Edge Virus?

Mk91 · 25.07.2017, 16:00

Hallo,
ich habe im Internet auf ein scheinbar harmloses Bild geklickt und mein Edge-Browser ist sofort auf die angehängte Seite gesprungen.

Es wird folgendes als Ton vorgelesen: "Wichtige Sicherheitsmeldung: Bitte rufen Sie das Supportteam sofort an, um weitere Probleme mit ihrem Computer zu vermeiden."

Darauf habe ich aus Panik den Edge-Browser sofort mit dem Taskmanager beendet.

Bisher habe ich keine Symptome aber immer wenn ich den Edge-Browser öffne komme ich auf dieses Seite und kann auch keine andere Regostekarte besuchen.
Der Firefox-Browser funktioniert problemlos.

Ich würde mich sehr freuen, wenn mir hier jemand helfen könnte.

Mit freundlichen Grüßen
Manuel

M-K-D-B · 26.07.2017, 14:10

Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.

Um die Bereinigung möchlichst effektiv und schnell gestalten zu können, bitte ich um Beachtung der folgenden Hinweise:

Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
Lies dir meine Anleitungen immer sorgfältig durch, arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste immer alle Logdateien (auch wenn nichts gefunden wurde). Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo. Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
Außerdem bitte ich dich, nicht eigenmächtig irgendwelche Sicherheitsprogramme auszuführen und damit deinen Rechner zu überprüfen/bereinigen, da ich so leicht den Überblick verlieren kann.
Außerdem hättest du dir das Eröffnen eines Themas in diesem Fall auch gleich sparen können, wenn du dann doch wieder alleine rumhantierst.
Bitte beachten: Download bei filepony.de: So ladet Ihr unsere Tools richtig!
Alle zu verwendenen Programme sind auf dem Desktop ( C:\users\dein Benutzername\Desktop\ ) abzuspeichern und von dort als Administrator zu starten!
Einige Programme, die wir hier verwenden, können unter Umständen von deinem Antiviren- oder Anti-Malwareprogramm fälschlicherweise als Bedrohung eingestuft werden. Die Sicherheitsprogramme können aufgrund eines bestimmten Programmverhaltens nicht zwischen "gut" oder "böse" unterscheiden und schlagen Alarm. Dabei handelt es sich um Fehlalarme, welche du getrost ignorieren kannst. Gegebenenfalls musst du deine Sicherheitssoftware vor der Ausführung eines Programms deaktivieren, damit unsere Bereinigungsvorgänge nicht beeinträchtigt werden.
Sollten die Logdateien einmal die zulässige Länge (~ 120.000 Zeichen) überschreiten, so teile die Logdateien auf mehrere Posts auf.
Zur Not kannst du die Logdateien dann auch zippen (in ein .zip Archiv packen) und als Anhang hochladen.
Bitte arbeite so lange mit mir zusammen, bis ich dir sage, dass wir fertig sind und dein Rechner "sauber" ist. Das vorzeitige Verschwinden von Symptomen heißt nicht automatisch, dass dein Rechner bereits vollständig sauber ist.
In der Regel antworte ich dir innerhalb von 24 Stunden, oft sogar wesentlich schneller.
Jedoch habe auch ich einen normalen Beruf und Familie. Ich bin daher nicht jeden Tag stundenlag hier im Forum unterwegs. Es kann unter Umständen bis zu 2 Tage dauern, bis du eine Antwort von mir erhältst. Sollte diese Zeit überschritten sein, so kannst du mir gerne eine PM als Erinnerung schicken.

Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!

Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Schritt 2
Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Bitte poste mit deiner nächsten Antwort

die Logdatei von TDSS-Killer,
die beiden neuen Logdateien von FRST.

Mk91 · 27.07.2017, 14:33

Hallo Matthias,
ich kann leider das FRST Tool nicht herunterladen, da es scheinbar ein Sicherheitsrisiko darstellt.
Mit ist es mittlerweile gelungen die betroffene Registerkarte abzuschiessen und ich bin jetzt absolut sympthomfrei. Ist es möglich trotzdem zu überprüfen, ob sich schadsoftware auf meinem PC befindet?
Gruß Manuel

M-K-D-B · 27.07.2017, 15:45

Zitat:

Zitat von Mk91

ich kann leider das FRST Tool nicht herunterladen, da es scheinbar ein Sicherheitsrisiko darstellt.

Meldet wer? Dein AV Programm oder der Windows SmartScreen Filter?
Wenns dein AV ist, dann vorher deaktivieren (steht aber auch schon in meinen Einführungshinweisen). Wenns SmartScreen ist, kannst du dort auf "Weitere Informationen" klicken und dann das Programm trotzdem ausführen.

Zitat:

Zitat von Mk91

Mit ist es mittlerweile gelungen die betroffene Registerkarte abzuschiessen und ich bin jetzt absolut sympthomfrei. Ist es möglich trotzdem zu überprüfen, ob sich schadsoftware auf meinem PC befindet?

Klar ist das möglich. Einfach den Anweisungen meines letzten Posts folgen.

Mk91 · 30.07.2017, 23:03

Danke, ich werde das morgen mal ausprobieren.

M-K-D-B · 31.07.2017, 12:48

Zitat:

Zitat von Mk91

Danke, ich werde das morgen mal ausprobieren.

Ok

Mk91 · 01.08.2017, 12:48

FRST Logfile:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 31-07-2017
durchgeführt von manue (Administrator) auf M-PC02 (01-08-2017 13:38:32)
Gestartet von C:\Users\manue\Downloads
Geladene Profile: manue (Verfügbare Profile: defaultuser0 & manue)
Platform: Windows 10 Pro Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\CaptureGenUSB.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\AsusAudioCenter.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\System\HsMgr64.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\Ir.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\WinTV\WinTV8\WinTVTray.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\WinTV\WinTV8\WinTV8.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Farbar) C:\Users\manue\Downloads\FRST64 (1).exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795912 2015-07-23] (NVIDIA Corporation)
HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2016-09-01] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2016-09-01] ()
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [97512 2017-06-13] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [918008 2017-07-12] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1223168 2016-12-09] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318128 2016-11-16] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-12] (Oracle Corporation)
HKU\S-1-5-21-236702602-2802554579-3409709690-1001\...\Run: [RemoTerm.exe] => C:\Program Files (x86)\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe [226576 2010-06-10] (PCTV Systems S.à r.l.)
HKU\S-1-5-21-236702602-2802554579-3409709690-1001\...\Run: [VLC Updater] => C:\Program Files (x86)\VLC Updater\vlc-updater.exe [370128 2016-09-15] () <==== ACHTUNG
HKU\S-1-5-21-236702602-2802554579-3409709690-1001\...\MountPoints2: {ceaed62a-6f88-11e6-bfc0-806e6f6e6963} - "Z:\Beruf_Karriere.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutoStart IR.lnk [2017-03-29]
ShortcutTarget: AutoStart IR.lnk -> C:\Program Files (x86)\WinTV\Ir.exe (Hauppauge Computer Works)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Nach Updates suchen.lnk [2016-11-25]
ShortcutTarget: Nach Updates suchen.lnk -> C:\Program Files (x86)\Common Files\PCTV Systems\WebUpdater\WebUpdater.exe (PCTV Systems)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinTV Recording Status.lnk [2017-03-29]
ShortcutTarget: WinTV Recording Status.lnk -> C:\Program Files (x86)\WinTV\WinTV8\WinTVTray.exe (Hauppauge Computer Works, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.123.1
Tcpip\..\Interfaces\{bccdc3ce-e18f-4734-9bc2-65aa028446e3}: [DhcpNameServer] 192.168.123.1

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_141\bin\ssv.dll [2017-07-26] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_141\bin\jp2ssv.dll [2017-07-26] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\manue\AppData\Roaming\Mozilla\Firefox\Profiles\qZMcMEj5.default [2017-07-31]
FF Extension: (Avira Browser Safety) - C:\Users\manue\AppData\Roaming\Mozilla\Firefox\Profiles\qZMcMEj5.default\Extensions\abs@avira.com.xpi [2017-07-25]
FF Plugin: @java.com/DTPlugin,version=11.141.2 -> C:\Program Files\Java\jre1.8.0_141\bin\dtplugin\npDeployJava1.dll [2017-07-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.141.2 -> C:\Program Files\Java\jre1.8.0_141\bin\plugin2\npjp2.dll [2017-07-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1128432 2017-07-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [490968 2017-07-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [490968 2017-07-12] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1524216 2017-07-12] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [377976 2017-06-13] (Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [102304 2017-07-25] (Avira Operations GmbH & Co. KG)
R2 HauppaugeTVServer; C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe [586536 2017-03-28] (Hauppauge Computer Works)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21312 2017-03-30] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\RpcAgentSrv.exe [81968 2016-02-23] (SiSoftware) [Datei ist nicht signiert]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [185344 2017-02-13] (Microsoft Corporation) [Datei ist nicht signiert]
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [128232 2017-02-08] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 atmelwindrvr; C:\Windows\system32\drivers\atmelwindrvr.sys [300488 2015-08-12] (Jungo Connectivity)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [60920 2017-06-14] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [167504 2017-06-14] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [164824 2017-06-14] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [44488 2017-03-02] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [88488 2017-03-02] (Avira Operations GmbH & Co. KG)
R3 azvusb; C:\Windows\System32\drivers\azvusb.sys [54784 2009-08-24] (AzureWave Technologies, Inc.)
R3 cmudaxp; C:\Windows\system32\drivers\cmudaxp.sys [2735616 2016-09-01] (C-Media Inc)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [51368 2017-01-28] (hxxp://libusb-win32.sourceforge.net)
S3 libusb0; C:\Windows\SysWOW64\DRIVERS\libusb0.sys [42592 2014-02-06] (hxxp://libusb-win32.sourceforge.net)
S3 Ltn_stk7070P_64; C:\Windows\system32\DRIVERS\Ltn_stk7070P_64.sys [543232 2016-08-31] (LITEON)
S3 Ltn_stkrc_64; C:\Windows\System32\drivers\Ltn_stkrc_64.sys [16256 2007-10-19] (LITEON)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvaewu.inf_amd64_8baa9d083edacf87\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek                                            )
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware)
R3 SensorsSimulatorDriver; C:\Windows\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 vpnva; C:\Windows\System32\drivers\vpnva64-6.sys [52592 2016-11-14] (Cisco Systems, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [268800 2014-01-28] (Jungo Connectivity)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-08-01 13:38 - 2017-08-01 13:38 - 000015548 _____ C:\Users\manue\Downloads\FRST.txt
2017-08-01 13:38 - 2017-08-01 13:38 - 000000000 ____D C:\FRST
2017-08-01 13:37 - 2017-08-01 13:38 - 002381312 _____ (Farbar) C:\Users\manue\Downloads\FRST64 (1).exe
2017-07-28 18:39 - 2017-07-28 18:39 - 000838980 _____ C:\Windows\Minidump\072817-6859-01.dmp
2017-07-27 21:18 - 2017-07-27 21:18 - 000003358 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-236702602-2802554579-3409709690-1001
2017-07-27 15:31 - 2017-07-27 15:31 - 002382848 _____ (Farbar) C:\Users\manue\Downloads\FRST64.exe
2017-07-26 15:16 - 2017-07-26 15:31 - 000000000 ____D C:\Users\manue\Desktop\bluescreenview_v1.55
2017-07-26 15:16 - 2017-07-26 15:16 - 000067310 _____ C:\Users\manue\Desktop\bluescreenview_v1.55.zip
2017-07-26 15:13 - 2017-07-26 15:14 - 001524744 _____ C:\Users\manue\Downloads\BlueScreenView - CHIP-Installer.exe
2017-07-26 15:08 - 2017-07-26 15:08 - 000739916 _____ C:\Windows\Minidump\072617-9078-01.dmp
2017-07-25 00:46 - 2017-07-25 00:46 - 000195743 _____ C:\Users\manue\Desktop\Kostenueberblick_zum_Bau_von_Beachvolleyball-Feldern.pdf
2017-07-24 14:04 - 2017-07-24 14:04 - 004056741 _____ C:\Users\manue\Desktop\ValentinLorenzSchmidt65.pdf
2017-07-19 21:44 - 2017-07-19 21:44 - 000128632 _____ C:\Users\manue\Downloads\Promotion_ab_Oktober_2017_im_Bereich_Material-Charakterisierung_mit_Thermischen_Wellen_in_Stuttgart.pdf
2017-07-12 18:58 - 2017-07-07 09:49 - 000340824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-07-12 18:58 - 2017-07-07 09:46 - 000781152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-07-12 18:58 - 2017-07-07 09:45 - 002263832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-07-12 18:58 - 2017-07-07 09:44 - 000108896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2017-07-12 18:58 - 2017-07-07 09:40 - 020967840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-07-12 18:58 - 2017-07-07 09:37 - 000468320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2017-07-12 18:58 - 2017-07-07 09:37 - 000118112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-07-12 18:58 - 2017-07-07 09:29 - 005686272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-07-12 18:58 - 2017-07-07 09:29 - 000857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-07-12 18:58 - 2017-07-07 09:24 - 022220856 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-07-12 18:58 - 2017-07-07 09:20 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\l2gpstore.dll
2017-07-12 18:58 - 2017-07-07 09:19 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapprovp.dll
2017-07-12 18:58 - 2017-07-07 09:18 - 002532192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-07-12 18:58 - 2017-07-07 09:18 - 000450560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2017-07-12 18:58 - 2017-07-07 09:18 - 000210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onex.dll
2017-07-12 18:58 - 2017-07-07 09:17 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschap.dll
2017-07-12 18:58 - 2017-07-07 09:13 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2017-07-12 18:58 - 2017-07-07 09:13 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-07-12 18:58 - 2017-07-07 09:10 - 000755200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-07-12 18:58 - 2017-07-07 09:09 - 000637952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2017-07-12 18:58 - 2017-07-07 09:09 - 000506368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-07-12 18:58 - 2017-07-07 09:06 - 007626752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-07-12 18:58 - 2017-07-07 09:03 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe
2017-07-12 18:58 - 2017-07-07 09:02 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2017-07-12 18:58 - 2017-07-07 09:00 - 000476160 _____ (Microsoft® Windows® Operating System) C:\Windows\SysWOW64\wvc.dll
2017-07-12 18:58 - 2017-07-07 08:55 - 004423680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-07-12 18:58 - 2017-07-07 08:55 - 001571840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-07-12 18:58 - 2017-07-07 08:54 - 002997248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-07-12 18:58 - 2017-07-07 08:53 - 002483200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-07-12 18:58 - 2017-07-07 08:52 - 004561408 _____ (Microsoft) C:\Windows\SysWOW64\dbgeng.dll
2017-07-12 18:58 - 2017-07-07 08:52 - 001599488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-07-12 18:58 - 2017-07-07 08:52 - 001413632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2017-07-12 18:58 - 2017-07-07 08:35 - 001397760 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2017-07-12 18:58 - 2017-06-21 10:18 - 001470816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2017-07-12 18:58 - 2017-06-21 09:53 - 000794928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2017-07-12 18:58 - 2017-06-21 09:52 - 002213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-07-12 18:58 - 2017-06-21 09:52 - 000774224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-07-12 18:58 - 2017-06-21 09:52 - 000088416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmbus.sys
2017-07-12 18:58 - 2017-06-21 09:52 - 000081760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2017-07-12 18:58 - 2017-06-21 09:42 - 001573280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-07-12 18:58 - 2017-06-21 09:42 - 000601712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-07-12 18:58 - 2017-06-21 09:41 - 001706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-07-12 18:58 - 2017-06-21 09:39 - 002048496 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2017-07-12 18:58 - 2017-06-21 09:38 - 007220192 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-07-12 18:58 - 2017-06-21 09:38 - 001860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-07-12 18:58 - 2017-06-21 09:38 - 000790752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-07-12 18:58 - 2017-06-21 09:36 - 000557408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2017-07-12 18:58 - 2017-06-21 09:36 - 000129888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2017-07-12 18:58 - 2017-06-21 09:33 - 000408600 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2017-07-12 18:58 - 2017-06-21 09:33 - 000092512 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-07-12 18:58 - 2017-06-21 09:32 - 008169024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-07-12 18:58 - 2017-06-21 09:32 - 004260576 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-07-12 18:58 - 2017-06-21 09:32 - 001983408 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-07-12 18:58 - 2017-06-21 09:32 - 001702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-07-12 18:58 - 2017-06-21 09:32 - 001072248 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-07-12 18:58 - 2017-06-21 09:30 - 000869848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2017-07-12 18:58 - 2017-06-21 09:30 - 000196960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll
2017-07-12 18:58 - 2017-06-21 09:29 - 005722320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-07-12 18:58 - 2017-06-21 09:28 - 002277288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2017-07-12 18:58 - 2017-06-21 09:28 - 001504056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2017-07-12 18:58 - 2017-06-21 09:28 - 000524776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2017-07-12 18:58 - 2017-06-21 09:28 - 000170960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-07-12 18:58 - 2017-06-21 09:27 - 001431232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-07-12 18:58 - 2017-06-21 09:27 - 001122344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2017-07-12 18:58 - 2017-06-21 09:27 - 000975744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2017-07-12 18:58 - 2017-06-21 09:27 - 000861024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2017-07-12 18:58 - 2017-06-21 09:27 - 000549088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2017-07-12 18:58 - 2017-06-21 09:27 - 000116576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2017-07-12 18:58 - 2017-06-21 09:26 - 000387864 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-07-12 18:58 - 2017-06-21 09:25 - 002168288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2017-07-12 18:58 - 2017-06-21 09:25 - 001980776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-07-12 18:58 - 2017-06-21 09:24 - 000846560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2017-07-12 18:58 - 2017-06-21 09:24 - 000154432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntmarta.dll
2017-07-12 18:58 - 2017-06-21 09:22 - 000361104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2017-07-12 18:58 - 2017-06-21 09:21 - 006665440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-07-12 18:58 - 2017-06-21 09:21 - 004023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-07-12 18:58 - 2017-06-21 09:21 - 001845512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-07-12 18:58 - 2017-06-21 09:21 - 001557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-07-12 18:58 - 2017-06-21 09:21 - 001277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-07-12 18:58 - 2017-06-21 09:21 - 000952416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2017-07-12 18:58 - 2017-06-21 09:21 - 000374448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2017-07-12 18:58 - 2017-06-21 09:20 - 001360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-07-12 18:58 - 2017-06-21 09:20 - 000981888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-07-12 18:58 - 2017-06-21 09:20 - 000962768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-07-12 18:58 - 2017-06-21 09:20 - 000312472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2017-07-12 18:58 - 2017-06-21 09:19 - 004312248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-07-12 18:58 - 2017-06-21 09:06 - 000372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-07-12 18:58 - 2017-06-21 09:04 - 001631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-07-12 18:58 - 2017-06-21 09:04 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2017-07-12 18:58 - 2017-06-21 09:03 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys
2017-07-12 18:58 - 2017-06-21 09:02 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-07-12 18:58 - 2017-06-21 09:02 - 000124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmdisk0101.sys
2017-07-12 18:58 - 2017-06-21 09:02 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-07-12 18:58 - 2017-06-21 09:01 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2017-07-12 18:58 - 2017-06-21 09:01 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2017-07-12 18:58 - 2017-06-21 09:00 - 000519168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngccredprov.dll
2017-07-12 18:58 - 2017-06-21 09:00 - 000295424 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2017-07-12 18:58 - 2017-06-21 09:00 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll
2017-07-12 18:58 - 2017-06-21 09:00 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2017-07-12 18:58 - 2017-06-21 09:00 - 000143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uudf.dll
2017-07-12 18:58 - 2017-06-21 09:00 - 000138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2017-07-12 18:58 - 2017-06-21 09:00 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-07-12 18:58 - 2017-06-21 09:00 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-07-12 18:58 - 2017-06-21 08:59 - 000467968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2017-07-12 18:58 - 2017-06-21 08:59 - 000285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-07-12 18:58 - 2017-06-21 08:59 - 000255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2017-07-12 18:58 - 2017-06-21 08:59 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2017-07-12 18:58 - 2017-06-21 08:59 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2017-07-12 18:58 - 2017-06-21 08:59 - 000137216 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2017-07-12 18:58 - 2017-06-21 08:59 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2017-07-12 18:58 - 2017-06-21 08:59 - 000097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2017-07-12 18:58 - 2017-06-21 08:58 - 000418304 _____ C:\Windows\system32\Windows.Perception.Stub.dll
2017-07-12 18:58 - 2017-06-21 08:58 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2017-07-12 18:58 - 2017-06-21 08:58 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinRtTracing.dll
2017-07-12 18:58 - 2017-06-21 08:58 - 000129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-07-12 18:58 - 2017-06-21 08:58 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2017-07-12 18:58 - 2017-06-21 08:58 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-07-12 18:58 - 2017-06-21 08:58 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.UserDeviceAssociation.dll
2017-07-12 18:58 - 2017-06-21 08:57 - 000360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2017-07-12 18:58 - 2017-06-21 08:57 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2017-07-12 18:58 - 2017-06-21 08:57 - 000122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sendmail.dll
2017-07-12 18:58 - 2017-06-21 08:57 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 001507840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000719872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2017-07-12 18:58 - 2017-06-21 08:56 - 000590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2017-07-12 18:58 - 2017-06-21 08:56 - 000237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credprovhost.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-07-12 18:58 - 2017-06-21 08:56 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-07-12 18:58 - 2017-06-21 08:56 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-07-12 18:58 - 2017-06-21 08:55 - 000265728 _____ C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000252416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Core.dll
2017-07-12 18:58 - 2017-06-21 08:55 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regsvr32.exe
2017-07-12 18:58 - 2017-06-21 08:54 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSave.dll
2017-07-12 18:58 - 2017-06-21 08:54 - 000671744 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2017-07-12 18:58 - 2017-06-21 08:54 - 000609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2017-07-12 18:58 - 2017-06-21 08:54 - 000574976 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2017-07-12 18:58 - 2017-06-21 08:54 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2017-07-12 18:58 - 2017-06-21 08:54 - 000298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2017-07-12 18:58 - 2017-06-21 08:54 - 000245760 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2017-07-12 18:58 - 2017-06-21 08:54 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-07-12 18:58 - 2017-06-21 08:54 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000201728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2017-07-12 18:58 - 2017-06-21 08:53 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2017-07-12 18:58 - 2017-06-21 08:52 - 006288384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-07-12 18:58 - 2017-06-21 08:52 - 000963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2017-07-12 18:58 - 2017-06-21 08:52 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\XpsDocumentTargetPrint.dll
2017-07-12 18:58 - 2017-06-21 08:52 - 000331264 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2017-07-12 18:58 - 2017-06-21 08:52 - 000262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2017-07-12 18:58 - 2017-06-21 08:52 - 000182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll
2017-07-12 18:58 - 2017-06-21 08:51 - 000846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2017-07-12 18:58 - 2017-06-21 08:51 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll
2017-07-12 18:58 - 2017-06-21 08:51 - 000314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2017-07-12 18:58 - 2017-06-21 08:51 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2017-07-12 18:58 - 2017-06-21 08:51 - 000258048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsDocumentTargetPrint.dll
2017-07-12 18:58 - 2017-06-21 08:50 - 001167360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2017-07-12 18:58 - 2017-06-21 08:50 - 000857600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2017-07-12 18:58 - 2017-06-21 08:50 - 000529920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2017-07-12 18:58 - 2017-06-21 08:50 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-07-12 18:58 - 2017-06-21 08:50 - 000238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2017-07-12 18:58 - 2017-06-21 08:49 - 003778048 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2017-07-12 18:58 - 2017-06-21 08:49 - 001403392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2017-07-12 18:58 - 2017-06-21 08:49 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2017-07-12 18:58 - 2017-06-21 08:49 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2017-07-12 18:58 - 2017-06-21 08:49 - 000295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2017-07-12 18:58 - 2017-06-21 08:49 - 000288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2017-07-12 18:58 - 2017-06-21 08:49 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-07-12 18:58 - 2017-06-21 08:48 - 002333184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-07-12 18:58 - 2017-06-21 08:48 - 000395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
2017-07-12 18:58 - 2017-06-21 08:48 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll
2017-07-12 18:58 - 2017-06-21 08:47 - 013873664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-07-12 18:58 - 2017-06-21 08:47 - 007655424 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2017-07-12 18:58 - 2017-06-21 08:46 - 004615168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-07-12 18:58 - 2017-06-21 08:46 - 001908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-07-12 18:58 - 2017-06-21 08:46 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2017-07-12 18:58 - 2017-06-21 08:46 - 001137152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2017-07-12 18:58 - 2017-06-21 08:46 - 001077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2017-07-12 18:58 - 2017-06-21 08:46 - 000627200 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2017-07-12 18:58 - 2017-06-21 08:46 - 000355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2017-07-12 18:58 - 2017-06-21 08:45 - 000891904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2017-07-12 18:58 - 2017-06-21 08:45 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-07-12 18:58 - 2017-06-21 08:45 - 000313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2017-07-12 18:58 - 2017-06-21 08:45 - 000102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uexfat.dll
2017-07-12 18:58 - 2017-06-21 08:44 - 000795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2017-07-12 18:58 - 2017-06-21 08:44 - 000535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2017-07-12 18:58 - 2017-06-21 08:44 - 000343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2017-07-12 18:58 - 2017-06-21 08:44 - 000136704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ufat.dll
2017-07-12 18:58 - 2017-06-21 08:44 - 000027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdProxy.dll
2017-07-12 18:58 - 2017-06-21 08:43 - 001534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-07-12 18:58 - 2017-06-21 08:43 - 001217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2017-07-12 18:58 - 2017-06-21 08:43 - 000713216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2017-07-12 18:58 - 2017-06-21 08:43 - 000653312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2017-07-12 18:58 - 2017-06-21 08:43 - 000468992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.InkControls.dll
2017-07-12 18:58 - 2017-06-21 08:43 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cnvfat.dll
2017-07-12 18:58 - 2017-06-21 08:42 - 003307008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2017-07-12 18:58 - 2017-06-21 08:42 - 002749440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-07-12 18:58 - 2017-06-21 08:42 - 000853504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe
2017-07-12 18:58 - 2017-06-21 08:42 - 000779776 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2017-07-12 18:58 - 2017-06-21 08:42 - 000525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-07-12 18:58 - 2017-06-21 08:42 - 000470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2017-07-12 18:58 - 2017-06-21 08:42 - 000380416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFSv1.dll
2017-07-12 18:58 - 2017-06-21 08:41 - 003400704 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-07-12 18:58 - 2017-06-21 08:41 - 001255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-07-12 18:58 - 2017-06-21 08:41 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Ocr.dll
2017-07-12 18:58 - 2017-06-21 08:41 - 000983040 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2017-07-12 18:58 - 2017-06-21 08:41 - 000459776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2017-07-12 18:58 - 2017-06-21 08:40 - 002641920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-07-12 18:58 - 2017-06-21 08:40 - 002154496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2017-07-12 18:58 - 2017-06-21 08:40 - 001891328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2017-07-12 18:58 - 2017-06-21 08:40 - 000901120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2017-07-12 18:58 - 2017-06-21 08:40 - 000895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2017-07-12 18:58 - 2017-06-21 08:40 - 000675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2017-07-12 18:58 - 2017-06-21 08:40 - 000611328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2017-07-12 18:58 - 2017-06-21 08:40 - 000220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToReceiver.dll
2017-07-12 18:58 - 2017-06-21 08:40 - 000090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2017-07-12 18:58 - 2017-06-21 08:39 - 008076288 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-07-12 18:58 - 2017-06-21 08:39 - 004596224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsDesktopEngine.exe
2017-07-12 18:58 - 2017-06-21 08:39 - 002538496 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-07-12 18:58 - 2017-06-21 08:39 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2017-07-12 18:58 - 2017-06-21 08:39 - 000546304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2017-07-12 18:58 - 2017-06-21 08:39 - 000134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll
2017-07-12 18:58 - 2017-06-21 08:38 - 003733504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-07-12 18:58 - 2017-06-21 08:38 - 003520512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2017-07-12 18:58 - 2017-06-21 08:38 - 002424320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll
2017-07-12 18:58 - 2017-06-21 08:38 - 001984000 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-07-12 18:58 - 2017-06-21 08:38 - 001221120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2017-07-12 18:58 - 2017-06-21 08:38 - 000886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-07-12 18:58 - 2017-06-21 08:38 - 000877056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2017-07-12 18:58 - 2017-06-21 08:38 - 000846336 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2017-07-12 18:58 - 2017-06-21 08:38 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2017-07-12 18:58 - 2017-06-21 08:38 - 000753152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2017-07-12 18:58 - 2017-06-21 08:38 - 000709120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2017-07-12 18:58 - 2017-06-21 08:37 - 007468544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-07-12 18:58 - 2017-06-21 08:37 - 006109696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2017-07-12 18:58 - 2017-06-21 08:37 - 000400384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2017-07-12 18:58 - 2017-06-21 08:37 - 000357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2017-07-12 18:58 - 2017-06-21 08:37 - 000103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2017-07-12 18:58 - 2017-06-21 08:36 - 002648576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-07-12 18:58 - 2017-06-21 08:36 - 001988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-07-12 18:58 - 2017-06-21 08:36 - 001424896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2017-07-12 18:58 - 2017-06-21 08:36 - 001247232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2017-07-12 18:58 - 2017-06-21 08:36 - 000903680 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-07-12 18:58 - 2017-06-21 08:35 - 004149248 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 002740224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 002682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 001656320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Perception.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 001369088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 001232384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 000732160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 000598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 000589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2017-07-12 18:58 - 2017-06-21 08:35 - 000348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2017-07-12 18:58 - 2017-06-21 08:34 - 003299840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-07-12 18:58 - 2017-06-21 08:34 - 001886720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-07-12 18:58 - 2017-06-21 08:34 - 000773120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-07-12 18:58 - 2017-06-21 08:34 - 000711168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2017-07-12 18:58 - 2017-06-21 08:34 - 000654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2017-07-12 18:58 - 2017-06-21 08:34 - 000621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2017-07-12 18:58 - 2017-06-21 08:34 - 000566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2017-07-12 18:58 - 2017-06-21 08:34 - 000542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2017-07-12 18:58 - 2017-06-21 08:33 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-07-12 18:58 - 2017-06-21 08:33 - 001013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2017-07-12 18:58 - 2017-06-21 08:33 - 000751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-07-12 18:58 - 2017-06-21 08:33 - 000691200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2017-07-12 18:58 - 2017-06-21 08:33 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2017-07-12 18:58 - 2017-06-21 08:32 - 001556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2017-07-12 18:58 - 2017-06-21 08:32 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
2017-07-12 18:58 - 2017-06-21 08:31 - 003106304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-07-12 18:58 - 2017-06-21 08:30 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll
2017-07-12 18:58 - 2017-06-21 08:10 - 000483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2017-07-12 18:58 - 2017-05-23 06:58 - 000448576 _____ C:\Windows\system32\ApnDatabase.xml
2017-07-12 18:58 - 2017-03-04 09:10 - 000360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-07-12 18:58 - 2017-03-04 08:56 - 000263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-07-12 18:58 - 2017-03-04 08:26 - 000307200 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll
2017-07-12 18:58 - 2017-03-04 08:23 - 001145856 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2017-07-12 18:58 - 2017-03-04 08:23 - 000583680 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2017-07-12 18:58 - 2017-03-04 08:21 - 001243136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-07-12 18:58 - 2017-03-04 08:21 - 000670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2017-07-12 18:58 - 2017-03-04 08:20 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2017-07-12 18:58 - 2017-03-04 08:20 - 000426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-07-12 18:58 - 2017-03-04 08:20 - 000206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll
2017-07-12 18:58 - 2017-03-04 08:19 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2017-07-12 18:58 - 2017-03-04 08:18 - 000525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2017-07-12 18:58 - 2017-03-04 08:17 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2017-07-12 18:58 - 2017-03-04 08:16 - 000584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-07-12 18:58 - 2017-03-04 08:15 - 001078784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2017-07-12 18:58 - 2017-03-04 08:12 - 004596224 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2017-07-12 18:58 - 2017-03-04 08:02 - 002138112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2017-07-12 18:58 - 2016-10-05 11:15 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dialclient.dll
2017-07-12 18:58 - 2016-09-15 18:58 - 000092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-07-12 18:58 - 2016-09-15 18:47 - 000134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Energy.dll
2017-07-12 18:58 - 2016-08-27 07:12 - 000244816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-07-12 18:57 - 2017-07-07 09:42 - 007781720 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-07-12 18:57 - 2017-07-07 09:40 - 000376672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2017-07-12 18:57 - 2017-07-07 09:32 - 000404824 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-07-12 18:57 - 2017-07-07 09:29 - 002759712 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-07-12 18:57 - 2017-07-07 09:28 - 000223584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-07-12 18:57 - 2017-07-07 09:23 - 001600624 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-07-12 18:57 - 2017-07-07 09:23 - 000241504 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-07-12 18:57 - 2017-07-07 09:19 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-07-12 18:57 - 2017-07-07 09:18 - 001100120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-07-12 18:57 - 2017-07-07 09:18 - 000057400 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-07-12 18:57 - 2017-07-07 09:14 - 000270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-07-12 18:57 - 2017-07-07 09:14 - 000126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-07-12 18:57 - 2017-07-07 09:11 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-07-12 18:57 - 2017-07-07 09:06 - 018364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-07-12 18:57 - 2017-07-07 09:05 - 019414528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-07-12 18:57 - 2017-07-07 09:00 - 012187136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-07-12 18:57 - 2017-07-07 08:58 - 007217152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2017-07-12 18:57 - 2017-07-07 08:57 - 000691712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-07-12 18:57 - 2017-07-07 08:56 - 006035456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-07-12 18:57 - 2017-07-07 08:55 - 003664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-07-12 18:57 - 2017-07-07 08:54 - 002027008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-07-12 18:57 - 2017-07-07 08:51 - 022569984 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-07-12 18:57 - 2017-07-07 08:49 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2017-07-12 18:57 - 2017-07-07 08:48 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\l2gpstore.dll
2017-07-12 18:57 - 2017-07-07 08:48 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\eapprovp.dll
2017-07-12 18:57 - 2017-07-07 08:47 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\ScDeviceEnum.dll
2017-07-12 18:57 - 2017-07-07 08:46 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2017-07-12 18:57 - 2017-07-07 08:46 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2017-07-12 18:57 - 2017-07-07 08:45 - 000488960 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2017-07-12 18:57 - 2017-07-07 08:45 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-07-12 18:57 - 2017-07-07 08:45 - 000276992 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-07-12 18:57 - 2017-07-07 08:45 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-07-12 18:57 - 2017-07-07 08:44 - 000502784 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2017-07-12 18:57 - 2017-07-07 08:44 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2017-07-12 18:57 - 2017-07-07 08:44 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2017-07-12 18:57 - 2017-07-07 08:44 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-07-12 18:57 - 2017-07-07 08:44 - 000139264 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-07-12 18:57 - 2017-07-07 08:44 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2017-07-12 18:57 - 2017-07-07 08:43 - 001081856 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2017-07-12 18:57 - 2017-07-07 08:43 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2017-07-12 18:57 - 2017-07-07 08:43 - 000387584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-07-12 18:57 - 2017-07-07 08:43 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-07-12 18:57 - 2017-07-07 08:42 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-07-12 18:57 - 2017-07-07 08:42 - 000352256 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-07-12 18:57 - 2017-07-07 08:39 - 000282624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-07-12 18:57 - 2017-07-07 08:36 - 000369664 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2017-07-12 18:57 - 2017-07-07 08:34 - 009131008 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-07-12 18:57 - 2017-07-07 08:33 - 000576000 _____ (Microsoft® Windows® Operating System) C:\Windows\system32\wvc.dll
2017-07-12 18:57 - 2017-07-07 08:31 - 023676416 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-07-12 18:57 - 2017-07-07 08:30 - 013090816 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-07-12 18:57 - 2017-07-07 08:29 - 004749824 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-07-12 18:57 - 2017-07-07 08:29 - 000932864 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-07-12 18:57 - 2017-07-07 08:28 - 002096640 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-07-12 18:57 - 2017-07-07 08:28 - 000927744 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2017-07-12 18:57 - 2017-07-07 08:28 - 000759296 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-07-12 18:57 - 2017-07-07 08:28 - 000589312 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-07-12 18:57 - 2017-07-07 08:27 - 008120832 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-07-12 18:57 - 2017-07-07 08:25 - 004708864 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-07-12 18:57 - 2017-07-07 08:24 - 005388800 _____ (Microsoft) C:\Windows\system32\dbgeng.dll
2017-07-12 18:57 - 2017-07-07 08:24 - 004744704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-07-12 18:57 - 2017-07-07 08:24 - 003615744 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-07-12 18:57 - 2017-07-07 08:24 - 002895872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-07-12 18:57 - 2017-07-07 08:24 - 002217472 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2017-07-12 18:57 - 2017-07-07 08:24 - 001783296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-07-12 18:57 - 2017-07-07 08:24 - 001513472 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-07-12 18:57 - 2017-07-07 08:22 - 001826816 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-07-12 18:57 - 2017-06-21 09:56 - 001405280 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2017-07-12 18:57 - 2017-06-21 09:55 - 002170720 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
2017-07-12 18:57 - 2017-06-21 09:54 - 001669984 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2017-07-12 18:57 - 2017-06-21 09:54 - 000822624 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2017-07-12 18:57 - 2017-06-21 09:54 - 000813408 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2017-07-12 18:57 - 2017-06-21 09:54 - 000758624 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2017-07-12 18:57 - 2017-06-21 09:54 - 000704352 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2017-07-12 18:57 - 2017-06-21 09:54 - 000696160 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2017-07-12 18:57 - 2017-06-21 09:54 - 000603488 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2017-07-12 18:57 - 2017-06-21 09:54 - 000565088 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2017-07-12 18:57 - 2017-06-21 09:54 - 000406368 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll
2017-07-12 18:57 - 2017-06-21 09:52 - 001886344 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-07-12 18:57 - 2017-06-21 09:51 - 002255712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-07-12 18:57 - 2017-06-21 09:51 - 000434528 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2017-07-12 18:57 - 2017-06-21 09:50 - 000126304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys
2017-07-12 18:57 - 2017-06-21 09:48 - 002681200 _____ C:\Windows\system32\CoreUIComponents.dll
2017-07-12 18:57 - 2017-06-21 09:47 - 000764392 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2017-07-12 18:57 - 2017-06-21 09:40 - 001069720 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2017-07-12 18:57 - 2017-06-21 09:40 - 000328008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2017-07-12 18:57 - 2017-06-21 09:40 - 000224096 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2017-07-12 18:57 - 2017-06-21 09:38 - 001738560 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2017-07-12 18:57 - 2017-06-21 09:37 - 002446704 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-07-12 18:57 - 2017-06-21 09:37 - 001369240 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2017-07-12 18:57 - 2017-06-21 09:37 - 001157008 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-07-12 18:57 - 2017-06-21 09:37 - 000146784 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2017-07-12 18:57 - 2017-06-21 09:36 - 000624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-07-12 18:57 - 2017-06-21 09:35 - 002915704 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2017-07-12 18:57 - 2017-06-21 09:35 - 001267512 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2017-07-12 18:57 - 2017-06-21 09:31 - 004674360 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-07-12 18:57 - 2017-06-21 09:31 - 001277824 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-07-12 18:57 - 2017-06-21 09:31 - 000160096 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll
2017-07-12 18:57 - 2017-06-21 09:04 - 001631232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-07-12 18:57 - 2017-06-21 09:03 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\uudf.dll
2017-07-12 18:57 - 2017-06-21 09:02 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2017-07-12 18:57 - 2017-06-21 09:02 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2017-07-12 18:57 - 2017-06-21 09:01 - 000185344 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2017-07-12 18:57 - 2017-06-21 09:01 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\Family.Client.dll
2017-07-12 18:57 - 2017-06-21 09:01 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\Family.Authentication.dll
2017-07-12 18:57 - 2017-06-21 09:01 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\snmptrap.exe
2017-07-12 18:57 - 2017-06-21 09:00 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\Family.SyncEngine.dll
2017-07-12 18:57 - 2017-06-21 09:00 - 000233984 _____ (Microsoft Corporation) C:\Windows\system32\ProvisioningHandlers.dll
2017-07-12 18:57 - 2017-06-21 09:00 - 000224256 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SignInOptions.dll
2017-07-12 18:57 - 2017-06-21 09:00 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll
2017-07-12 18:57 - 2017-06-21 09:00 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.RetailInfo.dll
2017-07-12 18:57 - 2017-06-21 09:00 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.UserDeviceAssociation.dll
2017-07-12 18:57 - 2017-06-21 09:00 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2017-07-12 18:57 - 2017-06-21 08:59 - 000196096 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2017-07-12 18:57 - 2017-06-21 08:59 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2017-07-12 18:57 - 2017-06-21 08:59 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll
2017-07-12 18:57 - 2017-06-21 08:59 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2017-07-12 18:57 - 2017-06-21 08:59 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2017-07-12 18:57 - 2017-06-21 08:59 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\KdsCli.dll
2017-07-12 18:57 - 2017-06-21 08:58 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2017-07-12 18:57 - 2017-06-21 08:58 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2017-07-12 18:57 - 2017-06-21 08:58 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2017-07-12 18:57 - 2017-06-21 08:58 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2017-07-12 18:57 - 2017-06-21 08:58 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2017-07-12 18:57 - 2017-06-21 08:57 - 000651264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2017-07-12 18:57 - 2017-06-21 08:57 - 000505856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2017-07-12 18:57 - 2017-06-21 08:57 - 000418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2017-07-12 18:57 - 2017-06-21 08:57 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\credprovhost.dll
2017-07-12 18:57 - 2017-06-21 08:57 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2017-07-12 18:57 - 2017-06-21 08:57 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\XamlTileRender.dll
2017-07-12 18:57 - 2017-06-21 08:57 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll
2017-07-12 18:57 - 2017-06-21 08:57 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2017-07-12 18:57 - 2017-06-21 08:56 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2017-07-12 18:57 - 2017-06-21 08:56 - 000852480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2017-07-12 18:57 - 2017-06-21 08:56 - 000568320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2017-07-12 18:57 - 2017-06-21 08:56 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2017-07-12 18:57 - 2017-06-21 08:56 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-07-12 18:57 - 2017-06-21 08:56 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2017-07-12 18:57 - 2017-06-21 08:56 - 000267264 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2017-07-12 18:57 - 2017-06-21 08:55 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2017-07-12 18:57 - 2017-06-21 08:55 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2017-07-12 18:57 - 2017-06-21 08:55 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2017-07-12 18:57 - 2017-06-21 08:54 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2017-07-12 18:57 - 2017-06-21 08:54 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2017-07-12 18:57 - 2017-06-21 08:54 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2017-07-12 18:57 - 2017-06-21 08:54 - 000247808 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
2017-07-12 18:57 - 2017-06-21 08:54 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2017-07-12 18:57 - 2017-06-21 08:53 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2017-07-12 18:57 - 2017-06-21 08:53 - 001000448 _____ (Microsoft Corporation) C:\Windows\system32\WebManagement.exe
2017-07-12 18:57 - 2017-06-21 08:53 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2017-07-12 18:57 - 2017-06-21 08:53 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-07-12 18:57 - 2017-06-21 08:53 - 000339968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2017-07-12 18:57 - 2017-06-21 08:53 - 000329728 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2017-07-12 18:57 - 2017-06-21 08:52 - 017198592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-07-12 18:57 - 2017-06-21 08:52 - 000956416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-07-12 18:57 - 2017-06-21 08:52 - 000896512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2017-07-12 18:57 - 2017-06-21 08:52 - 000775168 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2017-07-12 18:57 - 2017-06-21 08:52 - 000560128 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2017-07-12 18:57 - 2017-06-21 08:52 - 000410112 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2017-07-12 18:57 - 2017-06-21 08:51 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-07-12 18:57 - 2017-06-21 08:51 - 000410112 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2017-07-12 18:57 - 2017-06-21 08:50 - 001054208 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2017-07-12 18:57 - 2017-06-21 08:50 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2017-07-12 18:57 - 2017-06-21 08:49 - 002104320 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2017-07-12 18:57 - 2017-06-21 08:49 - 001913856 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2017-07-12 18:57 - 2017-06-21 08:49 - 001584128 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2017-07-12 18:57 - 2017-06-21 08:49 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Energy.dll
2017-07-12 18:57 - 2017-06-21 08:48 - 000968192 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2017-07-12 18:57 - 2017-06-21 08:48 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\uexfat.dll
2017-07-12 18:57 - 2017-06-21 08:47 - 001105408 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2017-07-12 18:57 - 2017-06-21 08:47 - 000574976 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2017-07-12 18:57 - 2017-06-21 08:47 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2017-07-12 18:57 - 2017-06-21 08:47 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\ufat.dll
2017-07-12 18:57 - 2017-06-21 08:47 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2017-07-12 18:57 - 2017-06-21 08:46 - 003290112 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2017-07-12 18:57 - 2017-06-21 08:46 - 000925184 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2017-07-12 18:57 - 2017-06-21 08:46 - 000516608 _____ (Microsoft Corporation) C:\Windows\system32\uReFSv1.dll
2017-07-12 18:57 - 2017-06-21 08:46 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2017-07-12 18:57 - 2017-06-21 08:46 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\cnvfat.dll
2017-07-12 18:57 - 2017-06-21 08:45 - 002861056 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2017-07-12 18:57 - 2017-06-21 08:44 - 000588288 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2017-07-12 18:57 - 2017-06-21 08:44 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2017-07-12 18:57 - 2017-06-21 08:43 - 000961536 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2017-07-12 18:57 - 2017-06-21 08:43 - 000953344 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2017-07-12 18:57 - 2017-06-21 08:43 - 000628736 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2017-07-12 18:57 - 2017-06-21 08:43 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\SpaceAgent.exe
2017-07-12 18:57 - 2017-06-21 08:42 - 000981504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2017-07-12 18:57 - 2017-06-21 08:42 - 000539136 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2017-07-12 18:57 - 2017-06-21 08:42 - 000467968 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2017-07-12 18:57 - 2017-06-21 08:42 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2017-07-12 18:57 - 2017-06-21 08:42 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2017-07-12 18:57 - 2017-06-21 08:41 - 005850624 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsDesktopEngine.exe
2017-07-12 18:57 - 2017-06-21 08:41 - 002279424 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-07-12 18:57 - 2017-06-21 08:41 - 001692160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-07-12 18:57 - 2017-06-21 08:41 - 001359872 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2017-07-12 18:57 - 2017-06-21 08:41 - 001021440 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2017-07-12 18:57 - 2017-06-21 08:41 - 000945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-07-12 18:57 - 2017-06-21 08:41 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2017-07-12 18:57 - 2017-06-21 08:41 - 000460800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2017-07-12 18:57 - 2017-06-21 08:40 - 004474368 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-07-12 18:57 - 2017-06-21 08:40 - 001586176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2017-07-12 18:57 - 2017-06-21 08:40 - 001421824 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2017-07-12 18:57 - 2017-06-21 08:40 - 000886784 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2017-07-12 18:57 - 2017-06-21 08:40 - 000376832 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2017-07-12 18:57 - 2017-06-21 08:39 - 002916864 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2017-07-12 18:57 - 2017-06-21 08:39 - 002208768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2017-07-12 18:57 - 2017-06-21 08:39 - 001643008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2017-07-12 18:57 - 2017-06-21 08:39 - 001490432 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-07-12 18:57 - 2017-06-21 08:39 - 000971264 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2017-07-12 18:57 - 2017-06-21 08:39 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2017-07-12 18:57 - 2017-06-21 08:38 - 005611008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-07-12 18:57 - 2017-06-21 08:38 - 002695680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-07-12 18:57 - 2017-06-21 08:38 - 001275392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2017-07-12 18:57 - 2017-06-21 08:38 - 000908800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2017-07-12 18:57 - 2017-06-21 08:37 - 000875520 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2017-07-12 18:57 - 2017-06-21 08:37 - 000774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2017-07-12 18:57 - 2017-06-21 08:37 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-07-12 18:57 - 2017-06-21 08:37 - 000716800 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2017-07-12 18:57 - 2017-06-21 08:36 - 002318848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-07-12 18:57 - 2017-06-21 08:36 - 000881152 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2017-07-12 18:57 - 2017-06-21 08:36 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2017-07-12 18:57 - 2017-06-21 08:36 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2017-07-12 18:57 - 2017-06-21 08:35 - 001726976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-07-12 18:57 - 2017-06-21 08:35 - 001328640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2017-07-12 18:57 - 2017-06-21 08:35 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2017-07-12 18:57 - 2017-06-21 08:34 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-07-12 18:57 - 2017-06-21 08:34 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2017-07-12 18:57 - 2017-06-21 08:34 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\spaceman.exe
2017-07-12 18:57 - 2017-06-21 08:33 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2017-07-12 18:57 - 2017-03-04 08:28 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-07-12 18:57 - 2017-03-04 08:27 - 000391168 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2017-07-12 18:57 - 2017-03-04 08:20 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2017-07-12 18:57 - 2017-03-04 08:19 - 001589760 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2017-07-12 18:57 - 2017-03-04 08:14 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll
2017-07-12 18:57 - 2016-10-15 05:45 - 001790464 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2017-07-12 18:57 - 2016-10-05 11:32 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2017-07-10 18:03 - 2017-07-10 18:03 - 000000000 ____D C:\Windows\System32\Tasks\Aufgaben der Ereignisanzeige
2017-07-09 20:08 - 2017-04-21 23:53 - 000029376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2017-07-09 20:08 - 2017-04-21 23:50 - 000030912 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2017-07-09 20:07 - 2017-04-21 23:53 - 000018600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2017-07-09 20:07 - 2017-04-21 23:50 - 000018592 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2017-07-09 20:07 - 2017-04-11 20:27 - 000993632 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2017-07-09 20:07 - 2017-04-11 20:27 - 000690008 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2017-07-09 20:07 - 2017-03-15 20:15 - 000987840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2017-07-09 20:07 - 2017-03-15 20:15 - 000485576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2017-07-09 19:37 - 2017-07-09 19:37 - 000008192 _____ C:\Windows\system32\config\userdiff
2017-07-09 19:15 - 2017-07-09 19:15 - 000516756 _____ C:\Windows\Minidump\070917-7609-01.dmp
2017-07-09 18:28 - 2017-07-09 19:33 - 000005718 _____ C:\Windows\diagwrn.xml
2017-07-09 18:28 - 2017-07-09 19:33 - 000005718 _____ C:\Windows\diagerr.xml
2017-07-08 23:59 - 2017-07-09 22:11 - 005982948 _____ C:\Users\manue\Downloads\Screen-ZXKULTRASCHALL.pdf
2017-07-08 23:59 - 2017-07-08 23:59 - 005982948 _____ C:\Users\manue\Downloads\Screen-ZXKULTRASCHALL (1).pdf
2017-07-05 23:25 - 2017-07-05 23:25 - 000128915 _____ C:\Users\manue\Desktop\Versuchs-_und_Entwicklungsingenieur_-in_im_Bereich_Motorapplikation_Benzinmotoren_Emissionen_in_Stuttgart.pdf
2017-07-05 23:21 - 2017-07-05 23:21 - 000128052 _____ C:\Users\manue\Desktop\Entwicklungsingenieur_-in_im_Bereich_Hydraulik_Doppelkupplungsgetriebe_in_Untertuerkheim.pdf
2017-07-05 23:20 - 2017-07-05 23:20 - 000127236 _____ C:\Users\manue\Desktop\AMG_Ingenieur_Funktionsentwicklung_und_Applikation_Getriebesteuerungen_m_w.pdf
2017-07-05 23:18 - 2017-07-05 23:18 - 000124287 _____ C:\Users\manue\Desktop\Mitarbeiter_in_der_Beratung_m_w_CAx-_DMU-Datenmanagement_Fahrzeugprojekte.pdf
2017-07-05 23:17 - 2017-07-05 23:17 - 000124551 _____ C:\Users\manue\Desktop\Junior_Professional_Beratung_m_w_CAx-Datenmanagement_Fahrzeugprojekte.pdf
2017-07-05 23:09 - 2017-07-09 18:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-07-02 20:33 - 2017-07-02 20:33 - 000128793 _____ C:\Users\manue\Downloads\Promotion_ab_Juli_2017_im_Bereich_Konzeption_eines_Antriebsbaukastens_auf_Basis_dedizierter_Hybridgetriebe_in_Untertuerkheim.pdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-08-01 13:37 - 2016-11-22 21:02 - 000000000 ____D C:\Users\manue\AppData\LocalLow\Mozilla
2017-08-01 12:26 - 2016-08-31 15:40 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-08-01 10:18 - 2016-09-04 13:54 - 000004152 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{613CF99B-47C2-43FF-8C71-AC1589FC49E8}
2017-07-31 12:43 - 2016-07-16 13:47 - 000000000 ___HD C:\Program Files\WindowsApps
2017-07-31 12:43 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\AppReadiness
2017-07-30 16:43 - 2017-02-15 21:17 - 000000000 ____D C:\Users\manue\AppData\Local\CrashDumps
2017-07-28 22:24 - 2016-08-31 16:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-07-28 21:58 - 2016-08-31 15:45 - 012735104 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-28 21:58 - 2016-07-17 00:51 - 006551946 _____ C:\Windows\system32\perfh007.dat
2017-07-28 21:58 - 2016-07-17 00:51 - 001832288 _____ C:\Windows\system32\perfc007.dat
2017-07-28 18:40 - 2016-08-31 16:08 - 000000000 ____D C:\Users\manue
2017-07-28 18:39 - 2017-03-29 16:53 - 000000000 ____D C:\ProgramData\Hauppauge
2017-07-28 18:39 - 2016-09-25 23:51 - 641449804 _____ C:\Windows\MEMORY.DMP
2017-07-28 18:39 - 2016-09-25 23:51 - 000000000 ____D C:\Windows\Minidump
2017-07-28 18:39 - 2016-08-31 16:20 - 000000000 ____D C:\ProgramData\NVIDIA
2017-07-28 18:39 - 2016-08-31 15:40 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-27 21:18 - 2016-08-31 16:11 - 000002383 _____ C:\Users\manue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-07-27 21:18 - 2016-08-31 16:11 - 000000000 ___RD C:\Users\manue\OneDrive
2017-07-26 15:58 - 2016-07-16 08:04 - 000786432 _____ C:\Windows\system32\config\BBI
2017-07-26 13:14 - 2017-01-10 18:29 - 000110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2017-07-26 13:14 - 2017-01-10 18:29 - 000000000 ____D C:\ProgramData\Oracle
2017-07-26 13:14 - 2017-01-10 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2017-07-26 13:14 - 2017-01-10 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-07-26 13:14 - 2017-01-10 18:29 - 000000000 ____D C:\Program Files\Java
2017-07-14 12:06 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\rescache
2017-07-13 22:51 - 2016-08-31 23:29 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-07-12 19:18 - 2016-08-31 16:10 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-07-12 19:18 - 2016-07-16 13:45 - 000000000 ____D C:\Windows\INF
2017-07-12 19:14 - 2016-08-31 15:40 - 000281728 _____ C:\Windows\system32\FNTCACHE.DAT
2017-07-12 19:14 - 2016-07-16 13:47 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2017-07-12 19:14 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\oobe
2017-07-12 19:14 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\appraiser
2017-07-12 19:14 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\ShellExperiences
2017-07-12 19:14 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-07-12 19:14 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-07-12 19:04 - 2016-07-16 13:36 - 000000000 ____D C:\Windows\CbsTemp
2017-07-12 15:28 - 2016-09-01 20:16 - 000000000 ____D C:\Windows\system32\MRT
2017-07-12 15:27 - 2016-09-01 20:16 - 135225752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-07-11 23:24 - 2016-07-16 13:43 - 000157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enrollmentapi.dll
2017-07-11 17:05 - 2016-08-31 16:15 - 000000000 ____D C:\ProgramData\Package Cache
2017-07-09 20:56 - 2017-05-04 19:00 - 000000000 __RSD C:\Windows\system32\WindowsDevicePortal
2017-07-09 20:56 - 2017-04-27 17:50 - 000000000 ____D C:\Program Files\Intel
2017-07-09 20:56 - 2017-01-11 17:58 - 000000000 ____D C:\Windows\system32\appmgmt
2017-07-09 20:56 - 2016-09-01 20:27 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-07-09 20:56 - 2016-08-31 22:51 - 000000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information
2017-07-09 20:56 - 2016-08-31 16:20 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-07-09 20:56 - 2016-08-31 16:20 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-07-09 20:56 - 2016-08-31 16:12 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-07-09 20:56 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\system32\spool
2017-07-09 20:56 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\LiveKernelReports
2017-07-09 20:56 - 2016-07-16 13:47 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-07-09 19:57 - 2017-03-20 07:06 - 000000000 ___HD C:\$WINDOWS.~BT
2017-07-09 19:38 - 2016-08-31 16:39 - 000000000 ____D C:\Windows\Panther
2017-07-09 19:33 - 2016-07-16 13:47 - 000000000 ____D C:\Windows\Registration
2017-07-09 18:53 - 2016-09-15 18:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-09 18:32 - 2016-07-16 08:04 - 000032768 _____ C:\Windows\system32\config\ELAM
2017-07-02 21:58 - 2017-03-16 17:52 - 000599746 _____ C:\Users\manue\Desktop\tl852.pdf
2017-07-02 01:45 - 2017-05-23 14:19 - 000000000 ____D C:\Users\manue\AppData\Roaming\Garmin

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-01-29 16:33 - 2017-02-12 15:18 - 000000572 _____ () C:\Users\manue\AppData\Roaming\myAVR_ProgTool.cfg
2016-09-01 18:25 - 2016-02-17 23:30 - 015384576 _____ () C:\Users\manue\AppData\Roaming\Sandra.mdb
2017-06-26 17:45 - 2017-07-01 17:56 - 000004608 _____ () C:\Users\manue\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-05-25 19:39 - 2017-05-25 19:39 - 000000218 _____ () C:\Users\manue\AppData\Local\recently-used.xbel
2016-09-01 20:42 - 2016-09-01 20:42 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Program Files (x86)\VLC Updater\vlc-updater.exe


Einige Dateien in TEMP:
====================
2016-08-31 16:21 - 2016-08-31 16:21 - 000000000 ____D () C:\Users\manue\AppData\Local\Temp\avgnt.exe
2017-06-26 17:02 - 2017-06-26 17:02 - 000065536 _____ () C:\Users\manue\AppData\Local\Temp\Execute2App.exe
2017-03-29 16:54 - 2016-04-26 15:28 - 000011560 _____ (Hauppauge Computer Works, Inc.) C:\Users\manue\AppData\Local\Temp\Hauppauge3rdPartyToolDownloader.exe
2017-04-23 16:13 - 2017-04-23 16:13 - 000739904 _____ (Oracle Corporation) C:\Users\manue\AppData\Local\Temp\jre-8u131-windows-au.exe
2017-07-26 13:13 - 2017-07-26 13:13 - 000739904 _____ (Oracle Corporation) C:\Users\manue\AppData\Local\Temp\jre-8u141-windows-au.exe
2017-03-29 16:54 - 2017-03-29 16:55 - 010219112 _____ (1f0.de                                                      ) C:\Users\manue\AppData\Local\Temp\lavinstaller.exe
2017-06-26 17:02 - 2017-06-26 17:02 - 000568832 _____ (Microsoft Corporation) C:\Users\manue\AppData\Local\Temp\msvcp90.dll
2017-06-26 17:02 - 2017-06-26 17:02 - 000655872 _____ (Microsoft Corporation) C:\Users\manue\AppData\Local\Temp\msvcr90.dll

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-07-31 23:57

==================== Ende von FRST.txt ============================

--- --- ---

Mk91 · 01.08.2017, 12:52

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 31-07-2017
durchgeführt von manue (01-08-2017 13:39:06)
Gestartet von C:\Users\manue\Downloads
Windows 10 Pro Version 1607 (X64) (2016-08-31 14:05:27)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-236702602-2802554579-3409709690-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-236702602-2802554579-3409709690-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-236702602-2802554579-3409709690-1000 - Limited - Disabled) => C:\Users\defaultuser0
Gast (S-1-5-21-236702602-2802554579-3409709690-501 - Limited - Disabled)
manue (S-1-5-21-236702602-2802554579-3409709690-1001 - Administrator - Enabled) => C:\Users\manue

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Application Verifier x64 External Package (HKLM\...\{01C2C51F-B0CF-BB5E-A010-E927D44F7720}) (Version: 10.1.15063.137 - Microsoft) Hidden
Arduino (HKLM-x32\...\Arduino) (Version: 1.6.11 - Arduino LLC)
ARM Toolchain (HKLM-x32\...\{DF70319A-0FF8-40AA-AF3C-BDCF25566685}) (Version: 7.0.1004 - Atmel) Hidden
ASUS Xonar DGX Audio (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008788}) (Version:   - ASUSTeK Computer Inc.)
Atmel Driver Files (HKLM-x32\...\{6F7D7F68-DBBF-45E2-ADE8-B78E72C2D1C1}) (Version: 7.1.16 - Atmel Corporation)
Atmel LibUSB0 Driver (x64) (HKLM\...\{C1F86585-CDAC-4ABE-B163-161DDBCC4332}) (Version: 7.0.125 - Atmel)
Atmel Segger USB Drivers (501e) (HKLM-x32\...\{156C0C95-4DDE-4F88-97A0-5EEE22269CE3}) (Version: 7.0.417 - Atmel)
Atmel Software Framework (HKLM-x32\...\{E3F0760B-113D-4271-A2BE-B97752BF0B33}) (Version: 7.0.1186 - Atmel) Hidden
Atmel Studio 7.0 (HKLM-x32\...\{9b226216-cf50-48b3-a6e2-3dd5a9b3406d}) (Version: 7.0.1188 - Atmel)
Atmel Studio Development Environment (HKLM-x32\...\{D1E22058-E061-42D1-A710-C11FAFF3E252}) (Version: 7.0.1188 - Atmel) Hidden
Atmel WinDriver (HKLM-x32\...\{FAF2A9D1-33C8-48FF-8FD5-20075A53AB9C}) (Version: 7.0.23 - Atmel)
Atmel WinUSB (HKLM-x32\...\{22D3C72E-42F9-4B0F-B331-E0AA134ADF76}) (Version: 6.2.32 - Atmel)
AutoUpdate (HKLM-x32\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.28.28 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{661C79C2-D156-419C-81CA-D1A2523B0841}) (Version: 1.2.91.10326 - Avira Operations GmbH & Co. KG) Hidden
Avira Connect (HKLM-x32\...\{dd9049b8-31d1-40bd-8c8c-97a7b087a78f}) (Version: 1.2.91.10326 - Avira Operations GmbH & Co. KG)
Avira Software Updater (HKLM-x32\...\{8BCF08B0-0A9D-49C5-8187-38C72FD43336}) (Version: 2.0.3.29917 - Avira Operations GmbH & Co. KG)
AVR32 Device Support (HKLM-x32\...\{B4FF8137-23C8-4AC9-BC91-6A25E317D374}) (Version: 7.0.1183 - Atmel) Hidden
AVR32 Toolchain 7.0 (HKLM-x32\...\{8AF6AD1C-A2DE-412D-9FEE-ECF60AD534BB}) (Version: 7.0.536 - Atmel) Hidden
AVR8 Device Support (HKLM-x32\...\{C64B8FC0-9017-4BDC-972A-F8F7AD8903E0}) (Version: 7.0.1188 - Atmel) Hidden
AVR8 Toolchain (HKLM-x32\...\{3E4193B4-89BB-4576-9C8F-ADF3439D0B33}) (Version: 7.0.1185 - Atmel) Hidden
Canon MP640 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP640_series) (Version:  - )
Cisco AnyConnect Secure Mobility Client  (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.4.00243 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{CA610707-85CB-443A-9D11-573B0E85BFCF}) (Version: 4.4.00243 - Cisco Systems, Inc.) Hidden
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{E598B692-764A-413C-8530-59163D6B4AE3}) (Version: 4.6.01590 - Microsoft Corporation) Hidden
DiagnosticsHub_CollectionService (HKLM\...\{90A561D7-0C29-464D-94E1-2A7E1C553230}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
DivX Codec (HKLM-x32\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.6.1 - DivX, Inc.)
Freizeitkarte_DEU (Ausgabe 14.05) (HKLM-x32\...\Freizeitkarte_DEU) (Version:  - )
Freizeitkarte_ITA (Ausgabe 14.05) (HKLM-x32\...\Freizeitkarte_ITA) (Version:  - )
Garmin BaseCamp (HKLM-x32\...\{23A4DBD1-D847-4957-995D-8B1CC527E2E2}) (Version: 4.6.2.0 - Garmin Ltd or its subsidiaries)
GIMP 2.8.18 (HKLM\...\GIMP-2_is1) (Version: 2.8.18 - The GIMP Team)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Hauppauge WinTV 8 (HKLM-x32\...\Hauppauge WinTV 8) (Version: v8.0.35087 (CD 5.6 AAC) - Hauppauge Computer Works)
icecap_collection_neutral (HKLM-x32\...\{64F3E6FC-68E3-4062-9C2C-ABD93FDFF309}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{0AD162D1-4973-4315-97E9-5DE9A92B4049}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{12C50688-5919-4A7A-8784-B26A7238FCEE}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{FE002482-71A5-4B32-9D08-60ADFAF19E07}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{400E7885-8851-43F1-849C-5A720CB4F001}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{9FBD9D6F-A511-45F5-B672-63A5087F6F89}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
Inkscape 0.91 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.91 - inkscape.org)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{55669453-883A-4F15-9D3B-BC990F5C9A32}) (Version: 6.0.6 - Intel Corporation)
Intellisense Lang Pack Mobile Extension SDK 10.0.15063.0 (HKLM-x32\...\{A0007ADE-F6F6-410F-822F-7522B4F0BFDE}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.42 - Irfan Skiljan)
Java 8 Update 141 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180141F0}) (Version: 8.0.1410.15 - Oracle Corporation)
Java SE Development Kit 8 Update 111 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180111}) (Version: 8.0.1110.14 - Oracle Corporation)
KiCad 4.0.5 (HKLM-x32\...\KiCad) (Version: 4.0.5 - KiCad)
Kits Configuration Installer (HKLM-x32\...\{0275DC52-C83E-3142-D2EF-70877F885663}) (Version: 10.0.26624 - Microsoft) Hidden
LAV Filters 0.68 (HKLM-x32\...\lavfilters_is1) (Version: 0.68 - Hendrik Leppkes)
LochMaster 4.0 (HKLM-x32\...\lochmaster_40_is1) (Version:  - )
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{B941AFB4-8851-33A1-9E72-0C33D463C41C}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-236702602-2802554579-3409709690-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2015 Shell (Isolated) (HKLM-x32\...\{d2981c27-a434-4c9a-96c7-0209e97c4eac}) (Version: 14.0.23107.10 - Microsoft Corporation)
Microsoft Visual Studio 2017 (HKLM-x32\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.9.30413.1 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server*2016 (HKLM\...\{FEC926D4-785B-4ED7-B35D-3FA37DD29F8B}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server*2016 (HKLM-x32\...\{A37BE9D7-EAAE-4C6B-9D7E-DBD8B8D88681}) (Version: 13.0.1601.5 - Microsoft Corporation)
Mozilla Firefox 54.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 54.0.1 (x86 de)) (Version: 54.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.1.6388 - Mozilla)
Mozilla Thunderbird 52.2.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 52.2.1 (x86 de)) (Version: 52.2.1 - Mozilla)
MSI Development Tools (HKLM-x32\...\{074120DA-7DA8-E059-BD8E-5750E97C6046}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
NVIDIA 3D Vision Treiber 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
Python 2.7.13 (64-bit) (HKLM\...\{4A656C6C-D24A-473F-9747-3A8D00907A04}) (Version: 2.7.13150 - Python Software Foundation)
SAM Device Support (HKLM-x32\...\{DB11FEB8-396C-4CBC-8DE1-399D67AFCB99}) (Version: 7.0.1186 - Atmel) Hidden
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SiSoftware Sandra Lite 2016.SP1 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}_is1) (Version: 22.20.2016.3 - SiSoftware)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.)
SmartDVB (HKLM-x32\...\{B3A552DB-CD70-4C0E-BA00-79C3C42116AA}) (Version: 1.3.125 - SmartWARE)
TVCenter (HKLM\...\{18F703C3-32EC-4E5C-BC3C-C1BD72D35F5B}) (Version: 6.4.0.784 - PCTV Systems)
TypeScript Power Tool (HKLM-x32\...\{0B693FB7-DF61-44DB-AEAA-E2E30F85A781}) (Version: 2.1.5.0 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (HKLM-x32\...\{1FBCBC17-4527-2340-0832-B1D49C41FF67}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (HKLM-x32\...\{ADD45F52-630A-4F45-8879-A8DB80DF921B}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{8BFBEC30-33CC-13B4-849F-3B036F27466A}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{919D63C5-565C-F1C3-67D9-353FE902EF11}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{0AAB833E-034D-430B-D3E4-39C5753B14AC}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{D29934EC-24B6-0F5D-C6BB-E9ECCF220C12}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{2410D879-0C8F-B254-C207-455E119075B6}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{485209AE-37CE-2208-59CB-7BB59AA85BE7}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{6AFD985C-21B7-8F2D-86B2-19A0563A1195}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32\...\{93FDC294-0726-48EA-989D-50E89C67ABF0}) (Version: 14.10.25008 - Microsoft Corporation) Hidden
vcpp_crt.redist.clickonce (HKLM-x32\...\{F48A9651-9D00-4D94-810E-8738A41F16C2}) (Version: 14.10.25008 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VLC Updater (HKLM-x32\...\VLC Updater) (Version: 1.0 - VLC Updater) <==== ACHTUNG
VS Immersive Activate Helper (HKLM-x32\...\{D8A4EA2B-1A97-45A5-BF96-7493183F8524}) (Version: 16.0.59.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{2901E697-0E9C-404B-B7D0-6E2D43F64CE5}) (Version: 16.0.59.0 - Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM\...\{3B64C68E-14E0-4214-A53D-502E9FBD32E7}) (Version: 16.0.59.0 - Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32\...\{1070C8E8-4DFB-419F-984A-5C835828897E}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32\...\{B9F4AA09-F4AC-4108-ADA0-27CDD45FCEC3}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32\...\{AEF5E0F2-31D1-454A-A992-C523C0007B4D}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32\...\{DE8B48BF-82B9-434A-B254-1EA2306E5FBA}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{A041943F-C97B-48F6-8F23-C5078F99BB3A}) (Version: 15.0.26323 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{1210EE60-E253-407D-B537-D36898049CF0}) (Version: 15.0.26228 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{B3988EC1-015B-4A61-A323-BCCCDD218E4F}) (Version: 15.0.26228 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{581E5656-26E2-4A02-9711-48C8E4998310}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{15D591B0-7B40-4957-B6C0-EB7452B5AAB6}) (Version: 15.0.26228 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{DC296244-0701-4EDE-9696-05B9C1D017B3}) (Version: 15.0.26228 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{11230C85-1813-4BC3-9C24-E0B74B59653E}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx64 (HKLM\...\{F3217611-B414-4A3A-81BF-6A3A4DB7E743}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx86 (HKLM-x32\...\{D4DCEC6A-BC59-43D5-866A-AB057E64F73F}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{9477F337-FD16-4ACA-8217-E2D7A0F92603}) (Version: 15.0.26301 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{ACFEA151-D1BE-4114-875A-87328B6002D4}) (Version: 15.0.26315 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{37968509-8B79-4E9A-85D1-6AA39DA2211A}) (Version: 15.0.26228 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{A8B77523-13AB-46B9-B54F-5483E09668F9}) (Version: 15.0.26228 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{D396CF10-5F2B-417D-9571-0B669B99440E}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{A32A9CF6-E7AA-48B8-A3D3-50C157E69F53}) (Version: 15.0.26208 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WinAppDeploy (HKLM-x32\...\{80859F5A-D13C-AB8E-4659-B630CFE2599D}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
WinAppDeploy (HKLM-x32\...\{FAD0F79E-5EA4-542B-76A3-46093E52C1F5}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows SDK AddOn (HKLM-x32\...\{30DCCFB4-068F-4C5C-BC10-5ECDCAEE55D4}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.15063.137 (HKLM-x32\...\{a07b4a01-ca27-4e28-9353-f325a308f128}) (Version: 10.1.15063.137 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.26624 (HKLM-x32\...\{e7a0c8b6-b0e9-41e2-8a0a-a6784f88d1d4}) (Version: 10.0.26624 - Microsoft Corporation)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{45B6202F-A716-C68A-199E-43B106B56A7E}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{4B51AEB6-6809-14FF-9BED-0CA4562E7C29}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{357D0CD4-8B72-8D65-7015-81DFB2BF9150}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{C7EDFCB3-6341-A239-4626-499461403BC1}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{3E5375A1-0E4C-34E3-6294-C1C8BDA823E4}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{AC7E3FD3-018B-5DD8-2C2B-3AE87B283E48}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{35CC86CF-B9E6-6E9D-7DFF-F2C4A7668A57}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E2F78B92-04DE-5350-14C0-7C281BF87D9E}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{311BF490-B346-3B34-80BD-B892C4835026}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{6CE744AE-7E0F-00AF-F1BD-077D9AFCBEC6}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{2F157523-39A0-B488-8BD7-60B25186B5EB}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{81A0EC8C-9462-BC98-0E5C-301DD7A46792}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{AF110624-9E71-3F58-0992-C12DBEE79BA7}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{FAD08838-3937-0F6C-8787-FDFDFBF63502}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{8F542B99-CF59-6042-48B8-549B60E66232}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{D089A695-49F0-D3B2-0EBF-2BBC33A05CD6}) (Version: 10.1.15063.137 - Microsoft Corporation) Hidden
WinRT Intellisense Xbox Live Extension SDK - en-us (HKLM-x32\...\{91F4F520-25FB-AB44-610A-B8D53C4BF25D}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
WinRT Intellisense Xbox Live Extension SDK - Other Languages (HKLM-x32\...\{1C47EFF0-EDFE-BBA3-0BB5-8345E002C0D8}) (Version: 10.0.26624 - Microsoft Corporation) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-07-12] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2017-07-12] (Avira Operations GmbH & Co. KG)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {09D2446F-0854-4D4F-A68C-3C5A78CD084C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-13] (Google Inc.)
Task: {1798A3DD-9018-4F18-B901-9305C885156F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {A2CFDDB0-EC97-41D6-A5DA-6916E778BFEE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-13] (Google Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 000231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2017-07-12 18:57 - 2017-06-21 09:48 - 002681200 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-08-31 16:20 - 2016-12-29 15:16 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-09-14 15:14 - 2016-09-07 06:56 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 00:49 - 2017-03-04 08:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-15 00:50 - 2017-03-04 08:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 00:50 - 2017-03-04 08:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 00:50 - 2017-03-04 08:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-07-12 18:57 - 2017-06-21 08:36 - 001033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-07-12 18:57 - 2017-06-21 08:35 - 002424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-07-12 18:57 - 2017-06-21 08:37 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-01 18:31 - 2016-09-01 19:50 - 000200704 _____ () C:\Windows\SysWOW64\HsMgr.exe
2016-09-01 18:31 - 2016-09-01 19:50 - 000282112 _____ () C:\Windows\System\HsMgr64.exe
2017-07-18 13:04 - 2017-07-18 13:04 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-07-18 13:04 - 2017-07-18 13:04 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-07-18 13:04 - 2017-07-18 13:04 - 043573248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-07-18 13:04 - 2017-07-18 13:04 - 002435584 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\skypert.dll
2016-12-09 18:09 - 2016-12-09 18:09 - 000073728 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2017-03-29 16:54 - 2011-08-23 13:04 - 000057344 _____ () C:\Program Files (x86)\WinTV\TVServer\libhdhomerun.dll
2017-03-29 16:54 - 2017-03-01 14:10 - 000025600 _____ () C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServerps.dll
2016-09-01 18:31 - 2016-09-01 18:30 - 000143360 ____N () C:\Program Files\ASUS Xonar DGX Audio\Customapp\VmixP8.dll
2017-03-29 16:54 - 2012-09-12 10:30 - 000074624 _____ () C:\Program Files (x86)\WinTV\WinTV8\Codecs\EAC3\EAC3Codec_ffmpeg.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-236702602-2802554579-3409709690-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\manue\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.123.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\StartupFolder: => "Nach Updates suchen.lnk"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKU\S-1-5-21-236702602-2802554579-3409709690-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-236702602-2802554579-3409709690-1001\...\StartupApproved\Run: => "ProgLauncher"
HKU\S-1-5-21-236702602-2802554579-3409709690-1001\...\StartupApproved\Run: => "RemoTerm.exe"
HKU\S-1-5-21-236702602-2802554579-3409709690-1001\...\StartupApproved\Run: => "VLC Updater"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{81086158-2C7A-45AD-A291-7695E485D89C}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\RpcAgentSrv.exe
FirewallRules: [{7E99531B-B336-4B8A-A8DF-E07B1E79D97C}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\WNt600x64\RpcSandraSrv.exe
FirewallRules: [{91779177-68A5-49BB-A8F8-5525EBB0497B}] => (Allow) C:\Program Files (x86)\PCTV Systems\TVCenter\TVCenter.exe
FirewallRules: [{6D051A08-73C2-4211-B267-C5621BB13EF6}] => (Allow) C:\Program Files (x86)\Common Files\PCTV Systems\PVR\VideoControl.exe
FirewallRules: [{9FD52C58-06BB-4B73-85C8-A825A9AD5460}] => (Allow) C:\Program Files (x86)\Common Files\PCTV Systems\StreamingServer\StrmServer.exe
FirewallRules: [{6782FA20-3F72-4482-BCF1-FD391B0C2DD0}] => (Allow) LPort=1900
FirewallRules: [{94843812-3DD8-41AF-82A0-78DC0F7AA6E4}] => (Allow) LPort=2869
FirewallRules: [TCP Query User{5C3258E4-C215-4BF9-82E2-812744973C3A}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{AF641E43-D29A-4614-947C-92E475E44FB2}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{DCF32B5E-41DA-4FC9-8533-D9433E96E679}] => (Block) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{63E931BF-7C0F-4FAD-9A27-371983F39692}] => (Block) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{6E091B08-C56B-4D6B-9A5A-92A18902BF46}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{327540FB-0CCB-4F23-B550-49BBDBD7894A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3AF32A18-C75B-410C-A48C-C00B4D2E6461}] => (Allow) C:\Program Files (x86)\PCTV Systems\TVCenter\TVCenter.exe
FirewallRules: [{3DCB480C-B785-4F87-BD41-FD7294334F51}] => (Allow) C:\Program Files (x86)\Common Files\PCTV Systems\PVR\VideoControl.exe
FirewallRules: [{BB38F4FF-AAAE-4E0B-B9E5-26A8129C9014}] => (Allow) C:\Program Files (x86)\Common Files\PCTV Systems\StreamingServer\StrmServer.exe
FirewallRules: [{B0AA0DD3-E475-4F03-AC17-7E90F75A3FCD}] => (Allow) LPort=1900
FirewallRules: [{7AD4C822-8939-4AF4-BE48-8937AFBC901E}] => (Allow) LPort=2869
FirewallRules: [TCP Query User{B76E0953-E1D9-4887-ACBE-7E3285268F32}C:\program files\siemens\nx 10.0\ugii\ugraf.exe] => (Allow) C:\program files\siemens\nx 10.0\ugii\ugraf.exe
FirewallRules: [UDP Query User{6EEB5B02-76E6-4772-8915-03966B3C2454}C:\program files\siemens\nx 10.0\ugii\ugraf.exe] => (Allow) C:\program files\siemens\nx 10.0\ugii\ugraf.exe
FirewallRules: [{72584146-8271-422C-ADDF-B0BA86C24FEF}] => (Block) C:\program files\siemens\nx 10.0\ugii\ugraf.exe
FirewallRules: [{58DE33D5-F541-4921-8412-9D7BDBF2CED5}] => (Block) C:\program files\siemens\nx 10.0\ugii\ugraf.exe
FirewallRules: [{09923333-4199-4564-9501-BAABC3F38DC2}] => (Allow) C:\Program Files (x86)\Atmel\Studio\7.0\atbackend\atbackend.exe
FirewallRules: [{10EFBE3E-C5A6-4B97-98D5-32FF7388096E}] => (Allow) C:\Program Files (x86)\Atmel\Studio\7.0\AtmelStudio.exe
FirewallRules: [{AAEB80D2-3F72-4320-9683-E4B0BD5DEF69}] => (Allow) C:\Program Files (x86)\WinTV\WinTV8\WinTV8.exe
FirewallRules: [{C45821D2-A68A-4FE7-9034-9024312FA6DD}] => (Allow) C:\Program Files (x86)\WinTV\WinTV8\WinTV8.exe
FirewallRules: [{C7218FFE-1B59-472E-9333-C2C8227648CF}] => (Allow) C:\Program Files (x86)\WinTV\WinTV8\WinTV8.exe
FirewallRules: [{4E1C74F4-0A9A-4D2B-8449-74EA630FDE3F}] => (Allow) C:\Program Files (x86)\WinTV\WinTV8\WinTV8.exe
FirewallRules: [{B32AD398-CC31-4148-A1FC-8E6488965CC3}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{DA06A707-E832-4CBD-8C2B-E8BE2F23CA83}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{DA3638AB-6FFA-4DA5-ABC5-E3A8354D201A}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{B33B7C3E-3C1D-4ACD-A973-7BA5487521D2}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\CaptureDCR.exe
FirewallRules: [{61BA31AE-C203-40B3-904A-61BACF5D6AC4}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
FirewallRules: [{E6C748D4-B242-4237-9222-51075B5898FE}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
FirewallRules: [{443B65A1-9882-410D-BDCA-1BC8EBA9D5DD}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
FirewallRules: [{7F265170-F278-448A-98F4-235B4425DB0F}] => (Allow) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
FirewallRules: [TCP Query User{ECD5A484-41CD-4579-8F3D-BAD74D11B528}C:\program files (x86)\wintv\wintv8\wintv8.exe] => (Allow) C:\program files (x86)\wintv\wintv8\wintv8.exe
FirewallRules: [UDP Query User{EFB4C1FE-15C1-4FDE-AA48-F74917D3133E}C:\program files (x86)\wintv\wintv8\wintv8.exe] => (Allow) C:\program files (x86)\wintv\wintv8\wintv8.exe
FirewallRules: [TCP Query User{A59120C1-544D-4C76-A76D-CC067E749332}C:\programme2\android\android studio\jre\bin\java.exe] => (Allow) C:\programme2\android\android studio\jre\bin\java.exe
FirewallRules: [UDP Query User{6A9454C0-57C0-46F3-ADA8-36FD9467B275}C:\programme2\android\android studio\jre\bin\java.exe] => (Allow) C:\programme2\android\android studio\jre\bin\java.exe

==================== Wiederherstellungspunkte =========================

20-07-2017 10:33:08 Geplanter Prüfpunkt
27-07-2017 23:45:38 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft Visual Studio Location Simulator Sensor
Description: Microsoft Visual Studio Location Simulator Sensor
Class Guid: {5175d334-c371-4806-b3ba-71fd53c9258d}
Manufacturer: Microsoft Corporation
Service: SensorsSimulatorDriver
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/01/2017 10:19:00 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Windows Kits\10\bin\arm64\oleview.exe".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="arm64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/01/2017 10:18:59 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Windows Kits\10\bin\arm64\filetypeverifier.exe".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="arm64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/01/2017 10:18:55 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Windows Kits\10\bin\arm\signtool.exe.Manifest".
Die abhängige Assemblierung "Microsoft.Windows.Build.Appx.AppxSip.dll,version="0.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/01/2017 10:18:54 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Windows Kits\10\bin\arm64\signtool.exe.Manifest".
Die abhängige Assemblierung "Microsoft.Windows.Build.Appx.AppxSip.dll,version="0.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/01/2017 10:18:38 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\14.0\Debugger\target\armv4i\vsgraphicsremoteengine.exe".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/01/2017 10:18:31 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Windows Kits\10\bin\10.0.15063.0\arm64\signtool.exe.Manifest".
Die abhängige Assemblierung "Microsoft.Windows.Build.Appx.AppxSip.dll,version="0.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (08/01/2017 10:18:31 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Windows Kits\10\bin\10.0.15063.0\arm\signtool.exe.Manifest".
Die abhängige Assemblierung "Microsoft.Windows.Build.Signing.wintrust.dll,version="0.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (07/31/2017 12:44:31 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Windows Kits\10\bin\arm64\oleview.exe".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="arm64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (07/31/2017 12:44:31 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Windows Kits\10\bin\arm64\filetypeverifier.exe".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="arm64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (07/31/2017 12:44:26 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Windows Kits\10\bin\arm\signtool.exe.Manifest".
Die abhängige Assemblierung "Microsoft.Windows.Build.Appx.AppxSip.dll,version="0.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".


Systemfehler:
=============
Error: (08/01/2017 10:15:16 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (08/01/2017 12:55:07 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (07/31/2017 09:25:32 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (07/31/2017 06:29:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (07/31/2017 06:17:16 PM) (Source: DCOM) (EventID: 10010) (User: M-PC02)
Description: Der Server "{37998346-3765-45B1-8C66-AA88CA6B20B8}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (07/31/2017 06:15:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Plattformdienst für verbundene Geräte" wurde mit folgendem Fehler beendet: 
Unbekannter Fehler

Error: (07/31/2017 06:15:07 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (07/31/2017 02:52:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (07/31/2017 12:40:34 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (07/31/2017 01:02:58 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 51%
Installierter physikalischer RAM: 6126.49 MB
Verfügbarer physikalischer RAM: 2981.68 MB
Summe virtueller Speicher: 7150.49 MB
Verfügbarer virtueller Speicher: 3287.81 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:231.93 GB) (Free:110.83 GB) NTFS
Drive d: (DATA) (Fixed) (Total:457.21 GB) (Free:46.71 GB) NTFS
Drive e: (Win7SysRESERV) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: (Win7) (Fixed) (Total:457.21 GB) (Free:173.3 GB) NTFS
Drive z: (Bewerbungsmappe) (CDROM) (Total:0.38 GB) (Free:0 GB) CDFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7365C293)
Partition 1: (Not Active) - (Size=17 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=457.2 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=457.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 4FEB8088)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=231.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=471 MB) - (Type=27)

==================== Ende von Addition.txt ============================

Code:

ATTFilter

13:40:24.0767 0x277c  TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
13:40:53.0248 0x277c  ============================================================
13:40:53.0248 0x277c  Current date / time: 2017/08/01 13:40:53.0248
13:40:53.0248 0x277c  SystemInfo:
13:40:53.0248 0x277c  
13:40:53.0248 0x277c  OS Version: 10.0.14393 ServicePack: 0.0
13:40:53.0248 0x277c  Product type: Workstation
13:40:53.0248 0x277c  ComputerName: M-PC02
13:40:53.0248 0x277c  UserName: manue
13:40:53.0248 0x277c  Windows directory: C:\Windows
13:40:53.0248 0x277c  System windows directory: C:\Windows
13:40:53.0248 0x277c  Running under WOW64
13:40:53.0248 0x277c  Processor architecture: Intel x64
13:40:53.0248 0x277c  Number of processors: 8
13:40:53.0248 0x277c  Page size: 0x1000
13:40:53.0248 0x277c  Boot type: Normal boot
13:40:53.0248 0x277c  CodeIntegrityOptions = 0x00000001
13:40:53.0248 0x277c  ============================================================
13:40:53.0322 0x277c  KLMD registered as C:\Windows\system32\drivers\53537921.sys
13:40:53.0322 0x277c  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.1480, osProperties = 0x19
13:40:53.0487 0x277c  System UUID: {48056C1A-8C37-B4F0-5F1A-D489142195BD}
13:40:53.0986 0x277c  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:40:53.0987 0x277c  Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:40:54.0024 0x277c  ============================================================
13:40:54.0024 0x277c  \Device\Harddisk0\DR0:
13:40:54.0024 0x277c  MBR partitions:
13:40:54.0024 0x277c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2200800, BlocksNum 0x32000
13:40:54.0024 0x277c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2232800, BlocksNum 0x39269800
13:40:54.0024 0x277c  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B49C015, BlocksNum 0x392699AC
13:40:54.0024 0x277c  \Device\Harddisk1\DR1:
13:40:54.0025 0x277c  MBR partitions:
13:40:54.0025 0x277c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xFA000
13:40:54.0025 0x277c  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xFA800, BlocksNum 0x1CFDE47A
13:40:54.0025 0x277c  ============================================================
13:40:54.0026 0x277c  C: <-> \Device\Harddisk1\DR1\Partition2
13:40:54.0046 0x277c  E: <-> \Device\Harddisk0\DR0\Partition1
13:40:54.0074 0x277c  F: <-> \Device\Harddisk0\DR0\Partition2
13:40:54.0102 0x277c  D: <-> \Device\Harddisk0\DR0\Partition3
13:40:54.0102 0x277c  ============================================================
13:40:54.0102 0x277c  Initialize success
13:40:54.0102 0x277c  ============================================================
13:41:09.0276 0x0580  ============================================================
13:41:09.0276 0x0580  Scan started
13:41:09.0276 0x0580  Mode: Manual; SigCheck; TDLFS; 
13:41:09.0276 0x0580  ============================================================
13:41:09.0276 0x0580  KSN ping started
13:41:09.0391 0x0580  KSN ping finished: true
13:41:10.0084 0x0580  ================ Scan system memory ========================
13:41:10.0084 0x0580  System memory - ok
13:41:10.0085 0x0580  ================ Scan services =============================
13:41:10.0116 0x0580  [ A7901875F89D011C38CF52C98ACF5B29, 782141AB1DD7ACDE6EA08B5BAFDE8BADD05B81D38C18E097D6D9C46102056EB1 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
13:41:10.0164 0x0580  1394ohci - ok
13:41:10.0174 0x0580  [ EE1CCC54F75C24727A218F98FC5349DA, 0B0D26640BFA0F551B7087027E572D0BF2C5EAF50A4187C5A7D839180B7FF589 ] 3ware           C:\Windows\system32\drivers\3ware.sys
13:41:10.0186 0x0580  3ware - ok
13:41:10.0203 0x0580  [ 73C73E1AA0D4D727A04AAAB120B7F56A, 5D311F11022994410DF5C67914D38B1F0D813EFD181EA234750286A272D67A1A ] ACPI            C:\Windows\system32\drivers\ACPI.sys
13:41:10.0231 0x0580  ACPI - ok
13:41:10.0235 0x0580  [ 0935496EF9624B46B935CB35ECE1F205, A22A2A29195505A65E8626D60B00C86C23E0CABC1EB8345EA5ED523516CC21C0 ] AcpiDev         C:\Windows\System32\drivers\AcpiDev.sys
13:41:10.0250 0x0580  AcpiDev - ok
13:41:10.0255 0x0580  [ D6794C31F4077B71433988787BAA926E, F16365C2F195AAE94D4740E6C3DF4C0CECEC6393CAD65425DCCD28CDBA6EC51A ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
13:41:10.0267 0x0580  acpiex - ok
13:41:10.0270 0x0580  [ FE5F656D6B35089DA39112E74EC6A85A, 5D81EE63998232A5B36DE47FE15B9D04D5BD02234CA133A2462AECA8C60A22ED ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
13:41:10.0280 0x0580  acpipagr - ok
13:41:10.0284 0x0580  [ 2F242941E4DFF69B883D77A16F039557, 45C388365317C720654A659A9326B2BC0E9D84929C704654985597D5D620101C ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
13:41:10.0296 0x0580  AcpiPmi - ok
13:41:10.0299 0x0580  [ C247E35A21682DA8D0DC3AF9F025FCC5, 455415EE3166B3043AD8A4DD50B688DB74242267FB555642441251EFA823E971 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
13:41:10.0309 0x0580  acpitime - ok
13:41:10.0317 0x0580  [ CE40CA1C7994B92A2970E35A62F3E8F0, 15CE8681866E5A150BA6CCED57D442DC6E868110DAD4C8786B8742F1EE7041D6 ] acsock          C:\Windows\system32\DRIVERS\acsock64.sys
13:41:10.0332 0x0580  acsock - ok
13:41:10.0338 0x0580  [ 8D6BA8E7676038A27FD4ECF12CC744B0, F5D59B764DCB4A06A51939533DC7B2391FD68E3979C48939C023A60DCE0D2101 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:41:10.0346 0x0580  AdobeARMservice - ok
13:41:10.0375 0x0580  [ 49B9DB97AFC85DCCBDACDAB2E90085B7, 2A6C2A09F74EA15044F442CCFB54A0F24F105ADB915E5C78F02F59652DC29152 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
13:41:10.0415 0x0580  ADP80XX - ok
13:41:10.0431 0x0580  [ 323AA1953ED9C01E23F740FA891FE064, 4CED6E3D61749316CDE28965C913E7ED462539DAAD637A29484F62AF47AD650D ] AFD             C:\Windows\system32\drivers\afd.sys
13:41:10.0452 0x0580  AFD - ok
13:41:10.0461 0x0580  [ 23522E5D581F7722B1B5B86737CAE39C, FB81ABD304376A1E87B65F5E1B34477B628CEDB2091C5D754DE97464B6050C5B ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
13:41:10.0478 0x0580  ahcache - ok
13:41:10.0482 0x0580  [ D0905D4A945D01D4B28DB9E1BD5985F7, CF389CBCD3B99D1BAE34A42F723F1005C32213A394F691978076D3DF1727715C ] AJRouter        C:\Windows\System32\AJRouter.dll
13:41:10.0492 0x0580  AJRouter - ok
13:41:10.0497 0x0580  [ 8FD51B3B35707A66080D7C8CB05E792D, FE52F3DC280D208FDDC75F6E3294B8D601E0D86F9BD3DB1ACC8FC296AC74C23B ] ALG             C:\Windows\System32\alg.exe
13:41:10.0510 0x0580  ALG - ok
13:41:10.0515 0x0580  [ DF21E05E41E5AC3F13F304D91457649A, 7F48F2AD1DBE89A261113C76D7C23AD7D87D5599BCC31F8A558A8A10B81BF521 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
13:41:10.0529 0x0580  AmdK8 - ok
13:41:10.0534 0x0580  [ 45D0AA4BB90B821DF92E8F19ABED0C5E, EA87A6E98DB3C5A88A844C04C6934E870B7004E783AA5211722115382A211B90 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
13:41:10.0547 0x0580  AmdPPM - ok
13:41:10.0551 0x0580  [ 74FFBC43B4B899C9A8CA06A892F2CE73, 8D599363C7F3D373F1859BAA4D06DD0F40BE78B56BE52B74DE6EA6EF99452004 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
13:41:10.0561 0x0580  amdsata - ok
13:41:10.0569 0x0580  [ AAB0F1D8D7E54761ABAB13AF161F1680, CF847990EFFA2828F5B1DB1A68F08A6C2C918E9612EDFFCF95C36BCABBBEA272 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
13:41:10.0583 0x0580  amdsbs - ok
13:41:10.0588 0x0580  [ F91BAAC4237C40352A807000F3B716F9, F7EFA08E5067C3D419C9D21EDB880BA08883A80DDF35F8B42EC3AB293FE5E03E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
13:41:10.0597 0x0580  amdxata - ok
13:41:10.0624 0x0580  [ A587017D8CAF0B67FCD4B589C1ABF22B, 5B8024C0BAB30C9F850D189A1D3B5B385177BD7EA54C5FE6FD8506686B2A886E ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
13:41:10.0651 0x0580  AntiVirMailService - ok
13:41:10.0663 0x0580  [ 69681426797E0E78F4D9398BD789F1F8, 8B336406B009AF66D558998AE62466AAE24E84DC5D0E98EB2BE7AA38FABD1042 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
13:41:10.0678 0x0580  AntiVirSchedulerService - ok
13:41:10.0690 0x0580  [ 69681426797E0E78F4D9398BD789F1F8, 8B336406B009AF66D558998AE62466AAE24E84DC5D0E98EB2BE7AA38FABD1042 ] AntiVirService  C:\Program Files (x86)\Avira\Antivirus\avguard.exe
13:41:10.0705 0x0580  AntiVirService - ok
13:41:10.0737 0x0580  [ B2868F2E2057D4EA9E7EA061102D8921, 1FCB309421FC58E68E162282816ACB88A1E20C148A0B5C423FEC49123D033EA0 ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
13:41:10.0776 0x0580  AntiVirWebService - ok
13:41:10.0785 0x0580  [ BC121C099C6C659126AD2102AFDFF8CF, 42B5EE293BDD7ADCE48173A01B30D8452564B9DA225EAF25E9292FE77C0FCF3E ] AppID           C:\Windows\system32\drivers\appid.sys
13:41:10.0797 0x0580  AppID - ok
13:41:10.0803 0x0580  [ 0A7C202CDBFD295363A09DE1A2C05F45, AB516BB714CAD60994A42710E7747FB50A5890F71BD8880BF86096CC485DE393 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
13:41:10.0817 0x0580  AppIDSvc - ok
13:41:10.0822 0x0580  [ 79A87DD43331290A276C02DC396BF530, D0781DC027EE60C94831A2C9C3DD741F8F2100A253CD847E7FCFA59919014278 ] Appinfo         C:\Windows\System32\appinfo.dll
13:41:10.0837 0x0580  Appinfo - ok
13:41:10.0840 0x0580  [ 68190E2BADF23BD782344970E5B5DE9E, 95D30EC12C7FDF5822CED8BC2F17669A6687A2FB262B4F0D15C8DCFF4E9AB33D ] applockerfltr   C:\Windows\system32\drivers\applockerfltr.sys
13:41:10.0855 0x0580  applockerfltr - ok
13:41:10.0862 0x0580  [ 76A12AC673B0F8A607ACDD0583C247D4, CBC6C0EB82C7A8E3998344280BBB5A697AFA7206CA2BADFDA7ED6E7DD20E3DAC ] AppMgmt         C:\Windows\System32\appmgmts.dll
13:41:10.0877 0x0580  AppMgmt - ok
13:41:10.0891 0x0580  [ 7552751C3F43335F030029EB83D6EC0D, 608E18DAAD34FB5F1D3333034CC9682AC7D166C54B1EAD011696F8122F9F3B6A ] AppReadiness    C:\Windows\system32\AppReadiness.dll
13:41:10.0925 0x0580  AppReadiness - ok
13:41:10.0943 0x0580  [ 524CD6F52AE14D6C01424A846352D33E, 758EC66C0D4F5D1F2BB601A170676B67D462D46BB3F5BED89D37748C8992166A ] AppVClient      C:\Windows\system32\AppVClient.exe
13:41:10.0968 0x0580  AppVClient - ok
13:41:10.0974 0x0580  [ B66ED2CB37F7E4696A51612AFBA08834, 70BA67AF7F1290E3145B873B53516F138E50D8AAC80CD00CBA66467ABC6643CB ] AppvStrm        C:\Windows\system32\drivers\AppvStrm.sys
13:41:10.0986 0x0580  AppvStrm - ok
13:41:10.0992 0x0580  [ 8DC924848E20F890BEFC6B31136D46BE, B7603425B4970F505B5A3EB0F6652A9CDD188059BDC945D6DF2BADC2DF8F4B5D ] AppvVemgr       C:\Windows\system32\drivers\AppvVemgr.sys
13:41:11.0004 0x0580  AppvVemgr - ok
13:41:11.0010 0x0580  [ 9ADC5A8BEE10E174F95349E9232D8E76, F322991323DCDC51199BB3AB0DA20F6C3CC7EE6E804400B473C610FDB895F0AE ] AppvVfs         C:\Windows\system32\drivers\AppvVfs.sys
13:41:11.0020 0x0580  AppvVfs - ok
13:41:11.0065 0x0580  [ FBEA76FBAC93A1DE7B3071936263DAB6, 5B1A2E29D5EA529F4D77327A0D315529D342CCF9CFC394EEF56916B6F2FBEB36 ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
13:41:11.0141 0x0580  AppXSvc - ok
13:41:11.0149 0x0580  [ E6AB1F0B4C3D4E0D2A88332D76FECD03, 0D3003EB979DA4546DCDD055011E24F13E34F683F02C9801CAC564D1809F11D2 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
13:41:11.0160 0x0580  arcsas - ok
13:41:11.0164 0x0580  [ 61C5A480C43E7E8E49C42869F49D0D3E, E610F0E4315ABA1D90AD4A1D7A68ABA2ACBB7FCA89E9D1798470365D52592D55 ] AsyncMac        C:\Windows\System32\drivers\asyncmac.sys
13:41:11.0175 0x0580  AsyncMac - ok
13:41:11.0180 0x0580  [ A10F989A812B57B9695F6C305907C9C6, E2B292610079AA1A10696138DE8130905A8A834B75A8DED7EBF8B6732B77A0F4 ] atapi           C:\Windows\system32\drivers\atapi.sys
13:41:11.0189 0x0580  atapi - ok
13:41:11.0197 0x0580  [ DE66BC489B382BBD377EA6E1D99E796D, A80DEC37B774077FA7477D2AD282A25F2D5673BD58108100FA089FCDD385A5AB ] atmelwindrvr    C:\Windows\system32\drivers\atmelwindrvr.sys
13:41:11.0209 0x0580  atmelwindrvr - ok
13:41:11.0219 0x0580  [ 44D50F4B55BEE38C97A6CBECEBC59384, 43C35E5547E5180B25726F90E0B94149DE1099FD507A6357A6A284A2749433F3 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
13:41:11.0239 0x0580  AudioEndpointBuilder - ok
13:41:11.0265 0x0580  [ 36A9B38EA06A8C14CC82E0C8004A6635, 959E6B359D89E112976AF488F2756F770B491AE53ED07E9D31B4A3D8A7F33C80 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
13:41:11.0302 0x0580  Audiosrv - ok
13:41:11.0307 0x0580  [ 4621EA3385170B087A03F3C90E276B4A, 1513802CF844B1B7A70C820AEF732EDA432D44CD8726560D95F05EB5CA556CD7 ] avdevprot       C:\Windows\system32\DRIVERS\avdevprot.sys
13:41:11.0314 0x0580  avdevprot - ok
13:41:11.0320 0x0580  [ 0C6D49FFD4B70F95E24EF5311ED57A28, AB58DC263E3B5DE2E5E76DCBE8061D9B6736B411C2D572E56AD68BB326818FAF ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
13:41:11.0329 0x0580  avgntflt - ok
13:41:11.0335 0x0580  [ DAA6BD143D3AC4274791018FFAD5543A, 2D85818C52FF768579528A81DEB8D106421D986B28837B301F53B600E382E6CF ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
13:41:11.0344 0x0580  avipbb - ok
13:41:11.0355 0x0580  [ 899C706D9C5A829BEA290CD02A95B07C, 40121149932C76E2377386D4C286E1C0CE5AE382515C8DE391B68A0E77478B28 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
13:41:11.0373 0x0580  Avira.ServiceHost - ok
13:41:11.0379 0x0580  [ 02D95D0763783C56FB1AAE160B5EEBEB, 84AE7EB9B93783ECE77422A07ABFEB0955949FFF18839FB15B384F7177857FD3 ] AviraUpdaterService C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
13:41:11.0389 0x0580  AviraUpdaterService - ok
13:41:11.0394 0x0580  [ 2CBA09A7983B1D39531B768BCED08C20, B40968DFE1A648CCB9260033E1EA57B5D496274A335B000354156B0DB740EDE0 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
13:41:11.0405 0x0580  avkmgr - ok
13:41:11.0411 0x0580  [ 8D18C6406FF8DC39028177E1E5675182, 44985DEE74F235567FB849350256F342BCE26EF66439D761FA3F6EDA22882092 ] avnetflt        C:\Windows\system32\DRIVERS\avnetflt.sys
13:41:11.0418 0x0580  avnetflt - ok
13:41:11.0424 0x0580  [ 6D90FDA2DC364B8EA1420F2F81585CC3, 10E6F23A213CFE49BE04BB7D366ADD4028D61D7114FEC67C30B5467DF6B36D4F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
13:41:11.0440 0x0580  AxInstSV - ok
13:41:11.0445 0x0580  [ 9F4320BA8E7CE2342517B182A2F2C0E6, 10A48AC17D88AA8546BFDC519CFFF86FF71BDDFC2DF7448D94126A5BEABFF17D ] azvusb          C:\Windows\System32\drivers\azvusb.sys
13:41:11.0456 0x0580  azvusb - ok
13:41:11.0471 0x0580  [ 61BAC67048CA5C1D08C48FCC8012B613, 71B2A466FC38DA1029B471FBD2541D8FE359751A7B212AE0F420DB3645916450 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
13:41:11.0496 0x0580  b06bdrv - ok
13:41:11.0501 0x0580  [ 94D6B95485BFA35D81524B0EBA0F7569, 14A32CD501B1D816526A75A9EB3782E6C4FF78831628F257050AD2BA73733F57 ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
13:41:11.0513 0x0580  BasicDisplay - ok
13:41:11.0517 0x0580  [ 72ABA6AC74F7AA9C9A4AC61BE628ADD1, 4B0F0B9224A3CA52F9F17FCE7A7DCABBDF2DC0B084EAA1B89807B58D0F866788 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
13:41:11.0527 0x0580  BasicRender - ok
13:41:11.0531 0x0580  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\Windows\System32\drivers\bcmfn.sys
13:41:11.0541 0x0580  bcmfn - ok
13:41:11.0545 0x0580  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
13:41:11.0558 0x0580  bcmfn2 - ok
13:41:11.0568 0x0580  [ 2B4D3AEAAD02954F8C191BC2D67949AD, 8237C9AD556CFAF7442FF60F78608104BC17CE3134C89D986D49C38CC60B1518 ] BDESVC          C:\Windows\System32\bdesvc.dll
13:41:11.0588 0x0580  BDESVC - ok
13:41:11.0592 0x0580  [ 0A508274355745EEF01C6BE3198D02C4, E2DB08AEE2368FA95FDB357BB31EA4EBF31679C3E72E109DB3D7CD1B5F7B828E ] Beep            C:\Windows\system32\drivers\Beep.sys
13:41:11.0602 0x0580  Beep - ok
13:41:11.0623 0x0580  [ 5125CBB61AC81168366BEB290399CB8E, B2A3095D45E2114DE2BD0E5A3AE20B3CE95EE517A35B9E1EAD05E231F38DBDCF ] BFE             C:\Windows\System32\bfe.dll
13:41:11.0655 0x0580  BFE - ok
13:41:11.0678 0x0580  [ A344054D9965A116EC99C9AE63729782, 5A522EFD0BB30A997C221B4018E457E46447CB891A48977461C0EAE95FECA04C ] BITS            C:\Windows\System32\qmgr.dll
13:41:11.0718 0x0580  BITS - ok
13:41:11.0724 0x0580  [ 9CD2A4821DE379305CACB2E99AD8953A, 89D700DFC3C59ACBBADB48954A28C0EBF8D6A11A9E63837689DD891868E43188 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
13:41:11.0738 0x0580  bowser - ok
13:41:11.0754 0x0580  [ 82A93A0772A29EB6E41438D9AE5ECDBD, 2C0EBA86DA33B763B6EBCF3D0A936FB92E0F36FD3D18D0812A33FC5FF1906C3C ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
13:41:11.0787 0x0580  BrokerInfrastructure - ok
13:41:11.0793 0x0580  [ B3F32C630DD3F2F6A6091B89CFF13641, 7A9C53EF9AB9FF1DC392FD711B194A101DB36CA5BC799E817BEB446741089B76 ] Browser         C:\Windows\System32\browser.dll
13:41:11.0807 0x0580  Browser - ok
13:41:11.0812 0x0580  [ 722036C26D2C4E50EC2A2EC5FD678846, 999468038AE01F0FF6881F4B2A2CB67BC636641188E95F10729E08ADBC3CB3DE ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
13:41:11.0823 0x0580  BthAvrcpTg - ok
13:41:11.0828 0x0580  [ C2E31BE025D46D189E38DD1EDF07837A, 656528DCAAAF485EC57EE5C3021E96736634DE3B9C39CBCD2728E055ABD4C0A5 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
13:41:11.0839 0x0580  BthHFEnum - ok
13:41:11.0843 0x0580  [ F7CD605FC0B0B22F3F6F247595E3A655, 1CD9140DE5415DDBEACD8667E63E5C95FD64D693B56302A0474E693E578BEAB0 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
13:41:11.0854 0x0580  bthhfhid - ok
13:41:11.0863 0x0580  [ B157D72BDA6A6DD6E9DC6BF338CD0CF8, B2AC26AE214151E5AD93DED78256BC0295DBF0133C854E7DEE4CD776D9C9A349 ] BthHFSrv        C:\Windows\System32\BthHFSrv.dll
13:41:11.0887 0x0580  BthHFSrv - ok
13:41:11.0892 0x0580  [ 535DC41A33630AE4C262406F9E981C03, 599332589AA28D04189E19B87A4AE6FEEB60B40A7BC6E3B11240DA363A981C29 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
13:41:11.0904 0x0580  BTHMODEM - ok
13:41:11.0911 0x0580  [ 577FFA2B0B8572587FEB825F42453E81, D1BA449B7A535D0F6BC2EDE75D2CBA585E3A00FE552E244F342FB4ACA029A9A5 ] bthserv         C:\Windows\system32\bthserv.dll
13:41:11.0925 0x0580  bthserv - ok
13:41:11.0928 0x0580  [ 23F9EF739F685E07482116425E7879AA, 0EBDF96A49A319C0BCF6F51FB6C8C392C017E1738B950C19C91FF43E14D73143 ] buttonconverter C:\Windows\System32\drivers\buttonconverter.sys
13:41:11.0939 0x0580  buttonconverter - ok
13:41:11.0946 0x0580  [ 60EB6A4CE3E21887D302350631C16F26, 4270EFA22285C1A9336CF1220761E416950D2DA9C6A40D1D8452686CD5040DAB ] CapImg          C:\Windows\System32\drivers\capimg.sys
13:41:11.0958 0x0580  CapImg - ok
13:41:11.0963 0x0580  [ F8FB51B9EF6372610E9B31A1D86B62FC, 7461584A8B39AC549AD7BAFFA509D4CD81EEE542808BC8EFC285863A0AE6432D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
13:41:11.0976 0x0580  cdfs - ok
13:41:11.0988 0x0580  [ 2E6612376D257F74781F2EF1F869D8C3, 908B0DECB9F098F7F11B029A03C06C67FB52E5E8BEA42033A2B579D3B3686AB8 ] CDPSvc          C:\Windows\System32\CDPSvc.dll
13:41:12.0009 0x0580  CDPSvc - ok
13:41:12.0019 0x0580  [ A93C9B9EBE2FDE5A536000D72CC17F7F, 9793CFAE8BE8C6B5B39A1D276577965FBB2CE131325A410B7C68BD23492ADAAF ] CDPUserSvc      C:\Windows\System32\CDPUserSvc.dll
13:41:12.0038 0x0580  CDPUserSvc - ok
13:41:12.0049 0x0580  [ 613D0137C269187FA298A157E3D14A18, 84BC268525F14BB27202CE242BF94D9E83BC91B50A0335908574F31B29A2F04D ] cdrom           C:\Windows\System32\drivers\cdrom.sys
13:41:12.0063 0x0580  cdrom - ok
13:41:12.0070 0x0580  [ F99E6C664A3D503878DAD628088AF855, C73E0F2F10C42600D98EFB4960ED9B186E8C41F0EDA5EBE9E85DB212AFF5DE79 ] CertPropSvc     C:\Windows\System32\certprop.dll
13:41:12.0085 0x0580  CertPropSvc - ok
13:41:12.0094 0x0580  [ 0AED948DA8D5F08B3D6F12E4E2089736, 95E538E81DDBC83492C5F3820C82C78F050B4D74ACF12D7970EC84F93581AE29 ] cht4iscsi       C:\Windows\system32\drivers\cht4sx64.sys
13:41:12.0110 0x0580  cht4iscsi - ok
13:41:12.0152 0x0580  [ 0002A0FDE087C1657AB31CE73077539C, 4DD6210B67E9633AB3240371590869DC833A4C986C74FC12A5D4FFFFD361848A ] cht4vbd         C:\Windows\System32\drivers\cht4vx64.sys
13:41:12.0205 0x0580  cht4vbd - ok
13:41:12.0212 0x0580  [ 6B4F90A287D75CCD78694F6790C911B2, 73D7C31E9F475FA3FD568FCA9A953F968729AA114F63C06F38BF5198DAD67BD8 ] circlass        C:\Windows\System32\drivers\circlass.sys
13:41:12.0224 0x0580  circlass - ok
13:41:12.0235 0x0580  [ 792B891721F098A50C9ED95D3E549B5A, 06B371A6FB900A9D2385609696E64F1AD2F34C2D597959B9B05EDF2A8DFBD8EC ] CLFS            C:\Windows\system32\drivers\CLFS.sys
13:41:12.0251 0x0580  CLFS - ok
13:41:12.0267 0x0580  [ E133CFCBFABB3CB517BE9F42FEA5887C, DA699CDD5F3CC427354540C907BD24CCA7BAC3112C53918EB611CB4EEC7611DA ] ClipSVC         C:\Windows\System32\ClipSVC.dll
13:41:12.0292 0x0580  ClipSVC - ok
13:41:12.0297 0x0580  [ EEC3A4A98AE1A337E3CD1483AD6F2E15, 764DA329984A95E092F5C15116DA34FA7FC27216C0862365D4BF10ADC97EC5C5 ] clreg           C:\Windows\System32\drivers\registry.sys
13:41:12.0309 0x0580  clreg - ok
13:41:12.0318 0x0580  [ 429623E266EF067A44E8CF148E9DFB9B, A48AA85ACC52C7AD73DB2D6148B3F9FB5EAC33C8F8C5BB6D7D0A9D84B7C08E11 ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
13:41:12.0329 0x0580  CmBatt - ok
13:41:12.0403 0x0580  [ 12145BABD827F3B68B27A4F73B7284CD, 29F539A3CE770D9B719FCDF055FCCD46353FC2A3752DCAE95F3C171CB40D1A44 ] cmudaxp         C:\Windows\system32\drivers\cmudaxp.sys
13:41:12.0488 0x0580  cmudaxp - ok
13:41:12.0506 0x0580  [ 6DEB975950920360BB4C62D6EF9E60B8, C8A6BB267A3EF932E373D07A5FE44B0FA27CECBE7A12BC93EA89574DDA69B41F ] CNG             C:\Windows\system32\Drivers\cng.sys
13:41:12.0531 0x0580  CNG - ok
13:41:12.0535 0x0580  [ 3DB10C59405931E2C72EFB82C1AF97D1, 100B5450A70988DB1C1F8A5FDBB3553AF1A0D47B42A5AC71460DB92E26010CE6 ] cnghwassist     C:\Windows\system32\DRIVERS\cnghwassist.sys
13:41:12.0544 0x0580  cnghwassist - ok
13:41:12.0557 0x0580  [ 34C935AF2A414572B412B3556586D783, 912981B88B0796576ECCD5EBE0C4728EC02D5D6A96B039447DCBA59B2583F25E ] CompositeBus    C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys
13:41:12.0568 0x0580  CompositeBus - ok
13:41:12.0572 0x0580  COMSysApp - ok
13:41:12.0576 0x0580  [ 44EEEB2382F566999287E13F2067693C, 53A4A0C85EAD38030FF2078C67465E3710ECD03A08FF34E1E67B2E3E1CC70043 ] condrv          C:\Windows\system32\drivers\condrv.sys
13:41:12.0585 0x0580  condrv - ok
13:41:12.0603 0x0580  [ 28E13353F8AED53ABD6668FAAEC7677F, AC2765C64678869D8FAF6008C8B5E2424A4DD6FDD9E8A8EF169ADA7E8107D201 ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll
13:41:12.0627 0x0580  CoreMessagingRegistrar - ok
13:41:12.0634 0x0580  [ 5F06CAC4B09250CDDDD0180A08162924, A2EB0A57225E65FC264CFC9FAD858D8B54A015CDAE3DC904B1C4E9AAB40B1F06 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
13:41:12.0649 0x0580  CryptSvc - ok
13:41:12.0666 0x0580  [ EC2EA2F6C6D23315C20B4829F00D0440, BF1F47C3485E9112FB64F582DFA4679455203574F82A5ADB222BDA1FED1601E6 ] CSC             C:\Windows\system32\drivers\csc.sys
13:41:12.0697 0x0580  CSC - ok
13:41:12.0715 0x0580  [ BE35D1BAC3F18C9EB1C1CFBA31ED95E3, 4255475D173868A0E5583E844A1884E819E229838C4DEACAC47F1A4DEF388C9D ] CscService      C:\Windows\System32\cscsvc.dll
13:41:12.0745 0x0580  CscService - ok
13:41:12.0750 0x0580  [ 3BBD0073265DA6D3EFBA54B26E5D8236, 3C10C8BEC0D8AC41A3FBD589F41A83D6345C1FDD04B8B99063B2F5670CF10B18 ] dam             C:\Windows\system32\drivers\dam.sys
13:41:12.0760 0x0580  dam - ok
13:41:12.0781 0x0580  [ 4A7015195E49A3BA7DB967B277B21E9D, 2EE10950BC0E2B13303491725FB3F0D3AF63518B7D1593BCC4BF503F4A11F408 ] DcomLaunch      C:\Windows\system32\rpcss.dll
13:41:12.0817 0x0580  DcomLaunch - ok
13:41:12.0824 0x0580  [ AE9F09F87755C18904656CB4F59F351D, B352A43B3B68B497D87B49C302AF3F37F36D56D49878AE3785C3D43597E5DC57 ] DcpSvc          C:\Windows\system32\dcpsvc.dll
13:41:12.0844 0x0580  DcpSvc - ok
13:41:12.0847 0x0580  [ 81E2868A789D9C96290240CC03A48E75, 2B57A4FD762601414CB99F942BF11CF43343220EF042A8A6182CEB655DFF076C ] debugregsvc     C:\Windows\System32\debugregsvc.dll
13:41:12.0858 0x0580  debugregsvc - ok
13:41:12.0871 0x0580  [ ABBD3EE724117242E28D31F19FBCFF03, 68EA91A969DD80A5DE28B0A8EAEB308837183713559C2C2FAEF991858C971393 ] defragsvc       C:\Windows\System32\defragsvc.dll
13:41:12.0900 0x0580  defragsvc - ok
13:41:12.0905 0x0580  [ 019DA7A799EC6044AF6AD4E6210C1B91, B897E068BC4A16E95E5355A51C577A27125F01432B5559993CEBEC68A94B6EA7 ] DeveloperToolsService C:\Windows\System32\DeveloperToolsSvc.exe
13:41:12.0918 0x0580  DeveloperToolsService - ok
13:41:12.0929 0x0580  [ DD74F18227ACC837D9856E24282D446D, 6A760E44CD897952538CDFA8895FE11263D51AAA79CFF24C01F3862E919DA478 ] DeviceAssociationService C:\Windows\system32\das.dll
13:41:12.0951 0x0580  DeviceAssociationService - ok
13:41:12.0957 0x0580  [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
13:41:12.0976 0x0580  DeviceInstall - ok
13:41:12.0980 0x0580  [ CDF1B1B5C5951111791C236B2696C7F8, BF6C4BA545C8827B40DB69890DB4D2B2F9C583C5E3CFBDFD370B05891141458D ] DevQueryBroker  C:\Windows\system32\DevQueryBroker.dll
13:41:12.0991 0x0580  DevQueryBroker - ok
13:41:12.0996 0x0580  [ 385E6F76E684E7EEEECBBB156C45D191, 2BF808B095625DB9613683508B8D8B194ED1810FA0519C272BB0DF42563B9BD4 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
13:41:13.0010 0x0580  Dfsc - ok
13:41:13.0016 0x0580  [ 5F78930AAB3900102EA8ACDD38F97324, 49CAE29CC7B1B846BDE603B1A411833162ACC1A9D1608BFDF67C2EA3A0EE0F85 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
13:41:13.0025 0x0580  dg_ssudbus - ok
13:41:13.0035 0x0580  [ F0D4400BA0F08610D9A551B15BF10B76, 83EB8FB272FC2DD2CC0659C2FB90AD0DAE88A88AB3951E03BCD933A25B601E10 ] Dhcp            C:\Windows\system32\dhcpcore.dll
13:41:13.0057 0x0580  Dhcp - ok
13:41:13.0063 0x0580  [ CA7FEDDFCF61EF15A09C54DA2C07C49F, 346EF7709BA9E6BD48592B86FA46F9D956C847EF91F4980EEAD98269D0F0EF67 ] diagnosticshub.standardcollector.service C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
13:41:13.0076 0x0580  diagnosticshub.standardcollector.service - ok
13:41:13.0119 0x0580  [ 8420D9DD3E79AB28B5EBE79F050BA8BC, 45DD92F804E720636BDBE4CE9CB46594425988BEAE66CDDA8DD7EBBB47E16C7C ] DiagTrack       C:\Windows\system32\diagtrack.dll
13:41:13.0188 0x0580  DiagTrack - ok
13:41:13.0196 0x0580  [ 35B9D46560339A5A7F0CAC6ED702C817, F70480B01533B7029F90E2DE297E9E829660300DDE7A7D009B0AC2684E7691A7 ] disk            C:\Windows\system32\drivers\disk.sys
13:41:13.0206 0x0580  disk - ok
13:41:13.0217 0x0580  [ DD1DFB1551BD861BBCCC4374C054520A, 7371D9201E67659B052DFDAEFE60514C8402239498F86D1706114E3D7023A85C ] DmEnrollmentSvc C:\Windows\system32\Windows.Internal.Management.dll
13:41:13.0239 0x0580  DmEnrollmentSvc - ok
13:41:13.0243 0x0580  [ 815F45161A4571C2C44491564F3D5968, 32E7AE8414A178CE429C0CDFCF718E3C11C705FB3155EA5CA0EAD48AAE507B01 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
13:41:13.0254 0x0580  dmvsc - ok
13:41:13.0258 0x0580  [ 6E5EE6E420FECD64DE463C5F01CBFE71, F173C56895E80AA03D70CD78B3AB659C2EEAACFF43BE3B6EF3939D6F4AD4F62D ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll
13:41:13.0277 0x0580  dmwappushservice - ok
13:41:13.0285 0x0580  [ 86E507EE1457D7FA463BBF05BA76EB1E, 2D2D05CED57C22F41684DC6DD00ACECDF708407493286B2D4007068154E436FF ] Dnscache        C:\Windows\System32\dnsrslvr.dll
13:41:13.0306 0x0580  Dnscache - ok
13:41:13.0314 0x0580  [ 8F46B4C3F9BA19C26A26D0A11137B20B, BA0A66DBA98D77FD85A7CD2D4593F2B2A1A3B4D32BBECBCFFBEB5A54DCB0D8ED ] dot3svc         C:\Windows\System32\dot3svc.dll
13:41:13.0332 0x0580  dot3svc - ok
13:41:13.0338 0x0580  [ CA09EAEE92C6FDDC6B05057F11A0372D, 14DB5C186B69644AA93C445BF31CC9670204F95A47B77B6EACB19B4A316378AD ] DPS             C:\Windows\system32\dps.dll
13:41:13.0353 0x0580  DPS - ok
13:41:13.0356 0x0580  [ AE6BD4C879A8C849E53947C92DF3B3A0, 8C29774CB2D30D901C54AAC0C8ACE709351EE40E5C8FB9951B2A18B4A03F28B7 ] drmkaud         C:\Windows\system32\DRIVERS\drmkaud.sys
13:41:13.0366 0x0580  drmkaud - ok
13:41:13.0373 0x0580  [ 7433474BE77F065D2FA628671FE31A3E, 063ADDC68F48036749E6EC7B2F66284DB29F90F62E9468D16B4EF5A0FDC45E35 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
13:41:13.0391 0x0580  DsmSvc - ok
13:41:13.0397 0x0580  [ 5FCA45C24501DA7390065D3706A9FC3F, 093FD840F1502ECC6F05B9723CA523B3F15CF39A5D2B9106E1267739B3F2C52C ] DsSvc           C:\Windows\System32\DsSvc.dll
13:41:13.0414 0x0580  DsSvc - ok
13:41:13.0458 0x0580  [ C867FABEFF1A553330093384D022F963, 85910F3D2BAB804308DFB31DB16178B6A8EE0D3C9B3695F4E4F2DAF14EA98BAD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
13:41:13.0512 0x0580  DXGKrnl - ok
13:41:13.0519 0x0580  [ 9FCE4EF7D5E274F862D9A2526B5F4779, 81D42D5475C2801C8E0C233A0BA827569D8A70590017C91C665C8B232D9BFAA9 ] EapHost         C:\Windows\System32\eapsvc.dll
13:41:13.0536 0x0580  EapHost - ok
13:41:13.0601 0x0580  [ 7EC6FC0266D74BD47ABB130A328B70EC, 3856790AF967AB03B1A89F97328DC4D5A6854ACDA6169681A9AFB03D7CF791F9 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
13:41:13.0680 0x0580  ebdrv - ok
13:41:13.0688 0x0580  [ EA0D394EF9A9F225A5C4BD6EC83FE78A, 960EE6EC293B7CF62F2E6F49ED197783C7AD860E4DD23BAA0200D300D31E8B56 ] EFS             C:\Windows\System32\lsass.exe
13:41:13.0698 0x0580  EFS - ok
13:41:13.0703 0x0580  [ 8D74B8B5D6F7C5BC4C525BAF2B083FF1, DA5656F745B3911F96871887FDFDC40F4D9C820622A0AA27EFE4BA93662833CA ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
13:41:13.0713 0x0580  EhStorClass - ok
13:41:13.0718 0x0580  [ 2A9817B5A9260D8F60D52E36BEF10443, AC1A0203221AFAF584C71317FA07AA1B6E61BE619E918B3B1E4AD57CCED1CF03 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
13:41:13.0729 0x0580  EhStorTcgDrv - ok
13:41:13.0734 0x0580  [ 80A7999DE02CE678B865832E1CE78CD6, 2576EBB6E4D630A906DE724F125099E52A962B5B68B9F9BCA849A7B29D8C8689 ] embeddedmode    C:\Windows\System32\embeddedmodesvc.dll
13:41:13.0751 0x0580  embeddedmode - ok
13:41:13.0759 0x0580  [ 3CE2B6AECB9AF8BC159299EEC46A35CA, E933B28BB6E4D01FCCDF8FBBB134C244B28DA3ECBDFA13333F0D4C24B2551780 ] EntAppSvc       C:\Windows\system32\EnterpriseAppMgmtSvc.dll
13:41:13.0777 0x0580  EntAppSvc - ok
13:41:13.0781 0x0580  [ 77B60DEC7DCB4233E4A69D3F52E5DB24, 3A5C905E37A93899051497C90E5BA8E1D003B56C6906CADFD2F1CDF52052D248 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
13:41:13.0791 0x0580  ErrDev - ok
13:41:13.0808 0x0580  [ F89083AB8B9F51C0031C1CBD0A9A7E35, 9EE973A25134960E62D1A6A1E34AD9B3F7690E71C1AD31A23FA2081A73438754 ] EventSystem     C:\Windows\system32\es.dll
13:41:13.0833 0x0580  EventSystem - ok
13:41:13.0843 0x0580  [ FCD2C63754C2E739A8EEAD9BC63F9DDC, C57A72ABA4C0BD71F914B9C8FF965DCFF585A205498F19A4584A4BAF7674839D ] exfat           C:\Windows\system32\drivers\exfat.sys
13:41:13.0868 0x0580  exfat - ok
13:41:13.0878 0x0580  [ FA918EC296EB410FF02867D008D02421, 23D164A24CB0D212778FA9592A046B6BA1F3628003E04181744A1F891B5B3E5A ] fastfat         C:\Windows\system32\drivers\fastfat.sys
13:41:13.0893 0x0580  fastfat - ok
13:41:13.0908 0x0580  [ 77CE56471AF984800F318F3734D768C7, 72D540072374A56C2C497F0532A50705D3F0637F2C0C96B1D715F2EDFCA3AA2D ] Fax             C:\Windows\system32\fxssvc.exe
13:41:13.0936 0x0580  Fax - ok
13:41:13.0940 0x0580  [ 99598ECA5E41996E005D5B9D9FF1EFA2, 91345CD50EF02431B69093505C1C5F5DC6A1AA6BF192EE9392ED4D5626B60462 ] fdc             C:\Windows\System32\drivers\fdc.sys
13:41:13.0953 0x0580  fdc - ok
13:41:13.0956 0x0580  [ EF0DD43A4CBAB367BCA1AFBDC9971E4F, 73E161C45D63FDDE71EE2438137913724DC513860539D1E7F6BD861F5D1B33F3 ] fdPHost         C:\Windows\system32\fdPHost.dll
13:41:13.0970 0x0580  fdPHost - ok
13:41:13.0973 0x0580  [ 34DAC585994CD3B4E910DE11C584EF3D, A6C6A4CB5413EA61F1A54E2D3AD71A311CEA2C26218544D2D2D4A5CFEC52DE8C ] FDResPub        C:\Windows\system32\fdrespub.dll
13:41:13.0987 0x0580  FDResPub - ok
13:41:13.0992 0x0580  [ B68DA1FE3CA2311AFD38DD6905CA7F71, 4B395DFB1B47D2507CA4D9DC996A70D0A3BDB1A245CD6DA6C42B2A299AFCCF37 ] fhsvc           C:\Windows\system32\fhsvc.dll
13:41:14.0006 0x0580  fhsvc - ok
13:41:14.0010 0x0580  [ F44F666B0EACC3181544FFCF8CA0FFC7, 83F771CF9DAE1C504B30731EEC55355EA1253174252DA2192ADF1D228B3735C3 ] FileCrypt       C:\Windows\system32\drivers\filecrypt.sys
13:41:14.0022 0x0580  FileCrypt - ok
13:41:14.0027 0x0580  [ 78A210DDFDF2C9EC884631D2DAA573F0, 5D39C6EF4AC690A9749EEDBE2478FFF15A22877A2861EDA103C7BF1607B0C1BD ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
13:41:14.0036 0x0580  FileInfo - ok
13:41:14.0040 0x0580  [ 1A97DB5E701A186989F3795223C3BE39, F7982220D4DF7E104955E63CACE352394E2577DEF49506EA126127F820EB62DF ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
13:41:14.0054 0x0580  Filetrace - ok
13:41:14.0057 0x0580  [ 46626665F0E5906E45619B4EFD6186B8, 37FDD3B8AD49FD29E54DA5567EA77F28A53498AE56348F7A2628E5E5549D638B ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
13:41:14.0068 0x0580  flpydisk - ok
13:41:14.0078 0x0580  [ FDA72ACA14D516D18C33AFCD0FD9260F, 6509612DEC82EA74614B5C9A7B432305A1A468C97B88BED9E141DF2929B621B1 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
13:41:14.0094 0x0580  FltMgr - ok
13:41:14.0132 0x0580  [ 5070B37B20DDC257AF93EB0BE8AB5690, B6ADFC68F07F8C84B79DE8E93E4735AB35146632563BA2C4279809A8DA4BE6BC ] FontCache       C:\Windows\system32\FntCache.dll
13:41:14.0192 0x0580  FontCache - ok
13:41:14.0198 0x0580  [ 59241194DBDF30A2B4029E402F377900, 47A92E9CD8494C403B377799D395670A393766647E24CD83B15338CE2AA50266 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:41:14.0207 0x0580  FontCache3.0.0.0 - ok
13:41:14.0226 0x0580  [ CD7CD19E72EA2F597D01FC68ECD2F28E, 4E8BAA4AEF28B043780E2FEFFEB5E4DF4E2FB3211CE617D2DBAFB6C7B7DBBDFD ] FrameServer     C:\Windows\system32\FrameServer.dll
13:41:14.0258 0x0580  FrameServer - ok
13:41:14.0263 0x0580  [ B07A40B5A7A58B8C75663A572A46084C, 01F34EAFD4A86FF6AFC015BE2D155A53ED8186BD6DA1A05CCEC8425417A8E320 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
13:41:14.0273 0x0580  FsDepends - ok
13:41:14.0277 0x0580  [ 6D6BB5C7363CD35FA715E826F3D029EE, C214F791EB39E8B25CE57ED9D6C1D56EE1AF6021BCB380980BD42A6338A6C9F7 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
13:41:14.0288 0x0580  Fs_Rec - ok
13:41:14.0303 0x0580  [ 8EEC4925C03E375C4EC496E45C44139A, 06C5C7BCC28D3E435675F0759A09CAB726E971DF4BFC1DC3DCF503EABCDCCCC6 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
13:41:14.0324 0x0580  fvevol - ok
13:41:14.0328 0x0580  [ EF78034773CE506323655A868C949144, DF195BEEE6704FBCC6D2D9E1BF6723E52ED502A1459F495B7D18481E6A79B5BC ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
13:41:14.0337 0x0580  gencounter - ok
13:41:14.0340 0x0580  [ B55FEBC6A00DAA1FE074F020B6907516, 67071FBAC2ABA47AB71358A5F08E92E034A55343878F00137E90B3B1F7362976 ] genericusbfn    C:\Windows\System32\drivers\genericusbfn.sys
13:41:14.0351 0x0580  genericusbfn - ok
13:41:14.0357 0x0580  [ DDD8A8CDDC7F13EF57D1DAAE71865936, 9D472A8689F72F24D40D5B94849690F53C67849FDF6162A94EF4FB330A3DA566 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
13:41:14.0368 0x0580  GPIOClx0101 - ok
13:41:14.0395 0x0580  [ 8997353398C8466ECD183942D5FCC65B, C73FD5FFD71003F7FDDC17F59812BD6860992FA35EC0ECC8DE37D935606B485B ] gpsvc           C:\Windows\System32\gpsvc.dll
13:41:14.0442 0x0580  gpsvc - ok
13:41:14.0446 0x0580  [ 7ACD8F69B5D6EC97E6D2C006E19BED88, FC69214C9308EA64B88EF4C3C95800586DDBB44C8540846B79A161BAD8203B6E ] GpuEnergyDrv    C:\Windows\system32\drivers\gpuenergydrv.sys
13:41:14.0457 0x0580  GpuEnergyDrv - ok
13:41:14.0463 0x0580  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:41:14.0471 0x0580  gupdate - ok
13:41:14.0476 0x0580  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:41:14.0483 0x0580  gupdatem - ok
13:41:14.0497 0x0580  [ E91175384F2F7E168EFC6E957A013956, 09F509AD56FB65117031EC00C86FC541ECFFDE04632B90449E433D4FAD4F236B ] HauppaugeTVServer C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
13:41:14.0512 0x0580  HauppaugeTVServer - ok
13:41:14.0525 0x0580  [ 217230B984AB2954E2FA5E36578D7B08, BB7B79EA7501A28EB2A0303FDF66FB9D59D567994C25A1523CD6D2081C403AF6 ] HdAudAddService C:\Windows\system32\DRIVERS\HdAudio.sys
13:41:14.0546 0x0580  HdAudAddService - ok
13:41:14.0550 0x0580  [ 10E3515FE5DBA6656FA62C29342EC4A1, 2051F10F74ED712B1766EB61E87FADE25AB3D0970BABFD320600D1B0D6377F26 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
13:41:14.0562 0x0580  HDAudBus - ok
13:41:14.0566 0x0580  [ B90D284B97CD4CA9DE7430AAAD887A56, 2F14F985C39B7801ED64590979CF2114924E9547F5B11D2B37A74DBFFDD9E7C5 ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
13:41:14.0575 0x0580  HidBatt - ok
13:41:14.0580 0x0580  [ B2FE11643CC6ACDEE6C247DD36018FDB, 5796613C7DBF8B2A9E860E006FF1A245B6BE7D10E3F6685AD142B48E5C237B8C ] HidBth          C:\Windows\System32\drivers\hidbth.sys
13:41:14.0592 0x0580  HidBth - ok
13:41:14.0596 0x0580  [ D24355488A2D4D2323518EC1AC7A6D9E, ED2176A2093726087EDDA25B86E9CDD4BA35F4E748E3A6DE0B15C4C97646B5C7 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
13:41:14.0607 0x0580  hidi2c - ok
13:41:14.0611 0x0580  [ 0AF9ABBA4F3F55C6C803890D64BC3C29, D3DE6FA308F8E7CD4F16387F46AE4B2F7EC9BBA07BF87652B660A0D645710571 ] hidinterrupt    C:\Windows\System32\drivers\hidinterrupt.sys
13:41:14.0620 0x0580  hidinterrupt - ok
13:41:14.0624 0x0580  [ CDBCF8E9AB06D88A1E1191D32F320C5D, F76963AB7CF2BAB3A220013879AECD3976BFD851CFB66B5A69A9EA2541048861 ] HidIr           C:\Windows\System32\drivers\hidir.sys
13:41:14.0635 0x0580  HidIr - ok
13:41:14.0638 0x0580  [ C900FE0DD6A1E2220084B8F1C427790C, 802194EBEDA1A50EDA300078B0888AAC1F17A42E67147B7B3B9C50AD8D4E5C89 ] hidserv         C:\Windows\system32\hidserv.dll
13:41:14.0649 0x0580  hidserv - ok
13:41:14.0654 0x0580  [ D8536CB438CC4CCDAE047B768EED22B2, 4F666BFA3554F9ACA6B9D436BFA64474D5F30FB3E78F4E66068CCDF283D9867F ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
13:41:14.0665 0x0580  HidUsb - ok
13:41:14.0673 0x0580  [ 0AC1BD5A28FAA371EF34859FE703E515, 1DD1C33AF8D6EBE7C36FCD051F066E4039D2B47ABAECF7C68BC3933D567930B2 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:41:14.0691 0x0580  HomeGroupListener - ok
13:41:14.0702 0x0580  [ 86161A89F16851728802590EC7C92608, 3A3B05BB4E115410D27063B30C0EF3F18295F542050F329F1E466C81A9E23A46 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:41:14.0726 0x0580  HomeGroupProvider - ok
13:41:14.0730 0x0580  [ F5CA18197B4646E04DB9EB2D6642CC4D, 5BA3342DDF1BCB67E4156169FE9A33E7BC2641C729E9F1A80C0E80953C6AB114 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
13:41:14.0739 0x0580  HpSAMD - ok
13:41:14.0764 0x0580  [ EC5DA4E49586AAB1E148CC8038DE3A5E, B6AEE3D0FB1CFA305541C6794666D60EFDE857022FF064CD5EA6E479A3B25024 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
13:41:14.0795 0x0580  HTTP - ok
13:41:14.0800 0x0580  [ 0C84C250F80EAEC2C9768464CC1A9626, 212E1003B78F9B98FEB084FD1FDB59B26A9DE4C9120F24D4361FBBF0F3C035E7 ] HvHost          C:\Windows\System32\hvhostsvc.dll
13:41:14.0813 0x0580  HvHost - ok
13:41:14.0817 0x0580  [ 74FC79C52395B10FFD0B55CF22CF88FC, 94D977DA2092EE8C2A598AC48758A84BB22CB6378BD114C2D3B4172A07A9CACC ] hvservice       C:\Windows\system32\drivers\hvservice.sys
13:41:14.0826 0x0580  hvservice - ok
13:41:14.0829 0x0580  [ 771EDDA9830A3079F996F34D681FB6E5, F452AD656872A1C8B2D6DCE232CE01EBD456C46F4934A7601E78470F2A2CBF38 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
13:41:14.0838 0x0580  hwpolicy - ok
13:41:14.0841 0x0580  [ 3B9F315E7FA72CC25228EB097DD9C694, B26F1E494428EF197A0C97645C05BB3CA093827A005D35C987F1D6778BC4E52C ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
13:41:14.0851 0x0580  hyperkbd - ok
13:41:14.0856 0x0580  [ B54B30992620C97230013A74461C8517, CAF09BDCDD6DE2A39CB8AE2C65E6F8FE12D8E93D84BBEF6C6A98F872BF54A4E3 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
13:41:14.0869 0x0580  i8042prt - ok
13:41:14.0872 0x0580  [ C6B8743B213F06AA60943D8366FE968F, 758954F70B810063914B243115B2C753B2BCE40190F95C30ACBA0BF04EBD5B33 ] iagpio          C:\Windows\System32\drivers\iagpio.sys
13:41:14.0882 0x0580  iagpio - ok
13:41:14.0887 0x0580  [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c           C:\Windows\System32\drivers\iai2c.sys
13:41:14.0898 0x0580  iai2c - ok
13:41:14.0902 0x0580  [ 5A0E850F8CD17791A3E6A3CF81D0CA28, 10A965A49D53360DD250E0758B6BB142872298A21C732EB026ACB93492C5C6CF ] iaLPSS2i_GPIO2  C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys
13:41:14.0914 0x0580  iaLPSS2i_GPIO2 - ok
13:41:14.0920 0x0580  [ 7508F1096803385D6376BFD0BD473AC4, 1F32EC23CDC94DCB9710E6663B5C3BD83568545DDC2C741CFC13550A4E4DD2BE ] iaLPSS2i_I2C    C:\Windows\System32\drivers\iaLPSS2i_I2C.sys
13:41:14.0931 0x0580  iaLPSS2i_I2C - ok
13:41:14.0935 0x0580  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
13:41:14.0942 0x0580  iaLPSSi_GPIO - ok
13:41:14.0948 0x0580  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
13:41:14.0963 0x0580  iaLPSSi_I2C - ok
13:41:14.0979 0x0580  [ 97E553D03219D3D51705C7235D9EAEBD, 5D4578C8804AF32D1DC0868E34D6538138DC15F9568CA7E21051B1C82C0D8D55 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
13:41:15.0001 0x0580  iaStorAV - ok
13:41:15.0013 0x0580  [ 8350FE3BCDE3428BC040877BB7E9EAEB, 77F9456351CA640C6B7862907C0580627E761EC807B551976A95657EB4D6CC20 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
13:41:15.0030 0x0580  iaStorV - ok
13:41:15.0043 0x0580  [ 3BA03F7C7700DDF4C383DDE9252F5817, 3E90F69D0010E7764349D9AE865D577E431FEBC67DA554B400BC808DD286E203 ] ibbus           C:\Windows\System32\drivers\ibbus.sys
13:41:15.0062 0x0580  ibbus - ok
13:41:15.0069 0x0580  [ 937AC47F7356554DA05D9722C356EB55, 9EABC9F19B4E1193B669D2674967F5C6F03FAD348EDF0615E3F78554FF9A83CC ] icssvc          C:\Windows\System32\tetheringservice.dll
13:41:15.0086 0x0580  icssvc - ok
13:41:15.0107 0x0580  [ F2934208C0E50C0B971A7981AB90BED2, B936BFBBD71E731CC2CDB8B47D262F2EF09726FF921C2DA0841910CA2401423D ] IKEEXT          C:\Windows\System32\ikeext.dll
13:41:15.0143 0x0580  IKEEXT - ok
13:41:15.0147 0x0580  [ 2A01C96DF5802D3434634E55C91232D8, A3ABEF36E2FD2CF5C371ADBF92566A09669A1D990ABE4677370F57F2EEAF8121 ] IndirectKmd     C:\Windows\System32\drivers\IndirectKmd.sys
13:41:15.0158 0x0580  IndirectKmd - ok
13:41:15.0162 0x0580  IntcAzAudAddService - ok
13:41:15.0166 0x0580  [ CABBDB31EA03DCC5CFA2F47CFF5CC73A, 1556440CB418E3E1BE655A95E02F2A5DB572B6BB0CA7D0976F070F74EEA938A7 ] IntelHaxm       C:\Windows\system32\DRIVERS\IntelHaxm.sys
13:41:15.0178 0x0580  IntelHaxm - ok
13:41:15.0181 0x0580  [ 9F7E87F6595D065A8A200A291043045E, 6944F72F73EADC6C9B7691F2C1C6DF1898F22C88EFA78EC0BA8CB5FFD9CE057B ] intelide        C:\Windows\system32\drivers\intelide.sys
13:41:15.0190 0x0580  intelide - ok
13:41:15.0194 0x0580  [ A6BD2E20AE1BC5CB2776C87C28E4F4CA, BD8BE67CED9A4982D785CE9ECBEFE868C3A2E37DF7F9592B9F9049B807A1554B ] intelpep        C:\Windows\system32\drivers\intelpep.sys
13:41:15.0203 0x0580  intelpep - ok
13:41:15.0208 0x0580  [ 2A48DA39542636DB0FA3BA915385D1B3, 6CA0916F5F4B1E81AE6A6233276320599BFA7C129267177703E3BB6468FB4683 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
13:41:15.0225 0x0580  intelppm - ok
13:41:15.0229 0x0580  [ DB32758F3A7F6CCE81A5430080A2EA65, 36A26BAA884E96804F8EA0B12BB3E81BBE6D4EE704809904091445F36CAB5A29 ] iorate          C:\Windows\system32\drivers\iorate.sys
13:41:15.0238 0x0580  iorate - ok
13:41:15.0242 0x0580  [ FE85D0A86CA7A5A99CF8CD04DE7F80AE, 544C01FC01EE728EB5667158207E5F4418FE77A88BA318192A834722DB766F4E ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:41:15.0255 0x0580  IpFilterDriver - ok
13:41:15.0281 0x0580  [ 68C50E8E4265698BE6835156F4DD5008, 5B9CBBCE99315E5569E6733F13E91A687A36F536A68A2B670CC24C4BCC4EAFF4 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
13:41:15.0321 0x0580  iphlpsvc - ok
13:41:15.0326 0x0580  [ 10D01A3657AC8E8004C83D613163DE1E, F9389F1BF87A2D28899F50D270DA6F48B0912CFAF06CEE566697B041DBE92F9C ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
13:41:15.0336 0x0580  IPMIDRV - ok
13:41:15.0343 0x0580  [ F1DAECC3B3D6399875D4F10529D6A77C, 6533D2F858816BE6570C998510919FCA2904EC6EF806F61C1FD325E88133111B ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
13:41:15.0359 0x0580  IPNAT - ok
13:41:15.0362 0x0580  [ 108C608A0BA68A02AFEB9208D42210BF, 40A29D197742813743A9789FA01E932D9704D19D39BDDF2D1807165B40E854AC ] IpOverUsbSvc    C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
13:41:15.0370 0x0580  IpOverUsbSvc - ok
13:41:15.0376 0x0580  [ 7475A2903BB704B446AA6309E34D3362, C94643A1626A9716015EBA7041A1224098501EB7DAA704CBFCAD3DC6F3CFC6AF ] irda            C:\Windows\system32\drivers\irda.sys
13:41:15.0389 0x0580  irda - ok
13:41:15.0393 0x0580  [ 9725E7F0C64CE9916A5CDABE8D6E13C3, 04AF9E48FEF208A2850DF28352E8FDCBF4018982C72C0F67EE12C048C4070116 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
13:41:15.0407 0x0580  IRENUM - ok
13:41:15.0412 0x0580  [ 8C604213A2E73088BFFE6CD2E6F1AE53, B4C4FEE4D398A29F72EC27D5668071D7E68CD943FFFC38624DD5DF5BEBDF46D3 ] irmon           C:\Windows\System32\irmon.dll
13:41:15.0428 0x0580  irmon - ok
13:41:15.0431 0x0580  [ 58040898883A96160D41739C80328BBF, 7F85C91C905811416E266A263DDEFCDCB0B45376AAE51B551AB636C16577DB9F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
13:41:15.0440 0x0580  isapnp - ok
13:41:15.0450 0x0580  [ CA20F4621AB8CD3F69199DE21B5B41C4, 0AFFC66DD10D4D15139337E5ED343A2ABBB26CC8A83B3BDF6AD10C68B3931A7C ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
13:41:15.0464 0x0580  iScsiPrt - ok
13:41:15.0468 0x0580  [ 210808437570BDDEE71A43535E3A2D30, EF5DE6EE4FF58F44CDE4D4E7F298ABBC9086EC05CC3AE4903060DA878115AC1E ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
13:41:15.0478 0x0580  kbdclass - ok
13:41:15.0482 0x0580  [ 0B779E9FC426CA2268D28181FA6C222F, 83292023A688C3044D096F22242EB954B7F7511BE8341D45FF0AFBD9CB9BCB4E ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
13:41:15.0493 0x0580  kbdhid - ok
13:41:15.0496 0x0580  [ 813BA3EB2CE038F2A5382DDD75CAD60B, 99FA444027CAC247B54317730D54AB0C4C000AE076B97E47470FDA9834594312 ] kdnic           C:\Windows\System32\drivers\kdnic.sys
13:41:15.0511 0x0580  kdnic - ok
13:41:15.0515 0x0580  [ EA0D394EF9A9F225A5C4BD6EC83FE78A, 960EE6EC293B7CF62F2E6F49ED197783C7AD860E4DD23BAA0200D300D31E8B56 ] KeyIso          C:\Windows\system32\lsass.exe
13:41:15.0524 0x0580  KeyIso - ok
13:41:15.0530 0x0580  [ 705C0F8BCCEF6E7CB704CCB454192D7E, FC608C708E2C3BF7A66E57B95E19E71E5F5C87EF359D8BC1A817500B45DF9338 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
13:41:15.0541 0x0580  KSecDD - ok
13:41:15.0547 0x0580  [ 55AD13E2BAFC5AB53A10F8C271F5D242, 058BEF14DCB95574BCAB985F04737BA89483937E8D8A74F7B4CEAFB7400C2397 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
13:41:15.0558 0x0580  KSecPkg - ok
13:41:15.0562 0x0580  [ 4ED115CD1A1099705F56B5E0FFF97CC6, 9CC49DF2CD6AAAE405BA661D13EFC1E05111D1DE3D1E50C39C425AF1F075610B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
13:41:15.0577 0x0580  ksthunk - ok
13:41:15.0587 0x0580  [ 8125BDF7ADC261F75EF0CAD92456E350, 184797AA1D58C4FF743BA60D48590B88B781EE7779205E45E0679DEC79F3E185 ] KtmRm           C:\Windows\system32\msdtckrm.dll
13:41:15.0608 0x0580  KtmRm - ok
13:41:15.0617 0x0580  [ 8CCAB08815B50AD78B823DB3F96C8604, 265E6D582EB7207B5CC577D61CB7BC3646F613047F168CD69BB776C37780EBF5 ] LanmanServer    C:\Windows\system32\srvsvc.dll
13:41:15.0636 0x0580  LanmanServer - ok
13:41:15.0645 0x0580  [ 33DBBCF71F68EA97D9FD34E4C9AB5AC6, 104F04A1560E75EB224A3825707CE51E8798ABD764F5CC3B854FFFC93A39AF60 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:41:15.0664 0x0580  LanmanWorkstation - ok
13:41:15.0669 0x0580  [ F8EBAA1FE6D3BF84752931DE1BFA0E2A, 2F3C512712BA709BBBBD779D9E792DBE324876C402CDCEF0345B8B7ABE1D232A ] lfsvc           C:\Windows\System32\lfsvc.dll
13:41:15.0681 0x0580  lfsvc - ok
13:41:15.0684 0x0580  [ A4C5CE5616FC39235FE3C0BB10CA1BCC, 5293B8B0FCF367A4C27C8EA58534675B7A2532126358874985190878F3F6714F ] libusb0         C:\Windows\system32\DRIVERS\libusb0.sys
13:41:15.0691 0x0580  libusb0 - ok
13:41:15.0695 0x0580  [ 5A23E4BE0CCF49663C4CF7EB74C20278, 9DF91014B13B7CED1C3D409F90858FD03EFC5C4347C98901B4DF0AFF2B77845D ] LicenseManager  C:\Windows\system32\LicenseManagerSvc.dll
13:41:15.0707 0x0580  LicenseManager - ok
13:41:15.0712 0x0580  [ 5933A6673F00D8255C52957E40C2D601, 0AA1281F8B3F97E360592D1B35EE7D3D614F1AB46007F9884CFFB1C5E647575E ] lltdio          C:\Windows\system32\drivers\lltdio.sys
13:41:15.0723 0x0580  lltdio - ok
13:41:15.0730 0x0580  [ 88A3C935725FA6EA1A228DCC26CF9C6F, 9B1F70644EEFA1EE7CE151A8A970430087339B7A6345F2E0252370929D4AFAC6 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
13:41:15.0748 0x0580  lltdsvc - ok
13:41:15.0752 0x0580  [ 3F858E28AEE6545FA1B64134DFD5C2CE, FFD7B4FB0A7B61BC6B76A172134673842F2CF00E96FA3ED4A8273DC525B6BB92 ] lmhosts         C:\Windows\System32\lmhsvc.dll
13:41:15.0764 0x0580  lmhosts - ok
13:41:15.0770 0x0580  [ 8E1B0946948CCC0BC1FA3CB70374A795, 0B894C129A35E223FF9594725AC90916CBD597FAD2211A18FC2AE03EA8679597 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
13:41:15.0780 0x0580  LSI_SAS - ok
13:41:15.0784 0x0580  [ 4F68163FC04C973500DC4DA0946917B0, DF060C29109EB3978CEDFE781999B0C4C1E8C0FDB133428058D8400C53315EEC ] LSI_SAS2i       C:\Windows\system32\drivers\lsi_sas2i.sys
13:41:15.0795 0x0580  LSI_SAS2i - ok
13:41:15.0800 0x0580  [ E5AC5F2815938651CDCC27F425474673, 3AF0598982153C36A766506FA088F7B84333CC96FEBB050402547AFC613AF9F7 ] LSI_SAS3i       C:\Windows\system32\drivers\lsi_sas3i.sys
13:41:15.0810 0x0580  LSI_SAS3i - ok
13:41:15.0814 0x0580  [ CCF6EC9FB9B8F18E05B4253E81013E48, EBE8D77FEE8B99BD8C29702404774D554673C96DF3FDF3DCEA9C99E22C2709FC ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
13:41:15.0824 0x0580  LSI_SSS - ok
13:41:15.0840 0x0580  [ D5EFC0BAEC21EDE6FE03D377D403B421, 41BE71AF7C896FD4C51EF7E3871AAB769164DFB8050DA43E48C7A100711414B4 ] LSM             C:\Windows\System32\lsm.dll
13:41:15.0878 0x0580  LSM - ok
13:41:15.0895 0x0580  [ 639D24E769BDBEC6145E4C1921669B73, 0282787E35B8A27124D0831D802E519343F4AB900FD05B31448E8644F5219E18 ] Ltn_stk7070P_64 C:\Windows\system32\DRIVERS\Ltn_stk7070P_64.sys
13:41:15.0926 0x0580  Ltn_stk7070P_64 - ok
13:41:15.0930 0x0580  [ E028DF5A96827A87898D4D7EB768E3AB, 750C79E2AC616C695704A6C22AD457A98A996B97395CA0621A3CE8299F60DD15 ] Ltn_stkrc_64    C:\Windows\System32\drivers\Ltn_stkrc_64.sys
13:41:15.0939 0x0580  Ltn_stkrc_64 - ok
13:41:15.0944 0x0580  [ C9579D32219E5B936AC3A48D470117EC, E61A77191B6BA25D29B1221FEBBE826BBC11F825C0E35A72B4CEFFF8B7FE59A8 ] luafv           C:\Windows\system32\drivers\luafv.sys
13:41:15.0959 0x0580  luafv - ok
13:41:15.0969 0x0580  [ A0A527569856B9814E8920F52EBB67F5, 4347277C84B47E4CC048850BDEFB258CFB3B476AA99FD503FD71FBB70FFF5ACF ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
13:41:15.0981 0x0580  LVRS64 - ok
13:41:16.0069 0x0580  [ 415E344294D1C0D04627B29146F68481, B4A1A05BDF07E8F226A98E51F62BE18BE2C046A084C495BD8A95CABC79FD0614 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
13:41:16.0156 0x0580  LVUVC64 - ok
13:41:16.0166 0x0580  [ 9F699136FA1A8A170C2C05D7790A5FC0, 4363C527BD2FC9FD8937E9866CA200809AC87B64EA57084491BAB6DEB8ED9E87 ] MapsBroker      C:\Windows\System32\moshost.dll
13:41:16.0179 0x0580  MapsBroker - ok
13:41:16.0183 0x0580  [ C3CDCCF07486BD2616A7B82946E07AC0, 1EF95DAB2DA856BC7D7573B2EB2D9006DF337F827F0B56A161D0C97F45DB755E ] megasas         C:\Windows\system32\drivers\megasas.sys
13:41:16.0192 0x0580  megasas - ok
13:41:16.0196 0x0580  [ 2CF0CB2A0ED68C5455371E84C16F9627, 1C9166B52140145F1968E83E52BFF041250811B23C770FE181A18A4BA060CA81 ] megasas2i       C:\Windows\system32\drivers\MegaSas2i.sys
13:41:16.0205 0x0580  megasas2i - ok
13:41:16.0219 0x0580  [ FADB2FE017E69EECE0E1BA78661C2E8C, BE99B49031D8B4B670B6F6B6E829E54406779CF6F1D8AFE8AB79A73E6764AB2F ] megasr          C:\Windows\system32\drivers\megasr.sys
13:41:16.0239 0x0580  megasr - ok
13:41:16.0247 0x0580  [ 6D1671CB2E5402F01D2F13ECF764CAA1, 4778630F602FE8F9B9112DC5BB7A179632000D10D80C28E93711404108FCC6E0 ] MEIx64          C:\Windows\System32\drivers\TeeDriverW8x64.sys
13:41:16.0258 0x0580  MEIx64 - ok
13:41:16.0262 0x0580  [ 55A417C3E41F2A98666CF929EC19108E, A38C262B2863C87E4151525BF26D6AC16E7982D370E2C6998EB15C88C4BC8254 ] MessagingService C:\Windows\System32\MessagingService.dll
13:41:16.0275 0x0580  MessagingService - ok
13:41:16.0296 0x0580  [ FD60818B66B2E8A5415EA840E99A9D8F, 5D2F22909354534B821D958FBEF6A40EB4F642F53C7B509D00949096EF716F36 ] mlx4_bus        C:\Windows\System32\drivers\mlx4_bus.sys
13:41:16.0321 0x0580  mlx4_bus - ok
13:41:16.0326 0x0580  [ 68F6977F1CFBAAC770D940A8C0326FA1, 90EE1E7DAC680EAA5AD50E9B0B9FD8FCE8DD6A02D5EF941B5AA5084CBD40BB80 ] MMCSS           C:\Windows\system32\drivers\mmcss.sys
13:41:16.0338 0x0580  MMCSS - ok
13:41:16.0342 0x0580  [ 0D50B3F3AB32D416786B58D4553859CE, 9DA4D7A30982E8B31C45BDB721AEF5240EAD9DA6839CF34FDDBCF123BF104F2C ] Modem           C:\Windows\system32\drivers\modem.sys
13:41:16.0354 0x0580  Modem - ok
13:41:16.0358 0x0580  [ 9CCCB7FC3EDADEBA461D78615A6011A6, C120B58F25E8CCFD971EB78645C0682F367AD56DC15F2D8C1980CE75B04719DF ] monitor         C:\Windows\System32\drivers\monitor.sys
13:41:16.0369 0x0580  monitor - ok
13:41:16.0373 0x0580  [ 27A07B2FB2E3057DA8DAEA4F25D843C7, 09D2B39E6B9AAEC879E5871DD6BCFF2AEF0B894F3B44649665A685F8B3CA6F27 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
13:41:16.0382 0x0580  mouclass - ok
13:41:16.0386 0x0580  [ 7BD6E7F7C9001AB21B8362CFFEE80B25, C470C3363EEF3A60409A5934988BFB9B72AE7C2BB63CC2C2D006D7EB1C797F6A ] mouhid          C:\Windows\System32\drivers\mouhid.sys
13:41:16.0397 0x0580  mouhid - ok
13:41:16.0401 0x0580  [ F5BDAEE4B7D369D4C74668DCFBA3FF10, 100F39288E56AFE0D39D1CC235BDC9F3727C873CD3114E092DA7A08810BD3EB2 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
13:41:16.0411 0x0580  mountmgr - ok
13:41:16.0417 0x0580  [ 86C9215967686BB8A6AEE8008D914BF8, 907A156AADC880F06EB7BBBC0C57EC14A205CEE43A2AD509F6BD4040CA4F327D ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:41:16.0426 0x0580  MozillaMaintenance - ok
13:41:16.0430 0x0580  [ 30844BD376F9D01E62C820BEF446F1F8, 910D672EDB544A20AEB4450B4D89830F46EDD28CE0021156176315C5D068A1B4 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
13:41:16.0442 0x0580  mpsdrv - ok
13:41:16.0461 0x0580  [ A231E1861F7AA9CCC24B97176BBA838D, CDAB9A25CC55B71E8A83E50504B12E948D7A88F035918E4F94E3624E4AA0A28D ] MpsSvc          C:\Windows\system32\mpssvc.dll
13:41:16.0497 0x0580  MpsSvc - ok
13:41:16.0503 0x0580  [ 25D32BE04FE0A23FDF57FD5382757672, 64E39E3E21D9173FB1116B989D80C244C49DA827698A05AF5CC5CD1C6AE155DE ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
13:41:16.0517 0x0580  MRxDAV - ok
13:41:16.0528 0x0580  [ D559FF28B1AD9B1E15A4186E785E61F6, 4B22A740E86CA10B1B43E36CBE9A50B53D1E5504C25694C8FF3A514DF699E99C ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
13:41:16.0546 0x0580  mrxsmb - ok
13:41:16.0554 0x0580  [ CFE8297B003C85AEFB506BDDEE3E67FA, F42F2CCDB80D7F83B122FE2CFB9ED19464DAA763E6CB9272C7A1F91DF441154E ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:41:16.0572 0x0580  mrxsmb10 - ok
13:41:16.0579 0x0580  [ D66BB32A4C26F170F43F098BBAE245AD, 934C30358963DA85ACB749CF6A2167D9B615C5B7479F9BF73FE65C9914C177D0 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:41:16.0592 0x0580  mrxsmb20 - ok
13:41:16.0597 0x0580  [ 85669C51BA3BBD4CF6457C280BFAEA0C, 11D92B85B7EA837B8294B5A160E35BDE6C91FF78873B076E3B823F16384618AF ] MsBridge        C:\Windows\system32\drivers\bridge.sys
13:41:16.0609 0x0580  MsBridge - ok
13:41:16.0616 0x0580  [ 308F08347923DEEDE7BC03EC7D485841, 72DB45CA11FE635DF9F8273C38CBEFB8DF5362ADA0CBF6D2B1E570365DC700C0 ] MSDTC           C:\Windows\System32\msdtc.exe
13:41:16.0630 0x0580  MSDTC - ok
13:41:16.0635 0x0580  [ F01B849D9D4A8CEAF32D4FDBD0B83C92, D2473AC4C6E6C03DEF13EA73EC78FB878BDC95C047651BF79A16C9DEA82AD046 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
13:41:16.0647 0x0580  Msfs - ok
13:41:16.0651 0x0580  [ 22ECD8F5D1DFADF2011BBB1700CB871D, 8F9EFF51137394EFA5471B8A29C541710063B65806B075B4925A84D5B6BC3BBB ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
13:41:16.0660 0x0580  msgpiowin32 - ok
13:41:16.0663 0x0580  [ FD870F6968A145E4D2BA8A8842686B03, 34B8F601F3B5E42B4D0A41E2AF7DB4EB4E5B627DA8DA9A2A2D46B153AF23AEB1 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
13:41:16.0674 0x0580  mshidkmdf - ok
13:41:16.0677 0x0580  [ 30364757963A028CE5DF0FBAAC270173, C72588A6A52FF8E418A15D2C407A4DB7EA768585423720145F8253D5CA519DC2 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
13:41:16.0687 0x0580  mshidumdf - ok
13:41:16.0690 0x0580  [ 6BB0FEDDAE7135FA37FFAFF4D9E0E876, B41A3C0FFDFC493D6325ED493445AFCED04EC9DFF2B38125616FC5419AD1ACC4 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
13:41:16.0699 0x0580  msisadrv - ok
13:41:16.0705 0x0580  [ 07E3E54734B14F43A4A95A849C0A0DE2, 314AA02EA84D267B32DBAEBEA6C1AC1A266DED1E8D35A17B41D1D2AC75E8049E ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
13:41:16.0718 0x0580  MSiSCSI - ok
13:41:16.0721 0x0580  msiserver - ok
13:41:16.0724 0x0580  [ 4586CDA25B7866DD9505CEECF9DB3C74, B94CE1A7C1B6FFEF7AA33AEC30C27E01E44E6E56A4274705684BFBB738F95BCF ] MSKSSRV         C:\Windows\system32\DRIVERS\MSKSSRV.sys
13:41:16.0736 0x0580  MSKSSRV - ok
13:41:16.0740 0x0580  [ 642CDE46351D5D2D90311E77072AB46D, B2D3033E607BA2F6E6B9CFB1CBF154CD0CE910EA473C56343EC81B9B94044CCA ] MsLldp          C:\Windows\system32\drivers\mslldp.sys
13:41:16.0752 0x0580  MsLldp - ok
13:41:16.0755 0x0580  [ F2302A5CE63CA7673200FAFCEEEDB6AF, B8C44FC2DC0332183DE325CDBF511101F3307225295EDD428CE575A8DE15C223 ] MSPCLOCK        C:\Windows\system32\DRIVERS\MSPCLOCK.sys
13:41:16.0771 0x0580  MSPCLOCK - ok
13:41:16.0774 0x0580  [ 6114512EA26E835BA522C63635429DB5, 0F91CE41B4555316A79AEF3047C152D538CC9C7C329987C9FD0E3D961AFC87C8 ] MSPQM           C:\Windows\system32\DRIVERS\MSPQM.sys
13:41:16.0789 0x0580  MSPQM - ok
13:41:16.0798 0x0580  [ AA538E16E644D00E3BA5349BBA9598EC, 64A68B06883FE7ED34E04AB119BA819753F1222923EDD4E802C35D402B89D075 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
13:41:16.0814 0x0580  MsRPC - ok
13:41:16.0821 0x0580  [ 7ACFE7435317E791FF9EED2F49B402F2, EAF2CE12403A9D975112A22EDBC313EE63B926C070B35E62D515403DD34BD88D ] MsSecFlt        C:\Windows\system32\drivers\mssecflt.sys
13:41:16.0833 0x0580  MsSecFlt - ok
13:41:16.0837 0x0580  [ 0543BEFD41EC4D25C7F7CF36409CEC7D, 631622CFEC49952C0470531B23FFFFF483DC0EFFEF7A97B1179A600392C05DDD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
13:41:16.0846 0x0580  mssmbios - ok
13:41:16.0849 0x0580  [ C1569E4DB8EFE3617847BF041A3C842F, 99ADE5E7F50E04CAEC737F7F90741CCA8EE628996BA5EB6C6BC62184884429B6 ] MSTEE           C:\Windows\system32\DRIVERS\MSTEE.sys
13:41:16.0865 0x0580  MSTEE - ok
13:41:16.0869 0x0580  [ 130B16970154BA9876B09E5C4BAC63BE, BE3AF8FC5A26AB9C9DBA9C015C2E1FD3C4CD9CB423A2BBDABA91428BF8620553 ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
13:41:16.0879 0x0580  MTConfig - ok
13:41:16.0884 0x0580  [ A2A906C0D38BFE1D780251D044BDBD4D, 7898F93CF4C0ABE761329F0BE43A12BDFB894465BBE5131D98D5BA6A10B3B1FD ] Mup             C:\Windows\system32\Drivers\mup.sys
13:41:16.0895 0x0580  Mup - ok
13:41:16.0899 0x0580  [ 3D2C5B4995CA0751D32DEA0DE9FDFE44, A26958785FD9E05E2CA97078C9BB277CD44222BF5F7D9E8DC2F3F6AAAFFC6483 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
13:41:16.0909 0x0580  mvumis - ok
13:41:16.0924 0x0580  [ A5FA29F748BBF38FC3FAE4B54FA20A93, 8912F08967CFDD2A74593C9D23F43D6487D1920969C380B39BA8EA4672B24C3B ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
13:41:16.0949 0x0580  NativeWifiP - ok
13:41:16.0956 0x0580  [ C3D9870E680D9D843B18F4626C3858FE, 43596CAC9FB488F810FBA954C52BC4D13F7D32028C40ACFE33DFD7EE36A65C17 ] NcaSvc          C:\Windows\System32\ncasvc.dll
13:41:16.0972 0x0580  NcaSvc - ok
13:41:16.0981 0x0580  [ 04CE2C0F0759EACD886BA4B658B60D5D, E34D0976FC5936C8629800D826DB127072D1DFC3D350EFACA3AA1B8119551762 ] NcbService      C:\Windows\System32\ncbservice.dll
13:41:17.0000 0x0580  NcbService - ok
13:41:17.0005 0x0580  [ E6094065008FE423377294050E7CEA2D, 86E200227256407530E2C28243DEFBC3CB6E9497644404D9AD79DA242286DF7B ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
13:41:17.0025 0x0580  NcdAutoSetup - ok
13:41:17.0029 0x0580  [ 629CB21AC49C8867E0F29DF1C16DB7B4, 20663E68C69D0A1A2FE99A0C2A9DEFABF49786A1DC8F7F4E1699458AF57D7E79 ] ndfltr          C:\Windows\System32\drivers\ndfltr.sys
13:41:17.0040 0x0580  ndfltr - ok
13:41:17.0065 0x0580  [ A530D0C58A657BCD1629816B887661CB, EF8E25018D64F7D0EE1E05C24E0B0DB25B0ACCF13DE0FEDAF8F0AF70BC025462 ] NDIS            C:\Windows\system32\drivers\ndis.sys
13:41:17.0098 0x0580  NDIS - ok
13:41:17.0104 0x0580  [ 6DD605338FAAF6BA17662AA874E0D162, 636607829F5D7C3B7A4683C0A2DD594360D72F2AA3F8710153BE32575AE34A15 ] NdisCap         C:\Windows\system32\drivers\ndiscap.sys
13:41:17.0115 0x0580  NdisCap - ok
13:41:17.0120 0x0580  [ E34196F285F8B8879E1FF36C31F7179E, 77A4F24F995D4C0689C43F9956E08DCEC62517E4F8B1B9EAA1852B5293DB5B9A ] NdisImPlatform  C:\Windows\system32\drivers\NdisImPlatform.sys
13:41:17.0132 0x0580  NdisImPlatform - ok
13:41:17.0136 0x0580  [ 1FAD2398673F30CEC616B89C46B7DCBA, 70302049E6AE2BC6B3A7A9DE54D3F940AD6A9771CC2EBCCEC65994E67A25ECB5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
13:41:17.0151 0x0580  NdisTapi - ok
13:41:17.0155 0x0580  [ AEB8ECBE66CC46854066CB1F5623E179, 2F650A85A9DAE38887610C0B876621035616CEDB65D4BBBD7F1405616D218AAF ] Ndisuio         C:\Windows\system32\drivers\ndisuio.sys
13:41:17.0167 0x0580  Ndisuio - ok
13:41:17.0170 0x0580  [ 7340104C2BF2F126714F7CDE85E63610, 45B64EC6F3A4C43F7D74806789067658C6EF0D44D36B841F4D26E1EBC95AF66C ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
13:41:17.0181 0x0580  NdisVirtualBus - ok
13:41:17.0188 0x0580  [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] NdisWan         C:\Windows\System32\drivers\ndiswan.sys
13:41:17.0208 0x0580  NdisWan - ok
13:41:17.0214 0x0580  [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] ndiswanlegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
13:41:17.0234 0x0580  ndiswanlegacy - ok
13:41:17.0238 0x0580  [ 78A12E3DF035B5D054986949B19BE43C, AD9B34F89B9F27D473BD5FCE6694A40FCCB808B61ABEDD6F70F1AF6C7E73ABF8 ] ndproxy         C:\Windows\system32\DRIVERS\NDProxy.sys
13:41:17.0255 0x0580  ndproxy - ok
13:41:17.0260 0x0580  [ 04C8859355C1DC9C0FA198D1894D71C2, E7C67E73009341B5D402470C686781B3C7BBE2531CE26665E08E711B990B1A77 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
13:41:17.0279 0x0580  Ndu - ok
13:41:17.0283 0x0580  [ 6C76780A01FC2B885BD6E957B5C36B02, DB7834F03A765F65C773E772D8051AFADB22CA4B5074180AA397857A0C47A068 ] NetAdapterCx    C:\Windows\system32\drivers\NetAdapterCx.sys
13:41:17.0296 0x0580  NetAdapterCx - ok
13:41:17.0300 0x0580  [ 5D1513BD6430307C9DB86C6E351372ED, D2AB709CF7CFA5B857B084AFC821914A975B7DDDCE154229981F19448973BD6D ] NetBIOS         C:\Windows\system32\drivers\netbios.sys

Mk91 · 01.08.2017, 12:54

Code:

ATTFilter

13:41:17.0309 0x0580  NetBIOS - ok
13:41:17.0319 0x0580  [ 6FEBB0A847FFD5F057B9AC8889F1B9A7, 558BCC64C59079E6569F61CCE1219A124B3313FC4E6CB5CBCC94124D202FF19D ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
13:41:17.0336 0x0580  NetBT - ok
13:41:17.0341 0x0580  [ EA0D394EF9A9F225A5C4BD6EC83FE78A, 960EE6EC293B7CF62F2E6F49ED197783C7AD860E4DD23BAA0200D300D31E8B56 ] Netlogon        C:\Windows\system32\lsass.exe
13:41:17.0351 0x0580  Netlogon - ok
13:41:17.0358 0x0580  [ D3BF2DA9216A4CF22A97820A50A67EFF, D00CBE0A7ECFB449D9B48967A01EE56141404EBE229893D5A1710781AD5F2551 ] Netman          C:\Windows\System32\netman.dll
13:41:17.0378 0x0580  Netman - ok
13:41:17.0390 0x0580  [ F2645D51DD8AABC8BC72358409410437, 8CB97628923D6CEA6EFAD7E666BE92C154060BD108C28D46287A520A14B18ADA ] netprofm        C:\Windows\System32\netprofmsvc.dll
13:41:17.0414 0x0580  netprofm - ok
13:41:17.0423 0x0580  [ E0981C2DA535C7D579601C967210E25E, C4EF0A5E34B91D34481FA80904A5A71F22D837029A8EC9F95DE3C1F9BC68F8C0 ] NetSetupSvc     C:\Windows\System32\NetSetupSvc.dll
13:41:17.0441 0x0580  NetSetupSvc - ok
13:41:17.0449 0x0580  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:41:17.0461 0x0580  NetTcpPortSharing - ok
13:41:17.0471 0x0580  [ 5B934F4E9725CB774FA9649D5ECB8F02, 173E8A754C014C13E1CD0155C178DAF108C1A81B2264015CD6998EE9CB2516DA ] NgcCtnrSvc      C:\Windows\System32\NgcCtnrSvc.dll
13:41:17.0490 0x0580  NgcCtnrSvc - ok
13:41:17.0512 0x0580  [ 00A0987633FADDDEAFC24AF3C6821A59, 72ADCD823AC8D8CA3937AB8220AF30AFCCFA2BAE47FB1991530EFCCC48A190B6 ] NgcSvc          C:\Windows\system32\ngcsvc.dll
13:41:17.0549 0x0580  NgcSvc - ok
13:41:17.0559 0x0580  [ 9B9F520C72EE33EAEC857124BB800243, DFA9386B272F4D86F3E4BE861A2FC4617261E1AA40576DDA610FC24AB4961A63 ] NlaSvc          C:\Windows\System32\nlasvc.dll
13:41:17.0580 0x0580  NlaSvc - ok
13:41:17.0584 0x0580  [ 001CBD7A2CD45C4EB39C01C3C677EF73, F4AAF4D60DB1232921C7811A62287B55C7C098B7A1FF9A40D88AF58A5ABECBA2 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
13:41:17.0597 0x0580  Npfs - ok
13:41:17.0601 0x0580  [ 90F5DC9802AAA00CD0B6E2AD9E7FFADC, 71C0777829299DECA6ACD42F38802DBE3C29A42CFBD8A396F39DFA44D1F55B6C ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
13:41:17.0611 0x0580  npsvctrig - ok
13:41:17.0615 0x0580  [ 1993C85962692EF7024501E7FE92D466, F5BCAA8308495EBF8BB061C2015E07C202A779668D171364D7E312975BC18B10 ] nsi             C:\Windows\system32\nsisvc.dll
13:41:17.0626 0x0580  nsi - ok
13:41:17.0630 0x0580  [ 0C6218321A09A7B51BA7FFAFBA4CCB21, 330B3FA793A78410B28DFC8250BBF24442E3BB80434A7938BB96F02337614E0D ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
13:41:17.0641 0x0580  nsiproxy - ok
13:41:17.0686 0x0580  [ 1668185FD94CDFB8E148A6C7DC76B4DB, 7D3E3AC97BD01EA30BAF4123092A8FA3B12F9E2120E0A3FA99855982B5944214 ] NTFS            C:\Windows\system32\drivers\NTFS.sys
13:41:17.0748 0x0580  NTFS - ok
13:41:17.0753 0x0580  [ 6E6DD6F9DD2A034CF85E94047DBDB992, 63D0A0756F551B7668D1CBAB24B29FD462C706E8A81690BC248D6C92061FE215 ] Null            C:\Windows\system32\drivers\Null.sys
13:41:17.0764 0x0580  Null - ok
13:41:17.0772 0x0580  [ 01BB4162D40078249B4CA1D81A6F4C54, 8BFE840FFD5BCF977700BF84A14924E38B3EDB4A08B04C05A7F188F430507674 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
13:41:17.0782 0x0580  NVHDA - ok
13:41:18.0055 0x0580  [ 88F3EEDD47473E7206C0A049AE96A0F7, 3A02CF546993270E3DE2715F1065A4832CC1F2C6CCB62D87DDB939C423EF1EA1 ] nvlddmkm        C:\Windows\System32\DriverStore\FileRepository\nvaewu.inf_amd64_8baa9d083edacf87\nvlddmkm.sys
13:41:18.0305 0x0580  nvlddmkm - ok
13:41:18.0324 0x0580  [ D261DF41F0840F734856A2B4F5E072C7, 2E703556D0C919375D0B7770513456844B13362190643D5524663EC8546E0FF5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
13:41:18.0335 0x0580  nvraid - ok
13:41:18.0341 0x0580  [ 23B702B555EB0436B9DAA0BC63DA65CE, D454F80D9657CFEC852F022C12D7B2C1A2D7D247ECC591EDB07B9369DFD8C99E ] nvstor          C:\Windows\system32\drivers\nvstor.sys
13:41:18.0353 0x0580  nvstor - ok
13:41:18.0363 0x0580  [ 17997DC2441F7E29CDFC6458E0392764, 636CCE2DA1EF8195B33F8D6D5C8CC151D58EBF08DC9AD8ACCCE7ABD41A69639F ] OneSyncSvc      C:\Windows\System32\APHostService.dll
13:41:18.0383 0x0580  OneSyncSvc - ok
13:41:18.0390 0x0580  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:41:18.0398 0x0580  ose - ok
13:41:18.0492 0x0580  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:41:18.0585 0x0580  osppsvc - ok
13:41:18.0599 0x0580  [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
13:41:18.0619 0x0580  p2pimsvc - ok
13:41:18.0629 0x0580  [ 2BBCED66D7AFC968BDBB0E4D8524DF0A, 762D916390F9DE69B3EA1D31244224F910645F8E5CEF4C505B76B215BFDFCD9A ] p2psvc          C:\Windows\system32\p2psvc.dll
13:41:18.0671 0x0580  p2psvc - ok
13:41:18.0677 0x0580  [ 6B81BF7853D161DB8AC62CD8B9C2DE6B, B2DC06D135FD2501217DDA7349556EB873309E02188D4C3901807BA24FAB30C7 ] Parport         C:\Windows\System32\drivers\parport.sys
13:41:18.0693 0x0580  Parport - ok
13:41:18.0699 0x0580  [ 0553ECB742278C8F4CFA28B43FF20EAD, ACD7F5BC36573BCEC2C3413DEA687034ECC101EDD3C1544B264BBA29EFCE3425 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
13:41:18.0712 0x0580  partmgr - ok
13:41:18.0725 0x0580  [ CDD8EDF4C35BE6D6137112F5CC7A70DA, 80EECA6BC2E668E5652A5CA9B119CCCE2A2E421F0EED1FD0EAC20C42E77C02ED ] PcaSvc          C:\Windows\System32\pcasvc.dll
13:41:18.0749 0x0580  PcaSvc - ok
13:41:18.0759 0x0580  [ 29AF16726F4DD84376ECA85AB6AFF2C6, BEF9EA10637065365ED343C4EBA51191B9BEADD8F1F3362D3EFE75F40BE9A027 ] pci             C:\Windows\system32\drivers\pci.sys
13:41:18.0776 0x0580  pci - ok
13:41:18.0780 0x0580  [ 214DCC87E3898F738075D1341252A552, E721FBBC3510DDB848A8CAEA3B6031EE988F42252DBC3BF7BDB6ABD9A0D9FABD ] pciide          C:\Windows\system32\drivers\pciide.sys
13:41:18.0789 0x0580  pciide - ok
13:41:18.0794 0x0580  [ AED76A3333B3A31536E430020E0226FC, EC255B79B0908E3C142D92E35B79D90A3F2594BA012CA2B1B04A6A8745153430 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
13:41:18.0805 0x0580  pcmcia - ok
13:41:18.0808 0x0580  [ E63FB38B6E75B39467492FBAD2CD512A, DB406C92BA2460C833A49B98EB5BD58348E868F643A0123B0C9B5315FFC6A124 ] pcw             C:\Windows\system32\drivers\pcw.sys
13:41:18.0817 0x0580  pcw - ok
13:41:18.0822 0x0580  [ 382D493B91B816D12C6F775E7896ED29, A1AECF74577CA229FD096DFAA67C8E00FA4A648F5BD72DBF4C8BDA99F325C6A5 ] pdc             C:\Windows\system32\drivers\pdc.sys
13:41:18.0832 0x0580  pdc - ok
13:41:18.0848 0x0580  [ 1509A77F840AA9E72CF8247D0CF2FBDE, 2D47AD4D8F5C2D871E603FB6D72D25EFD0E63FA3A542DAADAB9D82ED074C0E0B ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
13:41:18.0883 0x0580  PEAUTH - ok
13:41:18.0921 0x0580  [ 2B55ACB1727A8E5E7514D2D75AC4EBEB, 5E7449F3EE0B15E400E405DE561ED2D3932259107A9D9320AE42CA1A5C5AB992 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
13:41:18.0984 0x0580  PeerDistSvc - ok
13:41:18.0989 0x0580  [ 540116170E2135FCD5DDE77702166B67, CBEC51C2D47532F1781B3255040F303263420B204C2F8BB2B5D1EC342F57B285 ] percsas2i       C:\Windows\system32\drivers\percsas2i.sys
13:41:18.0999 0x0580  percsas2i - ok
13:41:19.0003 0x0580  [ 8356F87553BF49C703CF382033815898, 245EB941566D848F134629690BF271B1CBEAB6440771D3D8D7AED3756835354E ] percsas3i       C:\Windows\system32\drivers\percsas3i.sys
13:41:19.0012 0x0580  percsas3i - ok
13:41:19.0030 0x0580  [ CB5343FF52A702A9ACFAAE6BE972FE09, EAA5362D91D05D382DF4EBBAA3FD575456F23CAD531CC6F1270F8254892DBF02 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
13:41:19.0042 0x0580  PerfHost - ok
13:41:19.0063 0x0580  [ D0D57322ABC7473E54472D8374169CC5, BD14A13D6908C8669E56EF9401FD8A3D7C618E8B6556B36E634864E733BCA4B2 ] PhoneSvc        C:\Windows\System32\PhoneService.dll
13:41:19.0096 0x0580  PhoneSvc - ok
13:41:19.0103 0x0580  [ C7A94D99CDF054248EFBD9B93D096DA6, F59F0EB5B17DC078E47D044B1126A786D67DC149AC9614CDA6AA1226EEE3EF55 ] PimIndexMaintenanceSvc C:\Windows\System32\PimIndexMaintenance.dll
13:41:19.0119 0x0580  PimIndexMaintenanceSvc - ok
13:41:19.0152 0x0580  [ F931F21E4287FE3ECCF09B54A232BBA2, CEB7AB3236E5F30214027092B7B695ED35F7A1E007DF4046797D1E4DFEF49EC8 ] pla             C:\Windows\system32\pla.dll
13:41:19.0202 0x0580  pla - ok
13:41:19.0208 0x0580  [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
13:41:19.0226 0x0580  PlugPlay - ok
13:41:19.0229 0x0580  [ 56D7A89423325121C4A9BD5C326414F3, 649048C23D1973C3504E26B35362AC99DFE9BF31FFE73F45B43306A212AEA34C ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
13:41:19.0241 0x0580  PNRPAutoReg - ok
13:41:19.0251 0x0580  [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
13:41:19.0271 0x0580  PNRPsvc - ok
13:41:19.0281 0x0580  [ F70CAC34B455D05EAA04B2F8FB58E1CB, 295BFFB3DA03C5CE5462C11D3240024B68AC06E8DEA9062A739BE2CCEE19EB5D ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
13:41:19.0303 0x0580  PolicyAgent - ok
13:41:19.0310 0x0580  [ 60C8376B48BA96F07AEA536527433D44, EB988C119C3E71169B91ED2A744C71933DD35447DC4A8249E80EC24E9E7077D4 ] Power           C:\Windows\system32\umpo.dll
13:41:19.0325 0x0580  Power - ok
13:41:19.0330 0x0580  [ 5645B9D9788CCA2C88B9534996ED2D6D, 4988942DF163DB5B9B1A08CE6B628D2C47C2E2EAA30AEAE4EFE21C8CF4C8DC5D ] PptpMiniport    C:\Windows\System32\drivers\raspptp.sys
13:41:19.0348 0x0580  PptpMiniport - ok
13:41:19.0417 0x0580  [ 30AA256A85C1A7B17A590B1C5244D28E, 2C1FB30DEF53C37CA0D0CA54B65CB8572C53DDFB430DE57F964253F1082ACEA0 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
13:41:19.0515 0x0580  PrintNotify - ok
13:41:19.0523 0x0580  [ 372913E12677A8CBBBABDD8311894F9D, A5233D95A0D22D2A9DB214E7CB79A99D389B67189FF6A87D0AD4610A333A637F ] Processor       C:\Windows\System32\drivers\processr.sys
13:41:19.0536 0x0580  Processor - ok
13:41:19.0545 0x0580  [ 1F115AF75EFBAC28479B4F94A3F8D4A3, BE8D8C50D985F6AF9DDC0F13BDBE2D55D600E1F5E344982536538B14EC484AA6 ] ProfSvc         C:\Windows\system32\profsvc.dll
13:41:19.0567 0x0580  ProfSvc - ok
13:41:19.0573 0x0580  [ FC98407B85A31161851FDE245517574F, 2CCD706CF243934FCDA32B24CE0C385EA2E67F206E0306FA584496F583A20CD1 ] Psched          C:\Windows\system32\drivers\pacer.sys
13:41:19.0584 0x0580  Psched - ok
13:41:19.0593 0x0580  [ 7A68710BAC9B6809314B86C0CB1CBC4A, C02D97993D1F6FE6EFBA5B1366B3A4FE8CE1136A95F3A2DA07BA59554C163501 ] QWAVE           C:\Windows\system32\qwave.dll
13:41:19.0611 0x0580  QWAVE - ok
13:41:19.0614 0x0580  [ 819602BBBFDB0BD46DEA3715BF0DD452, D4007FF1E5296316B53436CA3598D6B1CF4F60AB77D5B02F3E595081EDD5D879 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
13:41:19.0625 0x0580  QWAVEdrv - ok
13:41:19.0628 0x0580  [ CDF47037A0939F56D11F699629C276AD, A63F2A3FE80FB8084E3870E907505694B79EE1D9E56E292C01D481FEFD2534B0 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
13:41:19.0638 0x0580  RasAcd - ok
13:41:19.0643 0x0580  [ 28C2EA278070EE12701D0EDF8CB0EC36, F10288C1C6835840026DB30285345EF892DE989F43C948E7F4760B8895FF675F ] RasAgileVpn     C:\Windows\System32\drivers\AgileVpn.sys
13:41:19.0656 0x0580  RasAgileVpn - ok
13:41:19.0661 0x0580  [ 7B82197BF35CC3BE59AEF8B706AB8A16, AB0216164A548A48CD21F5F035E57E867584A96890B9887EC08F8DABDD89F990 ] RasAuto         C:\Windows\System32\rasauto.dll
13:41:19.0675 0x0580  RasAuto - ok
13:41:19.0680 0x0580  [ 17E565710172ED71B8531D8822E1C5D1, 0CA39ABD9E544DDAD9D9D7D1FC50444274C31E18F9BF73069051D9F62833698F ] Rasl2tp         C:\Windows\System32\drivers\rasl2tp.sys
13:41:19.0698 0x0580  Rasl2tp - ok
13:41:19.0713 0x0580  [ 28C80449AC9CA09A6DBADF4940C125A7, A827E3A2D7DF67073CCE63C63168B2F4067C7D36E89BB99D4C6F17E46BECEB56 ] RasMan          C:\Windows\System32\rasmans.dll
13:41:19.0742 0x0580  RasMan - ok
13:41:19.0747 0x0580  [ 726857E441D1D67F57694A1B613ABD34, 564027EF2E80F99595282FF76B6D339045B7E9AFE72D8DDF2D6EB0D98C329834 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
13:41:19.0760 0x0580  RasPppoe - ok
13:41:19.0764 0x0580  [ F0F4EEDEEBEE7A4244FAFB96A16B5712, F64717E601BD5EB674003009507B8CDD6F69F00E8670D6895EC64786166A0E8D ] RasSstp         C:\Windows\System32\drivers\rassstp.sys
13:41:19.0780 0x0580  RasSstp - ok
13:41:19.0791 0x0580  [ 1A49C9F966A04D031DAD4C73C49D5288, 05C8690948EAA2A55A208D8D34118C27FD5C7D7AEEF4FAD1346E40BBE586946D ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
13:41:19.0808 0x0580  rdbss - ok
13:41:19.0813 0x0580  [ 79A415E6FA915EFC00297DAB16EC2635, 47BB49F6D756214193D38A4AB182B541AAC180381C3111FF7F9B0AD4C44D8733 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
13:41:19.0827 0x0580  rdpbus - ok
13:41:19.0835 0x0580  [ 7135785C21CA79D270D11037C43D3F19, 654A3C65CF891ED8C82A740D10CF607FC7D709185E664DE03288CEB5B25F03A6 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
13:41:19.0851 0x0580  RDPDR - ok
13:41:19.0858 0x0580  [ 97A61A3CB2B5CB4FC32B3224EF333448, E4F2E8BCEE3639BE57BBC8A8E67FDE42C3A5158F1204684B0ECD216F4AA044A3 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
13:41:19.0867 0x0580  RdpVideoMiniport - ok
13:41:19.0875 0x0580  [ 69BB204AE07EE84ECFAB1BF13C4BD04B, 1CA832CBF4AE4821EEA2A19F9519C2D1D00406B8CCE2A86FE3B33A5F293DB218 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
13:41:19.0888 0x0580  rdyboost - ok
13:41:19.0909 0x0580  [ 940D6F5A2B0A61EE4170DF84F6C95C20, F8EE846DC8015EDFE7CB5BEEDC977EAA9C586BAC2216DE69D8ECCBDBC7408649 ] ReFSv1          C:\Windows\system32\drivers\ReFSv1.sys
13:41:19.0936 0x0580  ReFSv1 - ok
13:41:19.0950 0x0580  [ 13F6B64235C60167052364BF7D99E4CA, BC12EE00775F7456FB922FBD684BF3F0CFABA5BEBB6E162C23B41DED5C20A978 ] RemoteAccess    C:\Windows\System32\mprdim.dll
13:41:19.0975 0x0580  RemoteAccess - ok
13:41:19.0982 0x0580  [ 3183B161B1F05333F6C325577FEF3596, D6A89B2A021377B6F371E5B9EFC36FF018822B28F0ED41F8CD2F00C5C8605707 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
13:41:20.0001 0x0580  RemoteRegistry - ok
13:41:20.0016 0x0580  [ 6FF3A30B1220D939D6120646BD5801F3, A526A24912FC5401E96796E41A4945D549486464067179201BCB25BF53049862 ] RetailDemo      C:\Windows\system32\RDXService.dll
13:41:20.0045 0x0580  RetailDemo - ok
13:41:20.0051 0x0580  [ 5DAA644F17780FC4E3F4820A46D38FEC, 32C27FFA0A4608B164F4E709CD0D998AB73CA9713BE3E47F9DBC7B3D1B6C7453 ] RmSvc           C:\Windows\System32\RMapi.dll
13:41:20.0066 0x0580  RmSvc - ok
13:41:20.0071 0x0580  [ 672724C8B21B7DC56646045DE4D5B860, 79986E80A92C949C543959F1E35647A9788DAB2892AC20B6DEA5C0BBC0CEDE9E ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
13:41:20.0084 0x0580  RpcEptMapper - ok
13:41:20.0087 0x0580  [ 109C1D609951E886D3643B15C1EDD1C2, 347D8E7C50EC7F96217C7421D9BC8A42C9DF50B94169CB58DCF857A63C33C2EA ] RpcLocator      C:\Windows\system32\locator.exe
13:41:20.0098 0x0580  RpcLocator - ok
13:41:20.0118 0x0580  [ 4A7015195E49A3BA7DB967B277B21E9D, 2EE10950BC0E2B13303491725FB3F0D3AF63518B7D1593BCC4BF503F4A11F408 ] RpcSs           C:\Windows\system32\rpcss.dll
13:41:20.0153 0x0580  RpcSs - ok
13:41:20.0158 0x0580  [ 5FF28F097C9699097B473F8FC7C1AA7D, 695560F1DBD85073F3D6CB1FF16F16504CA044EA62E940E463A16BBA8B86E2FA ] rspndr          C:\Windows\system32\drivers\rspndr.sys
13:41:20.0171 0x0580  rspndr - ok
13:41:20.0185 0x0580  [ F9265C902BB9146C6BFF97BDF35C04DE, DC70B404A701CE5F60421F664F745CA84722ED86FAFC87F2A8A71BFD25CD6151 ] rt640x64        C:\Windows\System32\drivers\rt640x64.sys
13:41:20.0213 0x0580  rt640x64 - ok
13:41:20.0217 0x0580  [ B5DAEE69BACA64D2BB004568E22D8756, C0072CF6B438ED756435A182D55AC55F3AD356ACBD483DE06A94893D3CA8CCC5 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
13:41:20.0226 0x0580  s3cap - ok
13:41:20.0230 0x0580  [ EA0D394EF9A9F225A5C4BD6EC83FE78A, 960EE6EC293B7CF62F2E6F49ED197783C7AD860E4DD23BAA0200D300D31E8B56 ] SamSs           C:\Windows\system32\lsass.exe
13:41:20.0240 0x0580  SamSs - ok
13:41:20.0245 0x0580  [ 5EFBBFCC6ADAC121C8E2FE76641ED329, 0EAB16C7F54B61620277977F8C332737081A46BC6BBDE50742B6904BDD54F502 ] SANDRA          C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\WNt600x64\Sandra.sys
13:41:20.0250 0x0580  SANDRA - ok
13:41:20.0254 0x0580  [ 2415052B778693900B61944A09266C41, 5FBFEC29ADCAEA319435146BFAECB391CB9FEB4A03ED502747C8D76A7E530933 ] SandraAgentSrv  C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\RpcAgentSrv.exe
13:41:20.0268 0x0580  SandraAgentSrv - detected UnsignedFile.Multi.Generic ( 1 )
13:41:20.0391 0x0580  Detect skipped due to KSN trusted
13:41:20.0392 0x0580  SandraAgentSrv - ok
13:41:20.0401 0x0580  [ 5E73FB63E2DBC75FE0C17DEB0010CE0E, 9DAC47486262397D03BC01F7438CAB62CF33BD7B5283F5B9548C770A3D6D0ADC ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
13:41:20.0412 0x0580  sbp2port - ok
13:41:20.0419 0x0580  [ 3CD0130FFDEAEACF0905B482F3934EA3, 1EC355B63135FD2563093EBB206741C0C4CCE0551A662F6DC86C875146A88B06 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
13:41:20.0438 0x0580  SCardSvr - ok
13:41:20.0445 0x0580  [ 3FE129F92033059B84885E1F5D458EF3, 87AA6EEA47DD5DC7141DBA7A499594DC7B1E2B315370EA8F5C2FCD1FDF2FEA4C ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
13:41:20.0462 0x0580  ScDeviceEnum - ok
13:41:20.0465 0x0580  [ 3D9A82B03C92D1FEC42CB171D6F57778, DC027F02F5EB5F1D10DB6F405FB0C15D4D5C922445F5F3C916624113278AF072 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
13:41:20.0477 0x0580  scfilter - ok
13:41:20.0497 0x0580  [ D4DB6B318A0A0C74A90260725A228C0B, 57BA2EF9D880488C785C806ABF9EE753A48E589129442D72F815CD6EFFA07B22 ] Schedule        C:\Windows\system32\schedsvc.dll
13:41:20.0537 0x0580  Schedule - ok
13:41:20.0543 0x0580  [ 227A7AAD04CB11116F8B935CA31F0D04, E91A2DAEF7D73115EE957FB546EF43E9610B149D3ECB911E8A687E1259D42D21 ] scmbus          C:\Windows\system32\drivers\scmbus.sys
13:41:20.0553 0x0580  scmbus - ok
13:41:20.0558 0x0580  [ F5923C4B0D5B1EB04CFE145F41A8B0B8, A59E755DA28A474767DE28472DB4F09F6D44A20F8C327D33D8596E56A980E8F4 ] scmdisk0101     C:\Windows\System32\drivers\scmdisk0101.sys
13:41:20.0571 0x0580  scmdisk0101 - ok
13:41:20.0578 0x0580  [ F99E6C664A3D503878DAD628088AF855, C73E0F2F10C42600D98EFB4960ED9B186E8C41F0EDA5EBE9E85DB212AFF5DE79 ] SCPolicySvc     C:\Windows\System32\certprop.dll
13:41:20.0594 0x0580  SCPolicySvc - ok
13:41:20.0603 0x0580  [ 08ED027CD8A43E3412BDD134A43B13E8, F5E0D7CBF2980F4B74056EC4696234F1A24E7CFE945EEB0B250498B1D934721A ] sdbus           C:\Windows\System32\drivers\sdbus.sys
13:41:20.0617 0x0580  sdbus - ok
13:41:20.0622 0x0580  [ F3714DBAA42C15F78FFCDFE4273214EB, 2D018970B92C5F0744FAE10A2FC298F3DCEA5C2EDEB760F4F0651337B9878ABF ] SDRSVC          C:\Windows\System32\SDRSVC.dll
13:41:20.0637 0x0580  SDRSVC - ok
13:41:20.0642 0x0580  [ 120DFCB71D6C502613A9E2D50E16850C, 2C294010AD1C9C380CD5221A37720544178B7358C8C8553AF44055E4CEE5DAF5 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
13:41:20.0652 0x0580  sdstor - ok
13:41:20.0655 0x0580  [ EFD644DD091E1D94555FC3BBC95EA66D, FBDDA6680BEC378CCF12A32D9186020E884DA15A1E789D1531B1E687FC7B54B1 ] seclogon        C:\Windows\system32\seclogon.dll
13:41:20.0667 0x0580  seclogon - ok
13:41:20.0671 0x0580  [ F48535714BED7DD784853889B4594B26, 9B4AB7E7293E79A8F6CC46C84F23E62AD3BD6E958FCE078CDBB125A69FAC7E50 ] SENS            C:\Windows\System32\sens.dll
13:41:20.0684 0x0580  SENS - ok
13:41:20.0686 0x0580  Sense - ok
13:41:20.0714 0x0580  [ CF2AEB951CFC56D4F6CF2D66218B673C, CEA0B0E0251EA198893830080EE4CB8A9F18ADBF1F6FEFFC9C7E8AB4588D0639 ] SensorDataService C:\Windows\System32\SensorDataService.exe
13:41:20.0761 0x0580  SensorDataService - ok
13:41:20.0773 0x0580  [ C09A42163878A082C3F0D0A3DFE95714, 8033DC38D0EDED3758DA6BF8C1955BE5FFE48863C079C589660B37D0E461300F ] SensorService   C:\Windows\system32\SensorService.dll
13:41:20.0796 0x0580  SensorService - ok
13:41:20.0802 0x0580  [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] SensorsSimulatorDriver C:\Windows\System32\drivers\WUDFRd.sys
13:41:20.0819 0x0580  SensorsSimulatorDriver - ok
13:41:20.0825 0x0580  [ E6F00415DADCEEC860E7AB42BFD19A65, 274CAF22F93D43B6DB6953730E3DF8DA94776B24EEE74B80AB4CD780BC1366A9 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
13:41:20.0840 0x0580  SensrSvc - ok
13:41:20.0845 0x0580  [ 401D706DDC0A7AF18C3DD228ADF74551, 27C0B38D7C2E3F6FF06201124E63483931F6071954B2B99EC0143C464238C0B7 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
13:41:20.0854 0x0580  SerCx - ok
13:41:20.0860 0x0580  [ 7084D11083F0CDCA8B5C76F9846ABF5D, F639920882B0E784D8CFAF0D4C0F0C411937B6831E5DD99B0ABFBFE06BA4742F ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
13:41:20.0871 0x0580  SerCx2 - ok
13:41:20.0875 0x0580  [ 3FF478A8ED32A83C36581425F6282B6C, 787646A17098EA7CF36064D0A950C1D470D4A280C8C5AC40023D566E53860EAE ] Serenum         C:\Windows\System32\drivers\serenum.sys
13:41:20.0885 0x0580  Serenum - ok
13:41:20.0889 0x0580  [ 92509187AA171A80521528B36F753E1D, FE0DA272B8A155ECC161E99586C4AE7EE17B1C84BC330DA1566C83B8E03FA825 ] Serial          C:\Windows\System32\drivers\serial.sys
13:41:20.0902 0x0580  Serial - ok
13:41:20.0905 0x0580  [ 433D38FF6D08B993847EA2A10EB8CB52, 29BA75DB6D1AC761BBDFB5AC8874FC7D763E1CD10D290E369063B34CE951270F ] sermouse        C:\Windows\System32\drivers\sermouse.sys
13:41:20.0916 0x0580  sermouse - ok
13:41:20.0929 0x0580  [ 82CF273F0E8F243789683DEB40757569, 5433D93A41C4BF04494E6158931C6AC3154888F7CD3A417253EC02FF7EA6D00E ] SessionEnv      C:\Windows\system32\sessenv.dll
13:41:20.0950 0x0580  SessionEnv - ok
13:41:20.0953 0x0580  [ 697D3EE0740AEAB62B66ABCA1C83D13B, FCF54A0071ED04AD3FC8551C67FE5FD49089DC0510F753052CAC5972A65C9E3D ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
13:41:20.0964 0x0580  sfloppy - ok
13:41:20.0978 0x0580  [ E38BE81F0F6D9C74E420A82BC6A02AFE, 25D7594FD1BE0B303F9777ACBA702ACD0C27B00D21F82659989C40636851A330 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
13:41:21.0003 0x0580  SharedAccess - ok
13:41:21.0018 0x0580  [ 482E6BE8A07832E824080D352075ACA1, 4123A76C8E805AF4FE229C53E9C174095C0937913BA81A63FE9B45C44AA5B15F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:41:21.0051 0x0580  ShellHWDetection - ok
13:41:21.0058 0x0580  [ CF3BDF9EAD8D3EF671E9339B44B185BA, C17EC6D5B00F49D9C8B5B6C262A85F34ED71C58450659F006B3632AA84F68E23 ] shpamsvc        C:\Windows\system32\Windows.SharedPC.AccountManager.dll
13:41:21.0074 0x0580  shpamsvc - ok
13:41:21.0078 0x0580  [ 8C61B219882C9C9ECA09BEDB82B0DDB1, 711681040D9CD93D603F55AB8D62371F5D51917C14818F27859E23E2D60EB18F ] silabenm        C:\Windows\system32\DRIVERS\silabenm.sys
13:41:21.0089 0x0580  silabenm - ok
13:41:21.0093 0x0580  [ 2641655FAD6C1EA0F3677978E2BF28C1, E703CE74D09E901BF531589E181DCF95B9C63E09FE1B99E38DEA9EE47EE458BA ] silabser        C:\Windows\system32\DRIVERS\silabser.sys
13:41:21.0105 0x0580  silabser - ok
13:41:21.0109 0x0580  [ A34CE1830E45DA98932295FDE4B7908A, FC553ECF4D64B4B10B7FDE5352707785517A18D487A80665BAFC7261E3F35CDC ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
13:41:21.0118 0x0580  SiSRaid2 - ok
13:41:21.0122 0x0580  [ A7B5C670770E908DA5FEF5BF1136E933, 8D3BB6FF65E631C34BE8EA766481B2FDB2E1E916A4FD67F86705A8975A136E6C ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
13:41:21.0131 0x0580  SiSRaid4 - ok
13:41:21.0135 0x0580  [ D233EAE2A9D48485321816486ED635EF, 03AB49BE9CF15EB7EDC50C400E673B4DF0E5BFDA9A7811E157F2AF2F3CF38D49 ] smphost         C:\Windows\System32\smphost.dll
13:41:21.0146 0x0580  smphost - ok
13:41:21.0160 0x0580  [ 0B217141AC1283655402CDB356577735, 6EFA4CA46CFC8B7156CE7E5CA89B7F7073E16D66C2FC13F4DB95FEB78CCF698F ] SmsRouter       C:\Windows\system32\SmsRouterSvc.dll
13:41:21.0189 0x0580  SmsRouter - ok
13:41:21.0195 0x0580  [ 01275E832DB5A5159379A9C67AF51BBF, 0335D361C19562E89052DDEDCDBD1825E64DF04F723CFF7D8D1C1CE9B89D12AB ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
13:41:21.0207 0x0580  SNMPTRAP - ok
13:41:21.0221 0x0580  [ C933E0DC14AA0B09B2D49F01CE10674B, 83F6D04765B7B7A2016415BAE169164B0E62B4FD994C276F13630A9C0D0E6C90 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
13:41:21.0241 0x0580  spaceport - ok
13:41:21.0246 0x0580  [ E03264C4C25B568F92ED1656AD541E64, D42942BFFBC7213D204FAF84F4FE015FC23A6ACB29B5E752834EDBC17A3AC20D ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
13:41:21.0256 0x0580  SpbCx - ok
13:41:21.0275 0x0580  [ 1DFE222F8D6A422B7ADC909E0C8840DA, 96761691CF4447710D65573044A1005F2F0F89443DF581A30B97D7944940BB70 ] Spooler         C:\Windows\System32\spoolsv.exe
13:41:21.0307 0x0580  Spooler - ok
13:41:21.0427 0x0580  [ 23529A00195CE71252FEBF647E56E27D, 8ADF7A1C96DAE005E9A974D90BE8954F88D49B6848252B88513C49E0A3BD9774 ] sppsvc          C:\Windows\system32\sppsvc.exe
13:41:21.0552 0x0580  sppsvc - ok
13:41:21.0568 0x0580  [ 2E0F160AFE1EB7E8C21D6FE782FFFE0B, 0CA845468E42F0448FD7BECFA4E75E8548E20CAAA0DE0C37FFFACF7EB16CE0DE ] srv             C:\Windows\system32\DRIVERS\srv.sys
13:41:21.0589 0x0580  srv - ok
13:41:21.0606 0x0580  [ A0BDA7332A9EE59062A7037D161C8715, C08818E52B64BDB194A2434C3F479360C960A99AD08F81CF51D64B7D92EBE0CB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
13:41:21.0635 0x0580  srv2 - ok
13:41:21.0644 0x0580  [ F13EE0DB1FB1D6946AC3228D7EFCFC8F, 109A809F0338FAB0F4045FA5EE33C6F0A994A9F586B2FBD8920A6AABA0E0EF66 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
13:41:21.0660 0x0580  srvnet - ok
13:41:21.0667 0x0580  [ 44758105AB3EA34E815D4B6CA1153311, 7F223A20D2538C123BAC6F75BE0E126876A116F09502FD980C05B8916E26E1B7 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
13:41:21.0685 0x0580  SSDPSRV - ok
13:41:21.0695 0x0580  [ BE9AD856DC28955E5933553421F99DFD, F60B5429B50CFAA6D336D8384BCD16FF262ADBCD997A5CB9CD9BCC06B67C96F8 ] SshBroker       C:\Windows\System32\SshBroker.dll
13:41:21.0715 0x0580  SshBroker - ok
13:41:21.0723 0x0580  [ 284FB23A402836877FBCD735E0C07A7E, EA47FD98220DFA80B78D4E747602FD6D39DCAD54030EB8E478DA4EA6C9B1DC68 ] SshProxy        C:\Windows\System32\SshProxy.dll
13:41:21.0741 0x0580  SshProxy - ok
13:41:21.0749 0x0580  [ B97C7EC07218A8002323718202BF5E77, 39D3254383E3F49FD3E2DFF8212F4B5744D8D5E0A6BB320516C5EE525AD211EB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
13:41:21.0766 0x0580  SstpSvc - ok
13:41:21.0772 0x0580  [ F0B59ADCD06BCEB9D47311B7041CA2C9, 6299AB514CBE153C875F083ED789F6205C1781C0178759521F5A6D8007F5257C ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
13:41:21.0781 0x0580  ssudmdm - ok
13:41:21.0799 0x0580  [ 46826B02C346D48A62FF11882AF662BB, DE8FAD3E99D0E90CE8ABA15D604CF1E80F16C9E4B92F1A41A63D56CF7D96A414 ] ss_conn_service C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
13:41:21.0817 0x0580  ss_conn_service - ok
13:41:21.0899 0x0580  [ 4E330AD1EED4A5D582EE415FD55953A2, 2C02E1F45F74D250110BA5117AA942495CB2EBAC7F2CCECC284B4FB8F47B13E1 ] StateRepository C:\Windows\system32\windows.staterepository.dll
13:41:22.0023 0x0580  StateRepository - ok
13:41:22.0031 0x0580  [ 29D26E1347AE1BBD4201014E19880B2C, 9E2153AD96CE4F189EEE43BB02515532C619FB1CA02D8F6DEF517AC3347AAA14 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
13:41:22.0039 0x0580  stexstor - ok
13:41:22.0054 0x0580  [ 505F32DE573ECEDF398DB9E2FC0D5E45, 0F257200BD79C7A62C39279B1C0AF9032028B23561DB71DA9903366A0DF88E5C ] stisvc          C:\Windows\System32\wiaservc.dll
13:41:22.0084 0x0580  stisvc - ok
13:41:22.0090 0x0580  [ 6BC6023E866489D22CE30E18846B80D9, FD0D13332F3E267524A9FA7FEC128298D4905722807C172AE8E3DFE445C28DB1 ] storahci        C:\Windows\system32\drivers\storahci.sys
13:41:22.0100 0x0580  storahci - ok
13:41:22.0104 0x0580  [ C5E0ACE4771F5575D9D5B457ABF3AD03, 365880BC5AC313F25C313EFB7758301F98D9B2BF4C5FC9499F98C2B7F8407D96 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
13:41:22.0113 0x0580  storflt - ok
13:41:22.0117 0x0580  [ 53D13EA98FDB37DBF8749E950CFD9EAD, 93122D9F4884154364384E1ABC5637540EE8BD5AF4D3E97B744D1FE5552A7AD6 ] stornvme        C:\Windows\system32\drivers\stornvme.sys
13:41:22.0127 0x0580  stornvme - ok
13:41:22.0131 0x0580  [ BEBF85EB4D90E6996047DA027D0ED26E, DF109CF0F07CDD1B9B702C2A076D4DD5366DAAD971CC9359AF0358E79981706F ] storqosflt      C:\Windows\system32\drivers\storqosflt.sys
13:41:22.0143 0x0580  storqosflt - ok
13:41:22.0154 0x0580  [ B91FBE7CB4633FEB32AFBD0B48576396, 9EFDD92E8096CE5555F8DC3C870864E5515469603C2373B99B3607234633CA66 ] StorSvc         C:\Windows\system32\storsvc.dll
13:41:22.0177 0x0580  StorSvc - ok
13:41:22.0181 0x0580  [ 8E73037A6F8938475692FFCC26EBF385, F78C5CD1A3CD17AA831EEC82426B14006B4DDBC9085A4814E04E8C37FD6B05F7 ] storufs         C:\Windows\system32\drivers\storufs.sys
13:41:22.0189 0x0580  storufs - ok
13:41:22.0193 0x0580  [ 9D9DED47DA10E845EFF2DD57C94C809B, 520D0CE7A867051B80C8141E351FE5A5BCE3C99776093F234DB77D3407B1F104 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
13:41:22.0202 0x0580  storvsc - ok
13:41:22.0205 0x0580  [ 224C92E442B1B8C20C274332F1ACF00D, CDE5DCFB7A21089464A6E2ABB29BBE08B184C3433C218756AA5902A8F67C0B2C ] svsvc           C:\Windows\system32\svsvc.dll
13:41:22.0219 0x0580  svsvc - ok
13:41:22.0222 0x0580  [ 505E0C40B5D0ADDCBB414640F59BD2E0, DF4B5E65FE6FF2224F298A2A2FAC9B648C082DFF8463148633647580A9FAD34D ] swenum          C:\Windows\System32\drivers\swenum.sys
13:41:22.0230 0x0580  swenum - ok
13:41:22.0242 0x0580  [ 2EE27411B5904C63D723BEA391819F58, C88C11D460E90398E16011B8A2CED5EE5626084F24790EA6115532F8F70060C6 ] swprv           C:\Windows\System32\swprv.dll
13:41:22.0267 0x0580  swprv - ok
13:41:22.0272 0x0580  [ 32F46FB0F290D16DAA452B289C985795, 73F88AAAA6026DB4C27F1D054145216DCC3F1960946FB2A7A90518DD1D5737CB ] Synth3dVsc      C:\Windows\System32\drivers\Synth3dVsc.sys
13:41:22.0283 0x0580  Synth3dVsc - ok
13:41:22.0304 0x0580  [ FED48B19D6F55D7A3AB498D85729D1BA, FA5E0E02BC2E2DE108C55991E3B063CC947072228B53539F42F922661510DE7C ] SysMain         C:\Windows\system32\sysmain.dll
13:41:22.0347 0x0580  SysMain - ok
13:41:22.0359 0x0580  [ D9FEA79BF6AF136F8E656AE045C2FEC8, E6F08A93348E035185F0F1C6B6277E636F4F25D1136E3ACCA63488DAEEC7114B ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
13:41:22.0380 0x0580  SystemEventsBroker - ok
13:41:22.0386 0x0580  [ 86E7FD5C8DBEC1EB51C4368561402B75, 86EE61414CD5854E39E33F67BF5DA4377B569B3ED4D18882C470BC6784891DA1 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:41:22.0402 0x0580  TabletInputService - ok
13:41:22.0410 0x0580  [ 3929C8FC134AC672C4F3F85160956257, CD3195CA58BA6F55EA0DDA2BE6AB58280AD1CA488D7AAA1539DD05FB99374F36 ] TapiSrv         C:\Windows\System32\tapisrv.dll
13:41:22.0429 0x0580  TapiSrv - ok
13:41:22.0478 0x0580  [ 90F942B1D2B6F99B106833F417E8654F, 5CC7419A9356E0BE16BEE21A5D7B6EF2E5951581F6584EA84F9FED45DD44BA72 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
13:41:22.0537 0x0580  Tcpip - ok
13:41:22.0591 0x0580  [ 90F942B1D2B6F99B106833F417E8654F, 5CC7419A9356E0BE16BEE21A5D7B6EF2E5951581F6584EA84F9FED45DD44BA72 ] Tcpip6          C:\Windows\system32\drivers\tcpip.sys
13:41:22.0653 0x0580  Tcpip6 - ok
13:41:22.0660 0x0580  [ 14A6ED9AD702CE1F1CE34756EB41834F, 3BD985C9EBBA12BF66D0492F21D3551888DB612BDB736B11B7C7B0E475A8314A ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
13:41:22.0672 0x0580  tcpipreg - ok
13:41:22.0678 0x0580  [ 0E9EC7550A76347EA677761155494ADE, DE97C6F35B5FA76A35C9C79312264B3A91043B8A46CD09CE91909E2FCC66076D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
13:41:22.0688 0x0580  tdx - ok
13:41:22.0695 0x0580  [ 29046F0A1DC787180A4375EB9304230A, 3E0A54B9137346F6F6F3370B9ABDA69624B9C4D4C5BC6098D21B88E908EC024C ] Te.Service      C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe
13:41:22.0704 0x0580  Te.Service - detected UnsignedFile.Multi.Generic ( 1 )
13:41:22.0825 0x0580  Detect skipped due to KSN trusted
13:41:22.0825 0x0580  Te.Service - ok
13:41:22.0829 0x0580  [ 06130AFFECEB94525FC2352936576B70, 10EBE2C8FDC087D29E2FFB328F0F7905A5374AB8CC9FAE8699E7676DBC8CBF91 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
13:41:22.0838 0x0580  terminpt - ok
13:41:22.0859 0x0580  [ FB68E5F02316C42BE7282DA492351C6F, AC31D841FEA58B776127E138DB20F8D48E26FD8C00CE2FA9695EA14EBF159A0A ] TermService     C:\Windows\System32\termsrv.dll
13:41:22.0897 0x0580  TermService - ok
13:41:22.0902 0x0580  [ 2AF438EC0D361A7BBB70E604A686602C, 4BE6A0461EB2CB94288614434A1CEC81C2ED46241721FD5BBD8ABE0680F7C804 ] Themes          C:\Windows\system32\themeservice.dll
13:41:22.0921 0x0580  Themes - ok
13:41:22.0929 0x0580  [ 1482B8ED5CACA87992A882B853B83CEE, 613247F0E362A109090E8563D977DECC50C64D45D6962905FA84A2D59329045C ] TieringEngineService C:\Windows\system32\TieringEngineService.exe
13:41:22.0950 0x0580  TieringEngineService - ok
13:41:22.0964 0x0580  [ A9965F69CBD9D4CF42D34D502EFE34DE, 365D361CB1B99A846A07500DA06F99925C5C0096561EB005DAB936F70F98B249 ] tiledatamodelsvc C:\Windows\system32\tileobjserver.dll
13:41:22.0991 0x0580  tiledatamodelsvc - ok
13:41:22.0998 0x0580  [ C1F8CBE2D4843E0CCC3EFEA2EC60D4AB, 9D07527D982066922318C77AECE99280DE55034C375ACE145E827A6BEB5C3B70 ] TimeBrokerSvc   C:\Windows\System32\TimeBrokerServer.dll
13:41:23.0014 0x0580  TimeBrokerSvc - ok
13:41:23.0020 0x0580  [ 46171262D0E806779DEEDFCAB2F830CC, 7F4A4658B8BA217D99E5B5C0E01600C20DC96ECBCA32A5BA7FBE17D2A7B8BFD8 ] TPM             C:\Windows\System32\drivers\tpm.sys
13:41:23.0033 0x0580  TPM - ok
13:41:23.0038 0x0580  [ 3B91F35089240F6187AD681A5EC28BDE, 3D035CB73BC8E7831DCD0FB7D9DAD91CE51D3D0F9D9C8B866A0009BD508B6702 ] TrkWks          C:\Windows\System32\trkwks.dll
13:41:23.0053 0x0580  TrkWks - ok
13:41:23.0058 0x0580  [ 09440FA30C020B4443391FAFCF4876E3, 208C7725F70C75D8C96CCAF5B22F83B8B1C66D8C9FFF48465B1C9F4A77425569 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:41:23.0072 0x0580  TrustedInstaller - ok
13:41:23.0077 0x0580  [ A6F4025664C9D4BC2A9EDAB4092706D7, 89808A1679C0E716F86F06EE7701DCC289200894F0FA1F120DA2AC3A45FDB312 ] tsusbflt        C:\Windows\system32\drivers\TsUsbFlt.sys
13:41:23.0088 0x0580  tsusbflt - ok
13:41:23.0092 0x0580  [ 37A96AD493E110C0BF1EE0AC0F9E7DBD, F2A6894A4AEE18DF2B92222CDB0801A13AEEB7212071F0431430788339B30E23 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
13:41:23.0103 0x0580  TsUsbGD - ok
13:41:23.0108 0x0580  [ 5A91FDBA4D3FCB56DAEB8C091B3EB8E1, 8AB91F4423125267FA8509A1C3A9AD1CBD642FA6A96D8789F9AB8CB75ABAD58C ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
13:41:23.0120 0x0580  tsusbhub - ok
13:41:23.0126 0x0580  [ 79E264287F17D56D768440B0270466DE, ABF9DC95C5E939B30BFD9BF9EDFDB3BD78A9DFCB055B945965303B6A60E6D7A7 ] tunnel          C:\Windows\System32\drivers\tunnel.sys
13:41:23.0140 0x0580  tunnel - ok
13:41:23.0145 0x0580  [ 13781908186770ABE9F8EBCC2B45B138, 4BEC8466254E0C6492CC55CE344A6173878CFA040238C6BE5842E5209F066DEE ] tzautoupdate    C:\Windows\system32\tzautoupdate.dll
13:41:23.0159 0x0580  tzautoupdate - ok
13:41:23.0163 0x0580  [ AA65954F512BA097DD190790876DD991, C1BB2B8F54F064D01190327B5E7949EBBDA21D6FC6F94D9FCD20F685C2F855FA ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
13:41:23.0173 0x0580  UASPStor - ok
13:41:23.0178 0x0580  [ AB6268022C3A5B529075A39C33904DA6, 2717F1704640201F2681711543EA39A74C3E89C7DB232EC5DD89FD8AA6F07846 ] UcmCx0101       C:\Windows\system32\Drivers\UcmCx.sys
13:41:23.0190 0x0580  UcmCx0101 - ok
13:41:23.0195 0x0580  [ 7ED2EDA43D21C7A5F589A7960E265C52, 7DB8A595236FBB8A264D7AB155201357212855050ABB5B1036EF32F1223FDCC2 ] UcmTcpciCx0101  C:\Windows\system32\Drivers\UcmTcpciCx.sys
13:41:23.0208 0x0580  UcmTcpciCx0101 - ok
13:41:23.0212 0x0580  [ 169351463039B45F5CDED9768879F712, 990C8C4AEF9ED7FF6BCEAE67F7BDAA037777B142B8D96A74F8715C941A5C63C6 ] UcmUcsi         C:\Windows\System32\drivers\UcmUcsi.sys
13:41:23.0222 0x0580  UcmUcsi - ok
13:41:23.0229 0x0580  [ 08A9E3AD29B215484FBB68CDC175DF3A, 3EFFF99C3BC4A1454E3D2B5177AE587ED3041AB4CE2A95BA7E28A2124E38E1E5 ] Ucx01000        C:\Windows\system32\drivers\ucx01000.sys
13:41:23.0241 0x0580  Ucx01000 - ok
13:41:23.0245 0x0580  [ DA70AEE267491AA56BC63AA0C0C96CA2, 0A0AADB27607F9292BB3CE000CFDDB19BD4CA09EAAD926C4925CB43B17817AD9 ] UdeCx           C:\Windows\system32\drivers\udecx.sys
13:41:23.0256 0x0580  UdeCx - ok
13:41:23.0265 0x0580  [ FBC5ECF6D5A868D0B116C2DBB02B8168, 945AA76C60ABAD6075B5C8F9172C018F75BCF393A1CB8B329F5E68E664627775 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
13:41:23.0287 0x0580  udfs - ok
13:41:23.0291 0x0580  [ B918E40FAA9CD118CCA4AD388B748C98, 4B539B7B656F02C5E5BAEE52A677757B05CC11C5500D619850A564C28FAB8115 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
13:41:23.0299 0x0580  UEFI - ok
13:41:23.0303 0x0580  [ 166B17AE1DD24D8BA8CA474C7C31148F, D34E786277093278F58EFAC957279DC4ED43A190538C875B80F5B1E0A0C30381 ] UevAgentDriver  C:\Windows\system32\drivers\UevAgentDriver.sys
13:41:23.0311 0x0580  UevAgentDriver - ok
13:41:23.0336 0x0580  [ FCA4D901FB9934DAB82ED31C4EE89A11, 8EDF8DD71C13DE77AC83D1086670E9E90C69DE379F1CF768C8B9C789254C04AA ] UevAgentService C:\Windows\system32\AgentService.exe
13:41:23.0380 0x0580  UevAgentService - ok
13:41:23.0389 0x0580  [ 0FD75222C1AD2687AB365BEBEA400DD4, AD10DBCA59EB7D34FD8F963CE267F36774A9BC613F8D637903B12AC88C328E8A ] Ufx01000        C:\Windows\system32\drivers\ufx01000.sys
13:41:23.0403 0x0580  Ufx01000 - ok
13:41:23.0408 0x0580  [ C1A78C53E01C641AE41BFA65797819F5, 0B9FE1BD724B3315199A1B1DA2F03255E4FE744DA3CE6CD0F77699A8E42E9359 ] UfxChipidea     C:\Windows\System32\drivers\UfxChipidea.sys
13:41:23.0418 0x0580  UfxChipidea - ok
13:41:23.0424 0x0580  [ 767307212110EBEFB93EC9A5BE9E85B9, 368797400FE54802CE74F34B773CE2AF09EB8DEA6C035B55419A52F0B5A6FAD0 ] ufxsynopsys     C:\Windows\System32\drivers\ufxsynopsys.sys
13:41:23.0435 0x0580  ufxsynopsys - ok
13:41:23.0441 0x0580  [ 8578F83EC5175920F2D8586FFF9DCE47, 049A16AC87F93E761150C8286633FFCA62EE85F5645DDE77D36BD0EB6481FF83 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
13:41:23.0455 0x0580  UI0Detect - ok
13:41:23.0459 0x0580  [ DC460AAA18CA2342FBBFB2DF9B044472, 14D45E059C596AE97506D26705F248CA1C2269160B31A60341060E8A93146CBD ] umbus           C:\Windows\System32\drivers\umbus.sys
13:41:23.0471 0x0580  umbus - ok
13:41:23.0474 0x0580  [ C3CF0377917ECE6D65D7623E1E61568F, 4909695E04CBC86BFCFFBC15F332C367521054B7B4D3C141C7CA6B2E40E090B9 ] UmPass          C:\Windows\System32\drivers\umpass.sys
13:41:23.0485 0x0580  UmPass - ok
13:41:23.0493 0x0580  [ 640CF093C1CF16D5FD317616CA348F31, BEC34D1AACA83BF5A84CE01F6A668E3CA5A33C56A446DC42EFFF7C43D22E1AE6 ] UmRdpService    C:\Windows\System32\umrdp.dll
13:41:23.0512 0x0580  UmRdpService - ok
13:41:23.0538 0x0580  [ 6C8E89E9CA8A4E703631E54A5E015AF8, 3C74B9329558ACC4F701099516923DE82CBEDABD8814987221BDF71B53550586 ] UnistoreSvc     C:\Windows\System32\unistore.dll
13:41:23.0582 0x0580  UnistoreSvc - ok
13:41:23.0597 0x0580  [ 6CDA3536F6BAB7896A57EAB7DC07F379, 8FBE6457ECD1ABB518D9800EBA8A017774FFAA8EABD2EDC0825181A12FE9AEF6 ] upnphost        C:\Windows\System32\upnphost.dll
13:41:23.0625 0x0580  upnphost - ok
13:41:23.0628 0x0580  [ 6B46FC140C9AF68E6E7697D66D59CB4D, F018B4784D65F1A8140A6EA69C35D6A7ECE01738694052FD54AFD2B81A8F2FF8 ] UrsChipidea     C:\Windows\System32\drivers\urschipidea.sys
13:41:23.0637 0x0580  UrsChipidea - ok
13:41:23.0641 0x0580  [ B4402E7F0923F660270442CE76877ABE, 1C2DD26EAB71F75EA576E8DAABAF71FD7DC3DF807CF025617C774CEF33C0B718 ] UrsCx01000      C:\Windows\system32\drivers\urscx01000.sys
13:41:23.0650 0x0580  UrsCx01000 - ok
13:41:23.0654 0x0580  [ 9DD431F1B94789CFB527E5D19261F124, 8F5A249A97C5B14B282E3147DD21951D2AD34B651E762814C12F4C26D74EC70C ] UrsSynopsys     C:\Windows\System32\drivers\urssynopsys.sys
13:41:23.0662 0x0580  UrsSynopsys - ok
13:41:23.0683 0x0580  [ E950FEC1A2B880DEB7A9058DAB8650CA, 6F311BA21BF41424B3598AD115DA31C004D88DA9CC4B123777C8F78220143B48 ] USB28xxBGA      C:\Windows\system32\DRIVERS\emBDA64.sys
13:41:23.0707 0x0580  USB28xxBGA - ok
13:41:23.0743 0x0580  [ 0E216A5B7EDCEAE7BD4D6986045ADA57, E0F5DD15EB1662418A58E84A6971DDB499BF3DDC8F5527ADF671816C45F50A6E ] USB28xxOEM      C:\Windows\system32\DRIVERS\emOEM64.sys
13:41:23.0781 0x0580  USB28xxOEM - ok
13:41:23.0788 0x0580  [ 93F169DE94DBAC5DAF4755AFF10193DD, 381E6751EB97426B9BF30929E4B82A665D1ED985DA60BE18D3C17CF2BB41F848 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
13:41:23.0802 0x0580  usbaudio - ok
13:41:23.0808 0x0580  [ C87E32B90F085970D9637FBAD45EF6FE, C180EACD2EE479277DA5DBF39E43B428BD7945141B2451CB3946B0C1E495E76F ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
13:41:23.0820 0x0580  usbccgp - ok
13:41:23.0824 0x0580  [ 0B663856474AC41924D9E9112203858F, 9E09F2A6279B48CAC09F8C7AA1F1BE02864D540C2ED1460CBA9FABCF0A546A1E ] usbcir          C:\Windows\System32\drivers\usbcir.sys
13:41:23.0836 0x0580  usbcir - ok
13:41:23.0841 0x0580  [ F83D2250256203AC5DA5E8601C1AFDD7, AC0D90E2DB3051798B9D287CF3D0E92FED4000822E65A82775A29CF896B76F04 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
13:41:23.0850 0x0580  usbehci - ok
13:41:23.0863 0x0580  [ 7FFD26742321919590ED77FCA556D65F, F7FAB63C36F8519F5A7B9091C507F3CB580C390322FAF9155CCE7F66C965B968 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
13:41:23.0881 0x0580  usbhub - ok
13:41:23.0894 0x0580  [ 7A749B2863B5561BE34B39E8E249AD8F, E5B67DFAF5407007FD0CC408D6B4BA19DF59584819FC715E9F9E0FBF3EA00AAB ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
13:41:23.0913 0x0580  USBHUB3 - ok
13:41:23.0918 0x0580  [ D2109F1F4FEBF1DAC415CDC5DE876479, C8A871EBD0E5EF004BA622A73DAC36C03608CD317FDCD0A6A98608DF4CC10D55 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
13:41:23.0928 0x0580  usbohci - ok
13:41:23.0931 0x0580  [ 29C9572F2D061CFC3C0BD48A3163E343, 2527DCC9E6D421F5DC40051C787A5270EB077746785465C9AA2A2AEEF47307D5 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
13:41:23.0942 0x0580  usbprint - ok
13:41:23.0946 0x0580  [ 429477D6DEF3321FF7D3EF23CAAADA00, BB7D2AFE99736AAFFA8B0B2DABF7D6A6D5CB9563B1DE6A7E86CE7DC9D27F31C0 ] usbser          C:\Windows\System32\drivers\usbser.sys
13:41:23.0957 0x0580  usbser - ok
13:41:23.0962 0x0580  [ 529634743FB9D72BDC27F2AF02F3260C, 14F9C929C389D23808E34CE9332E6775314FE338CB586B54B83C616310DBBC6F ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
13:41:23.0973 0x0580  USBSTOR - ok
13:41:23.0977 0x0580  [ C917D09064CDBD18F75ADC9B2C48F847, A7F6223346CCD7E84186CD0C0715014F8E3A4398298925A43290224678620D23 ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
13:41:23.0988 0x0580  usbuhci - ok
13:41:23.0995 0x0580  [ B4F448F2424492F99F83D3676A453553, 42F1396616EA93BF91EA847B185C321B189F1A5138CA19D22397E8DB6D576973 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
13:41:24.0011 0x0580  usbvideo - ok
13:41:24.0021 0x0580  [ 58827BEFC54D4396D3FD191F5DD31C1D, 0054D6945FDB5B33B35753FF70ED22EF6C518B31AB97D5FCBBD6C60921F64A13 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
13:41:24.0037 0x0580  USBXHCI - ok
13:41:24.0068 0x0580  [ A39AFDD26E6F2E5595FF2D3997D7E1FE, 30DE54033DE437C16A069602529E63FF971AF0ABB383885E47B4DF5E0F8483AE ] UserDataSvc     C:\Windows\System32\userdataservice.dll
13:41:24.0119 0x0580  UserDataSvc - ok
13:41:24.0143 0x0580  [ F8888D8CCECAA7B77CCAEABA901AB874, 51816968A33CC42778CC9C0B714CF2F6822237DCDCBC29601EF399FBE5925169 ] UserManager     C:\Windows\System32\usermgr.dll
13:41:24.0182 0x0580  UserManager - ok
13:41:24.0196 0x0580  [ F1374B17FE4A4617DFB6D20A0E699763, C3A515594B1593C9F141C342CA1CDB4FE7A3243D8F1785655A3378DB1FE8ED65 ] UsoSvc          C:\Windows\system32\usocore.dll
13:41:24.0222 0x0580  UsoSvc - ok
13:41:24.0227 0x0580  [ EA0D394EF9A9F225A5C4BD6EC83FE78A, 960EE6EC293B7CF62F2E6F49ED197783C7AD860E4DD23BAA0200D300D31E8B56 ] VaultSvc        C:\Windows\system32\lsass.exe
13:41:24.0236 0x0580  VaultSvc - ok
13:41:24.0241 0x0580  [ 0CBDE344FB48E42D78E29469F202ADBC, A1C3FBA5409DD3BBEAF1D3CE2583D6C8A621C0E4F534155EC540AFD67BC9E8CA ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
13:41:24.0250 0x0580  vdrvroot - ok
13:41:24.0265 0x0580  [ 70D165B3EA8BC576828DC2B964C8D116, 92C9381BDECB5C991F848A02AF2F4189CE0119961FB37E57A37594A80704DDC5 ] vds             C:\Windows\System32\vds.exe
13:41:24.0301 0x0580  vds - ok
13:41:24.0308 0x0580  [ 723195568C8755CAD57F7933C5F2C5C2, 5C403799F67223605F825BC16D217C1EF5E1A0DDF00AC6380FE8976339B67D9B ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
13:41:24.0320 0x0580  VerifierExt - ok
13:41:24.0337 0x0580  [ F7F3E80E84E51A6F89831A6F26056A98, CB7587900C466D834693115E1E23D0A44490C128CA1684FB93CB8C34AFCEBC71 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
13:41:24.0360 0x0580  vhdmp - ok
13:41:24.0366 0x0580  [ 7929228F0E8B0C2FA0495A17A4FC27F6, 1F1667B10A96B1D85ED165F62A5C0EF28C37F828B8280EA08BFCC1BAC03F2C90 ] vhf             C:\Windows\System32\drivers\vhf.sys
13:41:24.0379 0x0580  vhf - ok
13:41:24.0383 0x0580  [ AEE432ED868831B1F068E373598F6D93, BAE91F47B0CB94B826CA010B490AD924D7B715911DF3FCE62F9165F3B571105C ] vmbus           C:\Windows\system32\drivers\vmbus.sys
13:41:24.0393 0x0580  vmbus - ok
13:41:24.0397 0x0580  [ 9444B23FC694B5F90F21B0FC7F10D8DD, 86F92856F5C985DD8E5993B51E85E1F47EF8C9B2FB37468998C94266963BB4BD ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
13:41:24.0407 0x0580  VMBusHID - ok
13:41:24.0410 0x0580  [ 4D0287F566B36536DD812A54C015FC4A, 01D6508CA59CF04A47902B1F7C202FD14A81240E0B447588D919DD1072B040CF ] vmgid           C:\Windows\System32\drivers\vmgid.sys
13:41:24.0420 0x0580  vmgid - ok
13:41:24.0429 0x0580  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicguestinterface C:\Windows\System32\icsvc.dll
13:41:24.0447 0x0580  vmicguestinterface - ok
13:41:24.0455 0x0580  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicheartbeat   C:\Windows\System32\icsvc.dll
13:41:24.0473 0x0580  vmicheartbeat - ok
13:41:24.0481 0x0580  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmickvpexchange C:\Windows\System32\icsvc.dll
13:41:24.0499 0x0580  vmickvpexchange - ok
13:41:24.0509 0x0580  [ F70DCCE72343449F0D12A0A92282B019, 3EFA99519387BE38C1CB482F1BFC9ED449BE9A5BD86883A1002725B8D4A5ECC1 ] vmicrdv         C:\Windows\System32\icsvcext.dll
13:41:24.0529 0x0580  vmicrdv - ok
13:41:24.0538 0x0580  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicshutdown    C:\Windows\System32\icsvc.dll
13:41:24.0556 0x0580  vmicshutdown - ok
13:41:24.0564 0x0580  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmictimesync    C:\Windows\System32\icsvc.dll
13:41:24.0582 0x0580  vmictimesync - ok
13:41:24.0590 0x0580  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicvmsession   C:\Windows\System32\icsvc.dll
13:41:24.0608 0x0580  vmicvmsession - ok
13:41:24.0618 0x0580  [ F70DCCE72343449F0D12A0A92282B019, 3EFA99519387BE38C1CB482F1BFC9ED449BE9A5BD86883A1002725B8D4A5ECC1 ] vmicvss         C:\Windows\System32\icsvcext.dll
13:41:24.0636 0x0580  vmicvss - ok
13:41:24.0641 0x0580  [ 29075915F9BDC3437F8BED71C067D399, 2C7718080C11DFDD4C9A2085537F78F5633369B4A27D9C64168F0249594A4AA2 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
13:41:24.0650 0x0580  volmgr - ok
13:41:24.0660 0x0580  [ 6BDB6CE6D2D9E3D3F28F1C97E12B62E2, 5E77D7AF858D7B90FF395F39B86D6F96413D1DDEA28BC9FB40C5524A4DF6DAD0 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
13:41:24.0676 0x0580  volmgrx - ok
13:41:24.0686 0x0580  [ BF2546583BB75F01DDA60A7921DFB230, 579BD0BC55F4F03CD8D1FCDAC3975A1649C688820F2F7FC1AD354132D9E3BEE9 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
13:41:24.0702 0x0580  volsnap - ok
13:41:24.0708 0x0580  [ AC2E20A74D09D24485BE8396CE04F07B, 23FCE8BEE01B89E5CDCA536D75DBA6DCE3E92E13178A66836CEB7829310A89D1 ] volume          C:\Windows\system32\drivers\volume.sys
13:41:24.0716 0x0580  volume - ok
13:41:24.0721 0x0580  [ 92F6E3E6D3F1795263EB34B37F74AEF7, 33AB1ECCA1216AF1995E1DB4F11E48156FF62391D7C176C8A4CC1037B9CB3A27 ] vpci            C:\Windows\System32\drivers\vpci.sys
13:41:24.0730 0x0580  vpci - ok
13:41:24.0752 0x0580  [ 36BE686F97BD128B1A0EBF68E7AEDF8D, 5A154E075CFA5AF599649EECC21D614E0CB8A86BC2E5EDDD9188A05C448FD599 ] vpnagent        C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
13:41:24.0770 0x0580  vpnagent - ok
13:41:24.0775 0x0580  [ 0F42C39016F82F345C0F2DB2D5B90EB4, 2E957E72BB8D0293F61FA7385BA9400DF7759E1E3D35FE24F3877A6460988F4D ] vpnva           C:\Windows\System32\drivers\vpnva64-6.sys
13:41:24.0781 0x0580  vpnva - ok
13:41:24.0788 0x0580  [ FD9BCB8920973CEAD4D49DC7A6D8A618, 34AB4A485FB40DF737600006D8323BE927FB0BDA2BC170F4C123BE775EAE7CC8 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
13:41:24.0799 0x0580  vsmraid - ok
13:41:24.0829 0x0580  [ DDA66AEF89DAC320A85AECCB4369D2E7, 0F267FC985E0CA3624FC5F4DDA25623649BAD544772179261576F793A0485523 ] VSS             C:\Windows\system32\vssvc.exe
13:41:24.0880 0x0580  VSS - ok
13:41:24.0887 0x0580  [ FE3E26EC19F7F85DD35C2894ADDCDF19, 544B29BAFA55AF8B44E2ACFDA89CC43FCBEAA160303A26578DB342C91BD0D957 ] VSStandardCollectorService150 C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe
13:41:24.0898 0x0580  VSStandardCollectorService150 - ok
13:41:24.0906 0x0580  [ 0C111F220798CCE80484026E06822379, B98A5E44D3ABA67E6DE99E18BF3C2C606923E6269E262665C721F672ACBBED2A ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
13:41:24.0921 0x0580  VSTXRAID - ok
13:41:24.0924 0x0580  [ 607639716E9DB1CEF4E18B5B229293B4, 1D997177093F907EFE8A04AD10443BB9C355C0D7657DBD449E7EE7FCABC3ECBC ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
13:41:24.0934 0x0580  vwifibus - ok
13:41:24.0939 0x0580  [ B1ED64E628763148BF84FBE23F2AD711, 6182A39675E6049BC3DD353694720795A8E3D0331509AA8ABA4883D5C569AD5E ] vwififlt        C:\Windows\system32\drivers\vwififlt.sys
13:41:24.0951 0x0580  vwififlt - ok
13:41:24.0963 0x0580  [ 76C1CC611352499326001F25A3ED15F8, 228BFA8A01BB1B3868576D509A2EA6F3D37FEDC8F12D4DC4E0A84CE926C6D1B1 ] W32Time         C:\Windows\system32\w32time.dll
13:41:24.0988 0x0580  W32Time - ok
13:41:24.0993 0x0580  [ 55D00B785A7587F4263D125817871283, B92400B229099C1E243F2B149881A1423A2E9C8CA2D77D868B9B923BFDEC7FF2 ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
13:41:25.0003 0x0580  WacomPen - ok
13:41:25.0014 0x0580  [ 1483BE4D0135C378CB61D3CD73AB3E03, B7309C9E4F370860C507BF52D17234CDF4A7FAE95D2D822714E07EF5DEC0249B ] WalletService   C:\Windows\system32\WalletService.dll
13:41:25.0036 0x0580  WalletService - ok
13:41:25.0041 0x0580  [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
13:41:25.0058 0x0580  wanarp - ok
13:41:25.0061 0x0580  [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
13:41:25.0077 0x0580  wanarpv6 - ok
13:41:25.0109 0x0580  [ 8413D292CD1B27D6B6127B90697F2B1C, E03F9AAC410F5AEDCC30FDB4D8F4739AE7B290EFA735C480A29E9FE53C1D8420 ] wbengine        C:\Windows\system32\wbengine.exe
13:41:25.0161 0x0580  wbengine - ok
13:41:25.0181 0x0580  [ 8C521D161445C3E1F38A494E7649E70D, F00990B2FE1FB52C74A2057E6480C5EBF2BDBC32955CC03C6B63360F20A49A18 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
13:41:25.0214 0x0580  WbioSrvc - ok
13:41:25.0221 0x0580  [ E330144B97D493AA886000DCAAA8DAF5, ED86F46F5A76FD8F06CA98BD61B174ADB9AD4B065394356872708DF8B614E4F9 ] wcifs           C:\Windows\system32\drivers\wcifs.sys
13:41:25.0231 0x0580  wcifs - ok
13:41:25.0249 0x0580  [ CA10C91D802ABE6E5136E2168C2CD2B4, 5979FF9ED783ED3154257ED0507C7BBAF8C77C081CC30AE835EA8AF7508AAD08 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
13:41:25.0280 0x0580  Wcmsvc - ok
13:41:25.0293 0x0580  [ D50645235A507B0546B1B5CF7D0B8849, 19F5FE10C953B8EE8EEDA9A9F7F2E97AA193BB085E7FC364066686089ADD1C9F ] wcncsvc         C:\Windows\System32\wcncsvc.dll
13:41:25.0317 0x0580  wcncsvc - ok
13:41:25.0321 0x0580  [ AEA1093B751339267D8C8C1EF3D669CF, 8F3325E7FB16BD856A0593C36F2E3E018909038C52CD5F92E116E0C1366F31CB ] wcnfs           C:\Windows\system32\drivers\wcnfs.sys
13:41:25.0332 0x0580  wcnfs - ok
13:41:25.0336 0x0580  [ D520B1B849B6D4D707AB31722B952C2D, 149BABB7BD63C1F212ADD9306C84FFB2A5CE6DC435BD3213EAB787E9B222C61F ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
13:41:25.0344 0x0580  WdBoot - ok
13:41:25.0364 0x0580  [ 5030C76047D756263093A47B82970868, E772F15973F6DE36851DD230F1F4190746CD81CA1E7284DC074711C4BF45CAF0 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
13:41:25.0388 0x0580  Wdf01000 - ok
13:41:25.0397 0x0580  [ 29FF9199EDEB4F5470BB134D1A2563D2, 94713F98A6EA6042203D5DD0DE6758F5F0F331F7D4BB05E91EF20CEEEBD6780F ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
13:41:25.0411 0x0580  WdFilter - ok
13:41:25.0416 0x0580  [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiServiceHost  C:\Windows\system32\wdi.dll
13:41:25.0431 0x0580  WdiServiceHost - ok
13:41:25.0435 0x0580  [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiSystemHost   C:\Windows\system32\wdi.dll
13:41:25.0451 0x0580  WdiSystemHost - ok
13:41:25.0467 0x0580  [ CAC84836FC881E888146E8B08E568D74, BE7C982C13E36F78E6AF14607E0D0A56EA28009AB864163A59706692810C94E5 ] wdiwifi         C:\Windows\system32\DRIVERS\wdiwifi.sys
13:41:25.0496 0x0580  wdiwifi - ok
13:41:25.0502 0x0580  [ 17CF416CFF408190F5A4CBD79AB12E55, E376C8865C7EA633AE20D2CF940E4C7584AC783BAAF7941780FB6C4C84802F33 ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
13:41:25.0513 0x0580  WdNisDrv - ok
13:41:25.0515 0x0580  WdNisSvc - ok
13:41:25.0523 0x0580  [ 3570C4E14F85CE0B537D126727ACA91C, A474C9E6B6E4E5945C63367C1D3D24D4782C4A4FEB00FAE15DFED099D8283078 ] WebClient       C:\Windows\System32\webclnt.dll
13:41:25.0542 0x0580  WebClient - ok
13:41:25.0564 0x0580  [ 5730EFC0F560E0A69F8A56FAC593283A, E911E88137126B37F2CD4AA611B80F1D88C433C899559A6BFA92EA09C8D5945C ] WebManagement   C:\Windows\system32\WebManagement.exe
13:41:25.0602 0x0580  WebManagement - ok
13:41:25.0610 0x0580  [ 1785F9C96A0BDEC1F6E0C79EF412F342, D6D4EDA69457BEDDA69C2F60FC4C2FAC97D46CD8E9C1804CCD68F169383583E3 ] Wecsvc          C:\Windows\system32\wecsvc.dll
13:41:25.0627 0x0580  Wecsvc - ok
13:41:25.0631 0x0580  [ B9175D63527B05131F2FA504CF0265F2, 1E43A17788F1B6A29E2889C81E0BE100D64BD3A9DEE7C154D9581F01D2D7D05F ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
13:41:25.0644 0x0580  WEPHOSTSVC - ok
13:41:25.0648 0x0580  [ 5C58EC0C9D4DE04DCDE56F6DCEA62080, 8ED386EDF4C39C339CE0BB2AC7E199C38705E5A6B3F56A4987B9A8ABD19BB59F ] wercplsupport   C:\Windows\System32\wercplsupport.dll
13:41:25.0662 0x0580  wercplsupport - ok
13:41:25.0668 0x0580  [ F899B355CC95AF26AB36E84E8A0DD685, C400F2F80FFF6473FEF066943C4A2AFF0FFE988A4F755757A2E5005C2A10DAD8 ] WerSvc          C:\Windows\System32\WerSvc.dll
13:41:25.0683 0x0580  WerSvc - ok
13:41:25.0689 0x0580  [ E1785942AC51FEE6826CDF02075C5AA9, 56FE7017684086F4F9C3A2C0D3AC00369BA0938BA3987EEBEE9A75B8E3CA0AE1 ] WFPLWFS         C:\Windows\system32\drivers\wfplwfs.sys
13:41:25.0701 0x0580  WFPLWFS - ok
13:41:25.0705 0x0580  [ B154618505A6A9026EFA6AB8C4123BF1, 713648D71AA027B4472E7E75B942630DBE7383687984B02A5E99C9E4192C95EB ] WiaRpc          C:\Windows\System32\wiarpc.dll
13:41:25.0718 0x0580  WiaRpc - ok
13:41:25.0722 0x0580  [ 0CF79A0EACFFBB75A50A469A27696D02, E112BF7B5A8D0B0AD2EA0E7B9FD4E8CFEC9371C8E94A60248292D688AFE715C4 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
13:41:25.0730 0x0580  WIMMount - ok
13:41:25.0732 0x0580  WinDefend - ok
13:41:25.0740 0x0580  [ 0DE131733317EB4BE67028366B0CAAC6, AC7DADBF03A3752B4D33CA19F03DBCEDD6F56893C2DA25C98B0AB07063D990E3 ] WindowsTrustedRT C:\Windows\system32\drivers\WindowsTrustedRT.sys
13:41:25.0749 0x0580  WindowsTrustedRT - ok
13:41:25.0753 0x0580  [ 92EB5D38BDF10C790450F3E46BF93A0E, 0FC027398DBD43EDC1F7D703C0B6DB20294DF34E67C9288442039B1A5663CE1B ] WindowsTrustedRTProxy C:\Windows\system32\drivers\WindowsTrustedRTProxy.sys
13:41:25.0760 0x0580  WindowsTrustedRTProxy - ok
13:41:25.0769 0x0580  [ 82597A56652EB73A95484ADA65EB532B, 8DAFA715B9192CB37422DD6DDAC9B358B12CFE6B52A53240BF980C7559FE9371 ] WinDriver6      C:\Windows\system32\drivers\windrvr6.sys
13:41:25.0783 0x0580  WinDriver6 - ok
13:41:25.0802 0x0580  [ 4AB1AC1E60118443A14C241F91AC8FC9, 2B9237AC124874664E31B4F313BAAF8059BD0749653496784B4B89B4B7F66784 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
13:41:25.0836 0x0580  WinHttpAutoProxySvc - ok
13:41:25.0841 0x0580  [ F95DE20312ACCA7761446DE152BD1F7C, F6C5ACA500C2182437F4A7402BD81C3A2B77C0BBD78BA31FB574DC1997FCBFE6 ] WinMad          C:\Windows\System32\drivers\winmad.sys
13:41:25.0850 0x0580  WinMad - ok
13:41:25.0859 0x0580  [ CD49CA8E3280ACEEC5ECF431A59F5EFD, 75F48EFC6DEE9E06B490703EE47602AFDEA51505285B02D2CF884601E71857CC ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
13:41:25.0876 0x0580  Winmgmt - ok
13:41:25.0928 0x0580  [ B8C0D620219ECAA23A2AC841EAF454D1, FB527C4D36929D7FAE2A837727C557B7823A72069EBCAB7D16C49E8B21E8D952 ] WinRM           C:\Windows\system32\WsmSvc.dll
13:41:26.0014 0x0580  WinRM - ok
13:41:26.0024 0x0580  [ 4EFB346BFDAEEB29316AA52BBB9852B1, 4BC5554F44BD9549D0A929D77BD410FA3EB502A7D0170303D369268672505494 ] WINUSB          C:\Windows\System32\drivers\WinUSB.SYS
13:41:26.0035 0x0580  WINUSB - ok
13:41:26.0039 0x0580  [ 8B9AFF5F08E66A6F1F1063DEC9457FB6, 98F2AF6988D125521FD34CAA48B9652922F0C8ECFAE9B0C1DF4B3CE6B9CF500F ] WinVerbs        C:\Windows\System32\drivers\winverbs.sys
13:41:26.0049 0x0580  WinVerbs - ok
13:41:26.0064 0x0580  [ 15F0990B7C101163FE27D9B19FEB3D43, 5020EF7755E0ACDA77E816C44A5B75286CC1BEA182BECF9D7252EB826A4F1FFE ] wisvc           C:\Windows\system32\flightsettings.dll
13:41:26.0092 0x0580  wisvc - ok
13:41:26.0152 0x0580  [ 5A7AA8198156DC2BFF9F064E29D11AF5, 9CBAF1B99B54CDE087E0FC0A2601B3F056F81F2F5AF63B5BB71C7389247E496A ] WlanSvc         C:\Windows\System32\wlansvc.dll
13:41:26.0226 0x0580  WlanSvc - ok
13:41:26.0269 0x0580  [ 11DF1660D0889007F29B46CEA4544E88, 00CF1D7E4F53808907945D742AA27F7599783438B4D3CA348771F93A0F69D0FD ] wlidsvc         C:\Windows\system32\wlidsvc.dll
13:41:26.0337 0x0580  wlidsvc - ok
13:41:26.0343 0x0580  [ 6F4F4F5A007D1710BD76FB311DA97C07, FC0FEA4364F6BA4E31DBC82735D09D429CA3BE9AFCFF5D5E1263D8B27FC2CE3E ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
13:41:26.0352 0x0580  WmiAcpi - ok
13:41:26.0360 0x0580  [ 3CDDFF6CAD962C5EF1C52FD667C358B6, F6F09145E9461EB17172988D26749FCF36920A1A683459334D04A6D072B31A92 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
13:41:26.0375 0x0580  wmiApSrv - ok
13:41:26.0378 0x0580  WMPNetworkSvc - ok
13:41:26.0385 0x0580  [ 43C8D087B31C592163B33A4BDA540E40, 3A6C4E5E56931B29321DCC723585F2F0E804EF4DCDEAB2A8687F30FC3AE70E43 ] Wof             C:\Windows\system32\drivers\Wof.sys
13:41:26.0398 0x0580  Wof - ok
13:41:26.0437 0x0580  [ 5820CC51AB1C368F29ECCA713397D006, AA0CC2BC4DF7DBFB144FF47C3508BEEF00467C9D312C135AFB3406E42C6CD821 ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
13:41:26.0497 0x0580  workfolderssvc - ok
13:41:26.0504 0x0580  [ 9BBCB2C1CAC372FF6BA55CE56842A937, B5E494C2B89D400377F6714D59AFEA79AB0DCC9B2EE2B070D5B680C53EB294AB ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
13:41:26.0517 0x0580  WPDBusEnum - ok
13:41:26.0521 0x0580  [ 75A9284F01FE7CB1A7D5EAE5C1EB4F33, 390EF23AEA06D8711555F7979FF8BE0620B53C1A551638C4EC6FB7C6678965B3 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
13:41:26.0529 0x0580  WpdUpFltr - ok
13:41:26.0536 0x0580  [ 60E2EB3E7B7F15C25E02462159F90707, D8344B529EEC0D4922CAC3E6897CC9F191ACF1376017BE38ED6BF6019F1ED181 ] WpnService      C:\Windows\system32\WpnService.dll
13:41:26.0553 0x0580  WpnService - ok
13:41:26.0558 0x0580  [ C7C91FB86A3C6CD7619725A88ED1884C, 132C43C518F37BF303D768BD5FB0AB835F693C43FE693937D804A34E940D770F ] WpnUserService  C:\Windows\System32\WpnUserService.dll
13:41:26.0571 0x0580  WpnUserService - ok
13:41:26.0575 0x0580  [ 36D7B73ADC3E10607ED6EC874AFB5D1E, 1737B3E4D2CA76BB27903BF460E4960E6A0BC32D35069AC7C5E4B07F625F3282 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
13:41:26.0586 0x0580  ws2ifsl - ok
13:41:26.0593 0x0580  [ 9A0E0B836413EB0BC885532D2A5389D6, AFEE4A0578D5581E4D72999A33C0DEA6253BD891F611AFF9AFDE4160A60105F3 ] wscsvc          C:\Windows\System32\wscsvc.dll
13:41:26.0609 0x0580  wscsvc - ok
13:41:26.0612 0x0580  [ 696EC2EAA2A42A137CCBB9A84D6917C0, 424089F4F373962AF8357C5D4D43F35948989BE3F58EAD3690F565F4C1BBC66F ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
13:41:26.0623 0x0580  WSDPrintDevice - ok
13:41:26.0626 0x0580  [ 46E4A69825A7554A5DB784A55F8AD203, 7F347054FCDD5DEF93083D420E56EBE5EEBBAE2BD2FED9B2E75E85149DE52780 ] WSDScan         C:\Windows\system32\DRIVERS\WSDScan.sys
13:41:26.0637 0x0580  WSDScan - ok
13:41:26.0640 0x0580  WSearch - ok
13:41:26.0686 0x0580  [ 712AA9EBA24A84A57BF707F092DA63E9, DF0D8628544EA5E4ECE01C50C5D15B2A1B1C03A11701D05F2212C507AF77DE14 ] wuauserv        C:\Windows\system32\wuaueng.dll
13:41:26.0758 0x0580  wuauserv - ok
13:41:26.0765 0x0580  [ AED7FE551E8672B824A56324076183EB, FFE543AAEFDEFFE6B20C244DB141A9425BDA88ED36F4870F0B70FEC433BDF0C1 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
13:41:26.0778 0x0580  WudfPf - ok
13:41:26.0785 0x0580  [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFRd          C:\Windows\system32\drivers\WudfRd.sys
13:41:26.0801 0x0580  WUDFRd - ok
13:41:26.0806 0x0580  [ 47F6450F28BAA32B2AB0D6BE00996249, C8A47D6ADF89AD613AB685C6224B9099DCEFDCD8ABCF703542AFDC356404116E ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
13:41:26.0820 0x0580  wudfsvc - ok
13:41:26.0827 0x0580  [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
13:41:26.0843 0x0580  WUDFWpdFs - ok
13:41:26.0849 0x0580  [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
13:41:26.0865 0x0580  WUDFWpdMtp - ok
13:41:26.0891 0x0580  [ D313FF382A26D1295B212A66EE3E52A8, 59FEF2AF611507BCB6FE036A7D4F1595F3449B76F9B055CDC67DC1BE1D90EEB8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
13:41:26.0937 0x0580  WwanSvc - ok
13:41:26.0960 0x0580  [ 7EF75102A793AAA6AAA45A4F7C15FF4D, A3FB68905F3E3A7DE52B85FAD966ABCB787FAC7E709964CE9BF2A4F9AC8B0653 ] XblAuthManager  C:\Windows\System32\XblAuthManager.dll
13:41:26.0999 0x0580  XblAuthManager - ok
13:41:27.0024 0x0580  [ 24198F59BEA26F72292AB42641DFCEA5, 17F2712A7B8E3B3530334EABD2CB6B91C2EA9825D57573425D25B185EDCAEB46 ] XblGameSave     C:\Windows\System32\XblGameSave.dll
13:41:27.0066 0x0580  XblGameSave - ok
13:41:27.0075 0x0580  [ DB77764B46D02DCB9777D9E00A3F7D63, 469491E3A57FBB0CB0482A2493823B57410E24A5BD4C1C96D79FE9888F7827BB ] xboxgip         C:\Windows\System32\drivers\xboxgip.sys
13:41:27.0091 0x0580  xboxgip - ok
13:41:27.0114 0x0580  [ 1A8D9EA4DD1A3E276B85EDB05B42BEC7, 23FC10AC29BDF917AEDB3AAF82537EC2C72453E52B41836FD83643054FA4F0BE ] XboxNetApiSvc   C:\Windows\system32\XboxNetApiSvc.dll
13:41:27.0152 0x0580  XboxNetApiSvc - ok
13:41:27.0158 0x0580  [ 63088A3361D9A308F328F11E9099DD87, E03FDB932FC57F199C8F8A8EADA338BDF7D2F9C6CB8FAB679A92B48B1E5AFE8A ] xinputhid       C:\Windows\System32\drivers\xinputhid.sys
13:41:27.0168 0x0580  xinputhid - ok
13:41:27.0170 0x0580  ================ Scan global ===============================
13:41:27.0174 0x0580  [ 0C710DB449712EE13ACE733695DB7780, BBC7875B38D318CE4E88979D083AC72E8993254A466A8A6882DDE9E0C3B687A3 ] C:\Windows\system32\basesrv.dll
13:41:27.0181 0x0580  [ FE795A4DD2AB81C8ED456CF7DDFD61DE, 9363EC5911EED6F4779991F88FF0156FD0DBECAC5FFB3CCE89F77E8B6FAA03F3 ] C:\Windows\system32\winsrv.dll
13:41:27.0188 0x0580  [ 1EE06E957B0B2CA52D26DA7861E160EF, 4B743A1C7010138F5F6684BBCF7CAD6FD05F49920BDD3FDB776347AA6B44AB94 ] C:\Windows\system32\sxssrv.dll
13:41:27.0199 0x0580  [ 9A3B47CD17283B299311013AD3D21D26, 48D5695E7610E7A742E403B2C37664D961E466C10E4FFAE07C8AB6B5BE5F7BF8 ] C:\Windows\system32\services.exe
13:41:27.0207 0x0580  [ Global ] - ok
13:41:27.0207 0x0580  ================ Scan MBR ==================================
13:41:27.0209 0x0580  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:41:27.0436 0x0580  \Device\Harddisk0\DR0 - ok
13:41:27.0438 0x0580  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
13:41:27.0488 0x0580  \Device\Harddisk1\DR1 - ok
13:41:27.0488 0x0580  ================ Scan VBR ==================================
13:41:27.0490 0x0580  [ 1FBDFAF5600EC3CE049C369C0CC62350 ] \Device\Harddisk0\DR0\Partition1
13:41:27.0491 0x0580  \Device\Harddisk0\DR0\Partition1 - ok
13:41:27.0492 0x0580  [ 895275351BFB46153D2FE7B18B6D3F61 ] \Device\Harddisk0\DR0\Partition2
13:41:27.0494 0x0580  \Device\Harddisk0\DR0\Partition2 - ok
13:41:27.0495 0x0580  [ D708CDA5B8E7825FE4E989FB078636FE ] \Device\Harddisk0\DR0\Partition3
13:41:27.0497 0x0580  \Device\Harddisk0\DR0\Partition3 - ok
13:41:27.0499 0x0580  [ E21E54DB4D64D1507AC4A3A86C868D9E ] \Device\Harddisk1\DR1\Partition1
13:41:27.0500 0x0580  \Device\Harddisk1\DR1\Partition1 - ok
13:41:27.0502 0x0580  [ 5743F6A9EDFE46D89E64F60D4C8DEAC5 ] \Device\Harddisk1\DR1\Partition2
13:41:27.0504 0x0580  \Device\Harddisk1\DR1\Partition2 - ok
13:41:27.0504 0x0580  ================ Scan generic autorun ======================
13:41:27.0537 0x0580  [ 686DDC70BC186DD0B4A009355E2BFD90, 2B578A10294540FF45F61705E5AC8640ADA1AF3C17012BB7537394A01B13D172 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
13:41:27.0580 0x0580  NvBackend - ok
13:41:27.0594 0x0580  [ 111474C61232202B5B588D2B512CBB25, D25FF1E6C6460A7F9DE39198D182058C1712726008D187E1953B83ABE977E4A0 ] C:\Windows\syswow64\RunDll32.exe
13:41:27.0612 0x0580  Cmaudio8788 - ok
13:41:27.0618 0x0580  [ 0740D338A42F7778760F2B0CB6DA5830, C6D275B4993502A155F85D8DE26B119866DEE106C98CF29CDAACBAF11484C94A ] C:\Windows\syswow64\HsMgr.exe
13:41:27.0629 0x0580  Cmaudio8788GX - detected UnsignedFile.Multi.Generic ( 1 )
13:41:27.0759 0x0580  Detect skipped due to KSN trusted
13:41:27.0759 0x0580  Cmaudio8788GX - ok
13:41:27.0767 0x0580  [ BEF1B23AD0BBF805F02FAA01EAE0AF4E, 65CCFEC1F61E475A1F6759ECCA8DE1844A26AB7F827BC1F63339A0DFF554B039 ] C:\Windows\system\HsMgr64.exe
13:41:27.0780 0x0580  Cmaudio8788GX64 - detected UnsignedFile.Multi.Generic ( 1 )
13:41:27.0910 0x0580  Detect skipped due to KSN trusted
13:41:27.0910 0x0580  Cmaudio8788GX64 - ok
13:41:27.0914 0x0580  [ 36828A828CEAA19A0FEA14C8723DC60C, 005627B96A08AC88BE3813DCB73228D8668A8270021D824FFC5EEA26C29027FA ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
13:41:27.0923 0x0580  Avira SystrayStartTrigger - ok
13:41:27.0945 0x0580  [ 26765B5C617F2BC199C29FA5643F6177, A871D14CB830D7B13D9C3A451E1448D66D28CEECB08DDD6E7075B58A1AB1779C ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
13:41:27.0966 0x0580  avgnt - ok
13:41:27.0973 0x0580  [ CD0362AEE36CFE1EF5DF973230742E67, 9F1D8AD4E09D16C39CD6A35CB298456468C1808226FFA8AD65BF9562A6ECC07D ] C:\Program Files (x86)\PDF24\pdf24.exe
13:41:27.0986 0x0580  PDFPrint - ok
13:41:28.0012 0x0580  [ 3D4FE53C8BFADAC1B05B4F25F874634F, 78B37B31477964DE48669E12CE4264EF13E04F19432B4F9DB236BDB76DF24435 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
13:41:28.0043 0x0580  Cisco AnyConnect Secure Mobility Agent for Windows - ok
13:41:28.0052 0x0580  [ EE8626BAD390E3F3EBCA5816F133F14A, 2E6331418F6EE99539822E18FCACE74EEEC9A4970BBFB392C89AF32088753525 ] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
13:41:28.0065 0x0580  KiesTrayAgent - ok
13:41:28.0079 0x0580  [ DC6BA48F7007ED842799F51BF2502EFE, 2D7741CC32C9025A4507ED6443D04E2F7B235A55010E3C9F23D5042938E890AD ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
13:41:28.0096 0x0580  SunJavaUpdateSched - ok
13:41:28.0256 0x0580  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
13:41:28.0442 0x0580  OneDriveSetup - ok
13:41:28.0610 0x0580  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
13:41:28.0764 0x0580  OneDriveSetup - ok
13:41:28.0928 0x0580  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
13:41:29.0081 0x0580  OneDriveSetup - ok
13:41:29.0120 0x0580  [ 90029F7160037122DA12101C0C8850F7, DE4BFD8E60AC0222EACCA8BAC94562ED2B38CBEF569F8B927CCD197735655AC0 ] C:\Users\manue\AppData\Local\Microsoft\OneDrive\OneDrive.exe
13:41:29.0157 0x0580  OneDrive - ok
13:41:29.0165 0x0580  [ 2AEDF65E4718FD1515022FDDDF21F551, ACC2C563E0629E2CBE0CE055D9ADABFA9948B2594B784AC58F25E6280C26092D ] C:\Program Files (x86)\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe
13:41:29.0174 0x0580  RemoTerm.exe - ok
13:41:29.0183 0x0580  [ 80AA567BBF27C2A2519C81938563F304, 3C4B2A3B002E7559666F3B5D169062899AF345A69B53D7B56225B4AA64A3E59A ] C:\Program Files (x86)\VLC Updater\vlc-updater.exe
13:41:29.0198 0x0580  VLC Updater - ok
13:41:29.0199 0x0580  Waiting for KSN requests completion. In queue: 249
13:41:30.0209 0x0580  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\WindowsSecurityCenter.exe ( 15.0.28.21 ), 0x41000 ( enabled : updated )
13:41:30.0211 0x0580  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.1198 ), 0x60100 ( disabled : updated )
13:41:30.0228 0x0580  Win FW state via NFP2: enabled ( trusted )
13:41:30.0337 0x0580  ============================================================
13:41:30.0337 0x0580  Scan finished
13:41:30.0337 0x0580  ============================================================
13:41:30.0344 0x283c  Detected object count: 0
13:41:30.0344 0x283c  Actual detected object count: 0

Hallo,
so ich denke es hat geklappt.
Die TDDS Datei war scheinbar zu groß um sie auf einmal zu posten.
Beim Scan wurde keine Maleware gefunden.
Gruß und vielen Dank
Manuel

M-K-D-B · 01.08.2017, 19:52

Servus,

Lesestoff:

Zitat:

vlc.de

Bitte den bekannten VLC Player nur von videolan.org herunterladen. Bitte lesen: Warnung vor vlc.de

Schritt 1
Downloade Dir bitte AdwCleaner auf deinen Desktop (Bebilderte Anleitung).

Schließe alle offenen Programme und Browser.
Starte die adwcleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Werkzeuge > Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- Tracing Schlüssel
- Prefetch Dateien
- Proxy
- Winsock
- IE Richtlinien
- Chrome Richtlinien
Bestätige die Auswahl mit Ok.
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist. Am Ende des Suchlaufs öffnet sich automatisch eine Logdatei. Schließe diese.
Klicke nun auf Löschen (auch dann wenn AdwCleaner sagt, dass nichts gefunden wurde) und bestätige auftretende Hinweise mit Ok.
Klicke am Ende der Bereinigung auf Jetzt neu starten. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2
Downloade Dir bitte Malwarebytes Anti-Malware 3 (Bebilderte Anleitung)

Installiere das Programm in den vorgegebenen Pfad.
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scan, wähle den Bedrohungs-Scan aus und klicke auf Scan starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Ausgewählte Elemente in die Quarantäne verschieben.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM nach dem Neustart, klicke auf Berichte.
Wähle den neuesten Scan-Bericht aus, klicke auf Bericht anzeigen und dann auf Export.
Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 3

Starte die FRST.exe erneut. Vergewissere dich, dass vor Addition.txt ein Haken gesetzt ist und drücke auf Untersuchen.
FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
Poste mir beide Logdateien mit deiner nächsten Antwort.

Bitte poste mit deiner nächsten Antwort

die Logdatei von AdwCleaner,
die Logdatei von MBAM,
die zwei neuen Logdateien von FRST.

M-K-D-B · 04.08.2017, 20:07

Fehlende Rückmeldung
Dieses Thema wurde aus den Abos gelöscht. Somit bekomme ich keine Benachrichtigung über neue Antworten.
PM inklusive Link zum Thema an mich falls du denoch weiter machen willst.

Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen!

04.08.2017, 20:07	#11
M-K-D-B /// TB-Ausbilder	Edge Virus? Fehlende Rückmeldung Dieses Thema wurde aus den Abos gelöscht. Somit bekomme ich keine Benachrichtigung über neue Antworten. PM inklusive Link zum Thema an mich falls du denoch weiter machen willst. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist. Jeder andere bitte hier klicken und einen eigenen Thread erstellen!

Edge Virus?

Plagegeister aller Art und deren Bekämpfung: Edge Virus?

Edge Virus?

Edge Virus?

Edge Virus?

Edge Virus?

Edge Virus?

Edge Virus?

Logs

Edge Virus?

Edge Virus?

Edge Virus?

Edge Virus?

Ähnliche Themen: Edge Virus?

27.07.2017, 14:33	#3
Mk91	Edge Virus? Hallo Matthias, ich kann leider das FRST Tool nicht herunterladen, da es scheinbar ein Sicherheitsrisiko darstellt. Mit ist es mittlerweile gelungen die betroffene Registerkarte abzuschiessen und ich bin jetzt absolut sympthomfrei. Ist es möglich trotzdem zu überprüfen, ob sich schadsoftware auf meinem PC befindet? Gruß Manuel __________________

30.07.2017, 23:03	#5
Mk91	Edge Virus? Danke, ich werde das morgen mal ausprobieren.