt - ok
13:23:30.0116 0x1c30  vwifimp - ok
13:23:30.0116 0x1c30  W32Time - ok
13:23:30.0116 0x1c30  WacomPen - ok
13:23:30.0132 0x1c30  WalletService - ok
13:23:30.0148 0x1c30  wanarp - ok
13:23:30.0148 0x1c30  wanarpv6 - ok
13:23:30.0148 0x1c30  wbengine - ok
13:23:30.0163 0x1c30  WbioSrvc - ok
13:23:30.0195 0x1c30  wcifs - ok
13:23:30.0195 0x1c30  Wcmsvc - ok
13:23:30.0195 0x1c30  wcncsvc - ok
13:23:30.0195 0x1c30  wcnfs - ok
13:23:30.0195 0x1c30  WdBoot - ok
13:23:30.0211 0x1c30  Wdf01000 - ok
13:23:30.0214 0x1c30  WdFilter - ok
13:23:30.0217 0x1c30  WdiServiceHost - ok
13:23:30.0217 0x1c30  WdiSystemHost - ok
13:23:30.0217 0x1c30  wdiwifi - ok
13:23:30.0217 0x1c30  WdNisDrv - ok
13:23:30.0232 0x1c30  WdNisSvc - ok
13:23:30.0248 0x1c30  WebClient - ok
13:23:30.0264 0x1c30  Wecsvc - ok
13:23:30.0279 0x1c30  WEPHOSTSVC - ok
13:23:30.0279 0x1c30  wercplsupport - ok
13:23:30.0279 0x1c30  WerSvc - ok
13:23:30.0279 0x1c30  WFPLWFS - ok
13:23:30.0279 0x1c30  WiaRpc - ok
13:23:30.0295 0x1c30  WIMMount - ok
13:23:30.0295 0x1c30  WinDefend - ok
13:23:30.0314 0x1c30  WindowsTrustedRT - ok
13:23:30.0317 0x1c30  WindowsTrustedRTProxy - ok
13:23:30.0317 0x1c30  WinHttpAutoProxySvc - ok
13:23:30.0333 0x1c30  WinMad - ok
13:23:30.0380 0x1c30  Winmgmt - ok
13:23:30.0395 0x1c30  WinRM - ok
13:23:30.0417 0x1c30  WINUSB - ok
13:23:30.0417 0x1c30  WinVerbs - ok
13:23:30.0432 0x1c30  wisvc - ok
13:23:30.0448 0x1c30  WlanSvc - ok
13:23:30.0464 0x1c30  wlidsvc - ok
13:23:30.0464 0x1c30  WmiAcpi - ok
13:23:30.0479 0x1c30  wmiApSrv - ok
13:23:30.0479 0x1c30  WMPNetworkSvc - ok
13:23:30.0495 0x1c30  Wof - ok
13:23:30.0517 0x1c30  workfolderssvc - ok
13:23:30.0517 0x1c30  WPDBusEnum - ok
13:23:30.0533 0x1c30  WpdUpFltr - ok
13:23:30.0533 0x1c30  WpnService - ok
13:23:30.0533 0x1c30  WpnUserService - ok
13:23:30.0564 0x1c30  ws2ifsl - ok
13:23:30.0595 0x1c30  wscsvc - ok
13:23:30.0595 0x1c30  WSearch - ok
13:23:30.0649 0x1c30  wuauserv - ok
13:23:30.0649 0x1c30  WudfPf - ok
13:23:30.0649 0x1c30  WUDFRd - ok
13:23:30.0664 0x1c30  wudfsvc - ok
13:23:30.0664 0x1c30  WUDFWpdFs - ok
13:23:30.0680 0x1c30  WUDFWpdMtp - ok
13:23:30.0680 0x1c30  WwanSvc - ok
13:23:30.0713 0x1c30  XblAuthManager - ok
13:23:30.0733 0x1c30  XblGameSave - ok
13:23:30.0749 0x1c30  xboxgip - ok
13:23:30.0749 0x1c30  XboxNetApiSvc - ok
13:23:30.0764 0x1c30  xinputhid - ok
13:23:30.0796 0x1c30  [ D3D9CB4BA15C1854294517AA8954E201, DFBB6E1A5FF01123FEAD6EFFA67F4A0203792AFDF82EAFFC2DA981A584896542 ] XQHDrv          C:\WINDOWS\system32\DRIVERS\XQHDrv.sys
13:23:30.0815 0x1c30  XQHDrv - ok
13:23:30.0834 0x1c30  xusb22 - ok
13:23:30.0834 0x1c30  ================ Scan global ===============================
13:23:30.0896 0x1c30  [ Global ] - ok
13:23:30.0896 0x1c30  ================ Scan MBR ==================================
13:23:30.0896 0x1c30  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
13:23:31.0281 0x1c30  \Device\Harddisk0\DR0 - ok
13:23:31.0297 0x1c30  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
13:23:31.0366 0x1c30  \Device\Harddisk1\DR1 - ok
13:23:31.0366 0x1c30  ================ Scan VBR ==================================
13:23:31.0381 0x1c30  [ 0F5268551DB0136A398CB04B8679FC25 ] \Device\Harddisk0\DR0\Partition1
13:23:31.0381 0x1c30  \Device\Harddisk0\DR0\Partition1 - ok
13:23:31.0419 0x1c30  [ 7DECA1E84C6CEACE8CE7D219BB06A24C ] \Device\Harddisk1\DR1\Partition1
13:23:31.0419 0x1c30  \Device\Harddisk1\DR1\Partition1 - ok
13:23:31.0419 0x1c30  [ CD073EE7F7A6C185F0E109EC9C038D9B ] \Device\Harddisk1\DR1\Partition2
13:23:31.0419 0x1c30  \Device\Harddisk1\DR1\Partition2 - ok
13:23:31.0435 0x1c30  [ 7F32168DECCC196E6CE3E8271D2B4831 ] \Device\Harddisk1\DR1\Partition3
13:23:31.0435 0x1c30  \Device\Harddisk1\DR1\Partition3 - ok
13:23:31.0450 0x1c30  [ D993F839933B30D3A2D8811CAA7B01A8 ] \Device\Harddisk1\DR1\Partition4
13:23:31.0466 0x1c30  \Device\Harddisk1\DR1\Partition4 - ok
13:23:31.0482 0x1c30  [ 440BD6231A6AE62F10A1EBD03F85D258 ] \Device\Harddisk1\DR1\Partition5
13:23:31.0497 0x1c30  \Device\Harddisk1\DR1\Partition5 - ok
13:23:31.0497 0x1c30  ================ Scan generic autorun ======================
13:23:31.0851 0x1c30  [ 0011163AC036C71E03883DD10C626F81, CD1F55C6BC20817F69E76A2B2AB4BA30D175821A3A4EA5A34E285182584518B7 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
13:23:32.0086 0x1c30  RtHDVCpl - ok
13:23:32.0184 0x1c30  [ 59F8DA04498B80D58FD8638370C5C84F, 522F347F1F1B3991FDC60FF3CE8F8ABB2EDFE65C569D18EF5ACB690FD1BADC82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
13:23:32.0210 0x1c30  RtHDVBg_Dolby - ok
13:23:32.0242 0x1c30  [ B99D68C404A4E69FBB95E3A282091CFA, 5EAB9CF42DCB58C5067C857E79F068611AE7C4A52F06B8C5C2DD0821B6B7D318 ] C:\Windows\system32\igfxtray.exe
13:23:32.0257 0x1c30  IgfxTray - ok
13:23:32.0257 0x1c30  SynTPEnh - ok
13:23:32.0257 0x1c30  WindowsDefender - ok
13:23:32.0288 0x1c30  ShadowPlay - ok
13:23:32.0342 0x1c30  [ B08ECF1A28499D720B470CBBDC6D7EAD, 2E282611B1AD2070164098972C6722F44F1CAB00BA9A55A6F3569FFC8AAC0C0C ] C:\Program Files (x86)\Razer\RzWizard\RzWizard.exe
13:23:32.0389 0x1c30  RzWizard - detected UnsignedFile.Multi.Generic ( 1 )
13:23:32.0470 0x1c30  Detect skipped due to KSN trusted
13:23:32.0470 0x1c30  RzWizard - ok
13:23:32.0519 0x1c30  OneDriveSetup - ok
13:23:32.0520 0x1c30  OneDriveSetup - ok
13:23:32.0727 0x1c30  [ E93D62A6DB736AA82A3EEDDFDFE73311, 96EC57F66EE1A36580536518A814299DE6D5DACC0026F5A659B41918434ED8FA ] C:\Program Files\CCleaner\CCleaner64.exe
13:23:32.0912 0x1c30  CCleaner Monitoring - ok
13:23:33.0063 0x1c30  [ D2CE6EA0E9F641D7153462D40C6B4193, 3AAE5239F951E29497D759326BDC23E19644B763DC5661CA4E4980418195C37D ] C:\Program Files (x86)\Steam\steam.exe
13:23:33.0112 0x1c30  Steam - ok
13:23:33.0259 0x1c30  [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\tobias\AppData\Local\Microsoft\OneDrive\OneDrive.exe
13:23:33.0275 0x1c30  OneDrive - ok
13:23:33.0408 0x1c30  [ DAB21C14C09FA0F40DACD1A19C7A9125, DC215DAA9F79EA6B9D3B2C376A908AC4621871DC4B56374FAD7EDAED4FEB66D7 ] C:\Program Files (x86)\Origin\Origin.exe
13:23:33.0479 0x1c30  EADM - ok
13:23:33.0542 0x1c30  Skype - ok
13:23:33.0685 0x1c30  [ CC436BB2A26391F3DEBE316F6FB0474F, 2DA63827AD1449CA5F2888ADFA9645F1EAF8B39D26EC214441EE80F3A56E6E72 ] C:\Users\tobias\AppData\Local\Microsoft\BingSvc\BingSvc.exe
13:23:33.0695 0x1c30  BingSvc - ok
13:23:33.0745 0x1c30  [ F06414FDDFA07A239BD5A1D349DD0C52, 98EE1026B349551DBF998A038B5ACF027DE6A894805CDCAD653C9C5337949368 ] C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
13:23:33.0754 0x1c30  Overwolf - ok
13:23:33.0849 0x1c30  [ DD9EAE1C80561C509A8B8801E16BAA38, C688B626ADB0A7B72041DE08D0AA5930E9178C36F1FF9905124D397371B825D1 ] C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
13:23:33.0862 0x1c30  Spotify Web Helper - ok
13:23:33.0862 0x1c30  Waiting for KSN requests completion. In queue: 83
13:23:34.0876 0x1c30  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x61100 ( enabled : updated )
13:23:34.0876 0x1c30  Win FW state via NFP2: enabled ( trusted )
13:23:35.0029 0x1c30  ============================================================
13:23:35.0029 0x1c30  Scan finished
13:23:35.0029 0x1c30  ============================================================
13:23:35.0029 0x03f4  Detected object count: 0
13:23:35.0029 0x03f4  Actual detected object count: 0

cosinus · 23.11.2016, 10:10

so wars richtig

Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!

1. Schritt: adwCleaner

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

zatokabi · 23.11.2016, 10:44

adw cleaner bericht:

Code:

ATTFilter

# AdwCleaner v6.030 - Bericht erstellt am 23/11/2016 um 10:28:30
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-11-22.1 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : tobias - PCLOL
# Gestartet von : C:\Users\tobias\Desktop\adwcleaner_6.030.exe
# Modus: Löschen
# Unterstützung : hxxps://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****

[-] Ordner gelöscht: C:\Users\tobias\AppData\Local\pokki
[#] Ordner mit Neustart gelöscht: C:\Users\tobias\AppData\Local\Pokki
[-] Ordner gelöscht: C:\Users\Default User\AppData\Local\Pokki
[#] Ordner mit Neustart gelöscht: C:\Users\Default\AppData\Local\Pokki
[-] Ordner gelöscht: C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Dateien ] *****

[-] Datei gelöscht: C:\END


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_03d432a7e610c3e908213e7689d4342ce2111caf
[-] Schlüssel gelöscht: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Pokki
[-] Schlüssel gelöscht: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\PRODUCTSETUP
[-] Schlüssel gelöscht: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\csastats
[-] Schlüssel gelöscht: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Pokki
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\PRODUCTSETUP
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\csastats
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Pokki
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\PRODUCTSETUP
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\csastats
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
[-] Schlüssel gelöscht: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\winamp.com
[-] Schlüssel gelöscht: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\land.pckeeper.software
[-] Schlüssel gelöscht: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pckeeper.software
[-] Schlüssel gelöscht: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\land.pckeeper.software
[-] Schlüssel gelöscht: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pckeeper.software
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\winamp.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\land.pckeeper.software
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pckeeper.software
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\land.pckeeper.software
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pckeeper.software
[-] Wert gelöscht: HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
[-] Schlüssel gelöscht: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Browser ] *****

[-] [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Gelöscht: hxxp://search.babylon.com/?affID=110808&tt=3512_6&babsrc=HP_ss&mntrId=08721db9000000000000082e5f28a357
[-] [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Gelöscht: hxxp://mystart.incredibar.com/mb216?a=6R8Rxmvi7E&i=26
[-] [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Gelöscht: hxxp://www.sweet-page.com/?type=hppp&ts=1405015183&from=cor&uid=ST750LM022XHN-M750MBB_S2Y1J9CDA02913
[-] [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Gelöscht: hxxp://www.mystartsearch.com/?type=hp&ts=1414853978&from=smt&uid=ST750LM022XHN-M750MBB_S2Y1J9CDA02913
[-] [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: lfmhcpmkbdkbgbmkjoiopeeegenkdikp


*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [7046 Bytes] - [23/11/2016 10:28:30]
C:\AdwCleaner\AdwCleaner[S0].txt - [6905 Bytes] - [21/11/2016 16:24:43]
C:\AdwCleaner\AdwCleaner[S1].txt - [6976 Bytes] - [23/11/2016 10:26:35]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7265 Bytes] ##########

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 10 Home x64 
Ran by tobias (Administrator) on 23.11.2016 at 10:47:44,07
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0 




Registry: 1 

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9D491FCF-6300-48B2-8851-B829F1D62296} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.11.2016 at 10:51:13,03
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

cosinus · 23.11.2016, 11:25

Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

zatokabi · 23.11.2016, 12:55

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2016 01
durchgeführt von tobias (Administrator) auf PCLOL (23-11-2016 12:48:26)
Gestartet von C:\Users\tobias\Downloads
Geladene Profile: tobias (Verfügbare Profile: tobias)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\LeagueClient.exe
() C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\LeagueClientUx.exe
() C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\LeagueClientUx.exe
() C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\LeagueClientUx.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winamp.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft® Windows® Operating System) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [415128 2015-09-30] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-04] (Synaptics Incorporated)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-25] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [RzWizard] => C:\Program Files (x86)\Razer\RzWizard\RzWizard.exe [254976 2015-07-23] (Razer Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [595616 2016-04-21] (Razer Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [218896 2016-09-13] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25366584 2016-10-10] (Dropbox, Inc.)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8641240 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2860832 2016-10-13] (Valve Corporation)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-06-16] (Electronic Arts)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27011712 2016-10-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [BingSvc] => C:\Users\tobias\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [247344 2016-11-07] ()
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1104384 2014-01-15] (Spotify Ltd)
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [806400 2016-07-16] (Microsoft Corporation)
IFEO\acpanel_win.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dragonage2.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dropbox.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\epowerui.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\htcsyncmanager.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\nfs13.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\origin.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\originer.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\qastart.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\rzsynapse.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: 0.0.0.1	mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{4e87234e-79e4-455e-82a7-4eb665808732}: [DhcpNameServer] 127.0.0.1
Tcpip\..\Interfaces\{899332fa-f43b-4a92-a616-bbb80bf9b737}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB

FireFox:
========
FF ProfilePath: C:\Users\tobias\AppData\Roaming\Mozilla\Firefox\Profiles\ni6sxjIq.default [2016-06-15]
FF Extension: (Avira Browser Safety) - C:\Users\tobias\AppData\Roaming\Mozilla\Firefox\Profiles\ni6sxjIq.default\Extensions\abs@avira.com [2016-06-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-11] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-11] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-07-12] ()

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.de/
CHR Profile: C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default [2016-11-23]
CHR Extension: (ProxFlow) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-10-10]
CHR Extension: (Google Präsentationen) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-15]
CHR Extension: (Google Docs) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-15]
CHR Extension: (Google Drive) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-15]
CHR Extension: (YouTube) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-15]
CHR Extension: (WGT Golf Challenge) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcilimldmomiaihcfkmaldanopfejefg [2016-03-17]
CHR Extension: (Xdebug helper) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\eadndfjplgieldjbigjakmdgkmoaaaoc [2016-10-25]
CHR Extension: (Google Tabellen) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-15]
CHR Extension: (Avira Browserschutz) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-09-23]
CHR Extension: (Google Docs Offline) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (AdBlock) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-23]
CHR Extension: (Ad.Block Plus) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\hapegbniiaedpdjilamlnefaafflfefc [2016-03-15]
CHR Extension: (CloudConvert) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfpmbfgodkfcebpgheiedaddoikmljkk [2016-03-17]
CHR Extension: (Video Downloader All) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpaglkhbmbmhlnpnehlffkgaaapoicnk [2016-04-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (Google Mail) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-15]
CHR Extension: (Chrome Media Router) - C:\Users\tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-21]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1149712 2016-09-13] (AVG Technologies CZ, s.r.o.)
S4 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe [2650696 2013-07-26] (Acer Incorporated)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [38000 2016-10-10] (Dropbox, Inc.)
S4 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [663592 2013-07-05] (Acer Incorporated)
S4 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] ()
S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [235008 2013-07-16] (TODO: <Company name>) [Datei ist nicht signiert]
S4 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370064 2015-09-30] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
S4 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [457768 2013-08-03] (Acer Incorporate)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-03-07] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-04-01] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-03-07] (McAfee, Inc.)
S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4278112 2013-08-01] (Symantec Corporation)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [5660512 2016-08-16] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-11-17] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-10-25] (NVIDIA Corporation)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-06-16] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1316080 2016-11-07] (Overwolf LTD)
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Datei ist nicht signiert]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2016-06-19] ()
S4 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [457768 2013-08-02] (Acer Incorporate)
S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
S4 RzWizardService; C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe [368128 2015-07-23] (Razer Inc.) [Datei ist nicht signiert]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-04] (Synaptics Incorporated)
S4 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [118424 2016-03-09] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [4788496 2016-11-02] (AVG Technologies CZ, s.r.o.)
S4 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 ALSysIO; C:\Users\tobias\AppData\Local\Temp\ALSysIO64.sys [35320 2016-11-14] (Arthur Liberman)
S3 ccSet_NARA; C:\WINDOWS\system32\drivers\NARAx64\0405000.009\ccSetx64.sys [150104 2013-07-30] (Symantec Corporation)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-03-11] (McAfee, Inc.)
S3 HtcVCom32; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [419624 2016-03-11] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-03-11] (McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-03-11] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-03-11] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [842536 2016-03-11] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243496 2016-03-11] (McAfee, Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_9debaf626fb26761\nvlddmkm.sys [14174256 2016-11-18] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-10-25] (NVIDIA Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-22] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-14] (Razer, Inc.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-03-09] ()
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-04] (Synaptics Incorporated)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2016-02-15] (AVG Netherlands B.V.)
R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [127432 2015-09-16] (BigNox Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 XQHDrv; C:\WINDOWS\system32\DRIVERS\XQHDrv.sys [253384 2015-09-16] (BigNox Corporation)
R1 XQHDrv; C:\Windows\SysWOW64\DRIVERS\XQHDrv.sys [253384 2015-09-16] (BigNox Corporation)
U0 aswVmm; kein ImagePath
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-23 10:51 - 2016-11-23 10:51 - 00000680 _____ C:\Users\tobias\Desktop\JRT.txt
2016-11-23 10:47 - 2016-11-23 10:47 - 01631928 _____ (Malwarebytes) C:\Users\tobias\Downloads\JRT (1).exe
2016-11-23 10:23 - 2016-11-23 10:47 - 01631928 _____ (Malwarebytes) C:\Users\tobias\Downloads\JRT.exe
2016-11-23 10:23 - 2016-11-23 10:23 - 03910208 _____ C:\Users\tobias\Downloads\AdwCleaner_6.030 (1).exe
2016-11-22 14:08 - 2016-11-17 02:03 - 06384576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-11-22 14:08 - 2016-11-17 02:03 - 02477624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-11-22 14:08 - 2016-11-17 02:03 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-11-22 14:08 - 2016-11-17 02:03 - 00546752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-11-22 14:08 - 2016-11-17 02:03 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-11-22 14:08 - 2016-11-17 02:03 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-11-22 14:08 - 2016-11-17 02:03 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-11-22 14:08 - 2016-11-16 10:52 - 07529957 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-11-22 14:07 - 2016-11-17 01:58 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2016-11-22 14:06 - 2016-11-18 00:09 - 00048688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2016-11-22 14:06 - 2016-11-17 03:06 - 40123840 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 35224632 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 34711096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 28203576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 10912232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 10803880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 10354800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 09158432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 08913328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 08761376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 03934504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 03474064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 02953152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 02586048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 01953336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437595.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 01585088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437595.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 01038904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00975296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00943552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00897080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00802768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00683640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00644112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00572888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00438208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00394888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00390200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00327408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-11-22 14:06 - 2016-11-17 03:06 - 00042296 _____ C:\WINDOWS\system32\nvinfo.pb
2016-11-22 14:06 - 2016-11-17 03:06 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-11-22 14:06 - 2016-11-17 03:06 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2016-11-22 13:47 - 2016-11-22 13:47 - 00000000 ____D C:\Users\tobias\AppData\Roaming\Battle.net
2016-11-22 13:22 - 2016-11-22 13:29 - 00094848 _____ C:\TDSSKiller.3.1.0.12_22.11.2016_13.22.38_log.txt
2016-11-22 13:20 - 2016-11-22 13:21 - 00007408 _____ C:\TDSSKiller.3.1.0.12_22.11.2016_13.20.51_log.txt
2016-11-22 13:20 - 2016-11-22 13:20 - 00000562 _____ C:\TDSSKiller.3.1.0.12_22.11.2016_13.20.32_log.txt
2016-11-21 22:45 - 2016-11-21 22:46 - 00094848 _____ C:\TDSSKiller.3.1.0.12_21.11.2016_22.45.32_log.txt
2016-11-21 22:42 - 2016-11-21 22:45 - 00225696 _____ C:\TDSSKiller.3.1.0.12_21.11.2016_22.42.23_log.txt
2016-11-21 22:04 - 2016-11-21 22:42 - 04747704 _____ (AO Kaspersky Lab) C:\Users\tobias\Downloads\tdsskiller.exe
2016-11-21 22:03 - 2016-11-22 22:12 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-11-21 22:02 - 2016-11-22 22:12 - 00000000 ____D C:\Users\tobias\Desktop\mbar
2016-11-21 22:00 - 2016-11-21 22:01 - 16563352 _____ (Malwarebytes Corp.) C:\Users\tobias\Downloads\mbar-1.09.3.1001 (1).exe
2016-11-21 21:59 - 2016-11-21 22:02 - 16563352 _____ (Malwarebytes Corp.) C:\Users\tobias\Downloads\mbar-1.09.3.1001.exe
2016-11-21 16:42 - 2016-11-21 16:42 - 00064598 _____ C:\Users\tobias\Downloads\Shortcut.txt
2016-11-21 16:37 - 2016-11-21 16:42 - 00059793 _____ C:\Users\tobias\Downloads\Addition.txt
2016-11-21 16:29 - 2016-11-23 12:49 - 00025129 _____ C:\Users\tobias\Downloads\FRST.txt
2016-11-21 16:28 - 2016-11-23 12:48 - 00000000 ____D C:\FRST
2016-11-21 16:28 - 2016-11-21 16:28 - 02412544 _____ (Farbar) C:\Users\tobias\Downloads\FRST64.exe
2016-11-21 16:19 - 2016-11-23 10:28 - 00000000 ____D C:\AdwCleaner
2016-11-21 16:18 - 2016-11-21 16:19 - 03910208 _____ C:\Users\tobias\Desktop\adwcleaner_6.030.exe
2016-11-21 14:48 - 2016-11-22 22:10 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-21 14:47 - 2016-11-22 22:10 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-11-21 14:47 - 2016-11-21 14:47 - 00001174 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-11-21 14:47 - 2016-11-21 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-11-21 14:47 - 2016-11-21 14:47 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-21 14:47 - 2016-11-21 14:47 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-11-21 14:47 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-11-21 14:47 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-11-21 14:44 - 2016-11-21 14:47 - 22851472 _____ (Malwarebytes ) C:\Users\tobias\Downloads\mbam-setup-2.2.1.1043.exe
2016-11-21 14:36 - 2016-11-21 14:36 - 01065376 _____ (Google Inc.) C:\Users\tobias\Downloads\ChromeSetup.exe
2016-11-21 14:32 - 2016-11-21 14:32 - 00000219 _____ C:\Users\tobias\Desktop\Counter-Strike Global Offensive.url
2016-11-21 13:50 - 2016-11-21 13:50 - 00000789 _____ C:\Users\tobias\Desktop\GDMO.lnk
2016-11-21 13:50 - 2016-11-21 13:50 - 00000000 ____D C:\Users\tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MoveGames
2016-11-21 13:46 - 2016-11-21 13:46 - 00000000 ____D C:\MoveGames
2016-11-21 13:19 - 2016-11-21 13:46 - 1159994280 _____ C:\Users\tobias\Downloads\GDMO_Install_20160906_ver239.exe
2016-11-20 18:09 - 2016-08-16 11:40 - 05660512 _____ (INCA Internet Co., Ltd.) C:\WINDOWS\SysWOW64\GameMon.des
2016-11-20 18:08 - 2016-11-20 18:08 - 00000000 ____D C:\Program Files\Common Files\INCA Shared
2016-11-20 18:08 - 2005-01-03 07:43 - 00004682 _____ (INCA Internet Co., Ltd.) C:\WINDOWS\SysWOW64\npptNT2.sys
2016-11-20 18:08 - 2003-07-18 22:17 - 00005174 _____ C:\WINDOWS\SysWOW64\nppt9x.vxd
2016-11-20 13:27 - 2016-11-20 13:27 - 00000000 ____D C:\WINDOWS\Panther
2016-11-20 13:20 - 2016-11-20 13:20 - 00000276 _____ C:\Users\tobias\Desktop\Actions.xml
2016-11-20 13:20 - 2016-11-20 13:20 - 00000120 _____ C:\Users\tobias\Desktop\Auto Profiles.xml
2016-11-16 12:32 - 2016-11-16 12:32 - 00000222 _____ C:\Users\tobias\Desktop\Dishonored.url
2016-11-16 11:20 - 2016-11-16 11:21 - 06001376 _____ (Wargaming.net ) C:\Users\tobias\Downloads\WoWS_internet_install_eu.exe
2016-11-11 21:26 - 2016-11-11 21:26 - 00000219 _____ C:\Users\tobias\Desktop\Dota 2.url
2016-11-11 19:24 - 2016-11-09 21:22 - 00000000 ____D C:\Users\tobias\Desktop\tratape
2016-11-11 19:23 - 2016-11-11 19:23 - 22893850 _____ C:\Users\tobias\Downloads\tramald00r-tratape_tapez.eu.rar
2016-11-10 15:35 - 2016-11-10 15:36 - 03870449 _____ C:\Users\tobias\Downloads\bc3f6d75311aadecf3ad701b91b152ca.mpga
2016-11-10 13:23 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-10 13:23 - 2016-11-02 13:01 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-10 13:23 - 2016-11-02 12:13 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-10 13:23 - 2016-11-02 12:12 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-10 13:23 - 2016-11-02 12:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-10 13:23 - 2016-11-02 12:10 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-10 13:23 - 2016-11-02 12:09 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-10 13:23 - 2016-11-02 12:08 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-10 13:23 - 2016-11-02 12:08 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-10 13:23 - 2016-11-02 12:05 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-10 13:23 - 2016-11-02 12:05 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-10 13:23 - 2016-11-02 12:05 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-10 13:23 - 2016-11-02 12:02 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-10 13:23 - 2016-11-02 12:02 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-10 13:23 - 2016-11-02 12:01 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-10 13:23 - 2016-11-02 12:01 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-10 13:23 - 2016-11-02 12:00 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-10 13:23 - 2016-11-02 12:00 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-10 13:23 - 2016-11-02 11:49 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-10 13:23 - 2016-11-02 11:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-10 13:23 - 2016-11-02 11:46 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-10 13:23 - 2016-11-02 11:39 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-10 13:23 - 2016-11-02 11:33 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-10 13:23 - 2016-11-02 11:33 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-10 13:23 - 2016-11-02 11:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-10 13:23 - 2016-11-02 11:31 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-10 13:23 - 2016-11-02 11:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-10 13:23 - 2016-11-02 11:30 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-10 13:23 - 2016-11-02 11:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-10 13:23 - 2016-11-02 11:29 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-10 13:23 - 2016-11-02 11:29 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-10 13:23 - 2016-11-02 11:28 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-10 13:23 - 2016-11-02 11:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-10 13:23 - 2016-11-02 11:28 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-10 13:23 - 2016-11-02 11:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-10 13:23 - 2016-11-02 11:28 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-10 13:23 - 2016-11-02 11:27 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-10 13:23 - 2016-11-02 11:26 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-10 13:23 - 2016-11-02 11:26 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-10 13:23 - 2016-11-02 11:26 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-10 13:23 - 2016-11-02 11:25 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-10 13:23 - 2016-11-02 11:23 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-10 13:23 - 2016-11-02 11:22 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-10 13:23 - 2016-11-02 11:19 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-10 13:23 - 2016-11-02 11:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-10 13:23 - 2016-11-02 11:18 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-10 13:23 - 2016-11-02 11:17 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-10 13:23 - 2016-11-02 11:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-10 13:23 - 2016-11-02 11:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-10 13:23 - 2016-11-02 09:20 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-10 13:22 - 2016-11-02 12:22 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-10 13:22 - 2016-11-02 12:22 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-10 13:22 - 2016-11-02 12:20 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-10 13:22 - 2016-11-02 12:15 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-10 13:22 - 2016-11-02 12:15 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-10 13:22 - 2016-11-02 12:14 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-10 13:22 - 2016-11-02 12:13 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-10 13:22 - 2016-11-02 12:13 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-10 13:22 - 2016-11-02 12:13 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-10 13:22 - 2016-11-02 12:13 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-10 13:22 - 2016-11-02 12:12 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-10 13:22 - 2016-11-02 12:08 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-10 13:22 - 2016-11-02 12:08 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-10 13:22 - 2016-11-02 12:05 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-10 13:22 - 2016-11-02 12:05 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-10 13:22 - 2016-11-02 12:04 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-10 13:22 - 2016-11-02 12:04 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-10 13:22 - 2016-11-02 12:03 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-10 13:22 - 2016-11-02 12:03 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-10 13:22 - 2016-11-02 12:01 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-10 13:22 - 2016-11-02 12:01 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-10 13:22 - 2016-11-02 12:01 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-10 13:22 - 2016-11-02 12:01 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-10 13:22 - 2016-11-02 12:00 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-10 13:22 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-10 13:22 - 2016-11-02 11:59 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-10 13:22 - 2016-11-02 11:56 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-10 13:22 - 2016-11-02 11:50 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-10 13:22 - 2016-11-02 11:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-10 13:22 - 2016-11-02 11:48 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-10 13:22 - 2016-11-02 11:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-10 13:22 - 2016-11-02 11:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-10 13:22 - 2016-11-02 11:44 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-10 13:22 - 2016-11-02 11:44 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-10 13:22 - 2016-11-02 11:43 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-10 13:22 - 2016-11-02 11:43 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-10 13:22 - 2016-11-02 11:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-10 13:22 - 2016-11-02 11:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-10 13:22 - 2016-11-02 11:42 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-10 13:22 - 2016-11-02 11:42 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-10 13:22 - 2016-11-02 11:42 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-10 13:22 - 2016-11-02 11:42 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-10 13:22 - 2016-11-02 11:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-10 13:22 - 2016-11-02 11:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-10 13:22 - 2016-11-02 11:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-10 13:22 - 2016-11-02 11:40 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-10 13:22 - 2016-11-02 11:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-10 13:22 - 2016-11-02 11:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-10 13:22 - 2016-11-02 11:38 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-10 13:22 - 2016-11-02 11:38 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-10 13:22 - 2016-11-02 11:37 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-10 13:22 - 2016-11-02 11:36 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-10 13:22 - 2016-11-02 11:36 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-10 13:22 - 2016-11-02 11:36 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-10 13:22 - 2016-11-02 11:35 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-10 13:22 - 2016-11-02 11:34 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-10 13:22 - 2016-11-02 11:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-10 13:22 - 2016-11-02 11:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-10 13:22 - 2016-11-02 11:29 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-10 13:22 - 2016-11-02 11:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-10 13:22 - 2016-11-02 11:27 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-10 13:22 - 2016-11-02 11:27 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-10 13:22 - 2016-11-02 11:27 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-10 13:22 - 2016-11-02 11:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-10 13:22 - 2016-11-02 11:25 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-10 13:22 - 2016-11-02 11:24 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-10 13:22 - 2016-11-02 11:23 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-10 13:22 - 2016-11-02 11:23 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-10 13:22 - 2016-11-02 11:23 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-10 13:22 - 2016-11-02 11:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-10 13:22 - 2016-11-02 11:23 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-10 13:22 - 2016-11-02 11:22 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-10 13:22 - 2016-11-02 11:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-10 13:22 - 2016-11-02 11:22 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-10 13:22 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-10 13:22 - 2016-11-02 11:21 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-10 13:22 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-10 13:22 - 2016-11-02 11:20 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-10 13:22 - 2016-11-02 11:20 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-10 13:22 - 2016-11-02 11:19 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-10 13:22 - 2016-11-02 11:18 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-10 13:22 - 2016-11-02 11:18 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-10 13:22 - 2016-11-02 11:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-10 13:22 - 2016-11-02 11:17 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-10 13:22 - 2016-11-02 11:17 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-10 13:22 - 2016-11-02 11:17 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-10 13:22 - 2016-11-02 11:17 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-10 13:22 - 2016-11-02 11:17 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-10 13:22 - 2016-11-02 11:15 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-10 13:22 - 2016-11-02 11:14 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-10 13:22 - 2016-11-02 11:13 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-10 13:22 - 2016-11-02 11:13 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-10 13:22 - 2016-11-02 11:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-10 13:22 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-10 13:22 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-10 13:22 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-10 13:21 - 2016-11-02 12:20 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-10 13:21 - 2016-11-02 12:05 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-10 13:21 - 2016-11-02 12:04 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-10 13:21 - 2016-11-02 12:02 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-10 13:21 - 2016-11-02 12:02 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-10 13:21 - 2016-11-02 12:00 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-10 13:21 - 2016-11-02 12:00 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-10 13:21 - 2016-11-02 11:56 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-10 13:21 - 2016-11-02 11:56 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-10 13:21 - 2016-11-02 11:56 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-10 13:21 - 2016-11-02 11:56 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-10 13:21 - 2016-11-02 11:55 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-10 13:21 - 2016-11-02 11:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-10 13:21 - 2016-11-02 11:47 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-10 13:21 - 2016-11-02 11:47 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-10 13:21 - 2016-11-02 11:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-10 13:21 - 2016-11-02 11:45 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-10 13:21 - 2016-11-02 11:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-10 13:21 - 2016-11-02 11:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-10 13:21 - 2016-11-02 11:43 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-10 13:21 - 2016-11-02 11:42 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-10 13:21 - 2016-11-02 11:42 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-10 13:21 - 2016-11-02 11:40 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-10 13:21 - 2016-11-02 11:34 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-10 13:21 - 2016-11-02 11:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-10 13:21 - 2016-11-02 11:32 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-10 13:21 - 2016-11-02 11:31 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-10 13:21 - 2016-11-02 11:30 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-10 13:21 - 2016-11-02 11:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-10 13:21 - 2016-11-02 11:28 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-10 13:21 - 2016-11-02 11:28 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-10 13:21 - 2016-11-02 11:28 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-10 13:21 - 2016-11-02 11:26 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-10 13:21 - 2016-11-02 11:26 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-10 13:21 - 2016-11-02 11:24 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-10 13:21 - 2016-11-02 11:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-10 13:21 - 2016-11-02 11:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-10 13:21 - 2016-11-02 11:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-10 13:21 - 2016-11-02 11:15 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-09 19:06 - 2016-11-22 17:23 - 00002179 _____ C:\Users\tobias\Desktop\League of Legends.lnk
2016-11-08 17:34 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-11-08 17:34 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-11-08 17:34 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-11-08 17:34 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-11-08 17:34 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-11-08 17:34 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-11-08 17:34 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-11-08 17:34 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-11-08 17:00 - 2016-11-08 17:45 - 138997893 _____ C:\Users\tobias\Downloads\KarAnd_Turb0.zip
2016-11-08 16:58 - 2016-11-08 17:54 - 171300295 _____ C:\Users\tobias\Downloads\KarAn-PilPla2CNO.zip
2016-11-08 13:49 - 2016-11-09 15:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League client alpha
2016-11-08 13:43 - 2016-11-08 13:46 - 113651192 _____ (Riot Games, Inc) C:\Users\tobias\Downloads\League client alpha installer EUW.exe
2016-11-07 20:34 - 2016-11-07 20:34 - 00000222 _____ C:\Users\tobias\Desktop\DmC Devil May Cry.url
2016-11-07 10:19 - 2016-11-07 10:19 - 00001488 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-11-07 10:18 - 2016-11-07 10:18 - 00003920 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:18 - 2016-11-07 10:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-07 10:18 - 2016-10-25 21:19 - 01852352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-11-07 10:18 - 2016-10-25 21:19 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-11-07 10:18 - 2016-10-25 21:19 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-11-07 10:18 - 2016-10-25 21:19 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-11-07 10:18 - 2016-10-25 21:19 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-11-07 10:16 - 2016-11-07 10:16 - 00003984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:16 - 2016-11-07 10:16 - 00003956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:16 - 2016-11-07 10:16 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:16 - 2016-11-07 10:16 - 00003732 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:16 - 2016-11-07 10:16 - 00003690 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-07 10:14 - 2016-11-23 10:48 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-07 10:05 - 2016-10-25 21:19 - 00104384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-11-07 10:05 - 2016-10-25 21:19 - 00094144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-11-07 10:05 - 2016-10-25 21:19 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-11-07 09:52 - 2016-11-07 09:52 - 00000000 ____D C:\Users\tobias\Documents\EA Games
2016-11-07 08:52 - 2016-11-07 08:57 - 00000000 ____D C:\Users\tobias\AppData\Local\Skyrim
2016-11-07 08:51 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-11-07 08:51 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-11-06 21:08 - 2016-11-07 09:53 - 00000000 ____D C:\Users\tobias\AppData\Roaming\Spotify
2016-11-06 21:08 - 2016-11-06 21:09 - 00000000 ____D C:\Users\tobias\AppData\Local\Spotify
2016-11-06 20:15 - 2016-11-06 20:15 - 00000221 _____ C:\Users\tobias\Desktop\Mirror's Edge.url
2016-11-06 14:47 - 2016-11-06 14:47 - 00000221 _____ C:\Users\tobias\Desktop\The Elder Scrolls V Skyrim.url
2016-11-05 12:14 - 2016-11-05 12:14 - 00000000 ____D C:\Users\tobias\AppData\Roaming\REAPER
2016-11-05 12:14 - 2016-11-05 12:14 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2016-11-05 12:13 - 2016-11-22 13:44 - 00000000 ____D C:\Program Files\REAPER (x64)
2016-11-01 22:11 - 2016-11-01 22:11 - 00000000 ____D C:\Program Files (x86)\Sony
2016-10-31 12:25 - 2016-11-22 22:46 - 00001091 _____ C:\Users\tobias\Desktop\Profiles.xml
2016-10-31 12:25 - 2013-05-19 01:02 - 00039168 _____ (Scarlet.Crush Productions) C:\WINDOWS\system32\Drivers\ScpVBus.sys
2016-10-31 12:24 - 2016-11-02 16:51 - 00573952 _____ () C:\Users\tobias\Desktop\DS4Updater.exe
2016-10-31 12:24 - 2016-10-31 12:24 - 03168256 _____ () C:\Users\tobias\Desktop\DS4Windows.exe
2016-10-30 20:07 - 2016-10-30 20:07 - 00000221 _____ C:\Users\tobias\Desktop\The Last Remnant.url
2016-10-30 19:54 - 2016-11-08 17:34 - 00000000 ____D C:\Users\tobias\Documents\My Games
2016-10-29 12:27 - 2016-10-15 05:48 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-29 12:27 - 2016-10-15 05:26 - 01990648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-29 12:27 - 2016-10-15 05:26 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-29 12:27 - 2016-10-15 05:15 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-10-29 12:27 - 2016-10-15 04:53 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-29 12:27 - 2016-10-15 04:52 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-29 12:27 - 2016-08-27 06:12 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00595296 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00283488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-29 12:26 - 2016-10-15 05:51 - 00232800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-29 12:26 - 2016-10-15 05:51 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-29 12:26 - 2016-10-15 05:43 - 01356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-29 12:26 - 2016-10-15 05:41 - 05622088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-29 12:26 - 2016-10-15 05:38 - 00500064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-10-29 12:26 - 2016-10-15 05:37 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-10-29 12:26 - 2016-10-15 05:34 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-10-29 12:26 - 2016-10-15 05:33 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2016-10-29 12:26 - 2016-10-15 05:31 - 02827864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-10-29 12:26 - 2016-10-15 05:31 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-29 12:26 - 2016-10-15 05:31 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-29 12:26 - 2016-10-15 05:30 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-10-29 12:26 - 2016-10-15 05:30 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-10-29 12:26 - 2016-10-15 05:30 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-10-29 12:26 - 2016-10-15 05:29 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-29 12:26 - 2016-10-15 05:29 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-29 12:26 - 2016-10-15 05:29 - 00908640 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-10-29 12:26 - 2016-10-15 05:29 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-29 12:26 - 2016-10-15 05:29 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-10-29 12:26 - 2016-10-15 05:26 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-29 12:26 - 2016-10-15 05:26 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-10-29 12:26 - 2016-10-15 05:26 - 00691080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-10-29 12:26 - 2016-10-15 05:25 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-29 12:26 - 2016-10-15 05:25 - 00742704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-29 12:26 - 2016-10-15 05:22 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-10-29 12:26 - 2016-10-15 05:21 - 00292872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-10-29 12:26 - 2016-10-15 05:18 - 00749920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-10-29 12:26 - 2016-10-15 05:10 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-10-29 12:26 - 2016-10-15 05:06 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-10-29 12:26 - 2016-10-15 05:05 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-29 12:26 - 2016-10-15 05:01 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-29 12:26 - 2016-10-15 05:00 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-10-29 12:26 - 2016-10-15 05:00 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-10-29 12:26 - 2016-10-15 05:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2016-10-29 12:26 - 2016-10-15 04:59 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-10-29 12:26 - 2016-10-15 04:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-10-29 12:26 - 2016-10-15 04:59 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-29 12:26 - 2016-10-15 04:58 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-10-29 12:26 - 2016-10-15 04:57 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-10-29 12:26 - 2016-10-15 04:57 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-29 12:26 - 2016-10-15 04:57 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-10-29 12:26 - 2016-10-15 04:57 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2016-10-29 12:26 - 2016-10-15 04:56 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2016-10-29 12:26 - 2016-10-15 04:56 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2016-10-29 12:26 - 2016-10-15 04:56 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-29 12:26 - 2016-10-15 04:56 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-10-29 12:26 - 2016-10-15 04:56 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-29 12:26 - 2016-10-15 04:56 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-10-29 12:26 - 2016-10-15 04:56 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-10-29 12:26 - 2016-10-15 04:56 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-10-29 12:26 - 2016-10-15 04:55 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2016-10-29 12:26 - 2016-10-15 04:55 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-10-29 12:26 - 2016-10-15 04:55 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-29 12:26 - 2016-10-15 04:55 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2016-10-29 12:26 - 2016-10-15 04:55 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingFolder.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-10-29 12:26 - 2016-10-15 04:54 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-10-29 12:26 - 2016-10-15 04:53 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-10-29 12:26 - 2016-10-15 04:52 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-10-29 12:26 - 2016-10-15 04:52 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-10-29 12:26 - 2016-10-15 04:52 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2016-10-29 12:26 - 2016-10-15 04:52 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2016-10-29 12:26 - 2016-10-15 04:51 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-10-29 12:26 - 2016-10-15 04:51 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-10-29 12:26 - 2016-10-15 04:50 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-10-29 12:26 - 2016-10-15 04:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-10-29 12:26 - 2016-10-15 04:49 - 01913344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-29 12:26 - 2016-10-15 04:49 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-10-29 12:26 - 2016-10-15 04:49 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-10-29 12:26 - 2016-10-15 04:49 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-29 12:26 - 2016-10-15 04:49 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-10-29 12:26 - 2016-10-15 04:49 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-29 12:26 - 2016-10-15 04:48 - 01554944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-29 12:26 - 2016-10-15 04:48 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-10-29 12:26 - 2016-10-15 04:48 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-29 12:26 - 2016-10-15 04:47 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-29 12:26 - 2016-10-15 04:47 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-10-29 12:26 - 2016-10-15 04:47 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-29 12:26 - 2016-10-15 04:47 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-10-29 12:26 - 2016-10-15 04:46 - 03287552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-29 12:26 - 2016-10-15 04:46 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-29 12:26 - 2016-10-15 04:46 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-10-29 12:26 - 2016-10-15 04:45 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-29 12:26 - 2016-10-15 04:45 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-29 12:26 - 2016-10-15 04:44 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-10-29 12:26 - 2016-10-15 04:44 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-29 12:26 - 2016-10-15 04:44 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2016-10-29 12:26 - 2016-10-15 04:43 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-10-29 12:26 - 2016-10-15 04:43 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-10-29 12:26 - 2016-10-15 04:43 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2016-10-29 12:26 - 2016-10-15 04:43 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-10-29 12:26 - 2016-10-15 04:42 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-10-29 12:26 - 2016-10-15 04:42 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-10-29 12:26 - 2016-10-15 04:42 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-10-29 12:26 - 2016-10-15 04:41 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-29 12:26 - 2016-10-15 04:41 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-10-29 12:26 - 2016-10-15 04:41 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-29 12:26 - 2016-10-15 04:41 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-10-29 12:26 - 2016-10-15 04:39 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-10-29 12:26 - 2016-10-15 04:38 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-10-29 12:26 - 2016-10-15 04:38 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-29 12:26 - 2016-10-15 04:38 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-10-29 12:26 - 2016-10-15 04:37 - 01980416 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-29 12:26 - 2016-10-15 04:37 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-29 12:26 - 2016-10-15 04:37 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-29 12:26 - 2016-10-15 04:37 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-10-29 12:26 - 2016-10-15 04:37 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2016-10-29 12:26 - 2016-10-15 04:36 - 02290176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-29 12:26 - 2016-10-15 04:36 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-29 12:26 - 2016-10-15 04:36 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-10-29 12:26 - 2016-10-15 04:36 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-10-29 12:26 - 2016-10-15 04:36 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-10-29 12:26 - 2016-10-15 04:36 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-10-29 12:26 - 2016-10-15 04:36 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmifw.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 03054080 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 02708992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-29 12:26 - 2016-10-15 04:35 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-10-29 12:26 - 2016-10-15 04:34 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-29 12:26 - 2016-10-15 04:34 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-10-29 12:26 - 2016-10-15 04:32 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-29 12:26 - 2016-10-15 04:31 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-10-29 12:26 - 2016-09-10 14:21 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-10-29 12:26 - 2016-08-06 05:17 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-29 12:25 - 2016-10-15 05:38 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-10-29 12:25 - 2016-10-15 05:31 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-29 12:25 - 2016-10-15 05:30 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-10-29 12:25 - 2016-10-15 05:26 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-29 12:25 - 2016-10-15 05:26 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-29 12:25 - 2016-10-15 05:21 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-10-29 12:25 - 2016-10-15 05:21 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-10-29 12:25 - 2016-10-15 05:21 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-10-29 12:25 - 2016-10-15 05:20 - 02276736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-10-29 12:25 - 2016-10-15 05:19 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-10-29 12:25 - 2016-10-15 05:18 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-10-29 12:25 - 2016-10-15 05:18 - 01556712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-10-29 12:25 - 2016-10-15 05:18 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-10-29 12:25 - 2016-10-15 05:15 - 01853776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-10-29 12:25 - 2016-10-15 05:15 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-10-29 12:25 - 2016-10-15 05:15 - 00687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-10-29 12:25 - 2016-10-15 05:11 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-10-29 12:25 - 2016-10-15 05:00 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2016-10-29 12:25 - 2016-10-15 04:59 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2016-10-29 12:25 - 2016-10-15 04:56 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2016-10-29 12:25 - 2016-10-15 04:56 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-10-29 12:25 - 2016-10-15 04:56 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-10-29 12:25 - 2016-10-15 04:55 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-10-29 12:25 - 2016-10-15 04:54 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2016-10-29 12:25 - 2016-10-15 04:52 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-29 12:25 - 2016-10-15 04:51 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-10-29 12:25 - 2016-10-15 04:47 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-10-29 12:25 - 2016-10-15 04:45 - 01790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-10-29 12:25 - 2016-10-15 04:44 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-10-29 12:25 - 2016-10-15 04:42 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-29 12:25 - 2016-10-15 04:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2016-10-29 12:25 - 2016-10-15 04:41 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-10-29 12:25 - 2016-10-15 04:39 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-10-29 12:25 - 2016-10-15 04:39 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-10-29 12:25 - 2016-10-15 04:37 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-10-29 12:25 - 2016-10-15 04:37 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-10-29 12:25 - 2016-10-15 04:36 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-10-29 12:25 - 2016-10-15 04:36 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-29 12:25 - 2016-10-15 04:34 - 02476544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-27 09:11 - 2016-10-27 09:11 - 00000000 ____D C:\ProgramData\AVAST Software
2016-10-27 09:11 - 2016-10-27 09:11 - 00000000 ____D C:\Program Files\AVAST Software
2016-10-27 09:09 - 2016-10-27 09:10 - 00000000 ____D C:\Users\tobias\AppData\Roaming\uTorrent
2016-10-27 08:53 - 2016-10-27 08:53 - 00000000 ____D C:\Users\tobias\AppData\Local\Blizzard Entertainment
2016-10-27 08:53 - 2016-10-27 08:53 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2016-10-27 08:50 - 2016-10-27 08:51 - 00000000 ____D C:\ProgramData\Battle.net

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-23 12:44 - 2016-09-25 18:26 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-23 10:55 - 2016-09-25 18:37 - 00000000 ____D C:\Users\tobias
2016-11-23 10:42 - 2016-09-25 18:30 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-23 10:42 - 2016-04-17 16:45 - 00000000 __SHD C:\Users\tobias\IntelGraphicsProfiles
2016-11-23 10:34 - 2016-07-16 23:51 - 01059146 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-23 10:34 - 2016-07-16 23:51 - 00245202 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-23 10:34 - 2016-04-17 16:29 - 02498566 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-23 10:29 - 2016-09-25 19:07 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-23 10:29 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-11-23 08:15 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-23 06:20 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-23 06:19 - 2016-03-14 07:59 - 00000000 ____D C:\Users\tobias\AppData\Local\Packages
2016-11-23 02:52 - 2016-03-14 12:55 - 00000000 ____D C:\Program Files (x86)\Steam
2016-11-22 20:05 - 2016-09-25 19:07 - 00003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2016-11-22 15:47 - 2016-04-03 08:36 - 00000000 ____D C:\Users\tobias\AppData\Local\CrashDumps
2016-11-22 14:08 - 2016-09-25 18:30 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-22 14:08 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Help
2016-11-22 14:08 - 2016-05-07 18:37 - 00000000 ____D C:\Temp
2016-11-22 14:08 - 2016-04-19 11:25 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-22 14:07 - 2016-09-25 18:31 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-22 14:07 - 2016-09-25 18:30 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-22 14:07 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-22 13:42 - 2014-01-15 14:39 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-21 22:18 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\IME
2016-11-21 14:39 - 2016-03-15 18:50 - 00002339 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-19 00:04 - 2016-07-26 19:27 - 00000000 ____D C:\Users\tobias\AppData\Roaming\Skype
2016-11-18 21:47 - 2016-08-09 20:28 - 00000000 ____D C:\Users\tobias\AppData\Local\Overwolf
2016-11-18 21:01 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-11-17 21:13 - 2016-08-09 20:28 - 00000000 ____D C:\Users\tobias\AppData\Roaming\TS3Client
2016-11-16 08:35 - 2016-08-09 20:30 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-11-14 00:39 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-12 23:21 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-12 12:44 - 2016-03-14 13:20 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-12 06:12 - 2016-10-03 09:33 - 00000000 ____D C:\WINDOWS\Minidump
2016-11-11 08:34 - 2016-02-13 18:30 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-11 01:43 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-11 01:43 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-11 01:11 - 2016-09-25 18:26 - 00203376 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-11 01:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-10 15:24 - 2016-07-27 13:31 - 00000000 ____D C:\Users\tobias\Documents\Unbenannt_Aufgenommen
2016-11-10 15:06 - 2016-07-27 13:31 - 00585813 _____ C:\Users\tobias\Documents\Unbenannt.ses
2016-11-10 14:47 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-09 20:03 - 2016-06-30 21:12 - 00010506 _____ C:\Users\tobias\Desktop\Neues Textdokument.txt
2016-11-09 15:03 - 2016-06-16 15:13 - 00002167 _____ C:\Users\tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\League of Legends.lnk
2016-11-09 13:48 - 2016-04-08 07:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 13:45 - 2016-04-08 07:28 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-09 02:43 - 2016-09-25 19:07 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-11-07 15:44 - 2016-06-16 14:39 - 00000000 ____D C:\Users\tobias\AppData\Local\Ubisoft Game Launcher
2016-11-07 12:25 - 2016-03-17 21:43 - 00000000 ____D C:\Users\tobias\AppData\Local\NVIDIA Corporation
2016-11-07 10:22 - 2016-03-17 21:42 - 00000000 ____D C:\Users\tobias\AppData\Local\NVIDIA
2016-11-04 20:09 - 2016-09-25 19:07 - 00002668 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
2016-11-02 13:19 - 2016-03-14 12:03 - 00053008 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\TURegOpt.exe
2016-11-01 22:11 - 2016-08-20 16:08 - 00002153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PS4 Remote Play.lnk
2016-11-01 22:11 - 2016-08-20 16:08 - 00002141 _____ C:\Users\Public\Desktop\PS4 Remote Play.lnk
2016-10-29 12:35 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-29 12:34 - 2016-07-16 12:47 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-10-29 00:56 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-28 18:47 - 2016-06-02 12:06 - 00066932 ____H C:\WINDOWS\SysWOW64\mlfcache.dat
2016-10-28 16:39 - 2016-03-15 18:50 - 00000000 ____D C:\Users\tobias\AppData\Local\Google
2016-10-28 11:24 - 2016-09-27 07:51 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-10-27 09:29 - 2016-09-19 18:44 - 00001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-10-27 09:29 - 2016-09-19 18:44 - 00001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-10-27 09:26 - 2016-07-26 19:27 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-27 09:26 - 2016-07-26 19:27 - 00000000 ____D C:\ProgramData\Skype
2016-10-27 09:24 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-10-27 09:18 - 2016-09-25 19:07 - 00003800 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2016-10-27 09:18 - 2016-09-25 19:07 - 00003576 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2016-10-24 19:23 - 2016-09-19 18:53 - 00000000 ___RD C:\Users\tobias\Dropbox

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-09-25 18:31 - 2016-09-25 18:31 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\tobias\AppData\Local\Temp\libeay32.dll
C:\Users\tobias\AppData\Local\Temp\msvcr120.dll
C:\Users\tobias\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-17 22:36

==================== Ende von FRST.txt ============================

zatokabi · 23.11.2016, 12:56

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
durchgeführt von tobias (23-11-2016 12:50:23)
Gestartet von C:\Users\tobias\Downloads
Windows 10 Home Version 1607 (X64) (2016-09-25 18:12:58)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1706370716-399708057-1175344942-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1706370716-399708057-1175344942-503 - Limited - Disabled)
Gast (S-1-5-21-1706370716-399708057-1175344942-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1706370716-399708057-1175344942-1004 - Limited - Enabled)
tobias (S-1-5-21-1706370716-399708057-1175344942-1002 - Administrator - Enabled) => C:\Users\tobias

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Acer Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.3006 - Acer Incorporated)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8101 - Acer Incorporated)
Acer Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.3104.3 - Acer Incorporated)
Acer Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.3104.6 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.3104 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8100 - Acer Incorporated)
Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.00.3000 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8100 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.00.3007 - Acer Incorporated)
Adobe Audition 3.0 (HKLM-x32\...\Adobe Audition 3.0) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Ansel (Version: 375.95 - NVIDIA Corporation) Hidden
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach)
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.62.2.46691 - AVG Technologies)
AVG PC TuneUp (x32 Version: 16.62.4 - AVG Technologies) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform)
CoolNovo (HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\ChromePlus) (Version: 2.0.9.20 - The Maple Studio)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3126.57 - CyberLink Corp.)
Dark Souls: Prepare to Die Edition (HKLM\...\Steam App 211420) (Version:  - FromSoftware)
Dishonored (HKLM\...\Steam App 205100) (Version:  - Arkane Studios)
DmC Devil May Cry (HKLM\...\Steam App 220440) (Version:  - Ninja Theory)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.3.2.2 - Dolby Laboratories Inc)
Dota 2 (HKLM\...\Steam App 570) (Version:  - Valve)
Dragon Age™ II (HKLM-x32\...\{4D565319-8B91-41CB-961C-0DDC86101AC5}) (Version: 1.04.8524.0 - Electronic Arts)
Dropbox (HKLM-x32\...\Dropbox) (Version: 12.4.22 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.47.1 - Dropbox, Inc.) Hidden
eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.10.2.18195 - Steinberg Media Technologies GmbH)
FMW 1 (Version: 1.132.1 - AVG Technologies) Hidden
GDMO (HKLM-x32\...\DMO_GSP) (Version:  - Movegames)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.17.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.69.5 - HTC)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8100 - Acer Incorporated)
Intel(R) Driver Update Utility 2.5 (x32 Version: 2.5.0.22 - Intel) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel(R) Product Improvement Program (x32 Version: 2.1.27.3 - Intel) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{aa1dec3b-dc4b-4db0-8c18-9157457eff1f}) (Version: 2.5.0.22 - Intel)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Mirror's Edge (HKLM\...\Steam App 17410) (Version:  - DICE)
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
Norton Online Backup (HKLM-x32\...\{E625FCA0-E43E-4D3B-92FF-4851308A0366}) (Version: 2.8.0.44 - Symantec Corporation)
Norton Online Backup (x32 Version: 4.5.0.9 - Symantec Corporation) Hidden
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.95 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.02.2009 - Acer)
OnTopReplica (HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\OnTopReplica) (Version: 3.4 - Lorenz Cuno Klopfenstein)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.99.218.0 - Overwolf Ltd.)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PS4 Remote Play (HKLM-x32\...\{A8AEF812-611C-4580-9193-ECFB30B1A411}) (Version: 1.5.0.08251 - Sony Interactive Entertainment Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.07 - Qualcomm Atheros)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.20.15.29092 - Razer Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.28145 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7027 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.1.57.ge7405149 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.4 - Synaptics Incorporated)
TeamSpeak 3 Client (HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
The Chronicles of Emerland Solitaire (x32 Version: 3.0.2.32 - WildTangent) Hidden
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - Ubisoft)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Last Remnant (HKLM\...\Steam App 23310) (Version:  - SQUARE ENIX)
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 20.0 - Ubisoft)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.10.20 - WildTangent) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0EB4FDED-361D-45ED-8F15-6E1BC064CFFF} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {0F3F95BC-245B-4991-B2CD-6816DD744440} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {14E9FC72-533E-43B9-A13F-0F6AFFF45636} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {1E39E9D2-CEDF-4156-9C36-F8C6F2B0EADC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-02-12] (Piriform Ltd)
Task: {23EE57EC-5ABD-42B8-8E41-DCF44BC8D73E} - \McAfee\McAfee Idle Detection Task -> Keine Datei <==== ACHTUNG
Task: {262646C1-913C-4130-BD4E-1DC84B9C8397} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {2D2D1FAF-716A-43F4-A1BD-89D417C7AAB9} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3581E7A9-37F1-41BF-9458-927A879C4AB6} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {3665BFAC-F238-4010-87EC-AF716DFC0C17} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2016-11-02] (AVG Technologies CZ, s.r.o.)
Task: {36A434AB-207E-40C3-989E-DCF0E9097530} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-08-03] (Acer Incorporate)
Task: {3C99614F-42FF-4A7A-965E-A5F499B2F042} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [2013-07-26] (Acer Incorporated)
Task: {41235514-2B67-4E2E-9D7D-3ABCB38668EB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-15] (Google Inc.)
Task: {43ACF8C8-A288-4406-85DC-BB40351E1BCC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {470443B1-4ED4-430B-BEC4-1DF05C0DD8A7} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {47E53981-B580-4EB9-8D73-38029FE0AE90} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2013-08-02] (Acer Incorporate)
Task: {48E98EF4-08EE-45C4-806F-48B05E44B479} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {5105A66C-0F2D-4DA8-9140-3770A73FC66A} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.5.0.9\\Ara.exe [2013-08-07] (Symantec Corporation)
Task: {63C42C91-034D-4051-871E-6C6D9ADC734F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {6D250451-E34D-4830-9AC5-C455A5658F46} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {759EAE5C-C44D-442E-AF75-13C5AB19B592} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-10-25] (NVIDIA Corporation)
Task: {763FDF22-7254-4D8F-9B23-1C527DD4ECE7} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-11-07] (Overwolf LTD)
Task: {83F5F324-6A13-4465-9795-BB53CAF1E0FE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-19] (Dropbox, Inc.)
Task: {8412C015-FFF3-4645-9DDB-CB53279A5BD1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {862A78BD-E4E7-4E8B-AD5F-BFCDC516C681} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {89DDD916-99B9-4754-8EC0-4F584E4817A9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {8C7A8F3A-F23F-41EE-B5CD-5A5570DE30A8} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {98D1596B-75B7-4117-BB1E-F90324D00225} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {A5099432-A615-4E9D-9A2B-9F9B98CB1A5B} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-10-25] (NVIDIA Corporation)
Task: {AB35E83D-2BB4-4919-8D9A-667AB43C75C4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {AF0A92BE-1F6B-4ABD-A067-2390A7D0E916} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {BF9C267D-3F13-4AC1-BA2B-975775E12EB5} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {C8B26F75-8E3A-478F-91B5-FD1CE207A280} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {CB43B97A-C600-4BC8-9067-E77A57420A4E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-19] (Dropbox, Inc.)
Task: {D25D0621-4F37-47DA-AB1C-7F62564CF90C} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {D67E1D69-5D2B-414C-929D-BA2230DE3264} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {D9DEC8AB-B1BF-42FF-908A-46E8452A77E7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {DC389096-0403-47C7-BBE1-8450FE294CFB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {E30F24A3-3F7F-44CE-B5B7-A912BE31627D} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
Task: {EB50EAB8-5CE9-4FD6-AFEF-E8BC3007A428} - System32\Tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeReminderTask => C:\WINDOWS\System32\GWX\GWX.exe
Task: {EC86323B-9008-49A9-A52C-2E1EBE03E8E0} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-07-10] (Acer Incorporated)
Task: {F15BA4BB-AAB7-479A-A6C4-4DBE57F50EDE} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-08] ()
Task: {F7CE6FFA-F2DF-48C6-B1DD-C1C30AC10960} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-11] (Adobe Systems Incorporated)
Task: {F83F44B7-EDD4-4FFD-84C3-BD4FB78BF51C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-15] (Google Inc.)
Task: {FAA86C73-9224-442F-8069-FAD3AD681A45} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-07-05] (Acer Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MoveGames\DMO_GSP\GameKing.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://dmo.gameking.com
ShortcutWithArgument: C:\Users\tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Ad.Block Plus.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=hapegbniiaedpdjilamlnefaafflfefc

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-09-30 11:39 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-06-18 08:26 - 2016-06-19 16:42 - 00075136 _____ () C:\WINDOWS\SysWoW64\PnkBstrA.exe
2016-09-30 11:39 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-11-17 08:00 - 2016-11-17 08:01 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-17 08:00 - 2016-11-17 08:01 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-17 08:00 - 2016-11-17 08:01 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-11-07 10:16 - 2016-10-25 21:19 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-07 10:16 - 2016-10-25 21:19 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-07 10:18 - 2016-10-25 21:19 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-09-25 19:18 - 2016-09-25 19:18 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-10 13:22 - 2016-11-02 11:30 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-10 13:22 - 2016-11-02 11:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-10 13:22 - 2016-11-02 11:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-10 13:22 - 2016-11-02 11:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-10 13:22 - 2016-11-02 11:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-10 13:22 - 2016-11-02 11:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-22 14:08 - 2016-11-17 02:03 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-23 10:54 - 2016-11-23 10:54 - 04240376 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\LeagueClient.exe
2016-11-23 10:54 - 2016-11-23 10:54 - 03196920 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\LeagueClientUx.exe
2016-11-21 14:39 - 2016-11-08 22:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-21 14:39 - 2016-11-08 22:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-11-07 10:16 - 2016-10-25 21:19 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 03319808 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-patcher\rcp-be-patcher.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 01022976 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-rso-auth\rcp-be-rso-auth.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 02516992 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-login\rcp-be-lol-login.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00556544 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-account-settings\rcp-be-lol-account-settings.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00582144 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-platform-config\rcp-be-lol-platform-config.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00681472 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-summoner\rcp-be-lol-summoner.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00631808 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-ranked-stats\rcp-be-lol-ranked-stats.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00523776 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-maps\rcp-be-lol-maps.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00659456 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-game-queues\rcp-be-lol-game-queues.dll
2016-11-23 10:54 - 2016-11-23 10:54 - 00842752 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-gameflow\rcp-be-lol-gameflow.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00907264 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-player-preferences\rcp-be-lol-player-preferences.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00683520 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-game-settings\rcp-be-lol-game-settings.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00625664 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-settings\rcp-be-lol-settings.dll
2016-11-23 10:54 - 2016-11-23 10:54 - 00630272 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-sanitizer\rcp-be-sanitizer.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 02475520 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-chat\rcp-be-lol-chat.dll
2016-11-23 10:54 - 2016-11-23 10:54 - 00159224 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\libexpat.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 01988096 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-riot-messaging-service\rcp-be-lol-riot-messaging-service.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00534528 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-heartbeat\rcp-be-lol-heartbeat.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00558080 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-shutdown\rcp-be-lol-shutdown.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00583168 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-acs\rcp-be-lol-acs.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00604160 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-player-notifications\rcp-be-player-notifications.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00575488 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-loyalty\rcp-be-lol-loyalty.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 01119232 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-collections\rcp-be-lol-collections.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00932352 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-loot\rcp-be-lol-loot.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00529920 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-kr-shutdown-law\rcp-be-lol-kr-shutdown-law.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 01039872 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-lobby-team-builder\rcp-be-lol-lobby-team-builder.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00683008 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-queue-eligibility\rcp-be-lol-queue-eligibility.dll
2016-11-23 10:54 - 2016-11-23 10:54 - 01497600 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-lobby\rcp-be-lol-lobby.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00854016 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-license-agreement\rcp-be-lol-license-agreement.dll
2016-11-23 10:54 - 2016-11-23 10:54 - 01165824 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-champ-select-legacy\rcp-be-lol-champ-select-legacy.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00700416 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-champ-select\rcp-be-lol-champ-select.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00817664 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-matchmaking\rcp-be-lol-matchmaking.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00520704 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-kr-playtime-reminder\rcp-be-lol-kr-playtime-reminder.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00561664 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-game-client-chat\rcp-be-lol-game-client-chat.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00801792 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-end-of-game\rcp-be-lol-end-of-game.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00559616 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-active-boosts\rcp-be-lol-active-boosts.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00602112 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-kudos\rcp-be-lol-kudos.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00629760 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-parties\rcp-be-lol-parties.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00898048 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-leagues\rcp-be-lol-leagues.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00642560 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-pft\rcp-be-lol-pft.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00653824 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-player-behavior\rcp-be-lol-player-behavior.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00636416 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-suggested-players\rcp-be-lol-suggested-players.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00565760 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-service-status\rcp-be-lol-service-status.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00611840 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-leaver-buster\rcp-be-lol-leaver-buster.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00697856 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-match-history\rcp-be-lol-match-history.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00589312 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-team-boosts\rcp-be-lol-team-boosts.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00712192 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-recofriender\rcp-be-recofriender.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00803328 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-clubs\rcp-be-lol-clubs.dll
2016-11-23 10:54 - 2016-11-23 10:54 - 01705472 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-clubs-public\rcp-be-lol-clubs-public.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00614400 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-esport-stream-notifications\rcp-be-lol-esport-stream-notifications.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00778752 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-replays\rcp-be-lol-replays.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00699904 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-store\rcp-be-lol-store.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00548352 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-player-level-up\rcp-be-lol-player-level-up.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00523776 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-tencent-qt\rcp-be-lol-tencent-qt.dll
2016-11-23 10:54 - 2016-11-22 17:16 - 00601088 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-beta-opt-in\rcp-be-lol-beta-opt-in.dll
2016-11-23 10:54 - 2016-11-22 17:17 - 00577024 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-lol-player-messaging\rcp-be-lol-player-messaging.dll
2016-11-23 10:54 - 2016-11-09 15:00 - 00524800 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\Plugins\rcp-be-network-testing\rcp-be-network-testing.dll
2016-11-23 10:54 - 2016-11-23 10:54 - 55617528 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\libcef.dll
2016-11-23 10:54 - 2016-11-23 10:54 - 01876472 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\libglesv2.dll
2016-11-23 10:54 - 2016-11-23 10:54 - 00022008 _____ () C:\Program Files (x86)\rito\League of Legends\RADS\projects\league_client\releases\0.0.0.35\deploy\libegl.dll
2016-11-23 11:02 - 2016-11-23 11:02 - 00014336 _____ () C:\Users\tobias\AppData\Local\Temp\WDE321A.tmp\ml_online.lng
2016-11-23 11:02 - 2016-11-23 11:02 - 00036352 _____ () C:\Users\tobias\AppData\Local\Temp\WDE321A.tmp\ombrowser.lng
2013-12-13 03:47 - 2013-12-13 03:47 - 00333824 _____ () C:\Program Files (x86)\Winamp\Plugins\freeform\wacs\freetype\freetype.wac

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2016-04-07 13:34 - 00000857 ____A C:\WINDOWS\system32\Drivers\etc\hosts


0.0.0.1	mssplus.mcafee.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1706370716-399708057-1175344942-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\tobias\Downloads\2000px-Naval_Ensign_of_Japan.svg.png
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "RtHDVBg_Dolby"
HKLM\...\StartupApproved\Run: => "SynTPEnh"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "RzWizard"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "AvgUi"
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-1706370716-399708057-1175344942-1002\...\StartupApproved\Run: => "Overwolf"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{6C7E55B9-9948-425A-B619-023D054EEAB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{9E3CDD54-28B8-4689-A9BA-6DC9502B2A47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{857BC63A-15A0-426F-9095-DCD67FA4FFB6}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{A96F3138-2E65-4356-A7D2-BA080DB1FB46}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{EF48ABBB-F232-4A07-B9F3-59A4180447E5}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{E5795902-32A2-4FD7-BD7F-35B51345C230}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [{89CCA554-7697-48DD-ACC2-3CDA642C7FE4}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [{2F2BB586-B3A5-498B-BF2D-47E62DD77979}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{40C3833C-D7D3-43A4-B35C-DDA95D848E70}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{75E40AB4-75EF-4A0E-9647-2CD8CBD28BCF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{FF6FC844-A121-4FC9-81A4-72A2E5341317}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{00018F32-60F0-462B-BFED-71E7369F1250}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{1353866F-D8FF-4DCA-81EB-845F94263AFD}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{8D6A1B1C-8D50-4BA1-B4FA-F86E01942877}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{084E652F-C832-41E7-8D8F-D1B2967841CB}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{76E53BEC-6614-462B-A710-E95B556ED696}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{614A87F7-883C-4CB3-9A6F-D808BC385E4C}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{33EEBA9A-01B2-427F-8B57-522F9BBF14CE}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{23E71310-20BC-4048-B693-49C76000F8E1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{244F525F-2953-4BB3-9EA0-C0B42A57D2F9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{8767DDBF-A8C1-41B0-9A48-9D96BD054F8F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{93F7FBAB-25FB-4A42-B306-5F88CCF340E4}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{5202906C-9BBB-45EC-BA8A-F5EBA0802D10}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{BE33D233-FC9F-4FBA-9096-6CB41E63F6C8}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{2C7F0FEC-D143-410C-93B4-5FCB650198F2}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{377A1B5D-0B77-412E-AB04-AB3348A3888F}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{744F62DF-D085-4D36-8BDE-45D5FFC6D962}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{7E93BEC9-35B9-49BD-8B1E-DE680E25FB1F}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{2A30FC89-F962-46D7-8FD8-39AF9FEE4423}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{D27A8239-D154-48F2-958C-768C80EB5FA9}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{DD177D7F-48E1-43A5-80AD-241D846E4E9A}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{28AE0232-EDBD-421A-AB27-98F97C69C784}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{EDF5EC41-00FF-4476-A631-54471E84180D}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{0436347C-3881-4A43-954A-5AD17E438E08}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{C3AFEE82-12C0-48EA-A966-2ADE77C1E28E}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{FA212664-78AA-46F1-945B-5EA07D847F8A}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{721310B9-00C8-49A0-9BE0-4F46E37A139A}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{FC9FEA97-8AA8-49E6-87B9-51D9BB9B0649}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{E0B9ABBB-D82B-4122-95E3-017BD14E6437}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{EB8905B6-1E06-4167-A0F6-1FABE8A70745}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\Sdd.exe
FirewallRules: [{B40AFEED-634D-493E-8E81-AECFA8D35DF4}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\Sdd.exe
FirewallRules: [{7DE7A8A9-23D2-4124-9B97-5C486CDDC840}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\virtualdrive.exe
FirewallRules: [{6203391C-623B-4CA0-A245-85711D170EC6}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\virtualdrive.exe
FirewallRules: [{7ECD59CD-2C65-48D1-83F2-1EC4D09D2739}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{4006CE2F-36D2-488E-A779-97F7A12BC030}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{6B7E21E1-8C48-425E-A567-FF5C2DDCF104}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3F31A012-0E0B-448C-A751-C3C6BAF0A87C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{F1950981-1FB5-430A-B4A2-3460EE76AA15}C:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [UDP Query User{2E7B15D6-B882-4F63-B382-780B2F962B0D}C:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [{9048DED6-7A3F-4382-BBD1-903E5A0C4A7E}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{157D5753-20C4-42A3-ADB2-4B7C28F3D04F}] => (Allow) C:\Program Files (x86)\Sony\PS4 Remote Play\RemotePlay.exe
FirewallRules: [{7885F43C-898A-4AF5-AE16-05F5D2855C6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Last Remnant\Binaries\TLR.exe
FirewallRules: [{8317ADB6-F900-498E-95CE-BD8DA18BF37D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Last Remnant\Binaries\TLR.exe
FirewallRules: [TCP Query User{D58DD05A-5463-4695-A3C3-0748D69856B0}C:\program files (x86)\spotify\spotify.exe] => (Allow) C:\program files (x86)\spotify\spotify.exe
FirewallRules: [UDP Query User{F6EB4DAD-3753-4AC1-9337-F8FB9651C6F0}C:\program files (x86)\spotify\spotify.exe] => (Allow) C:\program files (x86)\spotify\spotify.exe
FirewallRules: [{506B8896-E454-4CB2-BD26-EF65D2386EE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{24657EEA-B210-48D1-92C6-8E10A58E7B16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{D177B536-8FFD-4F98-BC47-59AAFB98E11B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\mirrors edge\Binaries\MirrorsEdge.exe
FirewallRules: [{70EE0FE5-5708-4C39-8040-E7BBA39528C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\mirrors edge\Binaries\MirrorsEdge.exe
FirewallRules: [{4DE49583-2693-4840-BD34-53A733BC2F5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{22764A86-0E16-43DA-BAAA-60B961C3B006}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{99CC7901-8970-47FD-9B43-6F9FB30DB8C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{D3F89115-5653-4F53-B551-09AE02C921F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{28FB0770-6B8C-4777-BA55-ED0872738706}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6A1C8596-57B0-49DD-998B-755C28C4CEEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{1FAA33E3-9FF4-41D3-B63B-4AA91DBA639B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{72269CAB-B4F6-41EC-A99F-46F9E66941AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4B5B845C-CB23-450D-9799-29550FCC6B83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{543E0293-9B07-4146-80F1-07EB7DA1F6D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{4D0839A5-4155-4036-98AF-EFD8CB63FA05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{F44EA5C3-068B-4CD8-96EE-19580169D21F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A7BB9DBD-A076-4C1A-AF7D-3EF8E8AD5481}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6E2D5E87-8B31-48F6-B13D-8EC0BC7C2732}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B00F35A4-3946-403F-85E2-1FE0D27C51D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{04FB7DA3-46E7-418B-A963-86BD015CBCF6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{439536B4-6F0C-40F4-9D4B-08D6E052C6AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{6DAB5E01-5108-48BC-B6FF-AC732D023C9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1D288001-EC44-468E-BFD0-8A78415865C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{95EAEF09-89FB-409E-B072-AF0722BC4DE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{02B293A0-325C-4E50-9073-442E556329B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{69E89CCF-AEA6-48A1-81B5-94BC7B4CFF95}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

22-11-2016 23:54:21 Geplanter Prüfpunkt
23-11-2016 10:47:47 JRT Pre-Junkware Removal

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/23/2016 10:48:09 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (11/23/2016 01:24:11 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: PCLOL)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816

Error: (11/23/2016 01:24:11 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: PCLOL)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816

Error: (11/23/2016 01:24:11 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: PCLOL)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816

Error: (11/23/2016 01:23:30 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: PCLOL)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816

Error: (11/23/2016 01:23:30 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: PCLOL)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816

Error: (11/23/2016 01:23:30 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: PCLOL)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816

Error: (11/22/2016 11:54:39 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (11/22/2016 09:49:06 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\steamwebhelper.exe

Error: (11/22/2016 05:12:47 PM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Fehler beim Aufzählen von Benutzersitzungen zum Generieren von Filterpools.

Details:
	(HRESULT : 0x80040210) (0x80040210)


Systemfehler:
=============
Error: (11/23/2016 10:48:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/23/2016 10:42:29 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/23/2016 10:42:29 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/23/2016 10:42:28 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (11/23/2016 10:27:26 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
Es wird bereits eine Instanz des Dienstes ausgeführt.

Error: (11/23/2016 10:27:08 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Content Protection HECI Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/23/2016 10:27:08 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/23/2016 10:26:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/23/2016 10:26:56 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/23/2016 10:26:56 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2016-11-22 22:37:05.671
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_9debaf626fb26761\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-20 17:12:34.770
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_33c9216502148e52\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-13 11:44:52.864
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_33c9216502148e52\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-11 11:58:23.702
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_33c9216502148e52\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-09 16:02:42.472
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Overwolf\0.99.11.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.

  Date: 2016-11-09 15:09:10.222
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Overwolf\0.99.11.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.

  Date: 2016-11-07 13:25:30.582
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Overwolf\0.99.11.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.

  Date: 2016-11-07 12:11:47.449
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_33c9216502148e52\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-11-07 09:48:18.844
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Overwolf\0.99.11.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.

  Date: 2016-11-07 09:47:07.051
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Overwolf\0.99.11.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 43%
Installierter physikalischer RAM: 8072.27 MB
Verfügbarer physikalischer RAM: 4597.39 MB
Summe virtueller Speicher: 9352.27 MB
Verfügbarer virtueller Speicher: 5785.39 MB

==================== Laufwerke ================================

Drive c: (sys) (Fixed) (Total:680.83 GB) (Free:468.5 GB) NTFS
Drive f: (dat) (Fixed) (Total:149.05 GB) (Free:104.81 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 149.1 GB) (Disk ID: 9550876D)
Partition 1: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 698.6 GB) (Disk ID: 8F8342F4)

Partition: GPT.

==================== Ende von Addition.txt ============================

cosinus · 23.11.2016, 13:00

Was läuft denn da von McAfee ist aber nirgend in den installierten Programmen zu sehen?
Bitte deinstallieren wenn möglich, und auch alles von AVG.

zatokabi · 23.11.2016, 13:04

tune up deinstalliert jetzt aber von mcafee wird mir nichts installiertes angezeigt

22.11.2016, 11:58	#7
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	internet seiten laden trotz voller inet geschwindigkeit nicht richtig Beim nächsten mal die Anleitungen richtig lesen und nicht nur überfliegen 1. MBAR wurde vor dem Scan nicht aktualisiert 2. der tdsskiller wurde falsch eingestellt Bei Tools nochmal richtig ausführen __________________ Logfiles bitte immer in CODE-Tags posten

23.11.2016, 11:25	#11
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	internet seiten laden trotz voller inet geschwindigkeit nicht richtig Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken __________________ Logfiles bitte immer in CODE-Tags posten

23.11.2016, 13:00	#14
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	internet seiten laden trotz voller inet geschwindigkeit nicht richtig Was läuft denn da von McAfee ist aber nirgend in den installierten Programmen zu sehen? Bitte deinstallieren wenn möglich, und auch alles von AVG. __________________ Logfiles bitte immer in CODE-Tags posten

internet seiten laden trotz voller inet geschwindigkeit nicht richtig

Plagegeister aller Art und deren Bekämpfung: internet seiten laden trotz voller inet geschwindigkeit nicht richtig