Zurck   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder stndig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu knnen, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswrdig ist und bis zur vollstndigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 01.02.2016, 13:44   #1
Bennie
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Hallo Liebe Helfer des Trojaner-Boards,

das Windows 7 SP1 meines Sony Vaio Laptops habe ich krzlich erst neu installiert, weil es Probleme gab. Unter anderem ist der Laptop eingefrohren, als ich einen Internet-Browser ffnete (Iinternet Explorer, Firefox, Opera beta). Ist aber nicht jedes Mal passiert.

Nach der Neuinstallation des Betriebssystems bekam ich neuerdings Probleme. Beim ffnen des Internet Explorers ist der Rechner wiederum einmal eingefrohren. Auerdem konnte ich keine Windows-Updates machen, da ich eine Fehlermeldung bekam, dass das Suchen der Updates nicht mglich ist. Den Fehler-Code habe ich dann in Google eingegeben und auf der Windows-Seite wurde darber Berichtet, dass der Rechner vermutlich infiziert sei. Darauf hin habe ich den Anweisungen Folge geleistet, startete den Computer im Abgesicherten Modus neu und habe einen Scan mit dem Emisoft Anti-Malware durchgefhrt.

Ich erhielt zwar keinen Fund. Dafr liefen die Windows-Updates nach einen Neustart im Normalen Windows wieder. Ich deinstallierte auerdem das Vaio-Update Programm, das mich auf die Seite im Internet-Explorer brachte, bei dem der Absturz geschah. Dann habe ich den Adw Cleaner drberlaufen lassen und entsprechende Reste entfernt.

Danach fhrte ich einen weiteren Scan mit dem Emisoft Anti Malware durch und habe dann den Fund eines Trojaners erhalten: trojan.genericKD.2180047 (B)

Den habe ich nun in der Quarantne und wei ersteinmal nicht, was ich damit machen soll.

Knntet Ihr mir da weiterhelfen? Auerdem wei ich nicht, ob ich nicht noch mehr Infizierungen auf dem Rechner habe.

Es wre mir wirklich eine groe Freude, wenn mir da jemand helfen knnte. :-)

Die logs vom Adw Cleaner, Emisoft Anti-Malware und FRST habe ich angehngt, da der Post zu gro wurde.

Alt 01.02.2016, 13:55   #2
cosinus
/// Winkelfunktion
/// TB-Sch-Tiger™
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Hi und

Logs bitte nicht anhngen, notfalls splitten und ber mehrere Postings verteilt posten

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhngen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs fr einen Beitrag zu gro sein sollten, bitte ich dich die Logs direkt und notfalls ber mehrere Beitrge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrcke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drcke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 01.02.2016, 14:40   #3
Bennie
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Hallo Cosinus,

vielen Dank fr die Antwort. Dann sind hier die logs:

FRST Teil 1:

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:27-01-2016
durchgefhrt von Stephan Blank (Administrator) auf STEPHANBLANK-PC (01-02-2016 13:35:31)
Gestartet von C:\Users\Stephan Blank\Downloads
Geladene Profile: Stephan Blank (Verfgbare Profile: Stephan Blank)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung fr Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AuthenTec, Inc) C:\Program Files\TrueSuite\TrueSuite.Service.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AuthenTec Inc.) C:\Program Files\TrueSuite\TrueSuite.TouchControl.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AuthenTec, Inc.) C:\Program Files\TrueSuite\TrueSuite.ClientAppLogonExe.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(AuthenTec, Inc.) C:\Program Files\TrueSuite\x86\TrueSuite.ClientAppLogonExe.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(QUALCOMM, Inc.) C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kSony.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESGfxMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurckgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ClientAppLogon] => C:\Program Files\TrueSuite\TrueSuite.ClientAppLogonExe.exe [421192 2011-02-14] (AuthenTec, Inc.)
HKLM\...\Run: [ClientAppLogon32] => C:\Program Files\TrueSuite\x86\TrueSuite.ClientAppLogonExe.exe [308040 2011-02-14] (AuthenTec, Inc.)
HKLM\...\Run: [emsisoft anti-malware] => c:\program files (x86)\emsisoft anti-malware\a2guard.exe [9234848 2016-01-27] (Emsisoft Ltd)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11490408 2011-04-17] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2179688 2011-04-17] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-12-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [emsisoft anti-malware] => C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [9234848 2016-01-27] (Emsisoft Ltd)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [2757312 2011-02-15] (Sony Corporation)
HKLM-x32\...\Run: [VAIO Boot Manager] => C:\Program Files (x86)\Sony\VAIO Boot Manager\StartUpProcessDelayTool.exe [2104456 2011-05-26] (Sony Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2016-01-27]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurckgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{60C2BA03-22DE-4711-B48D-56A25462762B}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{D3B93853-5F12-4DCE-BCE9-B7DA0FCD1779}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
BHO: TrueSuite WebStore -> {5cb2b77d-c8ca-44db-af20-a7a4df462a12} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\TrueSuite\TrueSuite.IEBHO.dll [2011-02-14] (AuthenTec Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: TrueSuite WebStore -> {5cb2b77d-c8ca-44db-af20-a7a4df462a12} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\TrueSuite\x86\TrueSuite.IEBHO.dll [2011-02-14] (AuthenTec Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Stephan Blank\AppData\Roaming\Mozilla\Firefox\Profiles\tzs90a48.default
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Extension: Adblock Plus - C:\Users\Stephan Blank\AppData\Roaming\Mozilla\Firefox\Profiles\tzs90a48.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-01]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [oiokdoppleiafjmfmggefbkghfblaplo] - C:\Program Files\TrueSuite\x86\tschrome.crx [2010-11-29]

Opera: 
=======
StartMenuInternet: (HKLM) Operabeta - C:\Program Files (x86)\Opera beta\Launcher.exe

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [10900888 2016-01-27] (Emsisoft Ltd)
R2 FPLService; C:\Program Files\TrueSuite\TrueSuite.Service.exe [290120 2011-02-14] (AuthenTec, Inc)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-01-05] ()
R2 QDLService2kSony; C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kSony.exe [332096 2010-10-21] (QUALCOMM, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [958112 2011-10-24] (Sony Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 epp; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\epp.sys [123992 2016-01-27] (Emsisoft Ltd)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-01 13:35 - 2016-02-01 13:36 - 00011508 _____ C:\Users\Stephan Blank\Downloads\FRST.txt
2016-02-01 13:34 - 2016-02-01 13:35 - 00000000 ____D C:\FRST
2016-02-01 13:34 - 2016-02-01 13:34 - 02370560 _____ (Farbar) C:\Users\Stephan Blank\Downloads\FRST64.exe
2016-02-01 10:57 - 2016-02-01 10:59 - 00000000 ____D C:\AdwCleaner
2016-02-01 10:57 - 2016-02-01 10:57 - 01508352 _____ C:\Users\Stephan Blank\Downloads\adwcleaner_5.032.exe
2016-02-01 10:55 - 2016-02-01 10:55 - 00000000 ____D C:\ProgramData\pdfforge
2016-02-01 10:54 - 2016-02-01 10:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\PDF Architect 4
2016-02-01 10:50 - 2016-02-01 10:55 - 00000000 ____D C:\ProgramData\PDF Architect 4
2016-02-01 10:50 - 2016-02-01 10:50 - 00120200 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2016-02-01 10:50 - 2016-02-01 10:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2016-02-01 10:49 - 2016-02-01 10:50 - 00000000 ____D C:\Program Files\PDFCreator
2016-02-01 10:34 - 2016-02-01 10:48 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Foxit Software
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Foxit AgentInformation
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Foxit Reader
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\Users\Public\Foxit Software
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2016-02-01 10:33 - 2016-02-01 10:33 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2016-02-01 10:30 - 2016-02-01 11:15 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Mozilla
2016-02-01 10:30 - 2016-02-01 10:30 - 00001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-02-01 10:30 - 2016-02-01 10:30 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-02-01 10:29 - 2016-02-01 10:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-01 10:00 - 2016-02-01 10:00 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-02-01 10:00 - 2016-02-01 10:00 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-02-01 09:55 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-01 09:37 - 2016-02-01 09:37 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-02-01 09:37 - 2016-02-01 09:37 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-01 09:26 - 2016-02-01 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-02-01 09:25 - 2016-02-01 09:25 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-02-01 09:25 - 2016-02-01 09:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-02-01 09:20 - 2016-02-01 09:20 - 00000000 ____D C:\Program Files (x86)\ESET
2016-02-01 09:19 - 2016-02-01 09:19 - 42783808 _____ (Foxit Software Inc. ) C:\Users\Stephan Blank\Downloads\FoxitReader730.0118_enu_Setup.exe
2016-02-01 09:18 - 2016-02-01 09:18 - 27005440 _____ (pdfforge GmbH) C:\Users\Stephan Blank\Downloads\PDFCreator-2_2_2-setup.exe
2016-02-01 09:13 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-01 09:13 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-01 09:13 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-02-01 09:13 - 2015-06-03 21:16 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2016-02-01 09:13 - 2012-07-06 21:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2016-02-01 09:13 - 2011-04-28 04:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2016-02-01 09:13 - 2011-03-11 07:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2016-02-01 09:13 - 2011-03-11 07:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-02-01 09:13 - 2011-03-11 07:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2016-02-01 09:13 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-02-01 09:13 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2016-02-01 09:13 - 2011-03-11 05:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-02-01 09:06 - 2016-02-01 09:06 - 00302011 _____ C:\Users\Stephan Blank\Downloads\WindowsUpdateDiagnostic.diagcab
2016-02-01 09:03 - 2016-02-01 09:03 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-02-01 09:03 - 2016-02-01 09:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-02-01 09:03 - 2016-02-01 09:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-02-01 09:03 - 2016-02-01 09:03 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-02-01 09:03 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-02-01 09:03 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-02-01 09:03 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-02-01 08:56 - 2016-02-01 08:56 - 02870984 _____ (ESET) C:\Users\Stephan Blank\Downloads\esetsmartinstaller_deu.exe
2016-02-01 08:41 - 2016-02-01 08:46 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\vlc
2016-02-01 08:41 - 2016-02-01 08:41 - 22908888 _____ (Malwarebytes ) C:\Users\Stephan Blank\Downloads\mbam-setup-2.2.0.1024.exe
2016-02-01 08:39 - 2016-02-01 08:39 - 00000871 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-02-01 08:39 - 2016-02-01 08:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-02-01 08:38 - 2016-02-01 08:38 - 00000000 ____D C:\Program Files\VideoLAN
2016-01-30 12:09 - 2016-01-30 12:09 - 00000000 ____D C:\Windows\PCHEALTH
2016-01-30 12:09 - 2016-01-30 12:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-01-30 12:08 - 2016-01-30 12:08 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-01-30 12:07 - 2016-01-30 12:07 - 00000000 ____D C:\Program Files\Microsoft Office
2016-01-30 12:07 - 2016-01-30 12:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-01-30 12:06 - 2016-01-30 12:09 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-01-30 12:06 - 2016-01-30 12:06 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Microsoft Help
2016-01-30 12:05 - 2016-01-30 12:05 - 00000000 __RHD C:\MSOCache
2016-01-30 11:06 - 2015-07-16 20:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-01-30 11:06 - 2015-07-16 20:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2016-01-30 11:06 - 2015-07-16 20:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2016-01-30 11:06 - 2015-07-16 20:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-01-30 11:06 - 2015-07-16 20:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2016-01-30 11:06 - 2015-07-16 20:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2016-01-30 11:06 - 2015-07-11 14:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2016-01-30 11:06 - 2015-06-09 19:03 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-01-30 11:06 - 2015-06-09 19:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-01-30 11:06 - 2015-06-03 21:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-01-30 11:05 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-30 11:05 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-30 11:05 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-30 11:05 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-30 11:05 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-30 11:05 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-30 11:05 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-30 11:05 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-30 11:05 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-30 11:05 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-30 11:05 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-30 11:05 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-30 11:05 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-30 11:05 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-30 11:05 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-30 11:05 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-30 11:05 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-30 11:05 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-30 11:05 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-30 11:05 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-30 11:05 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-30 11:05 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-30 11:05 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-30 11:05 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-30 11:05 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-30 11:05 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-30 11:05 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-30 11:05 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-30 11:05 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-30 11:05 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-30 11:05 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-30 11:05 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-30 11:05 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-30 11:05 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-30 11:05 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-30 11:05 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-30 11:05 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-30 11:05 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-30 11:05 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-30 11:05 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-30 11:05 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-30 11:05 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-30 11:05 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-30 11:05 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-30 11:05 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-30 11:05 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-30 11:05 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-30 11:05 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-30 11:05 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-30 11:05 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-30 11:05 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-30 11:05 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-30 11:05 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-30 11:05 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-30 11:05 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-30 11:05 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-30 11:05 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2016-01-30 11:05 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-01-30 11:05 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-01-30 10:52 - 2016-01-30 12:08 - 00000000 ____D C:\ProgramData\iolo
2016-01-30 10:52 - 2016-01-30 10:52 - 00074703 _____ C:\Windows\SysWOW64\mfc45.dll
2016-01-30 10:52 - 2016-01-30 10:52 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\iolo
2016-01-30 10:52 - 2016-01-30 10:51 - 00013792 _____ C:\Windows\system32\Drivers\semav6thermal64ro.sys
2016-01-30 10:52 - 2015-02-04 16:37 - 00069000 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2016-01-30 10:52 - 2015-02-04 16:37 - 00021176 _____ (iolo technologies, LLC) C:\Windows\system32\iolorgdf64.exe
2016-01-29 22:02 - 2016-01-29 22:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BioEdit
2016-01-29 22:02 - 2016-01-29 22:02 - 00000000 ____D C:\BioEdit
2016-01-29 21:59 - 2016-01-29 21:59 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\GWX
2016-01-29 21:54 - 2016-01-29 21:54 - 00002820 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-01-29 21:54 - 2016-01-29 21:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-01-29 21:54 - 2016-01-29 21:54 - 00000000 ____D C:\Program Files\CCleaner
2016-01-29 21:51 - 2016-01-29 21:51 - 00001040 _____ C:\Users\Public\Desktop\Chromas Lite.lnk
2016-01-29 21:51 - 2016-01-29 21:51 - 00000000 ____D C:\Users\Stephan Blank\AppData\Chromas Lite
2016-01-29 21:51 - 2016-01-29 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chromas
2016-01-29 21:51 - 2016-01-29 21:51 - 00000000 ____D C:\Program Files (x86)\Chromas
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\MEGA6_6140226
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\MEGA_Global
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGA6
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImageMagick 6.7.5 Q16
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\Program Files (x86)\MEGA6
2016-01-29 21:34 - 2016-02-01 10:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-29 21:34 - 2016-02-01 10:30 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Mozilla
2016-01-29 21:34 - 2016-01-29 21:34 - 00001209 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-01-29 21:34 - 2016-01-29 21:34 - 00001197 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-01-29 21:34 - 2016-01-29 21:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Thunderbird
2016-01-29 21:34 - 2016-01-29 21:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Thunderbird
2016-01-29 21:34 - 2016-01-29 21:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-01-29 21:22 - 2016-01-29 21:22 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Stephan Blank\Downloads\revosetup95.exe
2016-01-29 21:15 - 2016-01-29 21:16 - 29995555 _____ C:\Users\Stephan Blank\Downloads\vlc-2.2.1-win64.exe
2016-01-29 21:13 - 2016-01-29 21:14 - 00242320 _____ C:\Users\Stephan Blank\Downloads\Firefox Setup Stub 44.0.exe
2016-01-29 21:13 - 2016-01-29 21:13 - 33940552 _____ (Mozilla) C:\Users\Stephan Blank\Downloads\Thunderbird Setup 38.5.1.exe
2016-01-29 21:02 - 2016-01-29 21:53 - 00000000 ____D C:\Setups
2016-01-29 20:44 - 2016-01-29 20:59 - 00000000 ____D C:\SonstigesAsus_160124
2016-01-29 20:43 - 2016-01-29 20:44 - 00000000 ____D C:\Biologie_Doktorat_160124
2016-01-29 20:29 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-29 20:29 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-29 20:29 - 2015-11-10 19:55 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-01-29 20:29 - 2015-11-10 19:55 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-01-29 20:29 - 2015-11-10 19:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-01-29 20:29 - 2015-07-30 19:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-01-29 20:29 - 2015-07-30 18:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-01-29 20:29 - 2015-02-04 04:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-01-29 20:29 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-01-29 20:29 - 2015-02-03 04:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-01-29 20:29 - 2015-02-03 04:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-01-29 20:00 - 2016-01-29 20:04 - 00000000 ____D C:\DETECTIVE_160124
2016-01-29 19:55 - 2016-01-29 19:58 - 00000000 ___SD C:\Windows\system32\GWX
2016-01-29 19:55 - 2016-01-29 19:55 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-01-29 19:50 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2016-01-29 19:50 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2016-01-29 19:50 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-01-29 19:50 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2016-01-29 19:50 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2016-01-29 19:50 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2016-01-29 19:50 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2016-01-29 19:50 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2016-01-29 19:50 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2016-01-29 19:50 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2016-01-29 19:47 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2016-01-29 19:47 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2016-01-29 19:47 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2016-01-29 19:47 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2016-01-29 19:44 - 2016-02-01 09:36 - 01592784 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-01-29 19:41 - 2012-07-26 04:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2016-01-29 19:41 - 2012-07-26 04:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2016-01-29 19:41 - 2012-07-26 04:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-01-29 19:41 - 2012-07-26 04:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2016-01-29 19:41 - 2012-07-26 04:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2016-01-29 19:41 - 2012-07-26 03:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2016-01-29 19:41 - 2012-07-26 03:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2016-01-29 19:41 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2016-01-29 19:38 - 2015-07-23 01:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-01-29 19:38 - 2015-07-23 01:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-01-29 19:38 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2016-01-29 19:38 - 2015-07-22 17:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-01-29 19:38 - 2015-04-27 20:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-01-29 19:38 - 2015-04-27 20:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-01-29 19:38 - 2015-04-27 20:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-01-29 19:38 - 2015-04-27 20:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-01-29 19:38 - 2015-04-11 04:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2016-01-29 19:38 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2016-01-29 19:38 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2016-01-29 19:38 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2016-01-29 19:38 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2016-01-29 19:38 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2016-01-29 19:38 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2016-01-29 19:38 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2016-01-29 19:38 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2016-01-29 19:37 - 2015-12-16 19:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2016-01-29 19:37 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2016-01-29 19:37 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2016-01-29 19:37 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2016-01-29 19:37 - 2015-12-16 19:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2016-01-29 19:37 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2016-01-29 19:37 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2016-01-29 19:37 - 2015-12-16 19:47 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2016-01-29 19:37 - 2015-12-16 15:38 - 00419928 _____ C:\Windows\SysWOW64\locale.nls
2016-01-29 19:37 - 2015-12-16 15:37 - 00419928 _____ C:\Windows\system32\locale.nls
2016-01-29 19:37 - 2015-08-05 18:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2016-01-29 19:37 - 2015-08-05 18:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2016-01-29 19:37 - 2015-05-25 19:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2016-01-29 19:37 - 2015-05-25 19:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2016-01-29 19:37 - 2015-05-25 19:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2016-01-29 19:37 - 2015-05-25 19:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2016-01-29 19:37 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2016-01-29 19:37 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2016-01-29 19:37 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2016-01-29 19:37 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2016-01-29 19:37 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2016-01-29 19:37 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2016-01-29 19:37 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2016-01-29 19:37 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2016-01-29 19:37 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2016-01-29 19:37 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2016-01-29 19:37 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2016-01-29 19:37 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2016-01-29 19:37 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2016-01-29 19:37 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2016-01-29 19:37 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2016-01-29 19:37 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2016-01-29 19:37 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2016-01-29 19:37 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2016-01-29 19:37 - 2012-12-07 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2016-01-29 19:37 - 2012-12-07 14:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2016-01-29 19:37 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2016-01-29 19:37 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2016-01-29 19:37 - 2012-12-07 12:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2016-01-29 19:36 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2016-01-29 19:36 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2016-01-29 19:36 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2016-01-29 19:36 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2016-01-29 19:36 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2016-01-29 19:36 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2016-01-29 19:36 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2016-01-29 19:36 - 2015-07-18 14:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-01-29 19:36 - 2012-10-03 18:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2016-01-29 19:36 - 2012-10-03 18:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2016-01-29 19:36 - 2012-10-03 18:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-01-29 19:36 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2016-01-29 19:36 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2016-01-29 19:36 - 2012-10-03 17:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2016-01-29 19:36 - 2012-01-04 11:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-01-29 19:36 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-01-29 19:36 - 2011-05-04 06:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2016-01-29 19:36 - 2011-05-04 06:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2016-01-29 19:36 - 2011-05-04 06:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-01-29 19:36 - 2011-05-04 06:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2016-01-29 19:36 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2016-01-29 19:36 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2016-01-29 19:36 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-01-29 19:36 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2016-01-29 19:35 - 2015-11-05 20:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-01-29 19:35 - 2015-11-05 20:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-01-29 19:35 - 2015-08-27 19:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-01-29 19:35 - 2015-08-27 19:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-01-29 19:35 - 2015-08-27 19:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2016-01-29 19:35 - 2015-08-27 19:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-01-29 19:35 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-01-29 19:35 - 2015-08-27 18:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-01-29 19:35 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2016-01-29 19:35 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-01-29 19:35 - 2015-07-09 18:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-01-29 19:35 - 2015-07-09 18:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2016-01-29 19:35 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-01-29 19:35 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2016-01-29 19:35 - 2015-06-25 11:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-01-29 19:35 - 2015-06-25 11:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-01-29 19:35 - 2015-06-25 11:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-01-29 19:35 - 2015-06-25 10:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-01-29 19:35 - 2015-01-29 04:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-01-29 19:35 - 2015-01-29 04:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2016-01-29 19:35 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2016-01-29 19:35 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2016-01-29 19:35 - 2014-02-04 03:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2016-01-29 19:35 - 2014-02-04 03:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-01-29 19:35 - 2014-02-04 03:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2016-01-29 19:35 - 2014-02-04 03:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2016-01-29 19:35 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2016-01-29 19:35 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2016-01-29 19:35 - 2013-05-10 06:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2016-01-29 19:35 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2016-01-29 19:35 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-01-29 19:35 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2016-01-29 19:35 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2016-01-29 19:35 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2016-01-29 19:35 - 2012-08-21 22:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2016-01-29 19:35 - 2012-07-04 21:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2016-01-29 19:35 - 2011-06-16 06:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2016-01-29 19:35 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2016-01-29 19:34 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-01-29 19:34 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-01-29 19:34 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2016-01-29 19:34 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2016-01-29 19:34 - 2014-10-03 03:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-01-29 19:34 - 2014-10-03 03:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-01-29 19:34 - 2014-10-03 03:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-01-29 19:34 - 2014-10-03 03:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-01-29 19:34 - 2014-10-03 03:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-01-29 19:34 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-01-29 19:34 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-01-29 19:34 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-01-29 19:34 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-01-29 19:34 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-01-29 19:34 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-01-29 19:34 - 2014-01-24 03:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-01-29 19:34 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2016-01-29 19:34 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2016-01-29 19:34 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-01-29 19:34 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2016-01-29 19:34 - 2013-01-24 07:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2016-01-29 19:34 - 2011-12-30 07:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2016-01-29 19:34 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2016-01-29 19:34 - 2011-02-18 11:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2016-01-29 19:34 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2016-01-29 18:54 - 2016-01-29 18:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Sony Corporation
2016-01-29 18:54 - 2016-01-29 18:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Adobe
2016-01-29 18:03 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2016-01-29 17:52 - 2016-01-29 17:52 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2016-01-29 17:52 - 2016-01-29 17:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2016-01-29 17:52 - 2016-01-29 17:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2016-01-29 17:52 - 2016-01-29 17:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2016-01-29 17:52 - 2016-01-29 17:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2016-01-29 17:48 - 2016-01-29 17:48 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-01-29 17:48 - 2016-01-29 17:48 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-01-29 17:38 - 2016-01-29 17:38 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-01-29 17:38 - 2016-01-29 17:38 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-01-29 17:10 - 2016-01-29 17:12 - 00000000 ____D C:\Windows\system32\MRT
2016-01-29 17:10 - 2016-01-29 17:10 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-29 16:31 - 2012-03-01 07:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2016-01-29 16:31 - 2012-03-01 07:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2016-01-29 16:31 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2016-01-29 16:23 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2016-01-29 16:23 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2016-01-29 16:23 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2016-01-29 16:23 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2016-01-29 16:23 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2016-01-29 16:23 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2016-01-29 16:23 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2016-01-29 16:23 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2016-01-29 15:15 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-29 15:15 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-29 15:15 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-29 15:15 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-29 15:15 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-29 15:15 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-29 15:15 - 2015-08-05 18:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-01-29 15:15 - 2015-06-02 01:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2016-01-29 15:15 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2016-01-29 15:15 - 2015-04-29 19:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-01-29 15:15 - 2015-04-29 19:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-01-29 15:15 - 2015-04-29 19:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-01-29 15:15 - 2015-04-29 19:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-01-29 15:15 - 2015-04-29 19:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-01-29 15:15 - 2015-04-29 19:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-01-29 15:15 - 2015-04-29 19:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-01-29 15:15 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-01-29 15:15 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-01-29 15:15 - 2015-04-29 19:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-01-29 15:15 - 2015-04-18 04:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-01-29 15:15 - 2015-04-18 03:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-01-29 15:15 - 2015-04-13 04:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-01-29 15:15 - 2011-06-15 11:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2016-01-29 15:15 - 2011-06-15 11:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2016-01-29 15:15 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2016-01-29 15:15 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2016-01-29 15:15 - 2010-12-23 11:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2016-01-29 15:15 - 2010-12-23 11:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-01-29 15:15 - 2010-12-23 11:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2016-01-29 15:15 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2016-01-29 15:15 - 2010-12-23 06:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-01-29 15:15 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2016-01-29 15:14 - 2015-11-20 19:54 - 03170304 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 02609152 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00709632 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-01-29 15:14 - 2015-11-20 19:54 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-01-29 15:14 - 2015-11-20 19:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-01-29 15:14 - 2015-11-20 19:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-01-29 15:14 - 2015-11-03 20:04 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-01-29 15:14 - 2015-11-03 19:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2016-01-29 15:14 - 2015-08-06 19:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-01-29 15:14 - 2015-08-06 19:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-01-29 15:14 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-01-29 15:14 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-01-29 15:14 - 2015-07-15 19:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-01-29 15:14 - 2015-07-15 19:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-01-29 15:14 - 2015-07-15 19:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-01-29 15:14 - 2011-11-17 07:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-01-29 15:14 - 2011-11-17 06:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-01-29 15:13 - 2015-02-03 04:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-01-29 15:13 - 2015-02-03 04:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-01-29 15:13 - 2015-02-03 04:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-01-29 15:13 - 2015-02-03 04:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-01-29 15:13 - 2015-02-03 04:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-01-29 15:13 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2016-01-29 15:12 - 2015-11-10 19:55 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-01-29 15:12 - 2015-11-10 19:37 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-01-29 15:12 - 2015-07-15 04:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-01-29 15:12 - 2015-07-01 21:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-01-29 15:12 - 2015-07-01 21:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-01-29 15:12 - 2015-07-01 21:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-01-29 15:12 - 2015-07-01 21:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-01-29 15:12 - 2015-02-03 04:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2016-01-29 15:12 - 2015-02-03 04:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2016-01-29 15:12 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-01-29 15:12 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-01-29 15:12 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2016-01-29 15:12 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2016-01-29 15:12 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2016-01-29 15:12 - 2014-06-18 03:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2016-01-29 15:12 - 2014-06-18 02:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2016-01-29 15:12 - 2014-04-05 03:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-01-29 15:12 - 2014-04-05 03:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-01-29 15:12 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2016-01-29 15:12 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2016-01-29 15:12 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-01-29 15:12 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2016-01-29 15:12 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2016-01-29 15:12 - 2012-10-03 18:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-01-29 15:12 - 2012-10-03 18:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2016-01-29 15:12 - 2011-03-11 07:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2016-01-29 15:12 - 2011-03-11 07:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2016-01-29 15:12 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2016-01-29 15:12 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
         
__________________

Alt 01.02.2016, 14:41   #4
Bennie
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



FRST Teil 2:

Code:
ATTFilter
2016-01-29 15:11 - 2015-11-11 19:53 - 01735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-01-29 15:11 - 2015-11-11 19:53 - 00525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-01-29 15:11 - 2015-11-11 19:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-01-29 15:11 - 2015-11-11 19:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-01-29 15:11 - 2015-11-05 20:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-01-29 15:11 - 2015-11-05 20:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2016-01-29 15:11 - 2015-11-05 10:53 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-01-29 15:11 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-01-29 15:11 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-01-29 15:11 - 2015-10-01 19:06 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-01-29 15:11 - 2015-10-01 19:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-01-29 15:11 - 2015-10-01 19:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-01-29 15:11 - 2015-10-01 19:00 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-01-29 15:11 - 2015-10-01 19:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-01-29 15:11 - 2015-10-01 19:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-01-29 15:11 - 2015-10-01 19:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-01-29 15:11 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-01-29 15:11 - 2015-10-01 18:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-01-29 15:11 - 2015-07-04 19:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-01-29 15:11 - 2015-07-04 18:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-01-29 15:11 - 2015-06-15 22:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-01-29 15:11 - 2015-06-15 22:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-01-29 15:11 - 2015-06-15 22:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-01-29 15:11 - 2015-06-15 22:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-01-29 15:11 - 2015-06-15 22:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-01-29 15:11 - 2015-06-15 22:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-01-29 15:11 - 2015-06-15 22:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-01-29 15:11 - 2015-06-15 22:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-01-29 15:11 - 2015-06-03 21:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-01-29 15:11 - 2015-06-03 21:16 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-01-29 15:11 - 2015-06-03 21:16 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-01-29 15:11 - 2015-04-24 19:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2016-01-29 15:11 - 2015-04-24 18:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2016-01-29 15:11 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-01-29 15:11 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-01-29 15:11 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-01-29 15:11 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-01-29 15:11 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-01-29 15:11 - 2013-07-12 11:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2016-01-29 15:11 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2016-01-29 15:11 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-01-29 15:11 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2016-01-29 15:11 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-01-29 15:11 - 2013-02-12 05:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2016-01-29 15:11 - 2012-11-28 23:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2016-01-29 15:11 - 2012-11-28 23:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2016-01-29 15:11 - 2012-11-28 23:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2016-01-29 15:11 - 2012-11-02 06:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2016-01-29 15:11 - 2012-11-02 06:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2016-01-29 15:11 - 2011-03-03 07:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-01-29 15:11 - 2011-03-03 07:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2016-01-29 15:11 - 2011-03-03 07:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2016-01-29 15:11 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-01-29 15:11 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2016-01-29 15:10 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-29 15:10 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-29 15:10 - 2015-07-09 18:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2016-01-29 15:10 - 2015-07-09 18:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2016-01-29 15:10 - 2015-07-09 18:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2016-01-29 15:10 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-01-29 15:10 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2016-01-29 15:10 - 2014-06-16 03:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-01-29 15:10 - 2014-03-04 10:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2016-01-29 15:10 - 2014-03-04 10:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2016-01-29 15:10 - 2014-03-04 10:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2016-01-29 15:10 - 2014-03-04 10:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2016-01-29 15:10 - 2014-03-04 10:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2016-01-29 15:10 - 2014-03-04 10:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2016-01-29 15:10 - 2014-03-04 10:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2016-01-29 15:10 - 2013-04-10 07:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-01-29 15:10 - 2011-08-17 06:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2016-01-29 15:10 - 2011-08-17 06:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2016-01-29 15:10 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2016-01-29 15:10 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2016-01-29 15:10 - 2011-04-29 04:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-01-29 15:10 - 2011-04-29 04:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-01-29 15:10 - 2011-04-29 04:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-01-29 15:10 - 2011-02-03 12:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-01-29 15:09 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-01-29 15:09 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-29 15:09 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-01-29 15:09 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-29 15:09 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-01-29 15:09 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 01393152 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-01-29 15:09 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-01-29 15:09 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-29 15:09 - 2015-12-08 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-29 15:09 - 2015-12-08 20:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-01-29 15:09 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-01-29 15:09 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-01-29 15:09 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-01-29 15:09 - 2015-12-08 18:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-29 15:09 - 2015-02-25 04:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-01-29 15:09 - 2015-02-18 08:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-01-29 15:09 - 2015-02-18 08:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-01-29 15:09 - 2015-01-17 03:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-01-29 15:09 - 2015-01-17 03:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-01-29 15:09 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2016-01-29 15:09 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2016-01-29 15:09 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-01-29 15:09 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-01-29 15:09 - 2013-07-26 03:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2016-01-29 15:09 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2016-01-29 15:09 - 2013-04-26 06:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-01-29 15:09 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-01-29 15:09 - 2012-11-23 04:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2016-01-29 15:09 - 2012-09-25 23:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2016-01-29 15:09 - 2012-09-25 23:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2016-01-29 15:09 - 2012-03-17 08:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2016-01-29 15:09 - 2011-05-24 12:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2016-01-29 15:09 - 2011-05-24 11:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2016-01-29 15:09 - 2011-05-24 11:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2016-01-29 15:09 - 2011-05-24 11:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2016-01-29 15:09 - 2011-05-24 11:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2016-01-29 15:09 - 2011-02-05 18:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2016-01-29 15:09 - 2011-02-05 18:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2016-01-29 15:09 - 2011-02-05 18:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2016-01-29 15:08 - 2015-12-08 22:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-29 15:08 - 2015-12-08 20:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-29 15:08 - 2015-11-03 20:04 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2016-01-29 15:08 - 2015-11-03 19:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2016-01-29 15:08 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-01-29 15:08 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2016-01-29 15:08 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2016-01-29 15:08 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2016-01-29 15:08 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2016-01-29 15:08 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-01-29 15:08 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2016-01-29 15:08 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2016-01-29 15:08 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2016-01-29 15:08 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2016-01-29 15:08 - 2013-05-13 06:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2016-01-29 15:08 - 2013-05-13 04:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2016-01-29 15:08 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2016-01-29 15:08 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2016-01-29 15:08 - 2012-07-04 23:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2016-01-29 15:08 - 2012-07-04 23:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2016-01-29 15:08 - 2012-07-04 23:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2016-01-29 15:08 - 2012-07-04 22:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2016-01-29 15:08 - 2012-07-04 22:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2016-01-29 15:08 - 2012-04-26 06:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2016-01-29 15:08 - 2012-04-26 06:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2016-01-29 15:08 - 2011-12-16 09:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2016-01-29 15:08 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2016-01-29 15:08 - 2011-05-03 06:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-01-29 15:08 - 2011-05-03 05:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-01-29 15:08 - 2011-02-12 12:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2016-01-29 15:07 - 2015-12-30 20:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-29 15:07 - 2015-12-30 20:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-29 15:07 - 2015-12-30 20:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-01-29 15:07 - 2015-12-30 20:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-01-29 15:07 - 2015-12-30 20:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-01-29 15:07 - 2015-12-30 19:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-01-29 15:07 - 2015-12-30 19:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-29 15:07 - 2015-12-30 19:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-01-29 15:07 - 2015-12-30 19:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-29 15:07 - 2015-12-30 19:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-01-29 15:07 - 2015-12-30 19:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-01-29 15:07 - 2015-12-30 19:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-29 15:07 - 2015-12-30 19:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-01-29 15:07 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-29 15:07 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-01-29 15:07 - 2015-12-30 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-29 15:07 - 2015-12-30 19:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-29 15:07 - 2015-12-30 19:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-01-29 15:07 - 2015-12-30 19:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-29 15:07 - 2015-12-30 19:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-01-29 15:07 - 2015-12-30 19:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-01-29 15:07 - 2015-12-30 19:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-29 15:07 - 2015-12-30 19:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-01-29 15:07 - 2015-12-30 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-01-29 15:07 - 2015-12-30 19:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-01-29 15:07 - 2015-12-30 19:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 18:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-01-29 15:07 - 2015-12-30 18:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-01-29 15:07 - 2015-12-30 18:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-01-29 15:07 - 2015-12-30 18:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-01-29 15:07 - 2015-12-30 18:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-29 15:07 - 2015-12-30 18:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-01-29 15:07 - 2015-12-30 18:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-29 15:07 - 2015-12-30 18:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-29 15:07 - 2015-12-30 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-01-29 15:07 - 2015-12-30 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-01-29 15:07 - 2015-12-30 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-01-29 15:07 - 2015-12-30 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-01-29 15:07 - 2015-12-30 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-01-29 15:07 - 2015-12-30 18:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-01-29 15:07 - 2015-12-30 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-29 15:07 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-01-29 15:07 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-01-29 15:07 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-01-29 15:07 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-01-29 15:07 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-01-29 15:07 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-01-29 15:07 - 2015-03-04 05:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-01-29 15:07 - 2015-03-04 05:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2016-01-29 15:07 - 2015-03-04 05:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2016-01-29 15:07 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2016-01-29 15:07 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2016-01-29 15:07 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2016-01-29 15:07 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2016-01-29 15:07 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2016-01-29 15:07 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2016-01-29 15:07 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2016-01-29 15:07 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2016-01-29 15:07 - 2012-06-06 07:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2016-01-29 15:07 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2016-01-29 15:07 - 2012-05-14 06:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-01-29 15:07 - 2011-10-15 07:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-01-29 15:07 - 2011-10-15 06:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-01-29 15:07 - 2011-08-27 06:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2016-01-29 15:07 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2016-01-29 15:07 - 2011-02-23 05:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-01-29 15:06 - 2015-09-02 04:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-01-29 15:06 - 2015-09-02 04:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-01-29 15:06 - 2015-09-02 04:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-01-29 15:06 - 2015-09-02 04:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-01-29 15:06 - 2015-09-02 03:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-01-29 15:06 - 2015-09-02 03:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-01-29 15:06 - 2015-09-02 03:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-01-29 15:06 - 2015-09-02 03:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-01-29 15:06 - 2015-09-02 02:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-01-29 15:06 - 2015-09-02 02:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-01-29 15:06 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-01-29 15:06 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-01-29 15:06 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2016-01-29 15:06 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2016-01-29 15:06 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2016-01-29 14:51 - 2012-02-17 07:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-01-29 14:51 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2016-01-29 14:51 - 2012-02-17 05:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2016-01-29 14:36 - 2016-01-29 14:36 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Sony Corporation
2016-01-29 12:44 - 2016-01-29 12:44 - 00000000 ____D C:\3eb852b6b65315fdf8325989cb0c0a
2016-01-29 12:41 - 2016-01-29 12:41 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Main
2016-01-29 12:37 - 2016-01-29 12:37 - 45487704 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000268817.exe
2016-01-29 12:27 - 2016-01-29 12:27 - 01223672 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000255979.exe
2016-01-29 12:18 - 2016-01-29 12:19 - 23008216 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000317149.exe
2016-01-29 12:11 - 2016-01-29 12:11 - 19726336 _____ C:\Users\Stephan Blank\Downloads\EP0000303880.msi
2016-01-29 11:46 - 2016-01-29 11:46 - 00286056 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000298538.exe
2016-01-29 11:45 - 2016-01-29 11:45 - 00365776 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000296998.exe
2016-01-29 11:41 - 2016-01-29 11:42 - 10315480 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000295615.exe
2016-01-29 11:37 - 2016-01-29 11:38 - 60821240 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000261503.exe
2016-01-29 11:29 - 2016-01-29 11:29 - 00001303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Gallery.lnk
2016-01-29 11:28 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-01-29 11:28 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-01-29 11:28 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-01-29 11:28 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-01-29 11:28 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-01-29 11:28 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-01-29 11:11 - 2016-01-29 11:19 - 352086416 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000262450.exe
2016-01-29 10:58 - 2012-01-03 03:21 - 09888872 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2016-01-29 10:56 - 2012-05-25 02:13 - 00017440 _____ C:\Windows\system32\iglhxs64.vp
2016-01-29 10:56 - 2012-05-25 02:08 - 04378944 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00506688 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00417088 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00392512 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00239936 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00184640 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00167744 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2016-01-29 10:56 - 2012-05-25 02:01 - 12312832 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdpmd64.sys
2016-01-29 10:56 - 2012-05-25 02:01 - 12312832 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2016-01-29 10:56 - 2012-05-25 02:01 - 08314368 _____ (Intel Corporation) C:\Windows\system32\igdumd64.dll
2016-01-29 10:56 - 2012-05-25 02:00 - 00963884 _____ C:\Windows\SysWOW64\igkrng600.bin
2016-01-29 10:56 - 2012-05-25 02:00 - 00963884 _____ C:\Windows\system32\igkrng600.bin
2016-01-29 10:56 - 2012-05-25 02:00 - 00221264 _____ C:\Windows\SysWOW64\igfcg600m.bin
2016-01-29 10:56 - 2012-05-25 02:00 - 00221264 _____ C:\Windows\system32\igfcg600m.bin
2016-01-29 10:56 - 2012-05-25 02:00 - 00075776 _____ C:\Windows\system32\igdde64.dll
2016-01-29 10:56 - 2012-05-25 01:57 - 06324224 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2016-01-29 10:56 - 2012-05-25 01:56 - 00056832 _____ C:\Windows\SysWOW64\igdde32.dll
2016-01-29 10:56 - 2012-05-25 01:53 - 00581120 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdx32.dll
2016-01-29 10:56 - 2012-05-25 01:50 - 09528832 _____ (Intel Corporation) C:\Windows\system32\igd10umd64.dll
2016-01-29 10:56 - 2012-05-25 01:45 - 07988224 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2016-01-29 10:56 - 2012-05-25 01:40 - 18675712 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2016-01-29 10:56 - 2012-05-25 01:35 - 13913600 _____ C:\Windows\SysWOW64\ig4icd32.dll
2016-01-29 10:56 - 2012-05-25 01:33 - 00378368 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2016-01-29 10:56 - 2012-05-25 01:33 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00283648 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00283136 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00211303 _____ C:\Windows\system32\Gfxres.th-TH.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00198139 _____ C:\Windows\system32\Gfxres.el-GR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00182706 _____ C:\Windows\system32\Gfxres.ru-RU.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00156233 _____ C:\Windows\system32\Gfxres.ar-SA.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00153167 _____ C:\Windows\system32\Gfxres.ja-JP.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00149009 _____ C:\Windows\system32\Gfxres.he-IL.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00140216 _____ C:\Windows\system32\Gfxres.it-IT.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00138727 _____ C:\Windows\system32\Gfxres.ko-KR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00137846 _____ C:\Windows\system32\Gfxres.de-DE.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00137668 _____ C:\Windows\system32\Gfxres.es-ES.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00136603 _____ C:\Windows\system32\Gfxres.ro-RO.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00135628 _____ C:\Windows\system32\Gfxres.fr-FR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00135370 _____ C:\Windows\system32\Gfxres.tr-TR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00134836 _____ C:\Windows\system32\Gfxres.pt-BR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00134412 _____ C:\Windows\system32\Gfxres.nl-NL.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00134384 _____ C:\Windows\system32\Gfxres.hu-HU.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00133846 _____ C:\Windows\system32\Gfxres.sv-SE.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00133709 _____ C:\Windows\system32\Gfxres.pt-PT.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00133404 _____ C:\Windows\system32\Gfxres.cs-CZ.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00133178 _____ C:\Windows\system32\Gfxres.pl-PL.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00132889 _____ C:\Windows\system32\Gfxres.fi-FI.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00132788 _____ C:\Windows\system32\Gfxres.sk-SK.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00131839 _____ C:\Windows\system32\Gfxres.hr-HR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00128996 _____ C:\Windows\system32\Gfxres.sl-SI.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00128831 _____ C:\Windows\system32\Gfxres.nb-NO.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00128535 _____ C:\Windows\system32\Gfxres.da-DK.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2016-01-29 10:56 - 2012-05-25 01:33 - 00124052 _____ C:\Windows\system32\Gfxres.en-US.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00117636 _____ C:\Windows\system32\Gfxres.zh-TW.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00116348 _____ C:\Windows\system32\Gfxres.zh-CN.resources
2016-01-29 10:56 - 2012-05-25 01:32 - 00376320 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2016-01-29 10:56 - 2012-05-25 01:32 - 00146432 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2016-01-29 10:56 - 2012-05-25 01:32 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2016-01-29 10:56 - 2012-05-25 01:32 - 00004096 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2016-01-29 10:56 - 2012-05-25 01:31 - 09014784 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2016-01-29 10:56 - 2012-05-25 01:31 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2016-01-29 10:56 - 2012-05-25 01:31 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2016-01-29 10:56 - 2012-05-25 01:28 - 00293888 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2016-01-29 10:56 - 2012-05-25 01:28 - 00024576 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2016-01-29 10:56 - 2012-05-25 01:26 - 02780160 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2016-01-29 10:56 - 2012-05-25 01:26 - 02191872 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2016-01-29 10:56 - 2012-05-25 01:26 - 00246784 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2016-01-29 10:56 - 2012-05-25 01:26 - 00219136 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2016-01-29 10:39 - 2016-01-30 10:52 - 00000000 ____D C:\Update
2016-01-29 10:37 - 2016-01-29 10:37 - 25483032 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000260866.exe
2016-01-29 10:33 - 2016-01-29 10:33 - 00000000 ___HD C:\SPLASH.000
2016-01-29 10:32 - 2016-01-29 10:32 - 00000000 ___HD C:\SPLASH.SYS
2016-01-29 10:32 - 2016-01-29 10:32 - 00000000 ____D C:\Program Files (x86)\Downloaded Installations
2016-01-29 10:26 - 2016-01-29 10:28 - 266422568 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000257185.EXE
2016-01-29 10:23 - 2015-01-05 21:07 - 392242776 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000250759.exe
2016-01-29 10:19 - 2016-01-29 10:19 - 05032416 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000249241.exe
2016-01-29 10:10 - 2016-01-29 10:10 - 00000000 ____D C:\Users\Stephan Blank\Downloads\WWAN_Driver1_1_190
2016-01-29 10:10 - 2016-01-29 10:10 - 00000000 ____D C:\ProgramData\Wwan
2016-01-29 10:10 - 2016-01-29 10:10 - 00000000 ____D C:\ProgramData\QUALCOMM
2016-01-29 10:10 - 2016-01-29 10:10 - 00000000 ____D C:\Program Files (x86)\QUALCOMM
2016-01-29 10:09 - 2016-01-29 10:10 - 39267638 _____ C:\Users\Stephan Blank\Downloads\WWAN_Driver1_1_190.zip
2016-01-29 09:58 - 2016-01-29 09:58 - 50971445 _____ C:\Users\Stephan Blank\Downloads\SOAVCA-00245717-0042.zip
2016-01-28 14:04 - 2016-01-28 14:04 - 00002197 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Smart Network.lnk
2016-01-28 13:58 - 2016-01-28 13:58 - 15198476 _____ C:\Users\Stephan Blank\Downloads\SOASNW-00247880-0042.zip
2016-01-28 13:53 - 2016-01-28 13:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ATI Stream SDK v2
2016-01-28 13:53 - 2016-01-28 13:53 - 00000000 ____D C:\Program Files (x86)\ATI Stream
2016-01-28 13:44 - 2016-01-28 13:44 - 00000000 ____D C:\Users\Stephan Blank\AppData\LocalLow\Temp
2016-01-27 17:56 - 2016-01-27 17:56 - 03875192 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000251540.exe
2016-01-27 17:48 - 2016-02-01 08:01 - 00000000 ____D C:\Windows\System32\Tasks\Sony Corporation
2016-01-27 17:44 - 2016-02-01 08:01 - 00000000 ____D C:\Program Files\Sony
2016-01-27 17:43 - 2016-01-27 17:43 - 00001531 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Control Center.lnk
2016-01-27 17:42 - 2016-02-01 08:01 - 00000000 ____D C:\Program Files (x86)\Sony
2016-01-27 17:33 - 2016-01-29 11:27 - 00000000 ____D C:\Program Files\Common Files\Sony Shared
2016-01-27 17:31 - 2016-01-27 17:31 - 00000000 ____D C:\Users\Stephan Blank\Documents\Bluetooth-Exchange-Ordner
2016-01-27 17:31 - 2016-01-27 17:31 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Broadcom
2016-01-27 17:27 - 2016-01-27 17:27 - 00000000 ____D C:\Program Files\WIDCOMM
2016-01-27 17:27 - 2011-04-18 08:36 - 00344616 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys
2016-01-27 17:27 - 2011-04-18 08:36 - 00135720 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2016-01-27 17:27 - 2011-04-18 08:36 - 00102952 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2016-01-27 17:27 - 2011-04-18 08:36 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2016-01-27 17:27 - 2011-04-18 08:35 - 00039464 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2016-01-27 17:17 - 2016-01-27 17:17 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2016-01-27 17:13 - 2016-01-29 10:58 - 00000000 ____D C:\Windows\SysWOW64\sda
2016-01-27 17:12 - 2012-01-03 03:21 - 00340072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2016-01-27 17:09 - 2016-01-27 17:09 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-01-27 17:09 - 2016-01-27 17:09 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-01-27 17:09 - 2016-01-27 17:09 - 00000000 ____D C:\Program Files\Realtek
2016-01-27 17:09 - 2011-04-17 14:16 - 02651240 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 02580824 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 02520936 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-01-27 17:09 - 2011-04-17 14:16 - 02051176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 01239656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 01146984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-01-27 17:09 - 2011-04-17 14:16 - 00618600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00477800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-01-27 17:09 - 2011-04-17 14:16 - 00372936 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00307920 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00307920 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00220496 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFNHK64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00201928 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00120208 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00099016 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00081232 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFCOM64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00080488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00078160 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFAPO64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00076488 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 01770328 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 01716368 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 01325792 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 01178336 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 01110240 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00503520 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00489696 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00474336 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00419472 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00338336 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00315616 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00268512 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00265440 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00125584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00124640 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00124128 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00123616 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00106640 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00071824 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-01-27 17:09 - 2011-04-17 14:14 - 01251944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-01-27 17:09 - 2011-04-17 14:14 - 00002204 _____ C:\Windows\system32\Drivers\RtPCEE3.DAT
2016-01-27 17:00 - 2016-01-27 17:00 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Intel
2016-01-27 16:58 - 2016-01-27 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2016-01-27 16:58 - 2016-01-27 16:58 - 00000000 ____D C:\ProgramData\Intel
2016-01-27 16:58 - 2016-01-27 16:58 - 00000000 ____D C:\Program Files\Intel
2016-01-27 16:58 - 2016-01-27 16:58 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-01-27 16:57 - 2016-01-27 16:57 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Intel Corporation
2016-01-27 16:53 - 2016-01-27 16:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-01-27 16:52 - 2010-11-05 23:45 - 00438808 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys
2016-01-27 16:51 - 2016-01-27 16:51 - 12015134 _____ C:\Users\Stephan Blank\Downloads\INDOTH-00245071-0042.zip
2016-01-27 16:50 - 2016-01-27 16:50 - 00003898 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1453909801
2016-01-27 16:50 - 2016-01-27 16:50 - 00001174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera beta.lnk
2016-01-27 16:50 - 2016-01-27 16:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Opera Software
2016-01-27 16:50 - 2016-01-27 16:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Opera Software
2016-01-27 16:49 - 2016-01-27 16:50 - 00000000 ____D C:\Program Files (x86)\Opera beta
2016-01-27 16:47 - 2016-01-27 16:47 - 00000000 ____D C:\ProgramData\Emsisoft
2016-01-27 16:33 - 2016-01-27 16:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-01-27 16:26 - 2016-02-01 13:36 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2016-01-27 16:26 - 2016-01-27 16:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2016-01-27 16:19 - 2011-04-17 15:02 - 00056344 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys
2016-01-27 16:19 - 2011-04-17 15:02 - 00008192 _____ C:\Windows\system32\Drivers\IntelMEFWVer.dll
2016-01-27 16:16 - 2011-03-01 17:23 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2016-01-27 16:10 - 2016-01-27 16:10 - 00003222 _____ C:\Windows\System32\Tasks\{C689FB4B-0AE2-4AEE-B354-AB4CF4315EDC}
2016-01-27 16:10 - 2016-01-27 16:10 - 00000000 ____D C:\Infineon
2016-01-27 16:07 - 2016-01-27 16:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueSuite
2016-01-27 16:07 - 2016-01-27 16:07 - 00000000 ____D C:\Windows\system32\wocaffe
2016-01-27 16:07 - 2016-01-27 16:07 - 00000000 ____D C:\ProgramData\TrueSuite
2016-01-27 16:07 - 2016-01-27 16:07 - 00000000 ____D C:\ProgramData\Downloaded Installations
2016-01-27 16:07 - 2016-01-27 16:07 - 00000000 ____D C:\Program Files\TrueSuite
2016-01-27 16:02 - 2016-01-29 12:41 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-27 16:02 - 2016-01-29 10:58 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-01-27 16:02 - 2011-03-01 18:38 - 00425064 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-01-27 16:02 - 2011-03-01 18:38 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-01-27 16:02 - 2011-03-01 18:38 - 00074272 _____ C:\Windows\system32\RtNicProp64.dll
2016-01-27 16:00 - 2016-01-27 16:00 - 00000000 ____D C:\ProgramData\ATI
2016-01-27 15:57 - 2016-01-27 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2016-01-27 15:57 - 2016-01-27 15:57 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-01-27 15:57 - 2016-01-27 15:57 - 00000000 ____D C:\Program Files (x86)\AMD APP
2016-01-27 15:55 - 2011-12-22 08:30 - 09360896 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-01-27 15:55 - 2011-12-22 08:27 - 23336960 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-01-27 15:55 - 2011-12-22 08:02 - 17940992 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-01-27 15:55 - 2011-12-22 08:00 - 00166664 _____ C:\Windows\system32\atiapfxx.blb
2016-01-27 15:55 - 2011-12-22 07:59 - 00688128 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-01-27 15:55 - 2011-12-22 07:59 - 00151552 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-01-27 15:55 - 2011-12-22 07:55 - 00485376 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-01-27 15:55 - 2011-12-22 07:54 - 00204288 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-01-27 15:55 - 2011-12-22 07:53 - 00356352 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\atipdlxx.dll
2016-01-27 15:55 - 2011-12-22 07:53 - 00120320 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-01-27 15:55 - 2011-12-22 07:53 - 00016384 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-01-27 15:55 - 2011-12-22 07:52 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll
2016-01-27 15:55 - 2011-12-22 07:52 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll
2016-01-27 15:55 - 2011-12-22 07:49 - 04219904 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-01-27 15:55 - 2011-12-22 07:39 - 05008384 _____ (ATI Technologies Inc. ) C:\Windows\system32\atidxx64.dll
2016-01-27 15:55 - 2011-12-22 07:34 - 08489472 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-01-27 15:55 - 2011-12-22 07:34 - 00051200 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-01-27 15:55 - 2011-12-22 07:34 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-01-27 15:55 - 2011-12-22 07:34 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-01-27 15:55 - 2011-12-22 07:34 - 00044032 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-01-27 15:55 - 2011-12-22 07:30 - 01113088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6v.dll
2016-01-27 15:55 - 2011-12-22 07:29 - 06847488 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-01-27 15:55 - 2011-12-22 07:29 - 01828864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdmv.dll
2016-01-27 15:55 - 2011-12-22 07:27 - 04330496 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-01-27 15:55 - 2011-12-22 07:25 - 01127552 _____ C:\Windows\system32\atiumd6a.cap
2016-01-27 15:55 - 2011-12-22 07:22 - 04017152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-01-27 15:55 - 2011-12-22 07:21 - 01127552 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-01-27 15:55 - 2011-12-22 07:13 - 00262144 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-01-27 15:55 - 2011-12-22 07:13 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-01-27 15:55 - 2011-12-22 07:13 - 00012800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-01-27 15:55 - 2011-12-22 07:12 - 00309760 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-01-27 15:55 - 2011-12-22 07:12 - 00039936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-01-27 15:55 - 2011-12-22 07:12 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-01-27 15:55 - 2011-12-22 07:11 - 00031744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-01-27 15:55 - 2011-12-22 07:11 - 00029184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-01-27 15:55 - 2011-12-22 07:10 - 00053760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-01-27 15:55 - 2011-12-22 07:10 - 00053760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-01-27 15:55 - 2011-12-22 07:10 - 00053248 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-01-27 15:55 - 2011-12-22 07:10 - 00052736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-01-27 15:55 - 2011-12-22 07:10 - 00052736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-01-27 15:55 - 2011-08-09 12:44 - 01981696 _____ C:\Windows\system32\iglhxa64.cpa
2016-01-27 15:55 - 2011-08-09 12:44 - 00376832 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2016-01-27 15:55 - 2011-08-09 12:44 - 00376832 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2016-01-27 15:55 - 2011-08-09 12:44 - 00098304 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2016-01-27 15:55 - 2011-08-09 12:44 - 00098304 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2016-01-27 15:55 - 2011-08-09 12:44 - 00059243 _____ C:\Windows\system32\iglhxo64.vp
2016-01-27 15:55 - 2011-08-09 12:44 - 00059174 _____ C:\Windows\system32\iglhxg64.vp
2016-01-27 15:55 - 2011-08-09 12:44 - 00059062 _____ C:\Windows\system32\iglhxc64.vp
2016-01-27 15:55 - 2011-08-09 12:44 - 00001074 _____ C:\Windows\system32\iglhxa64.vp
2016-01-27 15:55 - 2011-05-19 10:13 - 00032635 _____ C:\Windows\atiogl.xml
2016-01-27 15:55 - 2011-04-20 18:30 - 00233765 _____ C:\Windows\system32\atiicdxx.dat
2016-01-27 15:55 - 2011-03-17 19:51 - 00003929 _____ C:\Windows\SysWOW64\atipblag.dat
2016-01-27 15:55 - 2011-03-17 19:51 - 00003929 _____ C:\Windows\system32\atipblag.dat
2016-01-27 15:54 - 2016-01-27 15:57 - 00000000 ____D C:\Program Files\ATI Technologies
2016-01-27 15:51 - 2016-02-01 10:24 - 00086160 _____ C:\Users\Stephan Blank\AppData\Local\GDIPFONTCACHEV1.DAT
2016-01-27 15:50 - 2016-01-27 15:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\ATI
2016-01-27 15:50 - 2016-01-27 15:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\ATI
2016-01-27 15:48 - 2016-01-27 15:48 - 00000000 _____ C:\Windows\ativpsrm.bin
2016-01-27 15:47 - 2016-01-27 16:58 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-01-27 15:47 - 2016-01-27 16:52 - 00000000 ____D C:\Program Files (x86)\Intel
2016-01-27 15:47 - 2016-01-27 15:47 - 00000000 ____D C:\Intel
2016-01-27 15:46 - 2016-01-27 15:56 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-01-27 15:46 - 2016-01-27 15:46 - 00000000 ____D C:\Program Files\ATI
2016-01-27 15:46 - 2011-02-25 14:30 - 00003143 _____ C:\Windows\SysWOW64\atipblup.dat
2016-01-27 15:46 - 2011-02-25 14:30 - 00003143 _____ C:\Windows\system32\atipblup.dat
2016-01-27 15:45 - 2012-05-25 01:32 - 00390144 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2016-01-27 15:45 - 2012-05-25 01:32 - 00110080 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2016-01-27 15:45 - 2012-05-25 01:32 - 00062464 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2016-01-27 15:45 - 2011-12-22 07:58 - 00811008 _____ (ATI Technologies Inc. ) C:\Windows\system32\aticfx64.dll
2016-01-27 15:45 - 2011-12-22 07:55 - 00462848 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2016-01-27 15:45 - 2011-12-22 07:53 - 00423424 _____ (ATI Technologies, Inc.) C:\Windows\system32\atipdl64.dll
2016-01-27 15:45 - 2011-12-22 07:29 - 03810816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-01-27 15:45 - 2011-12-22 07:21 - 05486592 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumd64.dll
2016-01-27 15:45 - 2011-12-22 07:20 - 00058880 _____ (AMD) C:\Windows\system32\coinst.dll
2016-01-27 15:45 - 2011-12-22 07:13 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-01-27 15:45 - 2011-12-22 07:11 - 00040960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-01-27 15:45 - 2011-12-22 07:11 - 00038912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-01-27 15:45 - 2011-04-17 13:29 - 00145804 _____ C:\Windows\SysWOW64\igcompkrng600.bin
2016-01-27 15:45 - 2011-04-17 13:29 - 00145804 _____ C:\Windows\system32\igcompkrng600.bin
2016-01-27 15:45 - 2011-04-17 13:28 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll
2016-01-27 15:45 - 2011-04-17 13:28 - 00000151 _____ C:\Windows\system32\GfxUI.exe.config
2016-01-27 15:45 - 2011-04-17 13:26 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2016-01-27 15:44 - 2016-01-29 09:59 - 00000021 _____ C:\Windows\Model.txt
2016-01-27 15:43 - 2016-02-01 07:58 - 00000000 ____D C:\ProgramData\Sony Corporation
2016-01-27 15:35 - 2016-01-29 18:54 - 00001409 _____ C:\Users\Stephan Blank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-01-27 15:34 - 2016-01-27 17:00 - 00000000 ____D C:\Users\Stephan Blank
2016-01-27 15:34 - 2016-01-27 15:34 - 00000020 ___SH C:\Users\Stephan Blank\ntuser.ini
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Vorlagen
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Startmen
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Netzwerkumgebung
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Lokale Einstellungen
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Eigene Dateien
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Druckumgebung
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Documents\Eigene Videos
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Documents\Eigene Musik
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Documents\Eigene Bilder
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\AppData\Local\Verlauf
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\AppData\Local\Anwendungsdaten
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Anwendungsdaten
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\VirtualStore
2016-01-27 15:34 - 2011-04-12 08:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Media Center Programs
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Startmen
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Programme
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Vorlagen
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Startmen
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Favoriten
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Dokumente
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Dokumente und Einstellungen
2016-01-27 15:29 - 2016-01-27 15:29 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-01-27 15:29 - 2016-01-27 15:29 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-01-27 15:25 - 2016-01-29 21:55 - 00000000 ____D C:\Windows\Panther
2016-01-27 15:25 - 2016-01-27 15:25 - 00008192 __RSH C:\BOOTSECT.BAK
2016-01-27 15:25 - 2010-11-21 04:23 - 00383786 __RSH C:\bootmgr

==================== Ein Monat: Genderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-01 13:06 - 2011-04-12 08:43 - 00698926 _____ C:\Windows\system32\perfh007.dat
2016-02-01 13:06 - 2011-04-12 08:43 - 00149034 _____ C:\Windows\system32\perfc007.dat
2016-02-01 13:06 - 2009-07-14 06:13 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-01 13:06 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-02-01 13:00 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-01 12:58 - 2009-07-14 05:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-02-01 12:58 - 2009-07-14 05:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-02-01 10:22 - 2009-07-14 05:45 - 00341880 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-01 09:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-02-01 09:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2016-01-30 12:07 - 2011-04-12 08:54 - 00000000 ____D C:\Windows\ShellNew
2016-01-30 12:07 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-01-29 19:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2016-01-29 19:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-01-29 19:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-01-29 19:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-01-29 18:38 - 2011-04-12 08:55 - 00000000 ____D C:\Program Files\Windows Journal
2016-01-29 18:38 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender
2016-01-29 18:38 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-01-29 18:38 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2016-01-29 11:02 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-01-29 10:33 - 2011-07-14 20:02 - 00000074 ____H C:\splash.idx
2016-01-27 16:04 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-01-27 15:33 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Windows NT
2016-01-27 15:32 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-01-27 15:29 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-01-27 15:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-01-27 15:25 - 2009-07-14 06:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template

Einige Dateien in TEMP:
====================
C:\Users\Stephan Blank\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix fr Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-01-27 15:25

==================== Ende von FRST.txt ============================
         
FRST Addition.txt:

Code:
ATTFilter
Zustzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:27-01-2016
durchgefhrt von Stephan Blank (2016-02-01 13:36:58)
Gestartet von C:\Users\Stephan Blank\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2016-01-27 14:33:58)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-726656456-2167350209-4180810081-500 - Administrator - Disabled)
Gast (S-1-5-21-726656456-2167350209-4180810081-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-726656456-2167350209-4180810081-1002 - Limited - Enabled)
Stephan Blank (S-1-5-21-726656456-2167350209-4180810081-1000 - Administrator - Enabled) => C:\Users\Stephan Blank

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Emsisoft Anti-Malware (Enabled - Up to date) {15510D9D-6530-DA29-224F-7BA1BDD1CB58}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {AE30EC79-430A-D5A7-18FF-40D3C65681E5}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" knnen in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

ATI Catalyst Install Manager (HKLM\...\{158BEEC4-CC30-BF2F-248D-B52AF953E9C1}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
ATI Stream SDK v2 Developer (HKLM\...\{22441735-5983-AD2A-5CC5-FA2CCD7EF732}) (Version: 2.3.0.0 - ATI Technologies Inc.)
AuthenTec TrueSuite (HKLM\...\{81B43AC9-B334-45D0-8D15-0A3642AFBDA1}) (Version: 4.0.100.16 - AuthenTec, Inc.)
BioEdit (HKLM-x32\...\{AF6D9313-E338-48F0-9B0C-7DE20EDB99CF}) (Version: 7.2.5.0 - Tom Hall)
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
Chromas Lite 2.1.1 (HKLM-x32\...\Chromas Lite) (Version: 2.1.1 - Technelysium Pty Ltd)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.3.0.118 - Foxit Software Inc.)
ImageMagick 6.7.5-7 Q16 (2012-03-01) (HKLM-x32\...\ImageMagick 6.7.5 Q16_is1) (Version: 6.7.5 - ImageMagick Studio LLC)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3086 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi-Software (HKLM\...\{1927E640-A2C6-4BA7-8F43-FFD2AE3DFCF3}) (Version: 14.0.2000 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Media Gallery (Version: 2.0.0.11150 - Sony Corporation) Hidden
MEGA6 .06 (HKLM-x32\...\{EE7E4984-0208-48E7-959C-A5F5F06F0DE0}_is1) (Version: .06 - Center for Evolutionary Medicine and Informatics)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools fr Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 44.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0 (x86 de)) (Version: 44.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0 - Mozilla)
Mozilla Thunderbird 38.5.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.5.1 (x86 de)) (Version: 38.5.1 - Mozilla)
Opera beta 35.0.2066.35 (HKLM-x32\...\Opera 35.0.2066.35) (Version: 35.0.2066.35 - Opera Software)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.2 - pdfforge)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Qualcomm Gobi 2000 Package for Sony (HKLM-x32\...\{C3081594-4B05-4FBD-A7C3-70DE2988C9B7}) (Version: 1.1.190 - QUALCOMM)
Quick Web Access (HKLM-x32\...\splashtop) (Version: 1.4.7.0 - Sony Corporation)
Quick Web Access (x32 Version: 1.4.7.0 - Sony Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.40.126.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6225 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.92 - Realtek Semiconductor Corp.)
Remote Keyboard (x32 Version: 1.1.1.07060 - Sony Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.34.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.34.0 - Renesas Electronics Corporation) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VAIO - Media Gallery - VAIO Personalization Manager Update (HKLM\...\{50A7190B-5DA6-4A51-B275-3D413E617BA6}) (Version: 4.2.5.07160 - Sony Corporation)
VAIO - Media Gallery (HKLM-x32\...\{DD696AF7-8A89-41D5-976A-2053E41A69BE}) (Version: 2.2.3.04170 - Sony Corporation)
VAIO - Remote-Tastatur  (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.1.0.07060 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.5.0.03040 - Sony Corporation)
VAIO Event Service (HKLM-x32\...\{73D8886A-D416-4687-B609-0D3836BA410C}) (Version: 5.5.0.03040 - Sony Corporation)
VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.5.0.03280 - Sony Corporation)
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VESx64 (Version: 1.0.0 - Sony Corporation) Hidden
VESx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSNx64 (Version: 1.0.0 - Sony Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.6300 - Broadcom Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {28A6D5EA-AFEA-437C-BA85-B41D8A22D92F} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {5CC7F33E-EB86-4364-9FFE-1F35F0FAA7DB} - System32\Tasks\Sony Corporation\VAIO Smart Network\VSN Logon Start => C:\Program Files\Sony\VAIO Smart Network\VSNClient
Task: {709772FF-881A-448D-BD37-2B8B0B2499B3} - System32\Tasks\Sony Corporation\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2011-02-14] (Sony Corporation)
Task: {81B17008-2DDD-4A99-A48A-E5D05E185864} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {83B6F012-ECE9-4ECF-BFC7-BAC5F764026A} - System32\Tasks\Sony Corporation\VAIO Boot Manager\VAIO Boot Manager => C:\Program Files (x86)\Sony\VAIO Boot Manager\SetProcessTask.exe [2011-05-26] (Sony Corporation)
Task: {8BCC7669-778A-4135-AFDF-32F44E8F4808} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
Task: {9AA85A17-88AC-42A6-BD77-00F417D6C277} - System32\Tasks\{C689FB4B-0AE2-4AEE-B354-AB4CF4315EDC} => pcalua.exe -a "C:\Users\Stephan Blank\AppData\Local\Temp\Temp1_IFAOTH-00231600-0042.zip\IFAOTH-00231600-0042.EXE"
Task: {A1C995D5-CC3F-411E-B8DB-72AFBD370A24} - System32\Tasks\Opera scheduled Autoupdate 1453909801 => C:\Program Files (x86)\Opera beta\launcher.exe [2016-01-25] (Opera Software)
Task: {BD58A529-807E-4C88-A078-9954813899E5} - System32\Tasks\Sony Corporation\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2011-02-14] (Sony Corporation)
Task: {D8E80A45-2FB1-43E9-BE12-4D456480E897} - System32\Tasks\Sony Corporation\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2011-02-14] (Sony Corporation)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknpfungen =============================

(Die Eintrge knnen gelistet werden, um sie zurckzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2011-01-05 12:53 - 2011-01-05 12:53 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2016-01-27 15:45 - 2011-04-17 13:28 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-12-01 12:27 - 2011-12-01 12:27 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-12-22 01:53 - 2011-12-22 01:53 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-01-05 12:53 - 2011-01-05 12:53 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2016-01-27 17:43 - 2011-03-05 16:42 - 00013824 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll
2016-01-29 19:12 - 2016-01-29 19:12 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\93182e9779b8be0f688fd0784df6d7fb\IsdiInterop.ni.dll
2016-01-27 16:52 - 2010-11-05 23:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurckgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswrdig/Eingeschrnkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn bentigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurckzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix fr diesen Bereich.)

HKU\S-1-5-21-726656456-2167350209-4180810081-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Stephan Blank\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Eintrge ==

(Aktuell gibt es keinen automatisierten Fix fr diesen Bereich.)

MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{844EC904-9940-4991-8DE2-3A494376F659}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{210A497C-CD47-4EAB-ABED-4C88D3AC2356}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{9CD8EF54-5902-4084-B8B7-23E25071574F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Wiederherstellungspunkte =========================

29-01-2016 19:39:15 Windows Update
29-01-2016 20:29:37 Windows Update
29-01-2016 22:01:42 Installed BioEdit
29-01-2016 22:09:16 Entfernt Xperia Link
30-01-2016 10:50:09 Entfernt VAIO Care
30-01-2016 12:05:32 Installed Microsoft Office Home and Student 2010
31-01-2016 18:39:20 Windows Update
01-02-2016 07:58:34 Entfernt VAIO Update
01-02-2016 07:59:27 Removed VAIO Care.
01-02-2016 09:22:35 Windows Update
01-02-2016 09:55:23 Windows Update
01-02-2016 10:51:37 Installed PDF Architect 4 View Module
01-02-2016 10:52:10 Installed PDF Architect 4 Edit Module
01-02-2016 10:53:22 Installed PDF Architect 4 Create Module
01-02-2016 10:54:59 Installed Manager

==================== Fehlerhafte Gerte im Gertemanager =============


==================== Fehlereintrge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (02/01/2016 01:02:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/01/2016 11:04:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/01/2016 10:54:47 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: StephanBlank-PC)
Description: Die Anwendung oder der Dienst "Emsisoft Protection Service" konnte nicht heruntergefahren werden.

Error: (02/01/2016 10:54:47 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: StephanBlank-PC)
Description: Die Anwendung oder der Dienst "PDF Architect 4 Creator" konnte nicht neu gestartet werden.

Error: (02/01/2016 10:53:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm PDFCreator-2_2_2-setup.tmp, Version 51.52.0.0 kann nicht mehr unter Windows ausgefhrt werden und wurde beendet. berprfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 10b4

Startzeit: 01d15cd5b55c8e87

Endzeit: 7

Anwendungspfad: C:\Users\STEPHA~1\AppData\Local\Temp\is-59TFA.tmp\PDFCreator-2_2_2-setup.tmp

Berichts-ID:

Error: (02/01/2016 10:37:59 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/01/2016 10:25:34 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/01/2016 09:44:41 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/01/2016 09:40:41 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/01/2016 09:34:06 AM) (Source: MsiInstaller) (EventID: 11935) (User: StephanBlank-PC)
Description: Product: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 -- Error 1935.An error occurred during the installation of assembly 'Microsoft.VC90.ATL,version="9.0.30729.6161",publicKeyToken="1fc8b3b9a1e18e3b",processorArchitecture="amd64",type="win32"'. Please refer to Help and Support for more information. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, component: {74C57B6B-FF6E-3825-BED2-78E14E3E0E3C}


Systemfehler:
=============
Error: (02/01/2016 12:58:36 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (02/01/2016 11:02:26 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\System32\IWMSSvc.dll
Fehlercode: 87

Error: (02/01/2016 11:00:47 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\IWMSSvc.dll

Error: (02/01/2016 11:00:47 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\IWMSSvc.dll

Error: (02/01/2016 11:00:47 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\IWMSSvc.dll

Error: (02/01/2016 11:00:44 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\IWMSSvc.dll

Error: (02/01/2016 11:00:26 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmanahmen (Neustart des Diensts) durchzufhren, ist fehlgeschlagen. Fehler: 
%%1056

Error: (02/01/2016 10:59:57 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Office  Source Engine" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (02/01/2016 10:59:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmanahmen werden in 120000 Millisekunden durchgefhrt: Neustart des Diensts.

Error: (02/01/2016 10:59:57 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Office Software Protection Platform" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz
Prozentuale Nutzung des RAM: 26%
Installierter physikalischer RAM: 8107.86 MB
Verfgbarer physikalischer RAM: 5967.95 MB
Summe virtueller Speicher: 16213.93 MB
Verfgbarer virtueller Speicher: 13586.86 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:465.76 GB) (Free:349.15 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 000796F5)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

Alt 01.02.2016, 15:10   #5
Bennie
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Das Emisoft log sieht irgendwie komisch aus. Habe es versucht mit dem Editor zu ffnen:

Emisoft Teil 1:

Code:
ATTFilter
SQLite format 3   @    3                                                           3 -
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          ktableRMACListRMACListCREATE TABLE RMACList(
	ID INTEGER PRIMARY KEY,
	Date INTEGER,
	StrDate TEXT,
	Request INTEGER,
	MAC TEXT)e##ƒtableDBIntegrityDBIntegrityCREATE TABLE DBIntegrity(
	ID INTEGER PRIMARY KEY,
	TableName TEXT,
	Revision INTEGER NOT NULL DEFAULT 1,
	RecordsLimit INTEGER NOT NUL                        

         
    •r^E+                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            QLogs,
 QObjects, +	USessionDetails, +USessionUpdates,
 +	USessionModules,	 URequests,
 	ULogs, !	SystemLogs,
 	ILogs, ScanLogs, IDSLogs,
 	RLogs, 	RMACList, #DBIntegrity,
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
    -  - )                            e##ƒtableDBIntegrityDBIntegrityCREATE TABLE DBIntegrity(
	ID INTEGER PRIMARY KEY,
	TableName TEXT,
	Revision INTEGER NOT NULL DEFAULT 1,
	RecordsLimit INTEGER NOT NULL DEFAULT 300,
	LastSentID INTEGER NOT NULL DEFAULT 0)ktableRMACListRMACListCREATE TABLE RMACList(
	ID INTEGER PRIMARY KEY,
	Date INTEGER,
	StrDate TEXT,
	Request INTEGER,
	MAC TEXT)„Y5ˆktriggerRMACList_AfterInsertRMACListCREATE TRIGGER RMACList_AfterInsert AFTER INSERT ON RMACList
BEGIN
	UPDATE RMACList SET Date = CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 
		StrDate = DateTime(CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 'unixepoch')
		WHERE ROWID = New.ROWID;

	DELETE FROM RMACList WHERE ID <= CASE WHEN (SELECT RecordsLimit FROM DBIntegrity WHERE TableName = 'RMACList') = 0 THEN 0
		ELSE New.ID - (SELECT RecordsLimit FROM DBIntegrity WHERE TableName='RMACList') END;
END
   P ”(P                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                j
 3]+!VE|2016-02-01 11:46:048E9F6CFF3B06BCB7FE16CA302F18B84233005AD1STEPHANBLANK-PC VC1456500419j
 3]+!V2016-01-27 16:43:168E9F6CFF3B06BCB7FE16CA302F18B84233005AD1STEPHANBLANK-PC VC1456500419j
 3]+!V„2016-01-27 16:38:288E9F6CFF3B06BCB7FE16CA302F18B84233005AD1STEPHANBLANK-PC VC1456500419j
 3]+!V2016-01-27 16:27:018E9F6CFF3B06BCB7FE16CA302F18B84233005AD1STEPHANBLANK-PC VC1456500419
    .  . 3                                >‚[tableRLogsRLogsCREATE TABLE RLogs(
	ID INTEGER PRIMARY KEY,
	Date INTEGER,
	StrDate TEXT,
	MKey TEXT,
	MName TEXT,
	LID INTEGER,
	Model INTEGER,
	Starts INTEGER,
	Ends TEXT)„A/ˆGtriggerRLogs_AfterInsertRLogsCREATE TRIGGER RLogs_AfterInsert AFTER INSERT ON RLogs
BEGIN
	UPDATE RLogs SET Date = CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 
		StrDate = DateTime(CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 'unixepoch')
		WHERE ROWID = New.ROWID;

	DELETE FROM RLogs WHERE ID <= CASE WHEN (SELECT RecordsLimit FROM DBIntegrity WHERE TableName = 'RLogs') = 0 THEN 0
		ELSE New.ID - (SELECT RecordsLimit FROM DBIntegrity WHERE TableName='RLogs') END;
ENDJ‚ktableIDSLogsIDSLogsCREATE TABLE IDSLogs(
	ID INTEGER PRIMARY KEY,
	Date INTEGER,
	StrDate TEXT,
	Event INTEGER,
	FileName TEXT,
	PID INTEGER,
	Infection INTEGER,
	Info TEXT,
	Unic TEXT)       Ÿ™“                                            i	 3

VX2016-01-27 17:07:36!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
8i 3

V72016-01-27 17:02:47!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
<X
 3w

V22016-01-27 16:58:26 C:\Users\Stephan Blank\AppData\Local\Temp\GLBFC48.tmpc
 3w
V22016-01-27 16:58:26C:\Users\Stephan Blank\AppData\Local\Temp\GLBFC48.tmpID_INJECTi 3

V'2016-01-27 16:58:15!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exedX
 3w

V2016-01-27 16:52:27 C:\Users\Stephan Blank\AppData\Local\Temp\GLBA340.tmpc
 3w
V2016-01-27 16:52:27C:\Users\Stephan Blank\AppData\Local\Temp\GLBA340.tmpID_INJECTg 3

V2016-01-27 16:44:14 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exer   $         ܁   ΁   ,~   *v   m   e   '^   *X   S   –N   “F   …?   †7   t0   ‘+   ’#   .   u   "	
                                                                                                                                                                                              „Q3ˆ_triggerIDSLogs_AfterInsertIDSLogsCREATE TRIGGER IDSLogs_AfterInsert AFTER INSERT ON IDSLogs
BEGIN
	UPDATE IDSLogs SET Date = CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 
		StrDate = DateTime(CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 'unixepoch')
		WHERE ROWID = New.ROWID;

	DELETE FROM IDSLogs WHERE ID <= CASE WHEN (SELECT RecordsLimit FROM DBIntegrity WHERE TableName = 'IDSLogs') = 0 THEN 0
		ELSE New.ID - (SELECT RecordsLimit FROM DBIntegrity WHERE TableName='IDSLogs') END;
ENDeƒtableScanLogsScanLogs	CREATE TABLE ScanLogs(
	ID INTEGER PRIMARY KEY,
	ScanDate INTEGER,
	StrScanDate TEXT,
	Method INTEGER,
	CountObj INTEGER,
	FoundObj INTEGER,
	Duration TEXT,
	FileName TEXT,
	ScanType INTEGER)
    œ8o                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            _
 3	yVg01.02.2016 14:12:130:00:00C:\ProgramData\Emsisoft\Reports\scan_160201-141213.txtc
 3yVC01.02.2016 11:39:39c1:12:41C:\ProgramData\Emsisoft\Reports\scan_160201-113939.txtb
 3yV
01.02.2016 08:32:13 0:00:19C:\ProgramData\Emsisoft\Reports\scan_160201-083213.txtb
 3yVN01.02.2016 08:24:460:04:04C:\ProgramData\Emsisoft\Reports\scan_160201-082446.txtb
 3yV27.01.2016 16:44:560:02:36C:\ProgramData\Emsisoft\Reports\scan_160127-164456.txt
                                                                                                                                                                                                                 r
ƒCtableILogsILogsCREATE TABLE ILogs(
	ID INTEGER PRIMARY KEY,
	Name TEXT,
	Location TEXT,
	FileSize INTEGER,
	Date INTEGER,
	StrDate TEXT,
	InfectionType INTEGER,
	RiskLevel INTEGER,
	Action INTEGER,
	Source TEXT,‚F	5„EtriggerScanLogs_AfterInsertScanLogsCREATE TRIGGER ScanLogs_AfterInsert AFTER INSERT ON ScanLogs
BEGIN
	DELETE FROM ScanLogs WHERE ID <= CASE WHEN (SELECT RecordsLimit FROM DBIntegrity WHERE TableName = 'ScanLogs') = 0 THEN 0
		ELSE New.ID - (SELECT RecordsLimit FROM DBIntegrity WHERE TableName='ScanLogs') END;
ENDr
ƒCtableILogsILogsCREATE TABLE ILogs(
	ID INTEGER PRIMARY KEY,
	Name TEXT,
	Location TEXT,
	FileSize INTEGER,
	Date INTEGER,
	StrDate TEXT,
	InfectionType INTEGER,
	RiskLevel INTEGER,
	Action INTEGER,
	Source TEXT,
	Unic TEXT)       ‡                                                                                                                                                                                                                                                                                                                                                                                       .
 M3YApplication.Win32.InstallMon (A)C:\Users\Stephan Blank\AppData\Local\Temp\is-IODIM.tmp\CBStub.exeVHw2016-02-01 11:58:470{5D45B385-3A50-40E4-A9D8-38017937BC2D} ?_3YApplication.InstallAd (A)Key: HKEY_LOCAL_MACHINE\SOFTWARE\PDFFORGEVD2016-02-01 11:40:060{D5F191C2-651C-4733-B86A-A9FFCD4E1604}5
 ?+3YApplication.InstallAd (A)Key: HKEY_USERS\S-1-5-21-726656456-2167350209-4180810081-1000\SOFTWARE\PDFFORGEVD2016-02-01 11:40:060{77B85EAA-63AA-473A-B0A9-6F27FEE9AB87}} A;3YApplication.AppInstall (A)C:\ProgramData\pdfforgeVD2016-02-01 11:40:040{A8E2108B-8563-45B1-86A2-25668761   x
    ˆ  ˆ                                                                                                                            „A/ˆGtriggerILogs_AfterInsertILogsCREATE TRIGGER ILogs_AfterInsert AFTER INSERT ON ILogs
BEGIN
	UPDATE ILogs SET Date = CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 
		StrDate = DateTime(CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 'unixepoch')
		WHERE ROWID = New.ROWID;

	DELETE FROM ILogs WHERE ID <= CASE WHEN (SELECT RecordsLimit FROM DBIntegrity WHERE TableName = 'ILogs') = 0 THEN 0
		ELSE New.ID - (SELECT RecordsLimit FROM DBIntegrity WHERE TableName='ILogs') END;
END‚1!!„-tableSystemLogsSystemLogs
CREATE TABLE SystemLogs(
	ID INTEGER PRIMARY KEY,
	Event TEXT,
	Type INTEGER DEFAULT 0,
	Date INTEGER,
	Details TEXT,
	Source INTEGER,
	StrDate TEXT,
	InfectionName TEXT,
	Location TEXT,
	InfectionType INTEGER,
	RiskLevel INTEGER,
	Action INTEGER,
	Unic TEXT)       Y&W                                                                                                                            
   3A;YVD2016-02-01 11:40:04Application.AppInstall (A)C:\ProgramData\pdfforge{A8E2108B-8563-45B1-86A2-25668761764C}7 1
3      Scanning traces...VD2016-02-01 11:40:037 1
3      Scanning memory...VD2016-02-01 11:39:55N
 _
3      Scanning system folder 'CSIDL_DRIVERS'...VC2016-02-01 11:39:40D	 K
3      Scanning master boot records...VC2016-02-01 11:39:391 %
3      Scan startedVC2016-02-01 11:39:392 '
3      Scan finishedV2016-01-27 16:47:316 /
3      Scanning files...V%2016-01-27 16:45:257 1
3      Scanning traces...V!2016-01-27 16:45:217 1
3      Scanning memory...V2016-01-27 16:45:16N _
3      Scanning system folder 'CSIDL_DRIVERS'...V	2016-01-27 16:44:57D K
3      Scanning master boot records...V2016-01-27 16:44:561 %
3      Scan startedV2016         |

      ?                                                                                                                                                                                                       „i
9!‰triggerSystemLogs_AfterInsertSystemLogsCREATE TRIGGER SystemLogs_AfterInsert AFTER INSERT ON SystemLogs
BEGIN
	UPDATE SystemLogs SET Date = CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 
		StrDate = DateTime(CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 'unixepoch')
		WHERE ROWID = New.ROWID;

	DELETE FROM SystemLogs WHERE ID <= CASE WHEN (SELECT RecordsLimit FROM DBIntegrity WHERE TableName = 'SystemLogs') = 0 THEN 0
		ELSE New.ID - (SELECT RecordsLimit FROM DBIntegrity WHERE TableName='SystemLogs') END;
END>‚[tableULogsULogsCREATE TABLE ULogs(
	ID INTEGER PRIMARY KEY,
	AutoUpdate INTEGER,
	Started INTEGER,
	Finished INTEGER,
	FilesCount INTEGER,
	TotalSize INTEGER,
	Result INTEGER)
   "- zdP:%‘ƒmYE/—mYC-                                                                                                                                                                                                                                 " 		Va”Va›ž! 		VS…VS”
tz  			VEpVE— 			V7XV7^ 		V)FV)S%
 			V‚Vˆ 		VvVg'j= 		V~3V~6{ 		Vp#Vp'S 		VbVbG 		VTVT} to 		VV4G 		V“šV”	i
  			VV› 			VϱVϸ 		VV–
 	Vz 			VV" 		V–V–> 		Vˆ›Vˆ
@ 		Vz‹VzŽ=u
 		VlzVl„ 			V^ZV^aS 		VP6VP>L
 		VB%VB/G	 		V4V4*K 			VŽqVŽvh 		V€kV€(Ž 		VMVTi 		VV) Œ3“ 		VV* VV 	V…V ™i 	VVm	‘
      ?                                                                                                                                                                                             ‚;1„9triggerULogs_BeforeDeleteULogsCREATE TRIGGER ULogs_BeforeDelete BEFORE DELETE ON ULogs
BEGIN
	DELETE FROM URequests WHERE SessionID=old.ID;
	DELETE FROM USessionDetails WHERE SessionID=old.ID;
	DELETE FROM USessionModules WHERE SessionID=old.ID;
	DELETE FROM USessionUpdates WHERE SessionID=old.ID;
END‚1/„'triggerULogs_AfterInsertULogsCREATE TRIGGER ULogs_AfterInsert AFTER INSERT ON ULogs
BEGIN
	DELETE FROM ULogs WHERE ID <= CASE WHEN (SELECT RecordsLimit FROM DBIntegrity WHERE TableName = 'ULogs') = 0 THEN 0
		ELSE New.ID - (SELECT RecordsLimit FROM DBIntegrity WHERE TableName='ULogs') END;
END>‚KtableURequestsURequestsCREATE TABLE URequests(
	ID INTEGER PRIMARY KEY,
	Date INTEGER,
	StrDate TEXT,
	SessionID INTEGER,
	URL TEXT,
	ResponseCode INTEGER,
	ResponseText TEXT)   
                                                                                                                                                                                                                                           ‚	 3ƒO+V2016-01-27 16:43:18https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=01988EB07AE6E7484D5248C440118B77181843DD&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601 HTTP/1.1 200 OK‚	 3ƒE+V†2016-01-27 16:38:30https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey2=CE1CB68B39E36531994A081E618EAF8DD99358C5&version=10.0.0.5735&beta=0&lng=de-de&os=64_6.1.7601 HTTP/1.1 200 OKO	 3	‚I+V2016-01-27 16:27:11https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&ver      —      s         (   	   -   #
    0  0”7                                  „a7ˆwtriggerURequests_AfterInsertURequestsCREATE TRIGGER URequests_AfterInsert AFTER INSERT ON URequests
BEGIN
	UPDATE URequests SET Date = CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 
		StrDate = DateTime(CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 'unixepoch')
		WHERE ROWID = New.ROWID;

	DELETE FROM URequests WHERE ID <= CASE WHEN (SELECT RecordsLimit FROM DBIntegrity WHERE TableName = 'URequests') = 0 THEN 0
		ELSE New.ID - (SELECT RecordsLimit FROM DBIntegrity WHERE TableName='URequests') END;
END ++wtableUSessionModulesUSessionModulesCREATE TABLE USessionModules(
	ID INTEGER PRIMARY KEY,
	SessionID INTEGER,
	Name TEXT,
	Version TEXT,
	MD5 TEXT)F++‚CtableUSessionUpdatesUSessionUpdatesCREATE TABLE USessionUpdates(
	ID INTEGER PRIMARY KEY,
	SessionID INTEGER,
	URL TEXT,
	Path TEXT,
	Name TEXT,
	Size INTEGER,
	MD5 TEXT,
	Desc TEXT)       ‚B  ‡ G  < 	##Ma2start.exe10.0.0.56417> %#Ma2update.dll11.0.0.60543e1f18692892130e3224a89f18fa62229 #Ma2toast.dll1.0.0.1d163b6fdc0bff94ca8fc8cc0fc95e21e=
 ##Ma2start.exe11.0.0.6054cc7fb7497a0da95e59fce2f1615130f8? '#Ma2service.exe11.0.0.6054a0701f64ebbbcf8acca449d60b4bd0a6> '!Ma2hooks64.dll10.0.0.175b76b750785886b5826227f2f6e753fc1>
 '!Ma2hooks32.dll10.0.0.175b13acb7f54bf15c21d16f9069d502b32=	 ##Ma2guard.exe11.0.0.6054515522d22189a1bfeca44eac09ce3fa4A +#Ma2framework.dll11.0.0.6054ce0ac1ba2b32cbc7ef3c8958701903dc< %Ma2engine.dll3.5.0.65543ee55e59d78c6dee999f78e41c2d4a7= %!Ma2core64.dll10.0.0.1566a5bce7cda3b2473693065ecd54d5872= %!Ma2core32.dll10.0.0.1658b9119a77c53dfe213443e41b4698603; !!Ma2core.dll10.0.0.17530e575e75ec254422e2c4847c6b56460B -#Ma2contmenu64.dll11.0.0.58388fa8a2086b4dd70bd4d01b960af4206b@ )#Ma2contmenu.dll11.0.0.583887906792504a026387c11076836c5d9f; #Ma2cmd.exe11.0.0.6054     $ƒ~   „+   „   „
   !ƒr2   z*€’,&                   
 	)5M
hxxp://dl.emsisoft.com/updates/7A15CE78BE66E0BB3E8C1AC3D990B115.zip.data2contmenu.dllProtection Componento7A15CE78BE66E0BB3E8C1AC3D990B115
 	-AM
hxxp://dl.emsisoft.com/updates/CDECBEC73B9681E13AB06ECA3AB8606A.zip.data2cmd_readme.txtCommandline Scanner ReadmeCDECBEC73B9681E13AB06ECA3AB8606A
 	5M
hxxp://dl.emsisoft.com/updates/C7BCEC4AB12D899D887EB1B8B0B2429C.zip.data2cmd.exeProtection Component/C7BCEC4AB12D899D887EB1B8B0B2429C
 	/M
hxxp://dl.emsisoft.com/updates/AD28DE267AE7980010206CEA495F0AE0.zip.data2acc.dllFile guard module AD28DE267AE7980010206CEA495F0AE0
 	5    „(     ”b  
—J  —D  —>   —8   —2   —,   —&   —    —   —   —† H–   <•~   6•x   0•r   *•l   $•f   •`   •Z   •T   •N    –    –   –  
–v˜ –   –
   –|   –   –4   –.   –(    –"   —  	–p  –j  –d  –^  –X   –R   –L   –F   –@   –:   —       )QJC<5.' ›”†xqjc\UNG@92+$*Ÿ˜‘Šƒ|ung`YRKD=6/(!   ž—‰‚{tyxwvutsrqponmlkjihgfedcba`_^]\[ZYXWVUTSRQPONMLKJIHGFEDCBA@?>=<;:9876543210/.-,+*)('&%$#"! Œ‹Š‰ˆ‡†…„ƒ‚€~   )!o   &!a
    ‘pœ6                                                                                                                                                                                                                                                                    y?+indexUSessionUpdates_SessionIDUSessionUpdatesCREATE INDEX USessionUpdates_SessionID ON USessionUpdates(SessionID)\++‚otableUSessionDetailsUSessionDetailsCREATE TABLE USessionDetails(
	ID INTEGER PRIMARY KEY,
	SessionID INTEGER,
	Path TEXT,
	Size INTEGER,
	MD5 TEXT,
	Description TEXT,
	Downloaded INTEGER,
	Copyed INTEGER)‚)„%tableQObjectsQObjectsCREATE TABLE QObjects(
	ID INTEGER PRIMARY KEY,
	Name TEXT,
	Location TEXT,
	FileSize INTEGER,
	InfectionType TEXT,
	RiskLevel INTEGER,
	Quarantined INTEGER,
	Submitted INTEGER,
	Restored INTEGER,
	Removed INTEGER,
	SHA1 TEXT,
	Status INTEGER,
	Unic TEXT)b'
indexQObjects_SHA1QObjectsCREATE UNIQUE INDEX QObjects_SHA1 ON QObjects(SHA1, Quarantined)       zœ–Š„~xrlf`ZTNHB<60*$ *š”Žˆ‚|vpjd^XRLF@:4.("
ž˜’Œ†€ztnhb\VPJD>82,& 5019            Œt   Œg   ŒZ   ŒM   Œ@   Œ3   Œ&   }Œ   Œ   ‹   ƒ‹r   ‹e   ‹X   ‹K   ˜‹>   ‹1   ‹$   r‹   ‹
   %Š|   vŠo   Ša   ŠT   ŠF   {Š8   Š+   Š   Š   Š   ‰w   ‰j   ”‰\   ‚‰O   „‰B   ‰5   ™‰(   š‰   ›‰   œ‰   žˆt   Ÿˆg   *ˆZ   ˆM   ˆ@   +ˆ3   •ˆ&   wˆ   ˆ
   ‡|   Ž‡n   ‡`   Œ‡R   ‹‡D   Š‡6   ‰‡)   ˆ‡   ‡‡   q†|   p†l   o†^   n†P   m†B   l†5   k†(   j†   i†   h†   g…t   f…g   e…Z   d…M   c…@   b…3   a…&   `…   _…   ^„   ]„r   \„e   [„X   Z„K   Y„>   X„1   W„$   V„   U„
   Tƒ}   Sƒp   Rƒc   QƒV   PƒI   Oƒ<   Nƒ/   Mƒ"   Lƒ   Kƒ   J‚{   I‚n   H‚a   G‚T   F‚G   E‚:   D‚-   C‚    B‚   A‚   @y   ?l   >_   =R   <E   ;8   :+   9   8   7   6u   5g   4Y   3K   2=   1/   0   y†^
     3‡                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    ?_   	YApplication.InstallAd (A)Key: HKEY_LOCAL_MACHINE\SOFTWARE\PDFFORGE7VUPDFFORGE{D5F191C2-651C-4733-B86A-A9FFCD4E1604}) M   !	YApplication.Win32.InstallMon (A)C:\Users\Stephan Blank\AppData\Local\Temp\is-IODIM.tmp\CBStub.exe 
1VUCBSTUB.EXE{5D45B385-3A50-40E4-A9D8-38017937BC2D}J Ea   	YTrojan.GenericKD.2180047 (B)C:\Users\Stephan Blank\AppData\Roaming\Thunderbird\Profiles\erw0eykj.default\ImapMail\imap.gmx-1.net\INBOXΐŸ1VUINBOX{FF6F1CCB-26A0-4D79-8D03-868B2517DA6E}
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  PDFFORGEVU!CBSTUB.EXEVU
	INBOXVU
   : :9
         


Alt 01.02.2016, 15:12   #6
cosinus
/// Winkelfunktion
/// TB-Sch-Tiger™
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Welche Elemente sind denn in der Q von Emsi?
__________________
--> Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)

Alt 01.02.2016, 15:14   #7
Bennie
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Mit dem SQLite hatte ich es auch probiert zu lesen. Das ging irgendwie auch nicht.

Hier Teil 2:

Code:
ATTFilter
BEGIN
	INSERT INTO QLogs(ObjectID, Date, Event)
	ƒ;…7triggerQObjects_UpdateOfStatusQObjectsCREATE TRIGGER QObjects_UpdateOfStatus UPDATE OF Status ON QObjects  WHEN New.Status IN (2, 3, 11)
BEGIN
	INSERT INTO QLogs(ObjectID, Date, Event)
	VALUES(New.ID, CASE WHEN New.Restored IS NOT NULL THEN New.Restored ELSE New.Removed END,
		CASE WHEN New.Status = 3 THEN 8 WHEN New.Status = 2 THEN 9 WHEN New.Status = 11 THEN 7 END);
END‚>1„9triggerQObjects_UpdateOfRQObjectsCREATE TRIGGER QObjects_UpdateOfR UPDATE OF Restored, Removed ON QObjects
BEGIN
	INSERT INTO QLogs(ObjectID, Date, Event)
	VALUES(New.ID, CASE WHEN New.Restored IS NOT NULL THEN New.Restored ELSE New.Removed END,
		CASE WHEN New.Restored IS NOT NULL THEN 4 ELSE 5 END);
END
   k k2t                                                                                                                                                                                                                                                                                                                                                             D1‚EtriggerQObjects_UpdateOfSQObjectsCREATE TRIGGER QObjects_UpdateOfS UPDATE OF Submitted ON QObjects
BEGIN
	INSERT INTO QLogs(ObjectID, Date, Event)
	VALUES(New.ID, New.Submitted, 6);
END‚?5„7triggerQObjects_AfterInsertQObjectsCREATE TRIGGER QObjects_AfterInsert AFTER INSERT ON QObjects
BEGIN
	INSERT INTO QLogs(ObjectID, Date, Event)
	VALUES(New.ID, New.Quarantined, CASE WHEN New.Status = 3 THEN 8 WHEN New.Status = 2 THEN 9 WHEN New.Status = 11 THEN 7 WHEN New.Status = 12 THEN 3 ELSE 2 END);
END	qtableQLogsQLogsCREATE TABLE QLogs(
	ID INTEGER PRIMARY KEY,
	ObjectID INTEGER,
	Date INTEGER,
	StrDate TEXT,
	Event INTEGER)
   ž ž                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 3VU2016-02-01 12:56:23 3VU2016-02-01 12:56:23 	3VU2016-02-01 12:56:23
   ^ ^                                                                                                                                                                                                                                                                                                                                                  \#indexQLogs_EventQLogsCREATE UNIQUE INDEX QLogs_Event ON QLogs(ObjectID, Date, Event)„A/ˆGtriggerQLogs_AfterInsertQLogsCREATE TRIGGER QLogs_AfterInsert AFTER INSERT ON QLogs
BEGIN
	UPDATE QLogs SET Date = CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 
		StrDate = DateTime(CASE WHEN New.Date IS NOT NULL THEN New.Date ELSE StrFTime('%s', 'now', 'localtime') END, 'unixepoch')
		WHERE ROWID = New.ROWID;

	DELETE FROM QLogs WHERE ID <= CASE WHEN (SELECT RecordsLimit FROM DBIntegrity WHERE TableName = 'QLogs') = 0 THEN 0
		ELSE New.ID - (SELECT RecordsLimit FROM DBIntegrity WHERE TableName='QLogs') END;
END
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 VUVU
		VU
    kD €                    !
 	'MM
hxxp://dl.emsisoft.(•P–
 31M
 hxxp://dl.emsisoft.com/updates/4586B2–
 1M
!hxxp://dl.emsisoft.com/updates/1B7E8621C2E9FEF46AFE17324C6DAF44.zip.dat70x70.pngSoftware Component
1B7E8621C2E9FEF46AFE17324C6DA–
 -1M
!hxxp://dl.emsisoft.com/updates/8FA8A2086B4DD70BD4D01B960AF4206B.zip.data2contmenu64.dllSoftware Component‰8FA8A2086B4DD70BD4D01B960AF4206B–
 )1M
!hxxp://dl.emsisoft.com/updates/87906792504A026387C11076836C5D9F.zip.data2contmenu.dllSoftware Componento87906792504A026387C11076836C5D9F–
 1M
!hxxp://dl.emsisoft.com/updates/22A7D9270D5D0450FF34E07133977F46.zip.data2cmd.exeSoftware Component#22A7D9270D5D0450FF34E07133977F46–
 1M
!hxxp://dl.emsisoft.com/updates/1B7E8621C2E9FEF46AFE17324C6DAF44.zip.dat70x70.pngSoftware Component
1B7E8621C2E9FEF46AFE17324C6DAF44–
 #1M
!hxxp://dl.emsisoft.com/updates/0C341B1D91C9EA09A16CEFE680FC7409.zip.dat150x150.pngSoftware Component0C341B1D91C9EA09A16CEFE680FC7409
  7k                                                            –

 31M
 hxxp://dl.emsisoft.com/updates/1499D8F06E20CDFEC398BEB18C551339.zip.datLanguages\th-th.lngSoftware Component‘1499D8F06E20CDFEC398BEB18C551339–	
 –
 %1M
 hxxp://dl.ems–
 –
 1M
!hxxp://dl.emsisoft.com/updates/22A7D9270D5D0450FF34E07133977F46.zip.data2cmd.exeSoftware Component#22A7D9270D5D0450FF3–"
 +1M
!hxxp://dl.emsisoft.com/updates/CE0AC1BA2B32CBC7EF3C8958701903DC.zip.data2framework.dllSoftware Component.CE0AC1BA2B32CBC7EF3C8958701903DC–
 !1M
!hxxp://dl.emsisoft.com/updates/30E575E75EC254422E2C4847C6B56460.zip.data2core.dllSoftware Component™c30E575E75EC254422E2C4847C6B56460   
 –!
 %1M
!hxxp://dl.emsisoft.com/updates/43EE55E59D78C6DEE999F78E41C2D4A7.zip.data2engine.dllSoftware Component243EE55E59D78C6DEE999F78E41C2D4A7– 
 #1M
!hxxp://dl.emsisoft.com/updates/CC304CA0D486CC242EAAC3EA79146FBE.zip.data2dix64.sysSoftware ComponentDCC304CA0D486CC242EAAC3EA79146FBE
    w9C€€€€€  3             >ƒ3 %#Ma2update.dll11.0.0.60543e1f18692892130e3224a89f18fa6222;  #Ma=ƒD ##Mlogging.dll11.0.0.60549bcab6d5e5c21d95568ed61b=ƒT ##M a2start.exe11.0.0.;ƒk #M!a2cmd.exe11.0.0.605422a7d9270d5d0450ff34e07133977f46 ( )!M fwhelper64.dll1.0.0.10127c6a23;ƒn !!M!a2core.dll10.0.0.17530e575e75ec254422e2c4847c6b56460Bƒm -#M!a2contmenu64.dll11.0.0.58388fa8a2086b4dd70bd4d01b960af4206b@ƒl )#M!a2contmenu.dll11.0.0.583887906792504a026387c11076836c5d9fƒ  %#M resource.dll11.0.0.6054d56bb9f9fe271a57cc7d8967798e7a05   @ ##M logging.dll11.0.0.60549bcab6d5e5c21d95568ed61bea4ef4dcAƒr +#M!a2framework.dll11.0.0.6054ce0ac1ba2b32cbc7ef3c8958701903dc<ƒq %M!a2engine.dll3.5.0.65543ee55e59d78c6dee999f78e41c2d4a7=ƒp %!M!a2core64.dll10.0.0.1566a5bce7cda3b2473693065ecd54d5872=ƒo %!M!a2core32.dll10.0.0.1658b9119a77c53dfe213443e41b4698603   } %#M unins000.exe51.1052.0.0dd103d73a5d7f0d5617bd8a64dca8108   < %M ssleay32.dll1.0.2d9a568daf3bdc5a0f83429a5196fc7ac9
   	 d Œ#d”:  d                                                                          i	 3

VX2016-01-27 17:07:36!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
8i 3

V72016-01-27 17:02:47!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
<X
 3w

V22016-01-27 16:58:26 C:\Users\Stephan Blank\AppData\Local\Temp\GLBFC48.tmpc
 3w
V22016-01-27 16:58:26C:\Users\Stephan Blank\AppData\Local\Temp\GLBFC48.tmpID_INJECTi 3

V'2016-01-27 16:58:15!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exedX
 3w

V2016-01-27 16:52:27 C:\Users\Stephan Blank\AppData\Local\Temp\GLBA340.tmpc
 3w
V2016-01-27 16:52:27C:\Users\Stephan Blank\AppData\Local\Temp\GLBA340.tmpID_INJECTg 3

V2016-01-27 16:44:14 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exer 3
V2016-01-27 16:44:14C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exeID_INJECT
    .                                                                                                                                                                                                                                                         ‚	 3ƒO+V2016-01-27 16:43:18https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=01988EB07AE6E7484D5248C440118B77181843DD&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601 HTTP/1.1 200 OK‚	 3ƒE+V†2016-01-27 16:38:30https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey2=CE1CB68B39E36531994A081E618EAF8DD99358C5&version=10.0.0.5735&beta=0&lng=de-de&os=64_6.1.7601 HTTP/1.1 200 OKO	 3	‚I+V2016-01-27 16:27:11https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&version=10.0.0.5641&beta=0&lng=de-de HTTP/1.1 200 OK
7  ~ ƒB=†F                                             EƒB 3#Minstallerhelper.dll11.0.0.6054751bfdbd2611>ƒQ '!M a2hooks32.dll10.0.0.175b13acb7f54bf15c21d16f9069d502b32=ƒP ##M a2guard.exe11.0.0.6054515522d22189a1bfeca?ƒv '#M!a2service.exe11.0.0.6054a0701f64ebbbcf8acca449d60b4bd0a6A  %!M!a>ƒy %#M!a2update.dll11.0.0.60543e1f18692892130e3224a89f18fa62229ƒx #M!a2toast.dll1.0.0.1d163b6fdc0bff94ca8fc8cc0fc95e21e=ƒw ##M!a2start.exe11.0.0.6054cc7fb7497a0da95e59fce2f1615130f8E=ƒs ##M!a2guard.exe11.0.0.6054515522d22189a1bfeca44eac09ce3fa4    =ƒ~ )M!blitzblank.exe1,0,0,323d7e47a121a58f7e1e639419e7cb28c0:ƒ} !M!bdcore.dll11.0.1.12d8b73a9401bc26aca54d3ff44bc69cdc9ƒ| #M!avxdisk.dll1.4.0.0adf9f919e10832746ed516230420f749;ƒ{ #M!a2wsc.dll10.0.0.5745c458b9cf186315425da8057043edf585>ƒz %#M!a2wizard.exe11.0.0.6054b076cb58439e1a71a4eb93fe6ecfe9a4>ƒu '!M!a2hooks64.dll10.0.0.175b76b750785886b5826227f2f6e753fc1>ƒt '!M!a2hooks32.dll10.0.0.175b13acb7f54bf15c21d16f9069d502b32
   
 Cm#Df  ‰ C                                 CŠ|	 9M
		Signatures\BD\jpeg.cvd*FD08EB9C4D403E5D99CB7E2C97CB5E7BFŠ{	 ?M
		Signatures\BD\htmltok.cvd9BBD952F4715D19ADAF75728740E08AB6GŠz	 AM
		Signatures\BD\emalware.i81=‡4F21578F3C760B6275D669967AF2B1E4 FŠy	 AM
		Signatures\BD\emalware.i79}47C7BCC67A4303E5FB60507099CF21E5GŠx	 AM
		Signatures\BD\emalware.i329€C9819A877F59F4CC50EFF369BF00651D FŠw	 AM
		Signatures\BD\emalware.i30)C9703B27B3612168A4DF4FE7FF65EBF5 FŠv	 AM
		Signatures\BD\emalware.i29:M94B0CD2B00EEAA8AD5D6CC61DE76DEFEGŠu	 AM
		Signatures\BD\emalware.i10Lc4D82147FE7D2B10564D54C8CB198874B FŠt	 AM
		Signatures\BD\emalware.169F498D79D9FCEC289258ADC9B18A62242 FŠs	 AM
		Signatures\BD\emalware.16438C9AECF958AA2513C7F5F7ED155BDC8 FŠr	 AM
		Signatures\BD\emalware.122!85BAAB2124E51D03B902A72101DA8BA1 FŠq	 AM
		Signatures\BD\emalware.119H7EA991091818F74695290AC52E8D1F79 FŠp	 AM
		Signatures\BD\emalware.114F04AEB69483B92BE11394170793EAE0C
 G  —‰‚{tmf_XQJC<5.' ›”†*Ÿ˜‘Šƒ|ung`YRKD=6/(!                                                    
!`!_!^!]!\![!Z!Y!X!W!V!U!T!S!R!Q!P!O!N!M!L!K!J!I!H!G!F!E!D!C!Bž      
    	       š    “    Œ    …    ~    w    p    i     b 
   [ 
   T 
   M 
   F 
   ? 
   8 
   1 
   * 
   # 
    
    
    
    
!A!@!?!>!=!<!;!:!9!8!7!6!5!4!3!2!1!0!/!.!-!,!+!*!)!(!'!&!%!$!#!"!!! !!!!!!   b    [    T    M    F    ?    8    1    *    #             
    
    m Y*Ž# m                                                                                         3^ 3‚-
VP’2016-01-29 11:44:18C:\ProgramData\Sony Corporation\Sony Packaging Manager\PackagingTemp\{8180239A-B73B-4C9D-A18F-BE6FC7D386EE}\XperiaLinkx86.msi
ID_HIDDENINSTALLi] 3

VN-2016-01-29 11:34:05!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exei\ 3

VG2016-01-29 11:03:49!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exeT$[ 3‚


VB2016-01-29 10:42:35 C:\ProgramData\Sony Corporation\Sony Packaging Manager\PackagingTemp\{83415F05-1577-4804-AD5B-C8E0619066ED}\Installer\VU5x64.msi6Z 3‚
-
VB2016-01-29 10:42:35C:\ProgramData\Sony Corporation\Sony Packaging Manager\PackagingTemp\{83415F05-1577-4804-AD5B-C8E0619066ED}\Installer\VU5x64.msi
ID_HIDDENINSTALL$Y 3‚


VB2016-01-29 10:42:32 C:\ProgramData\Sony Corporation\Sony Packaging Manager\PackagingTemp\{83415F05-1577-4804-AD5B-C8E0619066ED}\Installer\VU5x86.msi
    —  —                                                                                                                                         ‚ 	 3ƒi+V^]2016-01-29 12:43:09https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=E4C6729B456C68145221E208754B5D8CADD8F23B&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601&autoupdate=1 HTTP/1.1 200 OK‚ 	 3ƒi+VP92016-01-29 11:42:49https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=E4C6729B456C68145221E208754B5D8CADD8F23B&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601&autoupdate=1 HTTP/1.1 200 OK‚ 
	 3ƒi+VB)2016-01-29 10:42:49
https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=E4C6729B456C68145221E208754B5D8CADD8F23B&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601&autoupdate=1 HTTP/1.1 200 OK
   n  *Ÿž—‰‚{tmf_XQJC<5.' ›”†xqjc\UNG@92+$˜‘Šƒ|ung`YRKD=6/(! C<        !!"""""""""""""""""""""""!n!m!l!p!o!k!j!i!h!g!f!e!d!c!b""""""""""""*"""""""""""""*"Ÿ"ž""œ"›"š"™"˜"—"–"•"”"“"’"‘"""Ž""Œ"‹"Š"‰"ˆ"‡"†"…"„"ƒ"‚""€""~"}"|"{"z"y"x"w"v"u!t!s!r!q
     G*F                                                                                                                            6X 3‚
-
VB2016-01-29 10:42:32C:\ProgramData\Sony Corporation\Sony Packaging Manager\PackagingTemp\{83415F05-1577-4804-AD5B-C8E0619066ED}\Installer\VU5x86.msi	
ID_HIDDENINSTALL/W 3‚

VA2016-01-29 10:41:18C:\ProgramData\Sony Corporation\Sony Packaging Manager\PackagingTemp\{B06E091D-6C57-4791-A4B9-312164793362}\Installer\VU5x64.msiID_INJECT%V 3‚


VA2016-01-29 10:41:18 €C:\ProgramData\Sony Corporation\Sony Packaging Manager\PackagingTemp\{B06E091D-6C57-4791-A4B9-312164793362}\Installer\VU5x64.msi$U 3‚


VA2016-01-29 10:41:15 C:\ProgramData\Sony Corporation\Sony Packaging Manager\PackagingTemp\{B06E091D-6C57-4791-A4B9-312164793362}\Installer\VU5x64.msi6T 3‚
-
VA2016-01-29 10:41:15C:\ProgramData\Sony Corporation\Sony Packaging Manager\PackagingTemp\{B06E091D-6C57-4791-A4B9-312164793362}\Installer\VU5x64.msi
ID_HIDDENINSTALL
   
 En%’Hk"   E                                  GFˆ3	 AM
		Signatures\BD\emalware.0810591467070C3B1D47206C409E0EFBAE2 Fˆ2	 AM
		Signatures\BD\emalware.080@F3674467FC8D0187FEE2029C866FC7EDFˆ1	 AM
		Signatures\BD\emalware.079816E33E92CE1F7521ACD33FEC7A6D94D Fˆ0	 AM
		Signatures\BD\emalware.078G733254F7BAD3B64718A319B99257C37FFˆ/	 AM
		Signatures\BD\emalware.075#1385FDC90A3619DFFB14ACB2EB6FC0BF Fˆ.	 AM
		Signatures\BD\emalware.074–E798B9DC53E7A9789AF88E7659154D58 Fˆ-	 AM
		Signatures\BD\emalware.073—3A05F4C1008475238FF16B1EFCFD672EFˆ,	 AM
		Signatures\BD\emalware.053D19DFD83C3A29212E6FC8CC74BE60818 Fˆ+	 AM
		Signatures\BD\emalware.048B018BCB32A777AE30BF36940AF1859B4Fˆ*	 AM
		Signatures\BD\emalware.047`B13BB0B0B3F5036CF10350C4C9E96E9D Fˆ)	 AM
		Signatures\BD\emalware.04412446AEB02D0A87A2B5645433AB1DA09FGˆ(	 AM
		Signatures\BD\emalware.000%5BB66FDD0A2D2DF2F8ECC1C186B3A3C9 Dˆ'	 =M
		Signatures\BD\e_spyw.i09!2183A5AAE54C17D096DE016D20DDD2F2
     •*'
 ’ x~ 3	'
V9‰2016-02-01 10:55:05C:\ProgramData\PDF Architect 4\Installation\PDFArchitect4Installer.exe
ID_DOWNLOADERy} 3'
V9S2016-02-01 10:54:11C:\ProgramData\PDF Architect 4\Installation\PDFArchitect4Installer.exeID_DOWNLOADER| 3	K'
V82016-02-01 10:51:14C:\Users\Stephan Blank\AppData\Local\Temp\is-IODIM.tmp\PDF_Architect_Installer_4.0.34.26215.exeID_DOWNLOADER{ 3K

V8”2016-02-01 10:51:00 C:\Users\Stephan Blank\AppData\Local\Temp\is-IODIM.tmp\PDF_Architect_Installer_4.0.34.26215.exez 3K-
V8”2016-02-01 10:51:00C:\Users\Stephan Blank\AppData\Local\Temp\is-IODIM.tmp\PDF_Architect_Installer_4.0.34.26215.exe
ID_HIDDENINSTALLiy 3

V6&2016-02-01 10:40:38!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exeix 3

V2œ2016-02-01 10:25:32!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exeiw 3

V)D2016-02-01 09:45:40!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe\
    —  —                                                                                                                                         ‚ 	 3ƒi+VO2016-01-28 13:23:27https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=E4C6729B456C68145221E208754B5D8CADD8F23B&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601&autoupdate=1 HTTP/1.1 200 OK‚ 	 3ƒi+V2016-01-28 09:34:49https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=E4C6729B456C68145221E208754B5D8CADD8F23B&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601&autoupdate=1 HTTP/1.1 200 OK‚ 	 3ƒi+V2016-01-27 17:27:49https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=E4C6729B456C68145221E208754B5D8CADD8F23B&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601&autoupdate=1 HTTP/1.1 200 OK
   
 > ›A`h  ˜ >                                  X
 3w

VG2016-01-27 17:32:55 C:\Users\Stephan Blank\AppData\Local\Temp\GLB2E6F.tmpc
 3w
VG2016-01-27 17:32:55C:\Users\Stephan Blank\AppData\Local\Temp\GLB2E6F.tmpŒID_INJECTi 3

V2016-01-27 17:31:25!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exeB
 3K

V 2016-01-27 17:27:28 C:\Windows\system32\btncopy.dllN
 3K!
V 2016-01-27 17:27:28C:\Windows\system32\btncopy.dll	ID_STARTUPb 3	

V2016-01-27 17:26:57 C:\Users\Stephan Blank\AppData\Local\Temp\GLFAC8\Win64\BTW.msit 3	-
V2016-01-27 17:26:57C:\Users\Stephan Blank\AppData\Local\Temp\GLFAC8\Win64\BTW.msi
ID_HIDDENINSTALLi 3

V2016-01-27 17:26:44!C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exeHX
 3w

V2016-01-27 17:26:29 C:\Users\Stephan Blank\AppData\Local\Temp\GLBD336.tmpc
 3w
V2016-01-27 17:26:29C:\Users\Stephan Blank\AppData\Local\Temp\GLBD336.tmppID_INJECT
    -’X*r5†M   g -   8	 	%M
		a2update.dll 48ED73C7AD5AD7800458824D7299F9837	 	#M
		a2trust.dat‚$5A55AC39E5C8089C38E505E43882FDA0 6	 	#M
		a2toast.dlls7333C8951740D3485BDEEF3E0D19D8CF7	 	#M
		a2start.exe)H5F47748624ACE43419DDC9075019E8529
	 	'M
		a2service.exe(HAFF6827F620F2E72859B16536B57F8FB7	 	#M
		a2hosts.datr67EFF7CFF776667104EE54495775E43A9	 	'M
		a2hooks64.dll.-565E3DC51FB6A8AAD44A589E2BD948479
	 	'M
		a2hooks32.dll5C6E8F342AF5AFF924D86362A2D494947		 	#M
		a2guard.exe4C19DF323F4C0F1F27D328EFDCDFC36E;	 	+M
		a2framework.dllQ03A36CB5BEF79F1AAB32E074FCD5C532C8	 	%M
		a2engine.dll.BE5EB39639AB0358A279767BE39F25BF 6	 	#M
		a2dix86.dll993AC503AC5A16BE165199C310649B5B 6	 	#M
		a2dix64.dll
64FEF04684092151A7A1E5EB0CAD64708	 	%M
		a2core64.dlly6A5BCE7CDA3B2473693065ECD54D58728	 	%M
		a2core32.dllp8B9119A77C53DFE213443E41B46986035	 	M
		a2cmd.exem(C7BCEC4AB12D899D887EB1B8B0B2429C 4	 	M
		a2acc.dllyAD28DE267AE7980010206CEA495F0AE0
    4Wr0E  y 4            C!	 	;M
		Signatures\20150911.sig —E451507902A1DA2ACFF68E50504563EAB 	 	;M
		Signatures\20150822.sig69527D9328C24AF32BD1EA8213B4BE20B	 	;M
		Signatures\20150507.sigL;E894ED6100299B675CED17FC7E62060FB	 	;M
		Signatures\20150506.sig:373AA3C5384E7DDE54CAFC1332FDA4578	 	%M
		resource.dllg60A73576266461D4A7A11C416C4049017	 	#M
		logging.dll9›2A377477F2445B08C89366DD7E7D4D1B >	 	3M
		Languages\de-de.lng0AD933B6048C667C4CD4A149AFE95B7B15	 	M
		ja-jp.chm ˆ9EAED3CB7157DCE0BFA14842F074A5D4?	 	3M
		InstallerHelper.dll
wEAA4A8DDCF895A7280743462BD86E815 4	 	M
		epp64.sys\1B9102E852D613FE697B351A5321E868 4	 	M
		epp32.sysg|92BBDBA2E5C94CE6E7E9D76695E4FB32;	 	+M
		CommService.exe‘vDA9DD1E15F674DC85C44AB9D7ECDB8069	 	)M
		cleanhlp32.dll\D94E48582D61B4CA11F4E0C330DC3EB37	 	#M
		clean32.dll.313ABD6F6C4ADD020C8F3EEC91DF5CF74	 	M
		a2wl.dat
–AB70BC9E17B07AA61513AC7778CB60598	 	%M
		a2wizard.exe AC31D72B218602DF0DE2A0DA35EB53F0
    ?v1c–R
  „ ?                           C/	 	;M
		Signatures\20151001.sig C4FE78982FFAB2B435DD21B7F88CA8A5C.	 	;M
		Signatures\20150930.sigQ&E2E897BC966BB2E48E0445D2D76B7413B-	 	;M
		Signatures\20150929.sig5BA0251185E1B1BEB1BFD67273709A7BFC,	 	;M
		Signatures\20150928.sig ‹326BB9407BCF4D51B398263E47469016B+	 	;M
		Signatures\20150927.sig’A03D81A7F9E186EAB8099463C2C3C3C7B*	 	;M
		Signatures\20150925.siga4929A1B11C8F61CD9D9CFB438508F0C8B)	 	;M
		Signatures\20150924.sig{DDCB12FB449AD93C85E445DB40F09C04C(	 	;M
		Signatures\20150923.sig *<F98B05B7DD8B13FEDDC90F2756C87AC3B'	 	;M
		Signatures\20150922.sig94BEB9B6A59A2B43B9250168B22A06B24C&	 	;M
		Signatures\20150921.sig C7C8921E1C34CC3BD7190B4962C78F7BC%	 	;M
		Signatures\20150918.sigD*94ED6978552224AEB51AF47F7C76677DC$	 	;M
		Signatures\20150917.sig g6144B97596B6350DF03A882602EF7EFCC#	 	;M
		Signatures\20150916.sig š5F8A01F473080EF1F0299BAC34232F40 B"	 	;M
		Signatures\20150915.sig1197441513C0DAF700BF59928C473471
    B w3f!˜T  ‡ B                              C=	 	;M
		Signatures\20151020.sigQ87E98CCF2EC3DB47C444A2EBE77FCB39C<	 	;M
		Signatures\20151019.sig D482605F7400224E1140F7C1137B0CD3B;	 	;M
		Signatures\20151018.sigF67C55D1B8159FBC2AD147A95AA3756AB:	 	;M
		Signatures\20151016.sigq
EEECE73AB10EF72D141A65604D006599B9	 	;M
		Signatures\20151015.sigV7B7BC50A8622723AE6EF2721E5DDBB74C8	 	;M
		Signatures\20151014.sig šB9B9A3F4D325A37270F68DC4284F5F8DB7	 	;M
		Signatures\20151013.sigM8FA54982E7C87094149FF280BB8708E0C6	 	;M
		Signatures\20151012.sigVt375272822434F445D41778BF2A947E80B5	 	;M
		Signatures\20151009.sigX9079D192F0B7F532A8FDE77D9A3B8A99C4	 	;M
		Signatures\20151008.sig tB76B253D3D95310DD2C3410B023C10A2B3	 	;M
		Signatures\20151007.sig52369425F2B4231B38D964D5235D688AEB2	 	;M
		Signatures\20151006.sigMg3FC1505D284835823711E56AA693E736B1	 	;M
		Signatures\20151005.sig]3EE918491D4DC453912F001491E8FA318C0	 	;M
		Signatures\20151002.sig š4F35BF0BFB55E0AFCB10891806F5210C
    @ w3e!˜S  … @                            CK	 	;M
		Signatures\20151106.sig <5E54DB93A95F8D7A0DB6C073A5D98C6ECJ	 	;M
		Signatures\20151105.sig •59BD4856A1A46749757C8375D6296783BI	 	;M
		Signatures\20151104.sig24248800585CE6E1F0AABA097A4E1EEE5CH	 	;M
		Signatures\20151103.sig ɨA5384DE45DCE1C859295FEE88E395C78CG	 	;M
		Signatures\20151102.sig 482559A51A52699968DBA9B4E5F9E803BF	 	;M
		Signatures\20151030.sigF8F0F9F275E6050EDD08B9DC9C60E283FCE	 	;M
		Signatures\20151029.sig1P2F2040FEC6207D413080ED126EF89B8FBD	 	;M
		Signatures\20151028.sig[7C7F2E82E5DB42E7E4DDFDA59AD96652BCC	 	;M
		Signatures\20151027.sig
F379DCC4770939B94D45418E9FFF6D2CCB	 	;M
		Signatures\20151026.sigIAECFE80034B611B42D629D661FE2CD0BBA	 	;M
		Signatures\20151024.sig^2E838A8FF41B8F4C54779884BE3E9789B@	 	;M
		Signatures\20151023.sig<>36209FA884D5674639FE3E8B41BFD100C?	 	;M
		Signatures\20151022.sig 7BC6662B66D83D51785D9529D0001FC0B>	 	;M
		Signatures\20151021.sigzA676146C95BB3DC307BD3B475F0640B6
    B w2f!˜T  ‡ B                              CY	 	;M
		Signatures\20151125.sigyFF1ADC5EA699A7BB7FDFC11C0B996BCEBX	 	;M
		Signatures\20151124.sigZ0976876C51020D9B5E1C30F609EB0E7ACW	 	;M
		Signatures\20151123.sig52296BBC0107075AF9653D3695CF8987BV	 	;M
		Signatures\20151120.sig:12A11DD20495E57A5A37ED094BB09749BU	 	;M
		Signatures\20151119.sigk.3B884E8B702F3E5F9C25E8C32D0F1671CT	 	;M
		Signatures\20151118.sig=“B9D18137EDFA939C020555560BB25B95BS	 	;M
		Signatures\20151117.sig>3646EADDA5BA42E04794E4F6FEB8C11CCR	 	;M
		Signatures\20151116.sig 383F8C22A083D0BF59A3B15BC2A640A6BQ	 	;M
		Signatures\20151114.sigF7A9DB95724EA6EFB527E83E14897051BP	 	;M
		Signatures\20151113.sig840542CB4D0908154BF4DBF9934329451BO	 	;M
		Signatures\20151112.sigLYB0252AD277F7DEB867C57FC8F9FCF91FCN	 	;M
		Signatures\20151111.sig 6CA5804E87A1C5A318E493A6ABC87E28CM	 	;M
		Signatures\20151110.sig330A2CFF99E4065C34974577E8843283BBL	 	;M
		Signatures\20151109.sig2Š0C0ABBD81B738DE8B23493D3F8A5DF8B
    > w2c•P  ‚ >                          Bg	 	;M
		Signatures\20151215.sigG65BE56964F576B72BED70B198951A731Cf	 	;M
		Signatures\20151214.sig ƒC33E9290184C96A2443651203E196407Be	 	;M
		Signatures\20151211.sig`CE82B374FB4D36A97470AE32313AB45CCd	 	;M
		Signatures\20151210.sig %DD19DF48C97474AE502A31E1D18F0C5FCc	 	;M
		Signatures\20151209.sig816536AF913F90E70A489815CAEA4E0BCb	 	;M
		Signatures\20151208.sig 6080457D9ABFE7237C4106ADEBEF2201Ca	 	;M
		Signatures\20151207.sig 1AF7E5382709EF4BAC0CB9C0FD787C5DB`	 	;M
		Signatures\20151204.sigf,08F4BDD972901392CEDD21062613F262C_	 	;M
		Signatures\20151203.sigPB98F08850A0122D5E45154335C90316BC^	 	;M
		Signatures\20151202.sig F168A2A9DC12A3572FBF53220D50ABC3C]	 	;M
		Signatures\20151201.sig YFF6029E97A291EF572EEAF3CC29E3838C\	 	;M
		Signatures\20151130.sig BB6254D39DC1D6AFA4A745321345C9E4C[	 	;M
		Signatures\20151127.sig *03823BD780C2BFAB81B2FCDA4DA46B37BZ	 	;M
		Signatures\20151126.sigu229F4D9EFEB0ED368ACFCCA51D6DF108
    A w3f"˜S  … A                             Bu	 	;M
		Signatures\20160101.sig‡56C25356295118CAB9BEA1AC317ED699Bt	 	;M
		Signatures\20151231.sig
ƒ2CC17F90962D00CF94F71CA0D313CC0FCs	 	;M
		Signatures\20151230.sig UB86F337950C147441CCDC9D4FC2CA494Cr	 	;M
		Signatures\20151229.sig”n4F275E1BDD978DC6D9B9330617E2EBD8Cq	 	;M
		Signatures\20151228.sig5126BC3F3ABF523AA6B170AD48F4198BCp	 	;M
		Signatures\20151225.sig 770639F25877AEBD4DCA053119578C9ADCo	 	;M
		Signatures\20151224.sig ˽5A461F0E408BC45A49D002C197B6C918Bn	 	;M
		Signatures\20151223.sigaNC9A18302D6554B783F8F960FA61FA294Cm	 	;M
		Signatures\20151222.sig?œ47CF1AC3BFF8EADC7ECA11BF0C4ED7B6Bl	 	;M
		Signatures\20151221.sigN€641588211FBC96E966C082467E9A9845Bk	 	;M
		Signatures\20151220.sigeCF6BBC6A7493324DB4D9B2B4BCC05D1BBj	 	;M
		Signatures\20151218.sigQ7159B799D779263CF67C9B7C73E84F7BBi	 	;M
		Signatures\20151217.sig|Y8035943D4F90DEC0F095E93933C6E46CCh	 	;M
		Signatures\20151216.sig 014AA14F36C6EB11DEC1598C8EA3AB86
    = w2d —R  ‚ =                         B	 	;M
		Signatures\20160117.sig!FD1C9436D58133B592ACFE5A6C234E74B	 	;M
		Signatures\20160115.sigh64460CCA36AB3F23FE56B6816A9E920AB	 	;M
		Signatures\20160114.sig7OC720C6FBBA8A2530A2B62998942B0DDAC 	 	;M
		Signatures\20160113.sigH827A4C6D1297971DA2AEA6520D1B080EC	 	;M
		Signatures\20160112.sig NB16F45588DC56D0584CEDB9FA74725A9C~	 	;M
		Signatures\20160111.sig4,D956D13F473286479CEAFC7412EA7D6BB}	 	;M
		Signatures\20160110.sigG36FC14E4B0CCED2858E397D7AD222393B|	 	;M
		Signatures\20160109.sigE7FA22ECAC60E2A19E81D05A97A223D2B{	 	;M
		Signatures\20160108.sigu146403101130B417F83CAA609F74BACECz	 	;M
		Signatures\20160107.sigF7B082698779BB3F33D3E446E7812BE2Cy	 	;M
		Signatures\20160106.sig+7D6B05E3C00271DD41DD8F89C77F1F11Cx	 	;M
		Signatures\20160105.sigl264E399F52BFC0066ACB4DF7577E04E5Cw	 	;M
		Signatures\20160104.sig p83F7A53E8E96FE3222EB1D69682F05A1Bv	 	;M
		Signatures\20160102.sigm3D5D705B81A746B97F962D3CAFA20EF2
    4 u/`K  y 4                B	 	;M
		Signatures\30000701.sigy.31C89135C5AF6BA06EB57C28E81E0C65C	 	;M
		Signatures\30000602.sig ™*7AD7210A17C6F709858E56D0159A7A84C	 	;M
		Signatures\30000501.sig+E22C8E4EBF0FB286B40FF7DC02D47E5BC	 	;M
		Signatures\30000217.sig‚FA2EDB315E66BF695CAF2E7044B0DB1DB
	 	;M
		Signatures\20160127.sig9BD168BE1C516A621DFDA31593B405D07C	 	;M
		Signatures\20160126.sig 456A75F4D1EE40EABD2C4D13F87B91B2B	 	;M
		Signatures\20160125.sig^D01C18C7C02FEC24E05B9DF4E307DDE7B
	 	;M
		Signatures\20160124.sig1A9D28791AFED61D2CDA79F3851177EEB		 	;M
		Signatures\20160123.sig6D4A07AB1B62C8E08E4612458C6284DBB	 	;M
		Signatures\20160122.sigI€B8953D96B19A4B08159ADA6E3BCC4047B	 	;M
		Signatures\20160121.sigY4247927BB7F4CF0D5D47F0CC7D312F9EC	 	;M
		Signatures\20160120.sig M1439F7D9D9239D1A74A0E8557DFF010BB	 	;M
		Signatures\20160119.sigLA7FD50F3D6DA428E29B945EB31BCF350C	 	;M
		Signatures\20160118.sig œt0C10510A0979E54B606351A0BD97AE82
   
 fw2`ŠA   f                                                                    F	 	AM
		Signatures\BD\cevakrnl.rv0KTE3B3D549EB71ED30C0E8C9E059D0DF65F	 	AM
		Signatures\BD\cevakrnl.ivd D6FA4B80D9C3059501E0FF84B87BF95E E	 	AM
		Signatures\BD\cevakrnl.cvd‘950DEACE712929EDD4D7E70A84E778B1F	 	AM
		Signatures\BD\ceva_emu.cvdPB1F4B83EE0498B5E6ABADAF06B907F4FF	 	AM
		Signatures\BD\ceva_dll.cvdM8188FB2DE4B280E0B8A715FF52C6D13BD	 	?M
		Signatures\BD\avxdisk.xmdJ99326636A1B5EF5D85013B6425F41D92C	 	=M
		Signatures\BD\autoit.xmd563F3CCB59FC3009B8A3396E546F58193A	 	9M
		Signatures\BD\auto.xmd-5E1BE7753E12636C1F0E36E33EB6CE04B	 	9M
		Signatures\BD\auto.cvd}p9377183C9F6817532FDCF3451FD4DDCDF	 	AM
		Signatures\BD\aspy_emu.cvdi>810B4D8E992A5EA2AA33A2F6F44C21D2B	 	;M
		Signatures\BD\aitok.cvd!d579FF3BD35DD9EE8663FCBB28CE686FE@	 	7M
		Signatures\BD\ace.xmd38B0209CEE979C4EB4735035137E26DFBC	 	;M
		Signatures\30000702.sigŸ4EB7E56EFC293E81DE8B02C600BFBED9A
   
 ^ n%“Jv1   ^                                                            D+	 	?M
		Signatures\BD\docfile.xmdlPED33A8CBF1CEB0C0704D2FA0705A7BDEB*	 	9M
		Signatures\BD\disp.xmdL83B9A2CCF440AFA02C03FA532D694020D)	 	=M
		Signatures\BD\dalvik.ivdFt277A4769A48015127DF074B26DD2E9A1B(	 	9M
		Signatures\BD\cran.ivdѾ2A2244225DBE6AA25DC4AE8D2C16E691B'	 	9M
		Signatures\BD\cran.cvd
ۥD222D8C8413704411D6B398434F0FB84C&	 	=M
		Signatures\BD\cookie.xmd(38B115E3E72D9F35A2CD38C7BB808556F%	 	AM
		Signatures\BD\cevakrnl.xmd9A32149C5396C8788F63C2287482BE19F$	 	AM
		Signatures\BD\cevakrnl.rvdEEB7A10A3F1A9889ABE7AE43466F66A4F#	 	AM
		Signatures\BD\cevakrnl.rv8D4DA0955FB525F46F8943E9B37513EF0F"	 	AM
		Signatures\BD\cevakrnl.rv5lAC76491E36D601045F592342AD6C5F39F!	 	AM
		Signatures\BD\cevakrnl.rv4 qA17F9FCF3091E9B06EEAEC1A9C7CCC66F 	 	AM
		Signatures\BD\cevakrnl.rv3D481AD8A0BD310464FD2648F0C4658FEF	 	AM
		Signatures\BD\cevakrnl.rv1rE5270C1FB31EF088B54CEA7D205E1F1A
   
 d p*œU€9   d                                                                  D8	 	=M
		Signatures\BD\e_spyw.i106330E6440FA05E132BDAF9CB418DBEC4D7	 	=M
		Signatures\BD\e_spyw.i09Iš9861260BD88359640B6ABFF45988A9B0D6	 	=M
		Signatures\BD\e_spyw.i08‚614BFDEEA3CE274723043C9A9F0D62BCD5	 	=M
		Signatures\BD\e_spyw.i07A2898086211C985ED9AAC3A8B93895C0D4	 	=M
		Signatures\BD\e_spyw.i06‚;377CE531FFD2EB18A46604B244E233ECD3	 	=M
		Signatures\BD\e_spyw.i05[Q9943EA3098A9F165DEF005AC97D0EC3DD2	 	=M
		Signatures\BD\e_spyw.i04*EF37B2BCD6DABEE719AD7D1F84AFAA43D1	 	=M
		Signatures\BD\e_spyw.i03ME51E74E0BAAC9E64A11EBADD2BC17B6ED0	 	=M
		Signatures\BD\e_spyw.i02}06EC6DAECC5AD00EBE0A1954DFBCEE9AD/	 	=M
		Signatures\BD\e_spyw.i01CF8643D6DD7C2095FBC09E556A1F8F71C.	 	=M
		Signatures\BD\e_spyw.i00uEF8CC9D257C0DCD26F67402E46BAF093D-	 	=M
		Signatures\BD\e_spyw.cvdo0D76F85336BC7E80FE59F446BBC483DB5F,	 	CM
		Signatures\BD\dummyscan.xmd
17ED173E1C07E4A8293FC28C980294893
   
 e r+V:   e                                                                   DE	 	=M
		Signatures\BD\e_spyw.i23–D90901156CCA5F19982A7196A66CE637DD	 	=M
		Signatures\BD\e_spyw.i22P2F198D4DCBD3A2A2BD804519B12A6A26DC	 	=M
		Signatures\BD\e_spyw.i21˜863596029F642F8A4F867592A17148A5DB	 	=M
		Signatures\BD\e_spyw.i20‡6FBB413F8FDCADCEAB6ED9EBC20ECDC3DA	 	=M
		Signatures\BD\e_spyw.i19ŠA101F4D12E1F949408ED72DDE9010907D@	 	=M
		Signatures\BD\e_spyw.i18“j8F42D9A82BCAAED8FF797136566D4D66D?	 	=M
		Signatures\BD\e_spyw.i17M4CDCE7AE271F594D2974C79F2230AEC4D>	 	=M
		Signatures\BD\e_spyw.i16C72940EA0F3272846982D029BBEECF09D=	 	=M
		Signatures\BD\e_spyw.i159423C3FEC9964F57EAD69436E640F66ED<	 	=M
		Signatures\BD\e_spyw.i14,1B8D7E5BBAB82B3E82FF67879A5EA682D;	 	=M
		Signatures\BD\e_spyw.i13tD0080C89AAD2C2215DD98F21FFF3453BD:	 	=M
		Signatures\BD\e_spyw.i12›CF27C22F5252D80585D08CDDDA6C38ECD9	 	=M
		Signatures\BD\e_spyw.i111uE57EFBBF8FC67C5BB9BD594C0D79188A
   
 W r+V
{2  * W                                                     FR	 	AM
		Signatures\BD\emalware.006200D789B30DA88B3FABA8FA377B80210FQ	 	AM
		Signatures\BD\emalware.0050h1C2539418E7C46E635398AF682BC8A68FP	 	AM
		Signatures\BD\emalware.004X80E7456317D2B9D1A7CF0A4E29BD548AFO	 	AM
		Signatures\BD\emalware.003xBFDCD501810CDFDCEC767318023EC271FN	 	AM
		Signatures\BD\emalware.002su037E9EAB67E32FCA3BFA4AE6BAF9ECDDFM	 	AM
		Signatures\BD\emalware.001.ŒA40D79D4999E385F52BA6B8AE0A21DF3FL	 	AM
		Signatures\BD\emalware.000 ˆ16AD46C948EF9EA711FDF6B66C3D0D5BDK	 	=M
		Signatures\BD\e_spyw.ivd_135D4D137E96BE0FAC2F35D06C261E0CDJ	 	=M
		Signatures\BD\e_spyw.i28B19469A5CFAA12F97D3D963CC0D8AEF1DI	 	=M
		Signatures\BD\e_spyw.i27S525005D5377F0EDD289290801F16BAC7DH	 	=M
		Signatures\BD\e_spyw.i26/FD77B327B577B539E24CF4A311A4B6DFDG	 	=M
		Signatures\BD\e_spyw.i25@D97383A9D5375E5A1E13167BA45068E1DF	 	=M
		Signatures\BD\e_spyw.i245A8D49FF2BA597BCF1C5A5327F7E7D16
   
 K n%“Jo&  ” K                                         F_	 	AM
		Signatures\BD\emalware.019—2948C8BB055F5C29B3E2C121941A5CE6FF^	 	AM
		Signatures\BD\emalware.018EC677EF4F50A5E855C5A3149F7EC82BAF]	 	AM
		Signatures\BD\emalware.0174ED6A71449FB4ED23D94364B190615AFF\	 	AM
		Signatures\BD\emalware.016‹7D7480246FAFD9DEC9D405E66CF29003F[	 	AM
		Signatures\BD\emalware.015diF98DE0AAE2D57C597F249C1343133E0EFZ	 	AM
		Signatures\BD\emalware.01437E09DF23A35C775F4E75B8383AD828FFFY	 	AM
		Signatures\BD\emalware.013s5A749E71E900955FAE4DE91A02942569FX	 	AM
		Signatures\BD\emalware.012~599903D032A9927D3A64EAA7D48C0354FW	 	AM
		Signatures\BD\emalware.011Œ2B3AFF6FFD52DF90771D618A84A2A983FV	 	AM
		Signatures\BD\emalware.010…BDD087D530CBB52CE207CA643D2DA1A2FU	 	AM
		Signatures\BD\emalware.009‘‰DA5DC1B0802CC91E8A851196BCEF5403FT	 	AM
		Signatures\BD\emalware.00838BBCB620178D2B5552E986703A1EE67FS	 	AM
		Signatures\BD\emalware.007ֽC7191B0032C9006F473DF52E7DFCC326
   
 K n%“Jo&  ” K                                         Fl	 	AM
		Signatures\BD\emalware.032XE4C205FDA1D639BC518AE2B4DE0350B99Fk	 	AM
		Signatures\BD\emalware.031 ,0843DDB4C4B0263913CCBA33BB24B5EBFj	 	AM
		Signatures\BD\emalware.030dB615F357A724E9E9CABB7CE458BBF3DDFi	 	AM
		Signatures\BD\emalware.029d9964A2231A18EC032FAF66AD9F96FD85Fh	 	AM
		Signatures\BD\emalware.028œs6A478BB4017BCC521C45D3884EF99995Fg	 	AM
		Signatures\BD\emalware.027870981C823822CE9DFC4D7B5EA30A039Ff	 	AM
		Signatures\BD\emalware.026rBDF0D65305FF67EAB254B5655CE8E63EFe	 	AM
		Signatures\BD\emalware.025WC8B87D6A08777A518D2DA058813C244AFd	 	AM
		Signatures\BD\emalware.024ZF9587CEEC84ED421A56BD0FFB9C898A2Fc	 	AM
		Signatures\BD\emalware.0233C993EAB6E4F7C689C0BC0CF5F4D7793Fb	 	AM
		Signatures\BD\emalware.022Ϸ4D2FD56F2E56A8AF0F992DE9BF0A1D04Fa	 	AM
		Signatures\BD\emalware.021]H7FF97624064EB67EAC1EA9E1C358D741F`	 	AM
		Signatures\BD\emalware.020J6FDB5F82B8DE908F77BB721A67DD46DA
   
 K n%“Jo&  ” K                                         Fy	 	AM
		Signatures\BD\emalware.0450W83E0DF1A38EF8A080BA385695626B58DFx	 	AM
		Signatures\BD\emalware.044~5FCE8A4BF6FB686045A824E5863BC3C0Fw	 	AM
		Signatures\BD\emalware.043‹624AD56DEC529BE4AD3438C80510D865Fv	 	AM
		Signatures\BD\emalware.04284019D4CA1D880E1EC521916A637848EFu	 	AM
		Signatures\BD\emalware.041*
7D0B9D7403B4BB0BC28CA59E1F31D0FBFt	 	AM
		Signatures\BD\emalware.040C72834B6BFA907B343FD20811EEFCC5BFs	 	AM
		Signatures\BD\emalware.039D1A6371697F67E3E27EE5D4C705AE1F9Fr	 	AM
		Signatures\BD\emalware.038qy05C578E0B0397C05CD0EEE5AEE8BE204Fq	 	AM
		Signatures\BD\emalware.037FC22E9DC16941E97E376817FF8C6EF0D15Fp	 	AM
		Signatures\BD\emalware.036m2AB0C05C7C35523758C168063F41B0D3Fo	 	AM
		Signatures\BD\emalware.035KR507F827C423CDEFC6FA3ACD2817ED60EFn	 	AM
		Signatures\BD\emalware.034^BF3B3D7E0F29925E7CC2B7EDBA10712BFm	 	AM
		Signatures\BD\emalware.033H51C1A4AF05B31496ED4D1C7F8D9447F7
   
 K n%“Jo&  ” K                                         F‚	 	AM
		Signatures\BD\emalware.058*4650802CB4543177CD8AE9A4B2427425F‚	 	AM
		Signatures\BD\emalware.057 6A451D53C6618245703C9A363C6B948AF‚	 	AM
		Signatures\BD\emalware.056*2F39954E1486C8E20AC9710EA0F0BCA3F‚	 	AM
		Signatures\BD\emalware.055GD85F89A8DBDF23411A4F85BEB6DCE845F‚	 	AM
		Signatures\BD\emalware.054L95EB1288599D5A27ABE8F96D8B0AF962F‚	 	AM
		Signatures\BD\emalware.053k7347BEE5CE74B6A94CFFFC4BFE0BFE16F‚ 	 	AM
		Signatures\BD\emalware.052EEFBCB8A6DB8091D06EF6B16529F20C8F	 	AM
		Signatures\BD\emalware.051>C93C56E72E6D9A243CD5DBD0E57C2B88F~	 	AM
		Signatures\BD\emalware.050VED9EE5FBFBE7387B35AD183874B0E863F}	 	AM
		Signatures\BD\emalware.04950A8178F4ACA9AE6BAD77CCAC566566EF|	 	AM
		Signatures\BD\emalware.048™8CA842E6864EEE4988ED648259E860DEF{	 	AM
		Signatures\BD\emalware.047„~09CFF7E8CF23A97BC3AA47B563398651Fz	 	AM
		Signatures\BD\emalware.046633469FBB8614EDB1A54D7EDF66740DC
   
 K n%“Jo&  ” K                                         F‚	 	AM
		Signatures\BD\emalware.071‹4E5A71002DA3719D9CBEC996BFFC6A12F‚	 	AM
		Signatures\BD\emalware.07086FC8B53669FCECFC39B7D4EA254FFA0F‚	 	AM
		Signatures\BD\emalware.069D2B754E3E8EE6F414E7989979AF18A84F‚	 	AM
		Signatures\BD\emalware.06898C2FBC287BA87AA2D45F43A4A278C11F‚	 	AM
		Signatures\BD\emalware.06750D10820F5A80784FBE2D8923773EEDAF‚	 	AM
		Signatures\BD\emalware.06683C014A2D6EFBDCFAC30E486EEB852D5F‚
	 	AM
		Signatures\BD\emalware.065hB5105B43BF229C3CF44B42156B278EDFF‚	 	AM
		Signatures\BD\emalware.064BFF35C12FDFBEE6A9AFA35DC6325BEF48F‚	 	AM
		Signatures\BD\emalware.063806F4080F54427DE0E2DB81F45726992F‚
	 	AM
		Signatures\BD\emalware.062΢61976925F29AAAF386B991760D99FAA2F‚		 	AM
		Signatures\BD\emalware.061FŒ1616D172A9D59C9F6115B8762B55E714F‚	 	AM
		Signatures\BD\emalware.0601N8773C9816A32715C694D17FAC8BBBE94F‚	 	AM
		Signatures\BD\emalware.059A0567F4C36C5E9AC1731720270B62405
   
 K n%“Jo&  ” K                                         F‚ 	 	AM
		Signatures\BD\emalware.084ZF065742216E3BA53B17A21801B9A9E55F‚	 	AM
		Signatures\BD\emalware.0835E6CC1D239B5D1B723CE93E1B131958FF‚	 	AM
		Signatures\BD\emalware.08245AD2B708D9D773FADD3786C6A8DD862F‚	 	AM
		Signatures\BD\emalware.081qB5B641AE6DB02E9A9E3EB3434ED27DCFF‚	 	AM
		Signatures\BD\emalware.080`<43A50BA81C7F50471A926668B00CCEA7F‚	 	AM
		Signatures\BD\emalware.0791F5556B162BF0A19DFD7D7C8BBBC6D10F‚	 	AM
		Signatures\BD\emalware.078ȵCC83112CFD0EECDD18A2E38E8FA2C108F‚	 	AM
		Signatures\BD\emalware.07758328F3041C2F1D91AAF618141CD4D69F‚	 	AM
		Signatures\BD\emalware.076B636C48D071E9E17CB6153C77994972AF‚	 	AM
		Signatures\BD\emalware.075—759CC3364582A40E0F52301856FE66A9F‚	 	AM
		Signatures\BD\emalware.074E0FDF6094E79E50E14849FF994E14D69F‚	 	AM
		Signatures\BD\emalware.073%027D0401DB77E02CC442D4DF2617B1B8F‚	 	AM
		Signatures\BD\emalware.0724AA648126DF6B95ED240CAFA3D66E9ED
   
 K n%“Jo&  ” K                                         F‚-	 	AM
		Signatures\BD\emalware.097nz3640741C2D31A5D6CF276FD82D62EAB7F‚,	 	AM
		Signatures\BD\emalware.096S9BDBD9BF0C3DE221263627CA0AC95469F‚+	 	AM
		Signatures\BD\emalware.095WBAC7F13727225C0CCDF7E37C08C893EBF‚*	 	AM
		Signatures\BD\emalware.094jŠ30E5108EF7B881DDDA35D7B58520B649F‚)	 	AM
		Signatures\BD\emalware.0937482F47F2FA2DEDEF5AE5CBCF745B7C9F‚(	 	AM
		Signatures\BD\emalware.092u?58C6271419B0AA182DB9A10C8D022908F‚'	 	AM
		Signatures\BD\emalware.091#19BDF6570AD7282C2A06F14E4AA1E782F‚&	 	AM
		Signatures\BD\emalware.090'60FCBD0BF38560F794BE162694C5CFFEF‚%	 	AM
		Signatures\BD\emalware.089 3D6C22153C28602FF097AA8F68A42000F‚$	 	AM
		Signatures\BD\emalware.088
m63439001B44984D1C5B6B465E51079A9F‚#	 	AM
		Signatures\BD\emalware.087Z2582422EB257A893A375DA8496B3420DF‚"	 	AM
		Signatures\BD\emalware.086~6F70ADB97BC60C579A5EE737C0F921C8F‚!	 	AM
		Signatures\BD\emalware.085T‚741A62365BD1C11B7317059184D4A8C3
   
 K n%“Jo&  ” K                                         F‚:	 	AM
		Signatures\BD\emalware.110 ˜DD0CDE67A3F2F69A1795889FE4A18A45F‚9	 	AM
		Signatures\BD\emalware.109F75077EC8E83A697E8DB5DF860835DA6F‚8	 	AM
		Signatures\BD\emalware.108Ա8D83E079EE5856F4BB738D28BBA8078BF‚7	 	AM
		Signatures\BD\emalware.107†2918EC50D6C26D5821366AF7556B7CF6F‚6	 	AM
		Signatures\BD\emalware.106
AF3B48B5910455246B4B293C1869C67A1F‚5	 	AM
		Signatures\BD\emalware.105)447BCBE93809CDFA11A7E13000BB97E3F‚4	 	AM
		Signatures\BD\emalware.104\A59C8C338FFABD11BC41EE9BC8E1634CF‚3	 	AM
		Signatures\BD\emalware.103	833983C8E5902C09F18473E407BDB003F‚2	 	AM
		Signatures\BD\emalware.102q+63F627ED1028200CF6F2B2FDA36E8153F‚1	 	AM
		Signatures\BD\emalware.101!=1FA088B907D142AE1BDF81F83B401F6EF‚0	 	AM
		Signatures\BD\emalware.1007$B816B7DE5BF5A4A7713AC42DB8639F19F‚/	 	AM
		Signatures\BD\emalware.099+ 8CC248B1D73893D29367AADA0065562FF‚.	 	AM
		Signatures\BD\emalware.098AA352F3A956962C304B8403BEE3F3777
   
 K n%“Jo&  ” K                                         F‚G	 	AM
		Signatures\BD\emalware.123A76F2E18BF7CCEE23B6E9E2BA069EAE55F‚F	 	AM
		Signatures\BD\emalware.122A81233073101E4CDC0F357CBEE63AFE9F‚E	 	AM
		Signatures\BD\emalware.12105E1FC49D1F59CB87DBC8423A218C43FF‚D	 	AM
		Signatures\BD\emalware.120/ƒ75162FF58686DA3BABF61773A55CF99BF‚C	 	AM
		Signatures\BD\emalware.1193558C69B09722062B114A1E6176E0F26F‚B	 	AM
		Signatures\BD\emalware.118$CFB5BBA046B903864CC903EAC6509266F‚A	 	AM
		Signatures\BD\emalware.117C3ABE0712FDF43666AA379495EBD0518F‚@	 	AM
		Signatures\BD\emalware.116OFF5B279BF78D4E35369600D3503A2F62F‚?	 	AM
		Signatures\BD\emalware.115D44FDA65A37AE6D5053E33A921C2E153F‚>	 	AM
		Signatures\BD\emalware.1149A24220ED1BBAFB163349AAC0BC8DBDEF‚=	 	AM
		Signatures\BD\emalware.113˜21D9D3CB2F532499F0F21CD110339964F‚<	 	AM
		Signatures\BD\emalware.112‹9B26D3876ACAA49FCF89AB7A233E6C68F‚;	 	AM
		Signatures\BD\emalware.111^i2964CFE75D4CCAF7632BD3C9379BFD92
   
 K n%“Jo&  ” K                                         F‚T	 	AM
		Signatures\BD\emalware.136%vF23BBB342BE01A0E1B76FA1F7092AF17F‚S	 	AM
		Signatures\BD\emalware.135yFD482B8B4CFE6BC5B23DA34B513A42FAF‚R	 	AM
		Signatures\BD\emalware.134E4C6BA0DCC04CAD01AE9D874B6E95309F‚Q	 	AM
		Signatures\BD\emalware.133E4106B53C81C51C7561205A7B2EDC6E7F‚P	 	AM
		Signatures\BD\emalware.132 C55C99EA5F0ADF5BACD87D121EC84C58F‚O	 	AM
		Signatures\BD\emalware.131 1462C83591CB5A30E4688074CB4524E71F‚N	 	AM
		Signatures\BD\emalware.130y—440DB23D2C51981D4AD878B2536B426EF‚M	 	AM
		Signatures\BD\emalware.129F661C5789767836FF5A89DE214F09FEB9F‚L	 	AM
		Signatures\BD\emalware.128>-43AC9D7D6939855FED0A7E35095F103FF‚K	 	AM
		Signatures\BD\emalware.127214760AC7DB34847103FECBC3E7378B0F‚J	 	AM
		Signatures\BD\emalware.12605ACDD90BE6768A714D232D3055B37C4F‚I	 	AM
		Signatures\BD\emalware.125‰8CA86DE46E721AAFB9E7C9504A53479CF‚H	 	AM
		Signatures\BD\emalware.124;{FB4E7DDF872605F5E60C1A26FB721AC2
   
 K n%“Jo&  ” K                                         F‚a	 	AM
		Signatures\BD\emalware.149‡š9B44C6DA01C7BDA05F4BE0517DB155B5F‚`	 	AM
		Signatures\BD\emalware.1482EF46EA179FBD67EFF152F569F8A087B2F‚_	 	AM
		Signatures\BD\emalware.147ƒ459201CEEFD42CCCDF3CA11C2B9DC579F‚^	 	AM
		Signatures\BD\emalware.1466A11368DAC530807A8CA58A86C8BD6600F‚]	 	AM
		Signatures\BD\emalware.145
3E1EB45DF92266AB14D4E1BD4F55479AF‚\	 	AM
		Signatures\BD\emalware.144[330CE232FD4CED2138E0980446303332F‚[	 	AM
		Signatures\BD\emalware.143+Z319C7C8C510A2A2DBC0F1CE411B27176F‚Z	 	AM
		Signatures\BD\emalware.142970E89D0EC7086D2C893922AF713ADD9F‚Y	 	AM
		Signatures\BD\emalware.141E726DA920CAEF3B1713B45CC397A3D2DF‚X	 	AM
		Signatures\BD\emalware.14094E855A583800302ED3C1A666DE8B95AF‚W	 	AM
		Signatures\BD\emalware.1392A9D141D3C4D14EE3220F12EDEAA0D2DF‚V	 	AM
		Signatures\BD\emalware.138KSC147F69D523FF6CACCD94BAECA619127F‚U	 	AM
		Signatures\BD\emalware.137‰DD65ED4BCC6EA8E3D931107711BD446C
   
 K n%“Jo&  ” K                                         F‚n	 	AM
		Signatures\BD\emalware.162š19CE632E9A44F7FE193EF6A2886C698AF‚m	 	AM
		Signatures\BD\emalware.161‡84953A1D0BB260041740C24A98D14D6AF‚l	 	AM
		Signatures\BD\emalware.160*4DF46487EBA3203E792599C1C245645BF‚k	 	AM
		Signatures\BD\emalware.159gAF9C7D7FC8E0F64E580CAA56B8FFE4FBF‚j	 	AM
		Signatures\BD\emalware.158zN44E6519FE3E52DC0AC5EF71B235921F6F‚i	 	AM
		Signatures\BD\emalware.1572B710FFD0A581A0786305690D1C19D44F‚h	 	AM
		Signatures\BD\emalware.1562B7B17DAD4BB85D3715BDB9B48A8689D1F‚g	 	AM
		Signatures\BD\emalware.155V89657D0C08DE84EC2A7CD7AA3AE10A55EF‚f	 	AM
		Signatures\BD\emalware.154b9AE03B1C8BFB22C9BA0BA82959B56A42F‚e	 	AM
		Signatures\BD\emalware.153KA2808CBA8A02C68925973619C17F2F2AF‚d	 	AM
		Signatures\BD\emalware.152"	E2EFF550F515008B6ECBA131735D8DCDF‚c	 	AM
		Signatures\BD\emalware.151 A3BA12494860ABD24B5F04A46A885259F‚b	 	AM
		Signatures\BD\emalware.150 F2721C12A835C7FD14BFBB7803BB2C27
   
 K n%“Jo&  ” K                                         F‚{	 	AM
		Signatures\BD\emalware.175&F875542954B91374697A8F4288D90602F‚z	 	AM
		Signatures\BD\emalware.174N431051385A317CAC9599669063F19D97F‚y	 	AM
		Signatures\BD\emalware.173J$D7B806A9CAE8A17929245B4AF6B97E81F‚x	 	AM
		Signatures\BD\emalware.172/5B2369D72DA8B8496FF6ADD2F786F7A8F‚w	 	AM
		Signatures\BD\emalware.171BE8777CEACADA5E9921AD6E9A95C94D7F‚v	 	AM
		Signatures\BD\emalware.170$vE460164EE5107588719B94AC0601E960F‚u	 	AM
		Signatures\BD\emalware.169–89665D2F69B90715F372F39BAEA6DEE2F‚t	 	AM
		Signatures\BD\emalware.168ƒCC4719447BF992FF89E9027764A9B38ACF‚s	 	AM
		Signatures\BD\emalware.167PlFADE210632D0FBDBC60B0BE7D884F929F‚r	 	AM
		Signatures\BD\emalware.166OA5A3E28FAE0454B98D42FC9B770ED842F‚q	 	AM
		Signatures\BD\emalware.165ڴ46C778AE3A83DD4D68F703CA6C1DBECDF‚p	 	AM
		Signatures\BD\emalware.164c7989947FC7636C67751BECECFA492154F‚o	 	AM
		Signatures\BD\emalware.163b01CF2B5B0BF346E2715F7F085AE20C7B
   
 K n%“Jo&  ” K                                         Fƒ	 	AM
		Signatures\BD\emalware.188AB8771EB3CB9AD8579D8267B1B437F4EFƒ	 	AM
		Signatures\BD\emalware.187YD718CB90D86295AB658BCBEBA477F473Fƒ	 	AM
		Signatures\BD\emalware.186<x97725648588CDD264A3BBB0A0A022611Fƒ	 	AM
		Signatures\BD\emalware.185AE676A3ED06AAAB1CA1C8081693D18DAFƒ	 	AM
		Signatures\BD\emalware.184B5367F2F05AE03C1E64626D6B4C09117Fƒ	 	AM
		Signatures\BD\emalware.183q59090D8F90238AAB214189715F7FDEFBFƒ	 	AM
		Signatures\BD\emalware.182:625C29C40FE529A7AFEDA70BDC7CEDF8Fƒ	 	AM
		Signatures\BD\emalware.181vD94BAEDAC6E08BA1BF7996A61AA0BFFEBFƒ 	 	AM
		Signatures\BD\emalware.180B609828AC3ADA92C24897091415CDD5BF‚	 	AM
		Signatures\BD\emalware.179œ0267B3495E4BA54BF953301E2CAC4883F‚~	 	AM
		Signatures\BD\emalware.178@37A5DF65029BF4A708145EDB6C84D733F‚}	 	AM
		Signatures\BD\emalware.1776D1127C64686CB3AA71AF192F1EEF8A34F‚|	 	AM
		Signatures\BD\emalware.176[A6D734A2C3908F4B168E2389855EBAA5
   
 K n%“Jo&  ” K                                         Fƒ	 	AM
		Signatures\BD\emalware.201آ76598B4BD9052C913CFCFCCAF6564597Fƒ	 	AM
		Signatures\BD\emalware.200uDC2E2EF4924D0AB97E72D8DF6AFE3FD4Fƒ	 	AM
		Signatures\BD\emalware.199J—0E3902A1465BF85E511DA907FAB0AAAEFƒ	 	AM
		Signatures\BD\emalware.198"‚70C10BF24E46F34333E2C16C108BEF58Fƒ	 	AM
		Signatures\BD\emalware.197^T11247494F20465511F691F7412306C8BFƒ	 	AM
		Signatures\BD\emalware.19651E0BBB437E6B004BF85421977576FBBFƒ	 	AM
		Signatures\BD\emalware.195UwFF5FF2662D9C65C1580D7566CF03FB27Fƒ	 	AM
		Signatures\BD\emalware.194ž14251372EDA11F872FF7242A66F51A1CFƒ
	 	AM
		Signatures\BD\emalware.193{=BFFD74950AECE4C3B347041215C8BB4AFƒ	 	AM
		Signatures\BD\emalware.192DF9C8AB67115D6597112859E4C70116DFƒ	 	AM
		Signatures\BD\emalware.191d1A00832036A1604E4FB48C58B0340601Fƒ
	 	AM
		Signatures\BD\emalware.1909D96571E8F17E667B41EBCBA6A00FCF8Fƒ		 	AM
		Signatures\BD\emalware.18950981E934AF051848B15797C75370B3D
   
 K n%“Jo&  ” K                                         Fƒ"	 	AM
		Signatures\BD\emalware.214~"98995AD20FA5EA34B795EC61365A2C98Fƒ!	 	AM
		Signatures\BD\emalware.213W5EF4A9AAB5A34943A6EBE66F9006DB97Fƒ 	 	AM
		Signatures\BD\emalware.212633941AE3C82FB48CC111D7A36FE40685Fƒ	 	AM
		Signatures\BD\emalware.211|€7340C931444E9DE0ABA4D30B6EBE1DBBFƒ	 	AM
		Signatures\BD\emalware.210s3B20F91D9BA77884320EA16A5A542141Fƒ	 	AM
		Signatures\BD\emalware.209_66B05C9E1F7BA365711FB17BEB5C5A37Fƒ	 	AM
		Signatures\BD\emalware.208=CA76634959BA3A2B639FBEF840ED582CCFƒ	 	AM
		Signatures\BD\emalware.207.?CDC9E2FA872C8812325FA662205BF02AFƒ	 	AM
		Signatures\BD\emalware.206296B20960D725C4143B190EA6496B33BFƒ	 	AM
		Signatures\BD\emalware.2059iE0F29F580CE2BEBD4D157ED7438BDC21Fƒ	 	AM
		Signatures\BD\emalware.204O490CDCC0A0ECC12F820A51580C60A94FFƒ	 	AM
		Signatures\BD\emalware.203AA4C599004C6F1E04004CDB7E048A689Fƒ	 	AM
		Signatures\BD\emalware.202‰EF323087BEF074D9D15E4113A85BEE1D
   
 K n%“Jo&  ” K                                         Fƒ/	 	AM
		Signatures\BD\emalware.227{ƒ58C15B6A679F79B2CF7924A005A4E6C5Fƒ.	 	AM
		Signatures\BD\emalware.226BBDF6924D98BCE006FDEA9AA888DB040Fƒ-	 	AM
		Signatures\BD\emalware.225}K14EAD86531ED7075B9B5622427C4888AFƒ,	 	AM
		Signatures\BD\emalware.224jB980C4B76AABA0D4DD5B4BB26CFEAAC4Fƒ+	 	AM
		Signatures\BD\emalware.223†115EDF70F68766FA7F8B482E5892D259Fƒ*	 	AM
		Signatures\BD\emalware.222C74CC91AEB3DC84E440E5A36BD3F216AFƒ)	 	AM
		Signatures\BD\emalware.221J2F5703B9E3C60FBE2AB8A9DCFD86C8EEFƒ(	 	AM
		Signatures\BD\emalware.220"6C1801FE82071894D9690AA736CA948FFƒ'	 	AM
		Signatures\BD\emalware.219‰&E41C10CAE89BAF6448C3F70DF8DC8B46Fƒ&	 	AM
		Signatures\BD\emalware.218010F90A43084698E3BF413A54A2998199Fƒ%	 	AM
		Signatures\BD\emalware.217b42F8471130DED737A1B188C886839039Fƒ$	 	AM
		Signatures\BD\emalware.2169D0D4E075D1FA94821CED41528D8E8692Fƒ#	 	AM
		Signatures\BD\emalware.2151532BBDAD9CFFED6411777C523B24F7D
   
 K n%“Jo&  ” K                                         Fƒ<	 	AM
		Signatures\BD\emalware.24089C0F71FD8DDDB35BD9211B0C949180AFƒ;	 	AM
		Signatures\BD\emalware.239*D51177EC534DE968F0369A6DD37E76DFFƒ:	 	AM
		Signatures\BD\emalware.238 C14A6717F9E890102F9C6BF7F669275DFƒ9	 	AM
		Signatures\BD\emalware.237 BF4FDD31DF97B111055F80623164B60AFƒ8	 	AM
		Signatures\BD\emalware.2360A67D4E0B4E908D1A165713386DE4BC46Fƒ7	 	AM
		Signatures\BD\emalware.235$<447D06A580ADF03705968218EC5C8E71Fƒ6	 	AM
		Signatures\BD\emalware.234 ,2FE819C0CE17EC79944F59349DFECD06Fƒ5	 	AM
		Signatures\BD\emalware.233hFB597D6563940B8BD1F424138DBC7DC2Fƒ4	 	AM
		Signatures\BD\emalware.232rCD91E0E152CAD56107D273C54962323FFƒ3	 	AM
		Signatures\BD\emalware.231‡eE825A89DD209B00F818FE42E504AC641Fƒ2	 	AM
		Signatures\BD\emalware.230>A2533DE74457FCEA0C0C1C4D594EDF83Fƒ1	 	AM
		Signatures\BD\emalware.229 ƒ313F75DF5501A71EB7B9937C4DB81C9AFƒ0	 	AM
		Signatures\BD\emalware.228 7F40C3DF27FA2E1D5029A996F71449C37
   
 K n%“Jo&  ” K                                         FƒI	 	AM
		Signatures\BD\emalware.253
EAAE68ACF35F2D7CE618B02591B357DCFƒH	 	AM
		Signatures\BD\emalware.25241D0442B8BA7BF4BF8E611B38CC17F05FƒG	 	AM
		Signatures\BD\emalware.251 38CD3F00CABB1AF77F943C1E49C57643FƒF	 	AM
		Signatures\BD\emalware.250r=F76992BB698BC6CEC54844867B33BFB7FƒE	 	AM
		Signatures\BD\emalware.249 `32D73020D6F3AB0B1B15228CFD522002FƒD	 	AM
		Signatures\BD\emalware.248%96E0EA9D70AEF560E0277D7E04C0A7CEFƒC	 	AM
		Signatures\BD\emalware.247 tD9FA999BB3279DBE69E13B2549AF1A9BFƒB	 	AM
		Signatures\BD\emalware.246"85001E16A5D8FE680C36023F970167BCFƒA	 	AM
		Signatures\BD\emalware.245Q211C10B64C28B9AE2735CFF0DFC3D491Fƒ@	 	AM
		Signatures\BD\emalware.244q06BABA87755908F9CDD61B1468293AEAFƒ?	 	AM
		Signatures\BD\emalware.243 F641FB95B0850CACB6134551FE630813Fƒ>	 	AM
		Signatures\BD\emalware.242|7D442C636604B04E1F2425AB8D8FCFC5Fƒ=	 	AM
		Signatures\BD\emalware.241m44AD4A53E4839F5056D4AE28C53A66D1
   
 K n%“Jo&  ” K                                         FƒV	 	AM
		Signatures\BD\emalware.266m6A0C2313789F7AB5E9382A79F5E79603FƒU	 	AM
		Signatures\BD\emalware.265*9DA1DA73A9A124440B91E679A5B33B43FƒT	 	AM
		Signatures\BD\emalware.264iFE6A984C86E91F4C86509B1C3CE0AEE9FƒS	 	AM
		Signatures\BD\emalware.263VA46292D786D7508CFD8A2D1BCAFDD4FAFƒR	 	AM
		Signatures\BD\emalware.262\D5FA846F2F9C45DC75C60261791F14D2FƒQ	 	AM
		Signatures\BD\emalware.261q444E05457CEE7A13D0F31A83B2F2A87AFƒP	 	AM
		Signatures\BD\emalware.260t916538F4849549E5203A5184CD414A40FƒO	 	AM
		Signatures\BD\emalware.259JC8BD659E4014EBB3380FE5B122DF7A29FƒN	 	AM
		Signatures\BD\emalware.258BCC00BA07AF7D6E8BCF28E9E7AA721A2FƒM	 	AM
		Signatures\BD\emalware.257A8D36DD2EA000045D159D46C90E615FBFƒL	 	AM
		Signatures\BD\emalware.256Uf70DD12060DA5088FF84D5DF25F565ACCFƒK	 	AM
		Signatures\BD\emalware.255LDBD24B0113B912B7EB1D4D72B854DA3BFƒJ	 	AM
		Signatures\BD\emalware.254™BC88FCCA26F4E8F17D7AC6A46626967C
   
 K n%“Jo&  ” K                                         Fƒc	 	AM
		Signatures\BD\emalware.279c6A16D9B61B990378821DC7528476EC94Fƒb	 	AM
		Signatures\BD\emalware.278‹E71C8CB025846EBB3384CD3537A88301Fƒa	 	AM
		Signatures\BD\emalware.277C31AEF8CE9CE092997AE16D63ACFEBAAFƒ`	 	AM
		Signatures\BD\emalware.276‰0DF4FF0C27FD4BB698F421E681A8BFA0Fƒ_	 	AM
		Signatures\BD\emalware.275538C33CED94A91899F8A9E722C815BB8Fƒ^	 	AM
		Signatures\BD\emalware.274ƒ0666C8BDBDF95B61FFA21BFA79BD660CFƒ]	 	AM
		Signatures\BD\emalware.273s873BDCDDE16FB6A880226C887D1373E9Fƒ\	 	AM
		Signatures\BD\emalware.272‚A3877E6D0AABB2E64D9FD178D9F2226EFƒ[	 	AM
		Signatures\BD\emalware.271:B66CCA9E040D9D2EF489691F7E00C032FƒZ	 	AM
		Signatures\BD\emalware.270TABA23B9D241F26C2307F94B46687578FFƒY	 	AM
		Signatures\BD\emalware.269BF06B499B59C8D3A5AA9CC516B08B736FƒX	 	AM
		Signatures\BD\emalware.268B9C645CECBA9EF79B671A2B06BA15130FƒW	 	AM
		Signatures\BD\emalware.267۽B1B03206DBDD96E832DDD08C4273160D
   
 K n%“Jo&  ” K                                         Fƒp	 	AM
		Signatures\BD\emalware.292#9F6BA9E4D951AD2F438AE8255270B719Fƒo	 	AM
		Signatures\BD\emalware.291+56ABDE0D5DE64643BD564A1CED77C4BFFƒn	 	AM
		Signatures\BD\emalware.290&117BA70218A3CEAD430E03D7AC65DBC5Fƒm	 	AM
		Signatures\BD\emalware.289n–BD26A5D50D5E2B71E8BB3D50F7BDED68Fƒl	 	AM
		Signatures\BD\emalware.2885D9C1A3D20319AF47799C063A432B1FAFƒk	 	AM
		Signatures\BD\emalware.287T3980100B5B0299C65B862E6294AB29A3Fƒj	 	AM
		Signatures\BD\emalware.286*3EB8ECED0273F8818319F02DB6A50EFCFƒi	 	AM
		Signatures\BD\emalware.28591F80893F2423532A05AB6F71C42E32CAFƒh	 	AM
		Signatures\BD\emalware.284$FEA64956F440FECCF89B959FC460C84EFƒg	 	AM
		Signatures\BD\emalware.283‘AED0A970133DCB9C6CE314BCD7B6E2F8Fƒf	 	AM
		Signatures\BD\emalware.282AB3BD7EAA8088CF4B3D7596D0B1F08171Fƒe	 	AM
		Signatures\BD\emalware.281}C4F38DF3F6256089BAB372EF5F84D2A1Fƒd	 	AM
		Signatures\BD\emalware.280N5E8820F01D56916F411C19D4DF95ED66
   
 K n%“Jo&  ” K                                         Fƒ}	 	AM
		Signatures\BD\emalware.30506B1572D3343DB333D093932BA25205DEFƒ|	 	AM
		Signatures\BD\emalware.304‘‚809FBC801B1A689E0AA78E9C56939AB2Fƒ{	 	AM
		Signatures\BD\emalware.303„c6BBDFD0E89847F025FA7C90D7B09C3F6Fƒz	 	AM
		Signatures\BD\emalware.302AF66BCC3D707EAFF6608EA6A8C1D47E5Fƒy	 	AM
		Signatures\BD\emalware.301˜_B813A3628B7D631F21761B35D026CA76Fƒx	 	AM
		Signatures\BD\emalware.300YC62FDA8A681496ED89E0C421EC5985BAFƒw	 	AM
		Signatures\BD\emalware.299u6644F5A99AC99C14F54FCC99C4D78A4DFƒv	 	AM
		Signatures\BD\emalware.298u76888AB4ABF85C9129E7296DAAD0EE38Fƒu	 	AM
		Signatures\BD\emalware.297DE1E69F264F63F0A989D83112A50741FFƒt	 	AM
		Signatures\BD\emalware.296L^1D1180401BA790AFECDB0EB178783505Fƒs	 	AM
		Signatures\BD\emalware.295B9409E433465E1B966B318CC786F2A33Fƒr	 	AM
		Signatures\BD\emalware.294pHF81E05B57061D65A153C0192885BAFEFFƒq	 	AM
		Signatures\BD\emalware.293[7E8AA2695E687A0A7306042958E66A6F
   
 K n%“Jo&  ” K                                         F„
	 	AM
		Signatures\BD\emalware.318toEE8E661CF09392B2362063713B296870F„		 	AM
		Signatures\BD\emalware.31757C3F19DC7EAFC28663C8B8E36BC91E7FF„	 	AM
		Signatures\BD\emalware.316`SEDBAFB750AF18321C51061BF5C84C507F„	 	AM
		Signatures\BD\emalware.315HEABC8AF92ABC3329CED4914DB7571247F„	 	AM
		Signatures\BD\emalware.314‰12211C46341865895E2519F2163DE4E1F„	 	AM
		Signatures\BD\emalware.313‚f2A233D50E74B9778062EF0E37C7996E8F„	 	AM
		Signatures\BD\emalware.3121^D49B0F2CC9502F7F554158EA7C8726B8F„	 	AM
		Signatures\BD\emalware.311"434472F8094D17C48E4C4254746CBC357F„	 	AM
		Signatures\BD\emalware.310'“4FB218EE8AA9DCF7A5C09EC72BCDFCC5F„	 	AM
		Signatures\BD\emalware.309[FB8181D8B613D39E539198DE38467E5EF„ 	 	AM
		Signatures\BD\emalware.308‡1DC83FA7EC7F411FEFBBBF48271913EEFƒ	 	AM
		Signatures\BD\emalware.307‹33B261AA8F488BB5380B178041580ED9Fƒ~	 	AM
		Signatures\BD\emalware.3065A5EF0D76A7A983FDC8292B9BA73DA55
   
 K n%“Jo&  ” K                                         F„	 	AM
		Signatures\BD\emalware.331†6BE631DAF257409618F1B40D6C0D706CF„	 	AM
		Signatures\BD\emalware.330FC6C4AC2A4715CB0BB300F8E4F1FBE54F„	 	AM
		Signatures\BD\emalware.329nF076B45A0938EC48D14C2EEC2FF3ECB2F„	 	AM
		Signatures\BD\emalware.328AF136D4F980E6D3C7968CBA508654065F„	 	AM
		Signatures\BD\emalware.327,3C95216C9A6DBA9423F7811E1629414AF„	 	AM
		Signatures\BD\emalware.326L317F55EEEB36CB9918D0258C714D5AD56F„	 	AM
		Signatures\BD\emalware.325œ8E96ACE903BF77BDE2CE2F772AA3E77EF„	 	AM
		Signatures\BD\emalware.324XAA14A1891505CD780A47BCC6B0D8E24EF„	 	AM
		Signatures\BD\emalware.32307E12D741BC9D09B1B113502DF3778BCF„	 	AM
		Signatures\BD\emalware.322!E6F01EB22BE6908544B0B3087D6FD634F„
	 	AM
		Signatures\BD\emalware.321W2CC4E4B42744D74998109560E8600548F„	 	AM
		Signatures\BD\emalware.32053A7EAFED44C5297CD075371040C229FF„	 	AM
		Signatures\BD\emalware.319AD67B4AFB635E30251C2A6C7C15E03CE
   
 K n%“Jo&  ” K                                         F„$	 	AM
		Signatures\BD\emalware.344 E85A9BD320051BFDF93B8FC6D922C176F„#	 	AM
		Signatures\BD\emalware.343M35A664F740DB9D35EEBF87C5696FD74AF„"	 	AM
		Signatures\BD\emalware.342]0298CB42CB91A9824CA791998CD4713AF„!	 	AM
		Signatures\BD\emalware.341‡ACC92E6B9B9E8C28AD9D9F3BC227B37AF„ 	 	AM
		Signatures\BD\emalware.340-7411A2125393A45A115885C4D3106445F„	 	AM
		Signatures\BD\emalware.339f1A832360FF04DC356F614CAD97A01460F„	 	AM
		Signatures\BD\emalware.338MD686A98072E312FB7FA6D094810CC871F„	 	AM
		Signatures\BD\emalware.3371aBADB347A41356FC5719951F746CAB494F„	 	AM
		Signatures\BD\emalware.336‚FDB42B546A134FE9638396080ACC8273F„	 	AM
		Signatures\BD\emalware.3355588FFBFC5E60AB50B5828A056718065F„	 	AM
		Signatures\BD\emalware.334y8FDE0573D2CD894ED917CC9D1A7767C3F„	 	AM
		Signatures\BD\emalware.333“F02B96C367F8BE8A82A5B5482ACEC5B4F„	 	AM
		Signatures\BD\emalware.332;C0F1D1F38E8746357DBC07770A9B6E03
   
 K n%“Jo&  ” K                                         F„1	 	AM
		Signatures\BD\emalware.35767D26C481D7750C8ADF49167F8065F57F„0	 	AM
		Signatures\BD\emalware.356E5C27A9897643B25B7478441095623DCF„/	 	AM
		Signatures\BD\emalware.355!DC1E0748C83F8CB34E8038BA14F4AD0EF„.	 	AM
		Signatures\BD\emalware.354ž365C6107F7EB93475B8EC0E80570E264F„-	 	AM
		Signatures\BD\emalware.353274B4579BBE5924EE527B37678709AE3F„,	 	AM
		Signatures\BD\emalware.3528DB802848CBA5FC23B1A58A0619DEA90F„+	 	AM
		Signatures\BD\emalware.351.O6B85B7094AD5A945901C4D2F7964AC07F„*	 	AM
		Signatures\BD\emalware.350H397A08D2F0C4C2271B8F8C7051F39264F„)	 	AM
		Signatures\BD\emalware.349i0419343D6D4F13178BB37D1A8BE6DE8C2F„(	 	AM
		Signatures\BD\emalware.348i"45F8FDB04B10FDB9E6E478152D679B6FF„'	 	AM
		Signatures\BD\emalware.347›RD9730E150CB79EB6E6FF93BE857B6A10F„&	 	AM
		Signatures\BD\emalware.346fE47DA2F9A6604F27C75974331AEDD6A4F„%	 	AM
		Signatures\BD\emalware.345D8F60FF3F16727EEA4D646163E67DD0A
   
 K n%“Jo&  ” K                                         F„>	 	AM
		Signatures\BD\emalware.370XDCDA792F01774CBD7A893617B6537D33F„=	 	AM
		Signatures\BD\emalware.369vAA6CE8C5FDAA0C4C6620A09EE8B95BEDF„<	 	AM
		Signatures\BD\emalware.368D27CC992B58DB543B6BA6E915F5A963AF„;	 	AM
		Signatures\BD\emalware.367‘5014F4523FC9CFB51B2CA5245FDF93AB2F„:	 	AM
		Signatures\BD\emalware.366I9799A39BD4113F31D6765A6B8573F21EF„9	 	AM
		Signatures\BD\emalware.365DECE0251FB1DFD05CFA9FAD534FAC4CFF„8	 	AM
		Signatures\BD\emalware.364 Š855B35E6F70875650B3AA93526D895F7F„7	 	AM
		Signatures\BD\emalware.363"BC316494AEE0BAA995F3BEC5591BAA76F„6	 	AM
		Signatures\BD\emalware.362‰gB3CA2A72B89D3302FE3134CED75C9C9CF„5	 	AM
		Signatures\BD\emalware.361‘26EF3AE3929C74C569E3D4484E5577E0F„4	 	AM
		Signatures\BD\emalware.360JBE67E4D325CD04196F163C952C63E248F„3	 	AM
		Signatures\BD\emalware.359,40F879F5DCF603D319A31856475709AFF„2	 	AM
		Signatures\BD\emalware.358@>3ED793A9FB51806748FF3953E4DD299D
   
 K n%“Jo&  ” K                                         F„K	 	AM
		Signatures\BD\emalware.383+@9D9BA549CB2F427653D00B43649F967BF„J	 	AM
		Signatures\BD\emalware.382—05D878495D7D902D33A36279D15B66086F„I	 	AM
		Signatures\BD\emalware.381m/DDBB753D4F9E2E25EFD7485873B0AE07F„H	 	AM
		Signatures\BD\emalware.380Ÿ93A9413B72FEC5CD5366D94619B7C8E0F„G	 	AM
		Signatures\BD\emalware.3790E3A6C2058454CBCF086199D5D3C1CA7F„F	 	AM
		Signatures\BD\emalware.378B4C30576CCC4679559AB7D6D3FEF28D5F„E	 	AM
		Signatures\BD\emalware.377f69EEAE11BF48D3B8D3D5D7CD9389CB7EF„D	 	AM
		Signatures\BD\emalware.37600CA7387993D5C194644378745FF7143F„C	 	AM
		Signatures\BD\emalware.3758C63E4B6B3AB58389DCD9F6CFE045D96CF„B	 	AM
		Signatures\BD\emalware.374A2D401C8706D73F21F462443E088B81AF„A	 	AM
		Signatures\BD\emalware.373‚D40FB679EE4F98E2DEC06D510F870A43F„@	 	AM
		Signatures\BD\emalware.372c32C2F31CA7BC76AC6DFAD3AFF8B19323F„?	 	AM
		Signatures\BD\emalware.3715CDD15C623BCD4227C4928968C6BD08CF
   
 K n%“Jo&  ” K                                         F„X	 	AM
		Signatures\BD\emalware.396rE343E8C0651718F87CC628528638EA2DF„W	 	AM
		Signatures\BD\emalware.395‘@EED3EE0477FFB16FDACDB3F5B920B09BF„V	 	AM
		Signatures\BD\emalware.394AC67F8A1C6AA04D1EDD1B34AE4666E8DF„U	 	AM
		Signatures\BD\emalware.393zC2D1A2D85093FBCEEDB76D448D9C9C5FF„T	 	AM
		Signatures\BD\emalware.392%62F323FA524857FABE00CFDB766C19A8F„S	 	AM
		Signatures\BD\emalware.391c‰35930D398569124E37474DE0F29ACEA5F„R	 	AM
		Signatures\BD\emalware.390*CC9FC0991149368B7F03C3881FC554662F„Q	 	AM
		Signatures\BD\emalware.389*F0729C2DA00092A81C5DFF7D9DC28E26F„P	 	AM
		Signatures\BD\emalware.388A67343EB465BE0904A2D60F3627F71B1F„O	 	AM
		Signatures\BD\emalware.3879ECE033FC844C69DD53502FA2DA2AC97F„N	 	AM
		Signatures\BD\emalware.386AE9EF8F2D6D88BD7B8834D9D34022E90F„M	 	AM
		Signatures\BD\emalware.385V45AC0D142E20FC9E784DC5A2BA3D8F8DF„L	 	AM
		Signatures\BD\emalware.384T0DC0AC29027F5982BDACA5F4AC64078E
   
 K n%“Jo&  ” K                                         F„e	 	AM
		Signatures\BD\emalware.409/7322300C33EAE1DD2F652A210F343D16F„d	 	AM
		Signatures\BD\emalware.408‡EC2687F24BDE79C07E61CA86486F2B80F„c	 	AM
		Signatures\BD\emalware.407888347B8F70923DE22A405E7D2A3A6A8F„b	 	AM
		Signatures\BD\emalware.406022F8CCBA2AD36865E4C6608E088B0927F„a	 	AM
		Signatures\BD\emalware.405/9C671638D78C0973AFFE62BCD1243129BF„`	 	AM
		Signatures\BD\emalware.404)21DA026684AF8E426A608CD0BFD41254F„_	 	AM
		Signatures\BD\emalware.4037—6DCA0D792D89A0DBE0EEB295513B36DDF„^	 	AM
		Signatures\BD\emalware.40249ECD9BD4BC344B5208F25101E7243C7F„]	 	AM
		Signatures\BD\emalware.4011362D57ED640E6337A73F612EB450A8CF„\	 	AM
		Signatures\BD\emalware.400 |4AEC67A47201CD633ACD2BAC7CB92E0CF„[	 	AM
		Signatures\BD\emalware.399ƒ$B817A5BFCEDBFCB8B702CD4CF5496F15F„Z	 	AM
		Signatures\BD\emalware.398—8732FE9052B00FCDCCE3AE81E2972B999F„Y	 	AM
		Signatures\BD\emalware.397B245A51283207F7A8903287FCA9D870DC9
   
 K n%“Jo&  ” K                                         F„r	 	AM
		Signatures\BD\emalware.422;1356BF6556A57F8B925B7188EA2E876AF„q	 	AM
		Signatures\BD\emalware.421r$DEB288A4047CBE400224A9C40BC194B7F„p	 	AM
		Signatures\BD\emalware.420&k3D6DC3D54E38339CA66A6B7F362F14FAF„o	 	AM
		Signatures\BD\emalware.419‚0AEDDE1C62E8C866243B3100E92CAD9FF„n	 	AM
		Signatures\BD\emalware.418VyA4EA04F6848A7A73FCCF03B5C1F3B879F„m	 	AM
		Signatures\BD\emalware.4172z8602AF6E636FCC5F167C9F72314E3748F„l	 	AM
		Signatures\BD\emalware.416gBB4AEEFE428A8B7E2BB453EB823E0D4FF„k	 	AM
		Signatures\BD\emalware.415 BE14B129E0571BAC8EC454BB601B6A8E4F„j	 	AM
		Signatures\BD\emalware.414‚6E362D9393459241794DD39A7DF4FF40F„i	 	AM
		Signatures\BD\emalware.4132469E0F595FF7500209ADDA6AFFE0CFEF„h	 	AM
		Signatures\BD\emalware.41251695D14227D3536DD436634E2CC057DF„g	 	AM
		Signatures\BD\emalware.411+A5292C05A3E04386705969ACE09EC987F„f	 	AM
		Signatures\BD\emalware.410A017BEB0F684D070590FC7096AF66C9E7
   
 K n%“Jo&  ” K                                         F„	 	AM
		Signatures\BD\emalware.435r641C0455620D0C2CB9F62799D8AEE0F1F„~	 	AM
		Signatures\BD\emalware.434—CE76DC76EE6F5C2AD3C2E09F31D3F747F„}	 	AM
		Signatures\BD\emalware.433F09A4FB9C00EABB24A8FA4F04FCDDE98F„|	 	AM
		Signatures\BD\emalware.432Œ118E80727D71A43331220BB8234E3671F„{	 	AM
		Signatures\BD\emalware.431‰CE271253680AD1E78722B0E346A8FD82F„z	 	AM
		Signatures\BD\emalware.4303B84800CD50D750555CFFEB8D6DFDD4FF„y	 	AM
		Signatures\BD\emalware.4295D86156DFD9585B8815999E0A33357F7F„x	 	AM
		Signatures\BD\emalware.428w8802D870F921E6D56D2D4284D820BC99F„w	 	AM
		Signatures\BD\emalware.4277AB214C9204352659A83DAC153420729F„v	 	AM
		Signatures\BD\emalware.426{634E8C46593644DE33855656AB79A978F„u	 	AM
		Signatures\BD\emalware.4251B6674EC28C6E74C37145A5A3E5280CCFF„t	 	AM
		Signatures\BD\emalware.424nAFC7926D2C9219A776298DCEBF9AD9DCF„s	 	AM
		Signatures\BD\emalware.423:K3D2818ED98C3AA1B7E92BF2DCBDF7BF3
   
 K n%“Jo&  ” K                                         F…	 	AM
		Signatures\BD\emalware.448D21502C2086EE1C253B340E043123A41F…	 	AM
		Signatures\BD\emalware.447A457253D790C04A5C08430CE8BAE5BD94F…
	 	AM
		Signatures\BD\emalware.44636478187C971FA293823DBF4257DA810F…		 	AM
		Signatures\BD\emalware.44510FE1291D416F67CC3930250BB38A3C7F…	 	AM
		Signatures\BD\emalware.444;67D5889368C0D7C984716A9925A04EB9F…	 	AM
		Signatures\BD\emalware.443d134FE2CFF5E90887E7BC6F210B34F13EF…	 	AM
		Signatures\BD\emalware.442Œ1919221E474225EB1E149C4671796FDEF…	 	AM
		Signatures\BD\emalware.44197A9D5F14EACFEBD7AEEE1EBC8DD50B2F…	 	AM
		Signatures\BD\emalware.44054F38F78514D1D50807147A38DF69C5DF…	 	AM
		Signatures\BD\emalware.439Z5542FAEF08F45AC71E0636A5E55C60C4F…	 	AM
		Signatures\BD\emalware.438BBDFD5844F5240ABF019C030A57D0E2EF…	 	AM
		Signatures\BD\emalware.437x2382BECE3156A1261EF7492B8FD75A24F… 	 	AM
		Signatures\BD\emalware.436Ÿ94ADB1E03164AD40AE8989A9AB7DAF59
   
 K n%“Jo&  ” K                                         F…	 	AM
		Signatures\BD\emalware.461e955EF3E6A73988FF4A887F7C57D08041F…	 	AM
		Signatures\BD\emalware.460B69D7D70DD857D1D769E2EEA804CEE00F…	 	AM
		Signatures\BD\emalware.459
2432F0FF39EB687BF405F5ED14B07253F…	 	AM
		Signatures\BD\emalware.4580B8E3DE27CA1864BD9EE877BED2A7235F…	 	AM
		Signatures\BD\emalware.457065067ABBB83634FD15AEC6E240BCEBEF…	 	AM
		Signatures\BD\emalware.456†8E97C8A66C38FDDE12A33C5B8A71317CF…	 	AM
		Signatures\BD\emalware.455(9AEF81592D97776702E0B0920E2834C1F…	 	AM
		Signatures\BD\emalware.454€EFD918E0600C1969ABFADC7F139EBD8EF…	 	AM
		Signatures\BD\emalware.453 75D21BD8ACF60F012B1542E79FF6D953F…	 	AM
		Signatures\BD\emalware.452(5B35E0FA37ACBF6E8C365FB954995FDDF…	 	AM
		Signatures\BD\emalware.45175E3AC1E9545721D1771C0CDCA605FC5F…	 	AM
		Signatures\BD\emalware.450xFFFB3F07F3A7D655AB005D687462D6C0F…
	 	AM
		Signatures\BD\emalware.449{A6E6039D87309AEF761016825FDC1F81
   
 K n%“Jo&  ” K                                         F…&	 	AM
		Signatures\BD\emalware.474ˆ>D21E8F470B4E984FF34EA45A33912571F…%	 	AM
		Signatures\BD\emalware.473CA31058C98FDB8808648F830E9DAFBEDF…$	 	AM
		Signatures\BD\emalware.472v8823C3DEA122B45D3CC665EF78F59F33FF…#	 	AM
		Signatures\BD\emalware.471mFBEBAFA69A3DCEF987BFDE537409D7DC9F…"	 	AM
		Signatures\BD\emalware.470…019585670FC045335B12508F597F6126F…!	 	AM
		Signatures\BD\emalware.4694499DF563A3B5DB288BDCCE59C704312F… 	 	AM
		Signatures\BD\emalware.468899FF0561ED1ED04382B987E58D8E2BCF…	 	AM
		Signatures\BD\emalware.467g„6A273DD3265422929ECD16069A82EEB2F…	 	AM
		Signatures\BD\emalware.466GE99AA21B72E8134D7C55934D5CB7C63AF…	 	AM
		Signatures\BD\emalware.465˜J277DF35E34397AB7DADAEF79B5D859F5F…	 	AM
		Signatures\BD\emalware.464cW20BE95C141CC7EF39256A41CE5C14E2CF…	 	AM
		Signatures\BD\emalware.463j55679C6FEB7A10380F62C41172CC1E01F…	 	AM
		Signatures\BD\emalware.462EDB79AB4164AAC1521C65832023DBA377
   
 K n%“Jo&  ” K                                         F…3	 	AM
		Signatures\BD\emalware.487ZE8FDBAC4072E0073581C13BB84B646ADF…2	 	AM
		Signatures\BD\emalware.486}4E95981201ECCEB40893E58B0342ACA0F…1	 	AM
		Signatures\BD\emalware.485,448D9F6F636616C7DE91632CB73C03B2F…0	 	AM
		Signatures\BD\emalware.4847W8631BEE2A1D8701A03EC1BAD86A8D23DF…/	 	AM
		Signatures\BD\emalware.483G28B7781580C9E1F3B90C4D06EB7D820BF….	 	AM
		Signatures\BD\emalware.4826NAAAD1C3072E1A5A921409B0C22C585E0F…-	 	AM
		Signatures\BD\emalware.481KBD6F7171B4B6ED2237BD8F3AE09A8431F…,	 	AM
		Signatures\BD\emalware.480AW909EA900A79B2E2AFF256185C3659F58F…+	 	AM
		Signatures\BD\emalware.47913F217B1A429D2A9B00ED6358CB14350EF…*	 	AM
		Signatures\BD\emalware.47839090E75F13626C5739387F8C8DFA990F…)	 	AM
		Signatures\BD\emalware.477B9EB2702E4DF2F4A0CF1903C9855E771F…(	 	AM
		Signatures\BD\emalware.476J@1B46E26B7A619BAB83079349D5D6E8A5F…'	 	AM
		Signatures\BD\emalware.475V›630CC9FD5A33A65D15FA3CB299464DAA
   
 K n%“Jo&  ” K                                         F…@	 	AM
		Signatures\BD\emalware.5000EB764752788805D9176A0D5F861502FF…?	 	AM
		Signatures\BD\emalware.499C25934ACF045C137CD01F08AA2F05D60F…>	 	AM
		Signatures\BD\emalware.498‡*06FD21EC685F28D5C3DCB02249933798F…=	 	AM
		Signatures\BD\emalware.497“A9582CB7AAD97FEB899C8F9607FD9A5DF…<	 	AM
		Signatures\BD\emalware.496Ž‰B458120B9DC4F1E79EB281FA2107136CF…;	 	AM
		Signatures\BD\emalware.495S4DE871B0CCBCEB4FFA02B03C0FAA9D35F…:	 	AM
		Signatures\BD\emalware.494os2B5AAA6FBADE5827A43E986117DF3A5CF…9	 	AM
		Signatures\BD\emalware.493“™ACBB97BDF6882AAFD1D4F2F2AF94E124F…8	 	AM
		Signatures\BD\emalware.492\36B00947F473501DD5C5C7ED59F19F87F…7	 	AM
		Signatures\BD\emalware.491˜xA33893E145A99675927F14CBC0607628F…6	 	AM
		Signatures\BD\emalware.490Z›8AC3C684ADBACE7459689692196A139EF…5	 	AM
		Signatures\BD\emalware.489+37A6E1FBFD820EC466D938E220ADE085F…4	 	AM
		Signatures\BD\emalware.488š78FE787BC03A4B7BEB8FA8CD4831E2CA
   
 K n%“Jo&  ” K                                         F…M	 	AM
		Signatures\BD\emalware.513C72DA2F38C932C5435A9FF630A20B7B4F…L	 	AM
		Signatures\BD\emalware.512608079AFABC75378C71EF879C72A897B8F…K	 	AM
		Signatures\BD\emalware.51127B65FE5FBB8D8ABE946455E29DD2389F…J	 	AM
		Signatures\BD\emalware.510SE7F984A0D255C63D2D36D6B60285B63BF…I	 	AM
		Signatures\BD\emalware.5095440556CE4F4E19F889632932D9FAF44F…H	 	AM
		Signatures\BD\emalware.508o5BF76913CE0DECD93FDB841F32EA9456F…G	 	AM
		Signatures\BD\emalware.507K154365D86D9ABF9D89C7BD3B2109425AF…F	 	AM
		Signatures\BD\emalware.506‡n73FDF932DC9FEB7485EBDEFF7D575CB0F…E	 	AM
		Signatures\BD\emalware.505c38877BB4519FA26BA2EDF843FE721AF1F…D	 	AM
		Signatures\BD\emalware.504”-5A805CC5E56BF12EDA24A882C347124EF…C	 	AM
		Signatures\BD\emalware.503•724BFFB6A148483E2D15974E43507A8CF…B	 	AM
		Signatures\BD\emalware.502t035761D9E2F943ADC7A50F6B67921BEEF…A	 	AM
		Signatures\BD\emalware.50179D13E3381BA0C3796486B8C38B94043
   
 K n%“Jo&  ” K                                         F…Z	 	AM
		Signatures\BD\emalware.526{1B558E330DCA594065A43CC43D778791F…Y	 	AM
		Signatures\BD\emalware.525-A01A1942D6694FA43DCA57DDC5F58E58F…X	 	AM
		Signatures\BD\emalware.5241A0245E07F620F5203083FC24E96716FFF…W	 	AM
		Signatures\BD\emalware.523›5E7DB124068021E22073D91E15D2DF90F…V	 	AM
		Signatures\BD\emalware.5223421C04405E785958EBEE04500B68C88F…U	 	AM
		Signatures\BD\emalware.521y1B6A8A4BB01A2BCE4C759F5113386CE3F…T	 	AM
		Signatures\BD\emalware.520!ˆF717CC8B1C082FDD4CABC0C124DC6177F…S	 	AM
		Signatures\BD\emalware.519273B937EC26AD8520D036C9D3F1D5B8FF…R	 	AM
		Signatures\BD\emalware.518‚5EF854D67547D83005A1FFF0A797C276F…Q	 	AM
		Signatures\BD\emalware.517Vw1038FAC11510B655BC70AA574CC5D19AF…P	 	AM
		Signatures\BD\emalware.5161266CC6C00AA58BFC9CD954DB660B5ACF…O	 	AM
		Signatures\BD\emalware.515	7EB0E250EF22BA15B345872EFCB29A49F…N	 	AM
		Signatures\BD\emalware.514W7F48A2C67985699C991C668702757F79
   
 K n%“Jo&  ” K                                         F…g	 	AM
		Signatures\BD\emalware.539†D8E6F87B606BF21DBE58208A5A73DDFCF…f	 	AM
		Signatures\BD\emalware.538%2A85589B77CB3D76B274DC93372CC4666F…e	 	AM
		Signatures\BD\emalware.537O196E8749C8CD79C0EAE7C1DFAA5824B9F…d	 	AM
		Signatures\BD\emalware.536u4A230AA8973694900B116D6367D78929F…c	 	AM
		Signatures\BD\emalware.5354…76C929D2E66CEDFF51E9FC3C85B8AB32F…b	 	AM
		Signatures\BD\emalware.534Q1EC44A24B12E6E0EAE61B1A96348DE51F…a	 	AM
		Signatures\BD\emalware.533K4677DC777D82253B45200CA11E812B4DF…`	 	AM
		Signatures\BD\emalware.532587779EB2DFB2B5CAC58E4B1E193DB24F…_	 	AM
		Signatures\BD\emalware.53137C9615B08F4E8B2657CC1EC32A472F0F…^	 	AM
		Signatures\BD\emalware.53038BF972BA10EE153054152610661E2A47F…]	 	AM
		Signatures\BD\emalware.529;04E3DAFBBBC50C0F9BAC5EAE1C8C66784F…\	 	AM
		Signatures\BD\emalware.52805E839F4E0F7566195A93EABBEE4E48CF…[	 	AM
		Signatures\BD\emalware.527dCAFA2702FDEBD7E92173420960D4D7E8
   
 L n%”Kp'  • L                                          F…t	 	AM
		Signatures\BD\emalware.c11	B31442F5665DB9FA734C54C5E32D45F7F…s	 	AM
		Signatures\BD\emalware.c104
BC99E0A6C7F7EF28749D71910F68371AF…r	 	AM
		Signatures\BD\emalware.c09ֳ02D24633A2EB1302C64D40CE27BFED56F…q	 	AM
		Signatures\BD\emalware.c0898582AFD6CDDBE04A89C14EB5AD48865F…p	 	AM
		Signatures\BD\emalware.c07E8F5B89F4003D8F53841FDA50E1B768BF…o	 	AM
		Signatures\BD\emalware.c06R8D494EB98951E74DC59C4DD083F5D6EBF…n	 	AM
		Signatures\BD\emalware.c05!D44FC66BF1BF4C76BD3C4A1A73FF5BC7F…m	 	AM
		Signatures\BD\emalware.c04K2512FE7C4E3CFEF2142E9D2941E971E0E…l	 	AM
		Signatures\BD\emalware.555ƒ255C0861BE2B6F9898656750180EC394F…k	 	AM
		Signatures\BD\emalware.543PDF4EADE9CCF659E11E22A26AEEAE40E3F…j	 	AM
		Signatures\BD\emalware.542bxF55E76D025D4FFCCDCD0017EFCD7226BF…i	 	AM
		Signatures\BD\emalware.541A2E61F70BDD232F5F288C2D63DAD0DD7F…h	 	AM
		Signatures\BD\emalware.540{1772D4F3D134DDE7307BBD6459A5B808
   
 K n%“Jo&  ” K                                         F†	 	AM
		Signatures\BD\emalware.i13:C157989F5FEFA2F79379E059C2D1B47EF† 	 	AM
		Signatures\BD\emalware.i125175FE158D0E9FB881F9B935974F443FF…	 	AM
		Signatures\BD\emalware.i1158E4D7302A8AEBC9C014DBED13C091B4F…~	 	AM
		Signatures\BD\emalware.i10X‹EA1C0D889D2661197871FD65415C4272F…}	 	AM
		Signatures\BD\emalware.i09519310BDDC192C21796C89199EB027C5F…|	 	AM
		Signatures\BD\emalware.i08	Sm1E15FB3073B86C9501FA9BD0EC547C11F…{	 	AM
		Signatures\BD\emalware.i070DF2A9E9B44FDC07B7AA3316D4CAFA0E1F…z	 	AM
		Signatures\BD\emalware.i06YCACDE4263C8B3A1A34097BEC2F290D8BF…y	 	AM
		Signatures\BD\emalware.i0555685B7E7A7F0F49B9A4892177B37567F…x	 	AM
		Signatures\BD\emalware.i04%FA83927C9592BA3FA21AE9BABAEB0CB7F…w	 	AM
		Signatures\BD\emalware.i03‡668C850DD21614C1DE6DE0F5440F8D81F…v	 	AM
		Signatures\BD\emalware.i02EFA1F4D014C90F268009A7CEF7093160F…u	 	AM
		Signatures\BD\emalware.i01DA7A2E394C4634E1367672482FEEC0EC
   
 K n%“Jo&  ” K                                         F†	 	AM
		Signatures\BD\emalware.i26	 3B7FFD9071DDA2A94ACF2A89708E5483F†
	 	AM
		Signatures\BD\emalware.i257A4629AF01D81C0E9098C2C95723EE43F†	 	AM
		Signatures\BD\emalware.i24	Hm41D61A19E56A33F82A62B6B598D54341F†	 	AM
		Signatures\BD\emalware.i23	1F1E3C3D31A15D96E433BB1A934A59A0F†
	 	AM
		Signatures\BD\emalware.i22	,9E1D7428F8829D0E7041F956A22A289AF†		 	AM
		Signatures\BD\emalware.i21	N3E2581C7A6AAD784ACF2923E06D34262F†	 	AM
		Signatures\BD\emalware.i203C66AF08DE29EFDAC8C9980D085A4638F†	 	AM
		Signatures\BD\emalware.i19B8F577F345CA415BEA515C84D443F60AF†	 	AM
		Signatures\BD\emalware.i18%4346B0025C7184B6EBC5B833AADF8D80F†	 	AM
		Signatures\BD\emalware.i17|B95BD1192F8C22677B1033E42BE7F781F†	 	AM
		Signatures\BD\emalware.i16ž05BD594F25D3458C6DF1E7FB06217153F†	 	AM
		Signatures\BD\emalware.i15	FADCD86D8ACDDCD91254ADB3A956CD2AF†	 	AM
		Signatures\BD\emalware.i14
V€8104FFD10E2546092CDBD54A597DD92E
   
 K n%“Jo&  ” K                                         F†	 	AM
		Signatures\BD\emalware.i39A6C95C77D949F8B6EC6D59EDB034B1F4F†	 	AM
		Signatures\BD\emalware.i382573FE2320659115A4A286B6B34AFB8BF†	 	AM
		Signatures\BD\emalware.i37226239786F8DCD9FDC9A3753E117AEF8F†	 	AM
		Signatures\BD\emalware.i36G8E2D215D0091F926167CDA265DA63BF0FF†	 	AM
		Signatures\BD\emalware.i35	xx66036B1129860576754C2DA3A162E58EF†	 	AM
		Signatures\BD\emalware.i34ˆ?CA6C3FF4CA3FDD49A6EB93413BEC93EEF†	 	AM
		Signatures\BD\emalware.i33šD0CA8838EDB8442B6CBAE898930F5445F†	 	AM
		Signatures\BD\emalware.i32-MB82DBC05C8DD872AC0C643F99093427FF†	 	AM
		Signatures\BD\emalware.i31‰|694C56FA5BFE4C089578F275323245E3F†	 	AM
		Signatures\BD\emalware.i30z0C89EA3D3151D35F8D679FFCD1EF6C33F†	 	AM
		Signatures\BD\emalware.i29d22B383A5E2A40448269FEE0679D6F59BF†	 	AM
		Signatures\BD\emalware.i28D605CF090C1881EC1209B061A12D889DF†	 	AM
		Signatures\BD\emalware.i27
ND676BBB1BAE65CA1964B7E77E5BAC94D
   
 K n%“Jo&  ” K                                         F†(	 	AM
		Signatures\BD\emalware.i524EFBD372075FC27236EDF563869B37BDF†'	 	AM
		Signatures\BD\emalware.i514546BF0C1BC95F18CB25A836A5D8EEB9F†&	 	AM
		Signatures\BD\emalware.i50f98B3A5C1CEAC1636C9D63CCA4AC7D06DF†%	 	AM
		Signatures\BD\emalware.i49489DC4D80D076E3078D3DE3B07C1A4DEF†$	 	AM
		Signatures\BD\emalware.i48T2DAD99344ACFF2D4908665E678B5BCB6DF†#	 	AM
		Signatures\BD\emalware.i47F34AD9D625DC3AA1AF931414DDB04290F†"	 	AM
		Signatures\BD\emalware.i46ŠB7BB37797E709FFAAA1F08F61F9AE54EF†!	 	AM
		Signatures\BD\emalware.i45L•E8B17CE0710A7784246D1A1851F5466AF† 	 	AM
		Signatures\BD\emalware.i44<7EE3E8100EE5B767972273E4B456524DF†	 	AM
		Signatures\BD\emalware.i43•.0B4271BFADFC4449291ADB56224FDE3AF†	 	AM
		Signatures\BD\emalware.i42*15F92337DFD3AC097B0E4D8CFECFDAEFF†	 	AM
		Signatures\BD\emalware.i41’y58D5462A9A207160DC4CD609ED303B7DF†	 	AM
		Signatures\BD\emalware.i40™93EBE11E98DDE5D781A9C33EBB77E124
   
 K n%“Jo&  ” K                                         F†5	 	AM
		Signatures\BD\emalware.i65v5B9168C2F2A71C4610430E00FC0BDF5DF†4	 	AM
		Signatures\BD\emalware.i64l–3B5411366BF9580F998F28934186EFB3F†3	 	AM
		Signatures\BD\emalware.i63.VC0D9442C767055D273D369C7BA2E6F71F†2	 	AM
		Signatures\BD\emalware.i62NO73720F0FE5EAAA123C4C9DBDD0F2DD88F†1	 	AM
		Signatures\BD\emalware.i61A57603506A7BB55A98EA8C9D5FEF2A2FF†0	 	AM
		Signatures\BD\emalware.i60EE78B58D1D67F8E68A33102FB80EFCC3F†/	 	AM
		Signatures\BD\emalware.i59MDF80369217A0ABE37C602947744D8F57F†.	 	AM
		Signatures\BD\emalware.i58‘EF65673B79DBFF09A2A954CBBD9B86ECF†-	 	AM
		Signatures\BD\emalware.i57531379C484F8982F520A8EEF7A09F782F†,	 	AM
		Signatures\BD\emalware.i56q47BE8FA0782F837C9F0B1EA0AE44DC3FF†+	 	AM
		Signatures\BD\emalware.i55•BAD1FAB5C9AFD748733614F154F70007F†*	 	AM
		Signatures\BD\emalware.i54lc18B2E4B7CCFB883AFD4A1466B222A39EF†)	 	AM
		Signatures\BD\emalware.i53uWEE2362C2F0D5895C7ADD284B7E2B14B6
   
 K n%“Jo&  ” K                                         F†B	 	AM
		Signatures\BD\emalware.i78+4DA49274007E80A21AC1E6BAEE934677AF†A	 	AM
		Signatures\BD\emalware.i77‡93E1D25A5D680EA21C23CAF403253CB8F†@	 	AM
		Signatures\BD\emalware.i766652CFD02D19A2B13A45227D34B214548F†?	 	AM
		Signatures\BD\emalware.i75š5BBD3E369E7BEDF2009D5CFB8C60B557F†>	 	AM
		Signatures\BD\emalware.i74–X222E1B8451C8389DA7EE3571432803BEF†=	 	AM
		Signatures\BD\emalware.i73rFE4331329D43725212D3A8D4AA668DD8F†<	 	AM
		Signatures\BD\emalware.i721C8A5482F96EF88340F63BF105A016AEDF†;	 	AM
		Signatures\BD\emalware.i713019F5FC24D710C6394437CD27E035815F†:	 	AM
		Signatures\BD\emalware.i701B25092D838F230E690BEDB801237CC8F†9	 	AM
		Signatures\BD\emalware.i69M=40F90153D0D2F14FDDDCC321EF206912F†8	 	AM
		Signatures\BD\emalware.i68B2DA4047C57C7943FD843E35829C0C7DF†7	 	AM
		Signatures\BD\emalware.i67–378169EC217C0EB039EB860EACF16CC9F†6	 	AM
		Signatures\BD\emalware.i66b46A175B204CEE222B83A5CA96A67883F
    + n%—R
=   o +       A†P	 	7M
		Signatures\BD\lib.cvd@˜88753362A612A874E47F90B01C7BFEF4A†O	 	9M
		Signatures\BD\krnl.xmd362DBBC65D93AA8FDA9B62CE47889D8AB†N	 	9M
		Signatures\BD\jpeg.xmdšCFC15427EE8AE08D87CC58C7C6678620B†M	 	9M
		Signatures\BD\jpeg.cvd.3E3D809E1B39E78495F1259A4A6DE869A†L	 	7M
		Signatures\BD\jay.cvd]_81831460538730AF40B4AB2A69E64791A†K	 	9M
		Signatures\BD\java.xmd*ACC533D52B28B2F0B8B02DA6307C7370B†J	 	9M
		Signatures\BD\java.cvd!{09E0F7BA7032394311396CFDDCD4FA40E†I	 	?M
		Signatures\BD\htmltok.cvd1D1D5EBF8C580EA08241AE2F73A19B89B†H	 	9M
		Signatures\BD\html.xmd yF4FA2ED529AA03A4965BDB16DBF5B069@†G	 	7M
		Signatures\BD\hlp.xmd4AB084F75A02F00FE82588C044021259H†F	 	EM
		Signatures\BD\gvmscripts.cvd[15FE49577DF34565806F7A73F31CE14AF†E	 	AM
		Signatures\BD\emalware.i8133A7CE7322C2DA60B90568E91CCF4550F†D	 	AM
		Signatures\BD\emalware.i80˜ACC9D647992F8C1F803580E46E38CED7F†C	 	AM
		Signatures\BD\emalware.i79B4A3FEC259473BFA319AAF07205F4764
    7 t0^I  z 7                   @†^	 	7M
		Signatures\BD\rtf.xmd44ABEF3FC9FB1590F436A2098D9ED1096D†]	 	?M
		Signatures\BD\regarch.xmdC005092DE6B21DAF069ECF33816E128D7A†\	 	7M
		Signatures\BD\rar.xmd ‘ABB6C7A97684BBA0D2C4989F4386AA84A†[	 	9M
		Signatures\BD\proc.xmd1D2D442F78C76DF984C6CD8E2D54E9564D†Z	 	=M
		Signatures\BD\pdftok.cvd •39CA2F3874EE4339F34A055F2A1A8F04A†Y	 	7M
		Signatures\BD\pdf.xmdFB8BDCFB8C8D5CC37F50F52E756C13D6C†X	 	;M
		Signatures\BD\orice.rvdŠ06E15E1B29AEE77B59B646568A02839CA†W	 	9M
		Signatures\BD\objd.xmd6C3787CBF08554D796926DCFBDF573FBB†V	 	9M
		Signatures\BD\mime.xmd—1FC97298A6998A262DB7CEA613AC30C9C†U	 	=M
		Signatures\BD\mdx_97.ivd)E63515EB4A0A3FA153E651909F54B8C7D†T	 	=M
		Signatures\BD\mdx_97.cvd3DED89D7B59901EF35F4EEE67AC6E85CA†S	 	7M
		Signatures\BD\mdx.xmd2848AE1C7BCB880880301791229F0CB44E†R	 	AM
		Signatures\BD\machofat.xmd A6F26B6E18EE8D967FDCCF1CAEB9A028BA†Q	 	9M
		Signatures\BD\lyme.xmd4EDB7944F521251D15C27870DBABF954
    5y2`ŒJ  } 5                 E†l	 	AM
		Signatures\BD\xzengine.xmddE72140FE0A2313681B4E686BE1B257A1B†k	 	;M
		Signatures\BD\xlmrd.ivdOX100112BF8F4D22916CEE715C809D1257B†j	 	;M
		Signatures\BD\xlmrd.cvd$`7F073704C697B92334B5ED4DEBCE86B6@†i	 	5M
		Signatures\BD\ve.xmd ‹F6D65AA833A8007093AA4A1C060A3BD2?†h	 	5M
		Signatures\BD\ve.cvdžC176C7730EAC9411DF0EDB27D3FB9B3AD†g	 	?M
		Signatures\BD\variant.cvdA1EA9BE948AA74E1EE7C25A45F38F344C†f	 	=M
		Signatures\BD\update.txt\98BC91C052C53D212C990ADD6F1B9449 C†e	 	=M
		Signatures\BD\unpack.xmd*;B552A2BEEA13468C21E4026495C51089D†d	 	=M
		Signatures\BD\unpack.ivd"27B0DF5CDACF0D7D3D9470FD70E46E47D†c	 	=M
		Signatures\BD\unpack.cvd1B6FC7BA898D64C998CDC26EA9038E7CA†b	 	9M
		Signatures\BD\tnef.xmd	6B5FD360F2E37F5122A2F33E67C6B6AAD†a	 	?M
		Signatures\BD\tknscan.cvd#ZA1FA6342BE333C913DE4D820E1474740@†`	 	7M
		Signatures\BD\sdx.xmd	ACECF1EA639390ABB77D8C2F2AFA7836A†_	 	7M
		Signatures\BD\sdx.ivd•617A188BE720961A0429FF0022315A59
    7 ƒEP›^#   p 7               6†|	 M
		a2wsc.dll2€C458B9CF186315425DA8057043EDF5859†{	 %M
		a2wizard.exe5m B076CB58439E1A71A4EB93FE6ECFE9A49†z	 %M
		a2update.dll63E1F18692892130E3224A89F18FA62228†y	 #M
		a2toast.dllpD163B6FDC0BFF94CA8FC8CC0FC95E21E8†x	 #M
		a2start.exeBœCC7FB7497A0DA95E59FCE2F1615130F8:†w	 'M
		a2service.exe<bA0701F64EBBBCF8ACCA449D60B4BD0A6:†v	 'M
		a2hooks64.dll>†B76B750785886B5826227F2F6E753FC1:†u	 'M
		a2hooks32.dll8B13ACB7F54BF15C21D16F9069D502B328†t	 #M
		a2guard.exe/9I515522D22189A1BFECA44EAC09CE3FA4<†s	 +M
		a2framework.dll.CE0AC1BA2B32CBC7EF3C8958701903DC9†r	 %M
		a2engine.dll243EE55E59D78C6DEE999F78E41C2D4A77†q	 !M
		a2core.dll™c30E575E75EC254422E2C4847C6B56460=†p	 -M
		a2contmenu64.dll‰8FA8A2086B4DD70BD4D01B960AF4206B;†o	 )M
		a2contmenu.dllo87906792504A026387C11076836C5D9F6†n	 M
		a2cmd.exe#22A7D9270D5D0450FF34E07133977F46A†m	 	7M
		Signatures\BD\zip.xmd 8ADE710948E7EBB7B80AF46421970C22
   
 Cm$Gj    C                                GF‹	 AM
		Signatures\BD\emalware.026705397C06D1BEF7FF25177387855D46F F‹	 AM
		Signatures\BD\emalware.025D12BF8B141CDB55B193E134B2B826134F‹	 AM
		Signatures\BD\emalware.0247531182DA9902BFC0F7CE628CEC68B4E F‹	 AM
		Signatures\BD\emalware.02168894D8949EDE779E7AC6450393506C7 F‹	 AM
		Signatures\BD\emalware.019BC27A1F46B0061115A3874743FAD904EF‹	 AM
		Signatures\BD\emalware.017E6499948F965E53215F7ED16D926820D F‹	 AM
		Signatures\BD\emalware.016 188BB8A610D6E8680F9BAA1DA91DF6B1 F‹	 AM
		Signatures\BD\emalware.015“179BE3DEEB927B01394B10BF64DEE363F‹	 AM
		Signatures\BD\emalware.011BF71EE21BF4FF8ADAC07C4D07F890E78 F‹	 AM
		Signatures\BD\emalware.009E81A5F48106E178DCBE294821F749D7C F‹
	 AM
		Signatures\BD\emalware.00845BC6EED280117567CE65CEDC800ADD0F‹	 AM
		Signatures\BD\emalware.0078922F4397A83BB5502B9796E4679AE50 F‹	 AM
		Signatures\BD\emalware.005FB532F599181A9AC3B08B84E885024A8
    —  —                                                                                                                                         ‚ 	 3ƒi+V“2016-01-30 10:42:37https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=E4C6729B456C68145221E208754B5D8CADD8F23B&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601&autoupdate=1 HTTP/1.1 200 OK‚ 	 3ƒi+V2016-01-29 21:46:42https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=E4C6729B456C68145221E208754B5D8CADD8F23B&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601&autoupdate=1 HTTP/1.1 200 OK‚ 	 3ƒi+Vϳ2016-01-29 20:46:43https://update.emsisoft.com/checkupdatev3/?product=A2PE&key=SAM-MER-XEB-742&mkey=8E9F6CFF3B06BCB7FE16CA302F18B84233005AD1&mkey4=E4C6729B456C68145221E208754B5D8CADD8F23B&version=11.0.0.6054&feed=stable&lng=de-de&os=64_6.1.7601&autoupdate=1 HTTP/1.1 200 OK
    } Eœ8 }                                                                                                           80 3‚-
V2016-01-27 17:43:43C:\Users\Stephan Blank\AppData\Local\Temp\{E661BE78-B6A2-4DEC-91A2-6F8CCE8F3BC5}\{73D8886A-D416-4687-B609-0D3836BA410C}\VESx86.msi
ID_HIDDENINSTALL&/ 3‚

V2016-01-27 17:43:39 C:\Users\Stephan Blank\AppData\Local\Temp\{E661BE78-B6A2-4DEC-91A2-6F8CCE8F3BC5}\{73D8886A-D416-4687-B609-0D3836BA410C}\VESx64.msi8. 3‚-
V2016-01-27 17:43:39C:\Users\Stephan Blank\AppData\Local\Temp\{E661BE78-B6A2-4DEC-91A2-6F8CCE8F3BC5}\{73D8886A-D416-4687-B609-0D3836BA410C}\VESx64.msi@
ID_HIDDENINSTALL&- 3‚

V2016-01-27 17:43:14 C:\Users\Stephan Blank\AppData\Local\Temp\{10F5AFED-98F9-4ADF-A1E5-E61246224918}\{72042FA6-5609-489F-A8EA-3C2DD650F667}\VCCx86.msi8, 3‚-
V2016-01-27 17:43:14C:\Users\Stephan Blank\AppData\Local\Temp\{10F5AFED-98F9-4ADF-A1E5-E61246224918}\{72042FA6-5609-489F-A8EA-3C2DD650F667}\VCCx86.msiP
ID_HIDDENINSTA
         

Alt 01.02.2016, 15:18   #8
cosinus
/// Winkelfunktion
/// TB-Sch-Tiger™
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Den schei will ich net was ist mit der Q, kannst du da Elemente drin sehen?
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung fr einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board untersttzen
Warum Linux besser als Windows ist!

Alt 01.02.2016, 15:18   #9
Bennie
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Hier Teil 3:

Brauchst Du ja nicht. :-)

Gendert von Bennie (01.02.2016 um 15:28 Uhr)

Alt 01.02.2016, 15:29   #10
Bennie
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Teil 4: Bruchst Du ja nicht

Wenn Du die Quarantne meinst, dann ist das wohl dies hier:

Emsisoft Anti-Malware v. 11.0.0.6054
(C) 2003-2015 Emsisoft - NEW: Emsisoft Anti-Malware 11 - Your ultimate weapon against all Internet threats

ID Object
0 Key: HKEY_LOCAL_MACHINE\SOFTWARE\PDFFORGE erkannt: Application.InstallAd (A)
1 C:\Users\Stephan Blank\AppData\Local\Temp\is-IODIM.tmp\CBStub.exe erkannt: Application.Win32.InstallMon (A)
2 C:\Users\Stephan Blank\AppData\Roaming\Thunderbird\Profiles\erw0eykj.default\ImapMail\imap.gmx-1.net\INBOX erkannt: Trojan.GenericKD.2180047 (B)

Alt 01.02.2016, 15:31   #11
cosinus
/// Winkelfunktion
/// TB-Sch-Tiger™
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher lschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!


1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schliee alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewhlt sind:
    • "Tracing" Schlssel lschen
    • Winsock Einstellungen zurcksetzen
    • Proxy Einstellungen zurcksetzen
    • Internet Explorer Richtlinien zurcksetzen
    • Chrome Richtlinien zurcksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewhlt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Lschen und besttige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart ffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nchsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder hher) bitte mit Rechtsklick "als Administrator ausfhren" starten.
  • Drcke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nchsten Antwort.




3. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • ndere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung fr einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board untersttzen
Warum Linux besser als Windows ist!

Alt 02.02.2016, 07:56   #12
Bennie
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Ok, habe ich gemacht. Hier sind dann die logs:

Adw Cleaner:
Code:
ATTFilter
# AdwCleaner v5.032 - Bericht erstellt am 01/02/2016 um 17:43:43
# Aktualisiert am 31/01/2016 von Xplode
# Datenbank : 2016-01-31.1 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Stephan Blank - STEPHANBLANK-PC
# Gestartet von : C:\Users\Stephan Blank\Desktop\AdwCleaner_5.032.exe
# Option : Lschen
# Untersttzung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****


***** [ Dateien ] *****


***** [ DLLs ] *****


***** [ Verknpfungen ] *****


***** [ Aufgabenplanung ] *****


***** [ Registrierungsdatenbank ] *****

[-] Schlssel Gelscht : HKCU\Software\OCS
[!] Schlssel Nicht Gelscht : HKU\S-1-5-21-726656456-2167350209-4180810081-1000\Software\OCS

***** [ Internetbrowser ] *****


*************************

:: "Tracing" Schlssel gelscht
:: Proxy Einstellungen zurckgesetzt
:: Winsock Einstellungen zurckgesetzt
:: Chrome Richtlinien gelscht

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [985 Bytes] ##########
         
JRT:
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.2 (01.06.2016)
Operating System: Windows 7 Home Premium x64 
Ran by Stephan Blank (Administrator) on 01.02.2016 at 20:25:38,96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 9 

Successfully deleted: C:\ProgramData\pdfforge (Folder) 
Successfully deleted: C:\Users\Stephan Blank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0GAR9G50 (Folder) 
Successfully deleted: C:\Users\Stephan Blank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\53Y04AYD (Folder) 
Successfully deleted: C:\Users\Stephan Blank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9FF8G0OB (Folder) 
Successfully deleted: C:\Users\Stephan Blank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IVORIQHY (Folder) 
Successfully deleted: C:\Users\Stephan Blank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KC4RTQEE (Folder) 
Successfully deleted: C:\Users\Stephan Blank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LT1TON5A (Folder) 
Successfully deleted: C:\Users\Stephan Blank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U3VQT7QX (Folder) 
Successfully deleted: C:\Users\Stephan Blank\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XUGVF9VF (Folder) 



Registry: 0 





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01.02.2016 at 20:28:04,21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
Und hier das log vom FRST Teil 1:

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:27-01-2016
durchgefhrt von Stephan Blank (Administrator) auf STEPHANBLANK-PC (01-02-2016 20:32:43)
Gestartet von C:\Users\Stephan Blank\Downloads
Geladene Profile: Stephan Blank (Verfgbare Profile: Stephan Blank)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung fr Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AuthenTec, Inc) C:\Program Files\TrueSuite\TrueSuite.Service.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(QUALCOMM, Inc.) C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kSony.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurckgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ClientAppLogon] => C:\Program Files\TrueSuite\TrueSuite.ClientAppLogonExe.exe [421192 2011-02-14] (AuthenTec, Inc.)
HKLM\...\Run: [ClientAppLogon32] => C:\Program Files\TrueSuite\x86\TrueSuite.ClientAppLogonExe.exe [308040 2011-02-14] (AuthenTec, Inc.)
HKLM\...\Run: [emsisoft anti-malware] => c:\program files (x86)\emsisoft anti-malware\a2guard.exe [9234848 2016-01-27] (Emsisoft Ltd)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11490408 2011-04-17] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2179688 2011-04-17] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-12-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [emsisoft anti-malware] => C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [9234848 2016-01-27] (Emsisoft Ltd)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [2757312 2011-02-15] (Sony Corporation)
HKLM-x32\...\Run: [VAIO Boot Manager] => C:\Program Files (x86)\Sony\VAIO Boot Manager\StartUpProcessDelayTool.exe [2104456 2011-05-26] (Sony Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2016-01-27]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurckgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{60C2BA03-22DE-4711-B48D-56A25462762B}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{D3B93853-5F12-4DCE-BCE9-B7DA0FCD1779}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
BHO: TrueSuite WebStore -> {5cb2b77d-c8ca-44db-af20-a7a4df462a12} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\TrueSuite\TrueSuite.IEBHO.dll [2011-02-14] (AuthenTec Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: TrueSuite WebStore -> {5cb2b77d-c8ca-44db-af20-a7a4df462a12} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\TrueSuite\x86\TrueSuite.IEBHO.dll [2011-02-14] (AuthenTec Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Stephan Blank\AppData\Roaming\Mozilla\Firefox\Profiles\tzs90a48.default
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Extension: Adblock Plus - C:\Users\Stephan Blank\AppData\Roaming\Mozilla\Firefox\Profiles\tzs90a48.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-01]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [oiokdoppleiafjmfmggefbkghfblaplo] - C:\Program Files\TrueSuite\x86\tschrome.crx [2010-11-29]

Opera: 
=======
StartMenuInternet: (HKLM) Operabeta - C:\Program Files (x86)\Opera beta\Launcher.exe

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [10900888 2016-01-27] (Emsisoft Ltd)
R2 FPLService; C:\Program Files\TrueSuite\TrueSuite.Service.exe [290120 2011-02-14] (AuthenTec, Inc)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-01-05] ()
R2 QDLService2kSony; C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kSony.exe [332096 2010-10-21] (QUALCOMM, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [958112 2011-10-24] (Sony Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 epp; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\epp.sys [123992 2016-01-27] (Emsisoft Ltd)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-01 20:28 - 2016-02-01 20:30 - 00001691 _____ C:\Users\Stephan Blank\Desktop\JRT.txt
2016-02-01 17:54 - 2016-02-01 17:54 - 01609032 _____ (Malwarebytes) C:\Users\Stephan Blank\Desktop\JRT.exe
2016-02-01 17:40 - 2016-02-01 17:43 - 00000000 ____D C:\AdwCleaner
2016-02-01 17:37 - 2016-02-01 17:37 - 01508352 _____ C:\Users\Stephan Blank\Desktop\AdwCleaner_5.032.exe
2016-02-01 16:26 - 2016-02-01 16:29 - 00000890 _____ C:\Users\Stephan Blank\Desktop\quarantine.txt
2016-02-01 16:05 - 2016-02-01 16:05 - 00000000 ____D C:\Users\Stephan Blank\Downloads\sqlite-shell-win32-x86-3090100
2016-02-01 16:03 - 2016-02-01 16:03 - 00372676 _____ C:\Users\Stephan Blank\Downloads\sqlite-shell-win32-x86-3090100.zip
2016-02-01 16:02 - 2016-02-01 16:02 - 01466656 _____ C:\Users\Stephan Blank\Downloads\SQLite - CHIP-Installer.exe
2016-02-01 15:48 - 2016-02-01 15:48 - 01019904 _____ (www.byphry.de.vu) C:\Users\Stephan Blank\Downloads\ThumbsDbExtractor.exe
2016-02-01 14:32 - 2016-02-01 14:32 - 00089770 _____ C:\Users\Stephan Blank\Desktop\logs.zip
2016-02-01 14:30 - 2016-02-01 14:12 - 00276480 _____ C:\Users\Stephan Blank\Desktop\logs_Emisoft.db3
2016-02-01 14:29 - 2016-02-01 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-02-01 14:29 - 2016-02-01 14:29 - 00000000 ____D C:\Program Files\7-Zip
2016-02-01 14:28 - 2016-02-01 14:28 - 01371668 _____ (Igor Pavlov) C:\Users\Stephan Blank\Downloads\7z1514-x64.exe
2016-02-01 14:08 - 2016-02-01 14:08 - 00001025 _____ C:\Users\Stephan Blank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinEdt 7.lnk
2016-02-01 14:08 - 2016-02-01 14:08 - 00000000 ____D C:\Users\Stephan Blank\WinEdt Team
2016-02-01 14:08 - 2016-02-01 14:08 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinEdt 7
2016-02-01 14:07 - 2016-02-01 14:07 - 09937544 _____ (WinEdt Team) C:\Users\Stephan Blank\Downloads\winedt71-64.exe
2016-02-01 13:38 - 2016-02-01 13:38 - 00178525 _____ C:\Users\Stephan Blank\Desktop\FRST.txt
2016-02-01 13:37 - 2016-02-01 13:37 - 00022146 _____ C:\Users\Stephan Blank\Desktop\Addition.txt
2016-02-01 13:36 - 2016-02-01 13:37 - 00022146 _____ C:\Users\Stephan Blank\Downloads\Addition.txt
2016-02-01 13:35 - 2016-02-01 20:32 - 00010343 _____ C:\Users\Stephan Blank\Downloads\FRST.txt
2016-02-01 13:34 - 2016-02-01 20:32 - 00000000 ____D C:\FRST
2016-02-01 13:34 - 2016-02-01 13:34 - 02370560 _____ (Farbar) C:\Users\Stephan Blank\Downloads\FRST64.exe
2016-02-01 10:57 - 2016-02-01 10:59 - 00002715 _____ C:\Users\Stephan Blank\Desktop\AdwCleaner[S1].txt
2016-02-01 10:57 - 2016-02-01 10:59 - 00000074 _____ C:\Users\Stephan Blank\Desktop\settings.ini
2016-02-01 10:57 - 2016-02-01 10:57 - 01508352 _____ C:\Users\Stephan Blank\Downloads\adwcleaner_5.032.exe
2016-02-01 10:54 - 2016-02-01 10:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\PDF Architect 4
2016-02-01 10:50 - 2016-02-01 10:55 - 00000000 ____D C:\ProgramData\PDF Architect 4
2016-02-01 10:50 - 2016-02-01 10:50 - 00120200 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2016-02-01 10:50 - 2016-02-01 10:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2016-02-01 10:49 - 2016-02-01 10:50 - 00000000 ____D C:\Program Files\PDFCreator
2016-02-01 10:34 - 2016-02-01 10:48 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Foxit Software
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Foxit AgentInformation
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Foxit Reader
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\Users\Public\Foxit Software
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2016-02-01 10:33 - 2016-02-01 10:33 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2016-02-01 10:30 - 2016-02-01 11:15 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Mozilla
2016-02-01 10:30 - 2016-02-01 10:30 - 00001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-02-01 10:30 - 2016-02-01 10:30 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-02-01 10:29 - 2016-02-01 10:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-01 10:00 - 2016-02-01 10:00 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-02-01 10:00 - 2016-02-01 10:00 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-02-01 09:55 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-01 09:37 - 2016-02-01 09:37 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-02-01 09:37 - 2016-02-01 09:37 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-01 09:26 - 2016-02-01 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-02-01 09:25 - 2016-02-01 09:25 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-02-01 09:25 - 2016-02-01 09:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-02-01 09:20 - 2016-02-01 09:20 - 00000000 ____D C:\Program Files (x86)\ESET
2016-02-01 09:19 - 2016-02-01 09:19 - 42783808 _____ (Foxit Software Inc. ) C:\Users\Stephan Blank\Downloads\FoxitReader730.0118_enu_Setup.exe
2016-02-01 09:18 - 2016-02-01 09:18 - 27005440 _____ (pdfforge GmbH) C:\Users\Stephan Blank\Downloads\PDFCreator-2_2_2-setup.exe
2016-02-01 09:13 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-01 09:13 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-01 09:13 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-02-01 09:13 - 2015-06-03 21:16 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2016-02-01 09:13 - 2012-07-06 21:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2016-02-01 09:13 - 2011-04-28 04:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2016-02-01 09:13 - 2011-03-11 07:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2016-02-01 09:13 - 2011-03-11 07:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-02-01 09:13 - 2011-03-11 07:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2016-02-01 09:13 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-02-01 09:13 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2016-02-01 09:13 - 2011-03-11 05:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-02-01 09:06 - 2016-02-01 09:06 - 00302011 _____ C:\Users\Stephan Blank\Downloads\WindowsUpdateDiagnostic.diagcab
2016-02-01 09:03 - 2016-02-01 09:03 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-02-01 09:03 - 2016-02-01 09:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-02-01 09:03 - 2016-02-01 09:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-02-01 09:03 - 2016-02-01 09:03 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-02-01 09:03 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-02-01 09:03 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-02-01 09:03 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-02-01 08:56 - 2016-02-01 08:56 - 02870984 _____ (ESET) C:\Users\Stephan Blank\Downloads\esetsmartinstaller_deu.exe
2016-02-01 08:41 - 2016-02-01 08:46 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\vlc
2016-02-01 08:41 - 2016-02-01 08:41 - 22908888 _____ (Malwarebytes ) C:\Users\Stephan Blank\Downloads\mbam-setup-2.2.0.1024.exe
2016-02-01 08:39 - 2016-02-01 08:39 - 00000871 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-02-01 08:39 - 2016-02-01 08:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-02-01 08:38 - 2016-02-01 08:38 - 00000000 ____D C:\Program Files\VideoLAN
2016-01-30 12:09 - 2016-01-30 12:09 - 00000000 ____D C:\Windows\PCHEALTH
2016-01-30 12:09 - 2016-01-30 12:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-01-30 12:08 - 2016-01-30 12:08 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-01-30 12:07 - 2016-01-30 12:07 - 00000000 ____D C:\Program Files\Microsoft Office
2016-01-30 12:07 - 2016-01-30 12:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-01-30 12:06 - 2016-01-30 12:09 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-01-30 12:06 - 2016-01-30 12:06 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Microsoft Help
2016-01-30 12:05 - 2016-01-30 12:05 - 00000000 __RHD C:\MSOCache
2016-01-30 11:06 - 2015-07-16 20:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-01-30 11:06 - 2015-07-16 20:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2016-01-30 11:06 - 2015-07-16 20:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2016-01-30 11:06 - 2015-07-16 20:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-01-30 11:06 - 2015-07-16 20:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2016-01-30 11:06 - 2015-07-16 20:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2016-01-30 11:06 - 2015-07-11 14:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2016-01-30 11:06 - 2015-06-09 19:03 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-01-30 11:06 - 2015-06-09 19:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-01-30 11:06 - 2015-06-03 21:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-01-30 11:05 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-30 11:05 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-30 11:05 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-30 11:05 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-30 11:05 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-30 11:05 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-30 11:05 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-30 11:05 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-30 11:05 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-30 11:05 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-30 11:05 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-30 11:05 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-30 11:05 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-30 11:05 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-30 11:05 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-30 11:05 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-30 11:05 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-30 11:05 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-30 11:05 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-30 11:05 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-30 11:05 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-30 11:05 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-30 11:05 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-30 11:05 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-30 11:05 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-30 11:05 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-30 11:05 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-30 11:05 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-30 11:05 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-30 11:05 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-30 11:05 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-30 11:05 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-30 11:05 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-30 11:05 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-30 11:05 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-30 11:05 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-30 11:05 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-30 11:05 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-30 11:05 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-30 11:05 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-30 11:05 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-30 11:05 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-30 11:05 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-30 11:05 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-30 11:05 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-30 11:05 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-30 11:05 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-30 11:05 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-30 11:05 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-30 11:05 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-30 11:05 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-30 11:05 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-30 11:05 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-30 11:05 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-30 11:05 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-30 11:05 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-30 11:05 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2016-01-30 11:05 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-01-30 11:05 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-01-30 10:52 - 2016-01-30 12:08 - 00000000 ____D C:\ProgramData\iolo
2016-01-30 10:52 - 2016-01-30 10:52 - 00074703 _____ C:\Windows\SysWOW64\mfc45.dll
2016-01-30 10:52 - 2016-01-30 10:52 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\iolo
2016-01-30 10:52 - 2016-01-30 10:51 - 00013792 _____ C:\Windows\system32\Drivers\semav6thermal64ro.sys
2016-01-30 10:52 - 2015-02-04 16:37 - 00069000 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2016-01-30 10:52 - 2015-02-04 16:37 - 00021176 _____ (iolo technologies, LLC) C:\Windows\system32\iolorgdf64.exe
2016-01-29 22:02 - 2016-01-29 22:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BioEdit
2016-01-29 22:02 - 2016-01-29 22:02 - 00000000 ____D C:\BioEdit
2016-01-29 21:59 - 2016-01-29 21:59 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\GWX
2016-01-29 21:54 - 2016-01-29 21:54 - 00002820 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-01-29 21:54 - 2016-01-29 21:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-01-29 21:54 - 2016-01-29 21:54 - 00000000 ____D C:\Program Files\CCleaner
2016-01-29 21:51 - 2016-01-29 21:51 - 00001040 _____ C:\Users\Public\Desktop\Chromas Lite.lnk
2016-01-29 21:51 - 2016-01-29 21:51 - 00000000 ____D C:\Users\Stephan Blank\AppData\Chromas Lite
2016-01-29 21:51 - 2016-01-29 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chromas
2016-01-29 21:51 - 2016-01-29 21:51 - 00000000 ____D C:\Program Files (x86)\Chromas
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\MEGA6_6140226
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\MEGA_Global
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGA6
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImageMagick 6.7.5 Q16
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\Program Files (x86)\MEGA6
2016-01-29 21:34 - 2016-02-01 10:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-29 21:34 - 2016-02-01 10:30 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Mozilla
2016-01-29 21:34 - 2016-01-29 21:34 - 00001209 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-01-29 21:34 - 2016-01-29 21:34 - 00001197 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-01-29 21:34 - 2016-01-29 21:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Thunderbird
2016-01-29 21:34 - 2016-01-29 21:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Thunderbird
2016-01-29 21:34 - 2016-01-29 21:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-01-29 21:22 - 2016-01-29 21:22 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Stephan Blank\Downloads\revosetup95.exe
2016-01-29 21:15 - 2016-01-29 21:16 - 29995555 _____ C:\Users\Stephan Blank\Downloads\vlc-2.2.1-win64.exe
2016-01-29 21:13 - 2016-01-29 21:14 - 00242320 _____ C:\Users\Stephan Blank\Downloads\Firefox Setup Stub 44.0.exe
2016-01-29 21:13 - 2016-01-29 21:13 - 33940552 _____ (Mozilla) C:\Users\Stephan Blank\Downloads\Thunderbird Setup 38.5.1.exe
2016-01-29 21:02 - 2016-01-29 21:53 - 00000000 ____D C:\Setups
2016-01-29 20:44 - 2016-02-01 17:35 - 00000000 ____D C:\SonstigesAsus_160124
2016-01-29 20:43 - 2016-01-29 20:44 - 00000000 ____D C:\Biologie_Doktorat_160124
2016-01-29 20:29 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-29 20:29 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-29 20:29 - 2015-11-10 19:55 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-01-29 20:29 - 2015-11-10 19:55 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-01-29 20:29 - 2015-11-10 19:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-01-29 20:29 - 2015-07-30 19:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-01-29 20:29 - 2015-07-30 18:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-01-29 20:29 - 2015-02-04 04:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-01-29 20:29 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-01-29 20:29 - 2015-02-03 04:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-01-29 20:29 - 2015-02-03 04:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-01-29 20:00 - 2016-01-29 20:04 - 00000000 ____D C:\DETECTIVE_160124
2016-01-29 19:55 - 2016-01-29 19:58 - 00000000 ___SD C:\Windows\system32\GWX
2016-01-29 19:55 - 2016-01-29 19:55 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-01-29 19:50 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2016-01-29 19:50 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2016-01-29 19:50 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-01-29 19:50 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2016-01-29 19:50 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2016-01-29 19:50 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2016-01-29 19:50 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2016-01-29 19:50 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2016-01-29 19:50 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2016-01-29 19:50 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2016-01-29 19:47 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2016-01-29 19:47 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2016-01-29 19:47 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2016-01-29 19:47 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2016-01-29 19:44 - 2016-02-01 09:36 - 01592784 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-01-29 19:41 - 2012-07-26 04:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2016-01-29 19:41 - 2012-07-26 04:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2016-01-29 19:41 - 2012-07-26 04:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-01-29 19:41 - 2012-07-26 04:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2016-01-29 19:41 - 2012-07-26 04:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2016-01-29 19:41 - 2012-07-26 03:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2016-01-29 19:41 - 2012-07-26 03:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2016-01-29 19:41 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2016-01-29 19:38 - 2015-07-23 01:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-01-29 19:38 - 2015-07-23 01:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-01-29 19:38 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2016-01-29 19:38 - 2015-07-22 17:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-01-29 19:38 - 2015-04-27 20:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-01-29 19:38 - 2015-04-27 20:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-01-29 19:38 - 2015-04-27 20:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-01-29 19:38 - 2015-04-27 20:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-01-29 19:38 - 2015-04-11 04:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2016-01-29 19:38 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2016-01-29 19:38 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2016-01-29 19:38 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2016-01-29 19:38 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2016-01-29 19:38 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2016-01-29 19:38 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2016-01-29 19:38 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2016-01-29 19:38 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2016-01-29 19:37 - 2015-12-16 19:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2016-01-29 19:37 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2016-01-29 19:37 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2016-01-29 19:37 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2016-01-29 19:37 - 2015-12-16 19:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2016-01-29 19:37 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2016-01-29 19:37 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2016-01-29 19:37 - 2015-12-16 19:47 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2016-01-29 19:37 - 2015-12-16 15:38 - 00419928 _____ C:\Windows\SysWOW64\locale.nls
2016-01-29 19:37 - 2015-12-16 15:37 - 00419928 _____ C:\Windows\system32\locale.nls
2016-01-29 19:37 - 2015-08-05 18:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2016-01-29 19:37 - 2015-08-05 18:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2016-01-29 19:37 - 2015-05-25 19:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2016-01-29 19:37 - 2015-05-25 19:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2016-01-29 19:37 - 2015-05-25 19:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2016-01-29 19:37 - 2015-05-25 19:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2016-01-29 19:37 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2016-01-29 19:37 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2016-01-29 19:37 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2016-01-29 19:37 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2016-01-29 19:37 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2016-01-29 19:37 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2016-01-29 19:37 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2016-01-29 19:37 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2016-01-29 19:37 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2016-01-29 19:37 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2016-01-29 19:37 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2016-01-29 19:37 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2016-01-29 19:37 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2016-01-29 19:37 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2016-01-29 19:37 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2016-01-29 19:37 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2016-01-29 19:37 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2016-01-29 19:37 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2016-01-29 19:37 - 2012-12-07 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2016-01-29 19:37 - 2012-12-07 14:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2016-01-29 19:37 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2016-01-29 19:37 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2016-01-29 19:37 - 2012-12-07 12:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2016-01-29 19:36 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2016-01-29 19:36 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2016-01-29 19:36 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2016-01-29 19:36 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2016-01-29 19:36 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2016-01-29 19:36 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2016-01-29 19:36 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2016-01-29 19:36 - 2015-07-18 14:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-01-29 19:36 - 2012-10-03 18:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2016-01-29 19:36 - 2012-10-03 18:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2016-01-29 19:36 - 2012-10-03 18:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-01-29 19:36 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2016-01-29 19:36 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2016-01-29 19:36 - 2012-10-03 17:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2016-01-29 19:36 - 2012-01-04 11:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-01-29 19:36 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-01-29 19:36 - 2011-05-04 06:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2016-01-29 19:36 - 2011-05-04 06:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2016-01-29 19:36 - 2011-05-04 06:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-01-29 19:36 - 2011-05-04 06:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2016-01-29 19:36 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2016-01-29 19:36 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2016-01-29 19:36 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-01-29 19:36 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2016-01-29 19:35 - 2015-11-05 20:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-01-29 19:35 - 2015-11-05 20:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-01-29 19:35 - 2015-08-27 19:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-01-29 19:35 - 2015-08-27 19:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-01-29 19:35 - 2015-08-27 19:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2016-01-29 19:35 - 2015-08-27 19:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-01-29 19:35 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-01-29 19:35 - 2015-08-27 18:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-01-29 19:35 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2016-01-29 19:35 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-01-29 19:35 - 2015-07-09 18:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-01-29 19:35 - 2015-07-09 18:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2016-01-29 19:35 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-01-29 19:35 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2016-01-29 19:35 - 2015-06-25 11:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-01-29 19:35 - 2015-06-25 11:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-01-29 19:35 - 2015-06-25 11:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-01-29 19:35 - 2015-06-25 10:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-01-29 19:35 - 2015-01-29 04:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-01-29 19:35 - 2015-01-29 04:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2016-01-29 19:35 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2016-01-29 19:35 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2016-01-29 19:35 - 2014-02-04 03:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2016-01-29 19:35 - 2014-02-04 03:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-01-29 19:35 - 2014-02-04 03:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2016-01-29 19:35 - 2014-02-04 03:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2016-01-29 19:35 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2016-01-29 19:35 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2016-01-29 19:35 - 2013-05-10 06:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2016-01-29 19:35 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2016-01-29 19:35 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-01-29 19:35 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2016-01-29 19:35 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2016-01-29 19:35 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2016-01-29 19:35 - 2012-08-21 22:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2016-01-29 19:35 - 2012-07-04 21:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2016-01-29 19:35 - 2011-06-16 06:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2016-01-29 19:35 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2016-01-29 19:34 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-01-29 19:34 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-01-29 19:34 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2016-01-29 19:34 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2016-01-29 19:34 - 2014-10-03 03:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-01-29 19:34 - 2014-10-03 03:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-01-29 19:34 - 2014-10-03 03:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-01-29 19:34 - 2014-10-03 03:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-01-29 19:34 - 2014-10-03 03:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-01-29 19:34 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-01-29 19:34 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-01-29 19:34 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-01-29 19:34 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-01-29 19:34 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-01-29 19:34 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-01-29 19:34 - 2014-01-24 03:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-01-29 19:34 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2016-01-29 19:34 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2016-01-29 19:34 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-01-29 19:34 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2016-01-29 19:34 - 2013-01-24 07:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2016-01-29 19:34 - 2011-12-30 07:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2016-01-29 19:34 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2016-01-29 19:34 - 2011-02-18 11:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2016-01-29 19:34 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2016-01-29 18:54 - 2016-01-29 18:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Sony Corporation
2016-01-29 18:54 - 2016-01-29 18:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Adobe
2016-01-29 18:03 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2016-01-29 17:52 - 2016-01-29 17:52 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2016-01-29 17:52 - 2016-01-29 17:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2016-01-29 17:52 - 2016-01-29 17:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2016-01-29 17:52 - 2016-01-29 17:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2016-01-29 17:52 - 2016-01-29 17:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2016-01-29 17:48 - 2016-01-29 17:48 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-01-29 17:48 - 2016-01-29 17:48 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-01-29 17:38 - 2016-01-29 17:38 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-01-29 17:38 - 2016-01-29 17:38 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-01-29 17:10 - 2016-01-29 17:12 - 00000000 ____D C:\Windows\system32\MRT
2016-01-29 17:10 - 2016-01-29 17:10 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-29 16:31 - 2012-03-01 07:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2016-01-29 16:31 - 2012-03-01 07:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2016-01-29 16:31 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2016-01-29 16:23 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2016-01-29 16:23 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2016-01-29 16:23 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2016-01-29 16:23 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2016-01-29 16:23 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2016-01-29 16:23 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2016-01-29 16:23 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2016-01-29 16:23 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2016-01-29 15:15 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-29 15:15 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-29 15:15 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-29 15:15 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-29 15:15 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-29 15:15 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-29 15:15 - 2015-08-05 18:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-01-29 15:15 - 2015-06-02 01:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2016-01-29 15:15 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2016-01-29 15:15 - 2015-04-29 19:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-01-29 15:15 - 2015-04-29 19:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-01-29 15:15 - 2015-04-29 19:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-01-29 15:15 - 2015-04-29 19:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-01-29 15:15 - 2015-04-29 19:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-01-29 15:15 - 2015-04-29 19:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-01-29 15:15 - 2015-04-29 19:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-01-29 15:15 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-01-29 15:15 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-01-29 15:15 - 2015-04-29 19:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-01-29 15:15 - 2015-04-18 04:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-01-29 15:15 - 2015-04-18 03:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-01-29 15:15 - 2015-04-13 04:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-01-29 15:15 - 2011-06-15 11:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2016-01-29 15:15 - 2011-06-15 11:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2016-01-29 15:15 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2016-01-29 15:15 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2016-01-29 15:15 - 2010-12-23 11:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2016-01-29 15:15 - 2010-12-23 11:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-01-29 15:15 - 2010-12-23 11:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2016-01-29 15:15 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2016-01-29 15:15 - 2010-12-23 06:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-01-29 15:15 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2016-01-29 15:14 - 2015-11-20 19:54 - 03170304 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 02609152 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00709632 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-01-29 15:14 - 2015-11-20 19:54 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-01-29 15:14 - 2015-11-20 19:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-01-29 15:14 - 2015-11-20 19:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-01-29 15:14 - 2015-11-03 20:04 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-01-29 15:14 - 2015-11-03 19:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2016-01-29 15:14 - 2015-08-06 19:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-01-29 15:14 - 2015-08-06 19:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-01-29 15:14 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-01-29 15:14 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-01-29 15:14 - 2015-07-15 19:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-01-29 15:14 - 2015-07-15 19:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-01-29 15:14 - 2015-07-15 19:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-01-29 15:14 - 2011-11-17 07:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-01-29 15:14 - 2011-11-17 06:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-01-29 15:13 - 2015-02-03 04:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-01-29 15:13 - 2015-02-03 04:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-01-29 15:13 - 2015-02-03 04:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-01-29 15:13 - 2015-02-03 04:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-01-29 15:13 - 2015-02-03 04:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-01-29 15:13 - 2015-02-03 04:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-01-29 15:13 - 2015-02-03 04:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-01-29 15:13 - 2015-02-03 04:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-01-29 15:13 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2016-01-29 15:13 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2016-01-29 15:12 - 2015-11-10 19:55 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-01-29 15:12 - 2015-11-10 19:37 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-01-29 15:12 - 2015-07-15 04:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-01-29 15:12 - 2015-07-01 21:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-01-29 15:12 - 2015-07-01 21:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-01-29 15:12 - 2015-07-01 21:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-01-29 15:12 - 2015-07-01 21:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-01-29 15:12 - 2015-02-03 04:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2016-01-29 15:12 - 2015-02-03 04:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2016-01-29 15:12 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-01-29 15:12 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-01-29 15:12 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2016-01-29 15:12 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2016-01-29 15:12 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2016-01-29 15:12 - 2014-06-18 03:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2016-01-29 15:12 - 2014-06-18 02:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2016-01-29 15:12 - 2014-04-05 03:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-01-29 15:12 - 2014-04-05 03:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-01-29 15:12 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2016-01-29 15:12 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2016-01-29 15:12 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-01-29 15:12 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2016-01-29 15:12 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2016-01-29 15:12 - 2012-10-03 18:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-01-29 15:12 - 2012-10-03 18:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2016-01-29 15:12 - 2011-03-11 07:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2016-01-29 15:12 - 2011-03-11 07:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2016-01-29 15:12 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2016-01-29 15:12 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
         

Alt 02.02.2016, 07:58   #13
Bennie
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Und Teil 2:

Code:
ATTFilter
2016-01-29 15:11 - 2015-11-11 19:53 - 01735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-01-29 15:11 - 2015-11-11 19:53 - 00525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-01-29 15:11 - 2015-11-11 19:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-01-29 15:11 - 2015-11-11 19:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-01-29 15:11 - 2015-11-05 20:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-01-29 15:11 - 2015-11-05 20:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2016-01-29 15:11 - 2015-11-05 10:53 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-01-29 15:11 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-01-29 15:11 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-01-29 15:11 - 2015-10-01 19:06 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-01-29 15:11 - 2015-10-01 19:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-01-29 15:11 - 2015-10-01 19:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-01-29 15:11 - 2015-10-01 19:00 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-01-29 15:11 - 2015-10-01 19:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-01-29 15:11 - 2015-10-01 19:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-01-29 15:11 - 2015-10-01 19:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-01-29 15:11 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-01-29 15:11 - 2015-10-01 18:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-01-29 15:11 - 2015-07-04 19:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-01-29 15:11 - 2015-07-04 18:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-01-29 15:11 - 2015-06-15 22:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-01-29 15:11 - 2015-06-15 22:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-01-29 15:11 - 2015-06-15 22:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-01-29 15:11 - 2015-06-15 22:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-01-29 15:11 - 2015-06-15 22:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-01-29 15:11 - 2015-06-15 22:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-01-29 15:11 - 2015-06-15 22:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-01-29 15:11 - 2015-06-15 22:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-01-29 15:11 - 2015-06-03 21:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-01-29 15:11 - 2015-06-03 21:16 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-01-29 15:11 - 2015-06-03 21:16 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-01-29 15:11 - 2015-04-24 19:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2016-01-29 15:11 - 2015-04-24 18:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2016-01-29 15:11 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-01-29 15:11 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-01-29 15:11 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-01-29 15:11 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-01-29 15:11 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-01-29 15:11 - 2013-07-12 11:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2016-01-29 15:11 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2016-01-29 15:11 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-01-29 15:11 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2016-01-29 15:11 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-01-29 15:11 - 2013-02-12 05:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2016-01-29 15:11 - 2012-11-28 23:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2016-01-29 15:11 - 2012-11-28 23:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2016-01-29 15:11 - 2012-11-28 23:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2016-01-29 15:11 - 2012-11-02 06:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2016-01-29 15:11 - 2012-11-02 06:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2016-01-29 15:11 - 2011-03-03 07:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-01-29 15:11 - 2011-03-03 07:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2016-01-29 15:11 - 2011-03-03 07:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2016-01-29 15:11 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-01-29 15:11 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2016-01-29 15:10 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-29 15:10 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-29 15:10 - 2015-07-09 18:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2016-01-29 15:10 - 2015-07-09 18:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2016-01-29 15:10 - 2015-07-09 18:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2016-01-29 15:10 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-01-29 15:10 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2016-01-29 15:10 - 2014-06-16 03:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-01-29 15:10 - 2014-03-04 10:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2016-01-29 15:10 - 2014-03-04 10:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2016-01-29 15:10 - 2014-03-04 10:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2016-01-29 15:10 - 2014-03-04 10:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2016-01-29 15:10 - 2014-03-04 10:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2016-01-29 15:10 - 2014-03-04 10:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2016-01-29 15:10 - 2014-03-04 10:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2016-01-29 15:10 - 2014-03-04 10:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2016-01-29 15:10 - 2013-04-10 07:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-01-29 15:10 - 2011-08-17 06:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2016-01-29 15:10 - 2011-08-17 06:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2016-01-29 15:10 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2016-01-29 15:10 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2016-01-29 15:10 - 2011-04-29 04:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-01-29 15:10 - 2011-04-29 04:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-01-29 15:10 - 2011-04-29 04:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-01-29 15:10 - 2011-02-03 12:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-01-29 15:09 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-01-29 15:09 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-29 15:09 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-29 15:09 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-29 15:09 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-29 15:09 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-01-29 15:09 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-29 15:09 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-01-29 15:09 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 01393152 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-29 15:09 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-29 15:09 - 2015-12-08 20:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-01-29 15:09 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-01-29 15:09 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-29 15:09 - 2015-12-08 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-29 15:09 - 2015-12-08 20:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-01-29 15:09 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-01-29 15:09 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-01-29 15:09 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-01-29 15:09 - 2015-12-08 18:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-29 15:09 - 2015-02-25 04:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-01-29 15:09 - 2015-02-18 08:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-01-29 15:09 - 2015-02-18 08:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-01-29 15:09 - 2015-01-17 03:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-01-29 15:09 - 2015-01-17 03:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-01-29 15:09 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2016-01-29 15:09 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2016-01-29 15:09 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-01-29 15:09 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-01-29 15:09 - 2013-07-26 03:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2016-01-29 15:09 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2016-01-29 15:09 - 2013-04-26 06:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-01-29 15:09 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-01-29 15:09 - 2012-11-23 04:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2016-01-29 15:09 - 2012-09-25 23:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2016-01-29 15:09 - 2012-09-25 23:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2016-01-29 15:09 - 2012-03-17 08:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2016-01-29 15:09 - 2011-05-24 12:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2016-01-29 15:09 - 2011-05-24 11:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2016-01-29 15:09 - 2011-05-24 11:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2016-01-29 15:09 - 2011-05-24 11:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2016-01-29 15:09 - 2011-05-24 11:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2016-01-29 15:09 - 2011-02-05 18:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2016-01-29 15:09 - 2011-02-05 18:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2016-01-29 15:09 - 2011-02-05 18:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2016-01-29 15:08 - 2015-12-08 22:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-29 15:08 - 2015-12-08 20:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-29 15:08 - 2015-11-03 20:04 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2016-01-29 15:08 - 2015-11-03 19:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2016-01-29 15:08 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-01-29 15:08 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2016-01-29 15:08 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2016-01-29 15:08 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2016-01-29 15:08 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2016-01-29 15:08 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-01-29 15:08 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2016-01-29 15:08 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2016-01-29 15:08 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2016-01-29 15:08 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2016-01-29 15:08 - 2013-05-13 06:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2016-01-29 15:08 - 2013-05-13 04:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2016-01-29 15:08 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2016-01-29 15:08 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2016-01-29 15:08 - 2012-07-04 23:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2016-01-29 15:08 - 2012-07-04 23:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2016-01-29 15:08 - 2012-07-04 23:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2016-01-29 15:08 - 2012-07-04 22:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2016-01-29 15:08 - 2012-07-04 22:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2016-01-29 15:08 - 2012-04-26 06:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2016-01-29 15:08 - 2012-04-26 06:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2016-01-29 15:08 - 2011-12-16 09:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2016-01-29 15:08 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2016-01-29 15:08 - 2011-05-03 06:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-01-29 15:08 - 2011-05-03 05:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-01-29 15:08 - 2011-02-12 12:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2016-01-29 15:07 - 2015-12-30 20:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-29 15:07 - 2015-12-30 20:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-29 15:07 - 2015-12-30 20:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-01-29 15:07 - 2015-12-30 20:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-01-29 15:07 - 2015-12-30 20:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-01-29 15:07 - 2015-12-30 20:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-01-29 15:07 - 2015-12-30 20:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-01-29 15:07 - 2015-12-30 19:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-01-29 15:07 - 2015-12-30 19:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-29 15:07 - 2015-12-30 19:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-01-29 15:07 - 2015-12-30 19:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-29 15:07 - 2015-12-30 19:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-01-29 15:07 - 2015-12-30 19:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-01-29 15:07 - 2015-12-30 19:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-29 15:07 - 2015-12-30 19:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-01-29 15:07 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-29 15:07 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-01-29 15:07 - 2015-12-30 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-29 15:07 - 2015-12-30 19:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-29 15:07 - 2015-12-30 19:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-01-29 15:07 - 2015-12-30 19:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-01-29 15:07 - 2015-12-30 19:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-29 15:07 - 2015-12-30 19:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-01-29 15:07 - 2015-12-30 19:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-01-29 15:07 - 2015-12-30 19:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-29 15:07 - 2015-12-30 19:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-01-29 15:07 - 2015-12-30 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-01-29 15:07 - 2015-12-30 19:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-01-29 15:07 - 2015-12-30 19:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 18:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-01-29 15:07 - 2015-12-30 18:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-01-29 15:07 - 2015-12-30 18:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-01-29 15:07 - 2015-12-30 18:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-01-29 15:07 - 2015-12-30 18:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-29 15:07 - 2015-12-30 18:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-01-29 15:07 - 2015-12-30 18:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-29 15:07 - 2015-12-30 18:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-29 15:07 - 2015-12-30 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-01-29 15:07 - 2015-12-30 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-01-29 15:07 - 2015-12-30 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-01-29 15:07 - 2015-12-30 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-01-29 15:07 - 2015-12-30 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-01-29 15:07 - 2015-12-30 18:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-01-29 15:07 - 2015-12-30 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-29 15:07 - 2015-12-30 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-29 15:07 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-01-29 15:07 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-01-29 15:07 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-01-29 15:07 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-01-29 15:07 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-01-29 15:07 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-01-29 15:07 - 2015-03-04 05:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-01-29 15:07 - 2015-03-04 05:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2016-01-29 15:07 - 2015-03-04 05:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2016-01-29 15:07 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2016-01-29 15:07 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2016-01-29 15:07 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2016-01-29 15:07 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2016-01-29 15:07 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2016-01-29 15:07 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2016-01-29 15:07 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2016-01-29 15:07 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2016-01-29 15:07 - 2012-06-06 07:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2016-01-29 15:07 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2016-01-29 15:07 - 2012-05-14 06:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-01-29 15:07 - 2011-10-15 07:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-01-29 15:07 - 2011-10-15 06:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-01-29 15:07 - 2011-08-27 06:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2016-01-29 15:07 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2016-01-29 15:07 - 2011-02-23 05:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-01-29 15:06 - 2015-09-02 04:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-01-29 15:06 - 2015-09-02 04:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-01-29 15:06 - 2015-09-02 04:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-01-29 15:06 - 2015-09-02 04:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-01-29 15:06 - 2015-09-02 03:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-01-29 15:06 - 2015-09-02 03:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-01-29 15:06 - 2015-09-02 03:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-01-29 15:06 - 2015-09-02 03:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-01-29 15:06 - 2015-09-02 02:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-01-29 15:06 - 2015-09-02 02:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-01-29 15:06 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-01-29 15:06 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-01-29 15:06 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2016-01-29 15:06 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2016-01-29 15:06 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2016-01-29 14:51 - 2012-02-17 07:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-01-29 14:51 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2016-01-29 14:51 - 2012-02-17 05:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2016-01-29 14:36 - 2016-01-29 14:36 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Sony Corporation
2016-01-29 12:44 - 2016-01-29 12:44 - 00000000 ____D C:\3eb852b6b65315fdf8325989cb0c0a
2016-01-29 12:41 - 2016-01-29 12:41 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Main
2016-01-29 12:37 - 2016-01-29 12:37 - 45487704 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000268817.exe
2016-01-29 12:27 - 2016-01-29 12:27 - 01223672 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000255979.exe
2016-01-29 12:18 - 2016-01-29 12:19 - 23008216 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000317149.exe
2016-01-29 12:11 - 2016-01-29 12:11 - 19726336 _____ C:\Users\Stephan Blank\Downloads\EP0000303880.msi
2016-01-29 11:46 - 2016-01-29 11:46 - 00286056 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000298538.exe
2016-01-29 11:45 - 2016-01-29 11:45 - 00365776 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000296998.exe
2016-01-29 11:41 - 2016-01-29 11:42 - 10315480 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000295615.exe
2016-01-29 11:37 - 2016-01-29 11:38 - 60821240 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000261503.exe
2016-01-29 11:29 - 2016-01-29 11:29 - 00001303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Gallery.lnk
2016-01-29 11:28 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-01-29 11:28 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-01-29 11:28 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-01-29 11:28 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-01-29 11:28 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-01-29 11:28 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-01-29 11:28 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-01-29 11:11 - 2016-01-29 11:19 - 352086416 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000262450.exe
2016-01-29 10:58 - 2012-01-03 03:21 - 09888872 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2016-01-29 10:56 - 2012-05-25 02:13 - 00017440 _____ C:\Windows\system32\iglhxs64.vp
2016-01-29 10:56 - 2012-05-25 02:08 - 04378944 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00506688 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00417088 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00392512 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00239936 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00184640 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2016-01-29 10:56 - 2012-05-25 02:08 - 00167744 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2016-01-29 10:56 - 2012-05-25 02:01 - 12312832 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdpmd64.sys
2016-01-29 10:56 - 2012-05-25 02:01 - 12312832 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2016-01-29 10:56 - 2012-05-25 02:01 - 08314368 _____ (Intel Corporation) C:\Windows\system32\igdumd64.dll
2016-01-29 10:56 - 2012-05-25 02:00 - 00963884 _____ C:\Windows\SysWOW64\igkrng600.bin
2016-01-29 10:56 - 2012-05-25 02:00 - 00963884 _____ C:\Windows\system32\igkrng600.bin
2016-01-29 10:56 - 2012-05-25 02:00 - 00221264 _____ C:\Windows\SysWOW64\igfcg600m.bin
2016-01-29 10:56 - 2012-05-25 02:00 - 00221264 _____ C:\Windows\system32\igfcg600m.bin
2016-01-29 10:56 - 2012-05-25 02:00 - 00075776 _____ C:\Windows\system32\igdde64.dll
2016-01-29 10:56 - 2012-05-25 01:57 - 06324224 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2016-01-29 10:56 - 2012-05-25 01:56 - 00056832 _____ C:\Windows\SysWOW64\igdde32.dll
2016-01-29 10:56 - 2012-05-25 01:53 - 00581120 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdx32.dll
2016-01-29 10:56 - 2012-05-25 01:50 - 09528832 _____ (Intel Corporation) C:\Windows\system32\igd10umd64.dll
2016-01-29 10:56 - 2012-05-25 01:45 - 07988224 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2016-01-29 10:56 - 2012-05-25 01:40 - 18675712 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2016-01-29 10:56 - 2012-05-25 01:35 - 13913600 _____ C:\Windows\SysWOW64\ig4icd32.dll
2016-01-29 10:56 - 2012-05-25 01:33 - 00378368 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2016-01-29 10:56 - 2012-05-25 01:33 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00283648 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00283136 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2016-01-29 10:56 - 2012-05-25 01:33 - 00211303 _____ C:\Windows\system32\Gfxres.th-TH.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00198139 _____ C:\Windows\system32\Gfxres.el-GR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00182706 _____ C:\Windows\system32\Gfxres.ru-RU.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00156233 _____ C:\Windows\system32\Gfxres.ar-SA.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00153167 _____ C:\Windows\system32\Gfxres.ja-JP.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00149009 _____ C:\Windows\system32\Gfxres.he-IL.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00140216 _____ C:\Windows\system32\Gfxres.it-IT.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00138727 _____ C:\Windows\system32\Gfxres.ko-KR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00137846 _____ C:\Windows\system32\Gfxres.de-DE.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00137668 _____ C:\Windows\system32\Gfxres.es-ES.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00136603 _____ C:\Windows\system32\Gfxres.ro-RO.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00135628 _____ C:\Windows\system32\Gfxres.fr-FR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00135370 _____ C:\Windows\system32\Gfxres.tr-TR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00134836 _____ C:\Windows\system32\Gfxres.pt-BR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00134412 _____ C:\Windows\system32\Gfxres.nl-NL.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00134384 _____ C:\Windows\system32\Gfxres.hu-HU.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00133846 _____ C:\Windows\system32\Gfxres.sv-SE.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00133709 _____ C:\Windows\system32\Gfxres.pt-PT.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00133404 _____ C:\Windows\system32\Gfxres.cs-CZ.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00133178 _____ C:\Windows\system32\Gfxres.pl-PL.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00132889 _____ C:\Windows\system32\Gfxres.fi-FI.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00132788 _____ C:\Windows\system32\Gfxres.sk-SK.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00131839 _____ C:\Windows\system32\Gfxres.hr-HR.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00128996 _____ C:\Windows\system32\Gfxres.sl-SI.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00128831 _____ C:\Windows\system32\Gfxres.nb-NO.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00128535 _____ C:\Windows\system32\Gfxres.da-DK.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2016-01-29 10:56 - 2012-05-25 01:33 - 00124052 _____ C:\Windows\system32\Gfxres.en-US.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00117636 _____ C:\Windows\system32\Gfxres.zh-TW.resources
2016-01-29 10:56 - 2012-05-25 01:33 - 00116348 _____ C:\Windows\system32\Gfxres.zh-CN.resources
2016-01-29 10:56 - 2012-05-25 01:32 - 00376320 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2016-01-29 10:56 - 2012-05-25 01:32 - 00146432 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2016-01-29 10:56 - 2012-05-25 01:32 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2016-01-29 10:56 - 2012-05-25 01:32 - 00004096 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2016-01-29 10:56 - 2012-05-25 01:31 - 09014784 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2016-01-29 10:56 - 2012-05-25 01:31 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2016-01-29 10:56 - 2012-05-25 01:31 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2016-01-29 10:56 - 2012-05-25 01:28 - 00293888 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2016-01-29 10:56 - 2012-05-25 01:28 - 00024576 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2016-01-29 10:56 - 2012-05-25 01:26 - 02780160 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2016-01-29 10:56 - 2012-05-25 01:26 - 02191872 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2016-01-29 10:56 - 2012-05-25 01:26 - 00246784 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2016-01-29 10:56 - 2012-05-25 01:26 - 00219136 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2016-01-29 10:39 - 2016-01-30 10:52 - 00000000 ____D C:\Update
2016-01-29 10:37 - 2016-01-29 10:37 - 25483032 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000260866.exe
2016-01-29 10:33 - 2016-01-29 10:33 - 00000000 ___HD C:\SPLASH.000
2016-01-29 10:32 - 2016-01-29 10:32 - 00000000 ___HD C:\SPLASH.SYS
2016-01-29 10:32 - 2016-01-29 10:32 - 00000000 ____D C:\Program Files (x86)\Downloaded Installations
2016-01-29 10:26 - 2016-01-29 10:28 - 266422568 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000257185.EXE
2016-01-29 10:23 - 2015-01-05 21:07 - 392242776 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000250759.exe
2016-01-29 10:19 - 2016-01-29 10:19 - 05032416 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000249241.exe
2016-01-29 10:10 - 2016-01-29 10:10 - 00000000 ____D C:\Users\Stephan Blank\Downloads\WWAN_Driver1_1_190
2016-01-29 10:10 - 2016-01-29 10:10 - 00000000 ____D C:\ProgramData\Wwan
2016-01-29 10:10 - 2016-01-29 10:10 - 00000000 ____D C:\ProgramData\QUALCOMM
2016-01-29 10:10 - 2016-01-29 10:10 - 00000000 ____D C:\Program Files (x86)\QUALCOMM
2016-01-29 10:09 - 2016-01-29 10:10 - 39267638 _____ C:\Users\Stephan Blank\Downloads\WWAN_Driver1_1_190.zip
2016-01-29 09:58 - 2016-01-29 09:58 - 50971445 _____ C:\Users\Stephan Blank\Downloads\SOAVCA-00245717-0042.zip
2016-01-28 14:04 - 2016-01-28 14:04 - 00002197 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Smart Network.lnk
2016-01-28 13:58 - 2016-01-28 13:58 - 15198476 _____ C:\Users\Stephan Blank\Downloads\SOASNW-00247880-0042.zip
2016-01-28 13:53 - 2016-01-28 13:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ATI Stream SDK v2
2016-01-28 13:53 - 2016-01-28 13:53 - 00000000 ____D C:\Program Files (x86)\ATI Stream
2016-01-28 13:44 - 2016-01-28 13:44 - 00000000 ____D C:\Users\Stephan Blank\AppData\LocalLow\Temp
2016-01-27 17:56 - 2016-01-27 17:56 - 03875192 _____ (Sony Corporation) C:\Users\Stephan Blank\Downloads\EP0000251540.exe
2016-01-27 17:48 - 2016-02-01 08:01 - 00000000 ____D C:\Windows\System32\Tasks\Sony Corporation
2016-01-27 17:44 - 2016-02-01 08:01 - 00000000 ____D C:\Program Files\Sony
2016-01-27 17:43 - 2016-01-27 17:43 - 00001531 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Control Center.lnk
2016-01-27 17:42 - 2016-02-01 08:01 - 00000000 ____D C:\Program Files (x86)\Sony
2016-01-27 17:33 - 2016-01-29 11:27 - 00000000 ____D C:\Program Files\Common Files\Sony Shared
2016-01-27 17:31 - 2016-01-27 17:31 - 00000000 ____D C:\Users\Stephan Blank\Documents\Bluetooth-Exchange-Ordner
2016-01-27 17:31 - 2016-01-27 17:31 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Broadcom
2016-01-27 17:27 - 2016-01-27 17:27 - 00000000 ____D C:\Program Files\WIDCOMM
2016-01-27 17:27 - 2011-04-18 08:36 - 00344616 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys
2016-01-27 17:27 - 2011-04-18 08:36 - 00135720 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2016-01-27 17:27 - 2011-04-18 08:36 - 00102952 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2016-01-27 17:27 - 2011-04-18 08:36 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2016-01-27 17:27 - 2011-04-18 08:35 - 00039464 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2016-01-27 17:17 - 2016-01-27 17:17 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2016-01-27 17:13 - 2016-01-29 10:58 - 00000000 ____D C:\Windows\SysWOW64\sda
2016-01-27 17:12 - 2012-01-03 03:21 - 00340072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2016-01-27 17:09 - 2016-01-27 17:09 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-01-27 17:09 - 2016-01-27 17:09 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-01-27 17:09 - 2016-01-27 17:09 - 00000000 ____D C:\Program Files\Realtek
2016-01-27 17:09 - 2011-04-17 14:16 - 02651240 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 02580824 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 02520936 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-01-27 17:09 - 2011-04-17 14:16 - 02051176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 01239656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 01146984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-01-27 17:09 - 2011-04-17 14:16 - 00618600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00477800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-01-27 17:09 - 2011-04-17 14:16 - 00372936 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00307920 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00307920 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00220496 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFNHK64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00201928 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00120208 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00099016 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00081232 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFCOM64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00080488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00078160 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFAPO64.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00076488 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-01-27 17:09 - 2011-04-17 14:16 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 01770328 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 01716368 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 01325792 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 01178336 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 01110240 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00503520 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00489696 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00474336 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00419472 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00338336 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00315616 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00268512 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00265440 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00125584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00124640 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00124128 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00123616 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00106640 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-01-27 17:09 - 2011-04-17 14:15 - 00071824 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-01-27 17:09 - 2011-04-17 14:14 - 01251944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-01-27 17:09 - 2011-04-17 14:14 - 00002204 _____ C:\Windows\system32\Drivers\RtPCEE3.DAT
2016-01-27 17:00 - 2016-01-27 17:00 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Intel
2016-01-27 16:58 - 2016-01-27 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2016-01-27 16:58 - 2016-01-27 16:58 - 00000000 ____D C:\ProgramData\Intel
2016-01-27 16:58 - 2016-01-27 16:58 - 00000000 ____D C:\Program Files\Intel
2016-01-27 16:58 - 2016-01-27 16:58 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-01-27 16:57 - 2016-01-27 16:57 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Intel Corporation
2016-01-27 16:53 - 2016-01-27 16:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-01-27 16:52 - 2010-11-05 23:45 - 00438808 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys
2016-01-27 16:51 - 2016-01-27 16:51 - 12015134 _____ C:\Users\Stephan Blank\Downloads\INDOTH-00245071-0042.zip
2016-01-27 16:50 - 2016-01-27 16:50 - 00003898 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1453909801
2016-01-27 16:50 - 2016-01-27 16:50 - 00001174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera beta.lnk
2016-01-27 16:50 - 2016-01-27 16:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Opera Software
2016-01-27 16:50 - 2016-01-27 16:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Opera Software
2016-01-27 16:49 - 2016-01-27 16:50 - 00000000 ____D C:\Program Files (x86)\Opera beta
2016-01-27 16:47 - 2016-01-27 16:47 - 00000000 ____D C:\ProgramData\Emsisoft
2016-01-27 16:33 - 2016-01-27 16:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-01-27 16:26 - 2016-02-01 20:05 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2016-01-27 16:26 - 2016-01-27 16:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2016-01-27 16:19 - 2011-04-17 15:02 - 00056344 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys
2016-01-27 16:19 - 2011-04-17 15:02 - 00008192 _____ C:\Windows\system32\Drivers\IntelMEFWVer.dll
2016-01-27 16:16 - 2011-03-01 17:23 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2016-01-27 16:10 - 2016-01-27 16:10 - 00003222 _____ C:\Windows\System32\Tasks\{C689FB4B-0AE2-4AEE-B354-AB4CF4315EDC}
2016-01-27 16:10 - 2016-01-27 16:10 - 00000000 ____D C:\Infineon
2016-01-27 16:07 - 2016-01-27 16:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueSuite
2016-01-27 16:07 - 2016-01-27 16:07 - 00000000 ____D C:\Windows\system32\wocaffe
2016-01-27 16:07 - 2016-01-27 16:07 - 00000000 ____D C:\ProgramData\TrueSuite
2016-01-27 16:07 - 2016-01-27 16:07 - 00000000 ____D C:\ProgramData\Downloaded Installations
2016-01-27 16:07 - 2016-01-27 16:07 - 00000000 ____D C:\Program Files\TrueSuite
2016-01-27 16:02 - 2016-01-29 12:41 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-27 16:02 - 2016-01-29 10:58 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-01-27 16:02 - 2011-03-01 18:38 - 00425064 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-01-27 16:02 - 2011-03-01 18:38 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-01-27 16:02 - 2011-03-01 18:38 - 00074272 _____ C:\Windows\system32\RtNicProp64.dll
2016-01-27 16:00 - 2016-01-27 16:00 - 00000000 ____D C:\ProgramData\ATI
2016-01-27 15:57 - 2016-01-27 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2016-01-27 15:57 - 2016-01-27 15:57 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-01-27 15:57 - 2016-01-27 15:57 - 00000000 ____D C:\Program Files (x86)\AMD APP
2016-01-27 15:55 - 2011-12-22 08:30 - 09360896 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-01-27 15:55 - 2011-12-22 08:27 - 23336960 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-01-27 15:55 - 2011-12-22 08:02 - 17940992 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-01-27 15:55 - 2011-12-22 08:00 - 00166664 _____ C:\Windows\system32\atiapfxx.blb
2016-01-27 15:55 - 2011-12-22 07:59 - 00688128 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-01-27 15:55 - 2011-12-22 07:59 - 00151552 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-01-27 15:55 - 2011-12-22 07:55 - 00485376 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-01-27 15:55 - 2011-12-22 07:54 - 00204288 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-01-27 15:55 - 2011-12-22 07:53 - 00356352 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\atipdlxx.dll
2016-01-27 15:55 - 2011-12-22 07:53 - 00120320 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-01-27 15:55 - 2011-12-22 07:53 - 00016384 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-01-27 15:55 - 2011-12-22 07:52 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll
2016-01-27 15:55 - 2011-12-22 07:52 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll
2016-01-27 15:55 - 2011-12-22 07:49 - 04219904 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-01-27 15:55 - 2011-12-22 07:39 - 05008384 _____ (ATI Technologies Inc. ) C:\Windows\system32\atidxx64.dll
2016-01-27 15:55 - 2011-12-22 07:34 - 08489472 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-01-27 15:55 - 2011-12-22 07:34 - 00051200 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-01-27 15:55 - 2011-12-22 07:34 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-01-27 15:55 - 2011-12-22 07:34 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-01-27 15:55 - 2011-12-22 07:34 - 00044032 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-01-27 15:55 - 2011-12-22 07:30 - 01113088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6v.dll
2016-01-27 15:55 - 2011-12-22 07:29 - 06847488 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-01-27 15:55 - 2011-12-22 07:29 - 01828864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdmv.dll
2016-01-27 15:55 - 2011-12-22 07:27 - 04330496 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-01-27 15:55 - 2011-12-22 07:25 - 01127552 _____ C:\Windows\system32\atiumd6a.cap
2016-01-27 15:55 - 2011-12-22 07:22 - 04017152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-01-27 15:55 - 2011-12-22 07:21 - 01127552 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-01-27 15:55 - 2011-12-22 07:13 - 00262144 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-01-27 15:55 - 2011-12-22 07:13 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-01-27 15:55 - 2011-12-22 07:13 - 00012800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-01-27 15:55 - 2011-12-22 07:12 - 00309760 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-01-27 15:55 - 2011-12-22 07:12 - 00039936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-01-27 15:55 - 2011-12-22 07:12 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-01-27 15:55 - 2011-12-22 07:11 - 00031744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-01-27 15:55 - 2011-12-22 07:11 - 00029184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-01-27 15:55 - 2011-12-22 07:10 - 00053760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-01-27 15:55 - 2011-12-22 07:10 - 00053760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-01-27 15:55 - 2011-12-22 07:10 - 00053248 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-01-27 15:55 - 2011-12-22 07:10 - 00052736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-01-27 15:55 - 2011-12-22 07:10 - 00052736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-01-27 15:55 - 2011-08-09 12:44 - 01981696 _____ C:\Windows\system32\iglhxa64.cpa
2016-01-27 15:55 - 2011-08-09 12:44 - 00376832 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2016-01-27 15:55 - 2011-08-09 12:44 - 00376832 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2016-01-27 15:55 - 2011-08-09 12:44 - 00098304 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2016-01-27 15:55 - 2011-08-09 12:44 - 00098304 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2016-01-27 15:55 - 2011-08-09 12:44 - 00059243 _____ C:\Windows\system32\iglhxo64.vp
2016-01-27 15:55 - 2011-08-09 12:44 - 00059174 _____ C:\Windows\system32\iglhxg64.vp
2016-01-27 15:55 - 2011-08-09 12:44 - 00059062 _____ C:\Windows\system32\iglhxc64.vp
2016-01-27 15:55 - 2011-08-09 12:44 - 00001074 _____ C:\Windows\system32\iglhxa64.vp
2016-01-27 15:55 - 2011-05-19 10:13 - 00032635 _____ C:\Windows\atiogl.xml
2016-01-27 15:55 - 2011-04-20 18:30 - 00233765 _____ C:\Windows\system32\atiicdxx.dat
2016-01-27 15:55 - 2011-03-17 19:51 - 00003929 _____ C:\Windows\SysWOW64\atipblag.dat
2016-01-27 15:55 - 2011-03-17 19:51 - 00003929 _____ C:\Windows\system32\atipblag.dat
2016-01-27 15:54 - 2016-01-27 15:57 - 00000000 ____D C:\Program Files\ATI Technologies
2016-01-27 15:51 - 2016-02-01 10:24 - 00086160 _____ C:\Users\Stephan Blank\AppData\Local\GDIPFONTCACHEV1.DAT
2016-01-27 15:50 - 2016-01-27 15:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\ATI
2016-01-27 15:50 - 2016-01-27 15:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\ATI
2016-01-27 15:48 - 2016-01-27 15:48 - 00000000 _____ C:\Windows\ativpsrm.bin
2016-01-27 15:47 - 2016-01-27 16:58 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-01-27 15:47 - 2016-01-27 16:52 - 00000000 ____D C:\Program Files (x86)\Intel
2016-01-27 15:47 - 2016-01-27 15:47 - 00000000 ____D C:\Intel
2016-01-27 15:46 - 2016-01-27 15:56 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-01-27 15:46 - 2016-01-27 15:46 - 00000000 ____D C:\Program Files\ATI
2016-01-27 15:46 - 2011-02-25 14:30 - 00003143 _____ C:\Windows\SysWOW64\atipblup.dat
2016-01-27 15:46 - 2011-02-25 14:30 - 00003143 _____ C:\Windows\system32\atipblup.dat
2016-01-27 15:45 - 2012-05-25 01:32 - 00390144 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2016-01-27 15:45 - 2012-05-25 01:32 - 00110080 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2016-01-27 15:45 - 2012-05-25 01:32 - 00062464 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2016-01-27 15:45 - 2011-12-22 07:58 - 00811008 _____ (ATI Technologies Inc. ) C:\Windows\system32\aticfx64.dll
2016-01-27 15:45 - 2011-12-22 07:55 - 00462848 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2016-01-27 15:45 - 2011-12-22 07:53 - 00423424 _____ (ATI Technologies, Inc.) C:\Windows\system32\atipdl64.dll
2016-01-27 15:45 - 2011-12-22 07:29 - 03810816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-01-27 15:45 - 2011-12-22 07:21 - 05486592 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumd64.dll
2016-01-27 15:45 - 2011-12-22 07:20 - 00058880 _____ (AMD) C:\Windows\system32\coinst.dll
2016-01-27 15:45 - 2011-12-22 07:13 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-01-27 15:45 - 2011-12-22 07:11 - 00040960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-01-27 15:45 - 2011-12-22 07:11 - 00038912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-01-27 15:45 - 2011-04-17 13:29 - 00145804 _____ C:\Windows\SysWOW64\igcompkrng600.bin
2016-01-27 15:45 - 2011-04-17 13:29 - 00145804 _____ C:\Windows\system32\igcompkrng600.bin
2016-01-27 15:45 - 2011-04-17 13:28 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll
2016-01-27 15:45 - 2011-04-17 13:28 - 00000151 _____ C:\Windows\system32\GfxUI.exe.config
2016-01-27 15:45 - 2011-04-17 13:26 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2016-01-27 15:44 - 2016-01-29 09:59 - 00000021 _____ C:\Windows\Model.txt
2016-01-27 15:43 - 2016-02-01 07:58 - 00000000 ____D C:\ProgramData\Sony Corporation
2016-01-27 15:35 - 2016-01-29 18:54 - 00001409 _____ C:\Users\Stephan Blank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-01-27 15:34 - 2016-02-01 14:08 - 00000000 ____D C:\Users\Stephan Blank
2016-01-27 15:34 - 2016-01-27 15:34 - 00000020 ___SH C:\Users\Stephan Blank\ntuser.ini
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Vorlagen
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Startmen
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Netzwerkumgebung
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Lokale Einstellungen
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Eigene Dateien
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Druckumgebung
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Documents\Eigene Videos
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Documents\Eigene Musik
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Documents\Eigene Bilder
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\AppData\Local\Verlauf
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\AppData\Local\Anwendungsdaten
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 _SHDL C:\Users\Stephan Blank\Anwendungsdaten
2016-01-27 15:34 - 2016-01-27 15:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\VirtualStore
2016-01-27 15:34 - 2011-04-12 08:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Media Center Programs
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Startmen
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Programme
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Vorlagen
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Startmen
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Favoriten
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Dokumente
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-01-27 15:33 - 2016-01-27 15:33 - 00000000 _SHDL C:\Dokumente und Einstellungen
2016-01-27 15:29 - 2016-01-27 15:29 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-01-27 15:29 - 2016-01-27 15:29 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-01-27 15:25 - 2016-01-29 21:55 - 00000000 ____D C:\Windows\Panther
2016-01-27 15:25 - 2016-01-27 15:25 - 00008192 __RSH C:\BOOTSECT.BAK
2016-01-27 15:25 - 2010-11-21 04:23 - 00383786 __RSH C:\bootmgr

==================== Ein Monat: Genderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-01 20:07 - 2011-04-12 08:43 - 00698926 _____ C:\Windows\system32\perfh007.dat
2016-02-01 20:07 - 2011-04-12 08:43 - 00149034 _____ C:\Windows\system32\perfc007.dat
2016-02-01 20:07 - 2009-07-14 06:13 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-01 20:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-02-01 20:03 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-01 17:55 - 2009-07-14 05:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-02-01 17:55 - 2009-07-14 05:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-02-01 10:22 - 2009-07-14 05:45 - 00341880 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-01 09:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-02-01 09:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2016-01-30 12:07 - 2011-04-12 08:54 - 00000000 ____D C:\Windows\ShellNew
2016-01-30 12:07 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-01-29 19:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2016-01-29 19:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-01-29 19:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-01-29 19:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-01-29 18:38 - 2011-04-12 08:55 - 00000000 ____D C:\Program Files\Windows Journal
2016-01-29 18:38 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender
2016-01-29 18:38 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-01-29 18:38 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2016-01-29 11:02 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-01-29 10:33 - 2011-07-14 20:02 - 00000074 ____H C:\splash.idx
2016-01-27 16:04 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-01-27 15:33 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Windows NT
2016-01-27 15:32 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-01-27 15:29 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-01-27 15:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-01-27 15:25 - 2009-07-14 06:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template

Einige Dateien in TEMP:
====================
C:\Users\Stephan Blank\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix fr Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-02-01 15:15

==================== Ende von FRST.txt ============================
         

Alt 02.02.2016, 09:09   #14
cosinus
/// Winkelfunktion
/// TB-Sch-Tiger™
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Bitte auch ne neue Addition.txt erstellen, dazu FRST starten und einen Haken setzen bei Addition.txt, dann auf Untersuchen klicken.

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung fr einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board untersttzen
Warum Linux besser als Windows ist!

Alt 02.02.2016, 10:09   #15
Bennie
 
Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Standard

Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)



Jepp. Hatte ich ganz vergessen.

FRST Teil 1:
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:27-01-2016
durchgefhrt von Stephan Blank (Administrator) auf STEPHANBLANK-PC (02-02-2016 11:05:39)
Gestartet von C:\Users\Stephan Blank\Desktop
Geladene Profile: Stephan Blank (Verfgbare Profile: Stephan Blank)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser nicht gefunden!)
Start-Modus: Normal
Anleitung fr Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AuthenTec, Inc) C:\Program Files\TrueSuite\TrueSuite.Service.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(QUALCOMM, Inc.) C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kSony.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(AuthenTec Inc.) C:\Program Files\TrueSuite\TrueSuite.TouchControl.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(AuthenTec, Inc.) C:\Program Files\TrueSuite\TrueSuite.ClientAppLogonExe.exe
(AuthenTec, Inc.) C:\Program Files\TrueSuite\x86\TrueSuite.ClientAppLogonExe.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESGfxMgr.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Opera Software) C:\Program Files (x86)\Opera beta\35.0.2066.35\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\35.0.2066.35\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera beta\35.0.2066.35\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\35.0.2066.35\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\35.0.2066.35\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\35.0.2066.35\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\35.0.2066.35\opera.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurckgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ClientAppLogon] => C:\Program Files\TrueSuite\TrueSuite.ClientAppLogonExe.exe [421192 2011-02-14] (AuthenTec, Inc.)
HKLM\...\Run: [ClientAppLogon32] => C:\Program Files\TrueSuite\x86\TrueSuite.ClientAppLogonExe.exe [308040 2011-02-14] (AuthenTec, Inc.)
HKLM\...\Run: [emsisoft anti-malware] => c:\program files (x86)\emsisoft anti-malware\a2guard.exe [9235928 2016-01-27] (Emsisoft Ltd)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11490408 2011-04-17] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2179688 2011-04-17] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-12-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [emsisoft anti-malware] => C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [9235928 2016-01-27] (Emsisoft Ltd)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [2757312 2011-02-15] (Sony Corporation)
HKLM-x32\...\Run: [VAIO Boot Manager] => C:\Program Files (x86)\Sony\VAIO Boot Manager\StartUpProcessDelayTool.exe [2104456 2011-05-26] (Sony Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2016-01-27]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurckgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{60C2BA03-22DE-4711-B48D-56A25462762B}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{D3B93853-5F12-4DCE-BCE9-B7DA0FCD1779}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
BHO: TrueSuite WebStore -> {5cb2b77d-c8ca-44db-af20-a7a4df462a12} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\TrueSuite\TrueSuite.IEBHO.dll [2011-02-14] (AuthenTec Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: TrueSuite WebStore -> {5cb2b77d-c8ca-44db-af20-a7a4df462a12} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\TrueSuite\x86\TrueSuite.IEBHO.dll [2011-02-14] (AuthenTec Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [oiokdoppleiafjmfmggefbkghfblaplo] - C:\Program Files\TrueSuite\x86\tschrome.crx [2010-11-29]

Opera: 
=======
StartMenuInternet: (HKLM) Operabeta - C:\Program Files (x86)\Opera beta\Launcher.exe

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [10963864 2016-01-27] (Emsisoft Ltd)
R2 FPLService; C:\Program Files\TrueSuite\TrueSuite.Service.exe [290120 2011-02-14] (AuthenTec, Inc)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-01-05] ()
R2 QDLService2kSony; C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kSony.exe [332096 2010-10-21] (QUALCOMM, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [958112 2011-10-24] (Sony Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 epp; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\epp.sys [123568 2016-02-02] (Emsisoft Ltd)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-02 09:54 - 2016-02-02 09:54 - 00001264 _____ C:\Users\Stephan Blank\Desktop\Revo Uninstaller.lnk
2016-02-02 09:54 - 2016-02-02 09:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-02-02 09:53 - 2016-02-02 09:53 - 00003292 _____ C:\Windows\System32\Tasks\{61805B8C-1129-481D-88AB-13483DF6B542}
2016-02-02 09:44 - 2016-02-02 09:54 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2016-02-01 20:55 - 2016-02-01 20:55 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-02-01 20:55 - 2016-02-01 20:55 - 00000000 ____D C:\Windows\system32\Macromed
2016-02-01 20:55 - 2016-02-01 20:55 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Adobe
2016-02-01 20:28 - 2016-02-01 20:30 - 00001691 _____ C:\Users\Stephan Blank\Desktop\JRT.txt
2016-02-01 17:54 - 2016-02-01 17:54 - 01609032 _____ (Malwarebytes) C:\Users\Stephan Blank\Desktop\JRT.exe
2016-02-01 17:40 - 2016-02-01 17:43 - 00000000 ____D C:\AdwCleaner
2016-02-01 17:37 - 2016-02-01 17:37 - 01508352 _____ C:\Users\Stephan Blank\Desktop\AdwCleaner_5.032.exe
2016-02-01 16:26 - 2016-02-01 16:29 - 00000890 _____ C:\Users\Stephan Blank\Desktop\quarantine.txt
2016-02-01 16:05 - 2016-02-01 16:05 - 00000000 ____D C:\Users\Stephan Blank\Downloads\sqlite-shell-win32-x86-3090100
2016-02-01 16:03 - 2016-02-01 16:03 - 00372676 _____ C:\Users\Stephan Blank\Downloads\sqlite-shell-win32-x86-3090100.zip
2016-02-01 16:02 - 2016-02-01 16:02 - 01466656 _____ C:\Users\Stephan Blank\Downloads\SQLite - CHIP-Installer.exe
2016-02-01 15:48 - 2016-02-01 15:48 - 01019904 _____ (www.byphry.de.vu) C:\Users\Stephan Blank\Downloads\ThumbsDbExtractor.exe
2016-02-01 14:32 - 2016-02-01 14:32 - 00089770 _____ C:\Users\Stephan Blank\Desktop\logs.zip
2016-02-01 14:30 - 2016-02-01 14:12 - 00276480 _____ C:\Users\Stephan Blank\Desktop\logs_Emisoft.db3
2016-02-01 14:29 - 2016-02-01 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-02-01 14:29 - 2016-02-01 14:29 - 00000000 ____D C:\Program Files\7-Zip
2016-02-01 14:28 - 2016-02-01 14:28 - 01371668 _____ (Igor Pavlov) C:\Users\Stephan Blank\Downloads\7z1514-x64.exe
2016-02-01 14:08 - 2016-02-01 14:08 - 00001025 _____ C:\Users\Stephan Blank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinEdt 7.lnk
2016-02-01 14:08 - 2016-02-01 14:08 - 00000000 ____D C:\Users\Stephan Blank\WinEdt Team
2016-02-01 14:08 - 2016-02-01 14:08 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinEdt 7
2016-02-01 14:07 - 2016-02-01 14:07 - 09937544 _____ (WinEdt Team) C:\Users\Stephan Blank\Downloads\winedt71-64.exe
2016-02-01 13:38 - 2016-02-02 11:06 - 00011911 _____ C:\Users\Stephan Blank\Desktop\FRST.txt
2016-02-01 13:37 - 2016-02-01 13:37 - 00022146 _____ C:\Users\Stephan Blank\Desktop\Addition.txt
2016-02-01 13:36 - 2016-02-01 13:37 - 00022146 _____ C:\Users\Stephan Blank\Downloads\Addition.txt
2016-02-01 13:35 - 2016-02-01 20:33 - 00179658 _____ C:\Users\Stephan Blank\Downloads\FRST.txt
2016-02-01 13:34 - 2016-02-02 11:05 - 00000000 ____D C:\FRST
2016-02-01 13:34 - 2016-02-01 13:34 - 02370560 _____ (Farbar) C:\Users\Stephan Blank\Desktop\FRST64.exe
2016-02-01 10:57 - 2016-02-01 10:59 - 00002715 _____ C:\Users\Stephan Blank\Desktop\AdwCleaner[S1].txt
2016-02-01 10:57 - 2016-02-01 10:59 - 00000074 _____ C:\Users\Stephan Blank\Desktop\settings.ini
2016-02-01 10:57 - 2016-02-01 10:57 - 01508352 _____ C:\Users\Stephan Blank\Downloads\adwcleaner_5.032.exe
2016-02-01 10:54 - 2016-02-01 10:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\PDF Architect 4
2016-02-01 10:50 - 2016-02-01 10:55 - 00000000 ____D C:\ProgramData\PDF Architect 4
2016-02-01 10:50 - 2016-02-01 10:50 - 00120200 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2016-02-01 10:50 - 2016-02-01 10:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2016-02-01 10:49 - 2016-02-01 10:50 - 00000000 ____D C:\Program Files\PDFCreator
2016-02-01 10:34 - 2016-02-01 10:48 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Foxit Software
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Foxit AgentInformation
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Foxit Reader
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\Users\Public\Foxit Software
2016-02-01 10:34 - 2016-02-01 10:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2016-02-01 10:33 - 2016-02-01 10:33 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2016-02-01 10:30 - 2016-02-01 11:15 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Mozilla
2016-02-01 10:00 - 2016-02-01 10:00 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-02-01 10:00 - 2016-02-01 10:00 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-02-01 09:55 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-01 09:37 - 2016-02-01 09:37 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-02-01 09:37 - 2016-02-01 09:37 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-01 09:26 - 2016-02-01 09:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-02-01 09:25 - 2016-02-01 09:25 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-02-01 09:25 - 2016-02-01 09:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-02-01 09:20 - 2016-02-01 09:20 - 00000000 ____D C:\Program Files (x86)\ESET
2016-02-01 09:19 - 2016-02-01 09:19 - 42783808 _____ (Foxit Software Inc. ) C:\Users\Stephan Blank\Downloads\FoxitReader730.0118_enu_Setup.exe
2016-02-01 09:18 - 2016-02-01 09:18 - 27005440 _____ (pdfforge GmbH) C:\Users\Stephan Blank\Downloads\PDFCreator-2_2_2-setup.exe
2016-02-01 09:13 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-01 09:13 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-01 09:13 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-01 09:13 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-02-01 09:13 - 2015-06-03 21:16 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2016-02-01 09:13 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2016-02-01 09:13 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2016-02-01 09:13 - 2012-07-06 21:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2016-02-01 09:13 - 2011-04-28 04:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2016-02-01 09:13 - 2011-03-11 07:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2016-02-01 09:13 - 2011-03-11 07:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2016-02-01 09:13 - 2011-03-11 07:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-02-01 09:13 - 2011-03-11 07:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2016-02-01 09:13 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-02-01 09:13 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2016-02-01 09:13 - 2011-03-11 05:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-02-01 09:06 - 2016-02-01 09:06 - 00302011 _____ C:\Users\Stephan Blank\Downloads\WindowsUpdateDiagnostic.diagcab
2016-02-01 09:03 - 2016-02-01 09:03 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-02-01 09:03 - 2016-02-01 09:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-02-01 09:03 - 2016-02-01 09:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-02-01 09:03 - 2016-02-01 09:03 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-02-01 09:03 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-02-01 09:03 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-02-01 09:03 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-02-01 08:56 - 2016-02-01 08:56 - 02870984 _____ (ESET) C:\Users\Stephan Blank\Downloads\esetsmartinstaller_deu.exe
2016-02-01 08:41 - 2016-02-02 08:45 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\vlc
2016-02-01 08:41 - 2016-02-01 08:41 - 22908888 _____ (Malwarebytes ) C:\Users\Stephan Blank\Downloads\mbam-setup-2.2.0.1024.exe
2016-02-01 08:39 - 2016-02-01 08:39 - 00000871 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-02-01 08:39 - 2016-02-01 08:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-02-01 08:38 - 2016-02-01 08:38 - 00000000 ____D C:\Program Files\VideoLAN
2016-01-30 12:09 - 2016-01-30 12:09 - 00000000 ____D C:\Windows\PCHEALTH
2016-01-30 12:09 - 2016-01-30 12:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-01-30 12:08 - 2016-01-30 12:08 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-01-30 12:07 - 2016-01-30 12:07 - 00000000 ____D C:\Program Files\Microsoft Office
2016-01-30 12:07 - 2016-01-30 12:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-01-30 12:06 - 2016-01-30 12:09 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-01-30 12:06 - 2016-01-30 12:06 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Microsoft Help
2016-01-30 12:05 - 2016-01-30 12:05 - 00000000 __RHD C:\MSOCache
2016-01-30 11:06 - 2015-07-16 20:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-01-30 11:06 - 2015-07-16 20:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2016-01-30 11:06 - 2015-07-16 20:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2016-01-30 11:06 - 2015-07-16 20:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-01-30 11:06 - 2015-07-16 20:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2016-01-30 11:06 - 2015-07-16 20:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2016-01-30 11:06 - 2015-07-11 14:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2016-01-30 11:06 - 2015-06-09 19:03 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-01-30 11:06 - 2015-06-09 19:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-01-30 11:06 - 2015-06-03 21:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-01-30 11:05 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-30 11:05 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-30 11:05 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-30 11:05 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-30 11:05 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-30 11:05 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-30 11:05 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-30 11:05 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-30 11:05 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-30 11:05 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-30 11:05 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-30 11:05 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-30 11:05 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-30 11:05 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-30 11:05 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-30 11:05 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-30 11:05 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-30 11:05 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-30 11:05 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-30 11:05 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-30 11:05 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-30 11:05 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-30 11:05 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-30 11:05 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-30 11:05 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-30 11:05 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-30 11:05 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-30 11:05 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-30 11:05 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-30 11:05 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-30 11:05 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-30 11:05 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-30 11:05 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-30 11:05 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-30 11:05 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-30 11:05 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-30 11:05 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-30 11:05 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-30 11:05 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-30 11:05 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-30 11:05 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-30 11:05 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-30 11:05 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-30 11:05 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-30 11:05 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-30 11:05 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-30 11:05 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-30 11:05 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-30 11:05 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-30 11:05 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-30 11:05 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-30 11:05 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-30 11:05 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-30 11:05 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-30 11:05 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-30 11:05 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-30 11:05 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-30 11:05 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-30 11:05 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2016-01-30 11:05 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-01-30 11:05 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-01-30 10:52 - 2016-01-30 12:08 - 00000000 ____D C:\ProgramData\iolo
2016-01-30 10:52 - 2016-01-30 10:52 - 00074703 _____ C:\Windows\SysWOW64\mfc45.dll
2016-01-30 10:52 - 2016-01-30 10:52 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\iolo
2016-01-30 10:52 - 2016-01-30 10:51 - 00013792 _____ C:\Windows\system32\Drivers\semav6thermal64ro.sys
2016-01-30 10:52 - 2015-02-04 16:37 - 00069000 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2016-01-30 10:52 - 2015-02-04 16:37 - 00021176 _____ (iolo technologies, LLC) C:\Windows\system32\iolorgdf64.exe
2016-01-29 22:02 - 2016-01-29 22:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BioEdit
2016-01-29 22:02 - 2016-01-29 22:02 - 00000000 ____D C:\BioEdit
2016-01-29 21:59 - 2016-01-29 21:59 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\GWX
2016-01-29 21:54 - 2016-01-29 21:54 - 00002820 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-01-29 21:54 - 2016-01-29 21:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-01-29 21:54 - 2016-01-29 21:54 - 00000000 ____D C:\Program Files\CCleaner
2016-01-29 21:51 - 2016-01-29 21:51 - 00001040 _____ C:\Users\Public\Desktop\Chromas Lite.lnk
2016-01-29 21:51 - 2016-01-29 21:51 - 00000000 ____D C:\Users\Stephan Blank\AppData\Chromas Lite
2016-01-29 21:51 - 2016-01-29 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chromas
2016-01-29 21:51 - 2016-01-29 21:51 - 00000000 ____D C:\Program Files (x86)\Chromas
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\MEGA6_6140226
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\MEGA_Global
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGA6
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImageMagick 6.7.5 Q16
2016-01-29 21:50 - 2016-01-29 21:50 - 00000000 ____D C:\Program Files (x86)\MEGA6
2016-01-29 21:34 - 2016-02-01 10:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-29 21:34 - 2016-02-01 10:30 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Mozilla
2016-01-29 21:34 - 2016-01-29 21:34 - 00001209 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-01-29 21:34 - 2016-01-29 21:34 - 00001197 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-01-29 21:34 - 2016-01-29 21:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Thunderbird
2016-01-29 21:34 - 2016-01-29 21:34 - 00000000 ____D C:\Users\Stephan Blank\AppData\Local\Thunderbird
2016-01-29 21:34 - 2016-01-29 21:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-01-29 21:22 - 2016-01-29 21:22 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Stephan Blank\Downloads\revosetup95.exe
2016-01-29 21:15 - 2016-01-29 21:16 - 29995555 _____ C:\Users\Stephan Blank\Downloads\vlc-2.2.1-win64.exe
2016-01-29 21:13 - 2016-01-29 21:14 - 00242320 _____ C:\Users\Stephan Blank\Downloads\Firefox Setup Stub 44.0.exe
2016-01-29 21:13 - 2016-01-29 21:13 - 33940552 _____ (Mozilla) C:\Users\Stephan Blank\Downloads\Thunderbird Setup 38.5.1.exe
2016-01-29 21:02 - 2016-01-29 21:53 - 00000000 ____D C:\Setups
2016-01-29 20:44 - 2016-02-01 17:35 - 00000000 ____D C:\Sonstiges_160124
2016-01-29 20:43 - 2016-01-29 20:44 - 00000000 ____D C:\Biologie_Doktorat_160124
2016-01-29 20:29 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-29 20:29 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-29 20:29 - 2015-11-10 19:55 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-01-29 20:29 - 2015-11-10 19:55 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-01-29 20:29 - 2015-11-10 19:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-01-29 20:29 - 2015-07-30 19:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-01-29 20:29 - 2015-07-30 18:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-01-29 20:29 - 2015-02-04 04:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-01-29 20:29 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-01-29 20:29 - 2015-02-03 04:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-01-29 20:29 - 2015-02-03 04:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-01-29 20:00 - 2016-01-29 20:04 - 00000000 ____D C:\DETECTIVE_160124
2016-01-29 19:55 - 2016-01-29 19:58 - 00000000 ___SD C:\Windows\system32\GWX
2016-01-29 19:55 - 2016-01-29 19:55 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-01-29 19:50 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2016-01-29 19:50 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2016-01-29 19:50 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-01-29 19:50 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2016-01-29 19:50 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2016-01-29 19:50 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2016-01-29 19:50 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2016-01-29 19:50 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2016-01-29 19:50 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2016-01-29 19:50 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2016-01-29 19:47 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2016-01-29 19:47 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2016-01-29 19:47 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2016-01-29 19:47 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2016-01-29 19:44 - 2016-02-01 09:36 - 01592784 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-01-29 19:41 - 2012-07-26 04:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2016-01-29 19:41 - 2012-07-26 04:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2016-01-29 19:41 - 2012-07-26 04:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-01-29 19:41 - 2012-07-26 04:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2016-01-29 19:41 - 2012-07-26 04:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2016-01-29 19:41 - 2012-07-26 03:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2016-01-29 19:41 - 2012-07-26 03:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2016-01-29 19:41 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2016-01-29 19:38 - 2015-07-23 01:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-01-29 19:38 - 2015-07-23 01:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-01-29 19:38 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2016-01-29 19:38 - 2015-07-22 17:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-01-29 19:38 - 2015-04-27 20:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-01-29 19:38 - 2015-04-27 20:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-01-29 19:38 - 2015-04-27 20:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-01-29 19:38 - 2015-04-27 20:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-01-29 19:38 - 2015-04-27 20:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-01-29 19:38 - 2015-04-11 04:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2016-01-29 19:38 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2016-01-29 19:38 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2016-01-29 19:38 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2016-01-29 19:38 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2016-01-29 19:38 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2016-01-29 19:38 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2016-01-29 19:38 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2016-01-29 19:38 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2016-01-29 19:37 - 2015-12-16 19:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2016-01-29 19:37 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2016-01-29 19:37 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2016-01-29 19:37 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2016-01-29 19:37 - 2015-12-16 19:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2016-01-29 19:37 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2016-01-29 19:37 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2016-01-29 19:37 - 2015-12-16 19:47 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2016-01-29 19:37 - 2015-12-16 15:38 - 00419928 _____ C:\Windows\SysWOW64\locale.nls
2016-01-29 19:37 - 2015-12-16 15:37 - 00419928 _____ C:\Windows\system32\locale.nls
2016-01-29 19:37 - 2015-08-05 18:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2016-01-29 19:37 - 2015-08-05 18:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2016-01-29 19:37 - 2015-05-25 19:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2016-01-29 19:37 - 2015-05-25 19:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2016-01-29 19:37 - 2015-05-25 19:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2016-01-29 19:37 - 2015-05-25 19:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2016-01-29 19:37 - 2015-05-25 19:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2016-01-29 19:37 - 2015-05-25 19:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2016-01-29 19:37 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2016-01-29 19:37 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2016-01-29 19:37 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2016-01-29 19:37 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2016-01-29 19:37 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2016-01-29 19:37 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2016-01-29 19:37 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2016-01-29 19:37 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2016-01-29 19:37 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2016-01-29 19:37 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2016-01-29 19:37 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2016-01-29 19:37 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2016-01-29 19:37 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2016-01-29 19:37 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2016-01-29 19:37 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2016-01-29 19:37 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2016-01-29 19:37 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2016-01-29 19:37 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2016-01-29 19:37 - 2012-12-07 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2016-01-29 19:37 - 2012-12-07 14:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2016-01-29 19:37 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2016-01-29 19:37 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2016-01-29 19:37 - 2012-12-07 12:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2016-01-29 19:37 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2016-01-29 19:37 - 2012-12-07 12:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2016-01-29 19:37 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2016-01-29 19:36 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2016-01-29 19:36 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2016-01-29 19:36 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2016-01-29 19:36 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2016-01-29 19:36 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2016-01-29 19:36 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2016-01-29 19:36 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2016-01-29 19:36 - 2015-07-18 14:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-01-29 19:36 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-01-29 19:36 - 2012-10-03 18:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2016-01-29 19:36 - 2012-10-03 18:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2016-01-29 19:36 - 2012-10-03 18:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-01-29 19:36 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2016-01-29 19:36 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2016-01-29 19:36 - 2012-10-03 17:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2016-01-29 19:36 - 2012-01-04 11:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-01-29 19:36 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-01-29 19:36 - 2011-05-04 06:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2016-01-29 19:36 - 2011-05-04 06:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2016-01-29 19:36 - 2011-05-04 06:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2016-01-29 19:36 - 2011-05-04 06:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-01-29 19:36 - 2011-05-04 06:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2016-01-29 19:36 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2016-01-29 19:36 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2016-01-29 19:36 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2016-01-29 19:36 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-01-29 19:36 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2016-01-29 19:35 - 2015-11-05 20:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-01-29 19:35 - 2015-11-05 20:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-01-29 19:35 - 2015-08-27 19:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-01-29 19:35 - 2015-08-27 19:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-01-29 19:35 - 2015-08-27 19:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2016-01-29 19:35 - 2015-08-27 19:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-01-29 19:35 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-01-29 19:35 - 2015-08-27 18:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-01-29 19:35 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2016-01-29 19:35 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-01-29 19:35 - 2015-07-09 18:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-01-29 19:35 - 2015-07-09 18:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2016-01-29 19:35 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-01-29 19:35 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2016-01-29 19:35 - 2015-06-25 11:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-01-29 19:35 - 2015-06-25 11:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-01-29 19:35 - 2015-06-25 11:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-01-29 19:35 - 2015-06-25 10:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-01-29 19:35 - 2015-01-29 04:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-01-29 19:35 - 2015-01-29 04:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2016-01-29 19:35 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2016-01-29 19:35 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2016-01-29 19:35 - 2014-02-04 03:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2016-01-29 19:35 - 2014-02-04 03:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-01-29 19:35 - 2014-02-04 03:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2016-01-29 19:35 - 2014-02-04 03:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2016-01-29 19:35 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2016-01-29 19:35 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2016-01-29 19:35 - 2013-05-10 06:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2016-01-29 19:35 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2016-01-29 19:35 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-01-29 19:35 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2016-01-29 19:35 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2016-01-29 19:35 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2016-01-29 19:35 - 2012-08-21 22:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2016-01-29 19:35 - 2012-07-04 21:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2016-01-29 19:35 - 2011-06-16 06:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2016-01-29 19:35 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2016-01-29 19:34 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-01-29 19:34 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-01-29 19:34 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2016-01-29 19:34 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2016-01-29 19:34 - 2014-10-03 03:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-01-29 19:34 - 2014-10-03 03:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-01-29 19:34 - 2014-10-03 03:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-01-29 19:34 - 2014-10-03 03:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-01-29 19:34 - 2014-10-03 03:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-01-29 19:34 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-01-29 19:34 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-01-29 19:34 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-01-29 19:34 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-01-29 19:34 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-01-29 19:34 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-01-29 19:34 - 2014-01-24 03:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-01-29 19:34 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2016-01-29 19:34 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2016-01-29 19:34 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-01-29 19:34 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2016-01-29 19:34 - 2013-01-24 07:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2016-01-29 19:34 - 2011-12-30 07:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2016-01-29 19:34 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2016-01-29 19:34 - 2011-02-18 11:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2016-01-29 19:34 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2016-01-29 18:54 - 2016-01-29 18:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Sony Corporation
2016-01-29 18:54 - 2016-01-29 18:54 - 00000000 ____D C:\Users\Stephan Blank\AppData\Roaming\Adobe
2016-01-29 18:03 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2016-01-29 17:52 - 2016-01-29 17:52 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2016-01-29 17:52 - 2016-01-29 17:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2016-01-29 17:52 - 2016-01-29 17:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2016-01-29 17:52 - 2016-01-29 17:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2016-01-29 17:52 - 2016-01-29 17:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2016-01-29 17:52 - 2016-01-29 17:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-01-29 17:52 - 2016-01-29 17:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2016-01-29 17:48 - 2016-01-29 17:48 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-01-29 17:48 - 2016-01-29 17:48 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-01-29 17:40 - 2016-01-29 17:40 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-01-29 17:38 - 2016-01-29 17:38 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-01-29 17:38 - 2016-01-29 17:38 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-01-29 17:10 - 2016-01-29 17:12 - 00000000 ____D C:\Windows\system32\MRT
2016-01-29 17:10 - 2016-01-29 17:10 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-29 16:31 - 2012-03-01 07:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2016-01-29 16:31 - 2012-03-01 07:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2016-01-29 16:31 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2016-01-29 16:23 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2016-01-29 16:23 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2016-01-29 16:23 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2016-01-29 16:23 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2016-01-29 16:23 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2016-01-29 16:23 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2016-01-29 16:23 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2016-01-29 16:23 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2016-01-29 15:15 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-29 15:15 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-29 15:15 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-29 15:15 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-29 15:15 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-29 15:15 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-29 15:15 - 2015-08-05 18:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-01-29 15:15 - 2015-06-02 01:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2016-01-29 15:15 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2016-01-29 15:15 - 2015-04-29 19:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-01-29 15:15 - 2015-04-29 19:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-01-29 15:15 - 2015-04-29 19:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-01-29 15:15 - 2015-04-29 19:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-01-29 15:15 - 2015-04-29 19:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-01-29 15:15 - 2015-04-29 19:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-01-29 15:15 - 2015-04-29 19:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-01-29 15:15 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-01-29 15:15 - 2015-04-29 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-01-29 15:15 - 2015-04-29 19:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-01-29 15:15 - 2015-04-18 04:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-01-29 15:15 - 2015-04-18 03:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-01-29 15:15 - 2015-04-13 04:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-01-29 15:15 - 2011-06-15 11:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2016-01-29 15:15 - 2011-06-15 11:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2016-01-29 15:15 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2016-01-29 15:15 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2016-01-29 15:15 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2016-01-29 15:15 - 2010-12-23 11:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2016-01-29 15:15 - 2010-12-23 11:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-01-29 15:15 - 2010-12-23 11:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2016-01-29 15:15 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2016-01-29 15:15 - 2010-12-23 06:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-01-29 15:15 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2016-01-29 15:14 - 2015-11-20 19:54 - 03170304 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 02609152 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00709632 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-01-29 15:14 - 2015-11-20 19:54 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-01-29 15:14 - 2015-11-20 19:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-01-29 15:14 - 2015-11-20 19:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-01-29 15:14 - 2015-11-20 19:34 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-01-29 15:14 - 2015-11-20 19:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-01-29 15:14 - 2015-11-03 20:04 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-01-29 15:14 - 2015-11-03 19:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2016-01-29 15:14 - 2015-08-06 19:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-01-29 15:14 - 2015-08-06 19:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-01-29 15:14 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-01-29 15:14 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-01-29 15:14 - 2015-07-15 19:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-01-29 15:14 - 2015-07-15 19:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-01-29 15:14 - 2015-07-15 19:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-01-29 15:14 - 2011-11-17 07:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-01-29 15:14 - 2011-11-17 06:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
         

Antwort

Themen zu Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)
absturz, anti-malware, computer, explorer, fehlermeldung, firefox, folge, freude, gen, google, infiziert, internet-explorer, neu, neuinstallation, neustart, opera, probleme, programm, rechner, scan, suche, trojaner, vaio, win, windows, ffnen



hnliche Themen: Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)


  1. Windows 7: Trojan.GenericKD.2460578 (B) gefunden
    Log-Analyse und Auswertung - 05.06.2015 (10)
  2. Trojan.GenericKD.2269178 (B) + Trojan.Generic.13051484 (B) + Trojan.Generic.12905642 (B)
    Log-Analyse und Auswertung - 10.04.2015 (12)
  3. Trojan.GenericKD.1991409
    Plagegeister aller Art und deren Bekmpfung - 11.12.2014 (3)
  4. Win 8.1: Virusfund Trojan.GenericKD.2011851 (Engine A)
    Plagegeister aller Art und deren Bekmpfung - 07.12.2014 (4)
  5. Viren : Trojan.GenericKD.1843822 - Gen:Variant.Adware.BHO.Agent.4 - Trojan.Ciusky.Gen.13
    Plagegeister aller Art und deren Bekmpfung - 08.09.2014 (3)
  6. Trojan.GenericKD.1822763 gefunden, echt oder Fehlalarm?
    Plagegeister aller Art und deren Bekmpfung - 30.08.2014 (5)
  7. W 8.1,Trojaner kann von mir nicht entfernt werden.Virus: Trojan.GenericKD.1673711 (Engine A),Virus: Win32.Trojan.Pirpi.A (Engine B)
    Plagegeister aller Art und deren Bekmpfung - 21.08.2014 (3)
  8. Norton Antivirus hat den Trojaner Trojan.Gen.2 entdeckt
    Log-Analyse und Auswertung - 28.07.2014 (12)
  9. Trojan.GenericKD.942439 / Trojan.GenericKD.1305731 u.a.
    Log-Analyse und Auswertung - 11.07.2014 (19)
  10. Win 8: Virusfund Trojan.GenericKD 1687892 (Engine A)
    Plagegeister aller Art und deren Bekmpfung - 03.06.2014 (3)
  11. W7: Phising-Page bei Onlinebanking in FF + Trojan.GenericKD.1659055 ?
    Plagegeister aller Art und deren Bekmpfung - 16.05.2014 (14)
  12. WIN 7: Virusfund Trojan.GenericKD.1631929 (Engine A)
    Plagegeister aller Art und deren Bekmpfung - 08.04.2014 (3)
  13. Trojan.GenericKD.1582797 und 1574997 werden nicht gelscht
    Plagegeister aller Art und deren Bekmpfung - 23.03.2014 (33)
  14. Bitdefender meldet Trojan.GenericKD.1440205
    Log-Analyse und Auswertung - 16.01.2014 (12)
  15. Trojan.GenericKD.1242803 / download malwarebytes funzt nicht
    Plagegeister aller Art und deren Bekmpfung - 13.10.2013 (28)
  16. Trojaner Generic-FRAX!EF3DA767ACD3 Trojan entdeckt bei Versuch unbekannten Trojaner zu entfernen
    Plagegeister aller Art und deren Bekmpfung - 04.08.2012 (3)
  17. Trojaner entdeckt / gelscht, am Folgetag neuen entdeckt (Trojan.Downloader, Trojan.Vundo)
    Plagegeister aller Art und deren Bekmpfung - 30.07.2010 (6)

Zum Thema Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) - Hallo Liebe Helfer des Trojaner-Boards, das Windows 7 SP1 meines Sony Vaio Laptops habe ich krzlich erst neu installiert, weil es Probleme gab. Unter anderem ist der Laptop eingefrohren, als - Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B)...
Archiv
Du betrachtest: Win 7: Trojaner entdeckt: trojan.genericKD.2180047 (B) auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.