| |
| |||||||
Log-Analyse und Auswertung: Kurzes Stoppen alle 60 Sekunden mit Tröt-GeräuschWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
06.03.2015, 18:28
| #1 |
 |  Kurzes Stoppen alle 60 Sekunden mit Tröt-Geräusch Hallo, ich bin auf dieses Forum gestoßen, weil ich ein ähnliches Problem habe, wie neulich hier behandelt. Bei allen Audio- und Video-Anwendungen kommt nach genau 60 Sekunden periodisch ein kurzes Stoppen und ein Trötgeräusch. Ich habe einen Dell-Rechner, aktuelle Treiber, aktuelles Windows 8.1. Das Problem gibt es seit ca. 4 Wochen. Habe den Spy-Hunter 4 installiert und Avast-Security. Wer kann mir helfen? Anbei meine Log-Files. Vielen Dank, Andreas |
|
06.03.2015, 18:48
| #2 |
| /// the machine /// TB-Ausbilder    | Kurzes Stoppen alle 60 Sekunden mit Tröt-Geräusch Hi,
__________________Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
06.03.2015, 19:25
| #3 |
| | Kurzes Stoppen alle 60 Sekunden mit Tröt-Geräusch [CODE]NT-AUTORITÄT)
__________________Description: Chrome has encountered a fatal error. ver=40.0.2214.115;lang=;guid=4783171E43844F5894C3B3D1CC4D27D0;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\3d55bca5-e2b2-441c-b95f-a381befb9a09.dmp Error: (03/06/2015 03:05:51 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: LiveComm.exe17.5.9600.20689c8401d05815e9ee2cfd4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exedd8b183f-c409-11e4-82e0-6036ddbcedbdmicrosoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1 Error: (03/06/2015 02:45:24 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Users\andieas\Downloads\esetsmartinstaller_deu.exe Error: (03/06/2015 02:38:45 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: LiveComm.exe17.5.9600.20689110801d058121ee4e63d4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe12f9b214-c406-11e4-82df-6036ddbcedbdmicrosoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1 Error: (03/06/2015 02:15:43 PM) (Source: MsiInstaller) (EventID: 1013) (User: andieas) Description: Produkt: Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology -- Eine neuere Version von Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology ist bereits installiert. Setup wird jetzt beendet.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (03/06/2015 02:13:17 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: LiveComm.exe17.5.9600.2068989801d0580dfc90634a4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exeee3da6bb-c401-11e4-82de-6036ddbcedbdmicrosoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1 Error: (03/06/2015 02:11:38 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: wwahost.exe6.3.9600.17415174401d0580e4d3664cf4294967295C:\WINDOWS\syswow64\wwahost.exe4060d27d-c402-11e4-82de-6036ddbcedbdMicrosoft.SkypeApp_3.1.0.1007_x86__kzf8qxf38zg5cApp ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz Percentage of memory in use: 39% Total physical RAM: 8048.93 MB Available physical RAM: 4905.89 MB Total Pagefile: 9328.93 MB Available Pagefile: 5268.52 MB Total Virtual: 131072 MB Available Virtual: 131071.81 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.41 GB) (Free:286.69 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 9D1E30B0) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS) ==================== End Of Log ============================ Shortcuts.txt: Users shortcut scan result (x64) Version: 04-03-2015 01 Ran by andieas at 2015-03-06 16:24:18 Running from C:\Users\andieas\Downloads Boot Mode: Normal ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) Shortcut: C:\Users\Administrator\Links\Desktop.lnk -> C:\Users\andieas\Desktop () Shortcut: C:\Users\Administrator\Links\Downloads.lnk -> C:\Users\andieas\Downloads () Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\andieas\Documents () Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\andieas\Pictures () Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\Hpqdirec.exe (Hewlett-Packard Company) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk -> C:\Program Files (x86)\Adobe Download Assistant\Adobe Download Assistant.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1031-7B44-AB0000000001}\SC_Reader.ico () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk -> C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk -> C:\Program Files (x86)\Audacity\audacity.exe (The Audacity Team) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera.lnk -> C:\Windows\Camera\Camera.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk -> C:\Windows\FileManager\FileManager.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk -> C:\Program Files\GIMP 2\bin\gimp-2.8.exe (Spencer Kimball, Peter Mattis and the GIMP Development Team) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk -> C:\Program Files (x86)\HP\Digital Imaging\DocProc\regipe.exe (I.R.I.S. Image Recognition Integarted Systems) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IDT Audio Control Panel.lnk -> C:\Windows\System32\IDTNC64.cpl (IDT, Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotosApp.lnk -> C:\Windows\FileManager\PhotosApp.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Store.lnk -> C:\Windows\WinStore\WinStore.htm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom\TomTom HOME 2.lnk -> C:\Windows\Installer\{7A2BB1C8-903D-4585-9F3B-CADD67D07D37}\NewShortcut1_BB5D96B1D05B428EBAD4A437B7244768.exe (Flexera Software, Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeXstudio\TeXstudio.lnk -> C:\Program Files (x86)\TeXstudio\texstudio.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung Plus 2015\Start-Center 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung Plus 2015\StartCenter.exe (Akademische Arbeitsgemeinschaft Verlag) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung Plus 2015\Informationen und Hilfe\TeamViewer.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung Plus 2015\TeamViewerQS_AAV_Win.exe (TeamViewer) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Start-Center 2014.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\StartCenter.exe (Akademische Arbeitsgemeinschaft Verlag) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Informationen und Hilfe\Report erstellen.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\Support.exe (Akademische Arbeitsgemeinschaft Verlag, Wolters Kluwer Deutschland GmbH) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Informationen und Hilfe\Support-Seite öffnen.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\Support.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Informationen und Hilfe\TeamViewer.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\TeamViewerQS_AAV_Win.exe (TeamViewer) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerBerater 2014-2015\Handbuch.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerBerater 2015\hilfe.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerBerater 2014-2015\SteuerBerater.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerBerater 2015\LexSoftStarter.exe (Wolters Kluwer Deutschland) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellarium\Change log.lnk -> C:\Program Files (x86)\Stellarium\ChangeLog.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellarium\config.ini.lnk -> C:\Users\andieas\AppData\Roaming\Stellarium\config.ini () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellarium\Last run log.lnk -> C:\Users\andieas\AppData\Roaming\Stellarium\log.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellarium\Stellarium entfernen.lnk -> C:\Program Files (x86)\Stellarium\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellarium\Stellarium im Internet.lnk -> C:\Program Files (x86)\Stellarium\stellarium.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellarium\Stellarium.lnk -> C:\Program Files (x86)\Stellarium\stellarium.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\E-POST MAILER.lnk -> C:\Program Files (x86)\Deutsche Post AG\E-POST MAILER\EpostMailer.exe (Deutsche Post AG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smoky City Design\The Panorama Factory V5 (m32).lnk -> C:\Program Files (x86)\Smoky City Design\The Panorama Factory V5\PFactory.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smoky City Design\The Panorama Factory V5 (x64).lnk -> C:\Program Files (x86)\Smoky City Design\The Panorama Factory V5\PFactory_64.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smoky City Design\The Panorama Factory V5 ... Getting Started.lnk -> C:\Program Files (x86)\Smoky City Design\The Panorama Factory V5\help\start.html () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smoky City Design\The Panorama Factory V5 Help.lnk -> C:\Program Files (x86)\Smoky City Design\The Panorama Factory V5\help\index.html () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\ReluxCAD.lnk -> C:\Program Files (x86)\ReluxSuite\obj\ReluxCad.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\ReluxEnergy CH.lnk -> C:\Program Files (x86)\ReluxSuite\obj\ReluxEnergyCH.exe (Relux Informatik AG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\ReluxEnergy.lnk -> C:\Program Files (x86)\ReluxSuite\obj\reluxEnergy.exe (Relux Informatik AG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\ReluxOffer.lnk -> C:\Program Files (x86)\ReluxSuite\obj\reluxOffer.exe (Relux Informatik AG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\ReluxPro.lnk -> C:\Program Files (x86)\ReluxSuite\obj\reluxPro.exe (Relux Informatik AG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Tools\LicenceActivation.lnk -> C:\Program Files (x86)\ReluxSuite\obj\LicenceActivation.exe (Relux Informatik AG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Tools\Relux TeamViewer.lnk -> C:\Program Files (x86)\ReluxSuite\obj\RlxTeamViewerQS.exe (TeamViewer) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Tools\Relux Uninstall.lnk -> C:\Program Files (x86)\ReluxSuite\uninstall.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Tools\ReluxAdmin.lnk -> C:\Program Files (x86)\ReluxSuite\obj\reluxAdmin.exe (Relux Informatik AG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Tools\ReluxLum -read only-.lnk -> C:\Program Files (x86)\ReluxSuite\obj\reluxLumR.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Tools\ReluxPick.lnk -> C:\Program Files (x86)\ReluxSuite\obj\RlxProductSelector.exe (Relux Informatik AG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for Raytracing (deutsch).lnk -> C:\Program Files (x86)\ReluxSuite\obj\07_RaytracingManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for Raytracing (english).lnk -> C:\Program Files (x86)\ReluxSuite\obj\09_RaytracingManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxCAD (deutsch).lnk -> C:\Program Files (x86)\ReluxSuite\reluxcad\manual_reluxCAD_07.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxCAD (english).lnk -> C:\Program Files (x86)\ReluxSuite\reluxcad\manual_reluxCAD_09.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxEnergy CH (deutsch).lnk -> C:\Program Files (x86)\ReluxSuite\obj\07_ReluxEnergyChManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxEnergy CH (français).lnk -> C:\Program Files (x86)\ReluxSuite\obj\12_ReluxEnergyChManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxEnergy CH (italiano).lnk -> C:\Program Files (x86)\ReluxSuite\obj\16_ReluxEnergyChManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxLicence (deutsch).lnk -> C:\Program Files (x86)\ReluxSuite\obj\07_LicenceManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxLicence (english).lnk -> C:\Program Files (x86)\ReluxSuite\obj\09_LicenceManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxLicence (français).lnk -> C:\Program Files (x86)\ReluxSuite\obj\12_LicenceManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxLicence (italiano).lnk -> C:\Program Files (x86)\ReluxSuite\obj\16_LicenceManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxSuite (deutsch).lnk -> C:\Program Files (x86)\ReluxSuite\obj\relux07.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxSuite (english).lnk -> C:\Program Files (x86)\ReluxSuite\obj\relux09.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxSuite (español).lnk -> C:\Program Files (x86)\ReluxSuite\obj\relux10.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxSuite (français).lnk -> C:\Program Files (x86)\ReluxSuite\obj\relux12.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxSuite (italiano).lnk -> C:\Program Files (x86)\ReluxSuite\obj\relux16.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxSuite (简体ä¸*æ–‡).lnk -> C:\Program Files (x86)\ReluxSuite\obj\relux204.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxTunnel (deutsch).lnk -> C:\Program Files (x86)\ReluxSuite\obj\07_TunnelManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxTunnel (english).lnk -> C:\Program Files (x86)\ReluxSuite\obj\09_TunnelManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxTunnel (français).lnk -> C:\Program Files (x86)\ReluxSuite\obj\12_TunnelManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Help\Fit for ReluxTunnel (italiano).lnk -> C:\Program Files (x86)\ReluxSuite\obj\16_TunnelManual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redshift 8 Kompakt\Liesmich.lnk -> C:\Program Files (x86)\USM\Redshift 8 Kompakt\Liesmich.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redshift 8 Kompakt\Redshift 8 Kompakt – deinstallieren.lnk -> C:\Program Files (x86)\USM\Redshift 8 Kompakt\uninstall.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redshift 8 Kompakt\Redshift 8 Kompakt.lnk -> C:\Program Files (x86)\USM\Redshift 8 Kompakt\Redshift.exe (United Soft Media Verlag GmbH) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime - Bitte lesen.lnk -> C:\Windows\Installer\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}\RichText.ico () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime Player.lnk -> C:\Windows\Installer\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}\QTPlayer.ico () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server\Plex Media Server.lnk -> C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe (Plex, Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3\Deinstallieren.lnk -> C:\Program Files (x86)\Google\Picasa3\Uninstall.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3\Picasa 3.lnk -> C:\Program Files (x86)\Google\Picasa3\Picasa3.exe (Google Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\PDFCreator Hilfe.lnk -> C:\Program Files\PDFCreator\PDFCreator_german.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\PDFCreator im Internet.lnk -> C:\Program Files\PDFCreator\PDFCreator.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\PDFCreator.lnk -> C:\Program Files\PDFCreator\PDFCreator.exe (pdfforge) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Spende für den PDFCreator.lnk -> C:\Program Files\PDFCreator\Spende für den PDFCreator.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\AFPL License.lnk -> C:\Program Files\PDFCreator\AFPL License.txt (No File) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\FairPlay License.lnk -> C:\Program Files\PDFCreator\FairPlay License.txt (No File) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\GPL License.lnk -> C:\Program Files\PDFCreator\GNU License.txt (No File) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Images2PDF\Images2PDF.lnk -> C:\Program Files\PDFCreator\Images2PDF\Images2PDF.exe (pdfforge GmbH) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2\PDF Architect 2.lnk -> C:\Program Files (x86)\PDF Architect 2\PDF Architect 2.exe (pdfforge GmbH) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2\Nikon Message Center 2-Hilfe.lnk -> C:\Program Files (x86)\Nikon\Nikon Message Center 2\Localization\DE\NikonMessageCenter2_DE.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2\Nikon Message Center 2.lnk -> C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe (Nikon Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Multi File Port Monitor\ghostscript-mfilemon howto.lnk -> C:\Program Files\mfilemon\ghostscript-mfilemon-howto.html () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\Previewer.lnk -> C:\Program Files\MiKTeX 2.9\miktex\bin\x64\yap.exe (MiKTeX.org) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\TeXworks.lnk -> C:\Program Files\MiKTeX 2.9\miktex\bin\x64\miktex-texworks.exe (TeX Users Group) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\Maintenance (Admin)\Package Manager (Admin).lnk -> C:\Program Files\MiKTeX 2.9\miktex\bin\x64\mpm_mfc_admin.exe (MiKTeX.org) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\Maintenance (Admin)\Settings (Admin).lnk -> C:\Program Files\MiKTeX 2.9\miktex\bin\x64\mo_admin.exe (MiKTeX.org) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\Maintenance\Package Manager.lnk -> C:\Program Files\MiKTeX 2.9\miktex\bin\x64\mpm_mfc.exe (MiKTeX.org) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\Maintenance\Settings.lnk -> C:\Program Files\MiKTeX 2.9\miktex\bin\x64\mo.exe (MiKTeX.org) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\Help\FAQ.lnk -> C:\Program Files\MiKTeX 2.9\doc\miktex\faq.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\Help\Manual.lnk -> C:\Program Files\MiKTeX 2.9\doc\miktex\miktex.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\Silverlight.Configuration.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\An OneNote 2013 senden.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\excel.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenote.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\powerpnt.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\winword.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013-Tools\Office 2013 Upload Center.lnk -> C:\Program Files\Microsoft Office 15\root\office15\msouc.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Office 2013-Tools\Office 2013-Spracheinstellungen.lnk -> C:\Program Files\Microsoft Office 15\root\office15\SETLANG.EXE (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\meteonorm 7\meteonorm 7.lnk -> C:\Program Files (x86)\Meteotest\meteonorm 7\Meteonorm7.exe (METEOTEST Genossenschaft) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware \Malwarebytes Anti-Malware entfernen.lnk -> C:\Program Files (x86)\ Malwarebytes Anti-Malware \unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware \Malwarebytes Anti-Malware Notifications.lnk -> C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware \ Malwarebytes Anti-Malware .lnk -> C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware \Tools\Malwarebytes Anti-Malware Chameleon.lnk -> C:\Program Files (x86)\ Malwarebytes Anti-Malware \Chameleon\Windows\chameleon.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech\G930\G930 konfigurieren.lnk -> C:\Program Files (x86)\Logitech\G930\G930.exe (Logitech(c)) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Klett Labor\IBE E-Lehre 2\IBE 3 Elektrizitätslehre 2 - Bitte lesen!.lnk -> C:\Klett\Labor\Physik\IBE03\Ibe03_Liesmich.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Klett Labor\IBE E-Lehre 2\IBE 3 Elektrizitätslehre 2 von Festplatte.lnk -> C:\Klett\Labor\Physik\IBE03\IBE03Start.exe (Macromedia, Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Klett Labor\IBE E-Lehre 2\Klett Hotline - Bitte lesen!.lnk -> C:\Klett\Labor\Physik\Hotline.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\javacpl.exe (Oracle Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Java konfigurieren.lnk -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\javacpl.exe (Oracle Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel(R) Rapid Storage Technology.lnk -> C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorUI.exe (Intel Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Solution Center.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\Hpqdirec.exe (Hewlett-Packard Company) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HPÂ*Update.lnk -> C:\Program Files (x86)\HP\HP Software Update\hpwucli.exe (Hewlett-Packard) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Shop für HP Zubehör.lnk -> C:\Program Files (x86)\HP\HPSSUPPLY\hpqSSupply.exe (Hewlett-Packard Development Company L.P.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet J5700 Series\Hilfe.lnk -> C:\Program Files (x86)\HP\Digital Imaging\help\inkjet03.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet J5700 Series\HP Support-Website.lnk -> C:\Program Files (x86)\HP\Digital Imaging\HP Officejet J5700 Series\help\HP Product Support Website.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet J5700 Series\Liesmich.lnk -> C:\Program Files (x86)\HP\Digital Imaging\{514856A4-423F-4B7D-938C-7834CAF40C56}\help\readme.html () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google SketchUp 7\Google SketchUp.lnk -> C:\Program Files (x86)\Google\Google SketchUp 7\SketchUp.exe (Google, Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript\Ghostscript Readme 9.14.LNK -> C:\Program Files\gs\gs9.14\doc\Readme.htm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript\Uninstall Ghostscript 9.14.LNK -> C:\Program Files\gs\gs9.14\uninstgs.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client\FileZilla.lnk -> C:\Program Files (x86)\FileZilla FTP Client\filezilla.exe (FileZilla Project) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client\Uninstall.lnk -> C:\Program Files (x86)\FileZilla FTP Client\uninstall.exe (Tim Kosse) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy\Exact Audio Copy.lnk -> C:\Program Files (x86)\Exact Audio Copy\EAC.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy\FAQ.lnk -> C:\Program Files (x86)\Exact Audio Copy\Documentation\FAQ.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy\Legal.lnk -> C:\Program Files (x86)\Exact Audio Copy\Legal.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy\News.lnk -> C:\Program Files (x86)\Exact Audio Copy\News.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy\Uninstall.lnk -> C:\Program Files (x86)\Exact Audio Copy\uninst.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Essential Data Tools\PhotoRescue Pro\Documentation.lnk -> C:\Program Files (x86)\Essential Data Tools\PhotoRescue Pro\photorescuepro.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Essential Data Tools\PhotoRescue Pro\License.lnk -> C:\Program Files (x86)\Essential Data Tools\PhotoRescue Pro\License.htm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Essential Data Tools\PhotoRescue Pro\PhotoRescue Pro.lnk -> C:\Program Files (x86)\Essential Data Tools\PhotoRescue Pro\Launcher.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Essential Data Tools\PhotoRescue Pro\Release Notes.lnk -> C:\Program Files (x86)\Essential Data Tools\PhotoRescue Pro\ReleaseNotes.htm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Essential Data Tools\PhotoRescue Pro\Uninstall PhotoRescue Pro.lnk -> C:\Program Files (x86)\Essential Data Tools\PhotoRescue Pro\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Essential Data Tools\PhotoRescue Pro\Visit PhotoRescue Pro Homepage.lnk -> C:\Program Files (x86)\Essential Data Tools\PhotoRescue Pro\PhotoRescuePro.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deutsche Post AG\E-POST MAILER.lnk -> C:\Program Files (x86)\Deutsche Post AG\E-POST MAILER\EpostMailer.exe (Deutsche Post AG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Digital Delivery.lnk -> C:\Program Files (x86)\Dell Digital Delivery\DeliveryTray.exe (Dell Products, LP) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Update.lnk -> C:\Program Files (x86)\Dell Update\DellUpTray.exe (Dell Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ControlMyNikon v5.0\ControlMyNikon v5.0.lnk -> C:\Program Files (x86)\ControlMyNikon v5.0\ControlMyNikon.exe (TetherScript Technology Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ControlMyNikon v5.0\Uninstall ControlMyNikon v5.0.lnk -> C:\Program Files (x86)\ControlMyNikon v5.0\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter\Backup.lnk -> C:\ProgramData\CodeMeter\Backup () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter\CmAct.lnk -> C:\ProgramData\CodeMeter\CmAct () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter\Logs.lnk -> C:\ProgramData\CodeMeter\Logs () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter\Documentation\CodeMeter User Help.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\help\CmUserHelp\index.html () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celestia\Celestia on the Web.lnk -> C:\Program Files (x86)\Celestia\celestia.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celestia\Celestia.lnk -> C:\Program Files (x86)\Celestia\celestia.exe ( ) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celestia\README.lnk -> C:\Program Files (x86)\Celestia\README.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Capture NX 2\Capture NX 2.lnk -> C:\Program Files\Nikon\Capture NX 2\Capture NX 2.exe (Nik Software GmbH) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Capture NX 2\Deinstallation von Capture NX 2.lnk -> C:\Program Files\Nikon\Capture NX 2\Uninstall.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Capture NX 2\Info.lnk -> C:\Program Files\Nikon\Capture NX 2\ReadMe.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera Control Pro 2\Camera Control Pro 2-Hilfe.lnk -> C:\Program Files (x86)\Nikon\Camera Control Pro 2\CCPHelp.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera Control Pro 2\Camera Control Pro 2.lnk -> C:\Program Files (x86)\Nikon\Camera Control Pro 2\NControlPro.exe (Nikon Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera Control Pro 2\eueste Info zu Camera Control Pro 2.lnk -> C:\Program Files (x86)\Nikon\Camera Control Pro 2\Readme.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteScout BarCode Generator\ByteScout BarCode Generator on the Web.lnk -> C:\Program Files (x86)\ByteScout BarCode Generator\WebPage.url (No File) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteScout BarCode Generator\ByteScout BarCode Generator.lnk -> C:\Program Files (x86)\ByteScout BarCode Generator\BarCodeGenerator.exe (ByteScout Software) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteScout BarCode Generator\Uninstall ByteScout BarCode Generator.lnk -> C:\Program Files (x86)\ByteScout BarCode Generator\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\True Image.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe (Acronis) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Extras und Werkzeuge\Acronis System Report.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip File Manager.lnk -> C:\Program Files (x86)\7-Zip\7zFM.exe (Igor Pavlov) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip Help.lnk -> C:\Program Files (x86)\7-Zip\7-zip.chm () Shortcut: C:\Users\andieas\Start Menu\Programs\SpyHunter\SpyHunter.lnk -> C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Enigma Software Group USA, LLC.) Shortcut: C:\Users\andieas\Pictures\Beispielbilder.lnk -> C:\Dokumente und Einstellungen\All Users.WINDOWS\Dokumente\Eigene Bilder\Beispielbilder (No File) Shortcut: C:\Users\andieas\Pictures\Kopie (3) von Beispielbilder.lnk -> C:\Dokumente und Einstellungen\All Users\Dokumente\Eigene Bilder\Beispielbilder (No File) Shortcut: C:\Users\andieas\Pictures\Kopie (5) von Beispielbilder.lnk -> C:\Dokumente und Einstellungen\All Users\Dokumente\Eigene Bilder\Beispielbilder (No File) Shortcut: C:\Users\andieas\Pictures\Kopie von Beispielbilder.lnk -> C:\Dokumente und Einstellungen\All Users\Dokumente\Eigene Bilder\Beispielbilder (No File) Shortcut: C:\Users\andieas\Music\Beispielmusik.lnk -> C:\Users\Public\Music\Beispielmusik (No File) Shortcut: C:\Users\andieas\Links\Desktop.lnk -> C:\Users\andieas\Desktop () Shortcut: C:\Users\andieas\Links\Downloads.lnk -> C:\Users\andieas\Downloads () Shortcut: C:\Users\andieas\Links\Dropbox.lnk -> C:\Users\andieas\Dropbox () Shortcut: C:\Users\andieas\Links\Google Drive.lnk -> C:\Users\andieas\Google Drive (No File) Shortcut: C:\Users\andieas\Documents\Alte Excel-Dokumente.lnk -> C:\Program Files\Microsoft Office\Office (No File) Shortcut: C:\Users\andieas\Documents\Vortraege_Veroeffentlichungen\Geothermietag30Nov06\Verknüpfung mit 22Mai_Tuebingen_Landesmesse.lnk -> C:\Users\andieas\Pictures\22Mai_Tuebingen_Landesmesse (No File) Shortcut: C:\Users\andieas\Documents\Vortraege_Veroeffentlichungen\Geothermietag30Nov06\Verknüpfung mit A1.14.lnk -> C:\Users\andieas\Pictures\A1.14 () Shortcut: C:\Users\andieas\Documents\Vortraege_Veroeffentlichungen\Geothermietag30Nov06\Verknüpfung mit Lava.jpg.lnk -> C:\Users\andieas\Pictures\Lava.jpg () Shortcut: C:\Users\andieas\Documents\Vortraege_Veroeffentlichungen\Geothermietag30Nov06\Verknüpfung mit pago-haus_bohrpfahlaktivierung.jpg.lnk -> C:\Users\andieas\Pictures\pago-haus_bohrpfahlaktivierung.jpg () Shortcut: C:\Users\andieas\Documents\Kopie von Eigene Musik\Beispielmusik.lnk -> C:\Users\Public\Music\Beispielmusik (No File) Shortcut: C:\Users\andieas\Desktop\Celestia.lnk -> C:\Program Files (x86)\Celestia\celestia.exe ( ) Shortcut: C:\Users\andieas\Desktop\IrfanView.lnk -> C:\Program Files (x86)\IrfanView\i_view32.exe (Irfan Skiljan) Shortcut: C:\Users\andieas\Desktop\Revo Uninstaller.lnk -> C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe (VS Revo Group) Shortcut: C:\Users\andieas\Desktop\SpyHunter.lnk -> C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Enigma Software Group USA, LLC.) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lokaler Datenträger (C).lnk -> C:\ () Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Universe Sandbox.lnk -> C:\Program Files (x86)\Universe Sandbox\Universe Sandbox.exe (Giant Army) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Revo Uninstaller.lnk -> C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe (VS Revo Group) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Uninstall.lnk -> C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\uninst.exe (VS Revo Group Ltd.) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Website.lnk -> C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revo Uninstaller.url () Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\About IrfanView.lnk -> C:\Program Files (x86)\IrfanView\i_about.txt () Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\Available Languages.lnk -> C:\Program Files (x86)\IrfanView\i_languages.txt () Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\Available PlugIns.lnk -> C:\Program Files (x86)\IrfanView\i_plugins.txt () Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\Command line Options.lnk -> C:\Program Files (x86)\IrfanView\i_options.txt () Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\IrfanView 4.38.lnk -> C:\Program Files (x86)\IrfanView\i_view32.exe (Irfan Skiljan) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\IrfanView Help.lnk -> C:\Program Files (x86)\IrfanView\i_view32.chm () Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\What's New.lnk -> C:\Program Files (x86)\IrfanView\i_changes.txt () Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup\Google+ Auto Backup.lnk -> C:\Users\andieas\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe (Google Inc.) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup\Uninstall.lnk -> C:\Users\andieas\AppData\Local\Programs\Google\Google+ Auto Backup\Uninstall.exe (Google) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Uninstall Dropbox.lnk -> C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe (Dropbox, Inc.) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\SendTo\Dropbox.lnk -> C:\Users\andieas\Dropbox () Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk -> C:\Program Files (x86)\Google\Picasa3\Picasa3.exe (Google Inc.) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Excel 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\excel.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\IrfanView 4.38.lnk -> C:\Program Files (x86)\IrfanView\i_view32.exe (Irfan Skiljan) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PowerPoint 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\powerpnt.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\The Panorama Factory V5 (x64).lnk -> C:\Program Files (x86)\Smoky City Design\The Panorama Factory V5\PFactory_64.exe () Shortcut: C:\Users\andieas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Word 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\winword.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\andieas\Documents () Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\andieas\Pictures () Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\Links\Desktop.lnk -> C:\Users\andieas\Desktop () Shortcut: C:\Users\kolja_001\Links\Downloads.lnk -> C:\Users\andieas\Downloads () Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\andieas\Documents () Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\andieas\Pictures () Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\kolja_001\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\Users\Public\Desktop\Adobe Reader XI.lnk -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe (Adobe Systems Incorporated) Shortcut: C:\Users\Public\Desktop\Audacity.lnk -> C:\Program Files (x86)\Audacity\audacity.exe (The Audacity Team) Shortcut: C:\Users\Public\Desktop\Avast Internet Security.lnk -> C:\Program Files\AVAST Software\Avast\avastui.exe (AVAST Software) Shortcut: C:\Users\Public\Desktop\E-POST MAILER.lnk -> C:\Program Files (x86)\Deutsche Post AG\E-POST MAILER\EpostMailer.exe (Deutsche Post AG) Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Public\Desktop\Google Earth.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google) Shortcut: C:\Users\Public\Desktop\Google SketchUp 7.lnk -> C:\Program Files (x86)\Google\Google SketchUp 7\SketchUp.exe (Google, Inc.) Shortcut: C:\Users\Public\Desktop\HP Solution Center.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\Hpqdirec.exe (Hewlett-Packard Company) Shortcut: C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk -> C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes Corporation) Shortcut: C:\Users\Public\Desktop\meteonorm 7.lnk -> C:\Program Files (x86)\Meteotest\meteonorm 7\Meteonorm7.exe (METEOTEST Genossenschaft) Shortcut: C:\Users\Public\Desktop\PDF Architect 2.lnk -> C:\Program Files (x86)\PDF Architect 2\PDF Architect 2.exe (pdfforge GmbH) Shortcut: C:\Users\Public\Desktop\PDFCreator.lnk -> C:\Program Files\PDFCreator\PDFCreator.exe (pdfforge) Shortcut: C:\Users\Public\Desktop\Picasa 3.lnk -> C:\Program Files (x86)\Google\Picasa3\Picasa3.exe (Google Inc.) Shortcut: C:\Users\Public\Desktop\QuickTime Player.lnk -> C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe (Apple Inc.) Shortcut: C:\Users\Public\Desktop\Redshift 8 Kompakt.lnk -> C:\Program Files (x86)\USM\Redshift 8 Kompakt\Redshift.exe (United Soft Media Verlag GmbH) Shortcut: C:\Users\Public\Desktop\Stellarium.lnk -> C:\Program Files (x86)\Stellarium\stellarium.exe () Shortcut: C:\Users\Public\Desktop\SteuerBerater 2014-2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerBerater 2015\LexSoftStarter.exe (Wolters Kluwer Deutschland) Shortcut: C:\Users\Public\Desktop\SteuerSparErklärung 2014.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\StartCenter.exe (Akademische Arbeitsgemeinschaft Verlag) Shortcut: C:\Users\Public\Desktop\SteuerSparErklärung Plus 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung Plus 2015\StartCenter.exe (Akademische Arbeitsgemeinschaft Verlag) Shortcut: C:\Users\Public\Desktop\TeXstudio.lnk -> C:\Program Files (x86)\TeXstudio\texstudio.exe () Shortcut: C:\Users\Public\Desktop\True Image 2013.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe (Acronis) Shortcut: C:\Users\Public\Desktop\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) Shortcut: C:\Users\Public\Desktop\Klett Labor\IBE 3 Elektrizitätslehre 2 - Bitte lesen!.lnk -> C:\Klett\Labor\Physik\IBE03\Ibe03_Liesmich.txt () Shortcut: C:\Users\Public\Desktop\Klett Labor\IBE 3 Elektrizitätslehre 2 von Festplatte.lnk -> C:\Klett\Labor\Physik\IBE03\IBE03Start.exe (Macromedia, Inc.) Shortcut: C:\Users\Public\Desktop\Klett Labor\Klett Hotline - Bitte lesen!.lnk -> C:\Klett\Labor\Physik\Hotline.txt () Shortcut: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) ShortcutWithArgument: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E} ShortcutWithArgument: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System ShortcutWithArgument: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions ShortcutWithArgument: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures ShortcutWithArgument: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D} ShortcutWithArgument: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\Administrator\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> -sta {C90FB8CA-3295-4462-A721-2935E83694BA} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom\Entfernen TomTom HOME 2.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {7A2BB1C8-903D-4585-9F3B-CADD67D07D37} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung Plus 2015\Programmfunktionen\Gesonderte Feststellung 2014.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung Plus 2015\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mfest ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung Plus 2015\Programmfunktionen\Gewinn-Erfassung 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung Plus 2015\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -meinurvor ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung Plus 2015\Programmfunktionen\Gewinnermittlung 2014.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung Plus 2015\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -meinur ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung Plus 2015\Programmfunktionen\Lohnsteuer-Ermäßigung 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung Plus 2015\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mermaess ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung Plus 2015\Programmfunktionen\Steuererklärung 2014.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung Plus 2015\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mnormal ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung Plus 2015\Programmfunktionen\Steuerprognose 2015.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung Plus 2015\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mvorweg ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung Plus 2015\Informationen und Hilfe\Report erstellen.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung Plus 2015\ReportTool.exe (Wolters Kluwer Deutschland GmbH) -> --createReport ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung Plus 2015\Informationen und Hilfe\SteuerSparErklärung Plus 2015 deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {312C0E08-8F94-4536-AAF6-3413F784AC5F} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Programmfunktionen\Gesonderte Feststellung 2013.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mfest ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Programmfunktionen\Gewinn-Erfassung 2014.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -meinurvor ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Programmfunktionen\Gewinnermittlung 2013.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -meinur ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Programmfunktionen\Lohnsteuer-Ermäßigung 2014.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mermaess ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Programmfunktionen\Steuererklärung 2013.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mnormal ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Programmfunktionen\Steuerprognose 2014.lnk -> C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\SteuerSparErklaerung 2014\sse.exe (Akademische Arbeitsgemeinschaft Verlag) -> -mvorweg ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerSparErklärung 2014\Informationen und Hilfe\SteuerSparErklärung 2014 deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {A463EB06-22A6-47F5-9593-E52B291EF13E} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuertipps\SteuerBerater 2014-2015\SteuerBerater deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {415227BD-34D9-4DB3-B74C-554407208203} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellarium\Stellarium (fallback mode).lnk -> C:\Program Files (x86)\Stellarium\stellarium.exe () -> --safe-mode ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\ReluxTunnel.lnk -> C:\Program Files (x86)\ReluxSuite\obj\reluxPro.exe (Relux Informatik AG) -> -ReluxTunnel ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReluxSuite\Tools\ReluxUpdate.lnk -> C:\Program Files (x86)\ReluxSuite\obj\reluxVersionChecker.exe (Relux Informatik AG) -> autoUpdate ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /i {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E} /qf ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3\Picasa Photo Viewer konfigurieren.lnk -> C:\Program Files (x86)\Google\Picasa3\PicasaPhotoViewer.exe (Google Inc.) -> /reconfig ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Images2PDF\Images2PDF Console Application.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files\PDFCreator\Images2PDF\Images2PDFC.exe" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2\Uninstall or Modify PDF Architect 2.lnk -> C:\ProgramData\PDF Architect 2\Installation\PDFArchitect2Installer.exe (© pdfforge GmbH.) -> /uninstall ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\Maintenance (Admin)\Update (Admin).lnk -> C:\Program Files\MiKTeX 2.9\miktex\bin\x64\internal\copystart_admin.exe () -> "C:\Program Files\MiKTeX 2.9\miktex/bin/x64/internal\miktex-update_admin.exe" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\Maintenance\Update.lnk -> C:\Program Files\MiKTeX 2.9\miktex\bin\x64\internal\copystart.exe () -> "C:\Program Files\MiKTeX 2.9\miktex/bin/x64/internal\miktex-update.exe" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\javacpl.exe (Oracle Corporation) -> -tab about ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Auf Updates prüfen.lnk -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\javacpl.exe (Oracle Corporation) -> -tab update ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\javacpl.exe (Oracle Corporation) -> -tab update ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Info zu Java.lnk -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\javacpl.exe (Oracle Corporation) -> -tab about ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless\Ereignisanzeige für WiFi.lnk -> C:\Program Files\Common Files\Intel\WirelessCommon\imFrmwrk.exe (Intel(R) Corporation) -> /sf Wireless Event Viewer ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless\Erweiterte Statistik für WiFi.lnk -> C:\Program Files\Common Files\Intel\WirelessCommon\imFrmwrk.exe (Intel(R) Corporation) -> /sf Advanced Statistics ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless\Manuelles Diagnose-Tool für WiFi.lnk -> C:\Program Files\Common Files\Intel\WirelessCommon\imFrmwrk.exe (Intel(R) Corporation) -> /sf Wireless Diagnostics ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet J5700 Series\Deinstallieren.lnk -> C:\Program Files (x86)\HP\Digital Imaging\{514856A4-423F-4B7D-938C-7834CAF40C56}\setup\hpzscr40.exe (Hewlett-Packard) -> -datfile hpwscr10.dat -onestop -forcereboot ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet J5700 Series\Gerät hinzufügen.lnk -> C:\Program Files (x86)\HP\Digital Imaging\{514856A4-423F-4B7D-938C-7834CAF40C56}\hpzstub.exe (Hewlett-Packard) -> -addadevice ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Officejet J5700 Series\Produktregistrierung.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwrg.exe (Hewlett-Packard Company) -> "Officejet J5700 Series" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth im DirectX-Modus starten.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google) -> -setDX ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth im OpenGL-Modus starten.lnk -> C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe (Google) -> -setOGL ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript\Ghostscript 9.14.LNK -> C:\Program Files\gs\gs9.14\bin\gswin64.exe () -> "-IC:\Program Files\gs\gs9.14\lib;C:\Program Files\gs\gs9.14\..\fonts" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter\CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG) -> -m ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter\Tools\CmDust.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\cmu32.exe (WIBU-SYSTEMS AG) -> --cmdust --gui -f"%userprofile%\CmDust-Result.log" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter\Tools\CodeMeter Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "set Path=%Path%;C:\Program Files (x86)\CodeMeter\Runtime\bin\&&cd /D %USERPROFILE%&&cmu32.exe -v" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera Control Pro 2\Camera Control Pro 2 deinstallieren.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {FE96C49B-DB90-405E-A00E-09E38372F880} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices\andieas S4.lnk -> C:\Program Files (x86)\Intel\Bluetooth\btmsrvview.exe (Motorola Solutions, Inc.) -> B8:5E:7B:39:74:4B ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software\Avast SafeZone.lnk -> C:\Program Files\AVAST Software\Avast\avastui.exe (AVAST Software) -> /sfzonebrowser ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Auf Updates prüfen.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe (Acronis) -> /check_updates ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Extras und Werkzeuge\Acronis-Backup konvertieren.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis) -> /convert_tib_to_vhd ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Extras und Werkzeuge\Dateischredder.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis) -> /file_shredder ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Extras und Werkzeuge\DriveCleanser.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis) -> /drive_cleanser ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Extras und Werkzeuge\Image mounten.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis) -> /mount_image ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Extras und Werkzeuge\Laufwerk klonen.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis) -> /clone_disk ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Extras und Werkzeuge\Systembereinigung.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis) -> /system_cleanup ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Extras und Werkzeuge\Try&Decide.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis) -> /tnd_tool ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Extras und Werkzeuge\Windows-Backup konvertieren.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis) -> /convert_vhd_to_tib ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX ShortcutWithArgument: C:\Users\andieas\Start Menu\Programs\SpyHunter\SpyHunter Emergency Startup.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> "C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.com" ShortcutWithArgument: C:\Users\andieas\Start Menu\Programs\SpyHunter\Uninstall.lnk -> C:\Users\andieas\AppData\Roaming\Enigma Software Group\sh_installer.exe (Enigma Software Group USA, LLC.) -> -r sh ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Word\RefProjekte_AN_ZAE304304680357356731\RefProjekte_AN_ZAE.doc.lnk -> C:\Users\andieas\Documents\Vortraege_Veroeffentlichungen\RefProjekte_AN_ZAE.doc () -> 12 ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk -> C:\Users\andieas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) -> /systemstartup ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech blank Produktregistrierung.lnk -> C:\Program Files (x86)\Logitech\G930\eReg.exe (Leader Technologies/Logitech) -> /remind /language=DEU /_WFM="blank" ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Run Hunter Mode.lnk -> C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe (VS Revo Group) -> -hunter ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView\IrfanView - Thumbnails.lnk -> C:\Program Files (x86)\IrfanView\i_view32.exe (Irfan Skiljan) -> /thumbs ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox.lnk -> C:\Users\andieas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) -> /home ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gliffy-Diagramme.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=bhmicilclplefnflapjmnngmkkkkpfad ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Excel\Stundenzettel%20ze_an_06304305070342036205\Stundenzettel%20ze_an_06.xlsm.lnk -> C:\Arbeit\NEC\Stundenzettel ze_an_06.xlsm () -> 51 ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Excel\Raumtyp_VDI2078304306390318855453\Raumtyp_VDI2078.xls.lnk -> C:\Arbeit\10_Energiemanagement\Simulation\HLSK_Programm\Raumtyp_VDI2078.xls () -> 42 ShortcutWithArgument: C:\Users\andieas\AppData\Roaming\Microsoft\Excel\cop_waermepumpe_heiz304308430384931679\cop_waermepumpe_heiz.xls.lnk -> C:\Arbeit\D\Sim\cop_waermepumpe_heiz.xls () -> 55 ShortcutWithArgument: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E} ShortcutWithArgument: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System ShortcutWithArgument: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions ShortcutWithArgument: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures ShortcutWithArgument: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D} ShortcutWithArgument: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\andieas\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} ShortcutWithArgument: C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Chrome App Launcher.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} ShortcutWithArgument: C:\Users\kolja_001\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E} ShortcutWithArgument: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System ShortcutWithArgument: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions ShortcutWithArgument: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures ShortcutWithArgument: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D} ShortcutWithArgument: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\kolja_001\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} ShortcutWithArgument: C:\Users\Public\Desktop\Avast SafeZone.lnk -> C:\Program Files\AVAST Software\Avast\avastui.exe (AVAST Software) -> /sfzonebrowser ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E} ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D} ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} InternetURL: C:\Users\Administrator\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142 InternetURL: C:\Users\Administrator\Desktop\andieas\Kolja\Kolja andieas\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142 InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\MiKTeX on the Web\Give back.url -> hxxp://miktex.org/giveback InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\MiKTeX on the Web\Known Issues.url -> hxxp://miktex.org/2.9/issues InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\MiKTeX on the Web\MiKTeX Project Page.url -> hxxp://miktex.org/ InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9\MiKTeX on the Web\Support.url -> hxxp://miktex.org/support InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Camera Control Pro-Download – Kostenlose Testversion für 30 Tage.url -> hxxp://9k3x1jrq3kwx.nikonimaging.com/crosspoint/jump.cgi?R=eur&L=de&O=w&P=CCPTRI InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Capture NX-Download – Kostenlose Testversion für 60 Tage.url -> hxxp://9k3x1jrq3kwx.nikonimaging.com/crosspoint/jump.cgi?R=eur&L=de&O=w&P=NCAPTURE InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\my Picturetown.url -> hxxp://9k3x1jrq3kwx.nikonimaging.com/crosspoint/jump.cgi?R=eur&L=de&O=w&P=PITUTN InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Nikon Imaging-Website.url -> hxxp://www.europe-nikon.com/ InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon\Nikon RAW Codec – NEF Codec-Download.url -> hxxp://9k3x1jrq3kwx.nikonimaging.com/crosspoint/jump.cgi?R=eur&L=de&O=w&P=WINRCODE InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ControlMyNikon v5.0\ControlMyNikon v5.0 on the Web.url -> hxxp://www.controlmynikon.com InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Acronis-Website.url -> hxxp://www.acronis.de InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Benutzeranleitung.url -> hxxp://download.acronis.com/pdf/ATIH2013_userguide_de-DE.pdf InternetURL: C:\Users\andieas\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142 InternetURL: C:\Users\andieas\Favorites\Windows Live\Windows Live Gallery.url -> hxxp://go.microsoft.com/fwlink/?LinkId=70742 InternetURL: C:\Users\andieas\Favorites\Windows Live\Windows Live Ideas.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72700 InternetURL: C:\Users\andieas\Favorites\Windows Live\Windows Live Mail.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72681 InternetURL: C:\Users\andieas\Favorites\Windows Live\Windows Live Spaces.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72682 InternetURL: C:\Users\andieas\Favorites\MSN-Websites\MSN Auto.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72680 InternetURL: C:\Users\andieas\Favorites\MSN-Websites\MSN Fernsehen.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72659 InternetURL: C:\Users\andieas\Favorites\MSN-Websites\MSN Money.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72640 InternetURL: C:\Users\andieas\Favorites\MSN-Websites\MSN Nachrichten.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72636 InternetURL: C:\Users\andieas\Favorites\MSN-Websites\MSN Sport.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72635 InternetURL: C:\Users\andieas\Favorites\MSN-Websites\MSN.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72630 InternetURL: C:\Users\andieas\Favorites\Microsoft-Websites\IE-Site auf Microsoft.com.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72186 InternetURL: C:\Users\andieas\Favorites\Microsoft-Websites\Microsoft Deutschland GmbH.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72520 InternetURL: C:\Users\andieas\Favorites\Microsoft-Websites\Microsoft Store.url -> hxxp://go.microsoft.com/fwlink/?linkid=140813 InternetURL: C:\Users\andieas\Favorites\Microsoft-Websites\Microsoft Windows - Start.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72629 InternetURL: C:\Users\andieas\Favorites\Microsoft-Websites\Microsoft zu Hause.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72406 InternetURL: C:\Users\andieas\Favorites\Microsoft-Websites\Microsoft.com durchsuchen.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72893 InternetURL: C:\Users\andieas\Favorites\Microsoft-Websites\Site für IE Add-Ons.url -> hxxp://go.microsoft.com/fwlink/?LinkId=50893 InternetURL: C:\Users\andieas\Favorites\Links\Vorgeschlagene Sites.url -> https://ieonline.microsoft.com/#ieslice InternetURL: C:\Users\andieas\Favorites\Links\Web Slice-Katalog.url -> hxxp://go.microsoft.com/fwlink/?LinkId=121315 InternetURL: C:\Users\andieas\Favorites\Corel on the Web\Corel eStore .url -> hxxp://product.corel.com/query.htm?lang=DE&box=CorelDRAW 9&topic=store&src=bookmark InternetURL: C:\Users\andieas\Favorites\Corel on the Web\Corel Studio.url -> hxxp://product.corel.com/query.htm?lang=DE&box=CorelDRAW 9&topic=studio&src=bookmark InternetURL: C:\Users\andieas\Favorites\Corel on the Web\Corel Support.url -> hxxp://product.corel.com/query.htm?lang=DE&box=CorelDRAW 9&topic=support&src=bookmark InternetURL: C:\Users\andieas\Favorites\Corel on the Web\Corel's Business Applications Community.url -> hxxp://product.corel.com/query.htm?lang=DE&box=CorelDRAW 9&topic=bacommunity&src=bookmark InternetURL: C:\Users\andieas\Favorites\Corel on the Web\Corel's Graphics Community.url -> hxxp://product.corel.com/query.htm?lang=DE&box=CorelDRAW 9&topic=grcommunity&src=bookmark InternetURL: C:\Users\andieas\Favorites\Corel on the Web\COREL.COM.url -> hxxp://product.corel.com/query.htm?lang=DE&box=CorelDRAW 9&topic=home&src=bookmark InternetURL: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox Website.URL -> hxxp://www.dropbox.com InternetURL: C:\Users\kolja_001\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142 InternetURL: C:\Users\kolja_001\Favorites\Handy\News.url -> hxxp://live.vodafone.com/news InternetURL: C:\Users\kolja_001\Favorites\Handy\Nokia Support.url -> hxxp://link.nokia.com/entry/van/nsupport/925 InternetURL: C:\Users\kolja_001\Favorites\Handy\Nokia.com.url -> hxxp://nokia.mobi/entry/van/main/925 InternetURL: C:\Users\kolja_001\Favorites\Handy\Sport.url -> hxxp://live.vodafone.com/sport InternetURL: C:\Users\kolja_001\Favorites\Handy\Tipps und Tricks.url -> hxxp://go.microsoft.com/fwlink/?LinkId=247436 InternetURL: C:\Users\kolja_001\Favorites\Handy\Vodafone live!.url -> hxxp://live.vodafone.com ==================== End of log ============================= GMER: GMER Logfile: Code:
ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-03-06 17:59:40
Windows 6.3.9600 x64 \Device\Harddisk0\DR0 -> \Device\00000035 ST1000LM024_HN-M101MBB rev.2AR20003 931,51GB
Running: Gmer-19357.exe; Driver: C:\Users\ADMINI~1\AppData\Local\Temp\kgwiquow.sys
---- Kernel code sections - GMER 2.1 ----
.text C:\WINDOWS\system32\ntoskrnl.exe!NtCallbackReturn + 960 fffff80320d67700 56 bytes [80, CA, A9, FF, 82, 13, B1, ...]
---- Threads - GMER 2.1 ----
Thread C:\WINDOWS\system32\csrss.exe [556:564] fffff960009a72d0
---- Registry - GMER 2.1 ----
Reg HKLM\SYSTEM\CurrentControlSet\Control@SystemStartOptions NOEXECUTE=OPTIN
Reg HKLM\SYSTEM\CurrentControlSet\Control\Lsa@LsaPid 940
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Executive@UuidSequenceNumber 3900132
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed 829383414
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters@BootId 155
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters@BaseTime 436867722
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@POSTTime 7587
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@FwPOSTTime 7081
Reg HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server@InstanceID 29ad7082-cee2-4b50-a753-6e71cf7
Reg HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server@GlassSessionId 2
Reg HKLM\SYSTEM\CurrentControlSet\Control\WMI\Autologger\AITEventLog@FileCounter 2
Reg HKLM\SYSTEM\CurrentControlSet\Control\WMI\Autologger\SQMLogger@FileCounter 5
Reg HKLM\SYSTEM\CurrentControlSet\Control\WMI\Autologger\WdiContextLog@FileCounter 2
Reg HKLM\SYSTEM\CurrentControlSet\Hardware Profiles\UnitedVideo\SERVICES\BASICDISPLAY@DefaultSettings.XResolution 1920
Reg HKLM\SYSTEM\CurrentControlSet\Hardware Profiles\UnitedVideo\SERVICES\BASICDISPLAY@DefaultSettings.YResolution 1080
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\6036ddbcedbd
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\6036ddbcedbd@b85e7b39744b 0x2B 0xFB 0x4A 0x31 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\rdyboost\Parameters@ReadyBootPlanAge 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\Winmgmt\Parameters@ServiceDllUnloadOnStop 0
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shutdown@CleanShutdown 1
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\ImmersiveShell\Grid@Layout_MaximumAvailableHeightCells 12
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\ImmersiveShell\Grid@Layout_AvailableHeightCells 12
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness@PackageMoniker Microsoft.BingHealthAndFitness_3.0.4.309_x64__8wekyb3d8bbwe
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness@Capabilities 23296
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness@ApplicationType 268435456
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness@RegistrationType 1
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness@Uri hxxp://de-DE.appex-rf.msn.com/cgtile/v1/de-DE/HealthAndFitness/Home.xml?cgversion=v6
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness@Recurrence 0
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingTravel_8wekyb3d8bbwe!AppexTravel
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingTravel_8wekyb3d8bbwe!AppexTravel@PackageMoniker Microsoft.BingTravel_3.0.4.309_x64__8wekyb3d8bbwe
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingTravel_8wekyb3d8bbwe!AppexTravel@Capabilities 23296
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingTravel_8wekyb3d8bbwe!AppexTravel@ApplicationType 268435456
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingTravel_8wekyb3d8bbwe!AppexTravel@RegistrationType 1
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingTravel_8wekyb3d8bbwe!AppexTravel@Uri hxxp://travel.tile.appex.bing.com/api/livetile.xml?language=de-DE®ion=DE
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\PushNotifications\Applications\Microsoft.BingTravel_8wekyb3d8bbwe!AppexTravel@Recurrence 0
---- EOF - GMER 2.1 ----
Hallo schrauber, habe die sehr große Text-Datei eingefügt wie beschrieben. Hat das geklappt? Andreas Defogger.txt: Defogger: defogger_disable by jpshortstuff (23.02.10.1) Log created at 16:12 on 06/03/2015 (Andreas Niewienda) Checking for autostart values... HKCU\~\Run values retrieved. HKLM\~\Run values retrieved. Checking for services/drivers... -=E.O.F=- |
|
06.03.2015, 19:45
| #4 |
| | Kurzes Stoppen alle 60 Sekunden mit Tröt-Geräusch FRST-txt Teil 1 FRST.txt:  FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-03-2015 01 Ran by andieas (administrator) on andieas on 06-03-2015 16:22:46 Running from C:\Users\andieas\Downloads Loaded Profiles: andieas & UpdatusUser (Available profiles: andieas & UpdatusUser & kolja_001 & Administrator) Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe () C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (pdfforge GmbH) C:\Program Files (x86)\PDF Architect 2\creator-ws.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Google Inc.) C:\Users\andieas\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Dropbox, Inc.) C:\Users\andieas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe (Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\splwow64.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [517912 2013-02-15] (Acronis) HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [4391584 2012-08-22] (Dell Inc.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [708952 2013-07-08] (Alps Electric Co., Ltd.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation) HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-09-06] (IDT, Inc.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-27] (AVAST Software) HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6405376 2013-03-27] (Acronis) HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1105848 2013-01-10] (Acronis) HKLM-x32\...\Run: [Logitech G930] => C:\Program Files (x86)\Logitech\G930\G930.exe [1516888 2011-03-23] (Logitech(c)) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Google Update] => C:\Users\andieas\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-04-05] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Google+ Auto Backup] => C:\Users\andieas\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3754312 2015-02-13] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2014-06-05] (TomTom) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [5127304 2014-11-20] (Plex, Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [DellSystemDetect] => C:\Users\andieas\AppData\Local\Apps\2.0\QMDN94TB.40O\6GL784N5.3EX\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe [283432 2015-03-06] (Dell) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [GoogleChromeAutoLaunch_BFA5688C9A9EFD2C783999CE8C9A876D] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [809288 2015-02-28] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000 AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-12-18] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-12-18] (NVIDIA Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\E-POST MAILER.lnk ShortcutTarget: E-POST MAILER.lnk -> C:\Program Files (x86)\Deutsche Post AG\E-POST MAILER\EpostMailer.exe (Deutsche Post AG) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\andieas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech blank Produktregistrierung.lnk ShortcutTarget: Logitech blank Produktregistrierung.lnk -> C:\Program Files (x86)\Logitech\G930\eReg.exe (Leader Technologies/Logitech) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ==================== Internet (Whitelisted) ==================== Teil 2 von FRST.txt (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = Google HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms} HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006 HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Deutschland ? mit Hotmail Nachfolger Outlook und Messenger Skype HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006 URLSearchHook: [S-1-5-21-2347290120-1232933544-3077768649-1005] ATTENTION ==> Default URLSearchHook is missing. SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms} SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2347290120-1232933544-3077768649-1001 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-21-2347290120-1232933544-3077768649-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear SearchScopes: HKU\S-1-5-21-2347290120-1232933544-3077768649-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-21-2347290120-1232933544-3077768649-1005 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: PDF Architect Helper -> {691B33B0-B86E-47F3-81C7-56E4FE3B929C} -> C:\Program Files (x86)\PDF Architect 2\creator-ie-helper.dll (pdfforge GmbH) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKLM-x32 - PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files (x86)\PDF Architect 2\creator-ie-plugin.dll (pdfforge GmbH) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll (pdfforge GmbH) FF Plugin HKU\S-1-5-21-2347290120-1232933544-3077768649-1001: @tools.google.com/Google Update;version=3 -> C:\Users\andieas\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKU\S-1-5-21-2347290120-1232933544-3077768649-1001: @tools.google.com/Google Update;version=9 -> C:\Users\andieas\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-04] FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_2_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension FF Extension: PDF Architect 2 Creator - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension [2014-12-02] Chrome: ======= CHR HomePage: Default -> hxxp://intranet/dresonet/ CHR StartupUrls: Default -> "https://mail.google.com/mail/?shva=1#inbox" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Gliffy Diagrams) - C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmicilclplefnflapjmnngmkkkkpfad [2015-03-04] CHR Extension: (YouTube) - C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-04] CHR Extension: (Google Cast) - C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-03-04] CHR Extension: (Advanced Font Settings) - C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default\Extensions\caclkomlalccbpcdllchkeecicepbmbm [2015-03-04] CHR Extension: (Google Search) - C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-04] CHR Extension: (Avast Online Security) - C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-16] CHR Extension: (Dropbox) - C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2015-03-04] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-06] CHR Extension: (Scientific Calculator) - C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default\Extensions\npoipmeppdioagbkigdlnpmjphnolaog [2015-03-04] CHR Extension: (Gmail) - C:\Users\andieas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-04] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-25] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] () R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-25] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [104416 2014-11-25] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-11-25] (Avast Software) S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2711736 2015-01-13] (Microsoft Corporation) R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2552528 2015-01-30] (Dell Inc.) R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201424 2015-01-30] (Dell Inc.) R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [211320 2015-02-11] (Dell Inc.) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed] R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272176 2012-09-24] () R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed] S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH) R2 PDF Architect 2 Creator; C:\Program Files (x86)\PDF Architect 2\creator-ws.exe [738856 2014-10-10] (pdfforge GmbH) S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH) R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed] R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1026432 2015-03-03] (Enigma Software Group USA, LLC.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [1153840 2012-09-24] (Intel® Corporation) S2 Util Fact Fire; "C:\Program Files (x86)\Fact Fire\bin\utilFactFire.exe" [X] =======\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Google Update] => C:\Users\andieas\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-04-05] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Google+ Auto Backup] => C:\Users\andieas\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3754312 2015-02-13] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2014-06-05] (TomTom) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [5127304 2014-11-20] (Plex, Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [DellSystemDetect] => C:\Users\andieas\AppData\Local\Apps\2.0\QMDN94TB.40O\6GL784N5.3EX\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe [283432 2015-03-06] (Dell) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [GoogleChromeAutoLaunch_BFA5688C9A9EFD2C783999CE8C9A876D] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [809288 2015-02-28] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000 AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-12-18] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-12-18] (NVIDIA Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\E-POST MAILER.lnk ShortcutTarget: E-POST MAILER.lnk -> C:\Program Files (x86)\Deutsche Post AG\E-POST MAILER\EpostMailer.exe (Deutsche Post AG) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\andieas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\andieas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech blank Produktregistrierung.lnk ShortcutTarget: Logitech blank Produktregistrierung.lnk -> C:\Program Files (x86)\Logitech\G930\eReg.exe (Leader Technologies/Logitech) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieas\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ============= Drivers (Whitelisted) ==================== Teil 3 von FRST.txt ============= Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-25] () R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-11-25] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-25] (AVAST Software) R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [449936 2014-11-25] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-25] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-25] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-25] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-25] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-25] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-25] () S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [131328 2014-10-08] (Microsoft Corporation) S3 BthHFAud; C:\Windows\System32\drivers\BthHfAud.sys [32768 2014-10-08] (Microsoft Corporation) R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation) R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.) R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.) R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-01-30] (Dell Computer Corporation) R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [23312 2015-01-30] (Dell Computer Corporation) S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider) R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2015-03-03] (Enigma Software Group USA, LLC.) S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-03-03] () R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [129752 2015-03-06] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation) R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [4309032 2012-10-10] (Intel Corporation) S3 TDKLIB; C:\Users\andieas\AppData\Local\Temp\ExtactTemp\TdkLib64.sys [19296 2015-03-06] () R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-04-04] (Acronis International GmbH) R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [183224 2014-04-04] (Acronis) R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-11-25] (Avast Software) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation) ========================== Drivers MD5 ======================= C:\Windows\System32\drivers\1394ohci.sys E1832BD9FD7E0FC2DC9FA5935DE3E8C1 C:\Windows\System32\drivers\3ware.sys AD508A1A46EC21B740AB31C28EFDFDB1 C:\Windows\System32\drivers\ACPI.sys E796AE43DDD1844281DB4D57294D17C0 C:\Windows\System32\Drivers\acpiex.sys AC8279D229398BCF05C3154ADCA86813 C:\Windows\System32\drivers\acpipagr.sys A8970D9BF23CD309E0403978A1B58F3F C:\Windows\System32\drivers\acpipmi.sys 111A89C99C5B4F1A7BCE5F643DD86F65 C:\Windows\System32\drivers\acpitime.sys 5758387D68A20AE7D3245011B07E36E7 C:\Windows\System32\drivers\ADP80XX.SYS 7C1FDF1B48298CBA7CE4BDD4978951AD C:\Windows\System32\DRIVERS\afcdp.sys ABCF9C80EAACE03021BB7F450EB8993F C:\Windows\system32\drivers\afd.sys 374E27295F0A9DCAA8FC96370F9BEEA5 C:\Windows\System32\drivers\agp440.sys 7DFAEBA9AD62D20102B576D5CAC45EC8 C:\Windows\System32\DRIVERS\ahcache.sys F0CB6DB513CAC393D04A0FCE0A59E1BF C:\Windows\System32\drivers\amdk8.sys 7589DE749DB6F71A68489DCE04158729 C:\Windows\System32\drivers\amdppm.sys B46D2D89AFF8A9490FA8C98C7A5616E3 C:\Windows\System32\drivers\amdsata.sys D2BF2F94A47D332814910FD47C6BBCD2 C:\Windows\System32\drivers\amdsbs.sys A8E04943C7BBA7219AA50400272C3C6E C:\Windows\System32\drivers\amdxata.sys CEA5F4F27CFC08E3A44D576811B35F50 C:\Windows\System32\drivers\AMPPAL.sys 0C3D62CB6B8F2B3CC42369BAC0F58AD5 C:\Windows\system32\DRIVERS\amppal.sys 0C3D62CB6B8F2B3CC42369BAC0F58AD5 C:\Windows\system32\DRIVERS\Apfiltr.sys DA4AE4C68D135A210FB3E78CFF369EBD C:\Windows\system32\drivers\appid.sys 415DD71628795197F7AFC176CBADC74E C:\Windows\System32\drivers\arcsas.sys 65045784366F7EC5FB4E71BCF923187B C:\Windows\system32\drivers\aswHwid.sys 9BE9F2B83DE80E2752B1405CC427E2EC C:\Windows\system32\drivers\aswKbd.sys EAFC6970073525E98D4D0E2B56741227 C:\Windows\system32\drivers\aswMonFlt.sys 2DA1C1AEDF454F8E32A863A1AEACDD8C C:\Windows\System32\DRIVERS\aswNdisFlt.sys 8025E7521EB601207627E8B4722ACE19 C:\Windows\system32\drivers\aswRdr2.sys 4750016EF9CC1DEC6DA3FE5AF9A7F095 C:\Windows\System32\Drivers\aswRvrt.sys 1323269A92645705DEFA053F3596829D C:\Windows\system32\drivers\aswSnx.sys E74FD717476B30E23F45354B8F3ACB30 C:\Windows\system32\drivers\aswSP.sys B1881A01E301990B671694CA1623F1B6 C:\Windows\system32\drivers\aswStm.sys 7509F07BA6F84C1E3B2C0D78A1F6F782 C:\Windows\System32\Drivers\aswVmm.sys 1A5BDDE65B648DC3AD48B6ECAA3AE9C8 C:\Windows\System32\drivers\atapi.sys 74B14192CF79A72F7536B27CB8814FBD C:\Windows\System32\drivers\bxvbda.sys A4A73F631FE2AA2826FBE4A399B04DEF C:\Windows\System32\drivers\BasicDisplay.sys 8CC7F7E4AFCBA605921B137ED7992C68 C:\Windows\System32\drivers\BasicRender.sys 38A82F4EE8C416A6744B6D30381ED768 C:\Windows\System32\drivers\bcmfn2.sys C1ABB0F7E3BEA48A0417BDF6FF14AB21 C:\Windows\System32\Drivers\Beep.sys EC19013E4CF87609534165DF897274D6 C:\Windows\System32\DRIVERS\bowser.sys 6B4FFFDDC618FCF64473CAA86E305697 C:\Windows\system32\drivers\BthA2DP.sys 95E695B056C0DAFDDF7E45FCB861BC0F C:\Windows\System32\drivers\BthAvrcpTg.sys A8F23D453A424FF4DE04989C4727ECC7 C:\Windows\System32\drivers\BthEnum.sys 1104A31260CCF4318C884E0AE6C513BF C:\Windows\System32\drivers\BthHfAud.sys 7A2E3CB427309F56C2571F0610B7ADA8 C:\Windows\System32\drivers\bthhfenum.sys 67343511D80BF3D6D9EEDB5BA8D0B06B C:\Windows\System32\drivers\BthHFHid.sys 71FE2A48E4C93DDB9798C024880B6C07 C:\Windows\System32\drivers\BthLEEnum.sys D30C67473A2E229662D21F27EAA9AAA5 C:\Windows\System32\drivers\bthmodem.sys 07E33226AD218A2A162662A05CAFB52F C:\Windows\System32\drivers\bthpan.sys 25BB93167DEF270188072603F92A1EF5 C:\Windows\System32\Drivers\BTHport.sys C37F4930795B771400C63C3C87E7A6C2 C:\Windows\System32\Drivers\BTHUSB.sys 08EA90955AED2D959EE67DF6EDF0E2B6 C:\Windows\system32\DRIVERS\btmaux.sys 4428C299BE7B9841ECFA82044B69FA6A C:\Windows\system32\DRIVERS\btmhsf.sys 7B31A8A9DC95B3634D896FD0F2814F19 C:\Windows\System32\DRIVERS\cdfs.sys 2FA6510E33F7DEFEC03658B74101A9B9 C:\Windows\System32\drivers\cdrom.sys C6796EA22B513E3457514D92DCDB1A3D C:\Windows\System32\drivers\circlass.sys BE9936EDD3267FAAFF94A7835867F00B C:\Windows\System32\drivers\CLFS.sys 179A41249055D5F039F1B6703F3B6D2B C:\Windows\System32\drivers\CmBatt.sys EF6EF85DADC3184A10D8F2F7159973CB C:\Windows\System32\Drivers\cng.sys 3930E508DDA46C1FF68FD963F350AA0A C:\Windows\System32\drivers\CompositeBus.sys 03AAED827C36F35D70900558B8274905 C:\Windows\System32\drivers\condrv.sys A1FF7DFBFBE164CF92603C651D304DD2 C:\Windows\System32\drivers\dam.sys 315BA4BC19316D72B2E037534E048B93 C:\Windows\system32\drivers\DDDriver64Dcsa.sys B56714DED87E29377F1EE930691DADA2 C:\Windows\system32\drivers\DellProf.sys 66C87079CFCB61B650086802693114E0 C:\Windows\System32\Drivers\dfsc.sys A03F362C5557E238CBFA914689C77248 C:\Windows\System32\drivers\disk.sys 4D40C9B33F738797CF50E77CB7C53E85 C:\Windows\System32\drivers\dmvsc.sys EB70A894708D1BC176AFD690FF06085F C:\Windows\system32\DRIVERS\Dot4.sys 27069CFFF29B7F04F4B1BB10154BE52B C:\Windows\System32\drivers\Dot4Prt.sys 0BD906A79F9CE3013F7D9D0AC45F9F9D C:\Windows\system32\DRIVERS\dot4usb.sys B7D595F2F464F7B628AD53F06547792C C:\Windows\system32\drivers\drmkaud.sys 00C594D5A1DBD22AD8B2902B9F6EFF94 C:\Windows\System32\drivers\dxgkrnl.sys E1BB0B6F00F470B451AB45EA13EBA0B3 C:\Windows\System32\drivers\evbda.sys 114BCFDF367FF37C3F1B0A96AF542E4D C:\Windows\System32\drivers\EhStorClass.sys 43531A5993380CC5113242C29D265FD9 C:\Windows\System32\drivers\EhStorTcgDrv.sys 6F8E738A9505A388B1157FDDE7B3101B C:\Windows\System32\drivers\errdev.sys DFFFAE1442BA4076E18EED5E406FA0D3 C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys 7AEC5E76816178BF6C543A155D8208B6 C:\Windows\System32\DRIVERS\EsgScanner.sys 3B32CAA07D672F8A2E0DF5CB3A873F45 C:\Windows\System32\Drivers\exfat.sys 7729D294A555C7AEB281ED8E4D0E01E4 C:\Windows\System32\Drivers\fastfat.sys 7C4E0D5900B2A1D11EDD626D6DDB937B C:\Windows\System32\drivers\fdc.sys 5D8402613E778B3BD45E687A8372710B C:\Windows\System32\drivers\fileinfo.sys BCFD8B149B3ADF92D0DB1E909CAF0265 C:\Windows\System32\drivers\filetrace.sys A1A66C4FDAFD6B0289523232AFB7D8AF C:\Windows\System32\drivers\flpydisk.sys BE743083CF7063C486A4398E3AEFE59A C:\Windows\System32\drivers\fltmgr.sys C1FB505A73FA2E9019D32444AB33B75A C:\Windows\System32\DRIVERS\fltsrv.sys C06AF3D1E7CA6868A6A3064CE6907C4A C:\Windows\System32\drivers\FsDepends.sys A7C31B168F371E8E6796219F23E354DB C:\Windows\System32\Drivers\Fs_Rec.sys 09F460AFEDCA03F3BF6E07D1CCC9AC42 C:\Windows\System32\DRIVERS\fvevol.sys F152D55E497E12256290C43B31C7D0CE C:\Windows\System32\drivers\fxppm.sys 9591D0B9351ED489EAFD9D1CE52A8015 C:\Windows\System32\drivers\gagp30kx.sys FC3EF65EE20D39F8749C2218DBA681CA C:\Windows\System32\drivers\vmgencounter.sys 0BF5CAD281E25F1418E5B8875DC5ADD1 C:\Windows\System32\Drivers\msgpioclx.sys 8DF1254093B5C354CE725EB6B9B0DE19 C:\Windows\system32\drivers\HdAudio.sys 56F69F7C25FB67C970997D7066DBC593 C:\Windows\System32\drivers\HDAudBus.sys D4B7ED39C7900384D9E5C1283F1E7926 C:\Windows\System32\drivers\HidBatt.sys 10A70BC1871CD955D85CD88372724906 C:\Windows\System32\drivers\hidbth.sys 1EA1B4FABB8CC348E73CA90DBA22E104 C:\Windows\System32\drivers\hidi2c.sys C241A8BAFBBFC90176EA0F5240EACC17 C:\Windows\System32\drivers\hidir.sys 9BDDEE26255421017E161CCB9D5EDA95 C:\Windows\System32\drivers\hidusb.sys 8DB8EAB9D0C6A5DF0BDCADEA239220B4 C:\Windows\System32\drivers\HpSAMD.sys A6AACEA4C785789BDA5912AD1FEDA80D C:\Windows\System32\drivers\HTTP.sys 9DDCA7F18983C5410DEFF79F819DF93C C:\Windows\System32\drivers\hwpolicy.sys 90656C0B3864804B090434EFC582404F C:\Windows\System32\drivers\hyperkbd.sys 6D6F9E3BF0484967E52F7E846BFF1CA1 C:\Windows\system32\DRIVERS\HyperVideo.sys 907C870F8C31F8DDD6F090857B46AB25 C:\Windows\System32\drivers\i8042prt.sys D887446F3F6051C60C26F4FD1FC8D43F C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 5D90E32E36CE5D4C535D17CE08AEAF05 C:\Windows\System32\drivers\iaLPSSi_I2C.sys DD05E7E80F52ADE9AEB292819920F32C C:\Windows\System32\drivers\iaStorA.sys 71341219FBB4BAB7F2462C4267DAB594 C:\Windows\System32\drivers\iaStorAV.sys 08BFE413B0B4AA8DFA4B5684CE06D3DC C:\Windows\System32\drivers\iaStorV.sys A2200C3033FA4EF249FC096A7A7D02A2 C:\Windows\system32\DRIVERS\iBtFltCoex.sys 23E22B130EFE5A225E279467BE146317 C:\Windows\system32\DRIVERS\igdkmd64.sys 076023219E918D34585B231029A44571 C:\Windows\system32\drivers\intelaud.sys FC7C456AF9B9811499EDBD10616832EE C:\Windows\System32\drivers\intelide.sys 4E448FCFFD00E8D657CD9E48D3E47157 C:\Windows\System32\drivers\intelpep.sys A770340FC02B999EF0DE6C2A6BC8437C C:\Windows\System32\drivers\intelppm.sys 47E74A8E53C7C24DCE38311E1451C1D9 C:\Windows\System32\DRIVERS\ipfltdrv.sys 9DB76D7F9E4E53EFE5DD8C53DE837514 C:\Windows\System32\drivers\IPMIDrv.sys 9C096BF5E10CA8BFA56F32522A89FAF1 C:\Windows\System32\drivers\ipnat.sys B7342B3C58E91107F6E946A93D9D4EFD C:\Windows\System32\drivers\irenum.sys AE44C526AB5F8A487D941CEB57B10C97 C:\Windows\System32\drivers\isapnp.sys 8AFEEA3955AA43616A60F133B1D25F21 C:\Windows\System32\drivers\msiscsi.sys D90AB68D0FAC9F357F663670FDBB511E C:\Windows\System32\drivers\iwdbus.sys A90C843F4FDD7A07129BA73C6BE13976 C:\Windows\System32\drivers\kbdclass.sys A1D4D34A56DF1D5122CDB265038A2E72 C:\Windows\System32\drivers\kbdhid.sys 4A34D7084B862A92F3ABC4969166B3D3 C:\Windows\system32\DRIVERS\kdnic.sys 813871C7D402A05F2E3A7075F9584A05 C:\Windows\System32\Drivers\ksecdd.sys 4E829B18D5BAEC29893792A3C671A847 C:\Windows\System32\Drivers\ksecpkg.sys 15C8C65CEA018C02EA0F648448C491C5 C:\Windows\system32\drivers\ksthunk.sys 11AFB527AA370B1DAFD5C36F35F6D45F C:\Windows\system32\DRIVERS\lltdio.sys C09010B3680860131631F53E8FE7BAD8 C:\Windows\System32\drivers\lsi_sas.sys C755AE4635457AA2A11F79C0DF857ABC C:\Windows\System32\drivers\lsi_sas2.sys ADAC09CBE7A2040B7F68B5E5C9A75141 C:\Windows\System32\drivers\lsi_sas3.sys 04D1274BB9BBCCF12BD12374002AA191 C:\Windows\System32\drivers\lsi_sss.sys 327469EEF3833D0C584B7E88A76AEC0C C:\Windows\system32\drivers\luafv.sys DDEE191AB32DFC22C6465002ECDF5EE4 C:\WINDOWS\system32\drivers\mbam.sys CA43F8904E24BBE49982E4C0B29E6579 C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys 26C43960C99EE861A5D0EDC4DCF3B1C3 C:\WINDOWS\system32\drivers\mwac.sys 9D7BFFDB5FA62B600DF1FCB4919D9D79 C:\Windows\System32\drivers\megasas.sys EB5C03A070F30D64A6DF80E53B22F53F C:\Windows\System32\drivers\megasr.sys F6F13533196DE7A582D422B0241E4363 C:\Windows\system32\DRIVERS\TeeDriverx64.sys 926C135CFB0C75B32FB714B5C0C58FAA C:\Windows\System32\drivers\modem.sys 8B38C44F69259987C95135C9627E2378 C:\Windows\System32\drivers\monitor.sys 601589000CC90F0DF8DA2CC254A3CCC9 C:\Windows\System32\drivers\mouclass.sys 2A2F8D5284E59815169A88F1FC9CEE28 C:\Windows\System32\drivers\mouhid.sys 91223A2AE2955B3E0DA3DB79C3A897A6 C:\Windows\System32\drivers\mountmgr.sys D1D82F007A079A4D623DBD1F36EF30A1 C:\Windows\System32\drivers\mpsdrv.sys 6FC047578785B0435F4E2660946D1ADC C:\Windows\system32\drivers\mrxdav.sys DB32958F0E704EFBF7F15161A569E39F C:\Windows\System32\DRIVERS\mrxsmb.sys 31233271EDE50D1BBB220F78AFA60486 C:\Windows\System32\DRIVERS\mrxsmb10.sys 3E28B99198B514DFEB152EACF913025E C:\Windows\System32\DRIVERS\mrxsmb20.sys 6276AC2AA203CF47811F6EFBBD214FBF C:\Windows\system32\DRIVERS\bridge.sys F3C060444777A59FC63D920719E43CCD C:\Windows\System32\Drivers\Msfs.sys D13329FBF8345B28AB30F44CC247DC08 C:\Windows\System32\drivers\msgpiowin32.sys C6B474E46F9E543B875981ED3FFE6ADD C:\Windows\System32\drivers\mshidkmdf.sys 65C92EB9D08DB5C69F28C7FFD4E84E31 C:\Windows\System32\drivers\mshidumdf.sys 52299F086AC2DAFD100DD5DC4A8614BA C:\Windows\System32\drivers\msisadrv.sys 36D92AF3343C3A3E57FEF11C449AEA4C C:\Windows\system32\drivers\MSKSSRV.sys A9BBBD2BAE6142253B9195E949AC2E8D C:\Windows\system32\DRIVERS\mslldp.sys 51B3AC0560848CD6D65AC2033E293113 C:\Windows\system32\drivers\MSPCLOCK.sys 7B2128EB875DCBC006E6A913211006D6 C:\Windows\system32\drivers\MSPQM.sys 1E88171579B218115C7A772F8DE04BD8 C:\Windows\System32\Drivers\MsRPC.sys BBE2A455053E63BECBF42C2F9B21FAE0 C:\Windows\System32\drivers\mssmbios.sys 8D6B7D515C5CBCDB75B928A0B73C3C5E C:\Windows\system32\drivers\MSTEE.sys 115019AE01E0EB9C048530D2928AB4A2 C:\Windows\System32\drivers\MTConfig.sys 96D604A35070360F0DD4A7A8AF410B5E C:\Windows\System32\Drivers\mup.sys 619CA29326B82372621DB2C0964D8365 C:\Windows\System32\drivers\mvumis.sys B8C35C94DCB2DFEAF03BB42131F2F77F C:\Windows\system32\DRIVERS\nwifi.sys 008F7CED69FD5B30CBDE1E03C6F36A27 C:\Windows\System32\drivers\ndis.sys 21FE65E2E67C4E31EE95CBD1F91C4B24 C:\Windows\system32\DRIVERS\ndiscap.sys 8CECC8DA55F3274181FD1EA28AD76664 C:\Windows\system32\DRIVERS\NdisImPlatform.sys 269882812E9A68FFF1AFE1283D428322 C:\Windows\system32\DRIVERS\ndistapi.sys 82821F4EEC776B4CF11695A38F3ABA46 C:\Windows\system32\DRIVERS\ndisuio.sys B832B35055BA2B7B4181861FF94D8E59 C:\Windows\System32\drivers\NdisVirtualBus.sys 1F58E48EF75F34C35D8E93A0DC535CFE C:\Windows\system32\DRIVERS\ndiswan.sys DEC29080202D4F9F17F55E18BCFCC41A C:\Windows\system32\DRIVERS\ndiswan.sys DEC29080202D4F9F17F55E18BCFCC41A C:\Windows\System32\Drivers\NDProxy.sys DDD7F92A83F74D1476B71FBA9530A8DC C:\Windows\System32\drivers\Ndu.sys 3083926D1CC5B56EA0786527B557DD1B C:\Windows\System32\DRIVERS\netbios.sys 42FF4975D032CAE558AE4BB8448F6E5A C:\Windows\System32\DRIVERS\netbt.sys 0217532E19A748F0E5D569307363D5FD C:\Windows\System32\drivers\netvsc63.sys D4DCE03870314D3354F3501F9DDD4123 C:\Windows\system32\DRIVERS\NETwew00.sys 8CEF52F56EE6E9C4DDD374CE8E2E3DC6 C:\Windows\System32\Drivers\Npfs.sys 8F44A2F57C9F1A19AC9C6288C10FB351 C:\Windows\System32\drivers\npsvctrig.sys CBDB4F0871C88DF930FC0E8588CA67FC C:\Windows\System32\drivers\nsiproxy.sys 0E046FF5823B95326D10CF1B4AF23541 C:\Windows\System32\Drivers\Ntfs.sys 7F68063A5A0461E02BC860CE0E6BFDDC C:\Windows\System32\Drivers\Null.sys EF1B290FC9F0E47CC0B537292BEE5904 C:\Windows\system32\DRIVERS\nvlddmkm.sys E71E299FF15390E585BACF2C18F55078 C:\Windows\System32\DRIVERS\nvpciflt.sys FCC3A3F875C8CF258F71BE2F2CAA2355 C:\Windows\System32\drivers\nvraid.sys BC6B5942AFF25EBAF62DE43C3807EDF8 C:\Windows\System32\drivers\nvstor.sys 1F43ABFFAC3D6CA356851D517392966E C:\Windows\System32\drivers\nv_agp.sys 6934A936A7369DFE37B7DBA93F5E5E49 C:\Windows\System32\drivers\parport.sys 764B1121867B2D9B31C491668AC72B2B C:\Windows\System32\drivers\partmgr.sys BAFF6122CFC9F95CA175AD8C348179A4 C:\Windows\System32\drivers\pci.sys 91ED124E261EA8FAA1C0FFDF2A71B0C4 C:\Windows\System32\drivers\pciide.sys 346E38FCC6859A727DD28AFAD1F0AFF4 C:\Windows\System32\drivers\pcmcia.sys 4D3BDCC1C7B40C9D7B6AD990E6DEC397 C:\Windows\System32\drivers\pcw.sys BF28771D1436C88BE1D297D3098B0F7D C:\Windows\System32\drivers\pdc.sys 24A8DFC07E4BAF29AEA26E383D4CC886 C:\Windows\System32\drivers\peauth.sys 0ECEE590F2E2EF969FB74A6FC583A1E6 C:\Windows\System32\drivers\processr.sys ECD373F9571C745894367CC2635EA44F C:\Windows\system32\DRIVERS\pacer.sys FC0141B4A5AD6D637D883C1A89FC45C5 C:\Windows\system32\drivers\qwavedrv.sys 83868EB2924E6BC21A54337C65D614D1 C:\Windows\System32\DRIVERS\rasacd.sys B337B1F1E82A83E20A1743E008E25C0F C:\Windows\system32\DRIVERS\raspppoe.sys 5247F308C4103CDC4FE12AE1D235800A C:\Windows\System32\DRIVERS\rdbss.sys A1A5E79C0D1352AFDC08328A623DA051 C:\Windows\System32\drivers\rdpbus.sys 6B21EBF892CD8CACB71669B35AB5DE32 C:\Windows\System32\drivers\rdpdr.sys 680C1DAE268B6FB67FA21B389A8B79EF C:\Windows\System32\drivers\rdpvideominiport.sys BC8A79C625568DDB7DCA49D0C2741A64 C:\Windows\System32\drivers\rdyboost.sys A26AEC49F318FEE141DDDB2C5F99B3E6 C:\Windows\System32\Drivers\ReFS.sys 615DFD97DEA56CE1C3A52185A3038FF8 C:\Windows\System32\drivers\rfcomm.sys 0527EF6E23B9FAB37DDCBC479C6CFA28 C:\Windows\system32\DRIVERS\rspndr.sys 2D05A5508F4685412F2B89E8C2189ABC C:\Windows\System32\Drivers\RtsUVStor.sys 4873CF79FBE56B9B35C1DE3EEB907A50 C:\Windows\system32\DRIVERS\Rt630x64.sys 19764658C1468C2C0CEF133D28414A6B C:\Windows\System32\drivers\vms3cap.sys 1A063730F221B2746FF00457AE17E4F0 C:\Windows\System32\drivers\sbp2port.sys C624A1B32211C3166EDB3F4AB02A30B7 C:\Windows\System32\DRIVERS\scfilter.sys 13BEA6C882D4D877A5A85CA149C86BC1 C:\Windows\System32\drivers\sdbus.sys 7B7C482CF48E6EE33664340D1A78E6FE C:\Windows\System32\drivers\sdstor.sys 0B1E929D11A8E358106955603FAC65E8 C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit C:\Windows\System32\drivers\SerCx.sys DB2FF24CE0BDD15FE75870AFE312BA89 C:\Windows\System32\drivers\SerCx2.sys 0044B31F93946D5D41982314381FE431 C:\Windows\System32\drivers\serenum.sys 3CD600C089C1251BEEB4CD4CD5164F9E C:\Windows\System32\drivers\serial.sys D864381BC9C725FAB01D94C060660166 C:\Windows\System32\drivers\sermouse.sys 96B01F117057FB4DAE0FF919ACB55770 C:\Windows\System32\drivers\sfloppy.sys 472B7A5AC181C050888DB454663DD764 C:\Windows\System32\drivers\SiSRaid2.sys 2F518D13DD6F3053837FE606F1A2EA1F C:\Windows\System32\drivers\sisraid4.sys 1AC9A200A9C49C4508F04AAFFCA34A3F C:\Windows\System32\DRIVERS\snapman.sys E3E56CAF0472163871B922FC7CBC9654 C:\Windows\System32\drivers\spaceport.sys D24B1945ED1F9C96DA786DBBF1E983CE C:\Windows\System32\drivers\SpbCx.sys F337BE11071818FC3F5DC2940B6BDE34 C:\Windows\System32\DRIVERS\srv.sys 6416E79A58A8FCC33A447A4DDDD3BF04 C:\Windows\System32\DRIVERS\srv2.sys 00D8AC8E3053290BDE6EA2FB6810D2FC C:\Windows\System32\DRIVERS\srvnet.sys D047CD668E6277FD80F0C613946F034C C:\Windows\System32\drivers\stexstor.sys 366DEA74BBA65B362BCCFC6FC2ADFD8B C:\Windows\system32\DRIVERS\stwrt64.sys 70FC67F49972EA0EFC60F65EA9A4B716 C:\Windows\System32\drivers\storahci.sys 0ED2E318ABB68C1A35A8B8038BDB4C90 C:\Windows\System32\drivers\vmstorfl.sys 8B9486B64E5FC17FB9CC04CA10B77A34 C:\Windows\System32\drivers\stornvme.sys 6B06E2D11E604BE2B1A406C4CB3B90DE C:\Windows\System32\drivers\storvsc.sys 548759755BC73DAD663250239D7E0B9F C:\Windows\System32\drivers\swenum.sys 65454187E0F8B6C0DCECB0287D06EC43 C:\Windows\System32\drivers\tcpip.sys 468273F7089A3A33D149955F0F203FA4 C:\Windows\system32\DRIVERS\tcpip.sys 468273F7089A3A33D149955F0F203FA4 C:\Windows\System32\drivers\tcpipreg.sys 41CF802064F72E55F50CA0A221FD36D4 C:\Users\andieas\AppData\Local\Temp\ExtactTemp\TdkLib64.sys C6B5A3AE07B165A6E5FFF7E31FF91016 C:\Windows\system32\DRIVERS\tdrpman.sys AC28A6FCA485821499FF018695CEDE16 C:\Windows\system32\DRIVERS\tdx.sys FFF28F9F6823EB1756C60F1649560BBF C:\Windows\System32\drivers\terminpt.sys 232D185D2337F141311D0CF1983E1431 C:\Windows\System32\DRIVERS\tib.sys DE604462206F7D8C203F767F425FCA8D C:\Windows\System32\DRIVERS\tib_mounter.sys 8C750FE6DE38AF13506B99EC2F519F79 C:\Windows\system32\drivers\tpm.sys 82F909359600D3603FE852DB7F135626 C:\Windows\System32\drivers\tsusbflt.sys BF8F54CA37E9C9D6582C31C5761F8C93 C:\Windows\System32\drivers\TsUsbGD.sys 20185BEB7512EDE4EFECDFA148AC9F99 C:\Windows\system32\DRIVERS\tunnel.sys C8E0E78B5D284C2FF59BDFFDAF997242 C:\Windows\System32\drivers\uagp35.sys F6EEAD052943B5A3104C1405BB856C54 C:\Windows\System32\drivers\uaspstor.sys FE6067B1FD4E63650C667B33D080565B C:\Windows\System32\drivers\ucx01000.sys 807F8CF3E973305FC435C61CBBEE2A49 C:\Windows\System32\DRIVERS\udfs.sys 1EC649F112896FAE33250F0B97AC5D0B C:\Windows\System32\drivers\UEFI.sys 9578691F297E1B1F519970FE6D47CB21 C:\Windows\System32\drivers\uliagpkx.sys 5EAB5117DDB24FC4D39E6FFFCF1837B9 C:\Windows\System32\drivers\umbus.sys DA34C39A18E60E7C3FA0630566408034 C:\Windows\System32\drivers\umpass.sys AE8294875E5446E359B1E8035D40C05E C:\Windows\System32\drivers\usbccgp.sys FF78D053A05E5A394F4E3C1816CC65A8 C:\Windows\System32\drivers\usbcir.sys 0139248F6B95CF0D837B5B46A2722D40 C:\Windows\System32\drivers\usbehci.sys 48BA326A3DBA5B5BEB5F2777F4618696 C:\Windows\System32\drivers\usbhub.sys FEF0BC107812B36849741C3211BA6B60 C:\Windows\System32\drivers\UsbHub3.sys FAA564A13576F9284546BF016D27B551 C:\Windows\System32\drivers\usbohci.sys 3019097FB6C985EF24C058090FF3BDBD C:\Windows\System32\drivers\usbprint.sys 4D655E3B684BE9B0F7FFD8A2935C348C C:\Windows\system32\DRIVERS\usbscan.sys F04D164C4168701A4E7835607722E5F1 C:\Windows\System32\drivers\USBSTOR.SYS 66732C13628BDB1AB0D6FD46027327C2 C:\Windows\System32\drivers\usbuhci.sys 064260B3A5868AC894A4943543BC7AB7 C:\Windows\System32\Drivers\usbvideo.sys 5C8F604F6DC74177CDD8372D7B1ADFF0 C:\Windows\System32\drivers\USBXHCI.SYS 1A20F03700D2B2ED775E38D751EF2F63 C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys 1352B215BDC5807A5641E7C143796DD7 C:\Windows\System32\drivers\vdrvroot.sys FEB26E3B8345A7E8D62F945C4AE86562 C:\Windows\System32\drivers\VerifierExt.sys A026EDEAA5EECAE0B08E2748B616D4BD C:\Windows\System32\drivers\vhdmp.sys C06E8481E068F170A258441639AC5792 C:\Windows\System32\drivers\viaide.sys 06D38968028E9AB19DE9B618C7B6D199 C:\Windows\System32\drivers\vmbus.sys 511AD3FF957A0127E6BD336FF6F89C38 C:\Windows\System32\drivers\VMBusHID.sys DA40BEA0A863CE768C940CA9723BF81F C:\Windows\System32\drivers\volmgr.sys 55D7D963DE85162F1C49721E502F9744 C:\Windows\System32\drivers\volmgrx.sys CCB9E901F7254BF96D28EB1B0E5329B7 C:\Windows\System32\drivers\volsnap.sys 64CA2B4A49A8EAF495E435623ECCE7DB C:\Windows\System32\drivers\vpci.sys EF31713EE4C7CCFE4049F7E7F15645A2 C:\Windows\System32\drivers\vsmraid.sys 4539F45F9F4C9757A86A56C949421E07 C:\Windows\System32\drivers\vstxraid.sys 0849B7260F26FE05EA56DED0672E2F4B C:\Windows\System32\drivers\vwifibus.sys BE970C369E43B509C1EDA2B8FA7CECB0 C:\Windows\system32\DRIVERS\vwififlt.sys 35BF5C5F5E3C9902C98978C7640574DA C:\Windows\system32\DRIVERS\vwifimp.sys 65ED7B9CFEA893DF7748D5FF692690DE C:\Windows\System32\drivers\wacompen.sys 0910AB9ED404C1434E2D0376C2AD5D8B C:\Windows\system32\drivers\WdBoot.sys 0359607177E5E9F6041136CC0A5CB0B6 C:\Windows\System32\drivers\Wdf01000.sys CB6C63FF8342B467E2EF76E98D5B934D C:\Windows\system32\drivers\WdFilter.sys DE8D12B4C3F55FA2C5E9774314F6C58A C:\Windows\System32\Drivers\WdNisDrv.sys 4AD874CDC812EC156265E451B6B09DAB C:\Windows\System32\DRIVERS\wfplwfs.sys BAB713B409258DB7B5D9F9693F802B0E C:\Windows\System32\drivers\wimmount.sys 5F66B7BB330AA80067FC66149A692620 C:\Windows\System32\drivers\WinUsb.sys AC263C2F66405589528995AA41040599 C:\Windows\System32\drivers\wmiacpi.sys 2834D9D3B4F554A39C72F00EA3F0E128 C:\Windows\System32\Drivers\Wof.sys 7FC5667DF73D4B04AA457CC3A4180E09 C:\Windows\System32\DRIVERS\wpcfltr.sys A2468CC3509394A33C4C32F99563D845 C:\Windows\System32\drivers\WpdUpFltr.sys 9F2904B55F6CECCD1A8D986B5CE2609A C:\Windows\system32\drivers\ws2ifsl.sys AE072B0339D0A18E455DC21666CAD572 C:\Windows\System32\drivers\WSDPrint.sys F586F3F1BF962FE9AE4316E0D896B22F C:\Windows\System32\drivers\WudfPf.sys 481286719402E4BAEFEA0604AB1B5113 C:\Windows\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F C:\Windows\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F C:\Windows\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F C:\Windows\System32\drivers\WUDFRd.sys D7B4859227B02BCC1055B279A63C937F ==================== NetSvcs (Whitelisted) =================== habe jetzt alles gepostet außer dem heutigen Windows-Update in der FRST.txt. Das sind sehr viele Zeilen und die passen nicht in dieses Fenster rein. Andreas |
|
07.03.2015, 13:06
| #5 |
| /// the machine /// TB-Ausbilder | Kurzes Stoppen alle 60 Sekunden mit Tröt-Geräusch hi, Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
07.03.2015, 13:56
| #6 |
| | Kurzes Stoppen alle 60 Sekunden mit Tröt-Geräusch Hallo Schrauber, hier meine Log-Files: Code:
ATTFilter # AdwCleaner v4.111 - Bericht erstellt 07/03/2015 um 13:21:24
# Aktualisiert 18/02/2015 von Xplode
# Datenbank : 2015-03-05.1 [Server]
# Betriebssystem : Windows 8.1 (x64)
# Benutzername :
# Gestarted von : C:\Users\\Downloads\AdwCleaner_4.111 (2).exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
***** [ Geplante Tasks ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Internetbrowser ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Google Chrome v41.0.2272.76
*************************
AdwCleaner[R0].txt - [3486 Bytes] - [05/03/2015 12:39:47]
AdwCleaner[R1].txt - [912 Bytes] - [05/03/2015 12:56:38]
AdwCleaner[R2].txt - [973 Bytes] - [07/03/2015 13:17:11]
AdwCleaner[S0].txt - [3116 Bytes] - [05/03/2015 12:46:59]
AdwCleaner[S1].txt - [896 Bytes] - [07/03/2015 13:21:24]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [954 Bytes] ##########
Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 07.03.2015 Scan Time: 12:10:04 Logfile: Antimaleware_Log_2015_03_07.txt Administrator: Yes Version: 2.00.4.1028 Malware Database: v2015.03.07.02 Rootkit Database: v2015.02.25.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 8.1 CPU: x64 File System: NTFS User: andieasenda Scan Type: Threat Scan Result: Completed Objects Scanned: 500289 Time Elapsed: 38 min, 28 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 1 PUP.Optional.FactFire.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util Fact Fire, Quarantined, [e8c6f74b662466d07a96c6eb9f64f907], Registry Values: 0 (No malicious items detected) Registry Data: 1 PUP.Optional.NationZoom.A, HKU\S-1-5-21-2347290120-1232933544-3077768649-1009-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.nationzoom.com/?type=hp&ts=1387304245&from=tugs&uid=TOSHIBAXDT01ACA100_Y2LRMYPFSXXY2LRMYPFSX, Good: (www.google.com), Bad: (hxxp://www.nationzoom.com/?type=hp&ts=1387304245&from=tugs&uid=TOSHIBAXDT01ACA100_Y2LRMYPFSXXY2LRMYPFSX),Replaced,[08a6162c5c2e191df961a431c441669a] Folders: 0 (No malicious items detected) Files: 2 PUP.Optional.MindSpark.A, C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_internetspeedtracker.dl.tb.ask.com_0.localstorage, Quarantined, [a806053df29858defdf62fae55ae8b75], PUP.Optional.MindSpark.A, C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_internetspeedtracker.dl.tb.ask.com_0.localstorage-journal, Quarantined, [b4fa152d4a408bab5d96429b788b8c74], Physical Sectors: 0 (No malicious items detected) (end) Vielen Dank, Andreas So, hier der JRT, txt: Code:
ATTFilter
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\pcdr"
Successfully deleted: [Folder] "C:\Users\andieasenda\AppData\Roaming\pcdr"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 07.03.2015 at 13:46:51.91
End of JRT log
Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-03-2015 01 Ran by andieasenda (administrator) on LAPTOPandieasenda on 07-03-2015 13:50:18 Running from C:\Users\andieasenda\Downloads Loaded Profiles: andieasenda & UpdatusUser (Available profiles: andieasenda & UpdatusUser & andieasenda_001 & Administrator) Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe () C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\msosync.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (pdfforge GmbH) C:\Program Files (x86)\PDF Architect 2\creator-ws.exe (TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe (WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Google Inc.) C:\Users\andieasenda\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Dropbox, Inc.) C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\Dropbox.exe (IDM Computer Solutions, Inc.) C:\Arbeit\UltraEdit\UEDIT32.EXE (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe (Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe (Thisisu) C:\Users\andieasenda\Downloads\JRT (1).exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [517912 2013-02-15] (Acronis) HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [4391584 2012-08-22] (Dell Inc.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [708952 2013-07-08] (Alps Electric Co., Ltd.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation) HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-09-06] (IDT, Inc.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-27] (AVAST Software) HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6405376 2013-03-27] (Acronis) HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1105848 2013-01-10] (Acronis) HKLM-x32\...\Run: [Logitech G930] => C:\Program Files (x86)\Logitech\G930\G930.exe [1516888 2011-03-23] (Logitech(c)) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Google Update] => C:\Users\andieasenda\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-04-05] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Google+ Auto Backup] => C:\Users\andieasenda\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3754312 2015-02-13] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2014-06-05] (TomTom) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [5127304 2014-11-20] (Plex, Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [DellSystemDetect] => C:\Users\andieasenda\AppData\Local\Apps\2.0\QMDN94TB.40O\6GL784N5.3EX\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe [283432 2015-03-06] (Dell) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [GoogleChromeAutoLaunch_BFA5688C9A9EFD2C783999CE8C9A876D] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [809288 2015-02-28] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000 AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-12-18] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-12-18] (NVIDIA Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\E-POST MAILER.lnk ShortcutTarget: E-POST MAILER.lnk -> C:\Program Files (x86)\Deutsche Post AG\E-POST MAILER\EpostMailer.exe (Deutsche Post AG) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\Users\andieasenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\andieasenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech blank Produktregistrierung.lnk ShortcutTarget: Logitech blank Produktregistrierung.lnk -> C:\Program Files (x86)\Logitech\G930\eReg.exe (Leader Technologies/Logitech) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) Code:
ATTFilter ==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
URLSearchHook: [S-1-5-21-2347290120-1232933544-3077768649-1005] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2347290120-1232933544-3077768649-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-2347290120-1232933544-3077768649-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2347290120-1232933544-3077768649-1005 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: PDF Architect Helper -> {691B33B0-B86E-47F3-81C7-56E4FE3B929C} -> C:\Program Files (x86)\PDF Architect 2\creator-ie-helper.dll (pdfforge GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files (x86)\PDF Architect 2\creator-ie-plugin.dll (pdfforge GmbH)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll (pdfforge GmbH)
FF Plugin HKU\S-1-5-21-2347290120-1232933544-3077768649-1001: @tools.google.com/Google Update;version=3 -> C:\Users\andieasenda\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-2347290120-1232933544-3077768649-1001: @tools.google.com/Google Update;version=9 -> C:\Users\andieasenda\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-04]
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_2_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension
FF Extension: PDF Architect 2 Creator - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension [2014-12-02]
Chrome:
=======
CHR HomePage: Default -> hxxp://intranet/dresonet/
CHR StartupUrls: Default -> "https://mail.google.com/mail/?shva=1#inbox"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Gliffy Diagrams) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmicilclplefnflapjmnngmkkkkpfad [2015-03-04]
CHR Extension: (YouTube) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-04]
CHR Extension: (Google Cast) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-03-04]
CHR Extension: (Advanced Font Settings) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\caclkomlalccbpcdllchkeecicepbmbm [2015-03-04]
CHR Extension: (Google Search) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-04]
CHR Extension: (Avast Online Security) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-16]
CHR Extension: (Dropbox) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2015-03-04]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-06]
CHR Extension: (Google Wallet) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-07]
CHR Extension: (Scientific Calculator) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\npoipmeppdioagbkigdlnpmjphnolaog [2015-03-04]
CHR Extension: (Gmail) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-25]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-25] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [104416 2014-11-25] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-11-25] (Avast Software)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2711736 2015-01-13] (Microsoft Corporation)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2552528 2015-01-30] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201424 2015-01-30] (Dell Inc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [211320 2015-02-11] (Dell Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272176 2012-09-24] ()
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 201
Geändert von andieasenda (07.03.2015 um 14:18 Uhr) |
|
07.03.2015, 18:53
| #7 |
| /// the machine /// TB-Ausbilder | Kurzes Stoppen alle 60 Sekunden mit Tröt-GeräuschESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
08.03.2015, 04:37
| #8 |
| | Kurzes Stoppen alle 60 Sekunden mit Tröt-Geräusch Ok, alles durchgeführt. Alles sauber. Leider ist es umso schlimmer geworden: Nicht 60 Sekunden, sondern viel häufiger, ein Tröten. Vielen Dank für die Hilfe, Andreas |
|
08.03.2015, 15:53
| #9 |
| /// the machine /// TB-Ausbilder | Kurzes Stoppen alle 60 Sekunden mit Tröt-Geräusch das frische FRST log bitte. Definier das Tröten mal bitte genauer, und versuch es mal zu provozieren. Kommt es nur wenn der Browser offen ist?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
08.03.2015, 16:30
| #10 |
| | 2015_03_08 Hallo Schrauber, hier die FRST, Teil 1: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-03-2015 02 Ran by andieasenda (administrator) on LAPTOPandieasenda on 08-03-2015 16:15:33 Running from C:\Users\andieasenda\Downloads Loaded Profiles: andieasenda & UpdatusUser (Available profiles: andieasenda & UpdatusUser & kolja_001 & Administrator) Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe () C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (pdfforge GmbH) C:\Program Files (x86)\PDF Architect 2\creator-ws.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe (Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Google Inc.) C:\Users\andieasenda\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Dropbox, Inc.) C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\Dropbox.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Picasa3\Picasa3.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [517912 2013-02-15] (Acronis) HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [4391584 2012-08-22] (Dell Inc.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [708952 2013-07-08] (Alps Electric Co., Ltd.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation) HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-09-06] (IDT, Inc.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-27] (AVAST Software) HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6405376 2013-03-27] (Acronis) HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1105848 2013-01-10] (Acronis) HKLM-x32\...\Run: [Logitech G930] => C:\Program Files (x86)\Logitech\G930\G930.exe [1516888 2011-03-23] (Logitech(c)) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Google Update] => C:\Users\andieasenda\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-04-05] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Google+ Auto Backup] => C:\Users\andieasenda\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3754312 2015-02-13] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2014-06-05] (TomTom) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [5127304 2014-11-20] (Plex, Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [DellSystemDetect] => C:\Users\andieasenda\AppData\Local\Apps\2.0\QMDN94TB.40O\6GL784N5.3EX\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe [283432 2015-03-06] (Dell) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Run: [GoogleChromeAutoLaunch_BFA5688C9A9EFD2C783999CE8C9A876D] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [809288 2015-02-28] (Google Inc.) HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000 AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-12-18] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-12-18] (NVIDIA Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\E-POST MAILER.lnk ShortcutTarget: E-POST MAILER.lnk -> C:\Program Files (x86)\Deutsche Post AG\E-POST MAILER\EpostMailer.exe (Deutsche Post AG) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\Users\andieasenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\andieasenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech blank Produktregistrierung.lnk ShortcutTarget: Logitech blank Produktregistrierung.lnk -> C:\Program Files (x86)\Logitech\G930\eReg.exe (Leader Technologies/Logitech) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\andieasenda\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms} HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006 HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKU\S-1-5-21-2347290120-1232933544-3077768649-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006 URLSearchHook: [S-1-5-21-2347290120-1232933544-3077768649-1005] ATTENTION ==> Default URLSearchHook is missing. SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms} SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2347290120-1232933544-3077768649-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear SearchScopes: HKU\S-1-5-21-2347290120-1232933544-3077768649-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-21-2347290120-1232933544-3077768649-1005 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-12-02] (Microsoft Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-25] (AVAST Software) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-14] (Microsoft Corporation) BHO-x32: PDF Architect Helper -> {691B33B0-B86E-47F3-81C7-56E4FE3B929C} -> C:\Program Files (x86)\PDF Architect 2\creator-ie-helper.dll [2014-10-10] (pdfforge GmbH) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-06] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-25] (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-06] (Oracle Corporation) Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKLM-x32 - PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files (x86)\PDF Architect 2\creator-ie-plugin.dll [2014-10-10] (pdfforge GmbH) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-08-29] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-13] (Google, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-06] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-06] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-04-08] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.) FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH) FF Plugin HKU\S-1-5-21-2347290120-1232933544-3077768649-1001: @tools.google.com/Google Update;version=3 -> C:\Users\andieasenda\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.) FF Plugin HKU\S-1-5-21-2347290120-1232933544-3077768649-1001: @tools.google.com/Google Update;version=9 -> C:\Users\andieasenda\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-04] FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_2_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension FF Extension: PDF Architect 2 Creator - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension [2014-12-02] Chrome: ======= CHR HomePage: Default -> hxxp://intranet/dresonet/ CHR StartupUrls: Default -> "https://mail.google.com/mail/?shva=1#inbox" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Gliffy Diagrams) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmicilclplefnflapjmnngmkkkkpfad [2015-03-04] CHR Extension: (YouTube) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-04] CHR Extension: (Google Cast) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-03-04] CHR Extension: (Advanced Font Settings) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\caclkomlalccbpcdllchkeecicepbmbm [2015-03-04] CHR Extension: (Google Search) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-04] CHR Extension: (Avast Online Security) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-16] CHR Extension: (Dropbox) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2015-03-04] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-06] CHR Extension: (Google Wallet) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-07] CHR Extension: (Scientific Calculator) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\npoipmeppdioagbkigdlnpmjphnolaog [2015-03-04] CHR Extension: (Gmail) - C:\Users\andieasenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-04] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-25] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] () R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-25] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [104416 2014-11-25] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-11-25] (Avast Software) S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2711736 2015-01-13] (Microsoft Corporation) R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2552528 2015-01-30] (Dell Inc.) R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201424 2015-01-30] (Dell Inc.) R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [211320 2015-02-11] (Dell Inc.) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed] R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272176 2012-09-24] () S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed] S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH) R2 PDF Architect 2 Creator; C:\Program Files (x86)\PDF Architect 2\creator-ws.exe [738856 2014-10-10] (pdfforge GmbH) S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH) S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed] R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1026432 2015-03-03] (Enigma Software Group USA, LLC.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [1153840 2012-09-24] (Intel® Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-25] () R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-11-25] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-25] (AVAST Software) R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [449936 2014-11-25] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-25] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-25] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-25] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-25] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-25] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-25] () S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [131328 2014-10-08] (Microsoft Corporation) S3 BthHFAud; C:\Windows\System32\drivers\BthHfAud.sys [32768 2014-10-08] (Microsoft Corporation) R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation) R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.) R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.) R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-01-30] (Dell Computer Corporation) R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [23312 2015-01-30] (Dell Computer Corporation) S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider) R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2015-03-03] (Enigma Software Group USA, LLC.) S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-03-03] () R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [129752 2015-03-08] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation) R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [4309032 2012-10-10] (Intel Corporation) S3 TDKLIB; C:\Users\andieasenda\AppData\Local\Temp\ExtactTemp\TdkLib64.sys [19296 2015-03-06] () R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-04-04] (Acronis International GmbH) R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [183224 2014-04-04] (Acronis) R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-11-25] (Avast Software) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) |
|
08.03.2015, 16:47
| #11 |
| | Rest von FRST als Zip Teil Rest als Anhang, das sehr, sehr lang: |
|
08.03.2015, 16:55
| #12 | |
| | Kurzes Stoppen alle 60 Sekunden mit Tröt-GeräuschZitat:
Danke und Gruß, Andras |
|
08.03.2015, 19:24
| #13 |
| /// the machine /// TB-Ausbilder | Kurzes Stoppen alle 60 Sekunden mit Tröt-Geräusch Ich wiederhole mich gerne Hi, Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke. So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
08.03.2015, 19:54
| #14 |
| | Kurzes Stoppen alle 60 Sekunden mit Tröt-GeräuschCode:
ATTFilter ==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-08 16:15 - 2015-03-08 16:15 - 00000000 ____D () C:\Users\andieasenda\Downloads\FRST-OlderVersion
2015-03-08 15:11 - 2015-03-08 15:11 - 00007335 _____ () C:\Users\andieasenda\AppData\Local\recently-used.xbel
2015-03-08 14:45 - 2015-03-08 14:45 - 06208736 _____ (Tim Kosse) C:\Users\andieasenda\Downloads\FileZilla_3.10.2_win32-setup.exe
2015-03-08 13:53 - 2015-03-08 13:53 - 00021519 _____ () C:\Users\andieasenda\Downloads\shuttershot.fabthemes.xml_.zip
2015-03-08 04:30 - 2015-03-08 04:30 - 00000197 _____ () C:\WINDOWS\system32\2015-03-08-03-30-49.057-AvastVBoxSVC.exe-5920.log
2015-03-08 04:27 - 2015-03-08 04:27 - 00000000 ____H () C:\ProgramData\cm-lock
2015-03-07 19:13 - 2015-03-07 19:13 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-03-07 19:08 - 2015-03-07 19:11 - 00000197 _____ () C:\WINDOWS\system32\2015-03-07-18-08-15.059-AvastVBoxSVC.exe-4704.log
2015-03-07 18:56 - 2015-03-07 18:56 - 02347384 _____ (ESET) C:\Users\andieasenda\Downloads\esetsmartinstaller_deu (1).exe
2015-03-07 13:46 - 2015-03-07 13:46 - 00000764 _____ () C:\Users\andieasenda\Desktop\JRT.txt
2015-03-07 13:35 - 2015-03-07 13:35 - 01388333 _____ (Thisisu) C:\Users\andieasenda\Downloads\JRT (1).exe
2015-03-07 13:29 - 2015-03-07 13:29 - 00000197 _____ () C:\WINDOWS\system32\2015-03-07-12-29-04.001-AvastVBoxSVC.exe-3812.log
2015-03-07 13:16 - 2015-03-07 13:16 - 02126848 _____ () C:\Users\andieasenda\Downloads\AdwCleaner_4.111 (2).exe
2015-03-07 12:53 - 2015-03-07 12:57 - 00000197 _____ () C:\WINDOWS\system32\2015-03-07-11-53-38.034-AvastVBoxSVC.exe-4896.log
2015-03-06 20:59 - 2015-03-06 20:59 - 00000247 _____ () C:\WINDOWS\system32\2015-03-06-19-59-51.093-aswFe.exe-5864.log
2015-03-06 20:54 - 2015-03-06 20:59 - 00000247 _____ () C:\WINDOWS\system32\2015-03-06-19-54-08.085-aswFe.exe-5488.log
2015-03-06 20:54 - 2015-03-06 20:54 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-19-54-05.080-AvastVBoxSVC.exe-7744.log
2015-03-06 20:27 - 2015-03-06 20:27 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-03-06 18:42 - 2015-03-06 18:42 - 00099551 _____ () C:\Users\andieasenda\Downloads\Logfiles (1).zip
2015-03-06 18:26 - 2015-03-06 18:26 - 00099551 _____ () C:\Users\andieasenda\Downloads\Logfiles.zip
2015-03-06 18:07 - 2015-03-06 18:09 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-17-07-43.022-AvastVBoxSVC.exe-5832.log
2015-03-06 18:05 - 2015-03-06 18:50 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\5B9C7B91.sys
2015-03-06 17:58 - 2015-03-06 18:01 - 00006430 _____ () C:\WINDOWS\UEDIT32.INI
2015-03-06 17:39 - 2015-03-06 17:39 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-16-39-43.077-AvastVBoxSVC.exe-4976.log
2015-03-06 17:14 - 2015-03-06 17:14 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-16-14-00.039-AvastVBoxSVC.exe-2252.log
2015-03-06 17:03 - 2015-03-06 17:03 - 00000000 ____D () C:\Users\andieasenda\AppData\Roaming\IDT
2015-03-06 16:55 - 2015-03-06 16:58 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-15-55-37.021-AvastVBoxSVC.exe-3268.log
2015-03-06 16:32 - 2015-03-06 18:01 - 00694319 _____ () C:\Users\andieasenda\Downloads\Logfiles.txt.bak
2015-03-06 16:30 - 2015-03-06 16:30 - 00380416 _____ () C:\Users\andieasenda\Downloads\Gmer-19357.exe
2015-03-06 16:21 - 2015-03-06 16:24 - 00099739 _____ () C:\Users\andieasenda\Downloads\Shortcut.txt
2015-03-06 16:12 - 2015-03-06 16:12 - 00000496 _____ () C:\Users\andieasenda\Downloads\defogger_disable.log
2015-03-06 16:12 - 2015-03-06 16:12 - 00000000 _____ () C:\Users\andieasenda\defogger_reenable
2015-03-06 16:11 - 2015-03-06 16:11 - 00050477 _____ () C:\Users\andieasenda\Downloads\Defogger.exe
2015-03-06 15:53 - 2015-03-06 15:53 - 00880208 _____ (Google Inc.) C:\Users\andieasenda\Downloads\chromesetup.exe
2015-03-06 15:53 - 2015-03-06 15:53 - 00002271 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-06 15:53 - 2015-03-06 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-03-06 15:39 - 2015-03-06 15:40 - 00713256 _____ (Opera Software) C:\Users\andieasenda\Downloads\de_ei_97v5VML7IOX4ywPFq4KYCA_usg_AFQjCNFQYP7hPeBW9Kfme8rf4oSRCAr4ZQ_bvm_bv_87611401_d_bGQ&utm_source=google_via_opera_com&utm_medium=ose&utm_campaign=google_ose_via_opera_ (1)
2015-03-06 15:39 - 2015-03-06 15:39 - 00713256 _____ (Opera Software) C:\Users\andieasenda\Downloads\de_ei_97v5VML7IOX4ywPFq4KYCA_usg_AFQjCNFQYP7hPeBW9Kfme8rf4oSRCAr4ZQ_bvm_bv_87611401_d_bGQ&utm_source=google_via_opera_com&utm_medium=ose&utm_campaign=google_ose_via_opera_
2015-03-06 15:29 - 2015-03-06 15:32 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-14-29-30.072-AvastVBoxSVC.exe-5808.log
2015-03-06 15:04 - 2015-03-06 15:07 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-14-04-40.084-AvastVBoxSVC.exe-4356.log
2015-03-06 14:54 - 2015-03-06 14:55 - 172369176 _____ (Dell Inc.) C:\Users\andieasenda\Downloads\Video_Driver_C0KGD_WN_10.18.10.3277_A00.EXE
2015-03-06 14:50 - 2015-03-06 15:00 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV
2015-03-06 14:50 - 2015-03-06 15:00 - 00000000 ____D () C:\WINDOWS\system32\NV
2015-03-06 14:49 - 2015-03-06 14:49 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2015-03-06 14:44 - 2015-03-06 14:47 - 308234688 _____ (Dell Inc.) C:\Users\andieasenda\Downloads\Video_Driver_76DT9_WN_9.18.13.3165_A01.EXE
2015-03-06 14:42 - 2015-03-06 14:43 - 24001184 _____ (Dell Inc.) C:\Users\andieasenda\Downloads\5460_Serial-ATA_Driver_NGJJW_WN_12.8.2.1000_A00.EXE
2015-03-06 14:42 - 2015-03-06 14:42 - 01545192 _____ () C:\Users\andieasenda\Downloads\LMS-32L6M-DM5110E_ZPE (2).exe
2015-03-06 14:37 - 2015-03-06 14:38 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-13-37-03.036-AvastVBoxSVC.exe-6060.log
2015-03-06 14:20 - 2015-03-06 14:20 - 00000000 ____D () C:\Program Files (x86)\Dell Digital Delivery
2015-03-06 14:17 - 2015-03-06 14:17 - 00000000 ____D () C:\Program Files\IDT
2015-03-06 14:17 - 2015-03-06 14:17 - 00000000 ____D () C:\Program Files (x86)\Realtek
2015-03-06 14:17 - 2013-07-09 13:58 - 00263896 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsUStor.sys
2015-03-06 14:17 - 2013-04-25 18:12 - 09889352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtsUVStoricon.dll
2015-03-06 14:16 - 2015-03-06 14:17 - 00001648 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IDT Audio Control Panel.lnk
2015-03-06 14:14 - 2015-03-06 14:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2015-03-06 14:14 - 2015-03-06 14:14 - 00000000 ____D () C:\Program Files (x86)\Dell Update
2015-03-06 14:07 - 2015-03-06 14:12 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-13-07-56.033-AvastVBoxSVC.exe-3564.log
2015-03-06 13:56 - 2015-03-06 13:58 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-12-56-45.087-AvastVBoxSVC.exe-2560.log
2015-03-06 13:23 - 2015-03-06 13:58 - 00000000 ____D () C:\Users\andieasenda\Downloads\Dell_Treiberupdates_Maerz15
2015-03-06 13:05 - 2015-03-06 13:07 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-12-05-40.003-AvastVBoxSVC.exe-3360.log
2015-03-06 10:28 - 2015-03-06 10:30 - 00000197 _____ () C:\WINDOWS\system32\2015-03-06-09-28-11.087-AvastVBoxSVC.exe-1920.log
2015-03-06 03:04 - 2014-10-29 05:03 - 00116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2015-03-06 03:04 - 2014-10-29 04:59 - 00014144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swenum.sys
2015-03-06 03:04 - 2014-10-29 04:57 - 22295200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-03-06 03:04 - 2014-10-29 04:10 - 19734424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-03-06 03:04 - 2014-10-29 03:48 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-03-06 03:04 - 2014-10-29 03:45 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2015-03-06 03:04 - 2014-10-29 03:22 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2015-03-06 03:04 - 2014-10-29 03:19 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-03-06 03:04 - 2014-10-29 03:08 - 18822656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-03-06 03:04 - 2014-10-29 03:00 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2015-03-06 03:04 - 2014-10-29 02:45 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-03-06 03:04 - 2014-10-29 02:42 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2015-03-06 03:04 - 2014-10-29 02:33 - 15157760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-03-06 03:04 - 2014-10-29 02:17 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-03-06 03:04 - 2014-10-29 02:10 - 02344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-03-06 03:04 - 2014-10-29 02:09 - 03557376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-03-06 03:04 - 2014-10-29 01:52 - 15432704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-03-06 03:04 - 2014-10-29 01:51 - 01554432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-03-06 03:04 - 2014-10-29 01:45 - 13318144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-03-06 03:03 - 2014-10-29 04:59 - 03460472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2015-03-06 03:03 - 2014-10-29 04:59 - 02529856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-03-06 03:03 - 2014-10-29 04:57 - 03138720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2015-03-06 03:03 - 2014-10-29 04:52 - 02334080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-03-06 03:03 - 2014-10-29 04:07 - 02324208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-03-06 03:03 - 2014-10-29 03:29 - 04483072 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-03-06 03:03 - 2014-10-29 03:24 - 04418560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-03-06 03:03 - 2014-10-29 02:56 - 03754496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2015-03-06 03:03 - 2014-10-29 02:51 - 00941056 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2015-03-06 03:03 - 2014-10-29 02:45 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2015-03-06 03:03 - 2014-10-29 02:43 - 07075328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2015-03-06 03:03 - 2014-10-29 02:40 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2015-03-06 03:03 - 2014-10-29 02:39 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-03-06 03:03 - 2014-10-29 02:38 - 04690432 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2015-03-06 03:03 - 2014-10-29 02:35 - 04709888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2015-03-06 03:03 - 2014-10-29 02:34 - 03097088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-03-06 03:03 - 2014-10-29 02:28 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2015-03-06 03:03 - 2014-10-29 02:28 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2015-03-06 03:03 - 2014-10-29 02:26 - 03561984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-03-06 03:03 - 2014-10-29 02:22 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-03-06 03:03 - 2014-10-29 02:16 - 05267968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2015-03-06 03:03 - 2014-10-29 02:08 - 02542080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-03-06 03:03 - 2014-10-29 02:05 - 03273216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2015-03-06 03:03 - 2014-10-29 02:03 - 04067840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2015-03-06 03:03 - 2014-10-29 02:02 - 14354944 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-03-06 03:03 - 2014-10-29 02:02 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-03-06 03:03 - 2014-10-29 01:54 - 07784960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-03-06 03:03 - 2014-10-29 01:52 - 02554880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-03-06 03:03 - 2014-10-29 01:50 - 12749824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-03-06 03:03 - 2014-10-29 01:48 - 03056128 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2015-03-06 03:03 - 2014-10-29 01:46 - 09530368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-03-06 03:03 - 2014-10-29 01:46 - 01919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2015-03-06 03:03 - 2014-10-29 01:45 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-03-06 03:03 - 2014-10-29 01:43 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-03-06 03:03 - 2014-10-29 01:38 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-03-06 03:03 - 2014-10-29 01:37 - 06386176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-03-06 03:03 - 2014-10-29 01:37 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-03-06 03:03 - 2014-10-29 01:34 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-03-06 03:03 - 2014-10-29 01:33 - 06213632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-03-06 03:03 - 2014-10-07 07:45 - 03307112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-03-06 03:03 - 2014-10-07 04:44 - 02890296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-03-06 03:02 - 2014-10-29 05:00 - 02314952 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-03-06 03:02 - 2014-10-29 05:00 - 02229168 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-03-06 03:02 - 2014-10-29 05:00 - 01540696 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-03-06 03:02 - 2014-10-29 04:59 - 00055776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-03-06 03:02 - 2014-10-29 04:58 - 00014528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2015-03-06 03:02 - 2014-10-29 04:57 - 03118096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2015-03-06 03:02 - 2014-10-29 04:57 - 02745160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2015-03-06 03:02 - 2014-10-29 04:57 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-03-06 03:02 - 2014-10-29 04:57 - 01286048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2015-03-06 03:02 - 2014-10-29 04:55 - 02174976 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2015-03-06 03:02 - 2014-10-29 04:55 - 01660528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-03-06 03:02 - 2014-10-29 04:52 - 02485056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-03-06 03:02 - 2014-10-29 04:52 - 01518504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-03-06 03:02 - 2014-10-29 04:52 - 01509688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-03-06 03:02 - 2014-10-29 04:51 - 01310912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-03-06 03:02 - 2014-10-29 04:13 - 01901240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-03-06 03:02 - 2014-10-29 04:12 - 01946144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-03-06 03:02 - 2014-10-29 04:12 - 01907384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-03-06 03:02 - 2014-10-29 04:11 - 02689392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2015-03-06 03:02 - 2014-10-29 04:11 - 02528760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2015-03-06 03:02 - 2014-10-29 04:11 - 01024200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2015-03-06 03:02 - 2014-10-29 04:10 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-03-06 03:02 - 2014-10-29 04:10 - 01564464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2015-03-06 03:02 - 2014-10-29 03:59 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-03-06 03:02 - 2014-10-29 03:37 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2015-03-06 03:02 - 2014-10-29 03:10 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-03-06 03:02 - 2014-10-29 02:57 - 02924032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2015-03-06 03:02 - 2014-10-29 02:47 - 02072064 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2015-03-06 03:02 - 2014-10-29 02:44 - 02984448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-03-06 03:02 - 2014-10-29 02:42 - 01999872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-03-06 03:02 - 2014-10-29 02:35 - 03256320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2015-03-06 03:02 - 2014-10-29 02:31 - 02941952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2015-03-06 03:02 - 2014-10-29 02:24 - 02464768 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2015-03-06 03:02 - 2014-10-29 02:21 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2015-03-06 03:02 - 2014-10-29 02:17 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2015-03-06 03:02 - 2014-10-29 02:15 - 02259456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-03-06 03:02 - 2014-10-29 02:12 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-03-06 03:02 - 2014-10-29 02:08 - 02608640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2015-03-06 03:02 - 2014-10-29 02:08 - 02174976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2015-03-06 03:02 - 2014-10-29 02:08 - 01822720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2015-03-06 03:02 - 2014-10-29 02:04 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-03-06 03:02 - 2014-10-29 02:03 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2015-03-06 03:02 - 2014-10-29 02:03 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2015-03-06 03:02 - 2014-10-29 01:58 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-03-06 03:02 - 2014-10-29 01:57 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-03-06 03:02 - 2014-10-29 01:54 - 01945600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-03-06 03:02 - 2014-10-29 01:54 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-03-06 03:02 - 2014-10-29 01:54 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-03-06 03:02 - 2014-10-29 01:52 - 02170368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2015-03-06 03:02 - 2014-10-29 01:52 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-03-06 03:02 - 2014-10-29 01:52 - 01275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-03-06 03:02 - 2014-10-29 01:52 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-03-06 03:02 - 2014-10-29 01:46 - 01348096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-03-06 03:02 - 2014-10-29 01:46 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-03-06 03:02 - 2014-10-29 01:46 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-03-06 03:02 - 2014-10-29 01:43 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-03-06 03:02 - 2014-10-29 01:43 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-03-06 03:02 - 2014-10-29 01:42 - 01922560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-03-06 03:02 - 2014-10-29 01:39 - 02814464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-03-06 03:02 - 2014-10-29 01:35 - 01668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-03-06 03:02 - 2014-10-15 09:32 - 02025792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-03-06 03:02 - 2014-09-25 04:42 - 00373568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-03-06 03:01 - 2014-10-29 05:10 - 01816008 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2015-03-06 03:01 - 2014-10-29 05:00 - 01390920 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-03-06 03:01 - 2014-10-29 04:57 - 02450216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2015-03-06 03:01 - 2014-10-29 04:55 - 01543768 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2015-03-06 03:01 - 2014-10-29 04:52 - 01288096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-03-06 03:01 - 2014-10-29 04:52 - 01165744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-03-06 03:01 - 2014-10-29 04:52 - 01064720 _____ (Microsoft Corporation) C:\WINDOWS\system32\drmv2clt.dll
2015-03-06 03:01 - 2014-10-29 04:52 - 00988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-03-06 03:01 - 2014-10-29 04:52 - 00952384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-03-06 03:01 - 2014-10-29 04:12 - 01127976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-03-06 03:01 - 2014-10-29 04:11 - 02447104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2015-03-06 03:01 - 2014-10-29 04:10 - 01209624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-03-06 03:01 - 2014-10-29 04:10 - 01178104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2015-03-06 03:01 - 2014-10-29 04:07 - 01321192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-03-06 03:01 - 2014-10-29 04:07 - 01115104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-03-06 03:01 - 2014-10-29 04:07 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-03-06 03:01 - 2014-10-29 03:28 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpssvcs.dll
2015-03-06 03:01 - 2014-10-29 03:25 - 00785920 _____ (Microsoft Corporation) C:\WINDOWS\system32\blackbox.dll
2015-03-06 03:01 - 2014-10-29 03:17 - 02003456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2015-03-06 03:01 - 2014-10-29 03:08 - 01540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2015-03-06 03:01 - 2014-10-29 03:00 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-03-06 03:01 - 2014-10-29 02:56 - 01526784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2015-03-06 03:01 - 2014-10-29 02:55 - 01697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2015-03-06 03:01 - 2014-10-29 02:50 - 01289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2015-03-06 03:01 - 2014-10-29 02:48 - 01080832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2015-03-06 03:01 - 2014-10-29 02:45 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\blackbox.dll
2015-03-06 03:01 - 2014-10-29 02:32 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-03-06 03:01 - 2014-10-29 02:25 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-03-06 03:01 - 2014-10-29 02:24 - 02364928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2015-03-06 03:01 - 2014-10-29 02:23 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2015-03-06 03:01 - 2014-10-29 02:22 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2015-03-06 03:01 - 2014-10-29 02:22 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-03-06 03:01 - 2014-10-29 02:21 - 01250816 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-03-06 03:01 - 2014-10-29 02:19 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2015-03-06 03:01 - 2014-10-29 02:18 - 04180480 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-03-06 03:01 - 2014-10-29 02:18 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-03-06 03:01 - 2014-10-29 02:14 - 03553280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2015-03-06 03:01 - 2014-10-29 02:11 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-03-06 03:01 - 2014-10-29 02:10 - 02469888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2015-03-06 03:01 - 2014-10-29 02:08 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-03-06 03:01 - 2014-10-29 02:00 - 01705984 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-03-06 03:01 - 2014-10-29 01:59 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-03-06 03:01 - 2014-10-29 01:56 - 01337344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-03-06 03:01 - 2014-10-29 01:56 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-03-06 03:01 - 2014-10-29 01:52 - 01461248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2015-03-06 03:01 - 2014-10-29 01:50 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2015-03-06 03:01 - 2014-10-29 01:50 - 01482752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2015-03-06 03:01 - 2014-10-29 01:47 - 02090496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2015-03-06 03:01 - 2014-10-29 01:45 - 01725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-03-06 03:01 - 2014-10-29 01:42 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-03-06 03:01 - 2014-10-29 01:41 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-03-06 03:01 - 2014-10-29 01:41 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2015-03-06 03:01 - 2014-10-29 01:40 - 02104832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2015-03-06 03:01 - 2014-10-29 01:39 - 01000448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-03-06 03:01 - 2014-10-29 01:36 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-03-06 03:01 - 2014-10-29 01:34 - 01544192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-03-06 03:00 - 2014-10-29 05:00 - 01385216 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-03-06 03:00 - 2014-10-29 04:57 - 01576312 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2015-03-06 03:00 - 2014-10-29 04:57 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-03-06 03:00 - 2014-10-29 04:55 - 01133200 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2015-03-06 03:00 - 2014-10-29 04:52 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-03-06 03:00 - 2014-10-29 04:52 - 00850656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2015-03-06 03:00 - 2014-10-29 04:52 - 00821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-03-06 03:00 - 2014-10-29 04:52 - 00634768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-03-06 03:00 - 2014-10-29 04:18 - 00016504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psapi.dll
2015-03-06 03:00 - 2014-10-29 04:07 - 00857384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-03-06 03:00 - 2014-10-29 04:07 - 00785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-03-06 03:00 - 2014-10-29 04:07 - 00705008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-03-06 03:00 - 2014-10-29 04:05 - 00890128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drmv2clt.dll
2015-03-06 03:00 - 2014-10-29 03:50 - 01192960 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-03-06 03:00 - 2014-10-29 03:31 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlceqp40.dll
2015-03-06 03:00 - 2014-10-29 02:53 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2015-03-06 03:00 - 2014-10-29 02:48 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-03-06 03:00 - 2014-10-29 02:43 - 01092608 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdosys.dll
2015-03-06 03:00 - 2014-10-29 02:43 - 00933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2015-03-06 03:00 - 2014-10-29 02:42 - 03724800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2015-03-06 03:00 - 2014-10-29 02:37 - 01563136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2015-03-06 03:00 - 2014-10-29 02:34 - 01114624 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2015-03-06 03:00 - 2014-10-29 02:33 - 01056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2015-03-06 03:00 - 2014-10-29 02:32 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2015-03-06 03:00 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-03-06 03:00 - 2014-10-29 02:25 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2015-03-06 03:00 - 2014-10-29 02:24 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-03-06 03:00 - 2014-10-29 02:20 - 01492480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-03-06 03:00 - 2014-10-29 02:18 - 01050624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2015-03-06 03:00 - 2014-10-29 02:17 - 01402368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2015-03-06 03:00 - 2014-10-29 02:17 - 00829952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sbe.dll
2015-03-06 03:00 - 2014-10-29 02:16 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-03-06 03:00 - 2014-10-29 02:14 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-03-06 03:00 - 2014-10-29 02:09 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2015-03-06 03:00 - 2014-10-29 02:08 - 01478144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2015-03-06 03:00 - 2014-10-29 02:07 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2015-03-06 03:00 - 2014-10-29 02:06 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2015-03-06 03:00 - 2014-10-29 02:03 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-03-06 03:00 - 2014-10-29 02:01 - 01710592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2015-03-06 03:00 - 2014-10-29 02:01 - 00843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2015-03-06 03:00 - 2014-10-29 01:59 - 01636864 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2015-03-06 03:00 - 2014-10-29 01:59 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-03-06 03:00 - 2014-10-29 01:59 - 01021440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-03-06 03:00 - 2014-10-29 01:58 - 03442688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-03-06 03:00 - 2014-10-29 01:56 - 01248256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2015-03-06 03:00 - 2014-10-29 01:56 - 01001984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2015-03-06 03:00 - 2014-10-29 01:52 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-03-06 03:00 - 2014-10-29 01:50 - 01092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-03-06 03:00 - 2014-10-29 01:48 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-03-06 03:00 - 2014-10-29 01:46 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-03-06 03:00 - 2014-10-29 01:45 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-03-06 03:00 - 2014-10-29 01:41 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-03-06 03:00 - 2014-10-29 01:38 - 01262080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2015-03-06 03:00 - 2014-10-29 01:33 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2015-03-06 02:59 - 2014-10-29 05:09 - 01950280 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2015-03-06 02:59 - 2014-10-29 05:04 - 00105872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2015-03-06 02:59 - 2014-10-29 04:57 - 01210176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2015-03-06 02:59 - 2014-10-29 04:52 - 00734448 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2015-03-06 02:59 - 2014-10-29 04:52 - 00580024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2015-03-06 02:59 - 2014-10-29 04:18 - 01782912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2015-03-06 02:59 - 2014-10-29 04:18 - 00848568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2015-03-06 02:59 - 2014-10-29 04:11 - 01037656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2015-03-06 02:59 - 2014-10-29 04:10 - 01287112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2015-03-06 02:59 - 2014-10-29 04:10 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-03-06 02:59 - 2014-10-29 04:07 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-03-06 02:59 - 2014-10-29 04:07 - 00700328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2015-03-06 02:59 - 2014-10-29 04:07 - 00584120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2015-03-06 02:59 - 2014-10-29 04:07 - 00551064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-03-06 02:59 - 2014-10-29 04:07 - 00482360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmdev.dll
2015-03-06 02:59 - 2014-10-29 03:56 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-03-06 02:59 - 2014-10-29 03:43 - 00685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\riched20.dll
2015-03-06 02:59 - 2014-10-29 03:29 - 01246720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ogldrv.dll
2015-03-06 02:59 - 2014-10-29 03:26 - 00771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll
2015-03-06 02:59 - 2014-10-29 03:07 - 06692352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2015-03-06 02:59 - 2014-10-29 03:03 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2015-03-06 02:59 - 2014-10-29 02:56 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-03-06 02:59 - 2014-10-29 02:53 - 01065984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2015-03-06 02:59 - 2014-10-29 02:53 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2015-03-06 02:59 - 2014-10-29 02:49 - 00742400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlceqp40.dll
2015-03-06 02:59 - 2014-10-29 02:47 - 01096192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ogldrv.dll
2015-03-06 02:59 - 2014-10-29 02:46 - 01497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-03-06 02:59 - 2014-10-29 02:45 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-03-06 02:59 - 2014-10-29 02:39 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2015-03-06 02:59 - 2014-10-29 02:37 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2015-03-06 02:59 - 2014-10-29 02:34 - 01037824 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2015-03-06 02:59 - 2014-10-29 02:30 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-03-06 02:59 - 2014-10-29 02:19 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2015-03-06 02:59 - 2014-10-29 02:14 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-03-06 02:59 - 2014-10-29 02:14 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-03-06 02:59 - 2014-10-29 02:12 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2015-03-06 02:59 - 2014-10-29 02:10 - 01096704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-03-06 02:59 - 2014-10-29 02:09 - 00873984 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2015-03-06 02:59 - 2014-10-29 02:09 - 00658944 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2015-03-06 02:59 - 2014-10-29 02:08 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2015-03-06 02:59 - 2014-10-29 02:07 - 01396736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2015-03-06 02:59 - 2014-10-29 02:07 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-03-06 02:59 - 2014-10-29 02:07 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-03-06 02:59 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-03-06 02:59 - 2014-10-29 02:03 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2015-03-06 02:59 - 2014-10-29 01:59 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-03-06 02:59 - 2014-10-29 01:56 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-03-06 02:59 - 2014-10-29 01:56 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-03-06 02:59 - 2014-10-29 01:55 - 00719360 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceApi.dll
2015-03-06 02:59 - 2014-10-29 01:54 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-03-06 02:59 - 2014-10-29 01:53 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2015-03-06 02:59 - 2014-10-29 01:52 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-03-06 02:59 - 2014-10-29 01:52 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2015-03-06 02:59 - 2014-10-29 01:51 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2015-03-06 02:59 - 2014-10-29 01:50 - 00863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-03-06 02:59 - 2014-10-29 01:48 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-03-06 02:59 - 2014-10-29 01:46 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RacEngn.dll
2015-03-06 02:59 - 2014-10-29 01:45 - 00918016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2015-03-06 02:59 - 2014-10-29 01:42 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2015-03-06 02:59 - 2014-10-29 01:40 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-03-06 02:59 - 2014-10-29 01:37 - 00724480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-03-06 02:59 - 2014-10-29 01:36 - 00955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-03-06 02:59 - 2014-10-29 01:35 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-03-06 02:59 - 2014-10-29 01:35 - 00772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2015-03-06 02:59 - 2014-10-29 01:31 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-03-06 02:59 - 2014-10-13 03:41 - 01114432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-03-06 02:59 - 2014-07-04 22:29 - 00478528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-03-06 02:58 - 2014-10-29 05:09 - 01239576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2015-03-06 02:58 - 2014-10-29 05:00 - 00740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2015-03-06 02:58 - 2014-10-29 05:00 - 00544408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-03-06 02:58 - 2014-10-29 04:57 - 01552704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-03-06 02:58 - 2014-10-29 04:57 - 00643064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-03-06 02:58 - 2014-10-29 04:57 - 00557832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2015-03-06 02:58 - 2014-10-29 04:55 - 01063432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2015-03-06 02:58 - 2014-10-29 04:55 - 00730824 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatq.dll
2015-03-06 02:58 - 2014-10-29 04:52 - 00497936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-03-06 02:58 - 2014-10-29 04:52 - 00444728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2015-03-06 02:58 - 2014-10-29 04:52 - 00405456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-03-06 02:58 - 2014-10-29 04:18 - 01103768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2015-03-06 02:58 - 2014-10-29 04:11 - 00914648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2015-03-06 02:58 - 2014-10-29 04:10 - 00492232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-03-06 02:58 - 2014-10-29 04:07 - 00409040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-03-06 02:58 - 2014-10-29 03:48 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2015-03-06 02:58 - 2014-10-29 03:48 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-03-06 02:58 - 2014-10-29 03:36 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlcese40.dll
2015-03-06 02:58 - 2014-10-29 03:33 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlsrv32.dll
2015-03-06 02:58 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70804.dll
2015-03-06 02:58 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70404.dll
2015-03-06 02:58 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7001E.dll
2015-03-06 02:58 - 2014-10-29 03:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70011.dll
2015-03-06 02:58 - 2014-10-29 03:27 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2015-03-06 02:58 - 2014-10-29 03:11 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-03-06 02:58 - 2014-10-29 03:08 - 00858624 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2015-03-06 02:58 - 2014-10-29 03:08 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2015-03-06 02:58 - 2014-10-29 03:08 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmnet.dll
2015-03-06 02:58 - 2014-10-29 03:06 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2015-03-06 02:58 - 2014-10-29 03:04 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WavDest.dll
2015-03-06 02:58 - 2014-10-29 03:03 - 00832000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2015-03-06 02:58 - 2014-10-29 02:59 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched20.dll
2015-03-06 02:58 - 2014-10-29 02:50 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlsrv32.dll
2015-03-06 02:58 - 2014-10-29 02:47 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpssvcs.dll
2015-03-06 02:58 - 2014-10-29 02:45 - 00672768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll
2015-03-06 02:58 - 2014-10-29 02:42 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2015-03-06 02:58 - 2014-10-29 02:40 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-03-06 02:58 - 2014-10-29 02:39 - 01571328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2015-03-06 02:58 - 2014-10-29 02:36 - 01008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-03-06 02:58 - 2014-10-29 02:36 - 00609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2015-03-06 02:58 - 2014-10-29 02:35 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2015-03-06 02:58 - 2014-10-29 02:32 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comuid.dll
2015-03-06 02:58 - 2014-10-29 02:31 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2015-03-06 02:58 - 2014-10-29 02:30 - 06465536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2015-03-06 02:58 - 2014-10-29 02:29 - 00833536 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2015-03-06 02:58 - 2014-10-29 02:26 - 00838656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2015-03-06 02:58 - 2014-10-29 02:24 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-03-06 02:58 - 2014-10-29 02:23 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-03-06 02:58 - 2014-10-29 02:21 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-03-06 02:58 - 2014-10-29 02:14 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdosys.dll
2015-03-06 02:58 - 2014-10-29 02:12 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-03-06 02:58 - 2014-10-29 02:12 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2015-03-06 02:58 - 2014-10-29 02:12 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2015-03-06 02:58 - 2014-10-29 02:12 - 00516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2015-03-06 02:58 - 2014-10-29 02:11 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2015-03-06 02:58 - 2014-10-29 02:09 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2015-03-06 02:58 - 2014-10-29 02:09 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-03-06 02:58 - 2014-10-29 02:07 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2015-03-06 02:58 - 2014-10-29 02:06 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-03-06 02:58 - 2014-10-29 02:05 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-03-06 02:58 - 2014-10-29 02:04 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2015-03-06 02:58 - 2014-10-29 02:01 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\perftrack.dll
2015-03-06 02:58 - 2014-10-29 02:00 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-03-06 02:58 - 2014-10-29 02:00 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2015-03-06 02:58 - 2014-10-29 01:59 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2015-03-06 02:58 - 2014-10-29 01:59 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2015-03-06 02:58 - 2014-10-29 01:58 - 00926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2015-03-06 02:58 - 2014-10-29 01:56 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-03-06 02:58 - 2014-10-29 01:52 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2015-03-06 02:58 - 2014-10-29 01:52 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2015-03-06 02:58 - 2014-10-29 01:52 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-03-06 02:58 - 2014-10-29 01:51 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2015-03-06 02:58 - 2014-10-29 01:48 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2015-03-06 02:58 - 2014-10-29 01:47 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2015-03-06 02:58 - 2014-10-29 01:45 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2015-03-06 02:58 - 2014-10-29 01:45 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-03-06 02:58 - 2014-10-29 01:43 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2015-03-06 02:58 - 2014-10-29 01:42 - 01207808 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2015-03-06 02:58 - 2014-10-29 01:42 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2015-03-06 02:58 - 2014-10-29 01:41 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-03-06 02:58 - 2014-10-29 01:35 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2015-03-06 02:58 - 2014-10-29 01:32 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-03-06 02:58 - 2014-10-29 01:30 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2015-03-06 02:57 - 2014-10-29 05:09 - 01309744 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2015-03-06 02:57 - 2014-10-29 05:03 - 00435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-03-06 02:57 - 2014-10-29 05:00 - 00379568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-03-06 02:57 - 2014-10-29 04:57 - 01150208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2015-03-06 02:57 - 2014-10-29 04:57 - 00389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-03-06 02:57 - 2014-10-29 04:55 - 00426120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2015-03-06 02:57 - 2014-10-29 04:53 - 00411128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-03-06 02:57 - 2014-10-29 04:52 - 00356936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-03-06 02:57 - 2014-10-29 04:12 - 00616704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2015-03-06 02:57 - 2014-10-29 04:12 - 00430176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-03-06 02:57 - 2014-10-29 04:11 - 00492704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2015-03-06 02:57 - 2014-10-29 04:11 - 00488064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2015-03-06 02:57 - 2014-10-29 04:10 - 00569128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clbcatq.dll
2015-03-06 02:57 - 2014-10-29 04:07 - 00399752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-03-06 02:57 - 2014-10-29 04:07 - 00331048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2015-03-06 02:57 - 2014-10-29 03:44 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2015-03-06 02:57 - 2014-10-29 03:42 - 01091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2015-03-06 02:57 - 2014-10-29 03:40 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2015-03-06 02:57 - 2014-10-29 03:33 - 07558144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Data0011.dll
2015-03-06 02:57 - 2014-10-29 03:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2015-03-06 02:57 - 2014-10-29 03:27 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsRasterService.dll
2015-03-06 02:57 - 2014-10-29 03:18 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2015-03-06 02:57 - 2014-10-29 03:09 - 00632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisdecd.dll
2015-03-06 02:57 - 2014-10-29 03:07 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2015-03-06 02:57 - 2014-10-29 03:05 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2015-03-06 02:57 - 2014-10-29 03:03 - 02334720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2015-03-06 02:57 - 2014-10-29 03:00 - 00652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2015-03-06 02:57 - 2014-10-29 02:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2015-03-06 02:57 - 2014-10-29 02:59 - 00670720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2015-03-06 02:57 - 2014-10-29 02:57 - 01479168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2015-03-06 02:57 - 2014-10-29 02:57 - 01038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2015-03-06 02:57 - 2014-10-29 02:53 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlcese40.dll
2015-03-06 02:57 - 2014-10-29 02:51 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-03-06 02:57 - 2014-10-29 02:49 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\certmgr.dll
2015-03-06 02:57 - 2014-10-29 02:47 - 00517120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2015-03-06 02:57 - 2014-10-29 02:46 - 01001472 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2015-03-06 02:57 - 2014-10-29 02:36 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2015-03-06 02:57 - 2014-10-29 02:36 - 01252864 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2015-03-06 02:57 - 2014-10-29 02:36 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2015-03-06 02:57 - 2014-10-29 02:36 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2015-03-06 02:57 - 2014-10-29 02:32 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisdecd.dll
2015-03-06 02:57 - 2014-10-29 02:32 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmnet.dll
2015-03-06 02:57 - 2014-10-29 02:31 - 01278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2015-03-06 02:57 - 2014-10-29 02:31 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2015-03-06 02:57 - 2014-10-29 02:27 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-03-06 02:57 - 2014-10-29 02:25 - 01058816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2015-03-06 02:57 - 2014-10-29 02:24 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2015-03-06 02:57 - 2014-10-29 02:24 - 00902144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2015-03-06 02:57 - 2014-10-29 02:22 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2015-03-06 02:57 - 2014-10-29 02:21 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2015-03-06 02:57 - 2014-10-29 02:21 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-03-06 02:57 - 2014-10-29 02:19 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2015-03-06 02:57 - 2014-10-29 02:17 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-03-06 02:57 - 2014-10-29 02:16 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\secproc.dll
2015-03-06 02:57 - 2014-10-29 02:16 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\secproc_isv.dll
2015-03-06 02:57 - 2014-10-29 02:16 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2015-03-06 02:57 - 2014-10-29 02:11 - 02597376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2015-03-06 02:57 - 2014-10-29 02:10 - 00516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmsdk.dll
2015-03-06 02:57 - 2014-10-29 02:10 - 00442880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2015-03-06 02:57 - 2014-10-29 02:09 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-03-06 02:57 - 2014-10-29 02:07 - 01197056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2015-03-06 02:57 - 2014-10-29 02:07 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2015-03-06 02:57 - 2014-10-29 02:06 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-03-06 02:57 - 2014-10-29 02:04 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-03-06 02:57 - 2014-10-29 02:03 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2015-03-06 02:57 - 2014-10-29 02:02 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-03-06 02:57 - 2014-10-29 02:02 - 00695296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2015-03-06 02:57 - 2014-10-29 02:01 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2015-03-06 02:57 - 2014-10-29 01:59 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2015-03-06 02:57 - 2014-10-29 01:54 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2015-03-06 02:57 - 2014-10-29 01:52 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2015-03-06 02:57 - 2014-10-29 01:50 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-03-06 02:57 - 2014-10-29 01:48 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-03-06 02:57 - 2014-10-29 01:47 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2015-03-06 02:57 - 2014-10-29 01:45 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceApi.dll
2015-03-06 02:57 - 2014-10-29 01:44 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-03-06 02:57 - 2014-10-29 01:43 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-03-06 02:57 - 2014-10-29 01:42 - 00608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-03-06 02:57 - 2014-10-29 01:35 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2015-03-06 02:57 - 2014-10-29 01:35 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2015-03-06 02:57 - 2014-10-07 07:44 - 00533824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-03-06 02:56 - 2014-10-29 05:10 - 00430728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2015-03-06 02:56 - 2014-10-29 05:04 - 00397192 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2015-03-06 02:56 - 2014-10-29 05:04 - 00324864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-03-06 02:56 - 2014-10-29 04:59 - 00498496 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2015-03-06 02:56 - 2014-10-29 04:57 - 00662120 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.exe
2015-03-06 02:56 - 2014-10-29 04:54 - 00685408 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2015-03-06 02:56 - 2014-10-29 04:52 - 00020160 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2015-03-06 02:56 - 2014-10-29 04:15 - 00340288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-03-06 02:56 - 2014-10-29 04:12 - 00403776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2015-03-06 02:56 - 2014-10-29 04:10 - 00367248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2015-03-06 02:56 - 2014-10-29 04:07 - 00320256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-03-06 02:56 - 2014-10-29 04:06 - 00507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2015-03-06 02:56 - 2014-10-29 03:31 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2015-03-06 02:56 - 2014-10-29 03:26 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartCardSimulator.dll
2015-03-06 02:56 - 2014-10-29 03:25 - 00995328 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi3.dll
2015-03-06 02:56 - 2014-10-29 03:25 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdohlp.dll
2015-03-06 02:56 - 2014-10-29 03:24 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSNP.ax
2015-03-06 02:56 - 2014-10-29 03:18 - 04616704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData001d.dll
2015-03-06 02:56 - 2014-10-29 03:17 - 04621312 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0414.dll
2015-03-06 02:56 - 2014-10-29 03:17 - 04620288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0816.dll
2015-03-06 02:56 - 2014-10-29 03:16 - 04621312 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0010.dll
2015-03-06 02:56 - 2014-10-29 03:16 - 04616704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0416.dll
2015-03-06 02:56 - 2014-10-29 03:16 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2015-03-06 02:56 - 2014-10-29 03:11 - 00435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswmdm.dll
2015-03-06 02:56 - 2014-10-29 03:10 - 00933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-03-06 02:56 - 2014-10-29 03:08 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\difxapi.dll
2015-03-06 02:56 - 2014-10-29 03:06 - 02902016 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2015-03-06 02:56 - 2014-10-29 03:06 - 01313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2015-03-06 02:56 - 2014-10-29 03:06 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2015-03-06 02:56 - 2014-10-29 03:00 - 01861632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2015-03-06 02:56 - 2014-10-29 03:00 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2015-03-06 02:56 - 2014-10-29 02:59 - 00404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncInfrastructure.dll
2015-03-06 02:56 - 2014-10-29 02:57 - 02592256 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2015-03-06 02:56 - 2014-10-29 02:57 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2015-03-06 02:56 - 2014-10-29 02:56 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2015-03-06 02:56 - 2014-10-29 02:54 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscp.dll
2015-03-06 02:56 - 2014-10-29 02:54 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2015-03-06 02:56 - 2014-10-29 02:53 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-03-06 02:56 - 2014-10-29 02:52 - 02829312 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2015-03-06 02:56 - 2014-10-29 02:52 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2015-03-06 02:56 - 2014-10-29 02:52 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-03-06 02:56 - 2014-10-29 02:52 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvvmtransport.dll
2015-03-06 02:56 - 2014-10-29 02:48 - 00557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsmsnap.dll
2015-03-06 02:56 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB70804.dll
2015-03-06 02:56 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB70404.dll
2015-03-06 02:56 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB7001E.dll
2015-03-06 02:56 - 2014-10-29 02:48 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB70011.dll
2015-03-06 02:56 - 2014-10-29 02:47 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2015-03-06 02:56 - 2014-10-29 02:45 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2015-03-06 02:56 - 2014-10-29 02:42 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
|
|
08.03.2015, 19:55
| #15 |
| | Kurzes Stoppen alle 60 Sekunden mit Tröt-GeräuschCode:
ATTFilter 2015-03-06 02:56 - 2014-10-29 02:34 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswmdm.dll
2015-03-06 02:56 - 2014-10-29 02:33 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2015-03-06 02:56 - 2014-10-29 02:30 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2015-03-06 02:56 - 2014-10-29 02:30 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2015-03-06 02:56 - 2014-10-29 02:29 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2015-03-06 02:56 - 2014-10-29 02:28 - 02213888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2015-03-06 02:56 - 2014-10-29 02:22 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2015-03-06 02:56 - 2014-10-29 02:20 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2015-03-06 02:56 - 2014-10-29 02:20 - 00517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbemcomn.dll
2015-03-06 02:56 - 2014-10-29 02:20 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2015-03-06 02:56 - 2014-10-29 02:19 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2015-03-06 02:56 - 2014-10-29 02:18 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certmgr.dll
2015-03-06 02:56 - 2014-10-29 02:17 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2015-03-06 02:56 - 2014-10-29 02:16 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate_isv.exe
2015-03-06 02:56 - 2014-10-29 02:15 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate.exe
2015-03-06 02:56 - 2014-10-29 02:12 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2015-03-06 02:56 - 2014-10-29 02:07 - 00594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2015-03-06 02:56 - 2014-10-29 02:07 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2015-03-06 02:56 - 2014-10-29 02:06 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2015-03-06 02:56 - 2014-10-29 02:05 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-03-06 02:56 - 2014-10-29 02:03 - 00474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2015-03-06 02:56 - 2014-10-29 02:01 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2015-03-06 02:56 - 2014-10-29 01:59 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2015-03-06 02:56 - 2014-10-29 01:58 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-03-06 02:56 - 2014-10-29 01:57 - 01065472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10.dll
2015-03-06 02:56 - 2014-10-29 01:57 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc.dll
2015-03-06 02:56 - 2014-10-29 01:57 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc_isv.dll
2015-03-06 02:56 - 2014-10-29 01:56 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2015-03-06 02:56 - 2014-10-29 01:55 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2015-03-06 02:56 - 2014-10-29 01:53 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-03-06 02:56 - 2014-10-29 01:53 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2015-03-06 02:56 - 2014-10-29 01:52 - 00544256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2015-03-06 02:56 - 2014-10-29 01:51 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2015-03-06 02:56 - 2014-10-29 01:51 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2015-03-06 02:56 - 2014-10-29 01:51 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\provsvc.dll
2015-03-06 02:56 - 2014-10-29 01:50 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-03-06 02:56 - 2014-10-29 01:48 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2015-03-06 02:56 - 2014-10-29 01:48 - 00454144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2015-03-06 02:56 - 2014-10-29 01:47 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrv.dll
2015-03-06 02:56 - 2014-10-29 01:47 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2015-03-06 02:56 - 2014-10-29 01:47 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2015-03-06 02:56 - 2014-10-29 01:46 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-03-06 02:56 - 2014-10-29 01:42 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2015-03-06 02:56 - 2014-10-29 01:42 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provsvc.dll
2015-03-06 02:56 - 2014-10-29 01:39 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2015-03-06 02:56 - 2014-10-29 01:37 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-03-06 02:56 - 2014-10-29 01:35 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-03-06 02:56 - 2014-10-08 08:33 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2015-03-06 02:55 - 2014-10-29 04:57 - 00725672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2015-03-06 02:55 - 2014-10-29 04:10 - 00547992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2015-03-06 02:55 - 2014-10-29 03:45 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\glmf32.dll
2015-03-06 02:55 - 2014-10-29 03:45 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msls31.dll
2015-03-06 02:55 - 2014-10-29 03:44 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2015-03-06 02:55 - 2014-10-29 03:37 - 02329088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Data0404.dll
2015-03-06 02:55 - 2014-10-29 03:31 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2015-03-06 02:55 - 2014-10-29 03:28 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2015-03-06 02:55 - 2014-10-29 03:26 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2015-03-06 02:55 - 2014-10-29 03:25 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2015-03-06 02:55 - 2014-10-29 03:23 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\offfilt.dll
2015-03-06 02:55 - 2014-10-29 03:21 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassdo.dll
2015-03-06 02:55 - 2014-10-29 03:20 - 00397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnp.dll
2015-03-06 02:55 - 2014-10-29 03:19 - 09732096 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000a.dll
2015-03-06 02:55 - 2014-10-29 03:18 - 06259712 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-03-06 02:55 - 2014-10-29 03:18 - 02403328 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000c.dll
2015-03-06 02:55 - 2014-10-29 03:18 - 02140672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0007.dll
2015-03-06 02:55 - 2014-10-29 03:17 - 02480128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000d.dll
2015-03-06 02:55 - 2014-10-29 03:11 - 00547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2015-03-06 02:55 - 2014-10-29 03:11 - 00478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2015-03-06 02:55 - 2014-10-29 03:08 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2015-03-06 02:55 - 2014-10-29 03:01 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-03-06 02:55 - 2014-10-29 02:58 - 01040384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2015-03-06 02:55 - 2014-10-29 02:56 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2015-03-06 02:55 - 2014-10-29 02:52 - 00680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2015-03-06 02:55 - 2014-10-29 02:51 - 07331840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NL7Data0011.dll
2015-03-06 02:55 - 2014-10-29 02:49 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2015-03-06 02:55 - 2014-10-29 02:46 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsRasterService.dll
2015-03-06 02:55 - 2014-10-29 02:44 - 00872960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi3.dll
2015-03-06 02:55 - 2014-10-29 02:43 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-03-06 02:55 - 2014-10-29 02:41 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2015-03-06 02:55 - 2014-10-29 02:41 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnp.dll
2015-03-06 02:55 - 2014-10-29 02:36 - 00943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2015-03-06 02:55 - 2014-10-29 02:34 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2015-03-06 02:55 - 2014-10-29 02:33 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-03-06 02:55 - 2014-10-29 02:31 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2015-03-06 02:55 - 2014-10-29 02:30 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2015-03-06 02:55 - 2014-10-29 02:30 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2015-03-06 02:55 - 2014-10-29 02:30 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2015-03-06 02:55 - 2014-10-29 02:30 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-03-06 02:55 - 2014-10-29 02:29 - 02848768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2015-03-06 02:55 - 2014-10-29 02:29 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2015-03-06 02:55 - 2014-10-29 02:27 - 00397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2015-03-06 02:55 - 2014-10-29 02:26 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2015-03-06 02:55 - 2014-10-29 02:26 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-03-06 02:55 - 2014-10-29 02:23 - 01826304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2015-03-06 02:55 - 2014-10-29 02:23 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\livessp.dll
2015-03-06 02:55 - 2014-10-29 02:22 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2015-03-06 02:55 - 2014-10-29 02:22 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-03-06 02:55 - 2014-10-29 02:21 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscp.dll
2015-03-06 02:55 - 2014-10-29 02:21 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2015-03-06 02:55 - 2014-10-29 02:20 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-03-06 02:55 - 2014-10-29 02:19 - 02714624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2015-03-06 02:55 - 2014-10-29 02:18 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2015-03-06 02:55 - 2014-10-29 02:17 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ipsmsnap.dll
2015-03-06 02:55 - 2014-10-29 02:16 - 01242112 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10.dll
2015-03-06 02:55 - 2014-10-29 02:16 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2015-03-06 02:55 - 2014-10-29 02:15 - 00809472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-03-06 02:55 - 2014-10-29 02:15 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2015-03-06 02:55 - 2014-10-29 02:10 - 00516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2015-03-06 02:55 - 2014-10-29 02:09 - 00633344 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2015-03-06 02:55 - 2014-10-29 02:06 - 01086976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2015-03-06 02:55 - 2014-10-29 02:06 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2015-03-06 02:55 - 2014-10-29 02:04 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2015-03-06 02:55 - 2014-10-29 02:04 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2015-03-06 02:55 - 2014-10-29 02:04 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2015-03-06 02:55 - 2014-10-29 02:03 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-03-06 02:55 - 2014-10-29 02:03 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-03-06 02:55 - 2014-10-29 02:01 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2015-03-06 02:55 - 2014-10-29 02:00 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wbemcomn.dll
2015-03-06 02:55 - 2014-10-29 02:00 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2015-03-06 02:55 - 2014-10-29 01:59 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxApplicabilityEngine.dll
2015-03-06 02:55 - 2014-10-29 01:58 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-03-06 02:55 - 2014-10-29 01:58 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2015-03-06 02:55 - 2014-10-29 01:58 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2015-03-06 02:55 - 2014-10-29 01:57 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_isv.exe
2015-03-06 02:55 - 2014-10-29 01:57 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate.exe
2015-03-06 02:55 - 2014-10-29 01:57 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2015-03-06 02:55 - 2014-10-29 01:56 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2015-03-06 02:55 - 2014-10-29 01:55 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2015-03-06 02:55 - 2014-10-29 01:55 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2015-03-06 02:55 - 2014-10-29 01:53 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provcore.dll
2015-03-06 02:55 - 2014-10-29 01:53 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-03-06 02:55 - 2014-10-29 01:51 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-03-06 02:55 - 2014-10-29 01:50 - 00624128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2015-03-06 02:55 - 2014-10-29 01:47 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2015-03-06 02:55 - 2014-10-29 01:45 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2015-03-06 02:55 - 2014-10-29 01:44 - 00677376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-03-06 02:55 - 2014-10-29 01:42 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2015-03-06 02:55 - 2014-10-29 01:42 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2015-03-06 02:55 - 2014-10-29 01:39 - 00454144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll
2015-03-06 02:55 - 2014-10-29 01:39 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrv.dll
2015-03-06 02:55 - 2014-10-08 08:32 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-03-06 02:54 - 2014-10-29 04:59 - 00520536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-03-06 02:54 - 2014-10-29 04:57 - 00295432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2015-03-06 02:54 - 2014-10-29 04:57 - 00256744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2015-03-06 02:54 - 2014-10-29 04:55 - 00359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2015-03-06 02:54 - 2014-10-29 04:53 - 00687496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2015-03-06 02:54 - 2014-10-29 04:52 - 00311448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-03-06 02:54 - 2014-10-29 04:52 - 00225696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2015-03-06 02:54 - 2014-10-29 04:51 - 00363080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2015-03-06 02:54 - 2014-10-29 04:51 - 00360992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2015-03-06 02:54 - 2014-10-29 04:18 - 00320736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2015-03-06 02:54 - 2014-10-29 04:15 - 00340848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2015-03-06 02:54 - 2014-10-29 04:15 - 00245296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-03-06 02:54 - 2014-10-29 04:15 - 00089856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2015-03-06 02:54 - 2014-10-29 04:11 - 00463744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2015-03-06 02:54 - 2014-10-29 04:06 - 00800008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2015-03-06 02:54 - 2014-10-29 03:34 - 03438592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Data0804.dll
2015-03-06 02:54 - 2014-10-29 03:24 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2015-03-06 02:54 - 2014-10-29 03:17 - 03231232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData004b.dll
2015-03-06 02:54 - 2014-10-29 03:17 - 01926144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0022.dll
2015-03-06 02:54 - 2014-10-29 03:16 - 03235840 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0039.dll
2015-03-06 02:54 - 2014-10-29 03:16 - 03209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData004a.dll
2015-03-06 02:54 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData004e.dll
2015-03-06 02:54 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0049.dll
2015-03-06 02:54 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0047.dll
2015-03-06 02:54 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0046.dll
2015-03-06 02:54 - 2014-10-29 03:15 - 03209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0020.dll
2015-03-06 02:54 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0026.dll
2015-03-06 02:54 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0024.dll
2015-03-06 02:54 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData001b.dll
2015-03-06 02:54 - 2014-10-29 03:15 - 02073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0002.dll
2015-03-06 02:54 - 2014-10-29 03:15 - 01904640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData002a.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 03209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData004c.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 03209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0045.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 02075136 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0027.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0c1a.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData081a.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData001a.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0018.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000f.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 02073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0003.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 01904640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData003e.dll
2015-03-06 02:54 - 2014-10-29 03:14 - 01904640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0021.dll
2015-03-06 02:54 - 2014-10-29 03:12 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-03-06 02:54 - 2014-10-29 03:04 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2015-03-06 02:54 - 2014-10-29 03:02 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xwizards.dll
2015-03-06 02:54 - 2014-10-29 03:01 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroleui.dll
2015-03-06 02:54 - 2014-10-29 02:59 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2015-03-06 02:54 - 2014-10-29 02:56 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDSp.dll
2015-03-06 02:54 - 2014-10-29 02:55 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2015-03-06 02:54 - 2014-10-29 02:54 - 00833536 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2015-03-06 02:54 - 2014-10-29 02:54 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll
2015-03-06 02:54 - 2014-10-29 02:54 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2015-03-06 02:54 - 2014-10-29 02:50 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdri.dll
2015-03-06 02:54 - 2014-10-29 02:49 - 00478720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2015-03-06 02:54 - 2014-10-29 02:47 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2015-03-06 02:54 - 2014-10-29 02:45 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdohlp.dll
2015-03-06 02:54 - 2014-10-29 02:44 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2015-03-06 02:54 - 2014-10-29 02:43 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSNP.ax
2015-03-06 02:54 - 2014-10-29 02:38 - 04945920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-03-06 02:54 - 2014-10-29 02:38 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSE.dll
2015-03-06 02:54 - 2014-10-29 02:34 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2015-03-06 02:54 - 2014-10-29 02:33 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2015-03-06 02:54 - 2014-10-29 02:33 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2015-03-06 02:54 - 2014-10-29 02:32 - 00794624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2015-03-06 02:54 - 2014-10-29 02:29 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-03-06 02:54 - 2014-10-29 02:25 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncInfrastructure.dll
2015-03-06 02:54 - 2014-10-29 02:24 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2015-03-06 02:54 - 2014-10-29 02:23 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2015-03-06 02:54 - 2014-10-29 02:23 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2015-03-06 02:54 - 2014-10-29 02:22 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdelta.dll
2015-03-06 02:54 - 2014-10-29 02:22 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2015-03-06 02:54 - 2014-10-29 02:21 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2015-03-06 02:54 - 2014-10-29 02:21 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe
2015-03-06 02:54 - 2014-10-29 02:21 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2015-03-06 02:54 - 2014-10-29 02:19 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2015-03-06 02:54 - 2014-10-29 02:18 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2015-03-06 02:54 - 2014-10-29 02:17 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdt.exe
2015-03-06 02:54 - 2014-10-29 02:16 - 00795136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2015-03-06 02:54 - 2014-10-29 02:14 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-03-06 02:54 - 2014-10-29 02:14 - 00301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2015-03-06 02:54 - 2014-10-29 02:13 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-03-06 02:54 - 2014-10-29 02:13 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-03-06 02:54 - 2014-10-29 02:11 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2015-03-06 02:54 - 2014-10-29 02:09 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2015-03-06 02:54 - 2014-10-29 02:09 - 00345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2015-03-06 02:54 - 2014-10-29 02:07 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-03-06 02:54 - 2014-10-29 02:06 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2015-03-06 02:54 - 2014-10-29 02:05 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2015-03-06 02:54 - 2014-10-29 02:05 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2015-03-06 02:54 - 2014-10-29 02:01 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2015-03-06 02:54 - 2014-10-29 01:59 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2015-03-06 02:54 - 2014-10-29 01:58 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2015-03-06 02:54 - 2014-10-29 01:55 - 00887808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dim700.dll
2015-03-06 02:54 - 2014-10-29 01:55 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2015-03-06 02:54 - 2014-10-29 01:55 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2015-03-06 02:54 - 2014-10-29 01:54 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-03-06 02:54 - 2014-10-29 01:52 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2015-03-06 02:54 - 2014-10-29 01:50 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2015-03-06 02:54 - 2014-10-29 01:50 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2015-03-06 02:54 - 2014-10-29 01:47 - 00628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-03-06 02:54 - 2014-10-29 01:47 - 00527872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2015-03-06 02:54 - 2014-10-29 01:40 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2015-03-06 02:54 - 2014-10-15 09:32 - 00551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-03-06 02:53 - 2014-10-29 04:59 - 00415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2015-03-06 02:53 - 2014-10-29 04:59 - 00230816 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2015-03-06 02:53 - 2014-10-29 04:11 - 00245296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2015-03-06 02:53 - 2014-10-29 04:07 - 00336680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2015-03-06 02:53 - 2014-10-29 04:07 - 00202440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2015-03-06 02:53 - 2014-10-29 04:05 - 00321248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2015-03-06 02:53 - 2014-10-29 03:49 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp60.dll
2015-03-06 02:53 - 2014-10-29 03:27 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskraid.exe
2015-03-06 02:53 - 2014-10-29 03:27 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdv.dll
2015-03-06 02:53 - 2014-10-29 03:27 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfdvdec.dll
2015-03-06 02:53 - 2014-10-29 03:26 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\termmgr.dll
2015-03-06 02:53 - 2014-10-29 03:22 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2015-03-06 02:53 - 2014-10-29 03:21 - 01664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2015-03-06 02:53 - 2014-10-29 03:19 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2015-03-06 02:53 - 2014-10-29 03:11 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2015-03-06 02:53 - 2014-10-29 03:04 - 00612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\IasMigPlugin.dll
2015-03-06 02:53 - 2014-10-29 03:03 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-03-06 02:53 - 2014-10-29 03:01 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-03-06 02:53 - 2014-10-29 03:00 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glmf32.dll
2015-03-06 02:53 - 2014-10-29 03:00 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msls31.dll
2015-03-06 02:53 - 2014-10-29 02:58 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-03-06 02:53 - 2014-10-29 02:57 - 01431552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxpTaskSync.dll
2015-03-06 02:53 - 2014-10-29 02:56 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-03-06 02:53 - 2014-10-29 02:52 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netdiagfx.dll
2015-03-06 02:53 - 2014-10-29 02:49 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2015-03-06 02:53 - 2014-10-29 02:49 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2015-03-06 02:53 - 2014-10-29 02:47 - 01041920 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdt.exe
2015-03-06 02:53 - 2014-10-29 02:46 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdv.dll
2015-03-06 02:53 - 2014-10-29 02:46 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfdvdec.dll
2015-03-06 02:53 - 2014-10-29 02:45 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\drmmgrtn.dll
2015-03-06 02:53 - 2014-10-29 02:43 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-03-06 02:53 - 2014-10-29 02:43 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offfilt.dll
2015-03-06 02:53 - 2014-10-29 02:42 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2015-03-06 02:53 - 2014-10-29 02:40 - 02036224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0007.dll
2015-03-06 02:53 - 2014-10-29 02:38 - 00363008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2015-03-06 02:53 - 2014-10-29 02:34 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnfldr.dll
2015-03-06 02:53 - 2014-10-29 02:29 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\filemgmt.dll
2015-03-06 02:53 - 2014-10-29 02:29 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-03-06 02:53 - 2014-10-29 02:27 - 00422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2015-03-06 02:53 - 2014-10-29 02:27 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-03-06 02:53 - 2014-10-29 02:26 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2015-03-06 02:53 - 2014-10-29 02:26 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-03-06 02:53 - 2014-10-29 02:22 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-03-06 02:53 - 2014-10-29 02:20 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ipsecsnp.dll
2015-03-06 02:53 - 2014-10-29 02:20 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-03-06 02:53 - 2014-10-29 02:20 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2015-03-06 02:53 - 2014-10-29 02:20 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2015-03-06 02:53 - 2014-10-29 02:18 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2015-03-06 02:53 - 2014-10-29 02:17 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-03-06 02:53 - 2014-10-29 02:14 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-03-06 02:53 - 2014-10-29 02:10 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2015-03-06 02:53 - 2014-10-29 02:07 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2015-03-06 02:53 - 2014-10-29 02:05 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2015-03-06 02:53 - 2014-10-29 02:03 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2015-03-06 02:53 - 2014-10-29 02:00 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2015-03-06 02:53 - 2014-10-29 01:59 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2015-03-06 02:53 - 2014-10-29 01:58 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2015-03-06 02:53 - 2014-10-29 01:57 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-06 02:53 - 2014-10-29 01:56 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-03-06 02:53 - 2014-10-29 01:55 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanpref.dll
2015-03-06 02:53 - 2014-10-29 01:54 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2015-03-06 02:53 - 2014-10-29 01:54 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.HardwareId.dll
2015-03-06 02:53 - 2014-10-29 01:53 - 00550400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2015-03-06 02:53 - 2014-10-29 01:52 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-03-06 02:53 - 2014-10-29 01:52 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-03-06 02:53 - 2014-10-29 01:49 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2015-03-06 02:53 - 2014-10-29 01:44 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2015-03-06 02:53 - 2014-10-29 01:43 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-03-06 02:52 - 2014-10-29 05:04 - 00217912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2015-03-06 02:52 - 2014-10-29 04:58 - 01797944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2015-03-06 02:52 - 2014-10-29 04:57 - 01913128 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplaySwitch.exe
2015-03-06 02:52 - 2014-10-29 04:12 - 00416760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-03-06 02:52 - 2014-10-29 03:24 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2015-03-06 02:52 - 2014-10-29 03:18 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscandui.dll
2015-03-06 02:52 - 2014-10-29 03:18 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2015-03-06 02:52 - 2014-10-29 03:04 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2015-03-06 02:52 - 2014-10-29 02:57 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-03-06 02:52 - 2014-10-29 02:54 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dim.dll
2015-03-06 02:52 - 2014-10-29 02:53 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2015-03-06 02:52 - 2014-10-29 02:49 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmime.dll
2015-03-06 02:52 - 2014-10-29 02:44 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2015-03-06 02:52 - 2014-10-29 02:43 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2015-03-06 02:52 - 2014-10-29 02:43 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2015-03-06 02:52 - 2014-10-29 02:39 - 09604608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000a.dll
2015-03-06 02:52 - 2014-10-29 02:39 - 04531712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0416.dll
2015-03-06 02:52 - 2014-10-29 02:39 - 04530688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData001d.dll
2015-03-06 02:52 - 2014-10-29 02:39 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscandui.dll
2015-03-06 02:52 - 2014-10-29 02:38 - 04530688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0010.dll
2015-03-06 02:52 - 2014-10-29 02:38 - 04530176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0414.dll
2015-03-06 02:52 - 2014-10-29 02:38 - 04529664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0816.dll
2015-03-06 02:52 - 2014-10-29 02:25 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroleui.dll
2015-03-06 02:52 - 2014-10-29 02:25 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2015-03-06 02:52 - 2014-10-29 02:24 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2015-03-06 02:52 - 2014-10-29 02:24 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2015-03-06 02:52 - 2014-10-29 02:22 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-03-06 02:52 - 2014-10-29 02:22 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2015-03-06 02:52 - 2014-10-29 02:21 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2015-03-06 02:52 - 2014-10-29 02:20 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-03-06 02:52 - 2014-10-29 02:19 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10_1core.dll
2015-03-06 02:52 - 2014-10-29 02:19 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10core.dll
2015-03-06 02:52 - 2014-10-29 02:17 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2015-03-06 02:52 - 2014-10-29 02:14 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate_ssp_isv.exe
2015-03-06 02:52 - 2014-10-29 02:14 - 00493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMActivate_ssp.exe
2015-03-06 02:52 - 2014-10-29 02:08 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2015-03-06 02:52 - 2014-10-29 02:06 - 00301568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-03-06 02:52 - 2014-10-29 02:03 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2015-03-06 02:52 - 2014-10-29 02:01 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdelta.dll
2015-03-06 02:52 - 2014-10-29 02:01 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-03-06 02:52 - 2014-10-29 01:59 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2015-03-06 02:52 - 2014-10-29 01:58 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2015-03-06 02:52 - 2014-10-29 01:57 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2015-03-06 02:52 - 2014-10-29 01:53 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-03-06 02:52 - 2014-10-29 01:49 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2015-03-06 02:52 - 2014-10-29 01:49 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-03-06 02:52 - 2014-10-29 01:43 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2015-03-06 02:52 - 2014-10-29 01:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSATAPI.dll
2015-03-06 02:52 - 2014-10-29 01:43 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.HardwareId.dll
2015-03-06 02:52 - 2014-10-29 01:35 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2015-03-06 02:52 - 2014-10-15 09:32 - 00337728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2015-03-06 02:51 - 2014-10-29 05:09 - 00294880 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2015-03-06 02:51 - 2014-10-29 04:57 - 00339312 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2015-03-06 02:51 - 2014-10-29 04:57 - 00271152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2015-03-06 02:51 - 2014-10-29 04:57 - 00217432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2015-03-06 02:51 - 2014-10-29 04:57 - 00031496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraSettingsUIHost.exe
2015-03-06 02:51 - 2014-10-29 04:57 - 00027360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsRemoveDevice.exe
2015-03-06 02:51 - 2014-10-29 04:55 - 00305192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2015-03-06 02:51 - 2014-10-29 04:52 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2015-03-06 02:51 - 2014-10-29 04:13 - 00185880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2015-03-06 02:51 - 2014-10-29 04:11 - 00191104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2015-03-06 02:51 - 2014-10-29 04:10 - 00276816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2015-03-06 02:51 - 2014-10-29 04:07 - 00260800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-03-06 02:51 - 2014-10-29 04:07 - 00019096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksuser.dll
2015-03-06 02:51 - 2014-10-29 04:05 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2015-03-06 02:51 - 2014-10-29 03:41 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2015-03-06 02:51 - 2014-10-29 03:32 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlceoledb40.dll
2015-03-06 02:51 - 2014-10-29 03:30 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2015-03-06 02:51 - 2014-10-29 03:29 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2015-03-06 02:51 - 2014-10-29 03:27 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasnap.dll
2015-03-06 02:51 - 2014-10-29 03:27 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmvdspa.dll
2015-03-06 02:51 - 2014-10-29 03:16 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsnap.dll
2015-03-06 02:51 - 2014-10-29 03:02 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2015-03-06 02:51 - 2014-10-29 03:01 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2015-03-06 02:51 - 2014-10-29 03:01 - 00475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2015-03-06 02:51 - 2014-10-29 02:52 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipsecsnp.dll
2015-03-06 02:51 - 2014-10-29 02:43 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2015-03-06 02:51 - 2014-10-29 02:41 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassdo.dll
2015-03-06 02:51 - 2014-10-29 02:39 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2015-03-06 02:51 - 2014-10-29 02:38 - 02387456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000d.dll
2015-03-06 02:51 - 2014-10-29 02:38 - 02307072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000c.dll
2015-03-06 02:51 - 2014-10-29 02:28 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
2015-03-06 02:51 - 2014-10-29 02:27 - 00763392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2015-03-06 02:51 - 2014-10-29 02:20 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2015-03-06 02:51 - 2014-10-29 02:17 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2015-03-06 02:51 - 2014-10-29 02:12 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2015-03-06 02:51 - 2014-10-29 02:12 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-03-06 02:51 - 2014-10-29 02:10 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-03-06 02:51 - 2014-10-29 02:04 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2015-03-06 02:51 - 2014-10-29 02:03 - 00608256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2015-03-06 02:51 - 2014-10-29 01:57 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2015-03-06 02:51 - 2014-10-29 01:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSATAPI.dll
2015-03-06 02:51 - 2014-10-29 01:52 - 01024512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2015-03-06 02:51 - 2014-10-29 01:52 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2015-03-06 02:51 - 2014-10-29 01:51 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2015-03-06 02:51 - 2014-10-29 01:50 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallControlPanel.dll
2015-03-06 02:51 - 2014-10-29 01:41 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-03-06 02:51 - 2014-09-27 05:59 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-03-06 02:51 - 2014-08-26 04:30 - 00354112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2015-03-06 02:50 - 2014-10-29 05:09 - 00315576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgmgr32.dll
2015-03-06 02:50 - 2014-10-29 04:57 - 00629576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2015-03-06 02:50 - 2014-10-29 04:15 - 00192096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2015-03-06 02:50 - 2014-10-29 04:10 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2015-03-06 02:50 - 2014-10-29 03:56 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2015-03-06 02:50 - 2014-10-29 03:42 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2015-03-06 02:50 - 2014-10-29 03:36 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\prncache.dll
2015-03-06 02:50 - 2014-10-29 03:16 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\lltdapi.dll
2015-03-06 02:50 - 2014-10-29 03:11 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgprint.dll
2015-03-06 02:50 - 2014-10-29 03:10 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2015-03-06 02:50 - 2014-10-29 03:09 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\lltdsvc.dll
2015-03-06 02:50 - 2014-10-29 03:04 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\devmgr.dll
2015-03-06 02:50 - 2014-10-29 03:02 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\localsec.dll
2015-03-06 02:50 - 2014-10-29 02:58 - 00423424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2015-03-06 02:50 - 2014-10-29 02:49 - 00771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2015-03-06 02:50 - 2014-10-29 02:48 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dxpserver.exe
2015-03-06 02:50 - 2014-10-29 02:45 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\termmgr.dll
2015-03-06 02:50 - 2014-10-29 02:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2015-03-06 02:50 - 2014-10-29 02:31 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\netjoin.dll
2015-03-06 02:50 - 2014-10-29 02:29 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devmgr.dll
2015-03-06 02:50 - 2014-10-29 02:29 - 00434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-03-06 02:50 - 2014-10-29 02:28 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2015-03-06 02:50 - 2014-10-29 02:27 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xwizards.dll
2015-03-06 02:50 - 2014-10-29 02:27 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2015-03-06 02:50 - 2014-10-29 02:25 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2015-03-06 02:50 - 2014-10-29 02:23 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2015-03-06 02:50 - 2014-10-29 02:21 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-03-06 02:50 - 2014-10-29 02:20 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdscore.dll
2015-03-06 02:50 - 2014-10-29 02:17 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2015-03-06 02:50 - 2014-10-29 02:16 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authfwcfg.dll
2015-03-06 02:50 - 2014-10-29 02:13 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-03-06 02:50 - 2014-10-29 02:12 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2015-03-06 02:50 - 2014-10-29 02:04 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netjoin.dll
2015-03-06 02:50 - 2014-10-29 02:00 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10_1core.dll
2015-03-06 02:50 - 2014-10-29 01:58 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-03-06 02:50 - 2014-10-29 01:56 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_ssp_isv.exe
2015-03-06 02:50 - 2014-10-29 01:56 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RMActivate_ssp.exe
2015-03-06 02:50 - 2014-10-29 01:56 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.dll
2015-03-06 02:50 - 2014-10-29 01:55 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-03-06 02:50 - 2014-10-29 01:44 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-03-06 02:50 - 2014-10-29 01:44 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2015-03-06 02:50 - 2014-10-29 01:42 - 00865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallControlPanel.dll
2015-03-06 02:49 - 2014-10-29 03:33 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Data001E.dll
2015-03-06 02:48 - 2014-10-29 03:20 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\QAGENTRT.DLL
2015-03-06 02:48 - 2014-10-29 02:53 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NL7Data0404.dll
2015-03-06 02:48 - 2014-10-29 02:52 - 00224768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsldp.dll
2015-03-06 02:48 - 2014-10-29 02:46 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmvdspa.dll
2015-03-06 02:48 - 2014-10-29 02:43 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll
2015-03-06 02:48 - 2014-10-29 02:24 - 01389056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxpTaskSync.dll
2015-03-06 02:48 - 2014-10-29 02:23 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDSp.dll
2015-03-06 02:48 - 2014-10-29 02:21 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2015-03-06 02:48 - 2014-10-29 02:21 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2015-03-06 02:48 - 2014-10-29 02:19 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2015-03-06 02:48 - 2014-10-29 02:16 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drmmgrtn.dll
2015-03-06 02:48 - 2014-10-29 02:04 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2015-03-06 02:48 - 2014-10-29 02:01 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2015-03-06 02:48 - 2014-10-29 01:59 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2015-03-06 02:48 - 2014-10-29 01:57 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2015-03-06 02:48 - 2014-10-29 01:49 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2015-03-06 02:48 - 2014-10-29 01:41 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2015-03-06 02:47 - 2014-10-29 04:10 - 01906872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplaySwitch.exe
2015-03-06 02:47 - 2014-10-29 02:13 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-03-06 02:46 - 2014-10-29 04:57 - 00767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2015-03-06 02:46 - 2014-10-29 04:51 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2015-03-06 02:46 - 2014-10-29 03:26 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2015-03-06 02:46 - 2014-10-29 03:04 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2015-03-06 02:46 - 2014-10-29 02:46 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskraid.exe
2015-03-06 02:46 - 2014-10-29 02:35 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2015-03-06 02:46 - 2014-10-29 02:34 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-03-06 02:46 - 2014-10-29 02:28 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2015-03-06 02:46 - 2014-10-29 02:25 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-03-06 02:46 - 2014-10-29 02:10 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2015-03-06 02:46 - 2014-10-29 02:04 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPTpm12.dll
2015-03-06 02:46 - 2014-10-29 01:55 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2015-03-06 02:46 - 2014-10-29 01:52 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.SpeechSynthesis.dll
2015-03-06 02:46 - 2014-10-29 01:48 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2015-03-06 02:46 - 2014-10-29 01:46 - 01305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-03-06 02:46 - 2014-10-29 01:46 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-06 02:45 - 2014-10-29 03:12 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcat.dll
2015-03-06 02:45 - 2014-10-29 03:08 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdprint.dll
2015-03-06 02:45 - 2014-10-29 02:52 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NL7Data0804.dll
2015-03-06 02:45 - 2014-10-29 02:46 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoeacct.dll
2015-03-06 02:45 - 2014-10-29 02:44 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-03-06 02:45 - 2014-10-29 02:24 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2015-03-06 02:45 - 2014-10-29 02:16 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msoeacct.dll
2015-03-06 02:45 - 2014-10-29 01:54 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2015-03-06 02:45 - 2014-10-29 01:53 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-03-06 02:45 - 2014-10-29 01:45 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.dll
2015-03-06 02:45 - 2014-10-29 01:44 - 00732672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanpref.dll
2015-03-06 02:44 - 2014-10-29 03:46 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys
2015-03-06 02:44 - 2014-10-29 03:41 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-03-06 02:44 - 2014-10-29 03:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched32.dll
2015-03-06 02:44 - 2014-10-29 02:53 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2015-03-06 02:44 - 2014-10-29 02:28 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2015-03-06 02:44 - 2014-10-29 02:20 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedyn.dll
2015-03-06 02:44 - 2014-10-29 02:00 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedyn.dll
2015-03-06 02:44 - 2014-10-29 01:59 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-03-06 02:44 - 2014-10-29 01:49 - 00300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2015-03-06 02:44 - 2014-10-29 01:46 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2015-03-06 02:44 - 2014-10-29 01:43 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2015-03-06 02:44 - 2014-10-29 01:30 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2015-03-06 02:43 - 2014-10-29 03:35 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsldp.dll
2015-03-06 02:43 - 2014-10-29 03:13 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnfldr.dll
2015-03-06 02:43 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0c1a.dll
2015-03-06 02:43 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData001b.dll
2015-03-06 02:43 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0018.dll
2015-03-06 02:43 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0003.dll
2015-03-06 02:43 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0002.dll
2015-03-06 02:43 - 2014-10-29 02:28 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2015-03-06 02:43 - 2014-10-29 02:05 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsCfg.dll
2015-03-06 02:42 - 2014-10-29 02:38 - 02012160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0026.dll
2015-03-06 02:42 - 2014-10-29 02:38 - 02012160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000f.dll
2015-03-06 02:42 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData081a.dll
2015-03-06 02:42 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData001a.dll
2015-03-06 02:41 - 2014-10-29 02:36 - 01999360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0027.dll
2015-03-06 02:41 - 2014-10-29 02:36 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0024.dll
2015-03-06 02:41 - 2014-10-29 01:59 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10core.dll
2015-03-06 02:40 - 2014-10-29 03:27 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll
2015-03-06 02:40 - 2014-10-29 01:53 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_8.dll
2015-03-06 02:39 - 2014-10-29 02:05 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe
2015-03-06 02:39 - 2014-10-29 02:04 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2015-03-06 02:39 - 2014-10-29 01:57 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authfwcfg.dll
2015-03-06 02:38 - 2014-10-29 02:17 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-03-06 02:38 - 2014-10-29 02:05 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2015-03-06 02:38 - 2014-10-29 01:54 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NAPMONTR.DLL
2015-03-06 02:37 - 2014-10-29 05:09 - 00214360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2015-03-06 02:37 - 2014-10-29 02:30 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmdial32.dll
2015-03-06 02:37 - 2014-10-29 02:05 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2015-03-06 02:36 - 2014-10-29 03:00 - 00371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2015-03-06 02:36 - 2014-10-29 02:17 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2015-03-06 02:36 - 2014-10-29 02:14 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-03-06 02:35 - 2014-10-29 03:45 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-03-06 02:35 - 2014-10-29 02:57 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2015-03-06 02:35 - 2014-10-29 02:37 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsnap.dll
2015-03-06 02:35 - 2014-10-29 02:00 - 00200192 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2015-03-06 02:35 - 2014-10-29 01:56 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2015-03-06 02:34 - 2014-10-29 04:51 - 00179736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2015-03-06 02:34 - 2014-10-29 04:10 - 00272648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2015-03-06 02:34 - 2014-10-29 02:57 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2015-03-06 02:34 - 2014-10-29 02:27 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2015-03-06 02:34 - 2014-10-29 02:20 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2015-03-06 02:34 - 2014-10-29 01:54 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-03-06 02:34 - 2014-10-08 10:24 - 00467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-03-06 02:33 - 2014-10-29 03:45 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2015-03-06 02:33 - 2014-10-29 03:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\migflt.dll
2015-03-06 02:33 - 2014-10-29 02:52 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-03-06 02:33 - 2014-10-29 02:48 - 01364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\connect.dll
2015-03-06 02:33 - 2014-10-29 01:59 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2015-03-06 02:33 - 2014-10-29 01:53 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2015-03-06 02:32 - 2014-10-29 05:09 - 00233448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityUxHost.exe
2015-03-06 02:32 - 2014-10-29 04:57 - 00216920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVol.exe
2015-03-06 02:32 - 2014-10-29 04:57 - 00034568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2015-03-06 02:32 - 2014-10-29 04:57 - 00029408 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerHost.exe
2015-03-06 02:32 - 2014-10-29 04:57 - 00018584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SlideToShutDown.exe
2015-03-06 02:32 - 2014-10-29 04:52 - 00161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll
2015-03-06 02:32 - 2014-10-29 04:18 - 00241168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgmgr32.dll
2015-03-06 02:32 - 2014-10-29 04:11 - 00187488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2015-03-06 02:32 - 2014-10-29 03:41 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-03-06 02:32 - 2014-10-29 03:40 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2015-03-06 02:32 - 2014-10-29 03:31 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\cewmdm.dll
2015-03-06 02:32 - 2014-10-29 03:27 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskmgr.dll
2015-03-06 02:32 - 2014-10-29 03:26 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2015-03-06 02:32 - 2014-10-29 03:21 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassam.dll
2015-03-06 02:32 - 2014-10-29 03:20 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2015-03-06 02:32 - 2014-10-29 03:18 - 01609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0000.dll
2015-03-06 02:32 - 2014-10-29 03:05 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dl
|
|
| Themen zu Kurzes Stoppen alle 60 Sekunden mit Tröt-Geräusch |
| aktuelle, forum, gen, installier, installiert, kurzes, malware / spyware / tröten /alle 60 sekunden, neulich, problem, sekunden, spy-hunter, stoppen, treiber, windows, woche, ähnliches |
Linear-Darstellung
