Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Win 10 Performance Probleme durch Virus?

Win 10 Performance Probleme durch Virus?


Plagegeister aller Art und deren Bekämpfung: Win 10 Performance Probleme durch Virus?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 12.06.2016, 19:52   #1
Exides
 
Win 10 Performance Probleme durch Virus? - Standard

Win 10 Performance Probleme durch Virus?


Hallo,

Ich habe den verdacht das sich mein System etwas eingefangen hat, Die Performance und FPS in Spielen hat sich verschlechter und springt stark hin und her.

Außerdem öffnet mein Bwoser manchmal keine Seiten mehr wenn ich eine weile im Netz gesurft habe. Hinzu kommt das ich manchmal Plötzlich auch keinen Sound mehr habe über win 10. Im Allgemeinen verhält sich das System nicht so stabil.

Könnten wir das wohl überprüfen ob mein System noch sauber ist?

System:
R9 290 PCS+ (Powercolor)
8GB RAM
Intel Core i5-4570 , 2 x 3.20
Win 10 - 64bit

Alle Treiber sind Aktuell


Gruß
Exides

Alt 12.06.2016, 22:27   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Win 10 Performance Probleme durch Virus? - Standard

Win 10 Performance Probleme durch Virus?


Hallo und

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!



Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________
Alt 13.06.2016, 15:02   #3
Exides
 
Win 10 Performance Probleme durch Virus? - Standard

Win 10 Performance Probleme durch Virus?


Hey und schon mal vielen Dank für deine Hilfe!

Ich hatte gestern Malewarebytes durch laufen lassen da Avast und spybot search and destroy nie was gefunden haben. Ich aber der Meinung bin das etwas nicht stimmt. Malewarebytes hat gestern zwei funde gemacht die sich momentan in Quarantäne befinden.

Und hier die Logs:

Malwarebytes.Log
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 12.06.2016
Suchlaufzeit: 13:23
Protokolldatei: Scan LOG.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2016.06.12.02
Rootkit-Datenbank: v2016.05.27.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: ****

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 315562
Abgelaufene Zeit: 7 Min., 19 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 2
CrackTool.KMSPico, C:\Program Files\KMSpico\KMSELDI.exe, In Quarantäne, [14feb4487524f34392e81e8bbe43a759], 
Trojan.Agent, C:\Windows\hosts, In Quarantäne, [7f93e715306984b2961df426d82bd62a], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
FRST.txt
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:12-06-2016 01
durchgeführt von **** (Administrator) auf ******* (13-06-2016 15:42:34)
Gestartet von C:\Users\****\Downloads
Geladene Profile: * (Verfügbare Profile: * )
Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(@ByELDI) C:\Program Files\KMSpico\Service_KMS.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Hi-Rez Studios) G:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\Plantronics\GameCom 780 & 788\GameCom780.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-15] (Realtek Semiconductor)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation)
HKLM\...\Run: [GamecomSound] => C:\Program Files\Plantronics\GameCom 780 & 788\GameCom780.exe [817440 2015-12-10] ()
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6564552 2016-05-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-05] (AVAST Software)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4127488 2015-06-16] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-04-27] (Raptr, Inc)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178400 2015-07-11] (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\Run: [Steam] => g:\Steam\steam.exe [2917456 2016-06-10] (Valve Corporation)
HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8721624 2016-05-13] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-05] (AVAST Software)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{57dcd2a3-75ca-4dcf-a273-dc7a9b5ed5f7}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-11] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-11] (AVAST Software)

FireFox:
========
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [2015-04-23] (EA Digital Illusions CE AB)
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll [2015-08-05] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [2015-04-23] (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-05]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-05]

Chrome: 
=======
CHR Profile: C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-07]
CHR Extension: (Google Docs) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-07]
CHR Extension: (Google Drive) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Google-Suche) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Google Tabellen) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-07]
CHR Extension: (Google Docs Offline) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Avast Online Security) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-04-08]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Google Mail) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-07]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-11]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-05-20] (Advanced Micro Devices) [Datei ist nicht signiert]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-05] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1352736 2016-02-20] ()
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [242448 2016-02-05] (EasyAntiCheat Ltd)
U2 HiPatchService; G:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2013-02-12] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-11] (Intel Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 Origin Client Service; G:\Origin\OriginClientService.exe [2122248 2016-06-12] (Electronic Arts)
S3 PAExec; C:\WINDOWS\PAExec.exe [189112 2016-06-06] (Power Admin LLC)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-09-12] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-09-12] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2015-05-22] (Realtek Semiconductor)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1750712 2015-06-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2102496 2015-06-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [224712 2015-07-24] (Safer-Networking Ltd.)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [966336 2014-10-10] (@ByELDI) [Datei ist nicht signiert]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [296648 2016-05-20] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [23240 2016-05-20] (Advanced Micro Devices, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-18] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-05] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1065720 2016-03-02] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [464256 2016-01-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-05] (AVAST Software)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [101376 2016-05-20] (Advanced Micro Devices)
S3 CMUAC; C:\Windows\system32\DRIVERS\CMUAC.sys [661760 2015-08-30] (C-MEDIA)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d65x64.sys [530416 2015-06-18] (Intel Corporation)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [27552 2015-11-17] (REALiX(tm))
S3 KovaPlusFltr; C:\Windows\system32\drivers\KovaPlusFltr.sys [15104 2010-01-25] (ROCCAT Development, Inc.)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [193336 2015-07-10] (Intel Corporation)
R3 PlantronicsGC; C:\Windows\system32\drivers\PLTGC.sys [1327104 2013-04-12] (C-Media Electronics Inc)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-13 15:42 - 2016-06-13 15:42 - 00015346 _____ C:\Users\Chris\Downloads\FRST.txt
2016-06-13 15:42 - 2016-06-13 15:42 - 00000000 ____D C:\FRST
2016-06-13 15:41 - 2016-06-13 15:41 - 02385408 _____ (Farbar) C:\Users\Chris\Downloads\FRST64.exe
2016-06-12 13:08 - 2016-06-13 15:34 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-06-12 13:08 - 2016-06-12 13:08 - 00001175 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-06-12 13:08 - 2016-06-12 13:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-06-12 13:08 - 2016-06-12 13:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-06-12 13:08 - 2016-06-12 13:08 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-06-12 13:08 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-06-12 13:08 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-06-12 13:08 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-06-12 13:07 - 2016-06-12 13:07 - 22851472 _____ (Malwarebytes ) C:\Users\Chris\Downloads\mbam-setup-chipde.13595-2.2.1.1043.exe
2016-06-11 14:48 - 2016-06-11 14:48 - 00002858 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-06-11 14:48 - 2016-06-11 14:48 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-06-11 14:48 - 2016-06-11 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-06-11 14:48 - 2016-06-11 14:48 - 00000000 ____D C:\Program Files\CCleaner
2016-06-11 14:42 - 2016-06-11 14:42 - 05655992 _____ (Piriform Ltd) C:\Users\Chris\Downloads\ccsetup518_slim.exe
2016-06-11 14:36 - 2016-06-11 14:39 - 00000000 ____D C:\AdwCleaner
2016-06-11 14:29 - 2016-06-11 14:29 - 03677248 _____ C:\Users\Chris\Downloads\adwcleaner_5.119.exe
2016-06-11 09:47 - 2016-06-11 09:47 - 00057422 _____ C:\Users\Chris\Desktop\s372445991682402034_p159_i1_w640.jpeg
2016-06-10 14:40 - 2016-06-10 14:40 - 00000000 ____D C:\Users\Chris\AppData\Roaming\ATI
2016-06-10 14:40 - 2016-06-10 14:40 - 00000000 ____D C:\Users\Chris\AppData\Local\ATI
2016-06-10 14:40 - 2016-06-10 14:40 - 00000000 ____D C:\ProgramData\ATI
2016-06-06 18:23 - 2016-06-06 18:23 - 00004296 _____ C:\WINDOWS\System32\Tasks\AMD Updater
2016-06-06 18:21 - 2016-06-08 15:12 - 00000000 ____D C:\Users\Chris\AppData\Local\AMD
2016-06-06 18:21 - 2016-06-06 18:21 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-06-06 18:21 - 2016-06-06 18:21 - 00000000 ____D C:\Program Files\AMD
2016-06-06 18:21 - 2016-06-06 18:21 - 00000000 ____D C:\Program Files (x86)\AMD
2016-06-06 18:21 - 2016-06-06 18:21 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2016-06-06 18:17 - 2016-06-06 18:18 - 328272984 _____ (AMD Inc.) C:\Users\Chris\Downloads\non-whql-64bit-radeon-software-crimson-16.5.3-win10-win8.1-win7-may21.exe
2016-06-06 18:07 - 2016-06-06 18:12 - 00000000 ____D C:\Users\Chris\Downloads\settings
2016-06-06 18:07 - 2016-06-06 18:12 - 00000000 ____D C:\Users\Chris\Downloads\DDU Logs
2016-06-06 18:07 - 2016-06-06 18:07 - 00000000 ____D C:\Users\Chris\Downloads\x64
2016-06-06 18:07 - 2016-05-29 20:45 - 03161088 _____ C:\Users\Chris\Downloads\Display Driver Uninstaller.exe
2016-06-06 18:07 - 2016-05-29 20:45 - 00509440 _____ C:\Users\Chris\Downloads\Display Driver Uninstaller.pdb
2016-06-06 18:07 - 2015-09-06 13:26 - 00000224 _____ C:\Users\Chris\Downloads\Display Driver Uninstaller.exe.config
2016-06-06 18:05 - 2016-06-06 18:05 - 01304074 _____ (Igor Pavlov) C:\Users\Chris\Downloads\DDU v16.0.0.1.exe
2016-06-06 17:01 - 2016-06-06 17:13 - 00000000 ____D C:\WINDOWS\LastGood
2016-06-05 11:04 - 2016-06-05 11:04 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-06-04 15:09 - 2016-06-04 17:25 - 00000000 ____D C:\Users\Chris\Downloads\Ethan Meixsell
2016-06-04 15:07 - 2016-06-04 17:25 - 00000000 ____D C:\Users\Chris\Downloads\Ethan Meixsell - 2010 - Pathos and Logos
2016-06-04 11:26 - 2016-06-04 11:27 - 00000000 ____D C:\Users\Chris\Desktop\BILD
2016-05-29 12:06 - 2016-05-29 12:06 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-05-28 19:09 - 2016-06-11 10:35 - 00000000 ____D C:\Users\Chris\Desktop\A1
2016-05-28 10:40 - 2016-06-11 14:50 - 00000000 ___DC C:\WINDOWS\Panther
2016-05-28 10:39 - 2016-05-28 10:39 - 00000000 ____D C:\Windows.old
2016-05-28 10:37 - 2016-05-28 10:37 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 13383168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 08705672 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 07533568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 06952088 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 04894208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 04827136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 03673424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 03591168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 03575296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-05-28 10:37 - 2016-05-28 10:37 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-05-28 10:37 - 2016-05-28 10:37 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02606824 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02587696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-05-28 10:37 - 2016-05-28 10:37 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-05-28 10:37 - 2016-05-28 10:37 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 01996288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 01824264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 01731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01613664 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01594920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01444352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01415200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 01372304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-05-28 10:37 - 2016-05-28 10:37 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01270072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 01152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-05-28 10:37 - 2016-05-28 10:37 - 01017032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 01009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00997376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-05-28 10:37 - 2016-05-28 10:37 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00882720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00858952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00848168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00820704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00808800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00786696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00785088 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00779384 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00701384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00696672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00671472 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00652312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00650304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00644096 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00640472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00613888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00605440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00577368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00563552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00558592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00541304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00538736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-05-28 10:37 - 2016-05-28 10:37 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-05-28 10:37 - 2016-05-28 10:37 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00499432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00476728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00440152 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00431240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00430944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00420928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00408120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00405568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-05-28 10:37 - 2016-05-28 10:37 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-05-28 10:37 - 2016-05-28 10:37 - 00376536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00330072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-05-28 10:37 - 2016-05-28 10:37 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00294592 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00287712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00260608 _____ C:\WINDOWS\system32\MTFServer.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassam.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00245840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-05-28 10:37 - 2016-05-28 10:37 - 00234504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00220064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00208176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
__________________
Geändert von Exides (13.06.2016 um 15:27 Uhr)

Alt 13.06.2016, 15:03   #4
Exides
 
Win 10 Performance Probleme durch Virus? - Standard

Win 10 Performance Probleme durch Virus?


FRST.txt Part 2
Code:
ATTFilter
2016-05-28 10:37 - 2016-05-28 10:37 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassam.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00202472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityCommon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimCfg.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2016-05-28 10:37 - 2016-05-28 10:37 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00147808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00146272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00141664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00141560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbio.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimAuth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00127840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-05-28 10:37 - 2016-05-28 10:37 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2016-05-28 10:37 - 2016-05-28 10:37 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00119320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00100160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-05-28 10:37 - 2016-05-28 10:37 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttpcom.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbio.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00085320 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00081112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttpcom.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PimIndexMaintenanceClient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ztrace_maps.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TimeBrokerClient.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ztrace_maps.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-05-28 10:37 - 2016-05-28 10:37 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasautou.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasautou.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-05-28 10:37 - 2016-05-28 10:37 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscoreext.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasadhlp.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2016-05-28 10:37 - 2016-05-28 10:37 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2016-05-28 10:32 - 2016-05-28 10:32 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-05-28 10:31 - 2016-05-28 10:31 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-05-28 10:31 - 2016-05-28 10:31 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-05-28 10:31 - 2016-05-28 10:31 - 00000000 ____D C:\Program Files\MSBuild
2016-05-28 10:31 - 2016-05-28 10:31 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-05-28 10:31 - 2016-05-28 10:31 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-05-28 10:30 - 2016-05-28 10:30 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-05-28 10:30 - 2016-05-28 10:30 - 00304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-05-28 10:30 - 2015-10-23 18:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-05-28 10:30 - 2015-10-23 18:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-05-28 10:30 - 2015-10-23 18:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-05-28 10:30 - 2015-10-23 18:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-05-28 10:30 - 2015-10-23 18:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-05-28 10:30 - 2015-10-23 18:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-05-28 10:03 - 2016-05-28 10:03 - 00000020 ___SH C:\Users\Chris\ntuser.ini
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-05-28 10:02 - 2016-05-28 10:02 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-05-28 09:58 - 2016-06-12 13:48 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-28 09:52 - 2016-05-28 09:52 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-05-28 09:49 - 2016-05-28 09:53 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-05-28 09:47 - 2016-06-12 03:12 - 00000000 ____D C:\Users\Chris
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\Vorlagen
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\Startmenü
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\Netzwerkumgebung
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\Lokale Einstellungen
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\Eigene Dateien
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\Druckumgebung
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\Documents\Eigene Videos
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\Documents\Eigene Musik
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\Documents\Eigene Bilder
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\AppData\Local\Verlauf
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\AppData\Local\Anwendungsdaten
2016-05-28 09:47 - 2016-05-28 09:47 - 00000000 _SHDL C:\Users\Chris\Anwendungsdaten
2016-05-28 09:45 - 2016-06-12 13:47 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-05-28 09:45 - 2016-05-28 09:45 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-05-28 09:45 - 2016-05-28 09:45 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2016-05-28 09:45 - 2016-05-28 09:45 - 00000000 ____D C:\Program Files\Realtek
2016-05-28 09:44 - 2015-10-30 09:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-05-28 09:41 - 2016-05-28 09:54 - 00224400 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-05-28 09:07 - 2016-05-28 09:20 - 00000000 ___HD C:\$WINDOWS.~BT
2016-05-27 18:35 - 2016-05-28 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.5.1
2016-05-27 18:35 - 2016-05-27 18:35 - 00000662 _____ C:\Users\Chris\Desktop\Cheat Engine.lnk
2016-05-27 18:35 - 2016-05-27 18:35 - 00000000 ____D C:\Users\Chris\Documents\My Cheat Tables
2016-05-24 11:02 - 2016-05-24 11:02 - 00000000 ____D C:\Users\Chris\AppData\Roaming\The Creative Assembly
2016-05-24 10:43 - 2016-05-24 10:43 - 00000202 _____ C:\Users\Chris\Desktop\Total War WARHAMMER.url
2016-05-22 10:33 - 2016-05-22 10:33 - 00000202 _____ C:\Users\Chris\Desktop\Grand Theft Auto V.url
2016-05-20 23:48 - 2016-05-20 23:48 - 00462080 _____ C:\WINDOWS\system32\amdmiracast.dll
2016-05-20 23:48 - 2016-05-20 23:48 - 00141280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2016-05-20 23:48 - 2016-05-20 23:48 - 00122704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 10694160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 08876704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 08865344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 01511680 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 01242832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00166488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00150544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00141280 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00137136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00125288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2016-05-20 23:47 - 2016-05-20 23:47 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2016-05-20 23:46 - 2016-05-20 23:46 - 09798560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2016-05-20 23:46 - 2016-05-20 23:46 - 08577456 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2016-05-20 23:46 - 2016-05-20 23:46 - 06999496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2016-05-20 23:44 - 2016-05-20 23:44 - 00296648 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2016-05-20 23:42 - 2016-05-20 23:42 - 00023240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmafd.sys
2016-05-20 23:41 - 2016-05-20 23:41 - 27015680 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2016-05-20 23:35 - 2016-05-20 23:35 - 48616960 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2016-05-20 23:35 - 2016-05-20 23:35 - 00252928 _____ C:\WINDOWS\system32\clinfo.exe
2016-05-20 23:34 - 2016-05-20 23:34 - 38098432 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2016-05-20 23:33 - 2016-05-20 23:33 - 00096256 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-05-20 23:33 - 2016-05-20 23:33 - 00087040 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-05-20 23:32 - 2016-05-20 23:32 - 27433472 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2016-05-20 23:31 - 2016-05-20 23:31 - 21600768 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2016-05-20 23:30 - 2016-05-20 23:30 - 08699392 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2016-05-20 23:26 - 2016-05-20 23:26 - 06951424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2016-05-20 23:16 - 2016-05-20 23:16 - 00103424 _____ (Advanced Micro Devices) C:\WINDOWS\system32\DelayAPO.dll
2016-05-20 23:16 - 2016-05-20 23:16 - 00101376 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWT6.sys
2016-05-20 23:15 - 2016-05-20 23:15 - 00184320 _____ C:\WINDOWS\system32\amdhdl64.dll
2016-05-20 23:15 - 2016-05-20 23:15 - 00164352 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2016-05-20 23:14 - 2016-05-20 23:14 - 30188032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 00730112 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2016-05-20 23:13 - 2016-05-20 23:13 - 00605696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 06965248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 00865280 _____ (AMD) C:\WINDOWS\system32\coinst_16.20.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 00142336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2016-05-20 23:12 - 2016-05-20 23:12 - 00117760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 05643776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00716128 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2016-05-20 23:09 - 2016-05-20 23:09 - 00716128 _____ C:\WINDOWS\system32\atiapfxx.blb
2016-05-20 23:09 - 2016-05-20 23:09 - 00385536 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2016-05-20 23:09 - 2016-05-20 23:09 - 00062464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00055808 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00052224 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2016-05-20 23:09 - 2016-05-20 23:09 - 00049152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2016-05-20 23:08 - 2016-05-20 23:08 - 15711744 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2016-05-20 23:08 - 2016-05-20 23:08 - 14302720 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 24836096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00092160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2016-05-20 23:06 - 2016-05-20 23:06 - 00038400 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2016-05-20 23:05 - 2016-05-20 23:05 - 08850432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2016-05-20 23:04 - 2016-05-20 23:04 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2016-05-20 23:03 - 2016-05-20 23:03 - 00204952 _____ C:\WINDOWS\SysWOW64\ativvsvl.dat
2016-05-20 23:03 - 2016-05-20 23:03 - 00204952 _____ C:\WINDOWS\system32\ativvsvl.dat
2016-05-20 23:03 - 2016-05-20 23:03 - 00157144 _____ C:\WINDOWS\SysWOW64\ativvsva.dat
2016-05-20 23:03 - 2016-05-20 23:03 - 00157144 _____ C:\WINDOWS\system32\ativvsva.dat
2016-05-20 23:02 - 2016-05-20 23:02 - 07261184 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00588288 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00306688 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00274432 _____ C:\WINDOWS\system32\dgtrayicon.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00258560 _____ C:\WINDOWS\system32\GameManager64.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00230912 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00223744 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00212480 _____ C:\WINDOWS\system32\atieah64.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00202752 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2016-05-20 23:02 - 2016-05-20 23:02 - 00190464 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2016-05-20 23:02 - 2016-05-20 23:02 - 00093696 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2016-05-20 23:01 - 2016-05-20 23:01 - 00270336 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2016-05-20 22:59 - 2016-05-20 22:59 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2016-05-20 22:57 - 2016-05-20 22:57 - 01304576 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00973824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00973824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00498176 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2016-05-20 22:57 - 2016-05-20 22:57 - 00185344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00159232 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00119808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00106496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00101376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2016-05-20 22:57 - 2016-05-20 22:57 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2016-05-20 22:56 - 2016-05-20 22:56 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2016-05-20 22:55 - 2016-05-20 22:55 - 00251392 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2016-05-20 22:55 - 2016-05-20 22:55 - 00217088 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2016-05-20 17:21 - 2016-05-20 17:21 - 02412544 _____ C:\WINDOWS\system32\amdacpusl.pdb
2016-05-20 17:12 - 2016-05-20 17:12 - 00364544 _____ (Advanced Micro Devices) C:\WINDOWS\system32\amdacpusl.dll
2016-05-20 17:12 - 2016-05-20 17:12 - 00306176 _____ C:\WINDOWS\system32\amdacpusl.pdb.pub
2016-05-20 17:12 - 2016-05-20 17:12 - 00248832 _____ (Advanced Micro Devices) C:\WINDOWS\SysWOW64\amdacpusl.dll
2016-05-16 16:06 - 2016-05-16 16:06 - 00000000 ____D C:\Users\Chris\AppData\Local\id Software
2016-05-16 14:20 - 2016-05-16 14:20 - 00000202 _____ C:\Users\Chris\Desktop\DOOM.url

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-13 15:41 - 2016-01-05 12:35 - 00001333 _____ C:\Users\Chris\Desktop\Neues Textdokument (3).txt
2016-06-13 15:41 - 2015-05-07 20:47 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Skype
2016-06-13 15:32 - 2015-05-07 03:42 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E8BA4F0E-3CDA-44EF-ACE5-3214240AAC32}
2016-06-13 15:31 - 2015-05-07 03:38 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-13 15:29 - 2015-11-16 20:48 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Raptr
2016-06-13 15:29 - 2015-05-07 03:38 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-12 19:42 - 2015-05-07 03:31 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-06-12 14:29 - 2015-11-12 20:59 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-06-12 14:29 - 2015-11-12 20:50 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-06-12 14:29 - 2015-05-07 22:46 - 00000000 ____D C:\ProgramData\Origin
2016-06-12 14:23 - 2015-11-13 11:21 - 00000408 _____ C:\WINDOWS\Tasks\update-S-1-5-21-3403763180-2136732275-2472123865-1001.job
2016-06-12 14:16 - 2015-11-12 20:50 - 00001102 _____ C:\Users\Chris\Desktop\MSI Afterburner.lnk
2016-06-12 13:47 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-12 11:25 - 2015-11-13 11:21 - 00000408 _____ C:\WINDOWS\Tasks\update-sys.job
2016-06-11 14:53 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-11 14:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\ModemLogs
2016-06-11 14:50 - 2015-10-25 11:44 - 00000000 ____D C:\Users\Chris\AppData\Roaming\uTorrent
2016-06-11 14:48 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-10 13:55 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-09 16:32 - 2015-05-07 03:38 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-09 16:32 - 2015-05-07 03:38 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-09 16:08 - 2015-05-07 21:05 - 00000000 ____D C:\Program Files\Rockstar Games
2016-06-09 16:08 - 2015-05-07 21:05 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-06-08 14:58 - 2015-12-19 12:37 - 00001029 _____ C:\Users\Public\Desktop\STAR WARS Battlefront.lnk
2016-06-07 19:21 - 2015-06-17 18:03 - 00000000 ____D C:\Users\Chris\AppData\Local\Battle.net
2016-06-06 18:21 - 2015-12-26 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-06-06 18:11 - 2015-11-16 20:07 - 00189112 _____ (Power Admin LLC) C:\WINDOWS\PAExec.exe
2016-06-06 17:12 - 2015-11-16 20:46 - 00000000 ____D C:\AMD
2016-06-06 17:03 - 2015-11-16 18:09 - 01802588 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-06 17:03 - 2015-10-30 20:35 - 00776562 _____ C:\WINDOWS\system32\perfh007.dat
2016-06-06 17:03 - 2015-10-30 20:35 - 00155874 _____ C:\WINDOWS\system32\perfc007.dat
2016-06-06 15:45 - 2015-05-23 15:04 - 00000000 ____D C:\Users\Chris\Documents\The Witcher 3
2016-06-04 15:01 - 2016-04-04 19:42 - 00000000 ____D C:\Users\Chris\Downloads\Arisen Flame
2016-06-04 11:22 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-31 19:32 - 2015-05-08 18:12 - 00000000 ____D C:\Users\Chris\AppData\Roaming\TS3Client
2016-05-28 10:40 - 2015-10-30 09:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-05-28 10:38 - 2015-10-30 20:47 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-28 10:38 - 2015-10-30 09:24 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-05-28 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-05-28 10:38 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-05-28 10:38 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-05-28 10:20 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-05-28 10:07 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\appcompat
2016-05-28 10:06 - 2015-11-16 18:41 - 00002387 _____ C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-05-28 10:06 - 2015-11-16 18:41 - 00000000 ___RD C:\Users\Chris\OneDrive
2016-05-28 10:03 - 2015-10-30 11:25 - 00000000 ___RD C:\Users\Chris\Podcasts
2016-05-28 10:03 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-05-28 10:03 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-05-28 10:03 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-05-28 10:03 - 2015-05-07 03:22 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-05-28 10:02 - 2015-11-16 17:32 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2016-05-28 10:02 - 2015-11-16 17:32 - 00009528 _____ C:\WINDOWS\diagerr.xml
2016-05-28 10:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-05-28 10:02 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Registration
2016-05-28 10:02 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows NT
2016-05-28 10:00 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-05-28 09:59 - 2016-03-29 17:02 - 00002388 _____ C:\WINDOWS\System32\Tasks\{EE145AF0-3F9A-4E93-A4EB-54544C3BBDF7}
2016-05-28 09:59 - 2015-11-17 23:01 - 00002330 _____ C:\WINDOWS\System32\Tasks\AsrAPPShop
2016-05-28 09:59 - 2015-11-16 18:09 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-05-28 09:59 - 2015-11-13 11:21 - 00002844 _____ C:\WINDOWS\System32\Tasks\update-S-1-5-21-3403763180-2136732275-2472123865-1001
2016-05-28 09:59 - 2015-11-13 11:21 - 00002674 _____ C:\WINDOWS\System32\Tasks\update-sys
2016-05-28 09:59 - 2015-05-07 03:38 - 00003650 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-05-28 09:59 - 2015-05-07 03:38 - 00003426 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-05-28 09:59 - 2015-05-07 03:32 - 00002812 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3403763180-2136732275-2472123865-1001
2016-05-28 09:59 - 2015-05-07 03:23 - 00002380 _____ C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
2016-05-28 09:59 - 2015-05-07 03:17 - 00002320 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3403763180-2136732275-2472123865-500
2016-05-28 09:59 - 2014-10-15 15:50 - 00002438 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask
2016-05-28 09:58 - 2015-11-18 01:05 - 01799166 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-05-28 09:58 - 2015-10-30 09:24 - 00000000 __RSD C:\WINDOWS\Media
2016-05-28 09:58 - 2015-10-30 09:24 - 00000000 __RHD C:\Users\Public\Libraries
2016-05-28 09:53 - 2016-05-05 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2016-05-28 09:53 - 2016-04-19 08:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2016-05-28 09:53 - 2016-03-30 16:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2016-05-28 09:53 - 2015-12-10 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plantronics
2016-05-28 09:53 - 2015-11-21 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2016-05-28 09:53 - 2015-11-18 00:57 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-05-28 09:53 - 2015-11-17 17:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2016-05-28 09:53 - 2015-11-16 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-05-28 09:53 - 2015-11-16 18:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-05-28 09:53 - 2015-11-12 20:59 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2016-05-28 09:53 - 2015-11-12 20:50 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2016-05-28 09:53 - 2015-10-30 08:28 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2016-05-28 09:53 - 2015-10-24 17:14 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2016-05-28 09:53 - 2015-09-11 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Bad Company 2
2016-05-28 09:53 - 2015-09-06 11:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aftermath
2016-05-28 09:53 - 2015-08-05 17:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2016-05-28 09:53 - 2015-06-17 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-05-28 09:53 - 2015-06-04 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2016-05-28 09:53 - 2015-05-10 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
2016-05-28 09:53 - 2015-05-10 13:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-05-28 09:53 - 2015-05-09 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerupTuner
2016-05-28 09:53 - 2015-05-08 18:12 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-05-28 09:53 - 2015-05-07 19:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-05-28 09:53 - 2015-05-07 03:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-05-28 09:53 - 2015-05-07 03:31 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2016-05-28 09:53 - 2015-05-07 03:31 - 00000000 ____D C:\WINDOWS\system32\vbox
2016-05-28 09:53 - 2015-05-07 03:31 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-05-28 09:53 - 2015-05-07 03:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-05-28 09:53 - 2015-05-07 03:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-05-28 09:52 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-05-28 09:51 - 2015-10-30 20:35 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-05-28 09:51 - 2015-10-30 20:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-05-28 09:51 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-05-28 09:51 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2016-05-28 09:51 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2016-05-28 09:51 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-05-28 09:51 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2016-05-28 09:51 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2016-05-28 09:51 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2016-05-28 09:51 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-05-28 09:50 - 2015-10-30 20:35 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-05-28 09:50 - 2015-10-30 20:35 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\Configuration
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\spool
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\System
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\InputMethod
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\IME
2016-05-28 09:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Help
2016-05-28 09:50 - 2015-06-20 17:38 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2016-05-28 09:50 - 2014-10-15 15:32 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-05-28 09:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-05-28 09:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-05-28 09:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\ADFS
2016-05-28 09:49 - 2016-04-08 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Raptr
2016-05-28 09:49 - 2016-03-27 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.1
2016-05-28 09:49 - 2016-01-11 19:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-05-28 09:49 - 2015-10-30 11:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zune
2016-05-28 09:49 - 2015-10-30 09:24 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-05-28 09:49 - 2015-10-30 09:24 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-05-28 09:49 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\USOPrivate
2016-05-28 09:49 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-05-28 09:49 - 2015-09-27 10:45 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2016-05-28 09:49 - 2015-09-12 23:57 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Project Reality
2016-05-28 09:49 - 2015-05-07 03:25 - 00000000 ____D C:\Users\Chris\AppData\Local\Packages
2016-05-28 09:47 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-05-28 09:41 - 2015-10-30 20:58 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-05-22 10:16 - 2015-10-02 19:59 - 00000000 ____D C:\Users\Chris\Documents\NCSOFT
2016-05-22 10:16 - 2015-10-02 18:02 - 00000000 ____D C:\Users\Chris\AppData\Local\NCSOFT
2016-05-22 10:15 - 2016-02-24 19:47 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com
2016-05-22 10:14 - 2015-11-13 11:21 - 00000059 _____ C:\Users\Chris\AppData\Local\UserProducts.xml
2016-05-22 10:14 - 2015-11-13 11:21 - 00000000 ____D C:\Program Files (x86)\Skillbrains
2016-05-21 16:50 - 2015-11-21 15:11 - 00000650 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2016-05-20 16:32 - 2016-02-09 19:29 - 00334584 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-01-05 17:41 - 2016-01-05 17:41 - 0000098 _____ () C:\Users\Chris\AppData\Roaming\LauncherSettings_live.cfg
2015-11-11 14:10 - 2015-12-23 11:13 - 0007602 _____ () C:\Users\Chris\AppData\Local\Resmon.ResmonCfg
2015-11-13 11:21 - 2015-11-13 11:21 - 0000003 _____ () C:\Users\Chris\AppData\Local\updater.log
2015-11-13 11:21 - 2016-05-22 10:14 - 0000059 _____ () C:\Users\Chris\AppData\Local\UserProducts.xml
2015-09-12 23:58 - 2015-09-12 23:58 - 0000000 ___SH () C:\ProgramData\.rdata
2015-10-25 15:11 - 2015-10-25 15:11 - 0000121 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc

Einige Dateien in TEMP:
====================
C:\Users\Chris\AppData\Local\Temp\libeay32.dll
C:\Users\Chris\AppData\Local\Temp\msvcr120.dll
C:\Users\Chris\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-06-09 17:12

==================== Ende von FRST.txt ============================
Geändert von Exides (13.06.2016 um 15:27 Uhr)

Alt 13.06.2016, 15:05   #5
Exides
 
Win 10 Performance Probleme durch Virus? - Standard

Win 10 Performance Probleme durch Virus?


Addition.txt
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:12-06-2016 01
durchgeführt von ***** (2016-06-13 15:43:16)
Gestartet von C:\Users\****\Downloads
Windows 10 Pro Version 1511 (X64) (2016-05-28 08:02:58)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3403763180-2136732275-2472123865-500 - Administrator - Disabled)
**** (S-1-5-21-3403763180-2136732275-2472123865-1001 - Administrator - Enabled) => C:\Users\****
DefaultAccount (S-1-5-21-3403763180-2136732275-2472123865-503 - Limited - Disabled)
Gast (S-1-5-21-3403763180-2136732275-2472123865-501 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Spybot - Search and Destroy (Enabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

µTorrent (HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
ACP Application (Version: 2016.0520.1712.17 - Advanced Micro Devices, Inc.) Hidden
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.3.181.14 - Adobe Systems Incorporated)
Aftermath version 1.0 (HKLM-x32\...\{024D0ADC-6846-4B7A-B12F-D571DF826068}}_is1) (Version: 1.0 - Free Reign Entertainment)
Age of Wonders III (HKLM-x32\...\Steam App 226840) (Version:  - Triumph Studios)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
ARK: Survival Evolved (HKLM\...\Steam App 346110) (Version:  - Studio Wildcard)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
Catalyst Control Center Next Localization BR (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0520.1721.29404 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform)
Cheat Engine 6.5.1 (HKLM-x32\...\Cheat Engine 6.5.1_is1) (Version:  - Cheat Engine)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)
Company of Heroes 2 (HKLM-x32\...\Steam App 231430) (Version:  - Relic Entertainment)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
DARK SOULS III (HKLM\...\Steam App 374320) (Version:  - FromSoftware, Inc.)
DOOM (HKLM\...\Steam App 379720) (Version:  - id Software)
Epic Games Launcher (HKLM-x32\...\{4620A9CA-A0D7-4F15-BA89-4545B5372345}) (Version: 1.1.60.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Fallout 4 (HKLM-x32\...\Steam App 377160) (Version:  - Bethesda Game Studios)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Free YouTube to MP3 Converter version 3.12.59.525 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.59.525 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.84 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version:  - Rockstar North)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version:  - Reto-Moto)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Heroes of the West (HKLM\...\Steam App 440090) (Version:  - Tripwire Interactive)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HWiNFO64 Version 5.06 (HKLM\...\HWiNFO64_is1) (Version: 5.06 - Martin Malík - REALiX)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.8 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version:  - Tripwire Interactive)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version:  - )
Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Mordheim: City of the Damned (HKLM-x32\...\Steam App 276810) (Version:  - Rogue Factor)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
Need for Speed™ (HKLM-x32\...\{F8643E83-A868-4EE8-A0B9-389386830453}) (Version: 1.1.0.0 - Electronic Arts)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.61.23 - Black Tree Gaming)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Plantronics® GameCom 780/788 Software for Dolby® Headphone (HKLM-x32\...\{EB3C9064-9140-4279-9E51-965119402151}) (Version: 3.20.0001 - Plantronics)
PowerupTuner (HKLM\...\{29539FB1-BDBE-474C-8484-E69223856A42}) (Version: 0.2.3.0123 - PowerColor)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.0-r112326-release - Raptr, Inc)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7560 - Realtek Semiconductor Corp.)
Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version:  - Tripwire Interactive)
RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.5 - Rockstar Games)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.5.43 - Safer-Networking Ltd.)
Squad (HKLM-x32\...\Steam App 393380) (Version:  - Offworld Industries)
STAR WARS™ Battlefront™ (HKLM-x32\...\{E402D891-4E45-4ce9-B41F-DD35864EF170}) (Version: 1.0.5.13082 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Mean Greens - Plastic Warfare (HKLM-x32\...\Steam App 360940) (Version:  - Virtual Basement LLC)
The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version:  - CD PROJEKT RED)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version:  - Ubisoft)
Tom Clancy's The Division (HKLM\...\Steam App 365590) (Version:  - Massive Entertainment)
Total War™: WARHAMMER® (HKLM\...\Steam App 364360) (Version:  - Creative Assembly)
Tree of Life (HKLM-x32\...\Steam App 361800) (Version:  - oddonegames)
Uplay (HKLM-x32\...\Uplay) (Version: 10.0 - Ubisoft)
Verdun (HKLM-x32\...\Steam App 242860) (Version:  - M2H)
Warhammer: End Times - Vermintide (HKLM-x32\...\Steam App 235540) (Version:  - Fatshark)
WinRAR 5.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Chris\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {04317603-1560-44EF-AF57-B83B8C653233} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {07AE20E1-2B2C-477B-AA72-4CF04C5FAAB6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2015-06-16] (Safer-Networking Ltd.)
Task: {0C1E8265-BFED-4186-8ACE-417AB5DB456E} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2014-10-10] (@ByELDI)
Task: {0C50B1CB-6C05-49DB-8071-B68E77FB4ABD} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2015-06-16] (Safer-Networking Ltd.)
Task: {0CE5C2BB-A97E-4361-BBA7-39B136A0FFF5} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-05-20] (Advanced Micro Devices, Inc.)
Task: {1379340D-8641-4E21-A9C0-66682BE4F387} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {239465F7-DFEE-4132-9B4E-79612991B2E7} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {245FA2CB-6E46-4DDE-B73C-8A8882E626B9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-05-13] (Piriform Ltd)
Task: {29A8146B-603F-4923-831E-8F5154347011} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {4A623C47-A47F-45DF-9A44-325EAE9E0674} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {5316AD57-CFF4-4B22-B1D3-D77EBB8F00DA} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {5DB09E9E-AEAF-4828-9382-DE3EC4906D1E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {608B34DF-06A0-4E0A-A633-CD7CA5F53128} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {6803DD15-E993-4699-B40E-D301A3D47C8E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {773DCE4C-CC9B-4265-9AA0-555AE641C1BF} - System32\Tasks\AsrAPPShop => C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe
Task: {7FE4EDFA-5C93-4461-9E35-FDFF12B4B043} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {83342CF1-2E6F-49DF-B3E7-721309DC518D} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-11] (Microsoft Corporation)
Task: {8C3D9E9F-6633-40F4-8F5F-2784083F0735} - System32\Tasks\{EE145AF0-3F9A-4E93-A4EB-54544C3BBDF7} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=heroes --displayname="Heroes of the Storm"
Task: {B56184D6-6D22-49BB-B1EE-23CE8A0CA54C} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2015-06-16] (Safer-Networking Ltd.)
Task: {BB8D7234-0BCB-452A-8785-2CC37C39B8B3} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {C014CC6F-F8E8-4CF9-85B9-39B378D7BBD4} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-05] (AVAST Software)
Task: {D7037DD0-774C-41A1-8739-6416D0F02BBF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {D7DF522E-2502-4F7F-916A-0AF4DB8BB718} - System32\Tasks\update-S-1-5-21-3403763180-2136732275-2472123865-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {EF29EA52-EE1D-4E29-ADC8-7DF59626BFA2} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {F2528A3F-5A99-4EC6-8FC9-07311B943291} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {FFB0A195-5F20-4173-AB32-8CB6F94602B8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-3403763180-2136732275-2472123865-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-05-07 18:37 - 2015-09-12 23:41 - 00076152 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-28 10:37 - 2016-05-28 10:37 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-12-10 17:52 - 2015-12-10 17:54 - 00817440 _____ () C:\Program Files\Plantronics\GameCom 780 & 788\GameCom780.exe
2015-06-25 17:34 - 2015-06-25 17:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 17:37 - 2015-06-25 17:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 17:35 - 2015-06-25 17:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2015-06-25 17:38 - 2015-06-25 17:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 16:53 - 2015-06-25 16:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 16:51 - 2015-06-25 16:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-04-19 08:46 - 2016-04-19 08:46 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-12-05 16:11 - 2015-12-05 16:11 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-05 16:11 - 2015-12-05 16:11 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-06-12 02:01 - 2016-06-12 02:01 - 02932736 _____ () C:\Program Files\AVAST Software\Avast\defs\16061101\algo.dll
2016-04-14 15:23 - 2016-04-14 15:23 - 00510368 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-06-13 15:30 - 2016-06-13 15:30 - 02932736 _____ () C:\Program Files\AVAST Software\Avast\defs\16061300\algo.dll
2015-11-16 18:41 - 2014-05-13 13:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-11-16 18:41 - 2014-05-13 13:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-11-16 18:41 - 2014-05-13 13:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-11-16 18:41 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-07-11 00:37 - 2015-07-11 00:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-12-10 17:52 - 2014-01-21 15:41 - 00149792 ____N () C:\Program Files\Plantronics\GameCom 780 & 788\VmixPLGC.dll
2015-12-05 16:11 - 2015-12-05 16:11 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-06-09 16:32 - 2016-06-04 03:56 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.84\libglesv2.dll
2016-06-09 16:32 - 2016-06-04 03:56 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.84\libegl.dll
2016-04-19 08:46 - 2016-04-19 08:46 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 08:46 - 2016-04-19 08:46 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\.rdata:X [526]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\sony.com -> sony.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\123simsen.com -> www.123simsen.com

Da befinden sich 7871 mehr Seiten.


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-10-30 09:24 - 2015-10-30 09:21 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Chris\Desktop\64728_2_1.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run: => "Zune Launcher"
HKLM\...\StartupApproved\Run32: => "Lightshot"
HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3403763180-2136732275-2472123865-1001\...\StartupApproved\Run: => "OneDrive"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{152D7799-DB79-499F-8304-A5AEF2BA2FCA}] => (Allow) G:\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{7A13A535-7F30-4E65-945F-4D1357F1300C}] => (Allow) G:\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [UDP Query User{D8291A34-5C0F-4AC0-884D-79919DBC4212}G:\steam\steamapps\common\total war warhammer\warhammer.exe] => (Allow) G:\steam\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [TCP Query User{67509851-B437-4693-8D60-8580C7D67C2C}G:\steam\steamapps\common\total war warhammer\warhammer.exe] => (Allow) G:\steam\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [{81944F4E-D196-496A-B8A3-90A86739409F}] => (Allow) G:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{683C4089-EFAB-4DEF-B789-8A68B78A447A}] => (Allow) G:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{F857DC78-6633-4F09-8460-13D46BD44A03}] => (Allow) G:\Steam\steamapps\common\DOOM\DOOMx64.exe
FirewallRules: [{2D622CA6-6C0C-426A-AC5D-B850959BBA88}] => (Allow) G:\Steam\steamapps\common\DOOM\DOOMx64.exe
FirewallRules: [{7A4F2F41-6E74-4198-B816-5E95BE6FFD6B}] => (Allow) G:\Steam\steamapps\common\TreeOfLife\client\client.exe
FirewallRules: [{10A8E677-F2C2-4B04-99F5-5166ED884869}] => (Allow) G:\Steam\steamapps\common\TreeOfLife\client\client.exe
FirewallRules: [{3FB882DE-4080-4C25-8A6D-6572DCDDABB8}] => (Allow) G:\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{BE5D607C-9798-4453-96C4-D8D8EFBC25BA}] => (Allow) G:\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [UDP Query User{21F26B4D-1FF7-4FC0-90BF-E340B9067E0E}G:\paragon\oriongame\binaries\win64\orionclient-win64-shipping.exe] => (Allow) G:\paragon\oriongame\binaries\win64\orionclient-win64-shipping.exe
FirewallRules: [TCP Query User{4D312836-42E3-4187-8219-00DC1484450B}G:\paragon\oriongame\binaries\win64\orionclient-win64-shipping.exe] => (Allow) G:\paragon\oriongame\binaries\win64\orionclient-win64-shipping.exe
FirewallRules: [UDP Query User{2A2CF920-C4AB-4CC2-B43C-3036BDDCF9A3}G:\overwatch\overwatch.exe] => (Allow) G:\overwatch\overwatch.exe
FirewallRules: [TCP Query User{A1460A7A-EAC2-45F5-A8F0-EE5CCD1D50DD}G:\overwatch\overwatch.exe] => (Allow) G:\overwatch\overwatch.exe
FirewallRules: [{56584A7C-ADE4-44F8-B667-E42B71EAF91B}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{CBB274A4-B3C6-4917-B5AE-3C4AFC949DDB}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{910B74DF-B735-4DB6-BD2E-2E0F27B25298}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{5C8E441F-961A-48F8-B9E8-16C28340BEB7}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{00B77589-4300-4217-8281-BF7AB54CE8C6}] => (Allow) G:\Program Files (x86)\Origin Games\Need for Speed\NFS16_trial.exe
FirewallRules: [{3CC433CF-DDD7-4217-9CE5-F8A0CA48DDAB}] => (Allow) G:\Program Files (x86)\Origin Games\Need for Speed\NFS16_trial.exe
FirewallRules: [{7E5D57E0-3E5B-467F-A1A1-E145D2F08919}] => (Allow) G:\Program Files (x86)\Origin Games\Need for Speed\NFS16.exe
FirewallRules: [{20663C82-F400-4F7E-8460-C0A114CCA106}] => (Allow) G:\Program Files (x86)\Origin Games\Need for Speed\NFS16.exe
FirewallRules: [UDP Query User{E057182D-DD9F-4EFD-9BB0-D7AF4E75A1EA}G:\program files (x86)\origin games\battlefield bad company 2\bfbc2game.exe] => (Allow) G:\program files (x86)\origin games\battlefield bad company 2\bfbc2game.exe
FirewallRules: [TCP Query User{3E1856DF-4CB6-469F-98C9-2E341527907B}G:\program files (x86)\origin games\battlefield bad company 2\bfbc2game.exe] => (Allow) G:\program files (x86)\origin games\battlefield bad company 2\bfbc2game.exe
FirewallRules: [UDP Query User{D2D0987D-28A2-4769-B3BE-1FDE5EA97005}G:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) G:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{B1A2E07E-674D-483D-BEB4-DB9FA8C7333F}G:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) G:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{BB090759-78F1-4FAD-A89F-2FEE2C7C7436}G:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) G:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{856947B8-8D7C-4E21-A713-3E8C8A06708B}G:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) G:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{10693EF5-26E6-443C-AC27-0543B2DBCDCD}G:\hearthstone\hearthstone.exe] => (Allow) G:\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{B595FEB2-B3A3-40E9-BF31-DB29213C9C1A}G:\hearthstone\hearthstone.exe] => (Allow) G:\hearthstone\hearthstone.exe
FirewallRules: [{AF4E8055-3005-4F55-A785-75C7862878C9}] => (Allow) G:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{C7029000-F533-4F1D-92A4-6527C601932C}] => (Allow) G:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{4687FE85-7A30-45F3-9FD7-276BB1C39372}] => (Allow) G:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win32\CDW.exe
FirewallRules: [{83E7F360-86E7-44A1-A849-D3B02C867B7E}] => (Allow) G:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win32\CDW.exe
FirewallRules: [{4A91EB44-461C-4C77-B7E6-7196BACF3559}] => (Allow) G:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{3B222AD0-A045-473D-AA44-7FC6263B96EB}] => (Allow) G:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{3E633A55-1F87-4D0D-8529-AFA84E88547E}] => (Allow) G:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win64\CDW.exe
FirewallRules: [{8A79E2B5-6CEC-4101-BC28-18FDED00F4CF}] => (Allow) G:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win64\CDW.exe
FirewallRules: [{16E69F2B-2A3D-4A9F-883F-781856C8FBBD}] => (Allow) G:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{25163B4C-E0F9-46C0-95E8-673AEA30DE6B}] => (Allow) G:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [UDP Query User{762E6ED2-D9D3-4C05-A2BD-8F13B3082299}G:\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe] => (Allow) G:\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe
FirewallRules: [TCP Query User{617ED72B-C578-43AC-8CB1-EF0D4B6F3B17}G:\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe] => (Allow) G:\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe
FirewallRules: [{FB8AF2EA-6FB7-47F6-83C1-06913E1D355A}] => (Allow) G:\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\HotwLauncher.exe
FirewallRules: [{841AED13-1D31-4291-AC83-24213C109D5C}] => (Allow) G:\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\HotwLauncher.exe
FirewallRules: [{9B13D9EC-133C-4C3E-B079-B6173A1B2C2E}] => (Allow) G:\Program Files (x86)\Origin Games\STAR WARS Battlefront\starwarsbattlefront.exe
FirewallRules: [{44C4D03D-0819-4FCC-916E-6AFA3F9B6D2F}] => (Allow) G:\Program Files (x86)\Origin Games\STAR WARS Battlefront\starwarsbattlefront.exe
FirewallRules: [{8860822B-1468-4AD6-9CA4-23615515C6BF}] => (Allow) G:\Steam\steamapps\common\Tom Clancy's The Division\thedivision.exe
FirewallRules: [{A6820F44-B50B-4183-A93D-08D90F4EE10E}] => (Allow) G:\Steam\steamapps\common\Tom Clancy's The Division\thedivision.exe
FirewallRules: [{CD2247C2-0BED-459C-9E87-27D576D30955}] => (Allow) G:\Steam\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{9F478A7C-CB9B-40BF-96E1-33F901CB65E9}] => (Allow) G:\Steam\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{1C625161-50AF-4128-AE30-2306A5553B9F}] => (Allow) G:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{4E2AEDF9-36F8-44A9-9118-C3B0EBCC4673}] => (Allow) G:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{997B9826-C4E3-4EC8-873E-33C4D646788D}] => (Allow) G:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{01AAD91F-C36B-41C1-8B56-F96623A2C753}] => (Allow) G:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [UDP Query User{62F0266A-A8D5-4823-B481-0AFD197CACF8}G:\aftermath\aftermath.exe] => (Allow) G:\aftermath\aftermath.exe
FirewallRules: [TCP Query User{01D84ADC-C922-413E-990A-C2D0364ECFEA}G:\aftermath\aftermath.exe] => (Allow) G:\aftermath\aftermath.exe
FirewallRules: [UDP Query User{A9BEABFD-12B7-4FFB-8FFE-4E529AD4AAD1}G:\aftermath\amlauncher.exe.new.exe] => (Allow) G:\aftermath\amlauncher.exe.new.exe
FirewallRules: [TCP Query User{68948F74-A1D5-46A0-8173-78C3A0619EBE}G:\aftermath\amlauncher.exe.new.exe] => (Allow) G:\aftermath\amlauncher.exe.new.exe
FirewallRules: [UDP Query User{39C05E6C-5B71-4B27-8B19-A804B2E14585}G:\aftermath\amlauncher.exe] => (Allow) G:\aftermath\amlauncher.exe
FirewallRules: [TCP Query User{08D7EB14-D647-4577-B2A1-0AECA65B92DA}G:\aftermath\amlauncher.exe] => (Allow) G:\aftermath\amlauncher.exe
FirewallRules: [{28FC8493-8F6B-42FD-8598-3D69B21F3592}] => (Allow) G:\Steam\steamapps\common\mordheim\mordheim.exe
FirewallRules: [{409C9AE9-E806-40FF-ADED-3D3D3212C2A9}] => (Allow) G:\Steam\steamapps\common\mordheim\mordheim.exe
FirewallRules: [{0624509C-07C6-4277-BBC2-34C813966008}] => (Allow) G:\Steam\steamapps\common\Squad\squad_launcher.exe
FirewallRules: [{61807781-6A85-4F94-B05B-CF41D73D1A5D}] => (Allow) G:\Steam\steamapps\common\Squad\squad_launcher.exe
FirewallRules: [{471A037C-4B70-453E-A48C-E5E62B88B867}] => (Allow) G:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{1D23CA6F-F74E-4179-941B-14E6F6B4055A}] => (Allow) G:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [UDP Query User{26E28BCD-CDCD-41DC-AB2A-FA127C9DBAAC}G:\steam\steamapps\common\aow3\aow3.exe] => (Allow) G:\steam\steamapps\common\aow3\aow3.exe
FirewallRules: [TCP Query User{453EA378-9CF4-40AB-A76A-510116A6080D}G:\steam\steamapps\common\aow3\aow3.exe] => (Allow) G:\steam\steamapps\common\aow3\aow3.exe
FirewallRules: [{A1FE4F79-3EAB-497F-A15F-35D9FC07C931}] => (Allow) G:\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{5017B5A2-F60D-41F4-9130-2A898E4338DD}] => (Allow) G:\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{E0A7EB3B-EF9C-4532-9093-3A9324FB514D}] => (Allow) G:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{0B8372A9-3EE0-468E-A44D-4BBEA117A4B7}] => (Allow) G:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{D8142E05-4D79-4ABD-AB6F-CDA02CB7EBC7}] => (Allow) G:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{2B517B72-9587-47B1-A525-ABC888AE4FA2}] => (Allow) G:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [UDP Query User{1CB6FF68-3B66-4590-A58B-83697F9D19CC}G:\steam\steamapps\common\the mean greens - plastic warfare\themeangreens\binaries\win64\themeangreens-win64-shipping.exe] => (Allow) G:\steam\steamapps\common\the mean greens - plastic warfare\themeangreens\binaries\win64\themeangreens-win64-shipping.exe
FirewallRules: [TCP Query User{97469CCD-661B-4493-B856-774D68699533}G:\steam\steamapps\common\the mean greens - plastic warfare\themeangreens\binaries\win64\themeangreens-win64-shipping.exe] => (Allow) G:\steam\steamapps\common\the mean greens - plastic warfare\themeangreens\binaries\win64\themeangreens-win64-shipping.exe
FirewallRules: [UDP Query User{9DA92ACA-8E34-4AE8-950E-C8619A6719AE}G:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) G:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{ACFFF333-4DBB-44F3-97CD-512451B96F30}G:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) G:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{A7093AEB-CF7C-4FFF-831C-A2B7C605E420}] => (Allow) G:\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{4CC55BC2-A088-4407-8907-19AAD165B9E9}] => (Allow) G:\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{58B4E0AD-4558-48C0-B6E1-B635B99332AC}] => (Allow) G:\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{6299269D-C4F5-4C06-B273-9802665A8859}] => (Allow) G:\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [TCP Query User{76D19727-7E04-46C6-A760-93A60750A0C9}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{863C9410-C0AE-402D-86BF-3C3CE6D362CE}C:\users\chris\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\chris\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{9DE92059-ED5E-49FD-920B-D80CC8BD4F8E}C:\users\chris\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\chris\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{B7045820-E9E9-4CFF-A015-7E717DA38D96}] => (Allow) G:\Steam\steamapps\common\Squad\Squad.exe
FirewallRules: [{E01ABD34-8E8D-41F4-8DE1-57112237B690}] => (Allow) G:\Steam\steamapps\common\Squad\Squad.exe
FirewallRules: [UDP Query User{F730D0B5-924B-4463-A02C-4DDCB2BAA502}G:\steam\steamapps\common\squad\squad\binaries\win64\squad.exe] => (Allow) G:\steam\steamapps\common\squad\squad\binaries\win64\squad.exe
FirewallRules: [TCP Query User{8FB4A23B-47F8-4876-B1C3-D41161304154}G:\steam\steamapps\common\squad\squad\binaries\win64\squad.exe] => (Allow) G:\steam\steamapps\common\squad\squad\binaries\win64\squad.exe
FirewallRules: [UDP Query User{E7003252-E70D-4827-B805-349551F74445}G:\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) G:\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe
FirewallRules: [TCP Query User{8E6209AF-E90D-4AA0-B841-3987C952D5B6}G:\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) G:\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe
FirewallRules: [{4633F966-D191-413A-9363-A506D4D0A6C0}] => (Allow) G:\Steam\bin\steamwebhelper.exe
FirewallRules: [{97FD0A1F-EDBE-4087-8A73-77127FDA1617}] => (Allow) G:\Steam\bin\steamwebhelper.exe
FirewallRules: [{4AF0ED45-F21B-44EE-950C-314F000E2A69}] => (Allow) G:\Steam\Steam.exe
FirewallRules: [{385326AF-838F-4B34-A663-884C42F6723C}] => (Allow) G:\Steam\Steam.exe
FirewallRules: [{7320C585-E09B-4D1B-B380-FCBC06D4B3BE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{AD67ABFF-657F-49A8-AAAE-B88256A6066B}] => (Allow) G:\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{D7403F5B-EC6F-4641-AF06-13AFE67F11AB}] => (Allow) G:\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (06/12/2016 09:14:04 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/12/2016 09:13:59 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/12/2016 02:29:59 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/12/2016 02:29:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: NFS16.exe, Version: 1.0.0.0, Zeitstempel: 0x57155d11
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.10586.306, Zeitstempel: 0x571af331
Ausnahmecode: 0x887a0001
Fehleroffset: 0x0000000000071f28
ID des fehlerhaften Prozesses: 0x454
Startzeit der fehlerhaften Anwendung: 0xNFS16.exe0
Pfad der fehlerhaften Anwendung: NFS16.exe1
Pfad des fehlerhaften Moduls: NFS16.exe2
Berichtskennung: NFS16.exe3
Vollständiger Name des fehlerhaften Pakets: NFS16.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: NFS16.exe5

Error: (06/12/2016 02:27:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: NFS16.exe, Version: 1.0.0.0, Zeitstempel: 0x57155d11
Name des fehlerhaften Moduls: RTSSHooks64.dll, Version: 0.0.0.0, Zeitstempel: 0x545f520f
Ausnahmecode: 0xc0000094
Fehleroffset: 0x0000000000012c1e
ID des fehlerhaften Prozesses: 0xdd0
Startzeit der fehlerhaften Anwendung: 0xNFS16.exe0
Pfad der fehlerhaften Anwendung: NFS16.exe1
Pfad des fehlerhaften Moduls: NFS16.exe2
Berichtskennung: NFS16.exe3
Vollständiger Name des fehlerhaften Pakets: NFS16.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: NFS16.exe5

Error: (06/12/2016 01:04:40 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/12/2016 01:04:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe, Version: 10.0.10586.0, Zeitstempel: 0x5632d7ba
Name des fehlerhaften Moduls: ESENT.dll, Version: 10.0.10586.212, Zeitstempel: 0x56fa1686
Ausnahmecode: 0xc0000602
Fehleroffset: 0x000000000022885f
ID des fehlerhaften Prozesses: 0x894
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe0
Pfad der fehlerhaften Anwendung: svchost.exe1
Pfad des fehlerhaften Moduls: svchost.exe2
Berichtskennung: svchost.exe3
Vollständiger Name des fehlerhaften Pakets: svchost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe5

Error: (06/12/2016 01:04:38 PM) (Source: ESENT) (EventID: 908) (User: )
Description: svchost (2196) Der Prozess wird aufgrund eines nicht behebbaren Fehlers beendet: PV: 10.0.10586.0 SV: 10.0.10586.0 GLE: 0 ERR: -1603(fucb.cxx:359): dllentry.cxx(103) (ESENT[10.0.10586.0] RETAIL RTM MBCS)

Error: (06/12/2016 01:04:30 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (06/12/2016 03:12:48 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error


Systemfehler:
=============
Error: (06/12/2016 09:13:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_7be211" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/12/2016 09:13:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _7be211" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/12/2016 09:13:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_7be211" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/12/2016 09:13:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_7be211" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/12/2016 09:13:53 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/12/2016 08:20:30 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/12/2016 07:59:01 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/12/2016 07:54:31 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/12/2016 02:29:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_39671" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/12/2016 02:29:53 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar


CodeIntegrity:
===================================
  Date: 2016-06-13 15:39:37.356
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\SET6565.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-06-13 15:39:37.340
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\SET6565.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-06-13 15:39:37.315
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\SET6565.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-06-12 13:28:21.270
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\SET6565.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-06-12 13:28:21.256
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\SET6565.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-06-12 13:28:21.230
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\SET6565.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-06-04 11:35:20.580
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-04 01:10:56.323
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-112298.dll that did not meet the Store signing level requirements.

  Date: 2016-05-28 10:10:19.797
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-28 09:59:27.993
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 25%
Installierter physikalischer RAM: 8111.11 MB
Verfügbarer physikalischer RAM: 6070.08 MB
Summe virtueller Speicher: 10671.11 MB
Verfügbarer virtueller Speicher: 8228.41 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:99.22 GB) (Free:39.12 GB) NTFS
Drive g: (Games) (Fixed) (Total:831.51 GB) (Free:74.11 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 50ABBEB8)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=99.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=831.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

Geändert von Exides (13.06.2016 um 15:24 Uhr)

Alt 13.06.2016, 15:22   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Win 10 Performance Probleme durch Virus? - Standard

Win 10 Performance Probleme durch Virus?


Zitat:
(@ByELDI) C:\Program Files\KMSpico\Service_KMS.exe
CrackTool.KMSPico, C:\Program Files\KMSpico\KMSELDI.exe
Lesestoff:
Illegale Software: Cracks, Keygens und Co

Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________
--> Win 10 Performance Probleme durch Virus?

Alt 13.06.2016, 15:35   #7
Exides
 
Win 10 Performance Probleme durch Virus? - Standard

Win 10 Performance Probleme durch Virus?


Wurde per Systemsteuerung Gelöscht, soll ich es nun auch am besten aus der Quarantäne löschen oder ist es nun Endgültig weg?
Vielleicht liegt es ja daran, Im Internet liest man nichts gutes über das Programm!
Ich weiß auch nicht wie das Programm auf mein System gekommen ist, gerne bin ich dazu bereit es Restlos zu entfernen. Es wäre nett wenn ich dafür noch Hilfestellung bekommen könnte.
Geändert von Exides (13.06.2016 um 15:56 Uhr)

Alt 14.06.2016, 10:13   #8
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Win 10 Performance Probleme durch Virus? - Standard

Win 10 Performance Probleme durch Virus?


Das issen (illegaler) Aktivator für Office und Windows. Nun stellt sich die Frage, was du damit wolltest, wenn du kein Microsoft Office installiert hast....
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 14.06.2016, 16:34   #9
Exides
 
Win 10 Performance Probleme durch Virus? - Standard

Win 10 Performance Probleme durch Virus?


Ich? gar nichts Ich habe mir das System natürlich aufsetzten "lassen". Also weiß ich auch leider nicht wofür der jetzt sein soll.

Alt 14.06.2016, 20:12   #10
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Win 10 Performance Probleme durch Virus? - Standard

Win 10 Performance Probleme durch Virus?


Ja, dann wende dich mal an den, der die den scheiß aufgetischt hat. Sieht danach aus, als hätte er dir ein irgendein gecracktes Windows installiert aus zweifelhafter Quelle.
__________________
Logfiles bitte immer in CODE-Tags posten

Antwort

Themen zu Win 10 Performance Probleme durch Virus?
allgemeine, allgemeinen, eingefangen, fps, gefangen, gen, pcs, performance, plötzlich, probleme, sauber, seite, seiten, sound, spiele, spring, stark, system, treiber, verdacht, virus, virus?, win, überprüfen, öffnet


« Bekomme Malware nicht ganz weg | Der PC muss nach einer Minute neugestartet werden ( unendlicher Loop ) »


Ähnliche Themen: Win 10 Performance Probleme durch Virus?


  1. Massive Performance Probleme bei jedem Spiel.
    Log-Analyse und Auswertung - 10.05.2015 (5)
  2. monetizer.aq gefunden...wie entfernen? sonst keine performance probleme
    Plagegeister aller Art und deren Bekämpfung - 23.02.2015 (16)
  3. Internet/Grafik und Performance/Absturz Probleme
    Netzwerk und Hardware - 20.01.2015 (6)
  4. System restore virus/trojaner auf meinem Pc / performance probleme & leistungsverluss
    Log-Analyse und Auswertung - 19.09.2014 (7)
  5. nach Befall durch BKA Virus Entfernung durch Fachhandel Jetzt startet Windows sicherheitsdienst nicht mehr
    Log-Analyse und Auswertung - 05.06.2014 (14)
  6. Win 7 64bit: Internet / Performance / Downstream probleme durch angebliche port probleme !
    Log-Analyse und Auswertung - 26.04.2014 (19)
  7. Probleme durch Webcake
    Plagegeister aller Art und deren Bekämpfung - 20.08.2013 (11)
  8. EWF (enhanced write filter) Teil II => Performance Steigerung durch "Sandboxie"
    Diskussionsforum - 12.07.2013 (0)
  9. Virus? (Internetprobleme, Performance probleme)
    Plagegeister aller Art und deren Bekämpfung - 02.06.2013 (11)
  10. Tapiui.DLL - Performance-Probleme & Absturz?
    Log-Analyse und Auswertung - 07.05.2013 (19)
  11. Toshiba Satellite C675D Laptop laeuft unrund/ruckelig, Performance Probleme Win 7
    Log-Analyse und Auswertung - 24.02.2013 (9)
  12. Hat Yahoo momentan Performance-Probleme?
    Überwachung, Datenschutz und Spam - 19.05.2012 (1)
  13. Probleme durch Malwarebyte
    Antiviren-, Firewall- und andere Schutzprogramme - 09.07.2011 (5)
  14. Willkürliche Probleme durch Virus?
    Plagegeister aller Art und deren Bekämpfung - 08.09.2009 (2)
  15. Probleme durch abgesicherten Modus
    Alles rund um Windows - 01.06.2009 (10)
  16. Probleme durch AntiVirGear...
    Log-Analyse und Auswertung - 24.09.2007 (21)
  17. Performance-Probleme
    Netzwerk und Hardware - 18.03.2003 (26)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Win 10 Performance Probleme durch Virus? - Hallo, Ich habe den verdacht das sich mein System etwas eingefangen hat, Die Performance und FPS in Spielen hat sich verschlechter und springt stark hin und her. Außerdem öffnet mein - Win 10 Performance Probleme durch Virus?...
Archiv
Du betrachtest: Win 10 Performance Probleme durch Virus? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129