| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Pop-up "There is a recommended update for your PC"Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
13.01.2017, 21:53
| #1 |
 |  Pop-up "There is a recommended update for your PC" Guten Tag, ich habe heute zum ersten mal ein Pop-up bekommen, welches mir sagt, dass ich aufgrund von "Updateeinstellungen" für ein Upgrade ausgewählt wäre. Der Titel von dem ganzen sagt, dass es ein Update für meinen Computer gäbe. Es gibt kein Kreuz zum schließen und die einzige Option ist, auf OK zu klicken (was ich natürlich nicht mache). Mein Antivirusprogramm (Bitdefender AntiVirus Plus 2016) hat nach einem Systemscan nichts erkannt. Über den Task-Manager habe ich herausgefunden, dass das Pop-up von mshta.exe ausgeführt wird. Diese Datei habe ich ebenfalls gescannt und auch wurde nichts gefunden. Das Pop-up "geht die ganze Zeit in den Vordergrund", was natürlich die Benutzung von meinem PC sehr schwierig macht und ich bin gerade etwas hilflos... Ich hoffe, dass mir jemand helfen kann... |
|
13.01.2017, 22:10
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Pop-up "There is a recommended update for your PC"+++ WICHTIGER HINWEIS +++ Während der Analyse und Bereinigung nimmst du KEINERLEI Änderungen auf eigene Faust vor, d.h. du installierst oder deinstallierst keine Software ohne Absprache. Auch veränderst du keine Systemeinstellungen, solange wir deinen Fall bearbeiten. Änderungen, Installationen oder Deinstallationen machst du AUSSCHLIESSLICH nur auf Anweisung! Es wird erforderlich sein, deinen Virenscanner zu deaktivieren und in bestimmten Fällen auch zu deinstallieren, damit vernünftig bereinigt werden kann. Dein System ist daher erst wenn wir hier fertig sind wieder für den alltäglichen Gebrauch wie surfen oder mailen von mir freigegeben. Gelesen und verstanden? Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
13.01.2017, 22:41
| #3 |
| | Pop-up "There is a recommended update for your PC" FRST.txt
__________________FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2017
durchgeführt von Knight Rider (Administrator) auf DESKTOP-RK4M43L (13-01-2017 22:18:17)
Gestartet von C:\Users\Knight Rider\Downloads
Geladene Profile: Knight Rider (Verfügbare Profile: Knight Rider)
Platform: Windows 10 Home Version 1607 (X64) Sprache: German (Germany)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Robert McNeel & Associates) C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe
(Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
(Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(MSI) E:\Programme\Command Center\MSIControlService.exe
(MSI) E:\Programme\Command Center\DDR\MSIDDRService.exe
(Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe
() C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe
() C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSISvc32.exe
() C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSISvc64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) E:\Programme\iTunesHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Valve Corporation) E:\Steam\Steam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Dassault Systèmes SolidWorks Corp.) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
() C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe
() C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe
(RAPOO) C:\Program Files (x86)\Rapoo\RpWireless\RPConfig.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.101.213.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.101.213.0\OverwolfHelper64.exe
() C:\Program Files (x86)\NZXT\CAM\FPS\CAMFPS.exe
(Microsoft® Windows® Operating System) C:\Windows\System32\Taskmgr.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\seccenter.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.101.213.0\OverwolfTSHelper.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\odslv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft) C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8783616 2015-12-11] (Realtek Semiconductor)
HKLM\...\Run: [NahimicMSIUILauncher] => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [740320 2015-12-04] ()
HKLM\...\Run: [GoPro Tray App] => C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [1088944 2016-05-11] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => E:\Programme\iTunesHelper.exe [176440 2016-12-06] (Apple Inc.)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1027024 2015-09-09] (MSI)
HKLM-x32\...\Run: [CAM] => C:\Program Files (x86)\NZXT\CAM\CAMLauncher.exe [47216 2017-01-12] ()
HKLM-x32\...\Run: [OnScreen Control] => C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe [1785328 2015-12-14] (TODO: <Company name>)
HKLM-x32\...\Run: [LedStatus] => C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe [1709736 2013-01-05] ()
HKLM-x32\...\Run: [Launch] => C:\Program Files (x86)\Rapoo\RpWireless\Launch.exe [411664 2013-08-21] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1890664 2016-01-14] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [Command Center] => E:\Programme\Command Center\StartCommandCenter.exe [831584 2016-09-22] (MSI)
HKLM-x32\...\RunOnce: [Kocuh] => C:\WINDOWS\SysWoW64\wscript.exe /E:vbscript /B "C:\Users\MARVIN~1\AppData\Roaming\Kuranogokaf"
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [Steam] => E:\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation)
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1046064 2017-01-04] ()
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [VLC Updater] => C:\Program Files (x86)\VLC Updater\vlc-updater.exe [360776 2016-12-17] ()
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2016 Fast Start.lnk [2016-09-12]
ShortcutTarget: SOLIDWORKS 2016 Fast Start.lnk -> C:\Windows\Installer\{768F3B65-1695-47B7-9002-B11400CB111D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC)
GroupPolicy: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{70af2310-3f54-4b00-a522-51aef7773f6d}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsvideosft_16_51¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyE0C0C0CyC0AtDyBtDtC0AyBzytC0DtBtN0D0Tzu0StCzztCyBtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1BzytN1L1G1B1V1N2Y1L1Qzu2SyD0EtCtBtD0ByDyDtGyD0E0ByCtG0F0EtA0BtGtDyCtDtCtG0CtDtCzzyE0D0D0D0AyEyB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtAzytBtC0AzytCtG0E0FyB0FtGyEyDyByDtGzyyD0CtBtG0A0C0FzzzytCtC0AtDzyyBtB2QtN0A0LzuyE%26cr%3D1534985115%26a%3Dwbf_fsvideosft_16_51%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsvideosft_16_51¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyE0C0C0CyC0AtDyBtDtC0AyBzytC0DtBtN0D0Tzu0StCzztCyBtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1BzytN1L1G1B1V1N2Y1L1Qzu2SyD0EtCtBtD0ByDyDtGyD0E0ByCtG0F0EtA0BtGtDyCtDtCtG0CtDtCzzyE0D0D0D0AyEyB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtAzytBtC0AzytCtG0E0FyB0FtGyEyDyByDtGzyyD0CtBtG0A0C0FzzzytCtC0AtDzyyBtB2QtN0A0LzuyE%26cr%3D1534985115%26a%3Dwbf_fsvideosft_16_51%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsvideosft_16_51¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyE0C0C0CyC0AtDyBtDtC0AyBzytC0DtBtN0D0Tzu0StCzztCyBtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1BzytN1L1G1B1V1N2Y1L1Qzu2SyD0EtCtBtD0ByDyDtGyD0E0ByCtG0F0EtA0BtGtDyCtDtCtG0CtDtCzzyE0D0D0D0AyEyB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtAzytBtC0AzytCtG0E0FyB0FtGyEyDyByDtGzyyD0CtBtG0A0C0FzzzytCtC0AtDzyyBtB2QtN0A0LzuyE%26cr%3D1534985115%26a%3Dwbf_fsvideosft_16_51%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsvideosft_16_51¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyE0C0C0CyC0AtDyBtDtC0AyBzytC0DtBtN0D0Tzu0StCzztCyBtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1BzytN1L1G1B1V1N2Y1L1Qzu2SyD0EtCtBtD0ByDyDtGyD0E0ByCtG0F0EtA0BtGtDyCtDtCtG0CtDtCzzyE0D0D0D0AyEyB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtAzytBtC0AzytCtG0E0FyB0FtGyEyDyByDtGzyyD0CtBtG0A0C0FzzzytCtC0AtDzyyBtB2QtN0A0LzuyE%26cr%3D1534985115%26a%3Dwbf_fsvideosft_16_51%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsvideosft_16_51¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyE0C0C0CyC0AtDyBtDtC0AyBzytC0DtBtN0D0Tzu0StCzztCyBtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1BzytN1L1G1B1V1N2Y1L1Qzu2SyD0EtCtBtD0ByDyDtGyD0E0ByCtG0F0EtA0BtGtDyCtDtCtG0CtDtCzzyE0D0D0D0AyEyB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtAzytBtC0AzytCtG0E0FyB0FtGyEyDyByDtGzyyD0CtBtG0A0C0FzzzytCtC0AtDzyyBtB2QtN0A0LzuyE%26cr%3D1534985115%26a%3Dwbf_fsvideosft_16_51%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsvideosft_16_51¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyE0C0C0CyC0AtDyBtDtC0AyBzytC0DtBtN0D0Tzu0StCzztCyBtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1BzytN1L1G1B1V1N2Y1L1Qzu2SyD0EtCtBtD0ByDyDtGyD0E0ByCtG0F0EtA0BtGtDyCtDtCtG0CtDtCzzyE0D0D0D0AyEyB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtAzytBtC0AzytCtG0E0FyB0FtGyEyDyByDtGzyyD0CtBtG0A0C0FzzzytCtC0AtDzyyBtB2QtN0A0LzuyE%26cr%3D1534985115%26a%3Dwbf_fsvideosft_16_51%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-12-04] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-04] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-21] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-21] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-04] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-04] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-04] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-04] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext [2016-05-12] [ist nicht signiert]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-21] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-04] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems)
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxp://www.startfenster.de/suche/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> Startfenster
CHR DefaultSuggestURL: Default -> hxxp://www.startfenster.de/api/?q={searchTerms}&language={lang}
CHR Profile: C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default [2017-01-13]
CHR Extension: (Google Slides) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-28]
CHR Extension: (Google Docs) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-28]
CHR Extension: (Google Drive) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-28]
CHR Extension: (YouTube) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-28]
CHR Extension: (GeoGebra Math Apps) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnbaboaihhkjoaolfnfoablhllahjnee [2016-05-30]
CHR Extension: (Adblock Plus) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-27]
CHR Extension: (Google Search) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-05-28]
CHR Extension: (Google Sheets) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-28]
CHR Extension: (iCloud Bookmarks) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2016-05-29]
CHR Extension: (Google Docs Offline) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-28]
CHR Extension: (Night Time In New York City) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnimonidkipnhnpgkhgliocfnnpgkhek [2016-05-29]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-28]
CHR Extension: (Gmail) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-28]
CHR Extension: (Chrome Media Router) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-20]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [djhangopedggnlnicpbjklghlckmndge] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 acCAMService; C:\Program Files (x86)\NZXT\CAM\Service\CAMService.exe [27760 2017-01-03] ()
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-08-29] (Chip Digital GmbH) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3698888 2016-12-04] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3755976 2015-07-01] (devolo AG)
R2 ewserver; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe [179208 2016-02-10] ()
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-08-11] (Futuremark)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2016-05-11] ()
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2016-03-29] (Microsoft Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-10-16] (Intel Corporation)
R2 McNeelUpdate; c:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [66968 2016-05-23] (Robert McNeel & Associates)
S3 MSIClock_CC; E:\Programme\Command Center\ClockGen\MSIClockService.exe [2169440 2016-10-21] (MSI)
S3 MSICOMM_CC; E:\Programme\Command Center\MSICommService.exe [2204768 2016-09-29] (MSI)
S3 MSICPU_CC; E:\Programme\Command Center\CPU\MSICPUService.exe [4162656 2016-09-29] (MSI)
R2 MSICTL_CC; E:\Programme\Command Center\MSIControlService.exe [2015328 2016-10-06] (MSI)
R2 MSIDDR_CC; E:\Programme\Command Center\DDR\MSIDDRService.exe [2327648 2016-09-29] (MSI)
S3 MSISMB_CC; E:\Programme\Command Center\SMBus\MSISMBService.exe [2076768 2016-09-29] (MSI)
S3 MSISuperIO_CC; E:\Programme\Command Center\SuperIO\MSISuperIOService.exe [607160 2016-09-29] (MSI)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MSI)
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [51112 2016-06-17] (Microsoft)
R2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [278336 2011-09-19] (NVIDIA)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-11-24] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-11-17] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1317104 2017-01-04] (Overwolf LTD)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1100392 2016-10-28] (Bitdefender)
R2 RemoteSolverDispatcher; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [238848 2016-02-10] (Mentor Graphics Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2016-09-12] (SolidWorks) [Datei ist nicht signiert]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [137216 2016-03-28] (Microsoft Corporation) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe [156016 2016-11-24] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe [1695720 2016-11-24] (Bitdefender)
S3 VSStandardCollectorService140; E:\Programme\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56552 2016-03-22] (Microsoft Corporation)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [308088 2016-01-14] (Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [18232 2016-10-20] (Intel(R) Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AIDA64Driver; C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [45728 2016-10-24] ()
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1605376 2016-11-01] (BitDefender)
S3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [878072 2016-11-01] (BitDefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-28] (BitDefender LLC)
S4 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
R3 CMUSBDAC; C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys [3778592 2015-11-25] (C-MEDIA)
R3 cpuz139; C:\Users\Knight Rider\AppData\Local\Temp\cpuz139\cpuz139_x64.sys [43328 2017-01-11] (CPUID)
R3 cpuz141; C:\Users\Knight Rider\AppData\Local\Temp\cpuz141\cpuz141_x64.sys [46400 2017-01-12] (CPUID)
S3 ewusbnet; C:\WINDOWS\System32\drivers\ewusbnet.sys [132608 2009-06-29] (Huawei Technologies Co., Ltd.)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182944 2016-11-24] (BitDefender LLC)
R3 iaLPSS2_UART2; C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys [281896 2015-07-20] (Intel Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37064 2016-08-24] (Intel Corporation)
R3 ipadtst; C:\Program Files (x86)\MSI\Super Charger\ipadtst_64.sys [20464 2013-11-11] (Windows (R) Win 7 DDK provider)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2015-11-05] (Apple Inc.) [Datei ist nicht signiert]
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
S3 NTIOLib_ACTIVE_X; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NTIOLib_X64.sys [13776 2016-04-12] (MSI)
R3 NTIOLib_MSIDDR_CC; E:\Programme\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3696fe4b96482e60\nvlddmkm.sys [14182960 2016-11-25] (NVIDIA Corporation)
R3 nvoclk64; C:\WINDOWS\system32\DRIVERS\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corp.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-11-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-11-17] (NVIDIA Corporation)
R3 rpkmdrv; C:\WINDOWS\system32\drivers\rpkmdrv.sys [21248 2012-08-16] ()
S4 RsFx0310; C:\WINDOWS\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation)
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-06-28] (BitDefender S.R.L.)
S3 USBTINSP; C:\WINDOWS\System32\drivers\tinspusb.sys [142848 2010-03-29] (Texas Instruments)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 WinRing0_1_2_0; C:\Program Files (x86)\NZXT\CAM\CAM_V3.sys [14544 2017-01-12] (OpenLibSys.org)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-01-13 22:18 - 2017-01-13 22:18 - 00036248 _____ C:\Users\Knight Rider\Downloads\FRST.txt
2017-01-13 22:18 - 2017-01-13 22:18 - 00000000 ____D C:\FRST
2017-01-13 22:17 - 2017-01-13 22:17 - 02419200 _____ (Farbar) C:\Users\Knight Rider\Downloads\FRST64.exe
2017-01-12 19:36 - 2017-01-12 19:36 - 00001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CAM.lnk
2017-01-12 19:36 - 2017-01-12 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CAM
2017-01-12 19:28 - 2017-01-12 19:29 - 00262019 _____ C:\Users\Knight Rider\Desktop\3.jpeg
2017-01-12 19:27 - 2017-01-12 19:27 - 00274619 _____ C:\Users\Knight Rider\Desktop\WhatsApp Image 2017-01-11 at 09.57.43.jpeg
2017-01-12 19:27 - 2017-01-12 19:27 - 00262019 _____ C:\Users\Knight Rider\Desktop\2
2017-01-10 21:42 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-01-10 21:42 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-01-10 21:42 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-01-10 21:42 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-01-10 21:42 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-01-10 21:42 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-01-10 21:42 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-01-10 21:42 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-01-10 21:42 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-01-10 21:42 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-01-10 21:42 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-01-10 21:42 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-01-10 21:42 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-01-10 21:42 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-01-10 21:42 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-01-10 21:42 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-01-10 21:42 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-01-10 21:42 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-01-10 21:42 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2017-01-10 21:42 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2017-01-10 21:42 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2017-01-10 21:42 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-01-10 21:42 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-01-10 21:42 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-01-10 21:42 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-01-10 21:42 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-01-10 21:42 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-01-10 21:42 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-01-10 21:42 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-01-10 21:42 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-01-10 21:42 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-01-10 21:42 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-01-10 21:42 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-01-10 21:42 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-01-10 21:42 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-01-10 21:42 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-01-10 21:42 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-01-10 21:42 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-01-10 21:42 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-01-10 21:42 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-01-10 21:42 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-01-10 21:42 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-01-10 21:42 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-01-10 21:42 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-01-10 21:42 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-01-10 21:42 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-01-10 21:42 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-01-10 21:42 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-01-10 21:42 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-01-10 21:42 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-01-10 21:42 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-01-10 21:42 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-01-10 21:42 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-01-10 21:42 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-01-10 21:42 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-01-10 21:42 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-01-10 21:42 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-01-10 21:42 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-10 21:42 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-10 21:42 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-10 21:42 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-01-10 21:42 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2017-01-10 21:42 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-01-10 21:42 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-01-10 21:42 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-01-10 21:42 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-01-10 21:42 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-01-10 21:42 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-01-10 21:42 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-01-10 21:42 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-01-10 21:42 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-01-10 21:42 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-01-10 21:42 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2017-01-10 21:42 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-01-10 21:42 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-01-10 21:42 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-01-10 21:42 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-01-10 21:42 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-01-10 21:42 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-01-10 21:42 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-01-10 21:42 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-01-10 21:42 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-01-10 21:42 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-01-10 21:42 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-01-10 21:42 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-01-10 21:42 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-01-10 21:42 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-01-10 21:42 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-01-10 21:42 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-01-10 21:42 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-01-10 21:42 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-01-10 21:42 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-01-10 21:42 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-01-10 21:42 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-01-10 21:42 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-01-10 21:42 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-01-10 21:42 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-01-10 21:42 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-01-10 21:42 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-01-10 21:42 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-01-10 21:42 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-01-10 21:42 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-01-10 21:42 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-01-10 21:42 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-10 21:42 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-01-10 21:42 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-01-10 21:42 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-01-10 21:42 - 2016-12-14 05:42 - 00384000 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2017-01-10 21:42 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-01-10 21:42 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-01-10 21:42 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-10 21:42 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-01-10 21:42 - 2016-12-14 05:41 - 00362496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2017-01-10 21:42 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-01-10 21:42 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-01-10 21:42 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2017-01-10 21:42 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-01-10 21:42 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-01-10 21:42 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-10 21:42 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-01-10 21:42 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-01-10 21:42 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-01-10 21:42 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-01-10 21:42 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-01-10 21:42 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-01-10 21:42 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-10 21:42 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-01-10 21:42 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-01-10 21:42 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-01-10 21:42 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-01-10 21:42 - 2016-12-14 05:35 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2017-01-10 21:42 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-01-10 21:42 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-01-10 21:42 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-01-10 21:42 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-01-10 21:42 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-01-10 21:42 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-01-10 21:42 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-01-10 21:42 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-01-10 21:42 - 2016-12-14 05:25 - 02795520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2017-01-10 21:42 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-01-10 21:42 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-01-10 21:42 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-01-10 21:42 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-01-10 21:42 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-01-10 21:42 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-01-10 21:42 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-01-10 21:42 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-01-10 21:42 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-01-10 21:42 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-01-10 21:42 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-01-10 21:42 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-01-10 21:42 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-01-10 21:42 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-01-10 21:42 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-10 21:42 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-01-10 21:42 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-01-10 21:42 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-01-03 13:49 - 2017-01-03 13:49 - 00001494 _____ C:\Users\Public\Desktop\iTunes.lnk
2017-01-03 13:49 - 2017-01-03 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-01-03 13:49 - 2017-01-03 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2017-01-03 13:49 - 2017-01-03 13:49 - 00000000 ____D C:\Program Files\iPod
2017-01-02 21:46 - 2017-01-02 21:46 - 00224821 _____ C:\Users\Knight Rider\Desktop\Hyundai i20 Sport.html
2017-01-02 21:46 - 2017-01-02 21:46 - 00000000 ____D C:\Users\Knight Rider\Desktop\Hyundai i20 Sport_files
2016-12-31 00:49 - 2016-12-31 01:15 - 00785384 _____ C:\Users\Knight Rider\Desktop\handling.meta
2016-12-30 19:15 - 2016-12-30 19:15 - 00004189 _____ C:\Users\Knight Rider\Desktop\extratitleupdatedata.meta
2016-12-30 19:13 - 2016-12-30 23:55 - 00001872 _____ C:\Users\Knight Rider\Desktop\dlclist.xml
2016-12-30 01:02 - 2016-12-30 13:06 - 00059805 _____ C:\Users\Knight Rider\Desktop\gameconfig.xml
2016-12-29 22:52 - 2016-09-15 05:03 - 3146774492 _____ C:\Users\Knight Rider\Desktop\REDUX_INSTALLER.oiv
2016-12-29 22:44 - 2016-12-29 23:03 - 00001357 _____ C:\Users\Knight Rider\Desktop\OpenIV.lnk
2016-12-29 22:44 - 2016-12-29 22:44 - 00001359 _____ C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\OpenIV.lnk
2016-12-29 22:37 - 2016-12-29 22:44 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\New Technology Studio
2016-12-29 22:37 - 2016-12-29 22:37 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\New Technology Studio
2016-12-28 22:30 - 2016-12-28 22:30 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\speech
2016-12-23 00:13 - 2017-01-13 20:50 - 00000322 _____ C:\Users\Knight Rider\AppData\Roaming\WB.CFG
2016-12-23 00:12 - 2016-12-23 00:12 - 00000000 ____D C:\Users\Knight Rider\Desktop\OMA OPA FESTPLATTE
2016-12-22 22:09 - 2016-12-23 01:01 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\VidCoder
2016-12-22 22:09 - 2016-12-22 22:09 - 00000865 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VidCoder.lnk
2016-12-22 22:09 - 2016-12-22 22:09 - 00000000 ____D C:\Program Files\VidCoder
2016-12-22 21:25 - 2016-12-22 21:25 - 00093817 _____ C:\ProgramData\1482438322.bdinstall.bin
2016-12-22 21:23 - 2016-12-22 21:23 - 00000000 ____D C:\Users\Knight Rider\.fontconfig
2016-12-22 21:22 - 2016-12-22 21:22 - 00005054 _____ C:\ProgramData\mudtcpaz.vzs
2016-12-22 21:22 - 2016-12-22 21:22 - 00000016 _____ C:\ProgramData\mntemp
2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Movavi
2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\converter
2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\ProgramData\Movavi Video Converter 17
2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\ProgramData\Movavi
2016-12-22 18:54 - 2016-12-22 19:47 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\dvdcss
2016-12-22 15:15 - 2016-12-22 15:15 - 00093819 _____ C:\ProgramData\1482416137.bdinstall.bin
2016-12-22 15:13 - 2017-01-02 00:13 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\UpdateTask
2016-12-22 15:13 - 2016-12-30 12:58 - 00000328 _____ C:\WINDOWS\Tasks\{18B1376D-06ED-545E-2B12-4A0CF6A2E511}.job
2016-12-22 15:13 - 2016-12-22 15:13 - 00018411 _____ C:\Users\Knight Rider\AppData\Roaming\Kuranogokaf
2016-12-22 15:13 - 2016-12-22 15:13 - 00002868 _____ C:\WINDOWS\System32\Tasks\{18B1376D-06ED-545E-2B12-4A0CF6A2E511}
2016-12-22 15:12 - 2016-12-30 12:58 - 00000986 _____ C:\WINDOWS\Tasks\Yahoo! Powered dedef.job
2016-12-22 15:12 - 2016-12-22 15:13 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\{CF78F924-EBD0-959C-8648-B074A2204CEC}
2016-12-22 15:12 - 2016-12-22 15:12 - 00004080 _____ C:\WINDOWS\System32\Tasks\Yahoo! Powered dedef
2016-12-22 15:12 - 2016-12-22 15:12 - 00001650 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk
2016-12-22 15:12 - 2016-12-22 15:12 - 00000306 __RSH C:\ProgramData\ntuser.pol
2016-12-22 15:12 - 2016-12-22 15:12 - 00000000 ____D C:\ProgramData\{A63A6359-2C78-E99F-AABE-77DD30FCFC13}
2016-12-22 15:09 - 2016-12-23 00:05 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\vlc
2016-12-22 15:09 - 2016-12-22 15:09 - 00000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-12-22 15:09 - 2016-12-22 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-12-22 15:09 - 2016-12-22 15:09 - 00000000 ____D C:\Program Files\VideoLAN
2016-12-22 15:08 - 2016-12-22 15:08 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Mozilla
2016-12-22 15:08 - 2016-12-22 15:08 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VLC Updater
2016-12-22 15:08 - 2016-12-22 15:08 - 00000000 ____D C:\Program Files (x86)\VLC Updater
2016-12-21 20:28 - 2016-12-21 20:28 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2016-12-14 17:27 - 2016-12-09 11:42 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-12-14 17:27 - 2016-12-09 11:42 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-12-14 17:27 - 2016-12-09 11:34 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-12-14 17:27 - 2016-12-09 11:34 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-12-14 17:27 - 2016-12-09 11:33 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-12-14 17:27 - 2016-12-09 11:33 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-12-14 17:27 - 2016-12-09 11:30 - 00377184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-14 17:27 - 2016-12-09 11:29 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-14 17:27 - 2016-12-09 11:28 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-12-14 17:27 - 2016-12-09 11:27 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-12-14 17:27 - 2016-12-09 11:20 - 02677544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-12-14 17:27 - 2016-12-09 11:20 - 02189664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-12-14 17:27 - 2016-12-09 11:20 - 01738560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-14 17:27 - 2016-12-09 11:20 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-12-14 17:27 - 2016-12-09 11:20 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-12-14 17:27 - 2016-12-09 11:19 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-12-14 17:27 - 2016-12-09 11:19 - 00168424 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-14 17:27 - 2016-12-09 11:18 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-12-14 17:27 - 2016-12-09 11:18 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-12-14 17:27 - 2016-12-09 11:18 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-12-14 17:27 - 2016-12-09 11:18 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-12-14 17:27 - 2016-12-09 11:18 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-12-14 17:27 - 2016-12-09 11:18 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-12-14 17:27 - 2016-12-09 11:15 - 08168000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-14 17:27 - 2016-12-09 11:14 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-12-14 17:27 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-12-14 17:27 - 2016-12-09 11:10 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-12-14 17:27 - 2016-12-09 11:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-14 17:27 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-12-14 17:27 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-12-14 17:27 - 2016-12-09 11:01 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-12-14 17:27 - 2016-12-09 11:00 - 00106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2016-12-14 17:27 - 2016-12-09 10:59 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-12-14 17:27 - 2016-12-09 10:59 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-12-14 17:27 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-12-14 17:27 - 2016-12-09 10:56 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-12-14 17:27 - 2016-12-09 10:52 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-12-14 17:27 - 2016-12-09 10:52 - 01415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-12-14 17:27 - 2016-12-09 10:51 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-12-14 17:27 - 2016-12-09 10:45 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARP12Debug.dll
2016-12-14 17:27 - 2016-12-09 10:45 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-12-14 17:27 - 2016-12-09 10:42 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-12-14 17:27 - 2016-12-09 10:42 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2016-12-14 17:27 - 2016-12-09 10:41 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-12-14 17:27 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2016-12-14 17:27 - 2016-12-09 10:40 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARP12Debug.dll
2016-12-14 17:27 - 2016-12-09 10:37 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-14 17:27 - 2016-12-09 10:37 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2016-12-14 17:27 - 2016-12-09 10:36 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-14 17:27 - 2016-12-09 10:36 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-14 17:27 - 2016-12-09 10:34 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-12-14 17:27 - 2016-12-09 10:33 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-14 17:27 - 2016-12-09 10:33 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-12-14 17:27 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-12-14 17:27 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-12-14 17:27 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-12-14 17:27 - 2016-12-09 10:28 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-12-14 17:27 - 2016-12-09 10:28 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-12-14 17:27 - 2016-12-09 10:27 - 13084160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-14 17:27 - 2016-12-09 10:27 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-12-14 17:27 - 2016-12-09 10:27 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-12-14 17:27 - 2016-12-09 10:25 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-12-14 17:27 - 2016-12-09 10:24 - 06583296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12warp.dll
2016-12-14 17:27 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-12-14 17:27 - 2016-12-09 10:22 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-12-14 17:27 - 2016-12-09 10:21 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-14 17:27 - 2016-12-09 10:21 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-12-14 17:27 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-12-14 17:27 - 2016-12-09 10:20 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-12-14 17:27 - 2016-12-09 10:20 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-12-14 17:27 - 2016-12-09 10:20 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-14 17:27 - 2016-12-09 10:19 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-12-14 17:27 - 2016-12-09 10:19 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-14 17:27 - 2016-12-09 10:19 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-14 17:27 - 2016-12-09 10:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-14 17:27 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-12-14 17:27 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-12-14 17:27 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-12-14 17:27 - 2016-12-09 10:17 - 04978176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12warp.dll
2016-12-14 17:27 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-12-14 17:27 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-12-14 17:27 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-12-14 17:27 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-12-14 17:27 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2016-12-14 17:27 - 2016-12-09 09:54 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-12-14 17:27 - 2016-11-02 11:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-12-14 17:27 - 2016-11-02 11:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-14 17:27 - 2016-09-15 17:36 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-12-14 09:11 - 2017-01-12 19:36 - 00002049 _____ C:\Users\Knight Rider\Desktop\CAM.lnk
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-01-13 22:13 - 2016-09-23 14:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-13 22:04 - 2016-05-28 22:51 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\TS3Client
2017-01-13 21:39 - 2016-05-28 22:38 - 00000000 ____D C:\Program Files\Bitdefender Agent
2017-01-13 21:15 - 2016-09-23 14:37 - 00000000 ____D C:\Users\Knight Rider
2017-01-13 21:14 - 2016-07-09 13:13 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\CrashDumps
2017-01-13 20:59 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-13 20:59 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-13 20:57 - 2016-10-07 19:35 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2017-01-13 20:50 - 2016-09-23 14:50 - 00003262 _____ C:\WINDOWS\System32\Tasks\CAM
2017-01-13 20:50 - 2016-09-23 14:36 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-13 20:50 - 2016-07-19 22:33 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Adobe
2017-01-13 20:50 - 2016-06-01 20:10 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Overwolf
2017-01-13 20:50 - 2016-05-29 14:55 - 00000000 ___RD C:\Users\Knight Rider\iCloudDrive
2017-01-12 20:55 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\WhatsApp
2017-01-12 20:12 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2017-01-12 19:23 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2017-01-12 19:23 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\WhatsApp
2017-01-12 19:10 - 2016-06-01 20:11 - 00000000 ____D C:\Program Files (x86)\Overwolf
2017-01-12 19:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-01-12 19:09 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-11 19:23 - 2016-09-23 14:37 - 03508152 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-11 19:23 - 2016-07-16 23:51 - 01505080 _____ C:\WINDOWS\system32\perfh007.dat
2017-01-11 19:23 - 2016-07-16 23:51 - 00401732 _____ C:\WINDOWS\system32\perfc007.dat
2017-01-11 19:22 - 2016-07-16 07:04 - 00065536 _____ C:\WINDOWS\system32\config\ELAM
2017-01-11 19:17 - 2016-09-23 14:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-11 19:17 - 2016-09-23 14:36 - 05338424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-01-11 00:07 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-01-11 00:07 - 2016-05-28 22:47 - 00030727 _____ C:\bdlog.txt
2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-01-10 22:02 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-10 22:01 - 2016-05-28 23:31 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-10 21:58 - 2016-05-28 23:31 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-10 21:51 - 2016-12-06 21:44 - 00003306 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-01-10 21:51 - 2016-05-29 03:31 - 00002436 _____ C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-08 22:04 - 2016-09-12 19:45 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\SolidWorks
2017-01-08 21:59 - 2016-09-12 18:11 - 00000000 ____D C:\SOLIDWORKS Data
2017-01-06 22:39 - 2016-05-30 18:05 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\ElevatedDiagnostics
2017-01-03 13:49 - 2016-05-29 13:24 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-01-01 23:05 - 2016-09-12 19:51 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\TempSWBackupDirectory
2017-01-01 16:27 - 2016-06-27 19:36 - 00000002 _____ C:\END
2016-12-30 22:12 - 2016-06-12 13:23 - 00000500 _____ C:\WINDOWS\SysWOW64\Drivers\ibyfyu_482.set
2016-12-30 22:12 - 2016-06-12 13:23 - 00000500 _____ C:\WINDOWS\SysWOW64\Drivers\ddpnqch216.dat
2016-12-30 22:12 - 2016-06-12 13:23 - 00000500 _____ C:\WINDOWS\d_jdmjol189.ini
2016-12-30 20:41 - 2016-05-29 03:29 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Packages
2016-12-30 12:59 - 2016-06-01 20:11 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2016-12-30 12:58 - 2016-09-23 14:49 - 00005996 _____ C:\WINDOWS\PFRO.log
2016-12-28 22:30 - 2016-09-23 14:37 - 00000000 ___SD C:\Users\Knight Rider\AppData\Roaming\Microsoft
2016-12-23 00:13 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-12-23 00:13 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-22 21:26 - 2016-07-16 07:04 - 00000000 ____D C:\Program Files (x86)
2016-12-22 21:25 - 2016-07-16 12:47 - 00000000 ___HD C:\ProgramData
2016-12-22 15:17 - 2016-10-19 21:22 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-12-22 15:17 - 2016-09-23 15:29 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-12-22 15:17 - 2016-05-29 03:29 - 00000000 ___RD C:\Users\Knight Rider\Favorites
2016-12-22 15:13 - 2016-08-08 22:38 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\DVDVideoSoft
2016-12-22 15:13 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Tasks
2016-12-22 15:12 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-12-22 15:12 - 2015-10-30 08:24 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-12-22 14:05 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-12-22 14:04 - 2016-05-29 19:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-12-21 20:28 - 2016-10-23 11:08 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-12-21 20:28 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Fonts
2016-12-20 21:34 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\assembly
2016-12-17 23:13 - 2016-05-28 21:52 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-17 23:07 - 2016-09-23 14:50 - 00003628 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-17 23:07 - 2016-09-23 14:50 - 00003504 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-15 22:24 - 2016-11-09 18:52 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Diagnostics
2016-12-14 22:48 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-US
2016-12-14 22:48 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\de-DE
2016-12-14 22:48 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\en-US
2016-12-14 22:48 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\de-DE
2016-12-14 22:48 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Boot
2016-12-14 22:48 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppPatch
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-07-27 22:56 - 2016-11-03 22:11 - 0000033 _____ () C:\Users\Knight Rider\AppData\Roaming\AdobeWLCMCache.dat
2016-12-22 15:13 - 2016-12-22 15:13 - 0018411 _____ () C:\Users\Knight Rider\AppData\Roaming\Kuranogokaf
2016-12-23 00:13 - 2017-01-13 20:50 - 0000322 _____ () C:\Users\Knight Rider\AppData\Roaming\WB.CFG
2016-05-29 12:24 - 2016-11-29 19:58 - 2612224 _____ () C:\Users\Knight Rider\AppData\Local\file__0.localstorage
2016-07-24 22:53 - 2016-07-24 22:53 - 0007597 _____ () C:\Users\Knight Rider\AppData\Local\Resmon.ResmonCfg
2016-05-28 22:47 - 2016-05-28 22:47 - 0448016 _____ () C:\ProgramData\1464471858.bdinstall.bin
2016-05-29 19:14 - 2016-05-29 19:14 - 0025480 _____ () C:\ProgramData\1464545642.bdinstall.bin
2016-06-14 14:37 - 2016-06-14 14:37 - 0026789 _____ () C:\ProgramData\1465911435.bdinstall.bin
2016-12-22 15:15 - 2016-12-22 15:15 - 0093819 _____ () C:\ProgramData\1482416137.bdinstall.bin
2016-12-22 21:25 - 2016-12-22 21:25 - 0093817 _____ () C:\ProgramData\1482438322.bdinstall.bin
2016-09-20 16:53 - 2016-09-20 16:53 - 0026851 _____ () C:\ProgramData\agent.1474386831.bdinstall.bin
2016-11-01 12:59 - 2016-11-01 12:59 - 0028772 _____ () C:\ProgramData\agent.1478001575.bdinstall.bin
2016-05-29 21:28 - 2016-05-29 21:28 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-09-23 14:36 - 2016-09-23 14:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-22 21:22 - 2016-12-22 21:22 - 0000016 _____ () C:\ProgramData\mntemp
2016-12-22 21:22 - 2016-12-22 21:22 - 0005054 _____ () C:\ProgramData\mudtcpaz.vzs
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Windows\Tasks\{18B1376D-06ED-545E-2B12-4A0CF6A2E511}.job
Einige Dateien in TEMP:
====================
C:\Users\Knight Rider\AppData\Local\Temp\Command Center.exe
C:\Users\Knight Rider\AppData\Local\Temp\jansi-64-8419322462143325029.dll
C:\Users\Knight Rider\AppData\Local\Temp\jna5729792694410647721.dll
C:\Users\Knight Rider\AppData\Local\Temp\jre-8u111-windows-au.exe
C:\Users\Knight Rider\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Knight Rider\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Knight Rider\AppData\Local\Temp\nvStInst.exe
C:\Users\Knight Rider\AppData\Local\Temp\ovi-uninstall.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-01-05 18:57
==================== Ende von FRST.txt ============================
|
|
13.01.2017, 22:42
| #4 |
| | Pop-up "There is a recommended update for your PC" Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-01-2017
durchgeführt von Knight Rider (13-01-2017 22:18:39)
Gestartet von C:\Users\Knight Rider\Downloads
Windows 10 Home Version 1607 (X64) (2016-09-23 13:51:31)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2325661282-3962446805-3529202158-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2325661282-3962446805-3529202158-503 - Limited - Disabled)
Gast (S-1-5-21-2325661282-3962446805-3529202158-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2325661282-3962446805-3529202158-1003 - Limited - Enabled)
Knight Rider (S-1-5-21-2325661282-3962446805-3529202158-1001 - Administrator - Enabled) => C:\Users\Knight Rider
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Virenschutz (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
3DMark (HKLM-x32\...\{88c385a4-b4e7-4028-9754-a5007023d630}) (Version: 2.0.2530.0 - Futuremark)
3DMark (Version: 2.0.2530.0 - Futuremark) Hidden
3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark)
3DMark 11 (Version: 1.0.132.0 - Futuremark) Hidden
3DMark Demo (HKLM\...\Steam App 231350) (Version: - Futuremark)
Active Directory Authentication Library für SQL Server (Version: 13.0.1100.286 - Microsoft Corporation) Hidden
Active Directory Authentication Library für SQL Server (x86) (x32 Version: 13.0.1100.286 - Microsoft Corporation) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.272 - Adobe Systems Incorporated)
Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Adobe Illustrator CC 2015.3 (HKLM-x32\...\ILST_20_0_0) (Version: 20.0.0 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015.3 (HKLM-x32\...\AME_10_3_0) (Version: 10.3.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015.3 (HKLM-x32\...\PPRO_10_3_0) (Version: 10.3.0 - Adobe Systems Incorporated)
AIDA64 Extreme v5.80 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.80 - FinalWire Ltd.)
Ansel (Version: 376.09 - NVIDIA Corporation) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{981F324E-98F4-4784-B76F-04E92039F3F6}) (Version: 5.2.60328.3 - Microsoft Corporation)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.28.1 - Asmedia Technology)
AudioFXSetup (Version: 1.2.1201 - Nahimic) Hidden
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.51210.80 - Microsoft Corporation) Hidden
Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.51210.80 - Microsoft Corporation) Hidden
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.26.1436 - Bitdefender)
Bitdefender Antivirus Plus 2016 (HKLM\...\Bitdefender) (Version: 20.0.28.1478 - Bitdefender)
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Windows Phone 8.0 (x32 Version: 3.0.30924.0 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Build Tools - amd64 (Version: 12.0.31010 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.31010 - Microsoft Corporation) Hidden
Build Tools for Windows 10 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden
Build Tools for Windows 10 (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.31010 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.31010 - Microsoft Corporation) Hidden
CAM (HKLM-x32\...\{2C41679C-9D89-4580-BEB0-45DFCEA51288}) (Version: 3.2.37 - NZXT)
CheckDevicesConfigurator (Version: 1.2.1201 - Nahimic) Hidden
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
Clang with Microsoft CodeGen (x32 Version: 14.0.25317 - Microsoft Corporation) Hidden
Clang with Microsoft CodeGen for Microsoft Visual Studio 2015 (HKLM-x32\...\{8669ea54-1978-465e-a789-a48935c24a95}) (Version: 14.0.25317.0 - Microsoft Corporation)
CodedUITest81 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
CodedUITestUAP (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM\...\Steam App 240) (Version: - Valve)
CPUID CPU-Z MSI 1.77 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.77 - CPUID, Inc.)
Devenv-Ressourcen für Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.1.0 - devolo AG)
doPDF (Version: 8.6.942 - Softland) Hidden
doPDF 8 (HKLM-x32\...\{413fb852-4e7d-4e52-bcaa-6270ff9a9347}) (Version: 8.6.942 - Softland)
Dota 2 (HKLM\...\Steam App 570) (Version: - Valve)
Dotfuscator and Analytics Community Edition 5.19.1 (x32 Version: 5.19.1.3091 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition Language Pack 5.19.1 de-DE (x32 Version: 5.19.1.3091 - PreEmptive Solutions) Hidden
Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
Erforderliche Komponenten für SSDT (HKLM-x32\...\{2466E484-9D86-416B-9C88-AA533F15AF1C}) (Version: 12.0.2000.8 - Microsoft Corporation)
Erforderliche Komponenten für SSDT RC0 (HKLM-x32\...\{837FF5F6-F0CB-4C80-B003-65B14F1490FE}) (Version: 13.0.1100.286 - Microsoft Corporation)
EVGA PrecisionX 16 (HKLM\...\Steam App 268850) (Version: - EVGA)
Far Cry 3 Blood Dragon (HKLM-x32\...\Uplay Install 205) (Version: - Ubisoft)
Farming Simulator 15 (HKLM\...\Steam App 313160) (Version: - Giants Software)
FluidRay RT Demo (64 Bit) (HKLM-x32\...\FluidRay RT Demo (64 Bit)) (Version: 1.2.4 - Fluid Interactive)
FluidSIM 5 Home Use (HKLM-x32\...\{1DE939D0-B5BB-48AC-A820-A2D353AE6186}) (Version: 5.2.2.1 - Festo Didactic SE)
Futuremark SystemInfo (HKLM-x32\...\{E540B871-3230-4C5B-AAD5-A30F64398275}) (Version: 4.48.599.0 - Futuremark)
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
Gemeinsam genutzte Microsoft Azure-Komponenten für Visual Studio 2015 Sprachpaket (DEU) - v1.7 (x32 Version: 1.7.40113.5 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GoPro (Version: 0.1.2733 - GoPro, Inc.) Hidden
GoPro for Desktop (HKLM-x32\...\{88734dc7-c200-4ad3-b29f-bb5e436cb30f}) (Version: 1.4.0.2733 - GoPro, Inc.)
GoPro Studio (x32 Version: 5.9.2733 - GoPro, Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
HeavyLoad V3.4 (64 bit) (HKLM\...\HeavyLoad_is1) (Version: 3.4 - JAM Software)
HP ENVY 5530 series - Grundlegende Software für das Gerät (HKLM\...\{08CB8BF7-0CCE-4FC2-A475-A985EB11B159}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
HP ENVY 5530 series Hilfe (HKLM-x32\...\{272E06A0-7B74-481F-BD50-C632D9CA81A3}) (Version: 30.0.0 - Hewlett Packard)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
iCloud (HKLM\...\{4BB313CE-D3D1-424C-8823-15CF85B00B05}) (Version: 6.1.0.30 - Apple Inc.)
IDE Tools for Windows 10 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden
IDE Tools for Windows 10 (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden
IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - )
Intel Extreme Tuning Utility (HKLM-x32\...\{fde8aa07-3912-4bdf-ad35-ff1231bfd00d}) (Version: 6.2.0.17 - Intel Corporation)
Intel Extreme Tuning Utility (x32 Version: 6.2.0.17 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1173 - Intel Corporation)
Intel(R) Network Connections 20.4.307.0 (HKLM\...\PROSetDX) (Version: 20.4.307.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1519.7 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Intellisense Lang Pack Mobile Extension SDK 10.0.10586.0 (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java SE Development Kit 7 Update 55 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0170550}) (Version: 1.7.0.550 - Oracle)
Kits Configuration Installer (x32 Version: 10.0.26624 - Microsoft) Hidden
LauncherSetup (Version: 1.2.1201 - Nahimic) Hidden
LocalESPC (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
LocalESPCui for de-de (x32 Version: 8.59.29989 - Microsoft) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{422D3F30-7446-46C9-9FFE-F4F1645A3A41}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Video deluxe 2016 Premium (HKLM\...\MX.{36DD63B6-B6C0-4B56-AA23-22A652A77EC1}) (Version: 15.0.0.62 - MAGIX Software GmbH)
MAGIX Video deluxe 2016 Premium (Version: 15.0.0.62 - MAGIX Software GmbH) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (Deutsch) (HKLM-x32\...\{EE8BD24B-75E1-4BBF-86B9-91FE16ADE71C}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (Deutsch) (HKLM-x32\...\{529EFF09-750D-48B9-A47A-34A3B6248C3F}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.62615.0 (HKLM-x32\...\{33D89314-361A-4495-A1E1-0ACBCE08F78D}) (Version: 10.0.62615.0 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25123 - Microsoft Corporation)
Microsoft Help Viewer 2.2 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.2 Sprachpaket - DEU) (Version: 2.2.25123 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BF5ABBDB-D3AA-4BCB-8D10-FCD4A4BB7F93}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.7571.2075 - Microsoft Corporation)
Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.7571.2075 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK - DEU (HKLM-x32\...\{F351AA2C-723C-4CFE-A7CB-8E43AB164F7F}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C7E2483C-10A4-41E3-A2F6-240186FE3E41}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft SQL Server 2016 LocalDB RC0 (HKLM\...\{BDEC3091-D84B-4F70-B1AB-6487354160F4}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft SQL Server 2016 Management Objects RC0 (x64) (HKLM\...\{8C76566F-6B51-43FD-A99E-AAA2E9A96918}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft SQL Server 2016 T-SQL ScriptDom RC0 (HKLM\...\{F5E316A6-F894-4DCF-9088-F07E06A1ABFA}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft SQL Server 2016 T-SQL-Sprachdienst RC0 (HKLM-x32\...\{F5AF6F7A-E0DC-480C-94E3-B5596C9A239F}) (Version: 13.0.12000.52 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (14.0.60311.1) (HKLM-x32\...\{FE4AF448-6FF2-4996-889F-8F07BA88DB59}) (Version: 14.0.60311.1 - Microsoft Corporation)
Microsoft SQL Server*2014 Express LocalDB (HKLM\...\{CA191120-4CB1-4E3D-89B8-79FDB9017A2E}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server*2014 Management Objects (HKLM-x32\...\{4F4CB3E2-9D2F-465A-854B-8276B02F4E7D}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server*2014 Management Objects (x64) (HKLM\...\{03CB711D-679E-46ED-851B-C568418CF914}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server*2014 T-SQL Language Service (HKLM-x32\...\{06BE8B71-46C6-434B-869E-85C58EF3120A}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server*2016 Management Objects RC0 (HKLM-x32\...\{029A7000-E652-4D44-88C2-483C9FD345A7}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio Community 2015 mit Update 2 (HKLM-x32\...\{f2892dc5-7ac2-4ae4-a296-b5b159f61255}) (Version: 14.0.25123.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Apache Cordova (HKLM-x32\...\{dc279ca1-cef6-4b84-acaa-2e68e26f2b9e}) (Version: 14.0.60428.1 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server*2016 RC0 (HKLM\...\{71F2875A-58DC-432F-B959-67B6D928E08F}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server*2016 RC0 (HKLM-x32\...\{D2C7A7B6-719A-4F6A-881A-555B999F82AC}) (Version: 13.0.1100.286 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mit C# erstellte geräteübergreifende Hybrid-Apps - Vorlagen - DEU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 2.0.0.41 - MSI)
MSI Kombustor 3.5.1 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.02 - MSI)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
Nahimic for MSI (HKLM-x32\...\{0c311339-9de4-4dd7-b21d-3dcfa3a2946f}) (Version: 1.2.12 - Nahimic)
NahimicSettingsConfigurator (Version: 1.2.1201 - Nahimic) Hidden
Node.js (HKLM-x32\...\{69735668-F8BC-4E9A-839A-4006FDFDD5AC}) (Version: 0.12.2 - Joyent, Inc. and other Node contributors)
novaPDF 8 add-in for Microsoft Office (x64) (HKLM\...\{A53F3DB0-ECBA-4CA0-A4AC-518FA7347A02}) (Version: 8.6.942 - Softland)
novaPDF 8 add-in for Microsoft Office (x86) (HKLM-x32\...\{A0B71772-5AC4-47D5-A175-99238C057B37}) (Version: 8.6.942 - Softland)
novaPDF 8 Printer Driver (HKLM\...\{1A9E9E77-B29B-47C6-ADEB-9E7D6F7A08CE}) (Version: 8.6.942 - Softland)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 376.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.09 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Graphics Driver 376.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.09 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Performance (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 6.5 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA System Monitor (HKLM-x32\...\InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}) (Version: 6.5 - NVIDIA Corporation)
NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7571.2075 - Microsoft Corporation) Hidden
OnScreen Control (HKLM-x32\...\{E5C1B339-0E4E-49A5-859E-5E1DE1938706}) (Version: 1.33 - LG Electronics Inc)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenIV (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\OpenIV) (Version: 2.8.703 - .black/OpenIV Team)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.101.213.0 - Overwolf Ltd.)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 RC für Windows Store-Apps (Deutsch) (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM-x32\...\{3F514FDC-F0F2-3B99-86D6-F7B3A2679B39}) (Version: 4.5.51209 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6 (Deutsch) (HKLM-x32\...\{FACF2669-E25A-428A-9167-5EEDE741F3B9}) (Version: 4.6.00127 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM-x32\...\{4860C1E5-CE58-4D32-89DE-37951333B4C9}) (Version: 4.6.01055 - Microsoft Corporation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
Portal 2 (HKLM\...\Steam App 620) (Version: - Valve)
PreEmptive Analytics Client German Language Pack (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
ProductDaemonSetup (Version: 1.2.1201 - Nahimic) Hidden
Project and Item Templates for Visual Studio Express 2015 for Windows 10 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden
Project and Item Templates for Visual Studio Professionald 2015 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden
Projekt- und Elementvorlagen für Visual Studio Community 2015 – DEU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Python Tools 2.2.3 for Visual Studio 2015 (HKLM-x32\...\{FDCEC41C-35DA-421C-A520-53D185BC43FA}) (Version: 2.2.40315.00 - Microsoft Corporation)
Rapoo -Tastatur- und Maustreiber v1.6 (HKLM-x32\...\{2E569492-CB19-4510-AB49-1C6A36C6F525}_is1) (Version: - Rapoo Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.)
Rhinoceros 5 (64-bit) (HKLM\...\{346FB873-336D-400B-9834-82121F8F93DF}) (Version: 5.13.60523.20140 - Robert McNeel & Associates)
Rhinoceros 5 (HKLM-x32\...\{7C1981A8-1B77-401B-8D1B-59BF1BBE0CB8}) (Version: 5.13.60523.20140 - Robert McNeel & Associates)
Rhinoceros 5 Help Media (HKLM-x32\...\{629FC074-5532-45F9-81F1-24060D0AB998}) (Version: 5.6.31022.16390 - Robert McNeel & Associates)
Rhinoceros 5 Language Pack Installer (de-DE) (HKLM-x32\...\{1E827500-6DC9-47C1-8E18-E83664667729}) (Version: 5.6.31022.16390 - Robert McNeel & Associates)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.0 - Rockstar Games)
RollerCoaster Tycoon 3: Platinum! (HKLM\...\Steam App 2700) (Version: - Frontier)
Roslyn Language Services - x86 (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.25132 - Microsoft Corporation) Hidden
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
SNOW (HKLM\...\Steam App 244930) (Version: - Poppermost Productions)
SOLIDWORKS 2016 x64 Edition SP02 (HKLM-x32\...\SolidWorks Installation Manager 20160-40200-1100-100) (Version: 24.2.0.50 - SolidWorks Corporation)
SOLIDWORKS 2016 x64 Edition SP02 (Version: 24.120.50 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Composer Player 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2016 x64 Edition SP02 (Version: 16.2.0030 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Electrical 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Flow Simulation 2016 SP02 x64 Edition (Version: 24.20.51 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Plastics 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden
SQL Server 2014 Common Files (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteamVR Performance Test (HKLM\...\Steam App 323910) (Version: - Valve)
Steep Open Beta (HKLM\...\Steam App 550040) (Version: - Ubisoft Annecy)
Team Explorer for Microsoft Visual Studio 2015 Update 2 (x32 Version: 14.95.25118 - Microsoft) Hidden
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
Terraria (HKLM\...\Steam App 105600) (Version: - Re-Logic)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft)
TI-Nspire™ CX Student Software (HKLM-x32\...\{603D81E7-2DC0-45A7-96BD-3B7B6D5AFBA8}) (Version: 4.3.0.702 - Texas Instruments Inc.)
TypeScript Power Tool (x32 Version: 1.8.9.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.8.31.0 - Microsoft Corporation) Hidden
UIInstallUpgrade (Version: 1.2.1201 - Nahimic) Hidden
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.) <==== ACHTUNG
Universal CRT Extension SDK (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
Universal CRT Redistributable (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (Version: 10.1.10586.212 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 22.2 - Ubisoft)
VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VidCoder 1.5.34 (x64) (HKLM\...\VidCoder-x64_is1) (Version: 1.5.34 - RandomEngy)
Visual C++ für Mobile-Entwicklung (Android-Unterstützung) (HKLM-x32\...\{5adea0f4-9265-4e0c-9a83-2cd4f11b9dbe}) (Version: 14.0.25116.0 - Microsoft Corporation)
Visual C++ für Mobile-Entwicklung (iOS-Unterstützung) (HKLM-x32\...\{2572cf90-87f2-4a62-b566-0a3c79c873d9}) (Version: 14.0.25116.0 - Microsoft Corporation)
Visual Studio 2015 Update 2 (KB3022398) (HKLM-x32\...\{78c1b501-a6eb-4f29-88c5-84189564827e}) (Version: 14.0.25123 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VLC Updater (HKLM-x32\...\VLC Updater) (Version: 1.1 - VLC Updater)
VS Update core components (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
vs_update2notification (x32 Version: 14.0.25132 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WCF Data Services 5.6.4 DEU Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 DEU Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
WD Drive Utilities (HKLM-x32\...\{eab1fb93-61fb-48de-b815-b4e9b68d2ef1}) (Version: 1.3.2.2 - Western Digital Technologies, Inc.)
WD Drive Utilities (x32 Version: 1.3.2.2 - Western Digital Technologies, Inc.) Hidden
WD My Cloud (HKLM\...\{4B86F896-11DC-4711-BB60-81104832FA44}) (Version: 1.0.7.17 - Western Digital Technologies, Inc.)
WhatsApp (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\WhatsApp) (Version: 0.2.2732 - WhatsApp)
WinAppDeploy (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
Windows Phone 8.1 Emulators - ENU (HKLM-x32\...\{166a69f6-6512-47ea-a342-17d954fc059a}) (Version: 12.0.31010.0 - Microsoft Corporation)
Windows SDK AddOn (HKLM-x32\...\{75C39BA6-1D02-4BEA-844F-0EA6C4B7FA1B}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.10586.212 (HKLM-x32\...\{43d9f43d-c90b-4fdf-9dfe-ecf9990bfa2a}) (Version: 10.1.10586.212 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.26624 (HKLM-x32\...\{e7a0c8b6-b0e9-41e2-8a0a-a6784f88d1d4}) (Version: 10.0.26624 - Microsoft Corporation)
WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
WinRT Intellisense Xbox Live Extension SDK - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
WinRT Intellisense Xbox Live Extension SDK - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
Yahoo! Powered (HKLM-x32\...\{7BED932D-2B6D-42AD-9AED-322D4A6DE1AD}) (Version: - )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-B91C3A30094C}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0004E1A7-C02A-4ADC-9FA1-9D4227DFA0A2} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => E:\Programme\Common7\IDE\VSIXAutoUpdate.exe [2016-05-15] (Microsoft Corporation)
Task: {049E3741-6DDE-4070-9A14-D70A8B5F523A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28] (Google Inc.)
Task: {24D6F860-DCFA-4B7A-BD04-9482074512BD} - System32\Tasks\Toolbox.exe_{CC190389-354D-41F9-8C9A-177035D621B0} => C:\Program Files\HP\HP ENVY 5530 series\Bin\Toolbox.exe [2014-07-21] (Hewlett-Packard Development Company, LP)
Task: {2D08B487-69D0-4E60-AE48-89E1D37EF7B9} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-04] (Microsoft Corporation)
Task: {2F29B1AC-30CB-457F-8690-7D0AFF8861B8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {2FF16328-0CFC-4A23-B003-56118A071A3E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-11-17] (NVIDIA Corporation)
Task: {3E3F1851-07EE-40B0-801B-3893F6E692C3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-11-17] (NVIDIA Corporation)
Task: {417E05DA-7F0F-4900-B5E2-99735C6942C7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {44462DF0-ECD2-4CCC-B9FA-AF9AC80CC5AC} - System32\Tasks\CAM => C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe [2017-01-12] ()
Task: {485D1853-EB04-494E-92FD-72AC37E2AE8E} - System32\Tasks\Yahoo! Powered dedef => Wscript.exe "C:\ProgramData\{A63A6359-2C78-E99F-AABE-77DD30FCFC13}\reto.txt" "687474703a2f2f7761676e672e636f6d" "433a5c50726f6772616d446174615c7b41363341363335392d324337382d453939462d414142452d3737444433304643464331337d5c636163657269" "433a5c50726f6772616d446174615c7b41363341363335392d324337382d453939462d414142 (Der Dateneintrag hat 78 mehr Zeichen).
Task: {57605B42-1D08-41F5-9A44-D97D5255D091} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-10-21] (Bitdefender)
Task: {5996B9BA-0AB1-4F0D-81D2-DC1199BA8CAD} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2016-11-17] (Apple Inc.)
Task: {649AF233-11D0-47DC-9B7D-4DE9F19F2C5A} - System32\Tasks\NahimicMSIsvc32Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe [2015-12-04] ()
Task: {72D7125D-6834-4C31-9B42-B53C5098097F} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-11-20] (Intel Corporation)
Task: {914ECF4C-A2ED-4DC5-8917-F4EA21DD0B0D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28] (Google Inc.)
Task: {9216DDDA-0D78-4BC9-843A-A6E34F56C709} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {9DF26E80-0A90-45C4-9983-8E0CD802B033} - System32\Tasks\ScanToPCActivationApp.exe_{0547F200-02A0-45D6-A1E0-363AD02DBFEB} => C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe [2014-07-21] (Hewlett-Packard Development Company, LP)
Task: {AC1E0B1B-B4BF-4E88-8D15-DFE162388554} - System32\Tasks\NahimicMSIUILauncherRun => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [2015-12-04] ()
Task: {AE2F5653-F69C-4AE5-AC15-8D6FEDC70F66} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Knight Rider\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {B8D0B871-8A11-44F6-AF0F-602FE08A16AD} - System32\Tasks\{18B1376D-06ED-545E-2B12-4A0CF6A2E511} => C:\Users\Knight Rider\AppData\Roaming\UpdateTask\SynHelper.exe [2013-04-22] ()
Task: {C6597BAC-A7B8-47EB-9FFF-A84D001C8072} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-04] (Microsoft Corporation)
Task: {C94AA91A-66F4-428D-9673-540F219CD2E3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)
Task: {CB113A93-2D62-45EA-9738-889299BE76A3} - System32\Tasks\NahimicMSIsvc64Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe [2015-12-04] ()
Task: {DE066516-0C7F-4FCC-A437-1533E01AD46E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-12-04] (Microsoft Corporation)
Task: {E8C962FC-8FE0-4BCF-9E99-65F8A328AA7D} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)
Task: {F34F1F4F-7315-4892-8F5C-7E316EFEB4C7} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-01-04] (Overwolf LTD)
Task: {F9205A60-C050-45BE-83B7-F175A7F247C8} - System32\Tasks\doPDF Update => C:\Program Files\Softland\novaPDF 8\Driver\UpdateApplication.exe [2016-06-17] ()
Task: {FC670DB5-50A6-41F8-B719-CEEF7A4AF299} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-marvin.meurer1@web.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-05-05] (Adobe Systems Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Yahoo! Powered dedef.job => C:\ProgramData\{A63A6359-2C78-E99F-AABE-77DD30FCFC13}\reto.txt <==== ACHTUNG
Task: C:\WINDOWS\Tasks\{18B1376D-06ED-545E-2B12-4A0CF6A2E511}.job => C:\Users\MARVIN~1\AppData\Roaming\UPDATE~1\SYNHEL~1.EXE <==== ACHTUNG
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js\Node.js command prompt.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\nodejs\nodevars.bat"
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-05-28 22:47 - 2013-09-03 13:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\bdmetrics.dll
2016-11-14 19:34 - 2016-11-14 19:34 - 01008448 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttpbr.mdl
2016-11-14 19:34 - 2016-11-14 19:34 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttpdsp.mdl
2016-11-14 19:34 - 2016-11-14 19:34 - 03202816 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttpph.mdl
2016-11-14 19:34 - 2016-11-14 19:34 - 01542976 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttprbl.mdl
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-02-10 15:37 - 2016-02-10 15:37 - 00179208 _____ () C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
2016-06-17 11:43 - 2016-06-17 11:43 - 00145696 _____ () C:\Program Files\Softland\novaPDF 8\Server\AgileDotNetRT64.dll
2016-10-17 20:45 - 2016-11-17 14:45 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-17 20:45 - 2016-11-17 14:45 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-17 20:45 - 2016-11-17 14:45 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-05-11 23:39 - 2016-05-11 23:39 - 00037808 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 17:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-23 14:36 - 2016-11-24 20:39 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-14 17:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-04 08:36 - 2015-12-04 08:36 - 00207840 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll
2015-12-04 08:36 - 2015-12-04 08:36 - 00285152 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll
2016-12-14 17:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-05-22 18:33 - 2016-05-22 18:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-09-23 15:33 - 2016-09-23 15:33 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-10 21:42 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-10 21:42 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-10 21:42 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-10 21:42 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-10 21:42 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-10 21:42 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-10 21:42 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-12-14 17:42 - 2016-12-14 17:42 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-12-14 17:42 - 2016-12-14 17:42 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-12-14 17:42 - 2016-12-14 17:42 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 17:42 - 2016-12-14 17:42 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\roottools.dll
2016-12-14 17:42 - 2016-12-14 17:42 - 00123904 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.Proxies.dll
2015-12-04 08:31 - 2015-12-04 08:31 - 00740320 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe
2016-05-11 23:39 - 2016-05-11 23:39 - 01088944 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe
2015-12-04 08:31 - 2015-12-04 08:31 - 00826880 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe
2015-12-04 08:37 - 2015-12-04 08:37 - 00275456 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe
2016-12-17 23:13 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-17 23:13 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2016-02-10 21:27 - 2016-02-10 21:27 - 00267672 _____ () C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldBodyDiffu.dll
2017-01-12 09:48 - 2017-01-12 09:48 - 07820400 _____ () C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe
2016-05-28 22:02 - 2013-01-05 09:05 - 01709736 _____ () C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe
2016-05-22 18:32 - 2016-05-22 18:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-12-14 10:56 - 2016-12-14 10:56 - 00202352 _____ () C:\Program Files (x86)\NZXT\CAM\FPS\CAMFPS.exe
2016-05-28 22:47 - 2016-11-24 21:26 - 00521112 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\intermsec.dll
2016-05-28 22:47 - 2016-04-05 15:31 - 00159232 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\ui\ltr\intermsec.ui
2016-05-28 22:47 - 2016-05-12 16:48 - 00032256 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\lang\de-DE\intermsec.txtui
2016-05-28 22:47 - 2016-05-12 16:48 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\lang\de-DE\bdaphconp.txtui
2016-05-28 22:47 - 2016-06-28 18:38 - 00061392 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\bddpsp.dll
2016-04-25 14:12 - 2016-07-23 20:53 - 00174872 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2016-04-25 14:12 - 2016-07-23 20:53 - 00103192 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2016-04-25 14:12 - 2016-07-23 20:53 - 00107800 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2016-04-25 14:13 - 2016-07-23 20:53 - 00312088 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2016-04-25 14:13 - 2016-07-23 20:53 - 00485656 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2016-12-14 17:42 - 2016-12-14 17:42 - 00181248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\Microsoft.Skype.ImageTool.dll
2016-12-14 17:42 - 2016-12-14 17:42 - 00040960 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\TraceProvider.dll
2016-12-14 17:42 - 2016-12-14 17:42 - 00796672 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\VideoN.dll
2016-11-22 20:05 - 2016-11-22 20:05 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-11-22 20:05 - 2016-11-22 20:05 - 20433408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-03 19:07 - 2016-06-03 19:09 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-11-22 20:05 - 2016-11-22 20:05 - 01046528 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2016-11-22 20:05 - 2016-11-22 20:05 - 00353792 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Photos.Inking.dll
2015-10-16 05:14 - 2015-10-16 05:14 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-06-01 16:04 - 2016-11-17 14:45 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-10-17 20:45 - 2016-11-17 14:45 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-17 20:45 - 2016-11-17 14:45 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-12-04 08:30 - 2015-12-04 08:30 - 00177632 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIDevProps.dll
2015-12-04 08:30 - 2015-12-04 08:30 - 00252384 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIOSD.dll
2016-10-17 20:45 - 2016-11-17 11:20 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-10-17 20:45 - 2016-11-17 11:20 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-10-17 20:45 - 2016-11-17 11:20 - 02809912 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-10-17 20:45 - 2016-11-17 11:20 - 00245184 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-10-17 20:45 - 2016-11-17 11:20 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-10-17 20:45 - 2016-11-17 11:20 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-10-17 20:45 - 2016-11-17 11:20 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-11-17 01:29 - 2016-11-17 01:29 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-09-01 17:13 - 2016-09-01 17:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-12-13 13:39 - 2016-12-08 16:13 - 00656160 _____ () E:\Steam\SDL2.dll
2016-10-15 19:04 - 2016-09-01 02:02 - 04969248 _____ () E:\Steam\v8.dll
2016-12-21 20:27 - 2016-12-20 03:25 - 02322720 _____ () E:\Steam\video.dll
2016-10-15 19:04 - 2016-01-27 08:49 - 02549760 _____ () E:\Steam\libavcodec-56.dll
2016-10-15 19:04 - 2016-01-27 08:49 - 00491008 _____ () E:\Steam\libavformat-56.dll
2016-10-15 19:04 - 2016-01-27 08:49 - 00332800 _____ () E:\Steam\libavresample-2.dll
2016-10-15 19:04 - 2016-01-27 08:49 - 00442880 _____ () E:\Steam\libavutil-54.dll
2016-10-15 19:04 - 2016-01-27 08:49 - 00485888 _____ () E:\Steam\libswscale-3.dll
2016-10-15 19:04 - 2016-09-01 02:02 - 01563936 _____ () E:\Steam\icui18n.dll
2016-10-15 19:04 - 2016-09-01 02:02 - 01195296 _____ () E:\Steam\icuuc.dll
2016-12-21 20:27 - 2016-12-20 03:25 - 00838944 _____ () E:\Steam\bin\chromehtml.DLL
2016-10-15 19:04 - 2016-07-04 23:17 - 00266560 _____ () E:\Steam\openvr_api.dll
2016-10-17 20:45 - 2016-11-17 14:44 - 60817344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-12-13 13:39 - 2016-12-05 17:21 - 67304736 _____ () E:\Steam\bin\cef\cef.win7\libcef.dll
2016-12-21 20:27 - 2016-12-20 03:25 - 00388384 _____ () E:\Steam\steam.dll
2016-10-15 19:04 - 2015-09-25 00:52 - 00119208 _____ () E:\Steam\winh264.dll
2017-01-04 13:45 - 2017-01-04 13:45 - 67297280 _____ () C:\Program Files (x86)\Overwolf\0.101.213.0\libcef.DLL
2016-12-07 18:28 - 2016-12-07 18:28 - 00282112 _____ () C:\Program Files (x86)\NZXT\CAM\GSyncLib.dll
2016-06-01 16:15 - 2017-01-13 20:50 - 00308736 _____ () C:\Program Files (x86)\NZXT\CAM\NVAPIHelper.dll
2016-05-28 22:02 - 2012-02-17 14:45 - 00042496 _____ () C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.dll
2016-05-28 22:02 - 2013-08-10 10:45 - 00294912 _____ () C:\Program Files (x86)\Rapoo\RpWireless\Swap.dll
2016-06-03 02:36 - 2016-06-03 02:36 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-06-07 23:10 - 2016-06-07 23:10 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-06-07 23:41 - 2016-06-07 23:41 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-06-07 23:10 - 2016-06-07 23:10 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-12-07 18:28 - 2016-12-07 18:28 - 00070656 _____ () C:\Program Files (x86)\NZXT\CAM\FPS\KeyHookDLL_x86.dll
2017-01-04 13:46 - 2017-01-04 13:46 - 01565128 _____ () C:\Program Files (x86)\Overwolf\0.101.213.0\teamspeak_control_win32.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 08:24 - 2017-01-13 21:39 - 00000002 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\Control Panel\Desktop\\Wallpaper -> c:\users\knight rider\desktop\mt 07 background.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{DC20F389-0673-443C-B9B7-605290B8D0A6}] => E:\UPlay\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [{B55A0228-00BD-46C3-B27F-60E5554325BC}] => E:\UPlay\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [{2F1F1BFF-109D-4624-A348-B9F771766160}] => C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{25806314-9BD4-4887-BEFF-AF54D46C9E48}] => C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{1064A5F3-135F-425A-A8FD-D82130B1B1F5}] => C:\Program Files\MAGIX\Video deluxe 2016 Premium\Videodeluxe.exe
FirewallRules: [{04E9B176-EF63-4E38-A7ED-AF4A04DB79F3}] => LPort=8501
FirewallRules: [{53BB82C0-D4D2-4AE5-AF2D-38F6799916C7}] => LPort=8501
FirewallRules: [UDP Query User{582D84F6-CE9C-47D1-9D51-7640140C69F1}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{29BD0947-9C8B-438D-A3F0-C695FB0CEDC5}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{AA2F4FF8-E17F-4DD5-BF6D-398CEC1F15E6}] => C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe
FirewallRules: [{FDF133C5-2BF9-4529-B63C-1EC1E18F89C6}] => C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe
FirewallRules: [{91A4F597-B628-4A95-9777-B6DEBFF934BB}] => C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe
FirewallRules: [{0A72B478-531D-4A6A-B47A-B27B440B36D2}] => C:\Program Files\GoPro\GoPro Desktop App\GoPro.exe
FirewallRules: [{446F86A3-3AF9-44CD-931A-A148B19FA98A}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS46D1\HPDiagnosticCoreUI.exe
FirewallRules: [{73FB3B8A-710F-49D0-8AF9-5B89A633C09E}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS46D1\HPDiagnosticCoreUI.exe
FirewallRules: [{6E0A6CDC-F378-4902-901D-14914749F14B}] => E:\Steam\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{3959E762-27C0-4EAD-AC3E-C2B6E18E8C66}] => E:\Steam\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{BA8CBCF9-6376-4FD2-B721-96F8A6380479}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS2FE1\HPDiagnosticCoreUI.exe
FirewallRules: [{23D58E1C-B6C9-4EF6-87D1-902BC7C76885}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS2FE1\HPDiagnosticCoreUI.exe
FirewallRules: [{5F7D483C-28BE-4079-AAA0-65DA8E28BDC1}] => E:\Steam\steamapps\common\EVGA PrecisionX\Skins\UxfTool.exe
FirewallRules: [{BDCF2A81-FD78-481A-9921-321724FFF7B2}] => E:\Steam\steamapps\common\EVGA PrecisionX\Skins\UxfTool.exe
FirewallRules: [{A35EB4EC-85A9-4714-B7EB-74059BC90D24}] => E:\Steam\steamapps\common\EVGA PrecisionX\PrecisionX_x64.exe
FirewallRules: [{38B90A6C-61D6-40F1-8F10-29DC028D6CC6}] => E:\Steam\steamapps\common\EVGA PrecisionX\PrecisionX_x64.exe
FirewallRules: [{6128DC0F-333F-44DC-93B7-FD59D61E8C7D}] => E:\GTA5.exe
FirewallRules: [{C9CC7850-9C3C-4803-8034-E04F523FA091}] => E:\GTA5.exe
FirewallRules: [{97FBDC53-B7E2-4690-9B54-B2A3C39D6E64}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1A69A998-B3DE-4027-A4B8-6C87379F8F4E}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F8BF0CC2-B046-4542-8620-D5F3686A22A7}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{D7AAE08E-BE2F-4305-ADEB-412192D1EB40}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{970C729C-8B32-45EA-BCFE-C7CA5D1872CB}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{248CD8AC-AFBC-4C81-A164-A27C81899A63}] => LPort=5357
FirewallRules: [{D6E447B1-1BB7-449B-830F-E60DA33D4D1C}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe
FirewallRules: [{740A973B-C4BC-4F49-B355-1FEFFE302DD1}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{89F3408B-222F-4C27-A8AE-E3CBE589B257}] => E:\Programme\Common7\IDE\devenv.exe
FirewallRules: [{95899C5B-BC21-4597-8DD6-74605921232F}] => E:\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe
FirewallRules: [{1A0025E6-719C-4178-AC08-5BE5502AC899}] => E:\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe
FirewallRules: [{E0D847BA-DC22-4FB4-A5EF-64BE0AA5B61D}] => E:\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{69EB1B01-3311-47CD-97B1-E82B0F04475B}] => E:\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{46A16798-ACCC-4EBF-AF5E-DFA34BE12CFF}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B8F48BE4-2234-463C-BEE8-E02737598E43}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B9DB27DF-5F0F-484B-92E4-082B77C48AD6}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6AD65B56-0BE8-46F8-903F-E6D24AF2531A}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{45FC92BA-BBA7-46B4-853C-E8D5DC193696}] => E:\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{95B7EC49-5B97-43D9-B51B-5BFF6652756A}] => E:\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{B2E3446A-263B-4B4C-B3B5-337E6CDF2800}] => E:\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{4C2A959C-C7EC-484C-B2F2-A38AB05B0A39}] => E:\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{CD836E44-E83F-4D70-833F-D5768B307025}] => E:\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{A4CFB29E-408A-4A85-A84E-C3D156E629F0}] => E:\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{82FB6EB6-9E4A-443B-9FE9-122C8BD12F27}] => E:\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{FE07C331-321C-4465-B12D-CEA32796B9FB}] => E:\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{C8058183-EA6B-4E41-8CE7-856A0E61FCC2}] => E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8EE8DA43-7627-48C6-AD88-4C997A1323CE}] => E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{29312822-A300-4C40-A885-CBE298632F59}] => E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{44D345B7-3BF1-4939-B480-2F31141CEEE8}] => E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{32A9C915-48D5-4345-B36A-8BE8E5B54D30}] => E:\Steam\Steam.exe
FirewallRules: [{AE1A2968-6EBB-460E-BF76-2B092CDEC94A}] => E:\Steam\Steam.exe
FirewallRules: [{255D5DD0-759B-4977-A61A-53117078049C}] => LPort=2333
FirewallRules: [{B20859F5-2160-4466-992D-ED3326E1E393}] => LPort=9143
FirewallRules: [{D7944283-3883-4C5F-9446-0F13E0A4947C}] => C:\Program Files (x86)\Didactic\FluidSIM5-Homeuse\bin\CodeMeter.exe
FirewallRules: [{41620DFB-C774-4D26-9B65-C9DA125845E6}] => C:\Program Files (x86)\Didactic\FluidSIM5-Homeuse\bin\CodeMeter.exe
FirewallRules: [TCP Query User{A48B2411-88B0-4E8F-A57F-ED6802DEA9A6}E:\ti-nspire cx student software\ti-nspire cx student software.exe] => E:\ti-nspire cx student software\ti-nspire cx student software.exe
FirewallRules: [UDP Query User{7221E92E-A653-4933-A912-937C5B5579C4}E:\ti-nspire cx student software\ti-nspire cx student software.exe] => E:\ti-nspire cx student software\ti-nspire cx student software.exe
FirewallRules: [TCP Query User{E3ED49B1-4B31-4563-9349-3BC9C2380D7B}E:\ti-nspire cx student software\jre\bin\java.exe] => E:\ti-nspire cx student software\jre\bin\java.exe
FirewallRules: [UDP Query User{86C87F86-0498-4777-9760-241871CA568F}E:\ti-nspire cx student software\jre\bin\java.exe] => E:\ti-nspire cx student software\jre\bin\java.exe
FirewallRules: [{3D7B8288-E8C7-4CF3-9817-07BAF394629E}] => E:\Steam\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe
FirewallRules: [{6B2464F0-4C77-47C3-8AE4-C5666B2BEAE1}] => E:\Steam\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe
FirewallRules: [{DCADC9AF-1424-4173-9208-53B41366F7BF}] => E:\Steam\steamapps\common\PCMark 8\bin\PCMark8.exe
FirewallRules: [{279AD4DC-3BC6-48E3-91F5-687B06CE97DD}] => E:\Steam\steamapps\common\PCMark 8\bin\PCMark8.exe
FirewallRules: [{B2CA8270-D6E7-4EA6-95C9-B01DA03B362A}] => E:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{3CA29EF8-2324-48CD-B24C-883127A04045}] => E:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{D6DA50AD-A6C5-49F2-BF12-AEA3F4D6211A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A4BC4E5E-5D11-45F6-93AB-952235A1D0A0}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7C9B1CC5-5E50-4331-B435-A2917B3654ED}] => C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{1FE8D93D-E02D-4D80-A8A6-D4DFDFE10836}] => C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [TCP Query User{80DBD5F7-28C6-4024-AD54-99EB8BEE659D}E:\gta5.exe] => E:\gta5.exe
FirewallRules: [UDP Query User{D49B37A4-8A24-4E86-9538-5D113037301F}E:\gta5.exe] => E:\gta5.exe
FirewallRules: [{DFA1A6B2-9DA2-44B4-A34A-A7C2BAFC5374}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{0F19AF09-DFB8-48C5-980A-E2321BADFE3C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{C3A96544-D42D-4897-BE4D-74673F07A360}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C44277F5-3F84-40DF-B868-4C887894C8EC}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9F6182DB-CC3E-4F52-8D94-3A71C11A00C7}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe
FirewallRules: [{F8F6AD73-CE71-4249-A67F-8ED645995DE3}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe
FirewallRules: [{6EBC8C84-122E-4729-933E-C48A1B92C0E8}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5E2380FC-13DF-4C5C-A667-6E1BB442BA18}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{27829CBD-693C-47DE-938C-E916A399569E}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{00621EC1-D524-44D6-BD9F-BE62EF278689}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{415DAEDE-EDBE-4ECD-B2DF-04AE70AE8346}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8D5ECBCA-E874-42FF-8918-4BD6EC84BF29}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{46768423-3AC7-41BD-8918-EBC344E04B49}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{11AB8EBD-91B5-457D-B7C6-7E0420928CED}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{19A9D408-D902-4D4D-B5DB-F3A694BB3C0A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FDEFED6B-DEE4-4336-B11B-9EFD986B3705}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{18850649-80E9-44DB-9579-EDB7EA821978}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0AAE3A14-89A6-412F-8B47-3AE92BE8C5F6}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0E7322FF-36F1-49BA-B62D-4190E8E8FA8D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{92FB5956-69F2-46DB-973E-E7B1AD576569}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9B08E6A9-E252-4C45-88BE-FC402F6E05C9}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{C0B5D76D-84D0-4625-9F80-7E6299475806}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{42239AB1-94C4-4EBF-B6D0-42FFF4779DE2}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DEC5EFB7-6288-4561-BE09-9BA056C96D06}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3EC3297B-593A-4FAC-AB00-4458C7AD6767}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7B204C37-73DC-4F57-87B9-85CA064CFD70}] => E:\Steam\steamapps\common\Steep Open Beta\steep.exe
FirewallRules: [{3AFD1DB9-C37C-42DD-8E3D-0056FDC206C9}] => E:\Steam\steamapps\common\Steep Open Beta\steep.exe
FirewallRules: [{7299C231-8AFE-4790-879B-B41D3897A597}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{47CD93EE-DCB3-49CF-BF6B-0BA0599EE34A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{61ED91C2-137E-45D6-BF88-7D40018E9893}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E45E15CF-F87E-4217-9F84-194135FDB580}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1C38B42C-8106-48D9-B765-CC14544D913B}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8B4CA0E1-F02D-4957-8199-ACDA938E02A2}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CE8D74F3-A1C2-48EB-9CCD-A91D159AC65A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{17733A66-6EA4-48A8-9C13-46AF393EAC30}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2184456A-0C9D-48B9-8832-EC86994AACDE}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{20E82D63-DADB-44E8-819B-27A4E04F8B53}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C8F6D304-0A67-4A48-A742-68942457273D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E4621CC3-134F-4792-B47B-938835242FD9}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{02D5DE69-7294-4EF9-9AFD-5AA131A25227}] => E:\GTA V\GTA5.exe
FirewallRules: [{55445BB4-8AF7-4D42-ABA6-19A64F6096B0}] => E:\GTA V\GTA5.exe
FirewallRules: [{A1AA779B-1280-486F-93C0-4FF2BD993E25}] => E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{938F25F6-CEBF-431A-9A7F-8DBE1ED70C20}] => E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E779C8B5-32BC-453E-91CD-BEBD7AE9A7A7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8DE65A3C-0537-49AA-80C1-F77F10114A8E}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5C4C70D3-F144-469A-AC22-B1E0E2342A97}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe
FirewallRules: [{3960D1C8-1D6A-47DE-806B-B9A5D831B02D}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe
FirewallRules: [{6D304267-F395-4DB4-BF92-F79751D26037}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A04BB9B7-F9D8-4CF0-BFD3-87387FC9EB02}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DE3C3E5E-91DA-4697-B5B1-D570DCB684ED}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C7AD4DAC-930B-44DE-BAC0-4E2B64E322BD}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DC8AA6C0-E6F7-4E78-996B-D5FD56710896}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1505F4B2-8F0E-4268-9309-6588F501B14B}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4331CB91-BA6D-4289-8D1D-DBCCA017FEFF}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FE034258-8A91-45E6-B6D2-16EFC0B99FDB}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{85810EE0-A6D7-4AA0-8FE0-80A9D255DB6C}] => E:\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{9400D5D3-10F8-4B4F-9E31-B935D69221B9}] => E:\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{DB5ACF1E-6792-487F-B0B1-8FBA4313E204}] => E:\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{B1D16D26-C7A6-4055-B570-0EA8B3263DFD}] => E:\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{CC9BB5AB-6A06-40A8-BEE1-92FA5E1B2D86}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F6D38622-B7B8-47A0-985B-EC64A09A99D8}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{054E8E0F-07BF-40D6-820D-DF74EF9DEF06}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{689B2347-DA33-4F35-8DEE-7A1BC4598ECE}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3C4BA918-6816-47CE-9560-173DE2B3C981}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CDD5F5FB-91FD-4290-B3D6-CACA6BA9C117}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3DC612E5-63B0-4F61-A0C7-6CBFC15380D0}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8B68BD82-8AE7-4F34-9758-FE4D98D72E86}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{34F83D29-2AB6-4140-B97B-FF36ACDEE761}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{650D6441-C73A-4546-B707-D369FFD82098}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{379BE4B4-EB8C-4304-ADFB-C6EB48F7CB63}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B8A43B27-F1A9-4C39-A49F-2011745376C7}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BA1226FF-76FD-4506-B7C7-CB2AB5159DDB}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{DFA1806B-5C5B-493A-A939-6E33811FBC58}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F1D2F795-15AB-4DBD-90DA-847878CC7C69}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1D9BE7CE-4420-488D-8DCC-B7E2DF7BD3A6}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7A1B1166-4A91-43FA-840D-254B83C40F17}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{14B4E5A0-53D7-4F6D-94B4-E97E4532E2CD}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3D76EF32-DB7E-46E7-A4D7-B34E30C2AAF7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7405F89C-B4FA-4584-8188-6B78C0313611}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DCC0C234-9DA5-4F95-A3F8-DBDB080C4942}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CFB84E45-93FD-4970-9213-7D9BC60EDF09}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E1D0D8C6-7823-46F6-9337-62845C355D7E}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A5665D02-AD8F-42E1-B790-965AE5D7AB65}] => E:\Programme\iTunes.exe
FirewallRules: [{D4088670-D200-439A-8EB2-CDDC4142D407}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{94466409-25C9-4186-B117-FFAA03AC1BF7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4F833480-9F2B-46E6-9614-E86530039C8C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A0B3685D-06F2-4B72-A860-B0F232EAADDD}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{32AE8B65-A863-40C0-B815-2F5CBAF7B38B}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E70E1073-1B5E-4639-A121-BCB8E200BD03}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3B90A165-ACEF-4894-9B2F-1ACF0CD28D30}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7D57A74D-240D-49CE-968C-9DED34F3035C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{03118F20-A1C6-42AE-97F2-4ED5D80C744C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{373EAC15-37DD-451B-AFF3-BF031405EC85}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{17621C42-EF18-4A6E-96B6-46D38D25A014}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2DD3A9A1-F505-40E8-BF5B-D6E3002D751D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F6B0FD4C-D8A7-4C97-8A4E-B46F79A69D44}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2EC8010E-1AB7-43C7-9DB0-5C9E9F221F39}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FA2DE05E-57F9-40A4-8922-7E5593833B68}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9B5A3CEE-9836-465D-A717-726B5F5DECE7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
==================== Wiederherstellungspunkte =========================
10-01-2017 21:58:35 Windows Update
10-01-2017 21:58:44 Windows Update
12-01-2017 19:36:35 Installed CAM
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/13/2017 10:18:03 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
Error: (01/13/2017 10:18:03 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (01/13/2017 10:18:03 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (01/13/2017 10:18:03 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (01/13/2017 09:42:01 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
Error: (01/13/2017 09:42:01 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (01/13/2017 09:42:01 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (01/13/2017 09:42:01 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (01/13/2017 09:37:27 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
Error: (01/13/2017 09:37:27 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Systemfehler:
=============
Error: (01/13/2017 08:50:25 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RK4M43L)
Description: Unable to start a DCOM Server: {14286318-B6CF-49A1-81FC-D74AD94902F9}. The error:
"2"
Happened while starting this command:
"C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE" -Embedding
Error: (01/13/2017 08:50:04 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool.
Error: (01/12/2017 10:33:31 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool.
Error: (01/12/2017 07:10:29 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RK4M43L)
Description: Unable to start a DCOM Server: {14286318-B6CF-49A1-81FC-D74AD94902F9}. The error:
"2"
Happened while starting this command:
"C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE" -Embedding
Error: (01/12/2017 07:10:07 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool.
Error: (01/11/2017 10:51:59 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool.
Error: (01/11/2017 07:18:31 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RK4M43L)
Description: Unable to start a DCOM Server: {14286318-B6CF-49A1-81FC-D74AD94902F9}. The error:
"2"
Happened while starting this command:
"C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE" -Embedding
Error: (01/11/2017 07:18:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool.
Error: (01/11/2017 07:17:38 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: The chip1click service has reported an invalid current state 0.
Error: (01/11/2017 07:17:38 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: The chip1click service has reported an invalid current state 0.
CodeIntegrity:
===================================
Date: 2017-01-01 20:16:18.923
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll that did not meet the Store signing level requirements.
Date: 2017-01-01 20:16:18.882
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll that did not meet the Store signing level requirements.
Date: 2017-01-01 20:16:18.878
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.
Date: 2017-01-01 20:16:18.839
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll that did not meet the Store signing level requirements.
Date: 2017-01-01 20:16:18.837
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll that did not meet the Store signing level requirements.
Date: 2017-01-01 20:16:18.811
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-01-01 20:16:18.738
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements.
Date: 2016-12-22 23:11:26.349
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll that did not meet the Store signing level requirements.
Date: 2016-12-22 23:11:26.347
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2016-12-22 23:11:26.330
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll that did not meet the Store signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 48%
Installierter physikalischer RAM: 16343.7 MB
Verfügbarer physikalischer RAM: 8488.18 MB
Summe virtueller Speicher: 18775.7 MB
Verfügbarer virtueller Speicher: 11283.6 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:237.98 GB) (Free:81.82 GB) NTFS
Drive e: (Volume) (Fixed) (Total:931.51 GB) (Free:534.29 GB) NTFS
==================== MBR & Partitionstabelle ==================
==================== Ende von Addition.txt ============================
|
|
13.01.2017, 22:58
| #5 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC"Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
13.01.2017, 23:29
| #6 |
| | Pop-up "There is a recommended update for your PC" Nein, ich habe mal ein Videoprogramm gesucht und bin auf Adobe Premiere Pro gestoßen, hab diese 30 Tage Testversion gemacht und musste dann feststellen, dass es zu teuer war. Benutze jetzt Magix Video Deluxe 2016 Premium. Die Software habe ich wohl vergessen  |
|
13.01.2017, 23:43
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" 1. Schritt: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers 2. Schritt: Kaspersky TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
14.01.2017, 00:00
| #8 |
| | Pop-up "There is a recommended update for your PC"Code:
ATTFilter 23:49:00.0280 0x2194 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
23:49:06.0188 0x2194 ============================================================
23:49:06.0188 0x2194 Current date / time: 2017/01/13 23:49:06.0188
23:49:06.0188 0x2194 SystemInfo:
23:49:06.0188 0x2194
23:49:06.0188 0x2194 OS Version: 10.0.14393 ServicePack: 0.0
23:49:06.0188 0x2194 Product type: Workstation
23:49:06.0188 0x2194 ComputerName: DESKTOP-RK4M43L
23:49:06.0188 0x2194 UserName: Knight Rider
23:49:06.0188 0x2194 Windows directory: C:\WINDOWS
23:49:06.0188 0x2194 System windows directory: C:\WINDOWS
23:49:06.0188 0x2194 Running under WOW64
23:49:06.0188 0x2194 Processor architecture: Intel x64
23:49:06.0188 0x2194 Number of processors: 8
23:49:06.0188 0x2194 Page size: 0x1000
23:49:06.0188 0x2194 Boot type: Normal boot
23:49:06.0188 0x2194 CodeIntegrityOptions = 0x00000001
23:49:06.0188 0x2194 ============================================================
23:49:06.0226 0x2194 KLMD registered as C:\WINDOWS\system32\drivers\70907372.sys
23:49:06.0226 0x2194 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.693, osProperties = 0x19
23:49:06.0342 0x2194 System UUID: {556AB86B-F2E9-8368-B81F-8053B815DEC3}
23:49:06.0558 0x2194 Drive \Device\Harddisk0\DR0 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:49:06.0578 0x2194 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:49:06.0581 0x2194 ============================================================
23:49:06.0581 0x2194 \Device\Harddisk0\DR0:
23:49:06.0581 0x2194 MBR partitions:
23:49:06.0581 0x2194 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xFA000
23:49:06.0581 0x2194 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xFA800, BlocksNum 0x1DBF8000
23:49:06.0581 0x2194 \Device\Harddisk1\DR1:
23:49:06.0581 0x2194 MBR partitions:
23:49:06.0581 0x2194 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
23:49:06.0581 0x2194 ============================================================
23:49:06.0582 0x2194 C: <-> \Device\Harddisk0\DR0\Partition2
23:49:06.0610 0x2194 E: <-> \Device\Harddisk1\DR1\Partition1
23:49:06.0610 0x2194 ============================================================
23:49:06.0610 0x2194 Initialize success
23:49:06.0610 0x2194 ============================================================
23:52:29.0606 0x3dbc ============================================================
23:52:29.0606 0x3dbc Scan started
23:52:29.0606 0x3dbc Mode: Manual; SigCheck; TDLFS;
23:52:29.0606 0x3dbc ============================================================
23:52:29.0606 0x3dbc KSN ping started
23:52:29.0679 0x3dbc KSN ping finished: true
23:52:30.0867 0x3dbc ================ Scan system memory ========================
23:52:30.0867 0x3dbc System memory - ok
23:52:30.0867 0x3dbc ================ Scan services =============================
23:52:30.0905 0x3dbc [ A7901875F89D011C38CF52C98ACF5B29, 782141AB1DD7ACDE6EA08B5BAFDE8BADD05B81D38C18E097D6D9C46102056EB1 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
23:52:30.0948 0x3dbc 1394ohci - ok
23:52:30.0955 0x3dbc [ EE1CCC54F75C24727A218F98FC5349DA, 0B0D26640BFA0F551B7087027E572D0BF2C5EAF50A4187C5A7D839180B7FF589 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
23:52:30.0965 0x3dbc 3ware - ok
23:52:30.0977 0x3dbc [ FF1666BB95ECF02D544A3F8BD159BD51, EEF80CEEF3BBCFA43FFB31DA36EBC67DB09155E6CAFECD5235C402354785B2D5 ] acCAMService C:\Program Files (x86)\NZXT\CAM\Service\CAMService.exe
23:52:30.0988 0x3dbc acCAMService - ok
23:52:31.0006 0x3dbc [ 73C73E1AA0D4D727A04AAAB120B7F56A, 5D311F11022994410DF5C67914D38B1F0D813EFD181EA234750286A272D67A1A ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
23:52:31.0024 0x3dbc ACPI - ok
23:52:31.0027 0x3dbc [ 0935496EF9624B46B935CB35ECE1F205, A22A2A29195505A65E8626D60B00C86C23E0CABC1EB8345EA5ED523516CC21C0 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
23:52:31.0038 0x3dbc AcpiDev - ok
23:52:31.0043 0x3dbc [ D6794C31F4077B71433988787BAA926E, F16365C2F195AAE94D4740E6C3DF4C0CECEC6393CAD65425DCCD28CDBA6EC51A ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
23:52:31.0053 0x3dbc acpiex - ok
23:52:31.0055 0x3dbc [ FE5F656D6B35089DA39112E74EC6A85A, 5D81EE63998232A5B36DE47FE15B9D04D5BD02234CA133A2462AECA8C60A22ED ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
23:52:31.0066 0x3dbc acpipagr - ok
23:52:31.0069 0x3dbc [ 2F242941E4DFF69B883D77A16F039557, 45C388365317C720654A659A9326B2BC0E9D84929C704654985597D5D620101C ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
23:52:31.0080 0x3dbc AcpiPmi - ok
23:52:31.0083 0x3dbc [ C247E35A21682DA8D0DC3AF9F025FCC5, 455415EE3166B3043AD8A4DD50B688DB74242267FB555642441251EFA823E971 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
23:52:31.0092 0x3dbc acpitime - ok
23:52:31.0105 0x3dbc [ 8A910356CAE9606D1F40F25570B284AF, 1D28A78E2666D9CC924D1604483D83EEC55920935D8720614202F62521071B9F ] AdobeUpdateService C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
23:52:31.0128 0x3dbc AdobeUpdateService - ok
23:52:31.0148 0x3dbc [ 49B9DB97AFC85DCCBDACDAB2E90085B7, 2A6C2A09F74EA15044F442CCFB54A0F24F105ADB915E5C78F02F59652DC29152 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
23:52:31.0172 0x3dbc ADP80XX - ok
23:52:31.0183 0x3dbc [ 323AA1953ED9C01E23F740FA891FE064, 4CED6E3D61749316CDE28965C913E7ED462539DAAD637A29484F62AF47AD650D ] AFD C:\WINDOWS\system32\drivers\afd.sys
23:52:31.0200 0x3dbc AFD - ok
23:52:31.0234 0x3dbc [ 021D06851E7AFF5C314039DF813608F3, 081B14840F4AD428B4407AA2E639369A45D174D9507BD107F33FE3A94FB8F8EC ] AGSService C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
23:52:31.0272 0x3dbc AGSService - ok
23:52:31.0279 0x3dbc [ 23522E5D581F7722B1B5B86737CAE39C, FB81ABD304376A1E87B65F5E1B34477B628CEDB2091C5D754DE97464B6050C5B ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
23:52:31.0294 0x3dbc ahcache - ok
23:52:31.0301 0x3dbc [ A05B9C895419A55007809767F46B9C2D, 8F995A9FAB401DBB5E474C4FEFFB00B8AE147D69DE387D5B0DAF5E3927E48BE5 ] AIDA64Driver C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64
23:52:31.0312 0x3dbc AIDA64Driver - ok
23:52:31.0314 0x3dbc [ D0905D4A945D01D4B28DB9E1BD5985F7, CF389CBCD3B99D1BAE34A42F723F1005C32213A394F691978076D3DF1727715C ] AJRouter C:\WINDOWS\System32\AJRouter.dll
23:52:31.0327 0x3dbc AJRouter - ok
23:52:31.0331 0x3dbc [ 8FD51B3B35707A66080D7C8CB05E792D, FE52F3DC280D208FDDC75F6E3294B8D601E0D86F9BD3DB1ACC8FC296AC74C23B ] ALG C:\WINDOWS\System32\alg.exe
23:52:31.0344 0x3dbc ALG - ok
23:52:31.0348 0x3dbc [ DF21E05E41E5AC3F13F304D91457649A, 7F48F2AD1DBE89A261113C76D7C23AD7D87D5599BCC31F8A558A8A10B81BF521 ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
23:52:31.0362 0x3dbc AmdK8 - ok
23:52:31.0366 0x3dbc [ 45D0AA4BB90B821DF92E8F19ABED0C5E, EA87A6E98DB3C5A88A844C04C6934E870B7004E783AA5211722115382A211B90 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
23:52:31.0378 0x3dbc AmdPPM - ok
23:52:31.0381 0x3dbc [ 74FFBC43B4B899C9A8CA06A892F2CE73, 8D599363C7F3D373F1859BAA4D06DD0F40BE78B56BE52B74DE6EA6EF99452004 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
23:52:31.0390 0x3dbc amdsata - ok
23:52:31.0397 0x3dbc [ AAB0F1D8D7E54761ABAB13AF161F1680, CF847990EFFA2828F5B1DB1A68F08A6C2C918E9612EDFFCF95C36BCABBBEA272 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
23:52:31.0409 0x3dbc amdsbs - ok
23:52:31.0412 0x3dbc [ F91BAAC4237C40352A807000F3B716F9, F7EFA08E5067C3D419C9D21EDB880BA08883A80DDF35F8B42EC3AB293FE5E03E ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
23:52:31.0419 0x3dbc amdxata - ok
23:52:31.0424 0x3dbc [ BC121C099C6C659126AD2102AFDFF8CF, 42B5EE293BDD7ADCE48173A01B30D8452564B9DA225EAF25E9292FE77C0FCF3E ] AppID C:\WINDOWS\system32\drivers\appid.sys
23:52:31.0433 0x3dbc AppID - ok
23:52:31.0437 0x3dbc [ 74A24CF946279111D7F203B36569EC02, FD67D36804744B4FE3E20BA891852575E6C2DA6515643B2F4B4210118B0FCCDA ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
23:52:31.0454 0x3dbc AppIDSvc - ok
23:52:31.0458 0x3dbc [ 73FAA5517CCD1332F00192A303CF2026, 75636222BFF381A3EECA010752DF7DC1603A395B91FF7FBF92127B5CA8EFFEE5 ] Appinfo C:\WINDOWS\System32\appinfo.dll
23:52:31.0471 0x3dbc Appinfo - ok
23:52:31.0477 0x3dbc [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:52:31.0484 0x3dbc Apple Mobile Device Service - ok
23:52:31.0486 0x3dbc [ 68190E2BADF23BD782344970E5B5DE9E, 95D30EC12C7FDF5822CED8BC2F17669A6687A2FB262B4F0D15C8DCFF4E9AB33D ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
23:52:31.0520 0x3dbc applockerfltr - ok
23:52:31.0530 0x3dbc [ A0746EF6C5AB7A17A67BC167167499C1, 1D2154D3AFC5219293EDD508C7726E7756FB72BF04F73861C575D1FE5C553411 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
23:52:31.0552 0x3dbc AppReadiness - ok
23:52:31.0583 0x3dbc [ D70B1453ADA82A92E76EAE72D936A0F6, 439DBC5818025887343D4B5B509C7D2C97ED0FFA4641A5178EA5719C50E5013F ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
23:52:31.0636 0x3dbc AppXSvc - ok
23:52:31.0642 0x3dbc [ E6AB1F0B4C3D4E0D2A88332D76FECD03, 0D3003EB979DA4546DCDD055011E24F13E34F683F02C9801CAC564D1809F11D2 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
23:52:31.0652 0x3dbc arcsas - ok
23:52:31.0657 0x3dbc [ DB5BCB7FDD2361761F326AF1587238BE, B72E919B803AFAB7F773898FB8E0490C5B1F5B00D039BBD0E414E262DDDAF9BB ] asmthub3 C:\WINDOWS\System32\drivers\asmthub3.sys
23:52:31.0664 0x3dbc asmthub3 - ok
23:52:31.0674 0x3dbc [ B3BE4EA529F24F0D30EDED0B8903629F, AE4BB925D32E290F6B0D0C9F710FDF44D43EFFE85456FAE74267E9452B526A3F ] asmtxhci C:\WINDOWS\System32\drivers\asmtxhci.sys
23:52:31.0685 0x3dbc asmtxhci - ok
23:52:31.0700 0x3dbc [ 5EE26734A882478AF6696092E2E0F352, 6CACFF521B3B839F73EBEB6EFBFDCCA8A8BC319DDB254BE3EFE29A39040B2C26 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:52:31.0709 0x3dbc aspnet_state - ok
23:52:31.0712 0x3dbc [ 61C5A480C43E7E8E49C42869F49D0D3E, E610F0E4315ABA1D90AD4A1D7A68ABA2ACBB7FCA89E9D1798470365D52592D55 ] AsyncMac C:\WINDOWS\System32\drivers\asyncmac.sys
23:52:31.0725 0x3dbc AsyncMac - ok
23:52:31.0729 0x3dbc [ A10F989A812B57B9695F6C305907C9C6, E2B292610079AA1A10696138DE8130905A8A834B75A8DED7EBF8B6732B77A0F4 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
23:52:31.0738 0x3dbc atapi - ok
23:52:31.0745 0x3dbc [ 2DC3D53FFA0D10EB8C911AE2DB7BF4CF, 8E0A4B5D610D487A216E70396A99ACC1BEA12C46A6681B1A39CD0FD01EDD406A ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
23:52:31.0764 0x3dbc AudioEndpointBuilder - ok
23:52:31.0778 0x3dbc [ 7B993290E7691C446C16A56A431669BA, 004551934E27E9FC1A939C9BD1DEB850A216CBED9B18CB3317920F5656D9F6BF ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
23:52:31.0806 0x3dbc Audiosrv - ok
23:52:31.0834 0x3dbc [ DA978AB6E0AAEA82235C943DEED3484C, 42A3ADB76B9E5F7309992C9737956CBE1706DD0FEC9565F493EDD104D8E64C97 ] avc3 C:\WINDOWS\system32\DRIVERS\avc3.sys
23:52:31.0861 0x3dbc avc3 - ok
23:52:31.0879 0x3dbc [ 09A3015AEA14CF9A4ECDE1CEA6AFE0AA, 77A58DE0961F1C2BD9627A975EF661A63EA5E4A3361433353408EABCE6869317 ] avckf C:\WINDOWS\system32\DRIVERS\avckf.sys
23:52:31.0896 0x3dbc avckf - ok
23:52:31.0900 0x3dbc [ 6D90FDA2DC364B8EA1420F2F81585CC3, 10E6F23A213CFE49BE04BB7D366ADD4028D61D7114FEC67C30B5467DF6B36D4F ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
23:52:31.0913 0x3dbc AxInstSV - ok
23:52:31.0922 0x3dbc [ 61BAC67048CA5C1D08C48FCC8012B613, 71B2A466FC38DA1029B471FBD2541D8FE359751A7B212AE0F420DB3645916450 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
23:52:31.0938 0x3dbc b06bdrv - ok
23:52:31.0942 0x3dbc [ 68F72B05EBC6D1779C0D60A147C7CA0B, AA1C857BEE34865C6B901157FC22570D4CF45D950708BAD7AA333F120F2B474C ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
23:52:31.0955 0x3dbc BasicDisplay - ok
23:52:31.0958 0x3dbc [ 23156E7EDAF613D839E2839746B168D3, CAEF8F9C7D3A338BD747AC9D5BFBE730D77B911E87BCF532EBB75E1F80916AFA ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
23:52:31.0968 0x3dbc BasicRender - ok
23:52:31.0972 0x3dbc [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn C:\WINDOWS\System32\drivers\bcmfn.sys
23:52:31.0981 0x3dbc bcmfn - ok
23:52:31.0984 0x3dbc [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
23:52:31.0994 0x3dbc bcmfn2 - ok
23:52:31.0996 0x3dbc [ 3701D3BF4AC12EAACB1F58847C1D32FC, 29F3DA7E4C1706934BE92D03CB6F633C47D0251E5580958E823B6148DA5E5E73 ] bdelam C:\WINDOWS\system32\drivers\bdelam.sys
23:52:32.0005 0x3dbc bdelam - ok
23:52:32.0012 0x3dbc [ 2B4D3AEAAD02954F8C191BC2D67949AD, 8237C9AD556CFAF7442FF60F78608104BC17CE3134C89D986D49C38CC60B1518 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
23:52:32.0030 0x3dbc BDESVC - ok
23:52:32.0037 0x3dbc [ 14F686FA27C2914128031504B70D2B5E, BED77F4A6DC8B30ADB698FBCC00153D924310188EFBE22ADD2BAA3321C746556 ] bdfwfpf C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
23:52:32.0045 0x3dbc bdfwfpf - ok
23:52:32.0048 0x3dbc [ D8FAF7CFBC81E5E15CA7A7EC8EE1B409, 75E60DF2147DFB109E628FDF80EB1BFA5360E5935BB9237B67053588F906E1B1 ] BDVEDISK C:\WINDOWS\system32\DRIVERS\bdvedisk.sys
23:52:32.0056 0x3dbc BDVEDISK - ok
23:52:32.0059 0x3dbc [ 0A508274355745EEF01C6BE3198D02C4, E2DB08AEE2368FA95FDB357BB31EA4EBF31679C3E72E109DB3D7CD1B5F7B828E ] Beep C:\WINDOWS\system32\drivers\Beep.sys
23:52:32.0070 0x3dbc Beep - ok
23:52:32.0085 0x3dbc [ 5125CBB61AC81168366BEB290399CB8E, B2A3095D45E2114DE2BD0E5A3AE20B3CE95EE517A35B9E1EAD05E231F38DBDCF ] BFE C:\WINDOWS\System32\bfe.dll
23:52:32.0111 0x3dbc BFE - ok
23:52:32.0127 0x3dbc [ D876C567AB767258036F05E4766189FD, DE8BA67325CB64495BD454B8F9DDCAE82636253844FC68B360C7E1CF5D51DD0E ] BITS C:\WINDOWS\System32\qmgr.dll
23:52:32.0162 0x3dbc BITS - ok
23:52:32.0171 0x3dbc [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:52:32.0182 0x3dbc Bonjour Service - ok
23:52:32.0185 0x3dbc [ 9CD2A4821DE379305CACB2E99AD8953A, 89D700DFC3C59ACBBADB48954A28C0EBF8D6A11A9E63837689DD891868E43188 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
23:52:32.0203 0x3dbc bowser - ok
23:52:32.0215 0x3dbc [ 2447BD15B41298622CC662249CD0F496, 013A326D2E3BF68D654BBABE2F1E5DF0FF0A153A4B95D570EE28F9BC0F5A78C3 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
23:52:32.0251 0x3dbc BrokerInfrastructure - ok
23:52:32.0256 0x3dbc [ B3F32C630DD3F2F6A6091B89CFF13641, 7A9C53EF9AB9FF1DC392FD711B194A101DB36CA5BC799E817BEB446741089B76 ] Browser C:\WINDOWS\System32\browser.dll
23:52:32.0269 0x3dbc Browser - ok
23:52:32.0272 0x3dbc [ 722036C26D2C4E50EC2A2EC5FD678846, 999468038AE01F0FF6881F4B2A2CB67BC636641188E95F10729E08ADBC3CB3DE ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
23:52:32.0284 0x3dbc BthAvrcpTg - ok
23:52:32.0289 0x3dbc [ C2E31BE025D46D189E38DD1EDF07837A, 656528DCAAAF485EC57EE5C3021E96736634DE3B9C39CBCD2728E055ABD4C0A5 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
23:52:32.0300 0x3dbc BthHFEnum - ok
23:52:32.0303 0x3dbc [ F7CD605FC0B0B22F3F6F247595E3A655, 1CD9140DE5415DDBEACD8667E63E5C95FD64D693B56302A0474E693E578BEAB0 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
23:52:32.0312 0x3dbc bthhfhid - ok
23:52:32.0320 0x3dbc [ B157D72BDA6A6DD6E9DC6BF338CD0CF8, B2AC26AE214151E5AD93DED78256BC0295DBF0133C854E7DEE4CD776D9C9A349 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
23:52:32.0335 0x3dbc BthHFSrv - ok
23:52:32.0338 0x3dbc [ 535DC41A33630AE4C262406F9E981C03, 599332589AA28D04189E19B87A4AE6FEEB60B40A7BC6E3B11240DA363A981C29 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
23:52:32.0349 0x3dbc BTHMODEM - ok
23:52:32.0354 0x3dbc [ 96932F631F5CB9F5D1C8F99A71568EF3, 5E4C8955A2EE9DC76B4EBC383653EB753D76D6B017E1A5DD553AC16094D7F12A ] bthserv C:\WINDOWS\system32\bthserv.dll
23:52:32.0368 0x3dbc bthserv - ok
23:52:32.0371 0x3dbc [ 23F9EF739F685E07482116425E7879AA, 0EBDF96A49A319C0BCF6F51FB6C8C392C017E1738B950C19C91FF43E14D73143 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
23:52:32.0383 0x3dbc buttonconverter - ok
23:52:32.0387 0x3dbc [ 60EB6A4CE3E21887D302350631C16F26, 4270EFA22285C1A9336CF1220761E416950D2DA9C6A40D1D8452686CD5040DAB ] CapImg C:\WINDOWS\System32\drivers\capimg.sys
23:52:32.0400 0x3dbc CapImg - ok
23:52:32.0404 0x3dbc [ F8FB51B9EF6372610E9B31A1D86B62FC, 7461584A8B39AC549AD7BAFFA509D4CD81EEE542808BC8EFC285863A0AE6432D ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
23:52:32.0418 0x3dbc cdfs - ok
23:52:32.0426 0x3dbc [ 2E6612376D257F74781F2EF1F869D8C3, 908B0DECB9F098F7F11B029A03C06C67FB52E5E8BEA42033A2B579D3B3686AB8 ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
23:52:32.0445 0x3dbc CDPSvc - ok
23:52:32.0455 0x3dbc [ A93C9B9EBE2FDE5A536000D72CC17F7F, 9793CFAE8BE8C6B5B39A1D276577965FBB2CE131325A410B7C68BD23492ADAAF ] CDPUserSvc C:\WINDOWS\System32\CDPUserSvc.dll
23:52:32.0471 0x3dbc CDPUserSvc - ok
23:52:32.0477 0x3dbc [ 613D0137C269187FA298A157E3D14A18, 84BC268525F14BB27202CE242BF94D9E83BC91B50A0335908574F31B29A2F04D ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
23:52:32.0489 0x3dbc cdrom - ok
23:52:32.0501 0x3dbc [ C1B5EE58E759C53F9939581709DC70BB, 85095ABC9459A766832373BC3839E573E9A73C967F8427D6B7CAB972551C3191 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
23:52:32.0516 0x3dbc CertPropSvc - ok
23:52:32.0519 0x3dbc [ CF3FFDA7B06A62DC018AFF75B4749FF4, B9ECE0A37CA4A389114737EADF68334DBF6A77214E8794ADFC6F83AD42F90D56 ] chip1click C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
23:52:32.0534 0x3dbc chip1click - detected UnsignedFile.Multi.Generic ( 1 )
23:52:32.0622 0x3dbc chip1click ( UnsignedFile.Multi.Generic ) - warning
23:52:32.0622 0x3dbc Force sending object to P2P due to detect: chip1click
23:52:32.0812 0x3dbc Object send P2P result: true
23:52:32.0918 0x3dbc [ 0AED948DA8D5F08B3D6F12E4E2089736, 95E538E81DDBC83492C5F3820C82C78F050B4D74ACF12D7970EC84F93581AE29 ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
23:52:32.0931 0x3dbc cht4iscsi - ok
23:52:32.0960 0x3dbc [ 0002A0FDE087C1657AB31CE73077539C, 4DD6210B67E9633AB3240371590869DC833A4C986C74FC12A5D4FFFFD361848A ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
23:52:32.0998 0x3dbc cht4vbd - ok
23:52:33.0003 0x3dbc [ 6B4F90A287D75CCD78694F6790C911B2, 73D7C31E9F475FA3FD568FCA9A953F968729AA114F63C06F38BF5198DAD67BD8 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
23:52:33.0014 0x3dbc circlass - ok
23:52:33.0021 0x3dbc [ B72D26074E72A757D788FB1BEF8B2F2E, 36847C5315AFB9A5EC66AD3EF2A09C24C0FAF669FDF0831F78600F4609352CB4 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
23:52:33.0034 0x3dbc CLFS - ok
23:52:33.0087 0x3dbc [ 069565979759A32A7E7FFF1541906B3F, E840AA394EB60120F8E6C4E7880A7F061070CAC5CC9AB1F74F88F65A6572BE08 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
23:52:33.0142 0x3dbc ClickToRunSvc - ok
23:52:33.0157 0x3dbc [ E133CFCBFABB3CB517BE9F42FEA5887C, DA699CDD5F3CC427354540C907BD24CCA7BAC3112C53918EB611CB4EEC7611DA ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
23:52:33.0176 0x3dbc ClipSVC - ok
23:52:33.0179 0x3dbc [ EEC3A4A98AE1A337E3CD1483AD6F2E15, 764DA329984A95E092F5C15116DA34FA7FC27216C0862365D4BF10ADC97EC5C5 ] clreg C:\WINDOWS\System32\drivers\registry.sys
23:52:33.0192 0x3dbc clreg - ok
23:52:33.0198 0x3dbc [ 429623E266EF067A44E8CF148E9DFB9B, A48AA85ACC52C7AD73DB2D6148B3F9FB5EAC33C8F8C5BB6D7D0A9D84B7C08E11 ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
23:52:33.0209 0x3dbc CmBatt - ok
23:52:33.0259 0x3dbc [ BC52C29F562125AE078B95A7C7158909, 5FFFAC73D38BAF94B6A8917D97373BD89BEAD89149E7F4ACD8EBB41DE2F47BD7 ] CMUSBDAC C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys
23:52:33.0332 0x3dbc CMUSBDAC - ok
23:52:33.0345 0x3dbc [ 90C07EB909C42316982E753BDAA7860D, 438581FD3468FAF01D35529672201A920E8821EC80E30E59A43645DA57738F21 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
23:52:33.0361 0x3dbc CNG - ok
23:52:33.0364 0x3dbc [ 3DB10C59405931E2C72EFB82C1AF97D1, 100B5450A70988DB1C1F8A5FDBB3553AF1A0D47B42A5AC71460DB92E26010CE6 ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
23:52:33.0372 0x3dbc cnghwassist - ok
23:52:33.0381 0x3dbc [ 34C935AF2A414572B412B3556586D783, 912981B88B0796576ECCD5EBE0C4728EC02D5D6A96B039447DCBA59B2583F25E ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys
23:52:33.0391 0x3dbc CompositeBus - ok
23:52:33.0394 0x3dbc COMSysApp - ok
23:52:33.0397 0x3dbc [ 44EEEB2382F566999287E13F2067693C, 53A4A0C85EAD38030FF2078C67465E3710ECD03A08FF34E1E67B2E3E1CC70043 ] condrv C:\WINDOWS\system32\drivers\condrv.sys
23:52:33.0404 0x3dbc condrv - ok
23:52:33.0416 0x3dbc [ 080AABDC5443DDC3FEF7C5D1F61B1633, 527FAF676170932E9C62D7C0EB6B4BB3664605CFCA2CD4C24F7E32D4F1065377 ] CoordinatorServiceHost C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe
23:52:33.0426 0x3dbc CoordinatorServiceHost - ok
23:52:33.0438 0x3dbc [ 5DE2049D5F57C1D142F36FA9CE443693, E6C2807C0B1EF90C11EB39634693B76EACE6CC675777776112835212A334F328 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
23:52:33.0458 0x3dbc CoreMessagingRegistrar - ok
23:52:33.0502 0x3dbc [ BF581E9EB91BACE0B02A2C5A54BF1419, 8D57E416EA4BB855B78A2FF3C80DE1DFBB5DC5EE9BFBDDDB23E46BD8619287E2 ] cpuz139 C:\Users\MARVIN~1\AppData\Local\Temp\cpuz139\cpuz139_x64.sys
23:52:33.0509 0x3dbc cpuz139 - ok
23:52:33.0551 0x3dbc [ DB72DEF618CBC3C5F9AA82F091B54250, DED2927F9A4E64EEFD09D0CABA78E94F309E3A6292841AE81D5528CAB109F95D ] cpuz141 C:\Users\MARVIN~1\AppData\Local\Temp\cpuz141\cpuz141_x64.sys
23:52:33.0556 0x3dbc cpuz141 - ok
23:52:33.0574 0x3dbc [ 5F06CAC4B09250CDDDD0180A08162924, A2EB0A57225E65FC264CFC9FAD858D8B54A015CDAE3DC904B1C4E9AAB40B1F06 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
23:52:33.0588 0x3dbc CryptSvc - ok
23:52:33.0594 0x3dbc [ 039B5A8CBD5C75D1C46DF15F7C74D136, A5C8A41F2D406D37E147939F2058373ED091BFCC00CA7E829F887638CD3A2F64 ] dam C:\WINDOWS\system32\drivers\dam.sys
23:52:33.0601 0x3dbc dam - ok
23:52:33.0616 0x3dbc [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
23:52:33.0643 0x3dbc DcomLaunch - ok
23:52:33.0649 0x3dbc [ AE9F09F87755C18904656CB4F59F351D, B352A43B3B68B497D87B49C302AF3F37F36D56D49878AE3785C3D43597E5DC57 ] DcpSvc C:\WINDOWS\system32\dcpsvc.dll
23:52:33.0664 0x3dbc DcpSvc - ok
23:52:33.0677 0x3dbc [ ABBD3EE724117242E28D31F19FBCFF03, 68EA91A969DD80A5DE28B0A8EAEB308837183713559C2C2FAEF991858C971393 ] defragsvc C:\WINDOWS\System32\defragsvc.dll
23:52:33.0698 0x3dbc defragsvc - ok
23:52:33.0707 0x3dbc [ DD74F18227ACC837D9856E24282D446D, 6A760E44CD897952538CDFA8895FE11263D51AAA79CFF24C01F3862E919DA478 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
23:52:33.0725 0x3dbc DeviceAssociationService - ok
23:52:33.0730 0x3dbc [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
23:52:33.0745 0x3dbc DeviceInstall - ok
23:52:33.0798 0x3dbc [ 0B24043732807EE3AA25389356F4DE7C, 6A9A65B38968FF704C3938BEF5E6C1226447FF4F78997473B1694EA8D3D519DF ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
23:52:33.0847 0x3dbc DevoloNetworkService - ok
23:52:33.0853 0x3dbc [ CDF1B1B5C5951111791C236B2696C7F8, BF6C4BA545C8827B40DB69890DB4D2B2F9C583C5E3CFBDFD370B05891141458D ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
23:52:33.0863 0x3dbc DevQueryBroker - ok
23:52:33.0868 0x3dbc [ 0D1D392ED2597F295956D058D33BD7C3, 2F7FE5A06D880F9E2A46C9803DD249DC40C2898C04E946D14E7EECCCC9F2B24F ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
23:52:33.0881 0x3dbc Dfsc - ok
23:52:33.0888 0x3dbc [ F0D4400BA0F08610D9A551B15BF10B76, 83EB8FB272FC2DD2CC0659C2FB90AD0DAE88A88AB3951E03BCD933A25B601E10 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
23:52:33.0906 0x3dbc Dhcp - ok
23:52:33.0911 0x3dbc [ CA7FEDDFCF61EF15A09C54DA2C07C49F, 346EF7709BA9E6BD48592B86FA46F9D956C847EF91F4980EEAD98269D0F0EF67 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
23:52:33.0923 0x3dbc diagnosticshub.standardcollector.service - ok
23:52:33.0951 0x3dbc [ CAD14E0AD1F03397E9B1C8733D76BEF4, 0035EF35F6520B1DF0E599C8A06D4163C52576BCE0976BF729B44DECDC506627 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
23:52:34.0000 0x3dbc DiagTrack - ok
23:52:34.0004 0x3dbc [ 35B9D46560339A5A7F0CAC6ED702C817, F70480B01533B7029F90E2DE297E9E829660300DDE7A7D009B0AC2684E7691A7 ] disk C:\WINDOWS\system32\drivers\disk.sys
23:52:34.0012 0x3dbc disk - ok
23:52:34.0020 0x3dbc [ 09CF47A74BFB480B8262FCEE222004B6, F5CD0ACA04BCB95984595CC2E17BC9E92865091A0A3BCAD4B06438A1570E7696 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
23:52:34.0038 0x3dbc DmEnrollmentSvc - ok
23:52:34.0041 0x3dbc [ 815F45161A4571C2C44491564F3D5968, 32E7AE8414A178CE429C0CDFCF718E3C11C705FB3155EA5CA0EAD48AAE507B01 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
23:52:34.0051 0x3dbc dmvsc - ok
23:52:34.0054 0x3dbc [ 6E5EE6E420FECD64DE463C5F01CBFE71, F173C56895E80AA03D70CD78B3AB659C2EEAACFF43BE3B6EF3939D6F4AD4F62D ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
23:52:34.0074 0x3dbc dmwappushservice - ok
23:52:34.0080 0x3dbc [ 7F8A3ABF7750326E18CE953CCE262670, 5DBD159E8A455A42764FC73CF7DCAC849B5896848C5589B00BD36697804C0A3B ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
23:52:34.0095 0x3dbc Dnscache - ok
23:52:34.0102 0x3dbc [ 8F46B4C3F9BA19C26A26D0A11137B20B, BA0A66DBA98D77FD85A7CD2D4593F2B2A1A3B4D32BBECBCFFBEB5A54DCB0D8ED ] dot3svc C:\WINDOWS\System32\dot3svc.dll
23:52:34.0117 0x3dbc dot3svc - ok
23:52:34.0122 0x3dbc [ CA09EAEE92C6FDDC6B05057F11A0372D, 14DB5C186B69644AA93C445BF31CC9670204F95A47B77B6EACB19B4A316378AD ] DPS C:\WINDOWS\system32\dps.dll
23:52:34.0136 0x3dbc DPS - ok
23:52:34.0138 0x3dbc [ AE6BD4C879A8C849E53947C92DF3B3A0, 8C29774CB2D30D901C54AAC0C8ACE709351EE40E5C8FB9951B2A18B4A03F28B7 ] drmkaud C:\WINDOWS\system32\DRIVERS\drmkaud.sys
23:52:34.0146 0x3dbc drmkaud - ok
23:52:34.0151 0x3dbc [ 7433474BE77F065D2FA628671FE31A3E, 063ADDC68F48036749E6EC7B2F66284DB29F90F62E9468D16B4EF5A0FDC45E35 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
23:52:34.0169 0x3dbc DsmSvc - ok
23:52:34.0173 0x3dbc [ 5FCA45C24501DA7390065D3706A9FC3F, 093FD840F1502ECC6F05B9723CA523B3F15CF39A5D2B9106E1267739B3F2C52C ] DsSvc C:\WINDOWS\System32\DsSvc.dll
23:52:34.0186 0x3dbc DsSvc - ok
23:52:34.0217 0x3dbc [ 19F2B54EE8861D90579BD0E3AE5182F9, FDD4F091C61C8C20550C8F68375ABD7ED718A733F680F0F0367D4796C302BA14 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
23:52:34.0255 0x3dbc DXGKrnl - ok
23:52:34.0266 0x3dbc [ 83E4A14F851341C933C3235BFB882ECA, 152EDEF6B566D010FE519FE4B046050A5281069B48AFF8A2395D7D2BD0519701 ] e1iexpress C:\WINDOWS\System32\drivers\e1i63x64.sys
23:52:34.0285 0x3dbc e1iexpress - ok
23:52:34.0290 0x3dbc [ 9FCE4EF7D5E274F862D9A2526B5F4779, 81D42D5475C2801C8E0C233A0BA827569D8A70590017C91C665C8B232D9BFAA9 ] EapHost C:\WINDOWS\System32\eapsvc.dll
23:52:34.0303 0x3dbc EapHost - ok
23:52:34.0348 0x3dbc [ 7EC6FC0266D74BD47ABB130A328B70EC, 3856790AF967AB03B1A89F97328DC4D5A6854ACDA6169681A9AFB03D7CF791F9 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
23:52:34.0403 0x3dbc ebdrv - ok
23:52:34.0409 0x3dbc [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] EFS C:\WINDOWS\System32\lsass.exe
23:52:34.0417 0x3dbc EFS - ok
23:52:34.0421 0x3dbc [ 8D74B8B5D6F7C5BC4C525BAF2B083FF1, DA5656F745B3911F96871887FDFDC40F4D9C820622A0AA27EFE4BA93662833CA ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
23:52:34.0429 0x3dbc EhStorClass - ok
23:52:34.0433 0x3dbc [ 2A9817B5A9260D8F60D52E36BEF10443, AC1A0203221AFAF584C71317FA07AA1B6E61BE619E918B3B1E4AD57CCED1CF03 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
23:52:34.0441 0x3dbc EhStorTcgDrv - ok
23:52:34.0446 0x3dbc [ 80A7999DE02CE678B865832E1CE78CD6, 2576EBB6E4D630A906DE724F125099E52A962B5B68B9F9BCA849A7B29D8C8689 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
23:52:34.0459 0x3dbc embeddedmode - ok
23:52:34.0465 0x3dbc [ 3CE2B6AECB9AF8BC159299EEC46A35CA, E933B28BB6E4D01FCCDF8FBBB134C244B28DA3ECBDFA13333F0D4C24B2551780 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
23:52:34.0481 0x3dbc EntAppSvc - ok
23:52:34.0483 0x3dbc [ 77B60DEC7DCB4233E4A69D3F52E5DB24, 3A5C905E37A93899051497C90E5BA8E1D003B56C6906CADFD2F1CDF52052D248 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
23:52:34.0493 0x3dbc ErrDev - ok
23:52:34.0505 0x3dbc [ F89083AB8B9F51C0031C1CBD0A9A7E35, 9EE973A25134960E62D1A6A1E34AD9B3F7690E71C1AD31A23FA2081A73438754 ] EventSystem C:\WINDOWS\system32\es.dll
23:52:34.0524 0x3dbc EventSystem - ok
23:52:34.0530 0x3dbc [ 53734BC626275D4F1DE4F5024B25B455, 542DA20E0E694A1792921264AF21873E1479399351AF6E500DC8B13029A34908 ] ewserver C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
23:52:34.0537 0x3dbc ewserver - ok
23:52:34.0541 0x3dbc [ 251AF86E0A4DDF3A6B181ED5103B06B1, 1823E7C87F0D8972A89D71B1FB633C5D43744F9803E6A8B866F6EA610032437C ] ewusbnet C:\WINDOWS\System32\drivers\ewusbnet.sys
23:52:34.0554 0x3dbc ewusbnet - ok
23:52:34.0571 0x3dbc [ FCD2C63754C2E739A8EEAD9BC63F9DDC, C57A72ABA4C0BD71F914B9C8FF965DCFF585A205498F19A4584A4BAF7674839D ] exfat C:\WINDOWS\system32\drivers\exfat.sys
23:52:34.0587 0x3dbc exfat - ok
23:52:34.0594 0x3dbc [ FA918EC296EB410FF02867D008D02421, 23D164A24CB0D212778FA9592A046B6BA1F3628003E04181744A1F891B5B3E5A ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
23:52:34.0605 0x3dbc fastfat - ok
23:52:34.0616 0x3dbc [ 77CE56471AF984800F318F3734D768C7, 72D540072374A56C2C497F0532A50705D3F0637F2C0C96B1D715F2EDFCA3AA2D ] Fax C:\WINDOWS\system32\fxssvc.exe
23:52:34.0638 0x3dbc Fax - ok
23:52:34.0642 0x3dbc [ 99598ECA5E41996E005D5B9D9FF1EFA2, 91345CD50EF02431B69093505C1C5F5DC6A1AA6BF192EE9392ED4D5626B60462 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
23:52:34.0651 0x3dbc fdc - ok
23:52:34.0654 0x3dbc [ EF0DD43A4CBAB367BCA1AFBDC9971E4F, 73E161C45D63FDDE71EE2438137913724DC513860539D1E7F6BD861F5D1B33F3 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
23:52:34.0668 0x3dbc fdPHost - ok
23:52:34.0671 0x3dbc [ 34DAC585994CD3B4E910DE11C584EF3D, A6C6A4CB5413EA61F1A54E2D3AD71A311CEA2C26218544D2D2D4A5CFEC52DE8C ] FDResPub C:\WINDOWS\system32\fdrespub.dll
23:52:34.0683 0x3dbc FDResPub - ok
23:52:34.0687 0x3dbc [ B68DA1FE3CA2311AFD38DD6905CA7F71, 4B395DFB1B47D2507CA4D9DC996A70D0A3BDB1A245CD6DA6C42B2A299AFCCF37 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
23:52:34.0700 0x3dbc fhsvc - ok
23:52:34.0703 0x3dbc [ F44F666B0EACC3181544FFCF8CA0FFC7, 83F771CF9DAE1C504B30731EEC55355EA1253174252DA2192ADF1D228B3735C3 ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
23:52:34.0714 0x3dbc FileCrypt - ok
23:52:34.0717 0x3dbc [ 78A210DDFDF2C9EC884631D2DAA573F0, 5D39C6EF4AC690A9749EEDBE2478FFF15A22877A2861EDA103C7BF1607B0C1BD ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
23:52:34.0725 0x3dbc FileInfo - ok
23:52:34.0728 0x3dbc [ 1A97DB5E701A186989F3795223C3BE39, F7982220D4DF7E104955E63CACE352394E2577DEF49506EA126127F820EB62DF ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
23:52:34.0740 0x3dbc Filetrace - ok
23:52:34.0756 0x3dbc [ 00EDB531DFB127197D625204B138269B, 0CE6536344CE30F06C6CD04BEB202C935B10439200B9CE792B4440D2EE3CB9D9 ] FlexNet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
23:52:34.0774 0x3dbc FlexNet Licensing Service - ok
23:52:34.0796 0x3dbc [ 668D43EFEB7F129584100CF6320E8A6F, 093254127A63420F93001BA63CF323AA4C17A38914D5B991E31F3B8C1971E9D7 ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
23:52:34.0818 0x3dbc FlexNet Licensing Service 64 - ok
23:52:34.0822 0x3dbc [ 46626665F0E5906E45619B4EFD6186B8, 37FDD3B8AD49FD29E54DA5567EA77F28A53498AE56348F7A2628E5E5549D638B ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
23:52:34.0831 0x3dbc flpydisk - ok
23:52:34.0839 0x3dbc [ FDA72ACA14D516D18C33AFCD0FD9260F, 6509612DEC82EA74614B5C9A7B432305A1A468C97B88BED9E141DF2929B621B1 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
23:52:34.0851 0x3dbc FltMgr - ok
23:52:34.0904 0x3dbc [ 49BF5C8182C3D2D6CD9F7EEDF1CFDB66, 0977EBE86B57FC370D27CA69D58122397D5D5369AF0C8DBCC492AE7AD55CBA2B ] FontCache C:\WINDOWS\system32\FntCache.dll
23:52:34.0951 0x3dbc FontCache - ok
23:52:34.0964 0x3dbc [ 59241194DBDF30A2B4029E402F377900, 47A92E9CD8494C403B377799D395670A393766647E24CD83B15338CE2AA50266 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:52:34.0969 0x3dbc FontCache3.0.0.0 - ok
23:52:34.0989 0x3dbc [ 8B52024D3A5C3A12F1C4D75D30A976C5, 982F1C783966C9A6D255AA7DBAB6D225EBE0050A36176B8DE85E8ADBFE17FDF1 ] FrameServer C:\WINDOWS\system32\FrameServer.dll
23:52:35.0022 0x3dbc FrameServer - ok
23:52:35.0033 0x3dbc [ D152CCBFC8251670BF0AAFE00D6BC782, 9DE82D8FC4E1DAF8FF23EE08C0B7CB5051A9224E64544D262CFA4996A41B04E1 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
23:52:35.0040 0x3dbc FsDepends - ok
23:52:35.0043 0x3dbc [ 6D6BB5C7363CD35FA715E826F3D029EE, C214F791EB39E8B25CE57ED9D6C1D56EE1AF6021BCB380980BD42A6338A6C9F7 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
23:52:35.0050 0x3dbc Fs_Rec - ok
23:52:35.0063 0x3dbc [ 50282D57EBD66F8CA6E21AB0D6BFA2B4, 77CDE183F0BB86E83AABB8EEE21BA6F48565FF3E2763B078A88416C882C19151 ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
23:52:35.0073 0x3dbc Futuremark SystemInfo Service - ok
23:52:35.0093 0x3dbc [ 8EEC4925C03E375C4EC496E45C44139A, 06C5C7BCC28D3E435675F0759A09CAB726E971DF4BFC1DC3DCF503EABCDCCCC6 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
23:52:35.0109 0x3dbc fvevol - ok
23:52:35.0112 0x3dbc [ EF78034773CE506323655A868C949144, DF195BEEE6704FBCC6D2D9E1BF6723E52ED502A1459F495B7D18481E6A79B5BC ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
23:52:35.0123 0x3dbc gencounter - ok
23:52:35.0137 0x3dbc [ B55FEBC6A00DAA1FE074F020B6907516, 67071FBAC2ABA47AB71358A5F08E92E034A55343878F00137E90B3B1F7362976 ] genericusbfn C:\WINDOWS\System32\drivers\genericusbfn.sys
23:52:35.0148 0x3dbc genericusbfn - ok
23:52:35.0166 0x3dbc [ BDA6549A7E5255396A5CB41CE2905668, 1877F31F184AFACF24A92C4956307E40C745F36ACD8488F2DCBA0FAE2B0484AD ] GoProDeviceDetectionService C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
23:52:35.0171 0x3dbc GoProDeviceDetectionService - ok
23:52:35.0176 0x3dbc [ DDD8A8CDDC7F13EF57D1DAAE71865936, 9D472A8689F72F24D40D5B94849690F53C67849FDF6162A94EF4FB330A3DA566 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
23:52:35.0185 0x3dbc GPIOClx0101 - ok
23:52:35.0210 0x3dbc [ 713A176494CEC107E663CAD6C2B27F77, 76871D8CFBA8FCD8CFF96208AE84C658EBEC60270D978898B90EE9451AA1BCE1 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
23:52:35.0253 0x3dbc gpsvc - ok
23:52:35.0256 0x3dbc [ 7ACD8F69B5D6EC97E6D2C006E19BED88, FC69214C9308EA64B88EF4C3C95800586DDBB44C8540846B79A161BAD8203B6E ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
23:52:35.0277 0x3dbc GpuEnergyDrv - ok
23:52:35.0281 0x3dbc [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:52:35.0287 0x3dbc gupdate - ok
23:52:35.0290 0x3dbc [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:52:35.0295 0x3dbc gupdatem - ok
23:52:35.0304 0x3dbc [ F72818A52CBB5A9E8B2C9E350638A945, BB8E637DA21C911465FB13D7D28AAAE80691EA824146EEEA4AB94F86E5203567 ] gzflt C:\WINDOWS\system32\DRIVERS\gzflt.sys
23:52:35.0311 0x3dbc gzflt - ok
23:52:35.0327 0x3dbc [ 10E3515FE5DBA6656FA62C29342EC4A1, 2051F10F74ED712B1766EB61E87FADE25AB3D0970BABFD320600D1B0D6377F26 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
23:52:35.0340 0x3dbc HDAudBus - ok
23:52:35.0354 0x3dbc [ B90D284B97CD4CA9DE7430AAAD887A56, 2F14F985C39B7801ED64590979CF2114924E9547F5B11D2B37A74DBFFDD9E7C5 ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
23:52:35.0361 0x3dbc HidBatt - ok
23:52:35.0365 0x3dbc [ B2FE11643CC6ACDEE6C247DD36018FDB, 5796613C7DBF8B2A9E860E006FF1A245B6BE7D10E3F6685AD142B48E5C237B8C ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
23:52:35.0391 0x3dbc HidBth - ok
23:52:35.0399 0x3dbc [ D24355488A2D4D2323518EC1AC7A6D9E, ED2176A2093726087EDDA25B86E9CDD4BA35F4E748E3A6DE0B15C4C97646B5C7 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
23:52:35.0409 0x3dbc hidi2c - ok
23:52:35.0423 0x3dbc [ 0AF9ABBA4F3F55C6C803890D64BC3C29, D3DE6FA308F8E7CD4F16387F46AE4B2F7EC9BBA07BF87652B660A0D645710571 ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
23:52:35.0431 0x3dbc hidinterrupt - ok
23:52:35.0434 0x3dbc [ CDBCF8E9AB06D88A1E1191D32F320C5D, F76963AB7CF2BAB3A220013879AECD3976BFD851CFB66B5A69A9EA2541048861 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
23:52:35.0444 0x3dbc HidIr - ok
23:52:35.0451 0x3dbc [ C900FE0DD6A1E2220084B8F1C427790C, 802194EBEDA1A50EDA300078B0888AAC1F17A42E67147B7B3B9C50AD8D4E5C89 ] hidserv C:\WINDOWS\system32\hidserv.dll
23:52:35.0464 0x3dbc hidserv - ok
23:52:35.0468 0x3dbc [ D8536CB438CC4CCDAE047B768EED22B2, 4F666BFA3554F9ACA6B9D436BFA64474D5F30FB3E78F4E66068CCDF283D9867F ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
23:52:35.0489 0x3dbc HidUsb - ok
23:52:35.0497 0x3dbc [ 0AC1BD5A28FAA371EF34859FE703E515, 1DD1C33AF8D6EBE7C36FCD051F066E4039D2B47ABAECF7C68BC3933D567930B2 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
23:52:35.0516 0x3dbc HomeGroupListener - ok
23:52:35.0525 0x3dbc [ 86161A89F16851728802590EC7C92608, 3A3B05BB4E115410D27063B30C0EF3F18295F542050F329F1E466C81A9E23A46 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
23:52:35.0545 0x3dbc HomeGroupProvider - ok
23:52:35.0555 0x3dbc [ F5CA18197B4646E04DB9EB2D6642CC4D, 5BA3342DDF1BCB67E4156169FE9A33E7BC2641C729E9F1A80C0E80953C6AB114 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
23:52:35.0562 0x3dbc HpSAMD - ok
23:52:35.0585 0x3dbc [ A10C7C1E69FC90620C7BF2E51302A01F, D725AEAE38255CED73F4922A10F226215528706580B06D01C228488F93AC0397 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
23:52:35.0607 0x3dbc HTTP - ok
23:52:35.0611 0x3dbc [ 0C84C250F80EAEC2C9768464CC1A9626, 212E1003B78F9B98FEB084FD1FDB59B26A9DE4C9120F24D4361FBBF0F3C035E7 ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
23:52:35.0634 0x3dbc HvHost - ok
23:52:35.0645 0x3dbc [ 74FC79C52395B10FFD0B55CF22CF88FC, 94D977DA2092EE8C2A598AC48758A84BB22CB6378BD114C2D3B4172A07A9CACC ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
23:52:35.0652 0x3dbc hvservice - ok
23:52:35.0663 0x3dbc [ 4B5C07DB91A0099272FAAE732E1152BD, E0408F85A2E1E310F5143A01A34456F120875D21E0E9D0A9F9EBC96514CFC47C ] hwdatacard C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
23:52:35.0685 0x3dbc hwdatacard - ok
23:52:35.0694 0x3dbc [ 771EDDA9830A3079F996F34D681FB6E5, F452AD656872A1C8B2D6DCE232CE01EBD456C46F4934A7601E78470F2A2CBF38 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
23:52:35.0701 0x3dbc hwpolicy - ok
23:52:35.0711 0x3dbc [ 3B9F315E7FA72CC25228EB097DD9C694, B26F1E494428EF197A0C97645C05BB3CA093827A005D35C987F1D6778BC4E52C ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
23:52:35.0721 0x3dbc hyperkbd - ok
23:52:35.0734 0x3dbc [ B54B30992620C97230013A74461C8517, CAF09BDCDD6DE2A39CB8AE2C65E6F8FE12D8E93D84BBEF6C6A98F872BF54A4E3 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
23:52:35.0757 0x3dbc i8042prt - ok
23:52:35.0772 0x3dbc [ C6B8743B213F06AA60943D8366FE968F, 758954F70B810063914B243115B2C753B2BCE40190F95C30ACBA0BF04EBD5B33 ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
23:52:35.0781 0x3dbc iagpio - ok
23:52:35.0788 0x3dbc [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
23:52:35.0810 0x3dbc iai2c - ok
23:52:35.0825 0x3dbc [ 5A0E850F8CD17791A3E6A3CF81D0CA28, 10A965A49D53360DD250E0758B6BB142872298A21C732EB026ACB93492C5C6CF ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
23:52:35.0846 0x3dbc iaLPSS2i_GPIO2 - ok
23:52:35.0860 0x3dbc [ 7508F1096803385D6376BFD0BD473AC4, 1F32EC23CDC94DCB9710E6663B5C3BD83568545DDC2C741CFC13550A4E4DD2BE ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
23:52:35.0867 0x3dbc iaLPSS2i_I2C - ok
23:52:35.0879 0x3dbc [ 6BF4EA53040AAC9D42A6C4603F1EA069, 3951F7CE5E71D07E4CB3B29FDEA33F3B11403D228A12783BE062C1105EC29740 ] iaLPSS2_UART2 C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys
23:52:35.0889 0x3dbc iaLPSS2_UART2 - ok
23:52:35.0894 0x3dbc [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
23:52:35.0900 0x3dbc iaLPSSi_GPIO - ok
23:52:35.0912 0x3dbc [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
23:52:35.0924 0x3dbc iaLPSSi_I2C - ok
23:52:35.0943 0x3dbc [ 97E553D03219D3D51705C7235D9EAEBD, 5D4578C8804AF32D1DC0868E34D6538138DC15F9568CA7E21051B1C82C0D8D55 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
23:52:35.0960 0x3dbc iaStorAV - ok
23:52:35.0975 0x3dbc [ 8350FE3BCDE3428BC040877BB7E9EAEB, 77F9456351CA640C6B7862907C0580627E761EC807B551976A95657EB4D6CC20 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
23:52:35.0987 0x3dbc iaStorV - ok
23:52:35.0999 0x3dbc [ 3BA03F7C7700DDF4C383DDE9252F5817, 3E90F69D0010E7764349D9AE865D577E431FEBC67DA554B400BC808DD286E203 ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
23:52:36.0014 0x3dbc ibbus - ok
23:52:36.0019 0x3dbc [ A54B6E75CA5A3C9E39200FE305649FB7, F86DCE0DAB3CF20149CEFD1D2BE215FAEC68FB6F0CD6F1B7C573FBAC363E0A2B ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
23:52:36.0027 0x3dbc ICCS - ok
23:52:36.0036 0x3dbc [ 231ADCE77616144B8E3D29707B282C82, D2429E0CAABE3E3A50D62DEC6C9F8D13AC8786EB57D9075489425E623EC84165 ] ICCWDT C:\WINDOWS\System32\drivers\ICCWDT.sys
23:52:36.0041 0x3dbc ICCWDT - ok
23:52:36.0054 0x3dbc [ 937AC47F7356554DA05D9722C356EB55, 9EABC9F19B4E1193B669D2674967F5C6F03FAD348EDF0615E3F78554FF9A83CC ] icssvc C:\WINDOWS\System32\tetheringservice.dll
23:52:36.0076 0x3dbc icssvc - ok
23:52:36.0108 0x3dbc [ F2934208C0E50C0B971A7981AB90BED2, B936BFBBD71E731CC2CDB8B47D262F2EF09726FF921C2DA0841910CA2401423D ] IKEEXT C:\WINDOWS\System32\ikeext.dll
23:52:36.0135 0x3dbc IKEEXT - ok
23:52:36.0143 0x3dbc [ 2A01C96DF5802D3434634E55C91232D8, A3ABEF36E2FD2CF5C371ADBF92566A09669A1D990ABE4677370F57F2EEAF8121 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
23:52:36.0153 0x3dbc IndirectKmd - ok
23:52:36.0259 0x3dbc [ 39200ECEFB50612B13B5D16545BEB201, B093B3A2E2B26ACA64B5DB526C492DFB73AB2F03321E1A3D3CE0EE88920DEAF6 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
23:52:36.0321 0x3dbc IntcAzAudAddService - ok
23:52:36.0353 0x3dbc [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
23:52:36.0370 0x3dbc Intel(R) Capability Licensing Service TCP IP Interface - ok
23:52:36.0383 0x3dbc [ EC9E1151E74E3A4F65526D6775C3D675, 88FFCA08C71F29E82A901D0ED83B29146CC66F3D6B0D22AD6DF07130AD4964A8 ] Intel(R) PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
23:52:36.0393 0x3dbc Intel(R) PROSet Monitoring Service - ok
23:52:36.0401 0x3dbc [ 8213094EA736A9C575AB0E22AD09B0BA, 12670A466B5AA37283BD4CB481D000DE3AE2A8D1BD159F67A41703A6FE5675EC ] Intel(R) Security Assist C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
23:52:36.0434 0x3dbc Intel(R) Security Assist - detected UnsignedFile.Multi.Generic ( 1 )
23:52:36.0481 0x3dbc Detect skipped due to KSN trusted
23:52:36.0481 0x3dbc Intel(R) Security Assist - ok
23:52:36.0485 0x3dbc [ 9F7E87F6595D065A8A200A291043045E, 6944F72F73EADC6C9B7691F2C1C6DF1898F22C88EFA78EC0BA8CB5FFD9CE057B ] intelide C:\WINDOWS\system32\drivers\intelide.sys
23:52:36.0491 0x3dbc intelide - ok
23:52:36.0504 0x3dbc [ A6BD2E20AE1BC5CB2776C87C28E4F4CA, BD8BE67CED9A4982D785CE9ECBEFE868C3A2E37DF7F9592B9F9049B807A1554B ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
23:52:36.0511 0x3dbc intelpep - ok
23:52:36.0524 0x3dbc [ 2A48DA39542636DB0FA3BA915385D1B3, 6CA0916F5F4B1E81AE6A6233276320599BFA7C129267177703E3BB6468FB4683 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
23:52:36.0545 0x3dbc intelppm - ok
23:52:36.0558 0x3dbc [ 1619EE2C1FC5684C526D6F0D7DD40F50, B771ED85A4596A5C3D137AA440FB1B1F12CA8091E5304C741B8840C24DF1B35F ] iocbios2 C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys
23:52:36.0565 0x3dbc iocbios2 - ok
23:52:36.0576 0x3dbc [ DB32758F3A7F6CCE81A5430080A2EA65, 36A26BAA884E96804F8EA0B12BB3E81BBE6D4EE704809904091445F36CAB5A29 ] iorate C:\WINDOWS\system32\drivers\iorate.sys
23:52:36.0599 0x3dbc iorate - ok
23:52:36.0602 0x3dbc [ 44A9B60ECA9F6D760E0292E56127BCED, 1795EBC766D1F29D4F279967D7B08ADC2C673ABD7DD1BC157D2A05BCA6B65986 ] ipadtst C:\Program Files (x86)\MSI\Super Charger\ipadtst_64.sys
23:52:36.0607 0x3dbc ipadtst - ok
23:52:36.0610 0x3dbc [ FE85D0A86CA7A5A99CF8CD04DE7F80AE, 544C01FC01EE728EB5667158207E5F4418FE77A88BA318192A834722DB766F4E ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
23:52:36.0622 0x3dbc IpFilterDriver - ok
23:52:36.0645 0x3dbc [ EF1BB0EF8A12C32DD88C409706B8145E, 7AEDE717C258C29592CC8AEC40F61617E5382646E5141E1C0941882ACE5C5758 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
23:52:36.0673 0x3dbc iphlpsvc - ok
23:52:36.0677 0x3dbc [ 450DBDD716C7911F83E05F78EE18BFA2, 43C0DA172F632131898F315A53DEDD1AE99FB0620AB32B3A5B99FEC498C9AAE5 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
23:52:36.0684 0x3dbc IPMIDRV - ok
23:52:36.0692 0x3dbc [ F1DAECC3B3D6399875D4F10529D6A77C, 6533D2F858816BE6570C998510919FCA2904EC6EF806F61C1FD325E88133111B ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
23:52:36.0704 0x3dbc IPNAT - ok
23:52:36.0729 0x3dbc [ A9E19D4C0E9487544B0A87D511514DA9, 83767BA2A7EE1DE39DBF824B57D898355F8C5E3CE146CA280B0E336428837E70 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:52:36.0744 0x3dbc iPod Service - ok
23:52:36.0760 0x3dbc [ 45F14ACEA013C63A070AC5DB19677620, F60D48E7456800E311B2B7FABB3C03919D47971230C743A118982FDE07E04847 ] IpOverUsbSvc C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
23:52:36.0765 0x3dbc IpOverUsbSvc - ok
23:52:36.0780 0x3dbc [ 7475A2903BB704B446AA6309E34D3362, C94643A1626A9716015EBA7041A1224098501EB7DAA704CBFCAD3DC6F3CFC6AF ] irda C:\WINDOWS\system32\drivers\irda.sys
23:52:36.0791 0x3dbc irda - ok
23:52:36.0798 0x3dbc [ 9725E7F0C64CE9916A5CDABE8D6E13C3, 04AF9E48FEF208A2850DF28352E8FDCBF4018982C72C0F67EE12C048C4070116 ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
23:52:36.0807 0x3dbc IRENUM - ok
23:52:36.0816 0x3dbc [ 8C604213A2E73088BFFE6CD2E6F1AE53, B4C4FEE4D398A29F72EC27D5668071D7E68CD943FFFC38624DD5DF5BEBDF46D3 ] irmon C:\WINDOWS\System32\irmon.dll
23:52:36.0826 0x3dbc irmon - ok
23:52:36.0834 0x3dbc [ 1DFC3CCA51785254C5604238BB1A5467, 31451A90A91AEE14C6B24F84CB9816E5C77179D411B8B3E8547F538235BEEFB0 ] isaHelperSvc C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
23:52:36.0840 0x3dbc isaHelperSvc - detected UnsignedFile.Multi.Generic ( 1 )
23:52:37.0099 0x3dbc Detect skipped due to KSN trusted
23:52:37.0099 0x3dbc isaHelperSvc - ok
23:52:37.0103 0x3dbc [ 58040898883A96160D41739C80328BBF, 7F85C91C905811416E266A263DDEFCDCB0B45376AAE51B551AB636C16577DB9F ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
23:52:37.0110 0x3dbc isapnp - ok
23:52:37.0117 0x3dbc [ C9FD02D62E09337B67B0C61EC8CA38CC, DC77E935ECC8474BE9018F0937CB11C137073582B20A0EE107CE247FD9E1F9C1 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
23:52:37.0127 0x3dbc iScsiPrt - ok
23:52:37.0133 0x3dbc [ C6E0E37B6AC972400F29A4A5251D4AAA, 777F51B0CE38CEF2E16792ACBB5B7801275C229CD11308AEC1658A8DDFF05456 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
23:52:37.0141 0x3dbc jhi_service - ok
23:52:37.0144 0x3dbc [ 210808437570BDDEE71A43535E3A2D30, EF5DE6EE4FF58F44CDE4D4E7F298ABBC9086EC05CC3AE4903060DA878115AC1E ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
23:52:37.0151 0x3dbc kbdclass - ok
23:52:37.0156 0x3dbc [ 0B779E9FC426CA2268D28181FA6C222F, 83292023A688C3044D096F22242EB954B7F7511BE8341D45FF0AFBD9CB9BCB4E ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
23:52:37.0165 0x3dbc kbdhid - ok
23:52:37.0168 0x3dbc [ 813BA3EB2CE038F2A5382DDD75CAD60B, 99FA444027CAC247B54317730D54AB0C4C000AE076B97E47470FDA9834594312 ] kdnic C:\WINDOWS\System32\drivers\kdnic.sys
23:52:37.0177 0x3dbc kdnic - ok
23:52:37.0180 0x3dbc [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] KeyIso C:\WINDOWS\system32\lsass.exe
23:52:37.0188 0x3dbc KeyIso - ok
23:52:37.0195 0x3dbc [ 705C0F8BCCEF6E7CB704CCB454192D7E, FC608C708E2C3BF7A66E57B95E19E71E5F5C87EF359D8BC1A817500B45DF9338 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
23:52:37.0203 0x3dbc KSecDD - ok
23:52:37.0211 0x3dbc [ 55AD13E2BAFC5AB53A10F8C271F5D242, 058BEF14DCB95574BCAB985F04737BA89483937E8D8A74F7B4CEAFB7400C2397 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
23:52:37.0220 0x3dbc KSecPkg - ok
23:52:37.0223 0x3dbc [ 4ED115CD1A1099705F56B5E0FFF97CC6, 9CC49DF2CD6AAAE405BA661D13EFC1E05111D1DE3D1E50C39C425AF1F075610B ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
23:52:37.0236 0x3dbc ksthunk - ok
23:52:37.0244 0x3dbc [ 8125BDF7ADC261F75EF0CAD92456E350, 184797AA1D58C4FF743BA60D48590B88B781EE7779205E45E0679DEC79F3E185 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
23:52:37.0261 0x3dbc KtmRm - ok
23:52:37.0268 0x3dbc [ 8CCAB08815B50AD78B823DB3F96C8604, 265E6D582EB7207B5CC577D61CB7BC3646F613047F168CD69BB776C37780EBF5 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
23:52:37.0284 0x3dbc LanmanServer - ok
23:52:37.0291 0x3dbc [ 33DBBCF71F68EA97D9FD34E4C9AB5AC6, 104F04A1560E75EB224A3825707CE51E8798ABD764F5CC3B854FFFC93A39AF60 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
23:52:37.0307 0x3dbc LanmanWorkstation - ok
23:52:37.0311 0x3dbc [ F8EBAA1FE6D3BF84752931DE1BFA0E2A, 2F3C512712BA709BBBBD779D9E792DBE324876C402CDCEF0345B8B7ABE1D232A ] lfsvc C:\WINDOWS\System32\lfsvc.dll
23:52:37.0322 0x3dbc lfsvc - ok
23:52:37.0325 0x3dbc [ 5A23E4BE0CCF49663C4CF7EB74C20278, 9DF91014B13B7CED1C3D409F90858FD03EFC5C4347C98901B4DF0AFF2B77845D ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
23:52:37.0336 0x3dbc LicenseManager - ok
23:52:37.0339 0x3dbc [ 5933A6673F00D8255C52957E40C2D601, 0AA1281F8B3F97E360592D1B35EE7D3D614F1AB46007F9884CFFB1C5E647575E ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
23:52:37.0350 0x3dbc lltdio - ok
23:52:37.0356 0x3dbc [ 88A3C935725FA6EA1A228DCC26CF9C6F, 9B1F70644EEFA1EE7CE151A8A970430087339B7A6345F2E0252370929D4AFAC6 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
23:52:37.0370 0x3dbc lltdsvc - ok
23:52:37.0373 0x3dbc [ 3F858E28AEE6545FA1B64134DFD5C2CE, FFD7B4FB0A7B61BC6B76A172134673842F2CF00E96FA3ED4A8273DC525B6BB92 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
23:52:37.0386 0x3dbc lmhosts - ok
23:52:37.0394 0x3dbc [ 5AD9D814037E4B3171947140AFA35B36, 5F17308961507C81786A5852AF4EAD5811F64540AEB872E6F0A379D6F83DEE77 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
23:52:37.0405 0x3dbc LMS - ok
23:52:37.0410 0x3dbc [ 8E1B0946948CCC0BC1FA3CB70374A795, 0B894C129A35E223FF9594725AC90916CBD597FAD2211A18FC2AE03EA8679597 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
23:52:37.0419 0x3dbc LSI_SAS - ok
23:52:37.0423 0x3dbc [ 4F68163FC04C973500DC4DA0946917B0, DF060C29109EB3978CEDFE781999B0C4C1E8C0FDB133428058D8400C53315EEC ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
23:52:37.0431 0x3dbc LSI_SAS2i - ok
23:52:37.0435 0x3dbc [ E5AC5F2815938651CDCC27F425474673, 3AF0598982153C36A766506FA088F7B84333CC96FEBB050402547AFC613AF9F7 ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
23:52:37.0443 0x3dbc LSI_SAS3i - ok
23:52:37.0446 0x3dbc [ CCF6EC9FB9B8F18E05B4253E81013E48, EBE8D77FEE8B99BD8C29702404774D554673C96DF3FDF3DCEA9C99E22C2709FC ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
23:52:37.0454 0x3dbc LSI_SSS - ok
23:52:37.0465 0x3dbc [ D5EFC0BAEC21EDE6FE03D377D403B421, 41BE71AF7C896FD4C51EF7E3871AAB769164DFB8050DA43E48C7A100711414B4 ] LSM C:\WINDOWS\System32\lsm.dll
23:52:37.0488 0x3dbc LSM - ok
23:52:37.0492 0x3dbc [ C9579D32219E5B936AC3A48D470117EC, E61A77191B6BA25D29B1221FEBBE826BBC11F825C0E35A72B4CEFFF8B7FE59A8 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
23:52:37.0505 0x3dbc luafv - ok
23:52:37.0508 0x3dbc [ CAAF0CD70FEE7C5110B1E62804E41B17, 48482A6C8D2296C4DC613304637C8DBB7DD1DB39326F27650EBCA6FD2793BCFD ] MapsBroker C:\WINDOWS\System32\moshost.dll
23:52:37.0521 0x3dbc MapsBroker - ok
23:52:37.0529 0x3dbc [ 47701ECA633574E122687693B5C5D35C, 1DB12767462347504956450FAD0D90B6E682E2E8959A6C5DF3792C3C3DA289B1 ] mbamchameleon C:\WINDOWS\system32\drivers\mbamchameleon.sys
23:52:37.0535 0x3dbc mbamchameleon - ok
23:52:37.0541 0x3dbc [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
23:52:37.0548 0x3dbc MBAMSwissArmy - ok
23:52:37.0551 0x3dbc [ 1674722A97DD82B55F850DFB0719A3C1, D0AA4D480CD6D024BD8D7FD38485DB3EC0FA3F289DB5C161A79238D8A8452C17 ] McNeelUpdate c:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe
23:52:37.0556 0x3dbc McNeelUpdate - ok
23:52:37.0560 0x3dbc [ C3CDCCF07486BD2616A7B82946E07AC0, 1EF95DAB2DA856BC7D7573B2EB2D9006DF337F827F0B56A161D0C97F45DB755E ] megasas C:\WINDOWS\system32\drivers\megasas.sys
23:52:37.0567 0x3dbc megasas - ok
23:52:37.0570 0x3dbc [ 2CF0CB2A0ED68C5455371E84C16F9627, 1C9166B52140145F1968E83E52BFF041250811B23C770FE181A18A4BA060CA81 ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
23:52:37.0577 0x3dbc megasas2i - ok
23:52:37.0587 0x3dbc [ FADB2FE017E69EECE0E1BA78661C2E8C, BE99B49031D8B4B670B6F6B6E829E54406779CF6F1D8AFE8AB79A73E6764AB2F ] megasr C:\WINDOWS\system32\drivers\megasr.sys
23:52:37.0602 0x3dbc megasr - ok
23:52:37.0608 0x3dbc [ 86F565B0D41EBCCE7256B812F3A0442B, BACB5753D4501679B0C3D5D6B2D2D5233EC6B5BF76D0C2BD616EC460D5B9918F ] MEIx64 C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
23:52:37.0616 0x3dbc MEIx64 - ok
23:52:37.0619 0x3dbc [ 55A417C3E41F2A98666CF929EC19108E, A38C262B2863C87E4151525BF26D6AC16E7982D370E2C6998EB15C88C4BC8254 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
23:52:37.0630 0x3dbc MessagingService - ok
23:52:37.0645 0x3dbc [ FD60818B66B2E8A5415EA840E99A9D8F, 5D2F22909354534B821D958FBEF6A40EB4F642F53C7B509D00949096EF716F36 ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
23:52:37.0664 0x3dbc mlx4_bus - ok
23:52:37.0667 0x3dbc [ 68F6977F1CFBAAC770D940A8C0326FA1, 90EE1E7DAC680EAA5AD50E9B0B9FD8FCE8DD6A02D5EF941B5AA5084CBD40BB80 ] MMCSS C:\WINDOWS\system32\drivers\mmcss.sys
23:52:37.0678 0x3dbc MMCSS - ok
23:52:37.0680 0x3dbc [ 0D50B3F3AB32D416786B58D4553859CE, 9DA4D7A30982E8B31C45BDB721AEF5240EAD9DA6839CF34FDDBCF123BF104F2C ] Modem C:\WINDOWS\system32\drivers\modem.sys
23:52:37.0690 0x3dbc Modem - ok
23:52:37.0694 0x3dbc [ 9CCCB7FC3EDADEBA461D78615A6011A6, C120B58F25E8CCFD971EB78645C0682F367AD56DC15F2D8C1980CE75B04719DF ] monitor C:\WINDOWS\System32\drivers\monitor.sys
23:52:37.0703 0x3dbc monitor - ok
23:52:37.0707 0x3dbc [ C030F9E822A057C1A7A9BB4EA3E8877E, 2CCEC87DEB972B6B0196A08D3781002929E9107137FE3A61F1626D3BEE26630A ] MotioninJoyXFilter C:\WINDOWS\System32\drivers\MijXfilt.sys
23:52:37.0718 0x3dbc MotioninJoyXFilter - detected UnsignedFile.Multi.Generic ( 1 )
23:52:37.0769 0x3dbc Detect skipped due to KSN trusted
23:52:37.0769 0x3dbc MotioninJoyXFilter - ok
23:52:37.0773 0x3dbc [ 27A07B2FB2E3057DA8DAEA4F25D843C7, 09D2B39E6B9AAEC879E5871DD6BCFF2AEF0B894F3B44649665A685F8B3CA6F27 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
23:52:37.0780 0x3dbc mouclass - ok
23:52:37.0783 0x3dbc [ 7BD6E7F7C9001AB21B8362CFFEE80B25, C470C3363EEF3A60409A5934988BFB9B72AE7C2BB63CC2C2D006D7EB1C797F6A ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
23:52:37.0793 0x3dbc mouhid - ok
23:52:37.0797 0x3dbc [ F5BDAEE4B7D369D4C74668DCFBA3FF10, 100F39288E56AFE0D39D1CC235BDC9F3727C873CD3114E092DA7A08810BD3EB2 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
23:52:37.0805 0x3dbc mountmgr - ok
23:52:37.0809 0x3dbc [ 30844BD376F9D01E62C820BEF446F1F8, 910D672EDB544A20AEB4450B4D89830F46EDD28CE0021156176315C5D068A1B4 ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
23:52:37.0820 0x3dbc mpsdrv - ok
23:52:37.0833 0x3dbc [ 779CFDB17EA07A6D26FEBBAC95B65772, 74D9542E8DCCD07396A45A45D2F500AA6F9DCC1DB785A6153EB3067E42F576A4 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
23:52:37.0860 0x3dbc MpsSvc - ok
23:52:37.0867 0x3dbc [ 25D32BE04FE0A23FDF57FD5382757672, 64E39E3E21D9173FB1116B989D80C244C49DA827698A05AF5CC5CD1C6AE155DE ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
23:52:37.0880 0x3dbc MRxDAV - ok
23:52:37.0889 0x3dbc [ E671EDAB0726E05ECEF4058B4CD73C4D, 9F4C50E635CE2204E3291C8D3D7F658A969E80722B8B6F0304228D9B434C20EA ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
23:52:37.0902 0x3dbc mrxsmb - ok
23:52:37.0909 0x3dbc [ D4D12BC29DE0F09280868FDCA65B3474, A6FE89ABD52087FEE52FDF31DDF4CB627ED400E94FDA86BEBF1D4763F1E42518 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
23:52:37.0923 0x3dbc mrxsmb10 - ok
23:52:37.0929 0x3dbc [ 93A77008A8932FC84A173C4E97E52874, B7510CF7998C538D68BD2ECDC512A0BFC7CB7362F598EE4110F728427AFF0F5A ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
23:52:37.0939 0x3dbc mrxsmb20 - ok
23:52:37.0943 0x3dbc [ 74C9D21523DAE0C18F413C196DF0058A, 3DB4B8CA368D9DD82FAE2C2BC828A21142C8D29780A7C8667188C447519FF702 ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
23:52:37.0954 0x3dbc MsBridge - ok
23:52:37.0959 0x3dbc [ 308F08347923DEEDE7BC03EC7D485841, 72DB45CA11FE635DF9F8273C38CBEFB8DF5362ADA0CBF6D2B1E570365DC700C0 ] MSDTC C:\WINDOWS\System32\msdtc.exe
23:52:37.0971 0x3dbc MSDTC - ok
23:52:37.0975 0x3dbc [ F01B849D9D4A8CEAF32D4FDBD0B83C92, D2473AC4C6E6C03DEF13EA73EC78FB878BDC95C047651BF79A16C9DEA82AD046 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
23:52:37.0987 0x3dbc Msfs - ok
23:52:37.0990 0x3dbc [ 22ECD8F5D1DFADF2011BBB1700CB871D, 8F9EFF51137394EFA5471B8A29C541710063B65806B075B4925A84D5B6BC3BBB ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
23:52:37.0997 0x3dbc msgpiowin32 - ok
23:52:38.0000 0x3dbc [ FD870F6968A145E4D2BA8A8842686B03, 34B8F601F3B5E42B4D0A41E2AF7DB4EB4E5B627DA8DA9A2A2D46B153AF23AEB1 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
23:52:38.0010 0x3dbc mshidkmdf - ok
23:52:38.0012 0x3dbc [ 30364757963A028CE5DF0FBAAC270173, C72588A6A52FF8E418A15D2C407A4DB7EA768585423720145F8253D5CA519DC2 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
23:52:38.0021 0x3dbc mshidumdf - ok
23:52:38.0102 0x3dbc [ 4B6359620C14A08C0FC9359FDC892837, 4B78EEE95B03BEF122527B8A7DBED26F5FADD677C71C61CB71272E3FDC86D9DF ] MSIClock_CC E:\Programme\Command Center\ClockGen\MSIClockService.exe
23:52:38.0134 0x3dbc MSIClock_CC - ok
23:52:38.0177 0x3dbc [ A90C198A5B1C2E14AEB5B77EB29765A1, EB0361A0CBE1CAAF20682214707097B82CD5FB2BC3D077C9C9B40A4D19816D99 ] MSICOMM_CC E:\Programme\Command Center\MSICommService.exe
23:52:38.0210 0x3dbc MSICOMM_CC - ok
23:52:38.0281 0x3dbc [ 400CECFB6E8993FC64E1282B28A12E11, 0F5F67A3AB7943FD1C2751FD7A3E5F3684033217775548A54C9B7220E94CEF7C ] MSICPU_CC E:\Programme\Command Center\CPU\MSICPUService.exe
23:52:38.0337 0x3dbc MSICPU_CC - ok
23:52:38.0379 0x3dbc [ 894984D2168D8E1C49255610FC3574ED, BA6E95ADD4D7645C05E57C1DC5651E91D7F67D51F023316CDBA81EAC24389304 ] MSICTL_CC E:\Programme\Command Center\MSIControlService.exe
23:52:38.0409 0x3dbc MSICTL_CC - ok
23:52:38.0464 0x3dbc [ D40F54FD5C6271D60FA442F91780C493, 1E2C28C9E05F391964509DC77A4A103E9844C9D61E945B54EFE970FE2541B4D6 ] MSIDDR_CC E:\Programme\Command Center\DDR\MSIDDRService.exe
23:52:38.0497 0x3dbc MSIDDR_CC - ok
23:52:38.0501 0x3dbc [ 6BB0FEDDAE7135FA37FFAFF4D9E0E876, B41A3C0FFDFC493D6325ED493445AFCED04EC9DFF2B38125616FC5419AD1ACC4 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
23:52:38.0508 0x3dbc msisadrv - ok
23:52:38.0512 0x3dbc [ 07E3E54734B14F43A4A95A849C0A0DE2, 314AA02EA84D267B32DBAEBEA6C1AC1A266DED1E8D35A17B41D1D2AC75E8049E ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
23:52:38.0542 0x3dbc MSiSCSI - ok
23:52:38.0545 0x3dbc msiserver - ok
23:52:38.0579 0x3dbc [ 9F9B6E7DE1E31139E299521CB3015C04, B87E09C15F0EF9E9750C151107B071E0235062F7B3ADB228F6ECF5F4508EA5D7 ] MSISMB_CC E:\Programme\Command Center\SMBus\MSISMBService.exe
23:52:38.0609 0x3dbc MSISMB_CC - ok
23:52:38.0629 0x3dbc [ C162C7E1C354E620BB4C1CC886161AEB, 67E9298E5B535E731E017E8FE0CA4CB383A18D7557D7F4D504B6E3C2EC1FF90E ] MSISuperIO_CC E:\Programme\Command Center\SuperIO\MSISuperIOService.exe
23:52:38.0640 0x3dbc MSISuperIO_CC - ok
23:52:38.0647 0x3dbc [ 263015394A2CAD3F49DDC12985E05C8E, 880A8C25E1FB461B62B344D6A68C6E5688202FD9BF9F22D0C64B938FC7B84D41 ] MSI_SuperCharger C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
23:52:38.0653 0x3dbc MSI_SuperCharger - ok
23:52:38.0656 0x3dbc [ 13D614E6B51ECF36746C48CE829FA7F6, CAD63C0A4F7110093F84C58252C5803F14E3FC46584B79DA17EC86D49FEAEA64 ] MSKSSRV C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
23:52:38.0676 0x3dbc MSKSSRV - ok
23:52:38.0680 0x3dbc [ 642CDE46351D5D2D90311E77072AB46D, B2D3033E607BA2F6E6B9CFB1CBF154CD0CE910EA473C56343EC81B9B94044CCA ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
23:52:38.0701 0x3dbc MsLldp - ok
23:52:38.0703 0x3dbc [ F2302A5CE63CA7673200FAFCEEEDB6AF, B8C44FC2DC0332183DE325CDBF511101F3307225295EDD428CE575A8DE15C223 ] MSPCLOCK C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
23:52:38.0716 0x3dbc MSPCLOCK - ok
23:52:38.0720 0x3dbc [ 6114512EA26E835BA522C63635429DB5, 0F91CE41B4555316A79AEF3047C152D538CC9C7C329987C9FD0E3D961AFC87C8 ] MSPQM C:\WINDOWS\system32\DRIVERS\MSPQM.sys
23:52:38.0733 0x3dbc MSPQM - ok
23:52:38.0752 0x3dbc [ AA538E16E644D00E3BA5349BBA9598EC, 64A68B06883FE7ED34E04AB119BA819753F1222923EDD4E802C35D402B89D075 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
23:52:38.0764 0x3dbc MsRPC - ok
23:52:38.0774 0x3dbc [ 0543BEFD41EC4D25C7F7CF36409CEC7D, 631622CFEC49952C0470531B23FFFFF483DC0EFFEF7A97B1179A600392C05DDD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
23:52:38.0781 0x3dbc mssmbios - ok
23:52:38.0809 0x3dbc [ D89F2110A3C59F492CE80648BC645E79, 1EDB265554A19ADC5345BBD703C45C715E0C28D187490367221C11F117377B13 ] MSSQL$TEW_SQLEXPRESS C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
23:52:38.0819 0x3dbc MSSQL$TEW_SQLEXPRESS - ok
23:52:38.0831 0x3dbc [ C1569E4DB8EFE3617847BF041A3C842F, 99ADE5E7F50E04CAEC737F7F90741CCA8EE628996BA5EB6C6BC62184884429B6 ] MSTEE C:\WINDOWS\system32\DRIVERS\MSTEE.sys
23:52:38.0844 0x3dbc MSTEE - ok
23:52:38.0858 0x3dbc [ 130B16970154BA9876B09E5C4BAC63BE, BE3AF8FC5A26AB9C9DBA9C015C2E1FD3C4CD9CB423A2BBDABA91428BF8620553 ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
23:52:38.0867 0x3dbc MTConfig - ok
23:52:38.0885 0x3dbc [ 15D987C8F6CCD4AC94E070C5986762CB, 452FB0C48B86C7F8F53794CC2DDBF2B900B03A0383B2DE8F6A830F8CB0AFBAD8 ] Mup C:\WINDOWS\system32\Drivers\mup.sys
23:52:38.0893 0x3dbc Mup - ok
23:52:38.0897 0x3dbc [ 3D2C5B4995CA0751D32DEA0DE9FDFE44, A26958785FD9E05E2CA97078C9BB277CD44222BF5F7D9E8DC2F3F6AAAFFC6483 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
23:52:38.0904 0x3dbc mvumis - ok
23:52:38.0918 0x3dbc [ DB31EBB04C871F422C36A0962DA7D38B, B1BC2344744F537FB2C7D07B415F860195B7795E185253F05C0817A3764FEC10 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
23:52:38.0946 0x3dbc NativeWifiP - ok
23:52:38.0951 0x3dbc [ C3D9870E680D9D843B18F4626C3858FE, 43596CAC9FB488F810FBA954C52BC4D13F7D32028C40ACFE33DFD7EE36A65C17 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
23:52:38.0972 0x3dbc NcaSvc - ok
23:52:38.0978 0x3dbc [ 04CE2C0F0759EACD886BA4B658B60D5D, E34D0976FC5936C8629800D826DB127072D1DFC3D350EFACA3AA1B8119551762 ] NcbService C:\WINDOWS\System32\ncbservice.dll
23:52:39.0000 0x3dbc NcbService - ok
23:52:39.0004 0x3dbc [ E6094065008FE423377294050E7CEA2D, 86E200227256407530E2C28243DEFBC3CB6E9497644404D9AD79DA242286DF7B ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
23:52:39.0040 0x3dbc NcdAutoSetup - ok
23:52:39.0050 0x3dbc [ 629CB21AC49C8867E0F29DF1C16DB7B4, 20663E68C69D0A1A2FE99A0C2A9DEFABF49786A1DC8F7F4E1699458AF57D7E79 ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
23:52:39.0058 0x3dbc ndfltr - ok
23:52:39.0093 0x3dbc [ D5564FC81350458ED570528C4E3B1CCF, DD3C5012492EF9BCE3BE635BBB3AA40B3C5F5FDBD795A76B327D9C994102AC2B ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
23:52:39.0117 0x3dbc NDIS - ok
23:52:39.0121 0x3dbc [ 6DD605338FAAF6BA17662AA874E0D162, 636607829F5D7C3B7A4683C0A2DD594360D72F2AA3F8710153BE32575AE34A15 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
23:52:39.0143 0x3dbc NdisCap - ok
23:52:39.0147 0x3dbc [ E34196F285F8B8879E1FF36C31F7179E, 77A4F24F995D4C0689C43F9956E08DCEC62517E4F8B1B9EAA1852B5293DB5B9A ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
23:52:39.0169 0x3dbc NdisImPlatform - ok
23:52:39.0172 0x3dbc [ 1FAD2398673F30CEC616B89C46B7DCBA, 70302049E6AE2BC6B3A7A9DE54D3F940AD6A9771CC2EBCCEC65994E67A25ECB5 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
23:52:39.0184 0x3dbc NdisTapi - ok
23:52:39.0193 0x3dbc [ AEB8ECBE66CC46854066CB1F5623E179, 2F650A85A9DAE38887610C0B876621035616CEDB65D4BBBD7F1405616D218AAF ] Ndisuio C:\WINDOWS\system32\drivers\ndisuio.sys
23:52:39.0204 0x3dbc Ndisuio - ok
23:52:39.0207 0x3dbc [ 7340104C2BF2F126714F7CDE85E63610, 45B64EC6F3A4C43F7D74806789067658C6EF0D44D36B841F4D26E1EBC95AF66C ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
23:52:39.0226 0x3dbc NdisVirtualBus - ok
23:52:39.0232 0x3dbc [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] NdisWan C:\WINDOWS\System32\drivers\ndiswan.sys
23:52:39.0256 0x3dbc NdisWan - ok
23:52:39.0261 0x3dbc [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] ndiswanlegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:52:39.0276 0x3dbc ndiswanlegacy - ok
23:52:39.0280 0x3dbc [ 78A12E3DF035B5D054986949B19BE43C, AD9B34F89B9F27D473BD5FCE6694A40FCCB808B61ABEDD6F70F1AF6C7E73ABF8 ] ndproxy C:\WINDOWS\system32\DRIVERS\NDProxy.sys
23:52:39.0293 0x3dbc ndproxy - ok
23:52:39.0301 0x3dbc [ 04C8859355C1DC9C0FA198D1894D71C2, E7C67E73009341B5D402470C686781B3C7BBE2531CE26665E08E711B990B1A77 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
23:52:39.0316 0x3dbc Ndu - ok
23:52:39.0327 0x3dbc [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\WINDOWS\System32\drivers\netaapl64.sys
23:52:39.0332 0x3dbc Netaapl - detected UnsignedFile.Multi.Generic ( 1 )
23:52:39.0599 0x3dbc Detect skipped due to KSN trusted
23:52:39.0599 0x3dbc Netaapl - ok
23:52:39.0608 0x3dbc [ 6C76780A01FC2B885BD6E957B5C36B02, DB7834F03A765F65C773E772D8051AFADB22CA4B5074180AA397857A0C47A068 ] NetAdapterCx C:\WINDOWS\system32\drivers\NetAdapterCx.sys
23:52:39.0629 0x3dbc NetAdapterCx - ok
23:52:39.0640 0x3dbc [ 5D1513BD6430307C9DB86C6E351372ED, D2AB709CF7CFA5B857B084AFC821914A975B7DDDCE154229981F19448973BD6D ] NetBIOS C:\WINDOWS\system32\drivers\netbios.sys
23:52:39.0647 0x3dbc NetBIOS - ok
23:52:39.0659 0x3dbc [ 6FEBB0A847FFD5F057B9AC8889F1B9A7, 558BCC64C59079E6569F61CCE1219A124B3313FC4E6CB5CBCC94124D202FF19D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
23:52:39.0679 0x3dbc NetBT - ok
23:52:39.0690 0x3dbc [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] Netlogon C:\WINDOWS\system32\lsass.exe
23:52:39.0698 0x3dbc Netlogon - ok
23:52:39.0710 0x3dbc [ D3BF2DA9216A4CF22A97820A50A67EFF, D00CBE0A7ECFB449D9B48967A01EE56141404EBE229893D5A1710781AD5F2551 ] Netman C:\WINDOWS\System32\netman.dll
23:52:39.0732 0x3dbc Netman - ok
23:52:39.0747 0x3dbc [ F2645D51DD8AABC8BC72358409410437, 8CB97628923D6CEA6EFAD7E666BE92C154060BD108C28D46287A520A14B18ADA ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
23:52:39.0771 0x3dbc netprofm - ok
23:52:39.0785 0x3dbc [ D65F295A049473E6A39EA9A0EA76CA32, 274FC0BA044EB2D14093AB0E561F7FACEE06A3F433C81343C8B926FA2F9BD251 ] NetSetupSvc C:\WINDOWS\System32\NetSetupSvc.dll
23:52:39.0810 0x3dbc NetSetupSvc - ok
23:52:39.0829 0x3dbc [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:52:39.0853 0x3dbc NetTcpPortSharing - ok
23:52:39.0866 0x3dbc [ B996DE26A2E16053C9485F5905B05320, 30EB2CEB466A4F05A44F7CBFCDFD8CC3C27B5FCF1269C1B9410C48AB362D2A75 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
23:52:39.0890 0x3dbc NgcCtnrSvc - ok
23:52:39.0918 0x3dbc [ 54C31C2B815E2E26BB8158022F837C9C, CED660D1A58F635C6452F82FCB2EF8ACEEB7785E31617B2ADFD9EE69A2BDF2B8 ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
23:52:39.0950 0x3dbc NgcSvc - ok
23:52:39.0965 0x3dbc [ 9B9F520C72EE33EAEC857124BB800243, DFA9386B272F4D86F3E4BE861A2FC4617261E1AA40576DDA610FC24AB4961A63 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
23:52:39.0988 0x3dbc NlaSvc - ok
23:52:39.0999 0x3dbc [ 0178244D4CB8E9FD45FCC4D3136C7B7C, DDBF0B70B77C16B3EFB666BD7B0DD8263695B2A0B727C491E398E28EC55177BD ] NovaPdfServer C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
23:52:40.0004 0x3dbc NovaPdfServer - ok
23:52:40.0007 0x3dbc [ 001CBD7A2CD45C4EB39C01C3C677EF73, F4AAF4D60DB1232921C7811A62287B55C7C098B7A1FF9A40D88AF58A5ABECBA2 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
23:52:40.0017 0x3dbc Npfs - ok
23:52:40.0095 0x3dbc [ 49697C2C761ACB5C0DE99CC8FE93E95B, 02EEA7FB21D28B235A05FE0A6061170F366470EF6E45C9B21D7C8C0E7C728FC5 ] NPF_devolo C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys
23:52:40.0100 0x3dbc NPF_devolo - ok
23:52:40.0111 0x3dbc [ 90F5DC9802AAA00CD0B6E2AD9E7FFADC, 71C0777829299DECA6ACD42F38802DBE3C29A42CFBD8A396F39DFA44D1F55B6C ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
23:52:40.0122 0x3dbc npsvctrig - ok
23:52:40.0134 0x3dbc [ 1993C85962692EF7024501E7FE92D466, F5BCAA8308495EBF8BB061C2015E07C202A779668D171364D7E312975BC18B10 ] nsi C:\WINDOWS\system32\nsisvc.dll
|
|
14.01.2017, 00:03
| #9 |
| | Pop-up "There is a recommended update for your PC"Code:
ATTFilter 23:52:40.0155 0x3dbc nsi - ok
23:52:40.0165 0x3dbc [ 0C6218321A09A7B51BA7FFAFBA4CCB21, 330B3FA793A78410B28DFC8250BBF24442E3BB80434A7938BB96F02337614E0D ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
23:52:40.0174 0x3dbc nsiproxy - ok
23:52:40.0209 0x3dbc [ DB69C6DA8B3DDFDC547D455CA23A8250, AE495CEB18924C8B21F7F150FF17CD00880F2E222D7B5155661798E0535D63C4 ] NTFS C:\WINDOWS\system32\drivers\NTFS.sys
23:52:40.0248 0x3dbc NTFS - ok
23:52:40.0268 0x3dbc [ 23CF3DA010497EB2BF39A5C5A57E437C, 39CFDE7D401EFCE4F550E0A9461F5FC4D71FA07235E1336E4F0B4882BD76550E ] NTIOLib_1_0_3 C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys
23:52:40.0272 0x3dbc NTIOLib_1_0_3 - ok
23:52:40.0275 0x3dbc [ 6126065AF2FC2639473D12EE3C0C198E, 09BEDBF7A41E0F8DABE4F41D331DB58373CE15B2E9204540873A1884F38BDDE1 ] NTIOLib_ACTIVE_X C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NTIOLib_X64.sys
23:52:40.0280 0x3dbc NTIOLib_ACTIVE_X - ok
23:52:40.0296 0x3dbc [ 6CCE5BB9C8C2A8293DF2D3B1897941A2, 9254F012009D55F555418FF85F7D93B184AB7CB0E37AECDFDAB62CFE94DEA96B ] NTIOLib_MSIDDR_CC E:\Programme\Command Center\DDR\NTIOLib_X64.sys
23:52:40.0301 0x3dbc NTIOLib_MSIDDR_CC - ok
23:52:40.0311 0x3dbc nTuneService - ok
23:52:40.0313 0x3dbc [ 6E6DD6F9DD2A034CF85E94047DBDB992, 63D0A0756F551B7668D1CBAB24B29FD462C706E8A81690BC248D6C92061FE215 ] Null C:\WINDOWS\system32\drivers\Null.sys
23:52:40.0323 0x3dbc Null - ok
23:52:40.0343 0x3dbc [ 5CE986C82313E6F9D0973E2A74A0BA20, 9367D5A8257EA15B0DBCD6C8FDBFDF0B5B132A7C436E4F03AD84B958112DFA28 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
23:52:40.0354 0x3dbc NvContainerLocalSystem - ok
23:52:40.0362 0x3dbc [ 5CE986C82313E6F9D0973E2A74A0BA20, 9367D5A8257EA15B0DBCD6C8FDBFDF0B5B132A7C436E4F03AD84B958112DFA28 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
23:52:40.0372 0x3dbc NvContainerNetworkService - ok
23:52:40.0383 0x3dbc [ 64DA1993B1973F049C1347DA1B05185E, 2A04E263DB13751D033E2F9B9518820CF4942EEAFA5A32488570EEB699EE2A96 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
23:52:40.0391 0x3dbc NVHDA - ok
23:52:40.0413 0x3dbc [ 0B7CFF94C247E661A9D5F7FDAB2F726B, 16D651A50347131CC6B96EB17096EFB22F9767572964E6C12CA1BF928E6C1397 ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
23:52:40.0432 0x3dbc NVIDIA Wireless Controller Service - ok
23:52:40.0641 0x3dbc [ 4A3F39EFA9DFB29363F4EA6753BC823A, E8C78823FC8CC53A57D110AFDEF42B2391AA7ADE55363787B5E047A889957804 ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3696fe4b96482e60\nvlddmkm.sys
23:52:40.0818 0x3dbc nvlddmkm - ok
23:52:40.0830 0x3dbc [ 8C1D181480796D7D3366A9381FD7782D, 642857FC8D737E92DB8771E46E8638A37D9743928C959ED056C15427C6197A54 ] nvoclk64 C:\WINDOWS\system32\DRIVERS\nvoclk64.sys
23:52:40.0835 0x3dbc nvoclk64 - ok
23:52:40.0840 0x3dbc [ D261DF41F0840F734856A2B4F5E072C7, 2E703556D0C919375D0B7770513456844B13362190643D5524663EC8546E0FF5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
23:52:40.0848 0x3dbc nvraid - ok
23:52:40.0865 0x3dbc [ 23B702B555EB0436B9DAA0BC63DA65CE, D454F80D9657CFEC852F022C12D7B2C1A2D7D247ECC591EDB07B9369DFD8C99E ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
23:52:40.0873 0x3dbc nvstor - ok
23:52:40.0882 0x3dbc [ 5FA3A8CE5BAA23E2C9D18EA154017BC4, 6C2B0546FB9D8A4C7A747AB776BB98C8A90D2745FA0D293FA63DABBF67C7ED58 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
23:52:40.0887 0x3dbc NvStreamKms - ok
23:52:40.0899 0x3dbc [ 1D54A108BFAD4ED568E393518769F516, D0BE8343784DDD2B7CADFC85779CC72C78D49601E9C746D13D8134CE38DD920F ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
23:52:40.0905 0x3dbc nvvad_WaveExtensible - ok
23:52:40.0921 0x3dbc [ 17997DC2441F7E29CDFC6458E0392764, 636CCE2DA1EF8195B33F8D6D5C8CC151D58EBF08DC9AD8ACCCE7ABD41A69639F ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
23:52:40.0940 0x3dbc OneSyncSvc - ok
23:52:40.0958 0x3dbc [ 55AFF77D3DACE7ADCE146E70F4691979, 365E71EC1C01FFE715D37B652427ECE45E1960A13E4D11C3B2214ED11A3B6349 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:52:40.0966 0x3dbc ose - ok
23:52:41.0007 0x3dbc [ 1CECCA7431F4B430E56B0321ADEB33F1, 6459C0EA452A6B212BB198B8F9C3A84D345B5360272BB54096539E4A0E0C74A5 ] OverwolfUpdater C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
23:52:41.0028 0x3dbc OverwolfUpdater - ok
23:52:41.0037 0x3dbc [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
23:52:41.0054 0x3dbc p2pimsvc - ok
23:52:41.0074 0x3dbc [ 2BBCED66D7AFC968BDBB0E4D8524DF0A, 762D916390F9DE69B3EA1D31244224F910645F8E5CEF4C505B76B215BFDFCD9A ] p2psvc C:\WINDOWS\system32\p2psvc.dll
23:52:41.0091 0x3dbc p2psvc - ok
23:52:41.0102 0x3dbc [ 6B81BF7853D161DB8AC62CD8B9C2DE6B, B2DC06D135FD2501217DDA7349556EB873309E02188D4C3901807BA24FAB30C7 ] Parport C:\WINDOWS\System32\drivers\parport.sys
23:52:41.0112 0x3dbc Parport - ok
23:52:41.0117 0x3dbc [ CDBD029BAEC8D09F6FBD404632D9AF28, 71F4401150CD4C9C6BBF2DA854CF07EA2F8C9BBE900833858F49134DDAF14414 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
23:52:41.0125 0x3dbc partmgr - ok
23:52:41.0147 0x3dbc [ CDD8EDF4C35BE6D6137112F5CC7A70DA, 80EECA6BC2E668E5652A5CA9B119CCCE2A2E421F0EED1FD0EAC20C42E77C02ED ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
23:52:41.0162 0x3dbc PcaSvc - ok
23:52:41.0178 0x3dbc [ 29AF16726F4DD84376ECA85AB6AFF2C6, BEF9EA10637065365ED343C4EBA51191B9BEADD8F1F3362D3EFE75F40BE9A027 ] pci C:\WINDOWS\system32\drivers\pci.sys
23:52:41.0189 0x3dbc pci - ok
23:52:41.0192 0x3dbc [ 214DCC87E3898F738075D1341252A552, E721FBBC3510DDB848A8CAEA3B6031EE988F42252DBC3BF7BDB6ABD9A0D9FABD ] pciide C:\WINDOWS\system32\drivers\pciide.sys
23:52:41.0199 0x3dbc pciide - ok
23:52:41.0214 0x3dbc [ AED76A3333B3A31536E430020E0226FC, EC255B79B0908E3C142D92E35B79D90A3F2594BA012CA2B1B04A6A8745153430 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
23:52:41.0222 0x3dbc pcmcia - ok
23:52:41.0230 0x3dbc [ E63FB38B6E75B39467492FBAD2CD512A, DB406C92BA2460C833A49B98EB5BD58348E868F643A0123B0C9B5315FFC6A124 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
23:52:41.0237 0x3dbc pcw - ok
23:52:41.0248 0x3dbc [ 9EA203A07EFA6D74F07F32EF0DAB5CA6, D851F1CC748B4CD0E263931668FFF2FE20D5778267F4FF2237D565CFC171B5AF ] pdc C:\WINDOWS\system32\drivers\pdc.sys
23:52:41.0256 0x3dbc pdc - ok
23:52:41.0274 0x3dbc [ 1509A77F840AA9E72CF8247D0CF2FBDE, 2D47AD4D8F5C2D871E603FB6D72D25EFD0E63FA3A542DAADAB9D82ED074C0E0B ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
23:52:41.0299 0x3dbc PEAUTH - ok
23:52:41.0308 0x3dbc [ 540116170E2135FCD5DDE77702166B67, CBEC51C2D47532F1781B3255040F303263420B204C2F8BB2B5D1EC342F57B285 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
23:52:41.0315 0x3dbc percsas2i - ok
23:52:41.0325 0x3dbc [ 8356F87553BF49C703CF382033815898, 245EB941566D848F134629690BF271B1CBEAB6440771D3D8D7AED3756835354E ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
23:52:41.0333 0x3dbc percsas3i - ok
23:52:41.0496 0x3dbc [ CB5343FF52A702A9ACFAAE6BE972FE09, EAA5362D91D05D382DF4EBBAA3FD575456F23CAD531CC6F1270F8254892DBF02 ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
23:52:41.0520 0x3dbc PerfHost - ok
23:52:41.0540 0x3dbc [ D0D57322ABC7473E54472D8374169CC5, BD14A13D6908C8669E56EF9401FD8A3D7C618E8B6556B36E634864E733BCA4B2 ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
23:52:41.0565 0x3dbc PhoneSvc - ok
23:52:41.0577 0x3dbc [ B4AB2C0177715FFAED88A1223212043A, 1920792ADC78DD51EF98B6A9634D686EAED0848FB7EF74A0DCD3AEBA5AF41EC6 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
23:52:41.0596 0x3dbc PimIndexMaintenanceSvc - ok
23:52:41.0645 0x3dbc [ F931F21E4287FE3ECCF09B54A232BBA2, CEB7AB3236E5F30214027092B7B695ED35F7A1E007DF4046797D1E4DFEF49EC8 ] pla C:\WINDOWS\system32\pla.dll
23:52:41.0685 0x3dbc pla - ok
23:52:41.0697 0x3dbc [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
23:52:41.0711 0x3dbc PlugPlay - ok
23:52:41.0719 0x3dbc [ 56D7A89423325121C4A9BD5C326414F3, 649048C23D1973C3504E26B35362AC99DFE9BF31FFE73F45B43306A212AEA34C ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
23:52:41.0728 0x3dbc PNRPAutoReg - ok
23:52:41.0740 0x3dbc [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
23:52:41.0755 0x3dbc PNRPsvc - ok
23:52:41.0764 0x3dbc [ F70CAC34B455D05EAA04B2F8FB58E1CB, 295BFFB3DA03C5CE5462C11D3240024B68AC06E8DEA9062A739BE2CCEE19EB5D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
23:52:41.0780 0x3dbc PolicyAgent - ok
23:52:41.0786 0x3dbc [ 60C8376B48BA96F07AEA536527433D44, EB988C119C3E71169B91ED2A744C71933DD35447DC4A8249E80EC24E9E7077D4 ] Power C:\WINDOWS\system32\umpo.dll
23:52:41.0804 0x3dbc Power - ok
23:52:41.0815 0x3dbc [ 5645B9D9788CCA2C88B9534996ED2D6D, 4988942DF163DB5B9B1A08CE6B628D2C47C2E2EAA30AEAE4EFE21C8CF4C8DC5D ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
23:52:41.0829 0x3dbc PptpMiniport - ok
23:52:41.0904 0x3dbc [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
23:52:41.0988 0x3dbc PrintNotify - ok
23:52:42.0004 0x3dbc [ 372913E12677A8CBBBABDD8311894F9D, A5233D95A0D22D2A9DB214E7CB79A99D389B67189FF6A87D0AD4610A333A637F ] Processor C:\WINDOWS\System32\drivers\processr.sys
23:52:42.0014 0x3dbc Processor - ok
23:52:42.0056 0x3dbc [ BA2DA685FB152180908C7D778B2BBD61, 335C81941855D3DE90443E47E42D44645BE2AB736334DB96C0890D82EEF03475 ] ProductAgentService C:\Program Files\Bitdefender Agent\ProductAgentService.exe
23:52:42.0075 0x3dbc ProductAgentService - ok
23:52:42.0084 0x3dbc [ 1F115AF75EFBAC28479B4F94A3F8D4A3, BE8D8C50D985F6AF9DDC0F13BDBE2D55D600E1F5E344982536538B14EC484AA6 ] ProfSvc C:\WINDOWS\system32\profsvc.dll
23:52:42.0105 0x3dbc ProfSvc - ok
23:52:42.0115 0x3dbc [ FC98407B85A31161851FDE245517574F, 2CCD706CF243934FCDA32B24CE0C385EA2E67F206E0306FA584496F583A20CD1 ] Psched C:\WINDOWS\system32\drivers\pacer.sys
23:52:42.0123 0x3dbc Psched - ok
23:52:42.0132 0x3dbc [ 7A68710BAC9B6809314B86C0CB1CBC4A, C02D97993D1F6FE6EFBA5B1366B3A4FE8CE1136A95F3A2DA07BA59554C163501 ] QWAVE C:\WINDOWS\system32\qwave.dll
23:52:42.0152 0x3dbc QWAVE - ok
23:52:42.0163 0x3dbc [ 819602BBBFDB0BD46DEA3715BF0DD452, D4007FF1E5296316B53436CA3598D6B1CF4F60AB77D5B02F3E595081EDD5D879 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
23:52:42.0185 0x3dbc QWAVEdrv - ok
23:52:42.0189 0x3dbc [ CDF47037A0939F56D11F699629C276AD, A63F2A3FE80FB8084E3870E907505694B79EE1D9E56E292C01D481FEFD2534B0 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:52:42.0207 0x3dbc RasAcd - ok
23:52:42.0218 0x3dbc [ 28C2EA278070EE12701D0EDF8CB0EC36, F10288C1C6835840026DB30285345EF892DE989F43C948E7F4760B8895FF675F ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
23:52:42.0240 0x3dbc RasAgileVpn - ok
23:52:42.0252 0x3dbc [ 7B82197BF35CC3BE59AEF8B706AB8A16, AB0216164A548A48CD21F5F035E57E867584A96890B9887EC08F8DABDD89F990 ] RasAuto C:\WINDOWS\System32\rasauto.dll
23:52:42.0264 0x3dbc RasAuto - ok
23:52:42.0274 0x3dbc [ 17E565710172ED71B8531D8822E1C5D1, 0CA39ABD9E544DDAD9D9D7D1FC50444274C31E18F9BF73069051D9F62833698F ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
23:52:42.0299 0x3dbc Rasl2tp - ok
23:52:42.0321 0x3dbc [ F79BFB5588B777C71734C1D1EC129D07, 9B9D70EC8978AAC19B2B94694EE1B9957C13DFDDFCBE8AA82C5F0D0EA04CDBDF ] RasMan C:\WINDOWS\System32\rasmans.dll
23:52:42.0351 0x3dbc RasMan - ok
23:52:42.0362 0x3dbc [ 9387DF155233D45D4E010F4F2FB52A57, CABC25DA4E512809AED0085767BDD94BF3C1DA792BFF8A009B5465D9110E7060 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
23:52:42.0398 0x3dbc RasPppoe - ok
23:52:42.0416 0x3dbc [ F0F4EEDEEBEE7A4244FAFB96A16B5712, F64717E601BD5EB674003009507B8CDD6F69F00E8670D6895EC64786166A0E8D ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
23:52:42.0432 0x3dbc RasSstp - ok
23:52:42.0445 0x3dbc [ AF6963414B820B7C45578ED3300438A7, C00F60FD72608E6983D32642768AECE891DD816FADFA7B872BA88091C16B95D7 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:52:42.0458 0x3dbc rdbss - ok
23:52:42.0462 0x3dbc [ 79A415E6FA915EFC00297DAB16EC2635, 47BB49F6D756214193D38A4AB182B541AAC180381C3111FF7F9B0AD4C44D8733 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
23:52:42.0481 0x3dbc rdpbus - ok
23:52:42.0493 0x3dbc [ 7135785C21CA79D270D11037C43D3F19, 654A3C65CF891ED8C82A740D10CF607FC7D709185E664DE03288CEB5B25F03A6 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
23:52:42.0514 0x3dbc RDPDR - ok
23:52:42.0530 0x3dbc [ 97A61A3CB2B5CB4FC32B3224EF333448, E4F2E8BCEE3639BE57BBC8A8E67FDE42C3A5158F1204684B0ECD216F4AA044A3 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
23:52:42.0536 0x3dbc RdpVideoMiniport - ok
23:52:42.0548 0x3dbc [ 69BB204AE07EE84ECFAB1BF13C4BD04B, 1CA832CBF4AE4821EEA2A19F9519C2D1D00406B8CCE2A86FE3B33A5F293DB218 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
23:52:42.0559 0x3dbc rdyboost - ok
23:52:42.0576 0x3dbc [ 940D6F5A2B0A61EE4170DF84F6C95C20, F8EE846DC8015EDFE7CB5BEEDC977EAA9C586BAC2216DE69D8ECCBDBC7408649 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
23:52:42.0596 0x3dbc ReFSv1 - ok
23:52:42.0611 0x3dbc [ 13F6B64235C60167052364BF7D99E4CA, BC12EE00775F7456FB922FBD684BF3F0CFABA5BEBB6E162C23B41DED5C20A978 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
23:52:42.0633 0x3dbc RemoteAccess - ok
23:52:42.0644 0x3dbc [ 3183B161B1F05333F6C325577FEF3596, D6A89B2A021377B6F371E5B9EFC36FF018822B28F0ED41F8CD2F00C5C8605707 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
23:52:42.0668 0x3dbc RemoteRegistry - ok
23:52:42.0688 0x3dbc [ 3F92CD911C0BF6C40926A8EA8429B0AB, C0A9F759BC64A17F8912E939E6D5BBE288838C555C9CDC45971777BF6F924BCA ] RemoteSolverDispatcher C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
23:52:42.0707 0x3dbc RemoteSolverDispatcher - ok
23:52:42.0729 0x3dbc [ 0660F4A14F9D2A2F59B26B1D74F1A6D0, A9443B6B7ED1ECA22AC960A2C6A2BE18C0BA58CD7BCF60E7AA617CD3662D122D ] RetailDemo C:\WINDOWS\system32\RDXService.dll
23:52:42.0764 0x3dbc RetailDemo - ok
23:52:42.0777 0x3dbc [ 5DAA644F17780FC4E3F4820A46D38FEC, 32C27FFA0A4608B164F4E709CD0D998AB73CA9713BE3E47F9DBC7B3D1B6C7453 ] RmSvc C:\WINDOWS\System32\RMapi.dll
23:52:42.0798 0x3dbc RmSvc - ok
23:52:42.0802 0x3dbc [ 672724C8B21B7DC56646045DE4D5B860, 79986E80A92C949C543959F1E35647A9788DAB2892AC20B6DEA5C0BBC0CEDE9E ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
23:52:42.0820 0x3dbc RpcEptMapper - ok
23:52:42.0830 0x3dbc [ 109C1D609951E886D3643B15C1EDD1C2, 347D8E7C50EC7F96217C7421D9BC8A42C9DF50B94169CB58DCF857A63C33C2EA ] RpcLocator C:\WINDOWS\system32\locator.exe
23:52:42.0839 0x3dbc RpcLocator - ok
23:52:42.0860 0x3dbc [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] RpcSs C:\WINDOWS\system32\rpcss.dll
23:52:42.0887 0x3dbc RpcSs - ok
23:52:42.0900 0x3dbc [ 21A1B1CABE14F1538475FC497FE4EA8B, 5BC1DD460045CD31ABC2F222803CA23DDF90557D696F134B24C766016737907A ] rpkmdrv C:\WINDOWS\system32\drivers\rpkmdrv.sys
23:52:42.0922 0x3dbc rpkmdrv - ok
23:52:42.0936 0x3dbc [ E2319BDFF45DC9600E3751BE690F044D, 93F7A1EB1DB5F5CD41846F8D1DD5F08569DDE55AB125A01131B4ED20C322B956 ] RsFx0310 C:\WINDOWS\system32\DRIVERS\RsFx0310.sys
23:52:42.0944 0x3dbc RsFx0310 - ok
23:52:42.0950 0x3dbc [ 5FF28F097C9699097B473F8FC7C1AA7D, 695560F1DBD85073F3D6CB1FF16F16504CA044EA62E940E463A16BBA8B86E2FA ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
23:52:42.0960 0x3dbc rspndr - ok
23:52:42.0976 0x3dbc [ B5DAEE69BACA64D2BB004568E22D8756, C0072CF6B438ED756435A182D55AC55F3AD356ACBD483DE06A94893D3CA8CCC5 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
23:52:42.0985 0x3dbc s3cap - ok
23:52:42.0994 0x3dbc [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] SamSs C:\WINDOWS\system32\lsass.exe
23:52:43.0002 0x3dbc SamSs - ok
23:52:43.0006 0x3dbc [ 5E73FB63E2DBC75FE0C17DEB0010CE0E, 9DAC47486262397D03BC01F7438CAB62CF33BD7B5283F5B9548C770A3D6D0ADC ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
23:52:43.0014 0x3dbc sbp2port - ok
23:52:43.0021 0x3dbc [ 3CD0130FFDEAEACF0905B482F3934EA3, 1EC355B63135FD2563093EBB206741C0C4CCE0551A662F6DC86C875146A88B06 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
23:52:43.0040 0x3dbc SCardSvr - ok
23:52:43.0054 0x3dbc [ 5E8ECCE130A72107B6DFDBE26185A7FB, 811E2CE485BC14161FF629069BCCF53B2B8C6F8B1E1A6B3A3C86DBE4F85A5577 ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
23:52:43.0074 0x3dbc ScDeviceEnum - ok
23:52:43.0085 0x3dbc [ 3D9A82B03C92D1FEC42CB171D6F57778, DC027F02F5EB5F1D10DB6F405FB0C15D4D5C922445F5F3C916624113278AF072 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
23:52:43.0095 0x3dbc scfilter - ok
23:52:43.0110 0x3dbc [ D4DB6B318A0A0C74A90260725A228C0B, 57BA2EF9D880488C785C806ABF9EE753A48E589129442D72F815CD6EFFA07B22 ] Schedule C:\WINDOWS\system32\schedsvc.dll
23:52:43.0140 0x3dbc Schedule - ok
23:52:43.0144 0x3dbc [ 9055ADDFBA4C8B914C914CE693B55C0A, DB213AC36E14D856B81D2AFE46815402537A2ABEEA15032A9FF436F953129441 ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
23:52:43.0152 0x3dbc scmbus - ok
23:52:43.0165 0x3dbc [ B6F2363584E62960846F7C3F00124A4F, 252189FF9D623CF69BF415FF7C7FE74B0BBF756B632420578BFAFF6595616CF7 ] scmdisk0101 C:\WINDOWS\System32\drivers\scmdisk0101.sys
23:52:43.0177 0x3dbc scmdisk0101 - ok
23:52:43.0188 0x3dbc [ C1B5EE58E759C53F9939581709DC70BB, 85095ABC9459A766832373BC3839E573E9A73C967F8427D6B7CAB972551C3191 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
23:52:43.0200 0x3dbc SCPolicySvc - ok
23:52:43.0207 0x3dbc [ 7C3D10BEC8B0DBA00A78C78EB10B3AE2, A671C9CB97977613576D70607E106C7A29B9EA9E875C7C5AF293EE5903D7AD0A ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
23:52:43.0217 0x3dbc sdbus - ok
23:52:43.0222 0x3dbc [ F3714DBAA42C15F78FFCDFE4273214EB, 2D018970B92C5F0744FAE10A2FC298F3DCEA5C2EDEB760F4F0651337B9878ABF ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
23:52:43.0246 0x3dbc SDRSVC - ok
23:52:43.0257 0x3dbc [ 120DFCB71D6C502613A9E2D50E16850C, 2C294010AD1C9C380CD5221A37720544178B7358C8C8553AF44055E4CEE5DAF5 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
23:52:43.0265 0x3dbc sdstor - ok
23:52:43.0274 0x3dbc [ EFD644DD091E1D94555FC3BBC95EA66D, FBDDA6680BEC378CCF12A32D9186020E884DA15A1E789D1531B1E687FC7B54B1 ] seclogon C:\WINDOWS\system32\seclogon.dll
23:52:43.0296 0x3dbc seclogon - ok
23:52:43.0306 0x3dbc [ F48535714BED7DD784853889B4594B26, 9B4AB7E7293E79A8F6CC46C84F23E62AD3BD6E958FCE078CDBB125A69FAC7E50 ] SENS C:\WINDOWS\System32\sens.dll
23:52:43.0327 0x3dbc SENS - ok
23:52:43.0354 0x3dbc [ 2B4E090D06C60853C5C00CF255F9E02A, 4D4DBA7B04519622612BD4A4F28318CA2F5646C84CAFF8C5ACC9BF4C6031894E ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
23:52:43.0398 0x3dbc SensorDataService - ok
23:52:43.0415 0x3dbc [ C09A42163878A082C3F0D0A3DFE95714, 8033DC38D0EDED3758DA6BF8C1955BE5FFE48863C079C589660B37D0E461300F ] SensorService C:\WINDOWS\system32\SensorService.dll
23:52:43.0435 0x3dbc SensorService - ok
23:52:43.0447 0x3dbc [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] SensorsSimulatorDriver C:\WINDOWS\System32\drivers\WUDFRd.sys
23:52:43.0461 0x3dbc SensorsSimulatorDriver - ok
23:52:43.0466 0x3dbc [ E6F00415DADCEEC860E7AB42BFD19A65, 274CAF22F93D43B6DB6953730E3DF8DA94776B24EEE74B80AB4CD780BC1366A9 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
23:52:43.0481 0x3dbc SensrSvc - ok
23:52:43.0485 0x3dbc [ 401D706DDC0A7AF18C3DD228ADF74551, 27C0B38D7C2E3F6FF06201124E63483931F6071954B2B99EC0143C464238C0B7 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
23:52:43.0492 0x3dbc SerCx - ok
23:52:43.0497 0x3dbc [ 7084D11083F0CDCA8B5C76F9846ABF5D, F639920882B0E784D8CFAF0D4C0F0C411937B6831E5DD99B0ABFBFE06BA4742F ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
23:52:43.0506 0x3dbc SerCx2 - ok
23:52:43.0509 0x3dbc [ 3FF478A8ED32A83C36581425F6282B6C, 787646A17098EA7CF36064D0A950C1D470D4A280C8C5AC40023D566E53860EAE ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
23:52:43.0519 0x3dbc Serenum - ok
23:52:43.0522 0x3dbc [ 92509187AA171A80521528B36F753E1D, FE0DA272B8A155ECC161E99586C4AE7EE17B1C84BC330DA1566C83B8E03FA825 ] Serial C:\WINDOWS\System32\drivers\serial.sys
23:52:43.0532 0x3dbc Serial - ok
23:52:43.0535 0x3dbc [ 433D38FF6D08B993847EA2A10EB8CB52, 29BA75DB6D1AC761BBDFB5AC8874FC7D763E1CD10D290E369063B34CE951270F ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
23:52:43.0544 0x3dbc sermouse - ok
23:52:43.0554 0x3dbc [ 82CF273F0E8F243789683DEB40757569, 5433D93A41C4BF04494E6158931C6AC3154888F7CD3A417253EC02FF7EA6D00E ] SessionEnv C:\WINDOWS\system32\sessenv.dll
23:52:43.0571 0x3dbc SessionEnv - ok
23:52:43.0574 0x3dbc [ 697D3EE0740AEAB62B66ABCA1C83D13B, FCF54A0071ED04AD3FC8551C67FE5FD49089DC0510F753052CAC5972A65C9E3D ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
23:52:43.0583 0x3dbc sfloppy - ok
23:52:43.0592 0x3dbc [ 832E933AA8DB9FD4733B96D8B6484D3F, 3A8E3D7ECA192EEE154CB568073B7211FDA06078EFC3BC7E961563A1BFDD0CAA ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
23:52:43.0612 0x3dbc SharedAccess - ok
23:52:43.0625 0x3dbc [ 482E6BE8A07832E824080D352075ACA1, 4123A76C8E805AF4FE229C53E9C174095C0937913BA81A63FE9B45C44AA5B15F ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
23:52:43.0652 0x3dbc ShellHWDetection - ok
23:52:43.0658 0x3dbc [ CF3BDF9EAD8D3EF671E9339B44B185BA, C17EC6D5B00F49D9C8B5B6C262A85F34ED71C58450659F006B3632AA84F68E23 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
23:52:43.0673 0x3dbc shpamsvc - ok
23:52:43.0676 0x3dbc [ A34CE1830E45DA98932295FDE4B7908A, FC553ECF4D64B4B10B7FDE5352707785517A18D487A80665BAFC7261E3F35CDC ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
23:52:43.0684 0x3dbc SiSRaid2 - ok
23:52:43.0688 0x3dbc [ A7B5C670770E908DA5FEF5BF1136E933, 8D3BB6FF65E631C34BE8EA766481B2FDB2E1E916A4FD67F86705A8975A136E6C ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
23:52:43.0695 0x3dbc SiSRaid4 - ok
23:52:43.0699 0x3dbc [ CEDF7CFFCCD03451FD22DBAAC2E3DE8E, A1F4B952099EBA4BA4E659782F85B45C4BBB411BF5B7C02D5BE0CC3DBF27AFF3 ] SIUSBXP C:\WINDOWS\system32\drivers\SiUSBXp.sys
23:52:43.0710 0x3dbc SIUSBXP - ok
23:52:43.0714 0x3dbc [ D233EAE2A9D48485321816486ED635EF, 03AB49BE9CF15EB7EDC50C400E673B4DF0E5BFDA9A7811E157F2AF2F3CF38D49 ] smphost C:\WINDOWS\System32\smphost.dll
23:52:43.0725 0x3dbc smphost - ok
23:52:43.0735 0x3dbc [ 0B217141AC1283655402CDB356577735, 6EFA4CA46CFC8B7156CE7E5CA89B7F7073E16D66C2FC13F4DB95FEB78CCF698F ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
23:52:43.0758 0x3dbc SmsRouter - ok
23:52:43.0763 0x3dbc [ 6F4CE07D420FB657B5936F71101ABD41, CEC52984C56E578E0FFE12BE1B8148335F788B7D1751F2D0E79B944A41113C20 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
23:52:43.0776 0x3dbc SNMPTRAP - ok
23:52:43.0781 0x3dbc [ 4945020BC094C322571184A6E8056B3A, 9E09257411F7C3631537D0198E0E64CDD1A697D80430F6379139B15A2BA8A6C9 ] SolidWorks Licensing Service C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
23:52:43.0787 0x3dbc SolidWorks Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
23:52:43.0930 0x3dbc Detect skipped due to KSN trusted
23:52:43.0930 0x3dbc SolidWorks Licensing Service - ok
23:52:43.0940 0x3dbc [ C994DF90427103CCB80F893FFD2B1CE8, 7E4B08095C77E68D337A3425EEA38F8FEC4D103CA7661E34FD96BF518DFB4BCB ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
23:52:43.0955 0x3dbc spaceport - ok
23:52:43.0959 0x3dbc [ E03264C4C25B568F92ED1656AD541E64, D42942BFFBC7213D204FAF84F4FE015FC23A6ACB29B5E752834EDBC17A3AC20D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
23:52:43.0966 0x3dbc SpbCx - ok
23:52:43.0979 0x3dbc [ 79DCE27E8C4CF6701BFE49EC2446BBF6, F51CBB7A45C3C878F41653FD5FBDC93CC302712B7725DAAB4D3475A1F4771E3D ] Spooler C:\WINDOWS\System32\spoolsv.exe
23:52:44.0009 0x3dbc Spooler - ok
23:52:44.0082 0x3dbc [ 23529A00195CE71252FEBF647E56E27D, 8ADF7A1C96DAE005E9A974D90BE8954F88D49B6848252B88513C49E0A3BD9774 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
23:52:44.0172 0x3dbc sppsvc - ok
23:52:44.0192 0x3dbc [ D1A4A546ED802E6854B1F1F5DFB58D27, CFA21C67B806176FAC5C9E70B8DB2E1D3E3BC75B0B548D06238CBEFBFEC65A90 ] SQLAgent$TEW_SQLEXPRESS C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
23:52:44.0205 0x3dbc SQLAgent$TEW_SQLEXPRESS - ok
23:52:44.0212 0x3dbc [ 774C1D27B9ED5A420E11C2343B0FFF7B, 6C291CF9C9205D6F9BA43156E1EBB370CA11DD1656694F1B434E2E7F8AFBC6A4 ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
23:52:44.0220 0x3dbc SQLBrowser - ok
23:52:44.0225 0x3dbc [ FAD8A14CAE92E805E48DA87B9564391A, B4BD026B6C9EE72CDE5E9215D903F16AE15893A1491ECFC346CB030C56D592A5 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
23:52:44.0232 0x3dbc SQLWriter - ok
23:52:44.0240 0x3dbc [ E83830BB74AE8CBECEA0ECD94DE436F9, 4A34569A34260324EBD629039E1BF45A3527FC75B22D9A3DB6360A6EB365483A ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
23:52:44.0255 0x3dbc srv - ok
23:52:44.0267 0x3dbc [ 55CA5329D1ADEB8F8034045930147AE4, D4F31BC82700D166564C7F9CDCEA3ABAB4A37B55137C34572768DF46FDA9320A ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
23:52:44.0291 0x3dbc srv2 - ok
23:52:44.0297 0x3dbc [ F13EE0DB1FB1D6946AC3228D7EFCFC8F, 109A809F0338FAB0F4045FA5EE33C6F0A994A9F586B2FBD8920A6AABA0E0EF66 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
23:52:44.0310 0x3dbc srvnet - ok
23:52:44.0316 0x3dbc [ 44758105AB3EA34E815D4B6CA1153311, 7F223A20D2538C123BAC6F75BE0E126876A116F09502FD980C05B8916E26E1B7 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
23:52:44.0331 0x3dbc SSDPSRV - ok
23:52:44.0339 0x3dbc [ B97C7EC07218A8002323718202BF5E77, 39D3254383E3F49FD3E2DFF8212F4B5744D8D5E0A6BB320516C5EE525AD211EB ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
23:52:44.0353 0x3dbc SstpSvc - ok
23:52:44.0408 0x3dbc [ 4E330AD1EED4A5D582EE415FD55953A2, 2C02E1F45F74D250110BA5117AA942495CB2EBAC7F2CCECC284B4FB8F47B13E1 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
23:52:44.0495 0x3dbc StateRepository - ok
23:52:44.0519 0x3dbc [ 9867A86327E8AE3806305F1BCF01211A, CCDDB2560B30D27CE662F1B02710E1FAA9331E6A27D9A6629EEDED2CBA822062 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:52:44.0541 0x3dbc Steam Client Service - ok
23:52:44.0545 0x3dbc [ 29D26E1347AE1BBD4201014E19880B2C, 9E2153AD96CE4F189EEE43BB02515532C619FB1CA02D8F6DEF517AC3347AAA14 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
23:52:44.0551 0x3dbc stexstor - ok
23:52:44.0554 0x3dbc [ B11724BFE7DA1BA55903B4D849415F1A, ED09B6AD68C87FED34FC66CB6C7A74DFC3AF524E3BE89EDD18A5B6685F656ACA ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
23:52:44.0564 0x3dbc StillCam - ok
23:52:44.0576 0x3dbc [ 91CB95B35481155BFE29C217CD237F27, CA66957DF1441D991453BEF02D768D44E5D9A484BC23C8874E8A7AC20904CB06 ] stisvc C:\WINDOWS\System32\wiaservc.dll
23:52:44.0599 0x3dbc stisvc - ok
23:52:44.0604 0x3dbc [ 53EB8CE34B55A1EE63424C8DB7388BFC, 5AB59117BA8A2844EB8693CCC19B217AE039B28C87519F96E1C845FE9BF456C2 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
23:52:44.0612 0x3dbc storahci - ok
23:52:44.0615 0x3dbc [ C5E0ACE4771F5575D9D5B457ABF3AD03, 365880BC5AC313F25C313EFB7758301F98D9B2BF4C5FC9499F98C2B7F8407D96 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
23:52:44.0622 0x3dbc storflt - ok
23:52:44.0626 0x3dbc [ B66D8C75C9BC59D637177AB3B1C569A6, 76252A631F03EEBF5FDC7693F6B0A5E73838CDBE3157114CC96B8BBE88B476BF ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
23:52:44.0634 0x3dbc stornvme - ok
23:52:44.0638 0x3dbc [ BEBF85EB4D90E6996047DA027D0ED26E, DF109CF0F07CDD1B9B702C2A076D4DD5366DAAD971CC9359AF0358E79981706F ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
23:52:44.0649 0x3dbc storqosflt - ok
23:52:44.0657 0x3dbc [ B91FBE7CB4633FEB32AFBD0B48576396, 9EFDD92E8096CE5555F8DC3C870864E5515469603C2373B99B3607234633CA66 ] StorSvc C:\WINDOWS\system32\storsvc.dll
23:52:44.0675 0x3dbc StorSvc - ok
23:52:44.0678 0x3dbc [ 8E73037A6F8938475692FFCC26EBF385, F78C5CD1A3CD17AA831EEC82426B14006B4DDBC9085A4814E04E8C37FD6B05F7 ] storufs C:\WINDOWS\system32\drivers\storufs.sys
23:52:44.0685 0x3dbc storufs - ok
23:52:44.0688 0x3dbc [ 9D9DED47DA10E845EFF2DD57C94C809B, 520D0CE7A867051B80C8141E351FE5A5BCE3C99776093F234DB77D3407B1F104 ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
23:52:44.0696 0x3dbc storvsc - ok
23:52:44.0699 0x3dbc [ 224C92E442B1B8C20C274332F1ACF00D, CDE5DCFB7A21089464A6E2ABB29BBE08B184C3433C218756AA5902A8F67C0B2C ] svsvc C:\WINDOWS\system32\svsvc.dll
23:52:44.0711 0x3dbc svsvc - ok
23:52:44.0714 0x3dbc [ 505E0C40B5D0ADDCBB414640F59BD2E0, DF4B5E65FE6FF2224F298A2A2FAC9B648C082DFF8463148633647580A9FAD34D ] swenum C:\WINDOWS\System32\drivers\swenum.sys
23:52:44.0721 0x3dbc swenum - ok
23:52:44.0729 0x3dbc [ 2EE27411B5904C63D723BEA391819F58, C88C11D460E90398E16011B8A2CED5EE5626084F24790EA6115532F8F70060C6 ] swprv C:\WINDOWS\System32\swprv.dll
23:52:44.0750 0x3dbc swprv - ok
23:52:44.0754 0x3dbc [ 32F46FB0F290D16DAA452B289C985795, 73F88AAAA6026DB4C27F1D054145216DCC3F1960946FB2A7A90518DD1D5737CB ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
23:52:44.0764 0x3dbc Synth3dVsc - ok
23:52:44.0779 0x3dbc [ FED48B19D6F55D7A3AB498D85729D1BA, FA5E0E02BC2E2DE108C55991E3B063CC947072228B53539F42F922661510DE7C ] SysMain C:\WINDOWS\system32\sysmain.dll
23:52:44.0809 0x3dbc SysMain - ok
23:52:44.0817 0x3dbc [ D9FEA79BF6AF136F8E656AE045C2FEC8, E6F08A93348E035185F0F1C6B6277E636F4F25D1136E3ACCA63488DAEEC7114B ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
23:52:44.0835 0x3dbc SystemEventsBroker - ok
23:52:44.0840 0x3dbc [ 86E7FD5C8DBEC1EB51C4368561402B75, 86EE61414CD5854E39E33F67BF5DA4377B569B3ED4D18882C470BC6784891DA1 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
23:52:44.0854 0x3dbc TabletInputService - ok
23:52:44.0861 0x3dbc [ 3929C8FC134AC672C4F3F85160956257, CD3195CA58BA6F55EA0DDA2BE6AB58280AD1CA488D7AAA1539DD05FB99374F36 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
23:52:44.0876 0x3dbc TapiSrv - ok
23:52:44.0910 0x3dbc [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
23:52:44.0956 0x3dbc Tcpip - ok
23:52:44.0990 0x3dbc [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
23:52:45.0033 0x3dbc Tcpip6 - ok
23:52:45.0039 0x3dbc [ 8DBB1BE20C36E6D19BCC89EEA00B953C, 8B97A7E53E1D77363AFF6A5AAEAD89EBAE28DCB8D82753C804FD7CD5646500AF ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
23:52:45.0050 0x3dbc tcpipreg - ok
23:52:45.0055 0x3dbc [ 9D2DD64A0B51C56285512DC9454340F6, ABB90CE6A55269F71AFB08E04969CF9A4EFD93F7A7189AF920EEE3E005214DDD ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
23:52:45.0064 0x3dbc tdx - ok
23:52:45.0069 0x3dbc [ 2625DD0C44FEB294E4096E129938C618, 50CD1F8618C46911A1A5DF62797AC16BD88E1915288D62B09BF2BDB44472C68B ] Te.Service C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe
23:52:45.0077 0x3dbc Te.Service - detected UnsignedFile.Multi.Generic ( 1 )
23:52:45.0216 0x3dbc Detect skipped due to KSN trusted
23:52:45.0216 0x3dbc Te.Service - ok
23:52:45.0348 0x3dbc [ 44449A0EB8EBD8DCBC3ED4BB62BA3A5F, 168197015D1E5ED71775250084C224A1100E0F989A6D1CC4102004E5AAD74F3A ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
23:52:45.0480 0x3dbc TeamViewer - ok
23:52:45.0490 0x3dbc [ 06130AFFECEB94525FC2352936576B70, 10EBE2C8FDC087D29E2FFB328F0F7905A5374AB8CC9FAE8699E7676DBC8CBF91 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
23:52:45.0497 0x3dbc terminpt - ok
23:52:45.0521 0x3dbc [ FB68E5F02316C42BE7282DA492351C6F, AC31D841FEA58B776127E138DB20F8D48E26FD8C00CE2FA9695EA14EBF159A0A ] TermService C:\WINDOWS\System32\termsrv.dll
23:52:45.0552 0x3dbc TermService - ok
23:52:45.0556 0x3dbc [ 2AF438EC0D361A7BBB70E604A686602C, 4BE6A0461EB2CB94288614434A1CEC81C2ED46241721FD5BBD8ABE0680F7C804 ] Themes C:\WINDOWS\system32\themeservice.dll
23:52:45.0571 0x3dbc Themes - ok
23:52:45.0577 0x3dbc [ 1482B8ED5CACA87992A882B853B83CEE, 613247F0E362A109090E8563D977DECC50C64D45D6962905FA84A2D59329045C ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
23:52:45.0595 0x3dbc TieringEngineService - ok
23:52:45.0605 0x3dbc [ 3B3C607C3C62DFBEF61938DA2CAB94DF, E5EEA7F45A7BBFDF6F0003CD77E39958C451DD1B4B401876B5619A3C20F5C370 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
23:52:45.0627 0x3dbc tiledatamodelsvc - ok
23:52:45.0633 0x3dbc [ C1F8CBE2D4843E0CCC3EFEA2EC60D4AB, 9D07527D982066922318C77AECE99280DE55034C375ACE145E827A6BEB5C3B70 ] TimeBrokerSvc C:\WINDOWS\System32\TimeBrokerServer.dll
23:52:45.0646 0x3dbc TimeBrokerSvc - ok
23:52:45.0653 0x3dbc [ 46171262D0E806779DEEDFCAB2F830CC, 7F4A4658B8BA217D99E5B5C0E01600C20DC96ECBCA32A5BA7FBE17D2A7B8BFD8 ] TPM C:\WINDOWS\System32\drivers\tpm.sys
23:52:45.0662 0x3dbc TPM - ok
23:52:45.0667 0x3dbc [ 3B91F35089240F6187AD681A5EC28BDE, 3D035CB73BC8E7831DCD0FB7D9DAD91CE51D3D0F9D9C8B866A0009BD508B6702 ] TrkWks C:\WINDOWS\System32\trkwks.dll
23:52:45.0679 0x3dbc TrkWks - ok
23:52:45.0688 0x3dbc [ ADD8AFDAB539AF2B1FB75F6DB2CD7B71, 46BA69DA6114A167D6C467AB9BA583514475509184C6FF056460ADE76D0A76B1 ] trufos C:\WINDOWS\system32\DRIVERS\trufos.sys
23:52:45.0700 0x3dbc trufos - ok
23:52:45.0704 0x3dbc [ 09440FA30C020B4443391FAFCF4876E3, 208C7725F70C75D8C96CCAF5B22F83B8B1C66D8C9FFF48465B1C9F4A77425569 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
23:52:45.0717 0x3dbc TrustedInstaller - ok
23:52:45.0722 0x3dbc [ A6F4025664C9D4BC2A9EDAB4092706D7, 89808A1679C0E716F86F06EE7701DCC289200894F0FA1F120DA2AC3A45FDB312 ] tsusbflt C:\WINDOWS\system32\drivers\TsUsbFlt.sys
23:52:45.0734 0x3dbc tsusbflt - ok
23:52:45.0737 0x3dbc [ 37A96AD493E110C0BF1EE0AC0F9E7DBD, F2A6894A4AEE18DF2B92222CDB0801A13AEEB7212071F0431430788339B30E23 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
23:52:45.0747 0x3dbc TsUsbGD - ok
23:52:45.0751 0x3dbc [ 79E264287F17D56D768440B0270466DE, ABF9DC95C5E939B30BFD9BF9EDFDB3BD78A9DFCB055B945965303B6A60E6D7A7 ] tunnel C:\WINDOWS\System32\drivers\tunnel.sys
23:52:45.0764 0x3dbc tunnel - ok
23:52:45.0768 0x3dbc [ F723552F65D44FE693DB1A383825B3A8, EF8C343C4EB5EEA4EC830378EF576CCD6CD4EEDEDD486C0F29697044E8C71F45 ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
23:52:45.0781 0x3dbc tzautoupdate - ok
23:52:45.0785 0x3dbc [ AA65954F512BA097DD190790876DD991, C1BB2B8F54F064D01190327B5E7949EBBDA21D6FC6F94D9FCD20F685C2F855FA ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
23:52:45.0793 0x3dbc UASPStor - ok
23:52:45.0798 0x3dbc [ AB6268022C3A5B529075A39C33904DA6, 2717F1704640201F2681711543EA39A74C3E89C7DB232EC5DD89FD8AA6F07846 ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
23:52:45.0809 0x3dbc UcmCx0101 - ok
23:52:45.0814 0x3dbc [ 7ED2EDA43D21C7A5F589A7960E265C52, 7DB8A595236FBB8A264D7AB155201357212855050ABB5B1036EF32F1223FDCC2 ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
23:52:45.0832 0x3dbc UcmTcpciCx0101 - ok
23:52:45.0835 0x3dbc [ 169351463039B45F5CDED9768879F712, 990C8C4AEF9ED7FF6BCEAE67F7BDAA037777B142B8D96A74F8715C941A5C63C6 ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
23:52:45.0844 0x3dbc UcmUcsi - ok
23:52:45.0850 0x3dbc [ 08A9E3AD29B215484FBB68CDC175DF3A, 3EFFF99C3BC4A1454E3D2B5177AE587ED3041AB4CE2A95BA7E28A2124E38E1E5 ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
23:52:45.0859 0x3dbc Ucx01000 - ok
23:52:45.0862 0x3dbc [ DA70AEE267491AA56BC63AA0C0C96CA2, 0A0AADB27607F9292BB3CE000CFDDB19BD4CA09EAAD926C4925CB43B17817AD9 ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
23:52:45.0872 0x3dbc UdeCx - ok
23:52:45.0880 0x3dbc [ FBC5ECF6D5A868D0B116C2DBB02B8168, 945AA76C60ABAD6075B5C8F9172C018F75BCF393A1CB8B329F5E68E664627775 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
23:52:45.0897 0x3dbc udfs - ok
23:52:45.0901 0x3dbc [ B918E40FAA9CD118CCA4AD388B748C98, 4B539B7B656F02C5E5BAEE52A677757B05CC11C5500D619850A564C28FAB8115 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
23:52:45.0908 0x3dbc UEFI - ok
23:52:45.0913 0x3dbc [ 0FD75222C1AD2687AB365BEBEA400DD4, AD10DBCA59EB7D34FD8F963CE267F36774A9BC613F8D637903B12AC88C328E8A ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
23:52:45.0924 0x3dbc Ufx01000 - ok
23:52:45.0928 0x3dbc [ C1A78C53E01C641AE41BFA65797819F5, 0B9FE1BD724B3315199A1B1DA2F03255E4FE744DA3CE6CD0F77699A8E42E9359 ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
23:52:45.0936 0x3dbc UfxChipidea - ok
23:52:45.0940 0x3dbc [ 767307212110EBEFB93EC9A5BE9E85B9, 368797400FE54802CE74F34B773CE2AF09EB8DEA6C035B55419A52F0B5A6FAD0 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
23:52:45.0949 0x3dbc ufxsynopsys - ok
23:52:45.0955 0x3dbc [ 8578F83EC5175920F2D8586FFF9DCE47, 049A16AC87F93E761150C8286633FFCA62EE85F5645DDE77D36BD0EB6481FF83 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
23:52:45.0966 0x3dbc UI0Detect - ok
23:52:45.0969 0x3dbc [ DC460AAA18CA2342FBBFB2DF9B044472, 14D45E059C596AE97506D26705F248CA1C2269160B31A60341060E8A93146CBD ] umbus C:\WINDOWS\System32\drivers\umbus.sys
23:52:45.0979 0x3dbc umbus - ok
23:52:45.0981 0x3dbc [ C3CF0377917ECE6D65D7623E1E61568F, 4909695E04CBC86BFCFFBC15F332C367521054B7B4D3C141C7CA6B2E40E090B9 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
23:52:45.0990 0x3dbc UmPass - ok
23:52:45.0997 0x3dbc [ 640CF093C1CF16D5FD317616CA348F31, BEC34D1AACA83BF5A84CE01F6A668E3CA5A33C56A446DC42EFFF7C43D22E1AE6 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
23:52:46.0012 0x3dbc UmRdpService - ok
23:52:46.0029 0x3dbc [ B8272BB8D4982C496FDC704809C38E02, F93855D932FB1DBBCC86E82C0FE0DC9ECF93BBD629D2CA9D0BE7E075E114B7FF ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
23:52:46.0061 0x3dbc UnistoreSvc - ok
23:52:46.0071 0x3dbc [ 70A345E575D299BD1D55563B46250B7A, 53050494369854350197A44D69766C2CB86D2D2671DB0B860B4F45A1C37C181B ] UPDATESRV C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
23:52:46.0082 0x3dbc UPDATESRV - ok
23:52:46.0090 0x3dbc [ 6CDA3536F6BAB7896A57EAB7DC07F379, 8FBE6457ECD1ABB518D9800EBA8A017774FFAA8EABD2EDC0825181A12FE9AEF6 ] upnphost C:\WINDOWS\System32\upnphost.dll
23:52:46.0111 0x3dbc upnphost - ok
23:52:46.0114 0x3dbc [ 6B46FC140C9AF68E6E7697D66D59CB4D, F018B4784D65F1A8140A6EA69C35D6A7ECE01738694052FD54AFD2B81A8F2FF8 ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
23:52:46.0121 0x3dbc UrsChipidea - ok
23:52:46.0124 0x3dbc [ B4402E7F0923F660270442CE76877ABE, 1C2DD26EAB71F75EA576E8DAABAF71FD7DC3DF807CF025617C774CEF33C0B718 ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
23:52:46.0132 0x3dbc UrsCx01000 - ok
23:52:46.0135 0x3dbc [ 9DD431F1B94789CFB527E5D19261F124, 8F5A249A97C5B14B282E3147DD21951D2AD34B651E762814C12F4C26D74EC70C ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
23:52:46.0141 0x3dbc UrsSynopsys - ok
23:52:46.0145 0x3dbc [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
23:52:46.0157 0x3dbc USBAAPL64 - ok
23:52:46.0162 0x3dbc [ C87E32B90F085970D9637FBAD45EF6FE, C180EACD2EE479277DA5DBF39E43B428BD7945141B2451CB3946B0C1E495E76F ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
23:52:46.0171 0x3dbc usbccgp - ok
23:52:46.0175 0x3dbc [ 0B663856474AC41924D9E9112203858F, 9E09F2A6279B48CAC09F8C7AA1F1BE02864D540C2ED1460CBA9FABCF0A546A1E ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
23:52:46.0186 0x3dbc usbcir - ok
23:52:46.0190 0x3dbc [ F83D2250256203AC5DA5E8601C1AFDD7, AC0D90E2DB3051798B9D287CF3D0E92FED4000822E65A82775A29CF896B76F04 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
23:52:46.0198 0x3dbc usbehci - ok
23:52:46.0207 0x3dbc [ 7FFD26742321919590ED77FCA556D65F, F7FAB63C36F8519F5A7B9091C507F3CB580C390322FAF9155CCE7F66C965B968 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
23:52:46.0221 0x3dbc usbhub - ok
23:52:46.0231 0x3dbc [ 7A749B2863B5561BE34B39E8E249AD8F, E5B67DFAF5407007FD0CC408D6B4BA19DF59584819FC715E9F9E0FBF3EA00AAB ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
23:52:46.0245 0x3dbc USBHUB3 - ok
23:52:46.0249 0x3dbc [ D2109F1F4FEBF1DAC415CDC5DE876479, C8A871EBD0E5EF004BA622A73DAC36C03608CD317FDCD0A6A98608DF4CC10D55 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
23:52:46.0258 0x3dbc usbohci - ok
23:52:46.0261 0x3dbc [ 29C9572F2D061CFC3C0BD48A3163E343, 2527DCC9E6D421F5DC40051C787A5270EB077746785465C9AA2A2AEEF47307D5 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
23:52:46.0270 0x3dbc usbprint - ok
23:52:46.0274 0x3dbc [ 429477D6DEF3321FF7D3EF23CAAADA00, BB7D2AFE99736AAFFA8B0B2DABF7D6A6D5CB9563B1DE6A7E86CE7DC9D27F31C0 ] usbser C:\WINDOWS\System32\drivers\usbser.sys
23:52:46.0284 0x3dbc usbser - ok
23:52:46.0288 0x3dbc [ 0CC16F7B91C57AE9A4E44425A295FDAA, 7CEE11955E5742DA390601F565412C14A7481B8747C495CCD246696C56B426DC ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
23:52:46.0296 0x3dbc USBSTOR - ok
23:52:46.0301 0x3dbc [ C44D96B1CDDE705B23F55AB423CCA73D, AB9842E90DD3D686E66BDBE043EB0068272B611D6F63C818EB9D1B6FE2FE23BD ] USBTINSP C:\WINDOWS\System32\drivers\tinspusb.sys
23:52:46.0313 0x3dbc USBTINSP - ok
23:52:46.0316 0x3dbc [ C917D09064CDBD18F75ADC9B2C48F847, A7F6223346CCD7E84186CD0C0715014F8E3A4398298925A43290224678620D23 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
23:52:46.0325 0x3dbc usbuhci - ok
23:52:46.0333 0x3dbc [ 95BCCEFBC40D06484CF16144FE79B8A5, 8ABA73C5FFEDD319FB96B807AD08716698E557522478DF1A2C5D662675636AE0 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
23:52:46.0345 0x3dbc USBXHCI - ok
23:52:46.0366 0x3dbc [ 4CC81AB9D380A6264FF4C0C1512CF965, 76C33053D1C9155B0F3F8392FF982AD4EABEE2BBBEE89EA41DBFE8E436973EB0 ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
23:52:46.0405 0x3dbc UserDataSvc - ok
23:52:46.0424 0x3dbc [ AA24C61D88E36BA1144072227922173D, 2EBBC827E740F72EA2E75745E585378189BC0DEE91CACD7FA31BDBC5EFCF8733 ] UserManager C:\WINDOWS\System32\usermgr.dll
23:52:46.0454 0x3dbc UserManager - ok
23:52:46.0464 0x3dbc [ EBF9E40845362DBE2AD0DB3077269488, A6363006350D097F95B03A2F44E1D3FBD3BC40048BE57C715CD7CBC22D1EE70B ] UsoSvc C:\WINDOWS\system32\usocore.dll
23:52:46.0485 0x3dbc UsoSvc - ok
23:52:46.0489 0x3dbc [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] VaultSvc C:\WINDOWS\system32\lsass.exe
23:52:46.0497 0x3dbc VaultSvc - ok
23:52:46.0500 0x3dbc [ 0CBDE344FB48E42D78E29469F202ADBC, A1C3FBA5409DD3BBEAF1D3CE2583D6C8A621C0E4F534155EC540AFD67BC9E8CA ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
23:52:46.0507 0x3dbc vdrvroot - ok
23:52:46.0519 0x3dbc [ 0783EDE1FA94649ED7F3CEF6A734041A, 1A13A613EF6B67459031C7994FFC6F32F73E02E0F123A171618E4F011C635684 ] vds C:\WINDOWS\System32\vds.exe
23:52:46.0543 0x3dbc vds - ok
23:52:46.0549 0x3dbc [ 723195568C8755CAD57F7933C5F2C5C2, 5C403799F67223605F825BC16D217C1EF5E1A0DDF00AC6380FE8976339B67D9B ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
23:52:46.0558 0x3dbc VerifierExt - ok
23:52:46.0570 0x3dbc [ 3BB8D153A9A514EC9FFCB586251A1925, 5E4B46511F9791699826DC63B35528544347166BDE9981FB93F1F7F2A09599C7 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
23:52:46.0587 0x3dbc vhdmp - ok
23:52:46.0591 0x3dbc [ 7929228F0E8B0C2FA0495A17A4FC27F6, 1F1667B10A96B1D85ED165F62A5C0EF28C37F828B8280EA08BFCC1BAC03F2C90 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
23:52:46.0600 0x3dbc vhf - ok
23:52:46.0605 0x3dbc [ AEE432ED868831B1F068E373598F6D93, BAE91F47B0CB94B826CA010B490AD924D7B715911DF3FCE62F9165F3B571105C ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
23:52:46.0613 0x3dbc vmbus - ok
23:52:46.0616 0x3dbc [ 9444B23FC694B5F90F21B0FC7F10D8DD, 86F92856F5C985DD8E5993B51E85E1F47EF8C9B2FB37468998C94266963BB4BD ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
23:52:46.0625 0x3dbc VMBusHID - ok
23:52:46.0628 0x3dbc [ 4D0287F566B36536DD812A54C015FC4A, 01D6508CA59CF04A47902B1F7C202FD14A81240E0B447588D919DD1072B040CF ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
23:52:46.0637 0x3dbc vmgid - ok
23:52:46.0645 0x3dbc [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
23:52:46.0660 0x3dbc vmicguestinterface - ok
23:52:46.0666 0x3dbc [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
23:52:46.0680 0x3dbc vmicheartbeat - ok
23:52:46.0686 0x3dbc [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
23:52:46.0700 0x3dbc vmickvpexchange - ok
23:52:46.0708 0x3dbc [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
23:52:46.0724 0x3dbc vmicrdv - ok
23:52:46.0731 0x3dbc [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
23:52:46.0747 0x3dbc vmicshutdown - ok
23:52:46.0753 0x3dbc [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmictimesync C:\WINDOWS\System32\icsvc.dll
23:52:46.0767 0x3dbc vmictimesync - ok
23:52:46.0773 0x3dbc [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
23:52:46.0787 0x3dbc vmicvmsession - ok
23:52:46.0795 0x3dbc [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicvss C:\WINDOWS\System32\icsvcext.dll
23:52:46.0809 0x3dbc vmicvss - ok
23:52:46.0813 0x3dbc [ 29075915F9BDC3437F8BED71C067D399, 2C7718080C11DFDD4C9A2085537F78F5633369B4A27D9C64168F0249594A4AA2 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
23:52:46.0821 0x3dbc volmgr - ok
23:52:46.0829 0x3dbc [ 6BDB6CE6D2D9E3D3F28F1C97E12B62E2, 5E77D7AF858D7B90FF395F39B86D6F96413D1DDEA28BC9FB40C5524A4DF6DAD0 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
23:52:46.0841 0x3dbc volmgrx - ok
23:52:46.0849 0x3dbc [ BF2546583BB75F01DDA60A7921DFB230, 579BD0BC55F4F03CD8D1FCDAC3975A1649C688820F2F7FC1AD354132D9E3BEE9 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
23:52:46.0861 0x3dbc volsnap - ok
23:52:46.0864 0x3dbc [ AC2E20A74D09D24485BE8396CE04F07B, 23FCE8BEE01B89E5CDCA536D75DBA6DCE3E92E13178A66836CEB7829310A89D1 ] volume C:\WINDOWS\system32\drivers\volume.sys
23:52:46.0870 0x3dbc volume - ok
23:52:46.0874 0x3dbc [ 92F6E3E6D3F1795263EB34B37F74AEF7, 33AB1ECCA1216AF1995E1DB4F11E48156FF62391D7C176C8A4CC1037B9CB3A27 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
23:52:46.0881 0x3dbc vpci - ok
23:52:46.0887 0x3dbc [ FD9BCB8920973CEAD4D49DC7A6D8A618, 34AB4A485FB40DF737600006D8323BE927FB0BDA2BC170F4C123BE775EAE7CC8 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
23:52:46.0895 0x3dbc vsmraid - ok
23:52:46.0916 0x3dbc [ 01FFD5AF533F2CFDF26DDDC9313731C1, BFF0F2E57CD2358AC8F519F6F5692A46D97EC4E9B763D47101CEF31712FD4738 ] VSS C:\WINDOWS\system32\vssvc.exe
23:52:47.0001 0x3dbc VSS - ok
23:52:47.0028 0x3dbc [ 2D8403E281F61D5C6A8662E161887D68, BA4A93D11E334F94D90C9151E8788166E017A095DA778489B43DB7EEA87F65EF ] VSSERV C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
23:52:47.0055 0x3dbc VSSERV - ok
23:52:47.0098 0x3dbc [ 558B8E6F99E198519FD87F1575F7D92D, B176F51B72D9BCD6472A710D4E0B78A7A7D1C3CAEC12725289C1EBA54E35083D ] VSStandardCollectorService140 E:\Programme\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe
23:52:47.0104 0x3dbc VSStandardCollectorService140 - ok
23:52:47.0111 0x3dbc [ 0C111F220798CCE80484026E06822379, B98A5E44D3ABA67E6DE99E18BF3C2C606923E6269E262665C721F672ACBBED2A ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
23:52:47.0121 0x3dbc VSTXRAID - ok
23:52:47.0125 0x3dbc [ 607639716E9DB1CEF4E18B5B229293B4, 1D997177093F907EFE8A04AD10443BB9C355C0D7657DBD449E7EE7FCABC3ECBC ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
23:52:47.0134 0x3dbc vwifibus - ok
23:52:47.0138 0x3dbc [ B1ED64E628763148BF84FBE23F2AD711, 6182A39675E6049BC3DD353694720795A8E3D0331509AA8ABA4883D5C569AD5E ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
23:52:47.0148 0x3dbc vwififlt - ok
23:52:47.0157 0x3dbc [ 76C1CC611352499326001F25A3ED15F8, 228BFA8A01BB1B3868576D509A2EA6F3D37FEDC8F12D4DC4E0A84CE926C6D1B1 ] W32Time C:\WINDOWS\system32\w32time.dll
23:52:47.0177 0x3dbc W32Time - ok
23:52:47.0181 0x3dbc [ 55D00B785A7587F4263D125817871283, B92400B229099C1E243F2B149881A1423A2E9C8CA2D77D868B9B923BFDEC7FF2 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
23:52:47.0190 0x3dbc WacomPen - ok
23:52:47.0199 0x3dbc [ 1483BE4D0135C378CB61D3CD73AB3E03, B7309C9E4F370860C507BF52D17234CDF4A7FAE95D2D822714E07EF5DEC0249B ] WalletService C:\WINDOWS\system32\WalletService.dll
23:52:47.0217 0x3dbc WalletService - ok
23:52:47.0222 0x3dbc [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:52:47.0235 0x3dbc wanarp - ok
23:52:47.0238 0x3dbc [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:52:47.0251 0x3dbc wanarpv6 - ok
23:52:47.0272 0x3dbc [ 30B8286F8FE1AE90A583100D45E02247, 3C86A4A5E21F9A1267EA231B20914E0A162BA4C25FE8917AD3AB6D504DA5BE0C ] wbengine C:\WINDOWS\system32\wbengine.exe
23:52:47.0313 0x3dbc wbengine - ok
23:52:47.0327 0x3dbc [ 8C521D161445C3E1F38A494E7649E70D, F00990B2FE1FB52C74A2057E6480C5EBF2BDBC32955CC03C6B63360F20A49A18 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
23:52:47.0353 0x3dbc WbioSrvc - ok
23:52:47.0358 0x3dbc [ E330144B97D493AA886000DCAAA8DAF5, ED86F46F5A76FD8F06CA98BD61B174ADB9AD4B065394356872708DF8B614E4F9 ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
23:52:47.0366 0x3dbc wcifs - ok
23:52:47.0377 0x3dbc [ 32960EA9CF836D7DD77767DCB68CE230, 679446A4FAB0331C181D2716CAEA225267C6164BB9867E360C5B3D6AB1083195 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
23:52:47.0404 0x3dbc Wcmsvc - ok
23:52:47.0413 0x3dbc [ D50645235A507B0546B1B5CF7D0B8849, 19F5FE10C953B8EE8EEDA9A9F7F2E97AA193BB085E7FC364066686089ADD1C9F ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
23:52:47.0433 0x3dbc wcncsvc - ok
23:52:47.0437 0x3dbc [ AEA1093B751339267D8C8C1EF3D669CF, 8F3325E7FB16BD856A0593C36F2E3E018909038C52CD5F92E116E0C1366F31CB ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
23:52:47.0446 0x3dbc wcnfs - ok
23:52:47.0449 0x3dbc [ D520B1B849B6D4D707AB31722B952C2D, 149BABB7BD63C1F212ADD9306C84FFB2A5CE6DC435BD3213EAB787E9B222C61F ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
23:52:47.0456 0x3dbc WdBoot - ok
23:52:47.0459 0x3dbc [ A556768CC1FA4F36022BEE2F0EDE2566, 3A4BC9DE614F43CD94FA354A565C66B2E1E36C0608D84C6288010B97B9D811AA ] WDC_SAM C:\WINDOWS\System32\drivers\wdcsam64.sys
23:52:47.0467 0x3dbc WDC_SAM - ok
23:52:47.0474 0x3dbc [ E84CF717E854D02DF30BD1BCC612BEAC, 31E3D9F5D369C62D32C7A79FA9198BA772223764C2E07E4FA2FE3826F81BE112 ] WDDriveService C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
23:52:47.0482 0x3dbc WDDriveService - ok
23:52:47.0496 0x3dbc [ 5030C76047D756263093A47B82970868, E772F15973F6DE36851DD230F1F4190746CD81CA1E7284DC074711C4BF45CAF0 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
23:52:47.0513 0x3dbc Wdf01000 - ok
23:52:47.0520 0x3dbc [ 29FF9199EDEB4F5470BB134D1A2563D2, 94713F98A6EA6042203D5DD0DE6758F5F0F331F7D4BB05E91EF20CEEEBD6780F ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
23:52:47.0531 0x3dbc WdFilter - ok
23:52:47.0535 0x3dbc [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
23:52:47.0548 0x3dbc WdiServiceHost - ok
23:52:47.0551 0x3dbc [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
23:52:47.0564 0x3dbc WdiSystemHost - ok
23:52:47.0576 0x3dbc [ 8CB606A3057355FD5A9DBDD1A0AC94EF, 6DD0B4A2270633086EBB569A00B87430EE6EF173525E341404B15845B57BE86D ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
23:52:47.0598 0x3dbc wdiwifi - ok
23:52:47.0603 0x3dbc [ 17CF416CFF408190F5A4CBD79AB12E55, E376C8865C7EA633AE20D2CF940E4C7584AC783BAAF7941780FB6C4C84802F33 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
23:52:47.0611 0x3dbc WdNisDrv - ok
23:52:47.0614 0x3dbc WdNisSvc - ok
23:52:47.0620 0x3dbc [ 3570C4E14F85CE0B537D126727ACA91C, A474C9E6B6E4E5945C63367C1D3D24D4782C4A4FEB00FAE15DFED099D8283078 ] WebClient C:\WINDOWS\System32\webclnt.dll
23:52:47.0636 0x3dbc WebClient - ok
23:52:47.0642 0x3dbc [ 1785F9C96A0BDEC1F6E0C79EF412F342, D6D4EDA69457BEDDA69C2F60FC4C2FAC97D46CD8E9C1804CCD68F169383583E3 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
23:52:47.0660 0x3dbc Wecsvc - ok
23:52:47.0663 0x3dbc [ B9175D63527B05131F2FA504CF0265F2, 1E43A17788F1B6A29E2889C81E0BE100D64BD3A9DEE7C154D9581F01D2D7D05F ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
23:52:47.0675 0x3dbc WEPHOSTSVC - ok
23:52:47.0678 0x3dbc [ 5C58EC0C9D4DE04DCDE56F6DCEA62080, 8ED386EDF4C39C339CE0BB2AC7E199C38705E5A6B3F56A4987B9A8ABD19BB59F ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
23:52:47.0695 0x3dbc wercplsupport - ok
23:52:47.0700 0x3dbc [ F899B355CC95AF26AB36E84E8A0DD685, C400F2F80FFF6473FEF066943C4A2AFF0FFE988A4F755757A2E5005C2A10DAD8 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
23:52:47.0714 0x3dbc WerSvc - ok
23:52:47.0719 0x3dbc [ E1785942AC51FEE6826CDF02075C5AA9, 56FE7017684086F4F9C3A2C0D3AC00369BA0938BA3987EEBEE9A75B8E3CA0AE1 ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
23:52:47.0728 0x3dbc WFPLWFS - ok
23:52:47.0732 0x3dbc [ B154618505A6A9026EFA6AB8C4123BF1, 713648D71AA027B4472E7E75B942630DBE7383687984B02A5E99C9E4192C95EB ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
23:52:47.0744 0x3dbc WiaRpc - ok
23:52:47.0748 0x3dbc [ 0CF79A0EACFFBB75A50A469A27696D02, E112BF7B5A8D0B0AD2EA0E7B9FD4E8CFEC9371C8E94A60248292D688AFE715C4 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
23:52:47.0755 0x3dbc WIMMount - ok
23:52:47.0756 0x3dbc WinDefend - ok
23:52:47.0763 0x3dbc [ 0DE131733317EB4BE67028366B0CAAC6, AC7DADBF03A3752B4D33CA19F03DBCEDD6F56893C2DA25C98B0AB07063D990E3 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
23:52:47.0771 0x3dbc WindowsTrustedRT - ok
23:52:47.0774 0x3dbc [ 92EB5D38BDF10C790450F3E46BF93A0E, 0FC027398DBD43EDC1F7D703C0B6DB20294DF34E67C9288442039B1A5663CE1B ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
23:52:47.0780 0x3dbc WindowsTrustedRTProxy - ok
23:52:47.0793 0x3dbc [ C2A3B07F0118D61086C99BDCBAB6A6A3, 04D646BEF1C6F427503C594F0ECBB33140C3991A3A7AFB66B2C9581E358F9FD2 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
23:52:47.0819 0x3dbc WinHttpAutoProxySvc - ok
23:52:47.0823 0x3dbc [ F95DE20312ACCA7761446DE152BD1F7C, F6C5ACA500C2182437F4A7402BD81C3A2B77C0BBD78BA31FB574DC1997FCBFE6 ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
23:52:47.0829 0x3dbc WinMad - ok
23:52:47.0840 0x3dbc [ CD49CA8E3280ACEEC5ECF431A59F5EFD, 75F48EFC6DEE9E06B490703EE47602AFDEA51505285B02D2CF884601E71857CC ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
23:52:47.0855 0x3dbc Winmgmt - ok
23:52:47.0861 0x3dbc [ 0C0195C48B6B8582FA6F6373032118DA, 11BD2C9F9E2397C9A16E0990E4ED2CF0679498FE0FD418A3DFDAC60B5C160EE5 ] WinRing0_1_2_0 C:\Program Files (x86)\NZXT\CAM\CAM_V3.sys
23:52:47.0867 0x3dbc WinRing0_1_2_0 - ok
23:52:47.0904 0x3dbc [ B8C0D620219ECAA23A2AC841EAF454D1, FB527C4D36929D7FAE2A837727C557B7823A72069EBCAB7D16C49E8B21E8D952 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
23:52:47.0979 0x3dbc WinRM - ok
23:52:47.0988 0x3dbc [ 4EFB346BFDAEEB29316AA52BBB9852B1, 4BC5554F44BD9549D0A929D77BD410FA3EB502A7D0170303D369268672505494 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
23:52:47.0998 0x3dbc WINUSB - ok
23:52:48.0002 0x3dbc [ 8B9AFF5F08E66A6F1F1063DEC9457FB6, 98F2AF6988D125521FD34CAA48B9652922F0C8ECFAE9B0C1DF4B3CE6B9CF500F ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
23:52:48.0010 0x3dbc WinVerbs - ok
23:52:48.0020 0x3dbc [ ECD999D8412A3473C26B118F89DB9908, 5FB9B93E4B5482CCFF01D805DFA386FD8D3441BC81E7BD5DF89EE3078FD724F3 ] wisvc C:\WINDOWS\system32\flightsettings.dll
23:52:48.0045 0x3dbc wisvc - ok
23:52:48.0077 0x3dbc [ 7671078AEF4C0203B053A9642C401FF7, BBFADA89CD31F20ADDBFAFAD2E492C72D82BF2F8B823BB6773F04D229B62534C ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
23:52:48.0132 0x3dbc WlanSvc - ok
23:52:48.0163 0x3dbc [ E15711970C5BE05E8D70B294D0AFF621, 30670CFC4DA57B4A3E0E895E4111100D847BB8041A258A303524CD96DC566482 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
23:52:48.0213 0x3dbc wlidsvc - ok
23:52:48.0217 0x3dbc [ 6F4F4F5A007D1710BD76FB311DA97C07, FC0FEA4364F6BA4E31DBC82735D09D429CA3BE9AFCFF5D5E1263D8B27FC2CE3E ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
23:52:48.0227 0x3dbc WmiAcpi - ok
23:52:48.0234 0x3dbc [ 3CDDFF6CAD962C5EF1C52FD667C358B6, F6F09145E9461EB17172988D26749FCF36920A1A683459334D04A6D072B31A92 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
23:52:48.0246 0x3dbc wmiApSrv - ok
23:52:48.0248 0x3dbc WMPNetworkSvc - ok
23:52:48.0255 0x3dbc [ 43C8D087B31C592163B33A4BDA540E40, 3A6C4E5E56931B29321DCC723585F2F0E804EF4DCDEAB2A8687F30FC3AE70E43 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
23:52:48.0264 0x3dbc Wof - ok
23:52:48.0296 0x3dbc [ 909CB4BBF7B08E78C363000E09E79A6F, 217205D1B5EE03274AFF9405AED6D2A5665CBA4C3876E84B53DA44920CDF9CB1 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
23:52:48.0341 0x3dbc workfolderssvc - ok
23:52:48.0346 0x3dbc [ F02930EB91596042F2221397D60AFCE5, 10E2AB0993B67CBAA9E11C68280608965064EC9F7E0C570F5B453FACADB8AB5D ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
23:52:48.0358 0x3dbc WPDBusEnum - ok
23:52:48.0362 0x3dbc [ 75A9284F01FE7CB1A7D5EAE5C1EB4F33, 390EF23AEA06D8711555F7979FF8BE0620B53C1A551638C4EC6FB7C6678965B3 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
23:52:48.0368 0x3dbc WpdUpFltr - ok
23:52:48.0375 0x3dbc [ 60E2EB3E7B7F15C25E02462159F90707, D8344B529EEC0D4922CAC3E6897CC9F191ACF1376017BE38ED6BF6019F1ED181 ] WpnService C:\WINDOWS\system32\WpnService.dll
23:52:48.0390 0x3dbc WpnService - ok
23:52:48.0394 0x3dbc [ C7C91FB86A3C6CD7619725A88ED1884C, 132C43C518F37BF303D768BD5FB0AB835F693C43FE693937D804A34E940D770F ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
23:52:48.0405 0x3dbc WpnUserService - ok
23:52:48.0410 0x3dbc [ 36D7B73ADC3E10607ED6EC874AFB5D1E, 1737B3E4D2CA76BB27903BF460E4960E6A0BC32D35069AC7C5E4B07F625F3282 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
23:52:48.0419 0x3dbc ws2ifsl - ok
23:52:48.0425 0x3dbc [ 9A0E0B836413EB0BC885532D2A5389D6, AFEE4A0578D5581E4D72999A33C0DEA6253BD891F611AFF9AFDE4160A60105F3 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
23:52:48.0439 0x3dbc wscsvc - ok
23:52:48.0442 0x3dbc [ 696EC2EAA2A42A137CCBB9A84D6917C0, 424089F4F373962AF8357C5D4D43F35948989BE3F58EAD3690F565F4C1BBC66F ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
23:52:48.0451 0x3dbc WSDPrintDevice - ok
23:52:48.0455 0x3dbc [ 46E4A69825A7554A5DB784A55F8AD203, 7F347054FCDD5DEF93083D420E56EBE5EEBBAE2BD2FED9B2E75E85149DE52780 ] WSDScan C:\WINDOWS\system32\DRIVERS\WSDScan.sys
23:52:48.0465 0x3dbc WSDScan - ok
23:52:48.0467 0x3dbc WSearch - ok
23:52:48.0527 0x3dbc [ DDB7E452A99E0E5244105C6D2CF4BC9E, 1364B03AFFD20D339A2EBA303575BCCBC2D122D89810B1E3593CC55F93F9B79A ] wuauserv C:\WINDOWS\system32\wuaueng.dll
23:52:48.0594 0x3dbc wuauserv - ok
23:52:48.0606 0x3dbc [ AED7FE551E8672B824A56324076183EB, FFE543AAEFDEFFE6B20C244DB141A9425BDA88ED36F4870F0B70FEC433BDF0C1 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
23:52:48.0616 0x3dbc WudfPf - ok
23:52:48.0625 0x3dbc [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFRd C:\WINDOWS\system32\drivers\WudfRd.sys
23:52:48.0637 0x3dbc WUDFRd - ok
23:52:48.0645 0x3dbc [ 47F6450F28BAA32B2AB0D6BE00996249, C8A47D6ADF89AD613AB685C6224B9099DCEFDCD8ABCF703542AFDC356404116E ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
23:52:48.0667 0x3dbc wudfsvc - ok
23:52:48.0679 0x3dbc [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:52:48.0692 0x3dbc WUDFWpdFs - ok
23:52:48.0697 0x3dbc [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:52:48.0710 0x3dbc WUDFWpdMtp - ok
23:52:48.0735 0x3dbc [ E231728BC515A4B85543AF74A1FEDFCB, 5D250D7D789B5BB56BFA2E7A109BCEB3686B7636C54D89F4E9804101D145C955 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
23:52:48.0778 0x3dbc WwanSvc - ok
23:52:48.0802 0x3dbc [ F39D6915451D9226AC9A5E7AE70E2ABA, E05D678DC0423A4D0EB8B3BB5A942721BB4F3B0BED22748252DBD6053FE956F1 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
23:52:48.0833 0x3dbc XblAuthManager - ok
23:52:48.0859 0x3dbc [ 765FF96467A26C4C03281ECA426EC2D9, 2526B03C518D72F429C29BA4D4F11707AF277BF71520A1A92238A932950AE161 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
23:52:48.0906 0x3dbc XblGameSave - ok
23:52:48.0919 0x3dbc [ 9627BBAA50878F6833A6A7843EE3B1D9, 637566BB56501C4D11E3B6E6AC1C602D880C9D357CCE3DF1DF74EE672744F2B7 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
23:52:48.0939 0x3dbc xboxgip - ok
23:52:48.0964 0x3dbc [ 335E6F2BE58523B295945C840C185B00, 94ED7E2CB212A3D55B8A2CB90CD1D02A6AF92DC0DDD487CB5B7CAC9883343460 ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
23:52:48.0998 0x3dbc XboxNetApiSvc - ok
23:52:49.0008 0x3dbc [ 63088A3361D9A308F328F11E9099DD87, E03FDB932FC57F199C8F8A8EADA338BDF7D2F9C6CB8FAB679A92B48B1E5AFE8A ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
23:52:49.0016 0x3dbc xinputhid - ok
23:52:49.0026 0x3dbc [ 0AE3DB0D31305817E5DA27AC7079DAD3, 9CFE0C1A869379807EF8803C3351293889350AAE35F7E2B22FBEF4427E370C2A ] XTU3SERVICE C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
23:52:49.0032 0x3dbc XTU3SERVICE - ok
23:52:49.0040 0x3dbc [ 9176C0822FAA649E45121875BE32F5D2, B7A7A906A7BB0F760ED241F998C647D728C4DB5D8778AFE585DF38331165803F ] xusb21 C:\WINDOWS\System32\drivers\xusb21.sys
23:52:49.0046 0x3dbc xusb21 - ok
23:52:49.0046 0x3dbc ================ Scan global ===============================
23:52:49.0053 0x3dbc [ 0C710DB449712EE13ACE733695DB7780, BBC7875B38D318CE4E88979D083AC72E8993254A466A8A6882DDE9E0C3B687A3 ] C:\WINDOWS\system32\basesrv.dll
23:52:49.0058 0x3dbc [ 4C08BF958476A137C78B62B22B5F90A4, 11DDD033896C96F8F7F1A1EDD0F4E0F07AFBB3202DC8A2E5E3ADB51C4D0700D4 ] C:\WINDOWS\system32\winsrv.dll
23:52:49.0063 0x3dbc [ 1EE06E957B0B2CA52D26DA7861E160EF, 4B743A1C7010138F5F6684BBCF7CAD6FD05F49920BDD3FDB776347AA6B44AB94 ] C:\WINDOWS\system32\sxssrv.dll
23:52:49.0086 0x3dbc [ 3C69CC28665854F1AAB4B4005005FA31, 2750F5ECCD448C07E3402AA64EA625D27C6BC1D000A3FFE57C03D62428BB46C4 ] C:\WINDOWS\system32\services.exe
23:52:49.0091 0x3dbc [ Global ] - ok
23:52:49.0092 0x3dbc ================ Scan MBR ==================================
23:52:49.0098 0x3dbc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:52:49.0275 0x3dbc \Device\Harddisk0\DR0 - ok
23:52:49.0311 0x3dbc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
23:52:49.0364 0x3dbc \Device\Harddisk1\DR1 - ok
23:52:49.0365 0x3dbc ================ Scan VBR ==================================
23:52:49.0373 0x3dbc [ 80D49DCFE98C110400BDA1BC0C1323A7 ] \Device\Harddisk0\DR0\Partition1
23:52:49.0374 0x3dbc \Device\Harddisk0\DR0\Partition1 - ok
23:52:49.0376 0x3dbc [ 1B036AED460639F377B30D506B84C6B6 ] \Device\Harddisk0\DR0\Partition2
23:52:49.0388 0x3dbc \Device\Harddisk0\DR0\Partition2 - ok
23:52:49.0390 0x3dbc [ FA2A8053D1B14EB953D59203F52E0469 ] \Device\Harddisk1\DR1\Partition1
23:52:49.0390 0x3dbc \Device\Harddisk1\DR1\Partition1 - ok
23:52:49.0391 0x3dbc ================ Scan generic autorun ======================
23:52:49.0551 0x3dbc [ C25CCB216C4A938FDF398C8BAC6411E1, 91589BF5DC06BD1627B14BBA2EF7B3AB679938AC219B3FE30E62E5F4716FE446 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
23:52:49.0659 0x3dbc RTHDVCPL - ok
23:52:49.0690 0x3dbc [ 6A730A0075741865174929124650B636, FD1E283849F07E996C70DACA4589C29FBC61558716434E1C7749B4FA9BA632FF ] C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe
23:52:49.0705 0x3dbc NahimicMSIUILauncher - ok
23:52:49.0725 0x3dbc [ BA973512967321769A17B5193703C229, 227DF8C8B6297271EE860B6813C7897B5EA7979B0279A9A0E8EA46689FFEF76B ] C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe
23:52:49.0745 0x3dbc GoPro Tray App - ok
23:52:49.0757 0x3dbc [ A0E32171EFB9432D0746F5EF728BB0FB, B468233DD9C68EBA86A3970587177CD86402212F456956D70B926875519833FA ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
23:52:49.0767 0x3dbc AdobeAAMUpdater-1.0 - ok
23:52:49.0771 0x3dbc [ C7645D43451C6D94D87F4D07BDE59C89, 495BBA47FC43EE23054FCD419F2F00457162D1C04296900C6AEA551102A810F3 ] C:\WINDOWS\system32\rundll32.exe
23:52:49.0786 0x3dbc ShadowPlay - ok
23:52:49.0830 0x3dbc [ 1710A603D1EEBF86D738D1C6283C39B3, 5427A41AB64122FC119A42D7E4954A04A650FE88BD2B7FD2D4CDD1E823433268 ] E:\Programme\iTunesHelper.exe
23:52:49.0836 0x3dbc iTunesHelper - ok
23:52:49.0852 0x3dbc [ 1EB88973D64446BADA7122EB848924F8, 8ACA32BEDE030F5B379E30D80AD0E87F8D6D3E0C979BFA607CD786AD075A229B ] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
23:52:49.0869 0x3dbc Super Charger - ok
23:52:49.0872 0x3dbc [ 09ADDD7219CBE4918839CC46A339BC14, B7B97F746DBD56C706DBFC477F017003EA75C40A444381EFBD3C34709D1A78A8 ] C:\Program Files (x86)\NZXT\CAM\CAMLauncher.exe
23:52:49.0877 0x3dbc CAM - ok
23:52:49.0905 0x3dbc [ 80996CFC5DFFB2D55030852D735C39DA, 3EC7F0466640F93684D495006F4AB8E4FF495FD020787B203F900BF597354B85 ] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe
23:52:49.0931 0x3dbc OnScreen Control - ok
23:52:49.0959 0x3dbc [ 11BE65E4C596E5380FDD4C8DA0F55BE0, D8576DD5F90B6F2888787EF4C917281105A90EC9A0438A65C5AEB1BD819ECDC8 ] C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe
23:52:49.0984 0x3dbc LedStatus - ok
23:52:49.0992 0x3dbc [ B3800D1B1A6E856A40BEAD9C2E9D88F6, 77B71CF777509F8215130ECCE921F0147F7F742BC9849FD166C8AA8CDB7B9401 ] C:\Program Files (x86)\Rapoo\RpWireless\Launch.exe
23:52:50.0001 0x3dbc Launch - ok
23:52:50.0005 0x3dbc [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
23:52:50.0010 0x3dbc HP Software Update - ok
23:52:50.0030 0x3dbc [ 5E5ABBCB6A426693EDBF3E68E480DF2D, E23C28D87026F3213269BE9B8C339CAA23CB3E7D2F183C9AE085199C6322ECC6 ] C:\WINDOWS\SysWoW64\wscript.exe
23:52:50.0051 0x3dbc Kocuh - ok
23:52:50.0170 0x3dbc [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:52:50.0281 0x3dbc OneDriveSetup - ok
23:52:50.0406 0x3dbc [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:52:50.0518 0x3dbc OneDriveSetup - ok
23:52:50.0549 0x3dbc [ CD7DC286D2FDFACB965C3E10967B2199, 30FFB133E70D694BE6968E86E999C797EE7349DCC4E9ACFB338412C039374388 ] C:\Users\Knight Rider\AppData\Local\Microsoft\OneDrive\OneDrive.exe
23:52:50.0573 0x3dbc OneDrive - ok
23:52:50.0646 0x3dbc [ FF206944E3A8590FABE10FB2C321AA6D, 77C555667674C9E4473C64921C5F2A7D723FBE28A73EB5EBAA777CD04D11C06B ] E:\Steam\steam.exe
23:52:50.0684 0x3dbc Steam - ok
23:52:50.0693 0x3dbc [ 6DB9A0FBDA5556B925D64651D57031D3, AE4C9196EFD61B973F93FDDAA001F7C239100EDD7E3F840927C0C07B08C69C04 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
23:52:50.0698 0x3dbc iCloudServices - ok
23:52:50.0701 0x3dbc [ DD854D7F89E3994DA48490E9C440036A, 25775650B62015D6F612C77ADCC7A31E019AEBDC2D40BB9EA1DA620F8B124007 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
23:52:50.0707 0x3dbc iCloudDrive - ok
23:52:50.0713 0x3dbc [ 3C9A02CB0C05C96263E2193C7B728930, 4B948C9DF036228145B60BA0327F259694D0812B99F92BDBBB2CD6ED997E9A13 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
23:52:50.0722 0x3dbc iCloudPhotos - ok
23:52:50.0739 0x3dbc [ D326FD4E85FB48013357ACDB6FB827A9, 1F678CCBF5F8E0761BEB0132CD11DECBE6BD03ECDF3C4308B1C301AB73FC32A7 ] C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
23:52:50.0756 0x3dbc Overwolf - ok
23:52:50.0764 0x3dbc [ 42BBA7D22A5F681CC605966D3E530DED, 1BDBA6C6F69B8C2D185105D50CAA3253073AE55DE018D22484F9F1454C50AD7A ] C:\Program Files (x86)\VLC Updater\vlc-updater.exe
23:52:50.0774 0x3dbc VLC Updater - ok
23:52:50.0775 0x3dbc Waiting for KSN requests completion. In queue: 285
23:52:50.0848 0x280c Object required for P2P: [ 44449A0EB8EBD8DCBC3ED4BB62BA3A5F ] TeamViewer
23:52:51.0030 0x280c Object send P2P result: true
23:52:51.0784 0x3dbc AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
23:52:51.0787 0x3dbc AV detected via SS2: Bitdefender Virenschutz, C:\Program Files\Bitdefender\Bitdefender 2016\wscfix.exe ( 20.0.29.1526 ), 0x41000 ( enabled : updated )
23:52:51.0789 0x3dbc Win FW state via NFP2: enabled ( trusted )
23:52:51.0863 0x3dbc ============================================================
23:52:51.0863 0x3dbc Scan finished
23:52:51.0863 0x3dbc ============================================================
23:52:51.0867 0x231c Detected object count: 1
23:52:51.0867 0x231c Actual detected object count: 1
23:53:48.0432 0x231c chip1click ( UnsignedFile.Multi.Generic ) - skipped by user
23:53:48.0432 0x231c chip1click ( UnsignedFile.Multi.Generic ) - User select action: Skip
Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2017.01.13.13
rootkit: v2016.11.20.01
Windows 10 x64 NTFS
Internet Explorer 11.576.14393.0
Knight Rider :: DESKTOP-RK4M43L [administrator]
1/13/2017 11:47:45 PM
mbar-log-2017-01-13 (23-47-45).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 490541
Time elapsed: 12 minute(s), 17 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
14.01.2017, 13:59
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
15.01.2017, 19:41
| #11 |
| | Pop-up "There is a recommended update for your PC" Ok, habe jetzt alles gemacht... Sorry, dass die Antwort etwas gedauert hat! AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v6.042 - Bericht erstellt am 15/01/2017 um 19:32:44
# Aktualisiert am 06/01/2017 von Malwarebytes
# Datenbank : 2017-01-15.1 [Server]
# Betriebssystem : Windows 10 Home (X64)
# Benutzername : Knight Rider - DESKTOP-RK4M43L
# Gestartet von : C:\Users\Knight Rider\Desktop\AdwCleaner_6.042.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner gelöscht: C:\Users\Knight~1\AppData\Local\Temp\VideoConverter
***** [ Dateien ] *****
[-] Datei gelöscht: C:\Users\Knight Rider\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Startfenster Symbol.lnk
[-] Datei gelöscht: C:\END
[-] Datei gelöscht: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
[-] Aufgabe gelöscht: Yahoo! Powered dedef
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshDecoWizardPage_c
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshDecoWizardPage_c.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshDoctorPage_c
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshDoctorPage_c.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshManipulationPage
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshManipulationPage.24
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshPrepCompPage_c
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshPrepCompPage_c.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshRelaxPage_c
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshRelaxPage_c.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshSmoothPage_c
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshSmoothPage_c.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshSplitPage_c
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\SWNGRE.uiMeshSplitPage_c.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshDecoWizardPage_c
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshDecoWizardPage_c.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshDoctorPage_c
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshDoctorPage_c.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshManipulationPage
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshManipulationPage.24
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshPrepCompPage_c
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshPrepCompPage_c.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshRelaxPage_c
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshRelaxPage_c.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshSmoothPage_c
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshSmoothPage_c.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshSplitPage_c
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\SWNGRE.uiMeshSplitPage_c.1
[-] Schlüssel gelöscht: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\Software\PRODUCTSETUP
[-] Schlüssel gelöscht: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\Software\csastats
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\PRODUCTSETUP
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\csastats
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\PRODUCTSETUP
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\csastats
[-] Daten wiederhergestellt: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Daten wiederhergestellt: HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Daten wiederhergestellt: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Schlüssel gelöscht: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Daten wiederhergestellt: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Daten wiederhergestellt: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Google\Chrome\Extensions\pilplloabdedfmialnfchjomjmpjcoej
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Google\Chrome\Extensions\pilplloabdedfmialnfchjomjmpjcoej
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Google\Chrome\Extensions\pilplloabdedfmialnfchjomjmpjcoej
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\pilplloabdedfmialnfchjomjmpjcoej
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Google\Chrome\Extensions\djhangopedggnlnicpbjklghlckmndge
***** [ Browser ] *****
[-] [C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: djhangopedggnlnicpbjklghlckmndge
[-] [C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: pilplloabdedfmialnfchjomjmpjcoej
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6661 Bytes] - [15/01/2017 19:32:44]
C:\AdwCleaner\AdwCleaner[S0].txt - [6618 Bytes] - [15/01/2017 19:31:11]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [6807 Bytes] ##########
JRT Logfile: Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 10 Home x64
Ran by Knight Rider (Administrator) on Sun 01/15/2017 at 19:38:38.59
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 7
Successfully deleted: C:\ProgramData\1464471858.bdinstall.bin (File)
Successfully deleted: C:\ProgramData\1464545642.bdinstall.bin (File)
Successfully deleted: C:\ProgramData\1465911435.bdinstall.bin (File)
Successfully deleted: C:\ProgramData\1482416137.bdinstall.bin (File)
Successfully deleted: C:\ProgramData\1482438322.bdinstall.bin (File)
Successfully deleted: C:\ProgramData\mntemp (File)
Successfully deleted: C:\Users\Knight Rider\AppData\Roaming\pdfforge (Folder)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 01/15/2017 at 19:39:40.10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
16.01.2017, 12:11
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" Ok, adwCleaner zwecks Kontrolle bitte wiederholen
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.01.2017, 18:28
| #13 |
| | Pop-up "There is a recommended update for your PC" Hier mal die Log-Datei, hat keine Bedrohungen gefunden... AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v6.042 - Bericht erstellt am 16/01/2017 um 18:26:20
# Aktualisiert am 06/01/2017 von Malwarebytes
# Datenbank : 2017-01-15.1 [Lokal]
# Betriebssystem : Windows 10 Home (X64)
# Benutzername : Knight Rider - DESKTOP-RK4M43L
# Gestartet von : C:\Users\Knight Rider\Desktop\AdwCleaner_6.042.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
Keine schädlichen Dienste gefunden.
***** [ Ordner ] *****
Keine schädlichen Ordner gefunden.
***** [ Dateien ] *****
Keine schädlichen Dateien gefunden.
***** [ DLL ] *****
Keine infizierten DLLs gefunden.
***** [ WMI ] *****
Keine schädlichen Schlüssel gefunden.
***** [ Verknüpfungen ] *****
Keine infizierten Verknüpfungen gefunden.
***** [ Aufgabenplanung ] *****
Keine schädlichen Aufgaben gefunden.
***** [ Registrierungsdatenbank ] *****
Keine schädlichen Elemente in der Registrierungsdatenbank gefunden.
***** [ Internetbrowser ] *****
Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Keine schädlichen Elemente in Chrome basierten Browsern gefunden.
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6980 Bytes] - [15/01/2017 19:32:44]
C:\AdwCleaner\AdwCleaner[S0].txt - [6618 Bytes] - [15/01/2017 19:31:11]
C:\AdwCleaner\AdwCleaner[S1].txt - [1355 Bytes] - [16/01/2017 18:26:20]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1428 Bytes] ##########
[/CODE] |
|
16.01.2017, 22:14
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
|
17.01.2017, 16:10
| #15 |
| | Pop-up "There is a recommended update for your PC" So, hier dann nochmal die FRST FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2017
durchgeführt von Knight Rider (Administrator) auf DESKTOP-RK4M43L (17-01-2017 16:04:28)
Gestartet von C:\Users\Knight Rider\Desktop
Geladene Profile: Knight Rider (Verfügbare Profile: Knight Rider)
Platform: Windows 10 Home Version 1607 (X64) Sprache: German (Germany)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
() C:\Program Files (x86)\NZXT\CAM\Service\CAMService.exe
(Robert McNeel & Associates) C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(MSI) E:\Programme\Command Center\DDR\MSIDDRService.exe
(MSI) E:\Programme\Command Center\MSIControlService.exe
(Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
() C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
(Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Hammer & Chisel, Inc.) C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\Discord.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Hammer & Chisel, Inc.) C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\Discord.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe
() C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSISvc32.exe
() C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSISvc64.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
(Apple Inc.) E:\Programme\iTunesHelper.exe
(Valve Corporation) E:\Steam\Steam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Dassault Systèmes SolidWorks Corp.) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe
() C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe
() C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe
(RAPOO) C:\Program Files (x86)\Rapoo\RpWireless\RPConfig.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.101.213.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.101.213.0\OverwolfHelper64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
() C:\Program Files (x86)\NZXT\CAM\FPS\CAMFPS.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8783616 2015-12-11] (Realtek Semiconductor)
HKLM\...\Run: [NahimicMSIUILauncher] => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [740320 2015-12-04] ()
HKLM\...\Run: [GoPro Tray App] => C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [1088944 2016-05-11] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => E:\Programme\iTunesHelper.exe [176440 2016-12-06] (Apple Inc.)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1027024 2015-09-09] (MSI)
HKLM-x32\...\Run: [CAM] => C:\Program Files (x86)\NZXT\CAM\CAMLauncher.exe [47216 2017-01-12] ()
HKLM-x32\...\Run: [OnScreen Control] => C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe [1785328 2015-12-14] (TODO: <Company name>)
HKLM-x32\...\Run: [LedStatus] => C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe [1709736 2013-01-05] ()
HKLM-x32\...\Run: [Launch] => C:\Program Files (x86)\Rapoo\RpWireless\Launch.exe [411664 2013-08-21] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1890664 2016-01-14] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [Command Center] => E:\Programme\Command Center\StartCommandCenter.exe [831584 2016-09-22] (MSI)
HKLM-x32\...\RunOnce: [Kocuh] => C:\WINDOWS\SysWoW64\wscript.exe /E:vbscript /B "C:\Users\MARVIN~1\AppData\Roaming\Kuranogokaf"
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [Steam] => E:\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation)
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1046064 2017-01-04] ()
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [VLC Updater] => C:\Program Files (x86)\VLC Updater\vlc-updater.exe [360776 2016-12-17] ()
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [Discord] => C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2016 Fast Start.lnk [2016-09-12]
ShortcutTarget: SOLIDWORKS 2016 Fast Start.lnk -> C:\Windows\Installer\{768F3B65-1695-47B7-9002-B11400CB111D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{70af2310-3f54-4b00-a522-51aef7773f6d}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-21] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-21] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext [2016-05-12] [ist nicht signiert]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-21] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems)
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=opensearch
CHR DefaultSearchKeyword: Default -> ecosia.org
CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/autocomplete?q={searchTerms}&type=list
CHR Profile: C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default [2017-01-17]
CHR Extension: (Google Slides) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-28]
CHR Extension: (Google Docs) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-28]
CHR Extension: (Google Drive) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-28]
CHR Extension: (YouTube) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-28]
CHR Extension: (GeoGebra Math Apps) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnbaboaihhkjoaolfnfoablhllahjnee [2016-05-30]
CHR Extension: (Adblock Plus) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-27]
CHR Extension: (Google Search) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-05-28]
CHR Extension: (Google Sheets) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-28]
CHR Extension: (iCloud Bookmarks) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2016-05-29]
CHR Extension: (Google Docs Offline) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-28]
CHR Extension: (Night Time In New York City) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnimonidkipnhnpgkhgliocfnnpgkhek [2016-05-29]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-28]
CHR Extension: (Gmail) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-28]
CHR Extension: (Chrome Media Router) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-20]
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 acCAMService; C:\Program Files (x86)\NZXT\CAM\Service\CAMService.exe [27760 2017-01-03] ()
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-08-29] (Chip Digital GmbH) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3699904 2016-12-28] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3755976 2015-07-01] (devolo AG)
R2 ewserver; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe [179208 2016-02-10] ()
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-08-11] (Futuremark)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2016-05-11] ()
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2016-03-29] (Microsoft Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-10-16] (Intel Corporation)
R2 McNeelUpdate; c:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [66968 2016-05-23] (Robert McNeel & Associates)
S3 MSIClock_CC; E:\Programme\Command Center\ClockGen\MSIClockService.exe [2169440 2016-10-21] (MSI)
S3 MSICOMM_CC; E:\Programme\Command Center\MSICommService.exe [2204768 2016-09-29] (MSI)
S3 MSICPU_CC; E:\Programme\Command Center\CPU\MSICPUService.exe [4162656 2016-09-29] (MSI)
R2 MSICTL_CC; E:\Programme\Command Center\MSIControlService.exe [2015328 2016-10-06] (MSI)
R2 MSIDDR_CC; E:\Programme\Command Center\DDR\MSIDDRService.exe [2327648 2016-09-29] (MSI)
S3 MSISMB_CC; E:\Programme\Command Center\SMBus\MSISMBService.exe [2076768 2016-09-29] (MSI)
S3 MSISuperIO_CC; E:\Programme\Command Center\SuperIO\MSISuperIOService.exe [607160 2016-09-29] (MSI)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MSI)
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [51112 2016-06-17] (Microsoft)
R2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [278336 2011-09-19] (NVIDIA)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-11-24] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-11-17] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1317104 2017-01-04] (Overwolf LTD)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1100392 2016-10-28] (Bitdefender)
R2 RemoteSolverDispatcher; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [238848 2016-02-10] (Mentor Graphics Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2016-09-12] (SolidWorks) [Datei ist nicht signiert]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [137216 2016-03-28] (Microsoft Corporation) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe [156016 2016-11-24] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe [1695720 2016-11-24] (Bitdefender)
S3 VSStandardCollectorService140; E:\Programme\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56552 2016-03-22] (Microsoft Corporation)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [308088 2016-01-14] (Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [18232 2016-10-20] (Intel(R) Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AIDA64Driver; C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [45728 2016-10-24] ()
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1605376 2016-11-01] (BitDefender)
S3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [878072 2016-11-01] (BitDefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-28] (BitDefender LLC)
S4 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
R3 CMUSBDAC; C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys [3778592 2015-11-25] (C-MEDIA)
S3 cpuz139; C:\Users\Knight Rider\AppData\Local\Temp\cpuz139\cpuz139_x64.sys [43328 2017-01-11] (CPUID)
R3 cpuz141; C:\Users\Knight Rider\AppData\Local\Temp\cpuz141\cpuz141_x64.sys [46400 2017-01-15] (CPUID)
S3 ewusbnet; C:\WINDOWS\System32\drivers\ewusbnet.sys [132608 2009-06-29] (Huawei Technologies Co., Ltd.)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182944 2016-11-24] (BitDefender LLC)
R3 iaLPSS2_UART2; C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys [281896 2015-07-20] (Intel Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37064 2016-08-24] (Intel Corporation)
R3 ipadtst; C:\Program Files (x86)\MSI\Super Charger\ipadtst_64.sys [20464 2013-11-11] (Windows (R) Win 7 DDK provider)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2015-11-05] (Apple Inc.) [Datei ist nicht signiert]
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
S3 NTIOLib_ACTIVE_X; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NTIOLib_X64.sys [13776 2016-04-12] (MSI)
R3 NTIOLib_MSIDDR_CC; E:\Programme\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3696fe4b96482e60\nvlddmkm.sys [14182960 2016-11-25] (NVIDIA Corporation)
R3 nvoclk64; C:\WINDOWS\system32\DRIVERS\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corp.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-11-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-11-17] (NVIDIA Corporation)
R3 rpkmdrv; C:\WINDOWS\system32\drivers\rpkmdrv.sys [21248 2012-08-16] ()
S4 RsFx0310; C:\WINDOWS\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation)
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-06-28] (BitDefender S.R.L.)
S3 USBTINSP; C:\WINDOWS\System32\drivers\tinspusb.sys [142848 2010-03-29] (Texas Instruments)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 WinRing0_1_2_0; C:\Program Files (x86)\NZXT\CAM\CAM_V3.sys [14544 2017-01-15] (OpenLibSys.org)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-01-17 16:04 - 2017-01-17 16:04 - 00031869 _____ C:\Users\Knight Rider\Desktop\FRST.txt
2017-01-17 16:04 - 2017-01-17 16:04 - 00000000 ____D C:\Users\Knight Rider\Desktop\FRST-OlderVersion
2017-01-15 20:23 - 2017-01-15 20:23 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\TeamSpeak 3
2017-01-15 20:23 - 2017-01-15 20:23 - 00000000 ____D C:\Users\Knight Rider\.TeamSpeak 3
2017-01-15 20:23 - 2017-01-15 20:23 - 00000000 ____D C:\Users\Knight Rider\.QtWebEngineProcess
2017-01-15 19:49 - 2017-01-15 19:49 - 00028121 _____ C:\ProgramData\agent.1484506173.bdinstall.bin
2017-01-15 19:39 - 2017-01-15 19:39 - 00001052 _____ C:\Users\Knight Rider\Desktop\JRT.txt
2017-01-15 19:38 - 2017-01-15 19:38 - 01663040 _____ (Malwarebytes) C:\Users\Knight Rider\Downloads\JRT.exe
2017-01-15 19:33 - 2017-01-15 19:33 - 00024965 _____ C:\ProgramData\agent.1484505187.7236.bin
2017-01-15 19:33 - 2017-01-15 19:33 - 00001115 _____ C:\ProgramData\agent.1484505187.232.bin
2017-01-15 19:28 - 2017-01-16 18:26 - 00000000 ____D C:\AdwCleaner
2017-01-15 19:27 - 2017-01-15 19:28 - 03988944 _____ C:\Users\Knight Rider\Desktop\AdwCleaner_6.042.exe
2017-01-15 19:27 - 2017-01-15 19:27 - 03988944 _____ C:\Users\Knight Rider\Downloads\AdwCleaner_6.042.exe
2017-01-15 19:21 - 2017-01-15 19:28 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\discord
2017-01-15 19:21 - 2017-01-15 19:21 - 52553728 _____ (Hammer & Chisel, Inc.) C:\Users\Knight Rider\Downloads\DiscordSetup.exe
2017-01-15 19:21 - 2017-01-15 19:21 - 00002322 _____ C:\Users\Knight Rider\Desktop\Discord.lnk
2017-01-15 19:21 - 2017-01-15 19:21 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-01-15 19:21 - 2017-01-15 19:21 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Discord
2017-01-14 00:00 - 2017-01-14 00:00 - 00000000 _____ C:\Users\Knight Rider\Desktop\New Text Document (2).txt
2017-01-13 23:54 - 2017-01-13 23:54 - 00000000 _____ C:\Users\Knight Rider\Desktop\New Text Document.txt
2017-01-13 23:49 - 2017-01-13 23:54 - 00293700 _____ C:\TDSSKiller.3.1.0.12_13.01.2017_23.49.00_log.txt
2017-01-13 23:48 - 2017-01-13 23:48 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Knight Rider\Downloads\mbar-1.09.3.1001 (1).exe
2017-01-13 23:48 - 2017-01-13 23:48 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Knight Rider\Downloads\tdsskiller.exe
2017-01-13 23:48 - 2017-01-13 23:48 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Knight Rider\Desktop\tdsskiller.exe
2017-01-13 23:47 - 2017-01-14 00:01 - 00000000 ____D C:\Users\Knight Rider\Desktop\mbar
2017-01-13 23:47 - 2017-01-14 00:01 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-01-13 23:47 - 2017-01-13 23:47 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-01-13 23:47 - 2017-01-13 23:47 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2017-01-13 23:47 - 2017-01-13 23:47 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-13 23:46 - 2017-01-13 23:46 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Knight Rider\Downloads\mbar-1.09.3.1001.exe
2017-01-13 23:46 - 2017-01-13 23:46 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Knight Rider\Desktop\mbar-1.09.3.1001.exe
2017-01-13 22:18 - 2017-01-17 16:04 - 00000000 ____D C:\FRST
2017-01-13 22:18 - 2017-01-13 22:49 - 00094172 _____ C:\Users\Knight Rider\Downloads\Addition.txt
2017-01-13 22:18 - 2017-01-13 22:49 - 00082684 _____ C:\Users\Knight Rider\Downloads\FRST.txt
2017-01-13 22:17 - 2017-01-17 16:04 - 02419200 _____ (Farbar) C:\Users\Knight Rider\Desktop\FRST64.exe
2017-01-12 19:36 - 2017-01-12 19:36 - 00001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CAM.lnk
2017-01-12 19:36 - 2017-01-12 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CAM
2017-01-12 19:28 - 2017-01-12 19:29 - 00262019 _____ C:\Users\Knight Rider\Desktop\3.jpeg
2017-01-12 19:27 - 2017-01-12 19:27 - 00274619 _____ C:\Users\Knight Rider\Desktop\WhatsApp Image 2017-01-11 at 09.57.43.jpeg
2017-01-12 19:27 - 2017-01-12 19:27 - 00262019 _____ C:\Users\Knight Rider\Desktop\2
2017-01-10 21:42 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-01-10 21:42 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-01-10 21:42 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-01-10 21:42 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-01-10 21:42 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-01-10 21:42 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-01-10 21:42 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-01-10 21:42 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-01-10 21:42 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-01-10 21:42 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-01-10 21:42 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-01-10 21:42 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-01-10 21:42 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-01-10 21:42 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-01-10 21:42 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-01-10 21:42 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-01-10 21:42 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-01-10 21:42 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-01-10 21:42 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2017-01-10 21:42 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2017-01-10 21:42 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2017-01-10 21:42 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-01-10 21:42 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-10 21:42 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-01-10 21:42 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-01-10 21:42 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-01-10 21:42 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-01-10 21:42 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-01-10 21:42 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-01-10 21:42 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-01-10 21:42 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-01-10 21:42 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-01-10 21:42 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-01-10 21:42 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-01-10 21:42 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-01-10 21:42 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-01-10 21:42 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-01-10 21:42 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-01-10 21:42 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-01-10 21:42 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-01-10 21:42 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-01-10 21:42 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-01-10 21:42 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-01-10 21:42 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-01-10 21:42 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-01-10 21:42 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-01-10 21:42 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-01-10 21:42 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-01-10 21:42 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-01-10 21:42 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-01-10 21:42 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-01-10 21:42 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-01-10 21:42 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-01-10 21:42 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-01-10 21:42 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-01-10 21:42 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-01-10 21:42 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-01-10 21:42 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-01-10 21:42 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-01-10 21:42 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-10 21:42 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-10 21:42 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-10 21:42 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-01-10 21:42 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2017-01-10 21:42 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-01-10 21:42 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-01-10 21:42 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-01-10 21:42 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-01-10 21:42 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-01-10 21:42 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-01-10 21:42 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-01-10 21:42 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-01-10 21:42 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-01-10 21:42 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-01-10 21:42 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2017-01-10 21:42 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-01-10 21:42 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-01-10 21:42 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-01-10 21:42 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-01-10 21:42 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-01-10 21:42 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-01-10 21:42 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-01-10 21:42 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-01-10 21:42 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-01-10 21:42 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-01-10 21:42 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-01-10 21:42 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-01-10 21:42 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-01-10 21:42 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-01-10 21:42 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-01-10 21:42 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-01-10 21:42 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-01-10 21:42 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-01-10 21:42 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-01-10 21:42 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-01-10 21:42 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-01-10 21:42 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-01-10 21:42 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-01-10 21:42 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-01-10 21:42 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-01-10 21:42 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-01-10 21:42 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-01-10 21:42 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-01-10 21:42 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-01-10 21:42 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-01-10 21:42 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-10 21:42 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-01-10 21:42 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-01-10 21:42 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-01-10 21:42 - 2016-12-14 05:42 - 00384000 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2017-01-10 21:42 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-01-10 21:42 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-01-10 21:42 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-10 21:42 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-01-10 21:42 - 2016-12-14 05:41 - 00362496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2017-01-10 21:42 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-01-10 21:42 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-01-10 21:42 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2017-01-10 21:42 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-01-10 21:42 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-01-10 21:42 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-10 21:42 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-01-10 21:42 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-01-10 21:42 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-01-10 21:42 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-01-10 21:42 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-01-10 21:42 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-01-10 21:42 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-10 21:42 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-01-10 21:42 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-01-10 21:42 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-01-10 21:42 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-01-10 21:42 - 2016-12-14 05:35 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2017-01-10 21:42 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-01-10 21:42 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-01-10 21:42 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-01-10 21:42 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-01-10 21:42 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-01-10 21:42 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-01-10 21:42 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-01-10 21:42 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-01-10 21:42 - 2016-12-14 05:25 - 02795520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2017-01-10 21:42 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-01-10 21:42 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-01-10 21:42 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-01-10 21:42 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-01-10 21:42 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-01-10 21:42 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-01-10 21:42 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-01-10 21:42 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-01-10 21:42 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-01-10 21:42 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-01-10 21:42 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-01-10 21:42 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-01-10 21:42 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-01-10 21:42 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-01-10 21:42 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-10 21:42 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-01-10 21:42 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-01-10 21:42 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-01-03 13:49 - 2017-01-03 13:49 - 00001494 _____ C:\Users\Public\Desktop\iTunes.lnk
2017-01-03 13:49 - 2017-01-03 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-01-03 13:49 - 2017-01-03 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2017-01-03 13:49 - 2017-01-03 13:49 - 00000000 ____D C:\Program Files\iPod
2017-01-02 21:46 - 2017-01-02 21:46 - 00224821 _____ C:\Users\Knight Rider\Desktop\Hyundai i20 Sport.html
2017-01-02 21:46 - 2017-01-02 21:46 - 00000000 ____D C:\Users\Knight Rider\Desktop\Hyundai i20 Sport_files
2016-12-31 00:49 - 2016-12-31 01:15 - 00785384 _____ C:\Users\Knight Rider\Desktop\handling.meta
2016-12-30 19:15 - 2016-12-30 19:15 - 00004189 _____ C:\Users\Knight Rider\Desktop\extratitleupdatedata.meta
2016-12-30 19:13 - 2016-12-30 23:55 - 00001872 _____ C:\Users\Knight Rider\Desktop\dlclist.xml
2016-12-30 01:02 - 2016-12-30 13:06 - 00059805 _____ C:\Users\Knight Rider\Desktop\gameconfig.xml
2016-12-29 22:52 - 2016-09-15 05:03 - 3146774492 _____ C:\Users\Knight Rider\Desktop\REDUX_INSTALLER.oiv
2016-12-29 22:44 - 2016-12-29 23:03 - 00001357 _____ C:\Users\Knight Rider\Desktop\OpenIV.lnk
2016-12-29 22:44 - 2016-12-29 22:44 - 00001359 _____ C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\OpenIV.lnk
2016-12-29 22:37 - 2016-12-29 22:44 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\New Technology Studio
2016-12-29 22:37 - 2016-12-29 22:37 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\New Technology Studio
2016-12-28 22:30 - 2016-12-28 22:30 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\speech
2016-12-23 00:13 - 2017-01-16 18:25 - 00000311 _____ C:\Users\Knight Rider\AppData\Roaming\WB.CFG
2016-12-23 00:12 - 2016-12-23 00:12 - 00000000 ____D C:\Users\Knight Rider\Desktop\OMA OPA FESTPLATTE
2016-12-22 22:09 - 2016-12-23 01:01 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\VidCoder
2016-12-22 22:09 - 2016-12-22 22:09 - 00000865 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VidCoder.lnk
2016-12-22 22:09 - 2016-12-22 22:09 - 00000000 ____D C:\Program Files\VidCoder
2016-12-22 21:23 - 2016-12-22 21:23 - 00000000 ____D C:\Users\Knight Rider\.fontconfig
2016-12-22 21:22 - 2016-12-22 21:22 - 00005054 _____ C:\ProgramData\mudtcpaz.vzs
2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Movavi
2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\converter
2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\ProgramData\Movavi Video Converter 17
2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\ProgramData\Movavi
2016-12-22 18:54 - 2016-12-22 19:47 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\dvdcss
2016-12-22 15:13 - 2017-01-16 18:25 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\UpdateTask
2016-12-22 15:13 - 2016-12-30 12:58 - 00000328 _____ C:\WINDOWS\Tasks\{18B1376D-06ED-545E-2B12-4A0CF6A2E511}.job
2016-12-22 15:13 - 2016-12-22 15:13 - 00018411 _____ C:\Users\Knight Rider\AppData\Roaming\Kuranogokaf
2016-12-22 15:13 - 2016-12-22 15:13 - 00002868 _____ C:\WINDOWS\System32\Tasks\{18B1376D-06ED-545E-2B12-4A0CF6A2E511}
2016-12-22 15:12 - 2017-01-15 19:32 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-12-22 15:12 - 2016-12-22 15:13 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\{CF78F924-EBD0-959C-8648-B074A2204CEC}
2016-12-22 15:12 - 2016-12-22 15:12 - 00000000 ____D C:\ProgramData\{A63A6359-2C78-E99F-AABE-77DD30FCFC13}
2016-12-22 15:09 - 2016-12-23 00:05 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\vlc
2016-12-22 15:09 - 2016-12-22 15:09 - 00000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-12-22 15:09 - 2016-12-22 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-12-22 15:09 - 2016-12-22 15:09 - 00000000 ____D C:\Program Files\VideoLAN
2016-12-22 15:08 - 2016-12-22 15:08 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Mozilla
2016-12-22 15:08 - 2016-12-22 15:08 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VLC Updater
2016-12-22 15:08 - 2016-12-22 15:08 - 00000000 ____D C:\Program Files (x86)\VLC Updater
2016-12-21 20:28 - 2016-12-21 20:28 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-01-17 16:04 - 2016-09-23 14:37 - 00000000 ____D C:\Users\Knight Rider
2017-01-17 16:04 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-17 16:04 - 2016-05-29 19:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-01-17 16:03 - 2016-10-07 19:35 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2017-01-17 16:03 - 2016-09-23 14:50 - 00003262 _____ C:\WINDOWS\System32\Tasks\CAM
2017-01-17 16:03 - 2016-09-23 14:36 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-17 16:03 - 2016-06-01 20:10 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Overwolf
2017-01-17 16:03 - 2016-05-29 14:55 - 00000000 ___RD C:\Users\Knight Rider\iCloudDrive
2017-01-16 22:19 - 2016-09-23 14:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-16 22:18 - 2016-05-28 22:51 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\TS3Client
2017-01-16 18:25 - 2016-07-19 22:33 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Adobe
2017-01-15 23:11 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\WhatsApp
2017-01-15 20:23 - 2016-05-28 22:51 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-01-15 19:49 - 2016-05-28 22:38 - 00000000 ____D C:\Program Files\Bitdefender Agent
2017-01-15 19:39 - 2016-09-23 14:37 - 03537342 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-15 19:39 - 2016-07-16 23:51 - 01520768 _____ C:\WINDOWS\system32\perfh007.dat
2017-01-15 19:39 - 2016-07-16 23:51 - 00406250 _____ C:\WINDOWS\system32\perfc007.dat
2017-01-15 19:38 - 2016-07-09 13:13 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\CrashDumps
2017-01-15 19:33 - 2016-09-23 14:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-15 19:33 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-01-15 19:33 - 2016-05-28 22:47 - 00031506 _____ C:\bdlog.txt
2017-01-15 19:21 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\SquirrelTemp
2017-01-15 18:57 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-13 20:59 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-12 20:12 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2017-01-12 19:36 - 2016-12-14 09:11 - 00002049 _____ C:\Users\Knight Rider\Desktop\CAM.lnk
2017-01-12 19:23 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2017-01-12 19:23 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\WhatsApp
2017-01-12 19:10 - 2016-06-01 20:11 - 00000000 ____D C:\Program Files (x86)\Overwolf
2017-01-12 19:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-01-12 19:09 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-11 19:22 - 2016-07-16 07:04 - 00065536 _____ C:\WINDOWS\system32\config\ELAM
2017-01-11 19:17 - 2016-09-23 14:36 - 05338424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-01-10 22:02 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-10 22:01 - 2016-05-28 23:31 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-10 21:58 - 2016-05-28 23:31 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-10 21:51 - 2016-12-06 21:44 - 00003306 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-01-10 21:51 - 2016-05-29 03:31 - 00002436 _____ C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-08 22:04 - 2016-09-12 19:45 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\SolidWorks
2017-01-08 21:59 - 2016-09-12 18:11 - 00000000 ____D C:\SOLIDWORKS Data
2017-01-06 22:39 - 2016-05-30 18:05 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\ElevatedDiagnostics
2017-01-03 13:49 - 2016-05-29 13:24 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-01-01 23:05 - 2016-09-12 19:51 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\TempSWBackupDirectory
2016-12-30 22:12 - 2016-06-12 13:23 - 00000500 _____ C:\WINDOWS\SysWOW64\Drivers\ibyfyu_482.set
2016-12-30 22:12 - 2016-06-12 13:23 - 00000500 _____ C:\WINDOWS\SysWOW64\Drivers\ddpnqch216.dat
2016-12-30 22:12 - 2016-06-12 13:23 - 00000500 _____ C:\WINDOWS\d_jdmjol189.ini
2016-12-30 20:41 - 2016-05-29 03:29 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Packages
2016-12-30 12:59 - 2016-06-01 20:11 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2016-12-28 22:30 - 2016-09-23 14:37 - 00000000 ___SD C:\Users\Knight Rider\AppData\Roaming\Microsoft
2016-12-23 00:13 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-12-23 00:13 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-22 21:26 - 2016-07-16 07:04 - 00000000 ____D C:\Program Files (x86)
2016-12-22 15:17 - 2016-10-19 21:22 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-12-22 15:17 - 2016-09-23 15:29 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-12-22 15:17 - 2016-05-29 03:29 - 00000000 ___RD C:\Users\Knight Rider\Favorites
2016-12-22 15:13 - 2016-08-08 22:38 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\DVDVideoSoft
2016-12-21 20:28 - 2016-10-23 11:08 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-12-21 20:28 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Fonts
2016-12-20 21:34 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\assembly
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-07-27 22:56 - 2016-11-03 22:11 - 0000033 _____ () C:\Users\Knight Rider\AppData\Roaming\AdobeWLCMCache.dat
2016-12-22 15:13 - 2016-12-22 15:13 - 0018411 _____ () C:\Users\Knight Rider\AppData\Roaming\Kuranogokaf
2016-12-23 00:13 - 2017-01-16 18:25 - 0000311 _____ () C:\Users\Knight Rider\AppData\Roaming\WB.CFG
2016-05-29 12:24 - 2016-11-29 19:58 - 2612224 _____ () C:\Users\Knight Rider\AppData\Local\file__0.localstorage
2016-07-24 22:53 - 2016-07-24 22:53 - 0007597 _____ () C:\Users\Knight Rider\AppData\Local\Resmon.ResmonCfg
2016-09-20 16:53 - 2016-09-20 16:53 - 0026851 _____ () C:\ProgramData\agent.1474386831.bdinstall.bin
2016-11-01 12:59 - 2016-11-01 12:59 - 0028772 _____ () C:\ProgramData\agent.1478001575.bdinstall.bin
2017-01-15 19:33 - 2017-01-15 19:33 - 0001115 _____ () C:\ProgramData\agent.1484505187.232.bin
2017-01-15 19:33 - 2017-01-15 19:33 - 0024965 _____ () C:\ProgramData\agent.1484505187.7236.bin
2017-01-15 19:49 - 2017-01-15 19:49 - 0028121 _____ () C:\ProgramData\agent.1484506173.bdinstall.bin
2016-05-29 21:28 - 2016-05-29 21:28 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-09-23 14:36 - 2016-09-23 14:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-22 21:22 - 2016-12-22 21:22 - 0005054 _____ () C:\ProgramData\mudtcpaz.vzs
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Windows\Tasks\{18B1376D-06ED-545E-2B12-4A0CF6A2E511}.job
Einige Dateien in TEMP:
====================
C:\Users\Knight Rider\AppData\Local\Temp\Command Center.exe
C:\Users\Knight Rider\AppData\Local\Temp\jansi-64-8419322462143325029.dll
C:\Users\Knight Rider\AppData\Local\Temp\jna5729792694410647721.dll
C:\Users\Knight Rider\AppData\Local\Temp\jre-8u111-windows-au.exe
C:\Users\Knight Rider\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Knight Rider\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Knight Rider\AppData\Local\Temp\nvStInst.exe
C:\Users\Knight Rider\AppData\Local\Temp\ovi-uninstall.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-01-15 19:07
==================== Ende von FRST.txt ============================
|
|
| Themen zu Pop-up "There is a recommended update for your PC" |
| a.exe, ausgeführt, benutzung, bitdefender, computer, datei, defender, ebenfalls, einzige, gen, gescannt, guten, heute, hoffe, klicke, klicken, natürlich, nichts, schließe, schließen, task-manager, titel, update, upgrade, vordergrund |
Linear-Darstellung
